[people/ms/network.git] / functions.wireless

#!/bin/bash
###############################################################################
#                                                                             #
# IPFire.org - A linux based firewall                                         #
# Copyright (C) 2010  Michael Tremer & Christian Schmidt                      #
#                                                                             #
# This program is free software: you can redistribute it and/or modify        #
# it under the terms of the GNU General Public License as published by        #
# the Free Software Foundation, either version 3 of the License, or           #
# (at your option) any later version.                                         #
#                                                                             #
# This program is distributed in the hope that it will be useful,             #
# but WITHOUT ANY WARRANTY; without even the implied warranty of              #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the               #
# GNU General Public License for more details.                                #
#                                                                             #
# You should have received a copy of the GNU General Public License           #
# along with this program.  If not, see <http://www.gnu.org/licenses/>.       #
#                                                                             #
###############################################################################

function wireless_create() {
	local device=${1}
	local phy=$(phy_get ${2})
	local type=${3}
	local mac=${4}

	assert isset device
	assert isset phy
	assert isset type

	isset mac || mac=$(mac_generate)

	assert phy_exists ${phy}
	assert isoneof type managed __ap

	iw phy ${phy} interface add ${device} type ${type}

	if device_exists ${device}; then
		device_set_address ${device} ${mac}
	fi

	device_set_up ${device}
}

function wireless_remove() {
	local device=${1}

	assert device_exists ${device}

	device_set_down ${device}

	iw dev ${device} del
}

function wireless_set_channel() {
	local device=${1}
	local channel=${2}

	assert isset device
	assert device_exists ${device}
	assert isset channel

	iw dev ${device} set channel ${channel} $@
}

function hostapd_config_dir() {
	local device=${1}
	
	echo "${RUN_DIR}/hostapd/${device}"
}

function hostapd_config_write() {
	local device=${1}
	shift

	assert device_exists ${device}

	local broadcast_ssid
	local channel
	local country_code
	local encryption
	local key
	local mode
	local ssid

	while [ $# -gt 0 ]; do
		case "${1}" in
			--broadcast-ssid=*)
				broadcast_ssid=${1#--broadcast-ssid=}
				;;
			--channel=*)
				channel=${1#--channel=}
				;;
			--country-code=*)
				country_code=${1#--country-code=}
				;;
			--mode=*)
				mode=${1#--mode=}
				;;
			--ssid=*)
				ssid=${1#--ssid=}
				;;
			--encryption=*)
				encryption=$(cli_get_val ${1})
				;;
			--key=*)
				key=$(cli_get_val ${1})
				;;
			*)
				warning_log "Ignoring unknown argument '${1}'."
				;;			
		esac
		shift
	done

	assert isset broadcast_ssid
	assert isbool broadcast_ssid

	assert isset channel
	assert isinteger channel

	assert isset country_code
	assert isset mode
	assert isset ssid

	# Check if key is set when encryption is used.
	if isset encryption; then
		assert isoneof encryption WPA WPA2 WPA/WPA2
		assert isset key
	fi

	local ignore_broadcast_ssid
	if enabled broadcast_ssid; then
		ignore_broadcast_ssid="0"
	else
		ignore_broadcast_ssid="1"
	fi

	local hw_mode ieee80211n="0"
	if [ "${mode}" = "n" ]; then
		if [ ${channel} -le 15 ]; then
			hw_mode="g"
		else
			hw_mode="a"
		fi
		ieee80211n="1"
	fi

	cat <<EOF
### Hostapd configuration for ${device}

# Interface configuration
driver=nl80211
interface=${device}

# Wireless configuration
channel=${channel}
country_code=${country_code}
hw_mode=${hw_mode}
ieee80211n=${ieee80211n}
ignore_broadcast_ssid=${ignore_broadcast_ssid}
ssid=${ssid}

# Dump file
dump_file=$(hostapd_config_dir ${device}/dump)

ctrl_interface=/var/run/hostapd
ctrl_interface_group=0

EOF

	if isset encryption; then
		local encryption_mode=0
		case "${encryption}" in
			WPA)
				encryption_mode=1
				;;
			WPA2)
				encryption_mode=2
				;;
			WPA/WPA2)
				encryption_mode=3
				;;
		esac

		print "# Encryption settings."
		print "wpa=${encryption_mode}"
		print "wpa_passphrase=${key}"
		print "wpa_key_mgmt=WPA-PSK"
		print "wpa_pairwise=TKIP"
		print "rsn_pairwise=CCMP"
		print
	fi

	return ${EXIT_OK}
}

function hostapd_start() {
	local device=${1}
	shift

	assert isset device

	local config_dir=$(hostapd_config_dir ${device})
	mkdir -p ${config_dir}

	local config_file=${config_dir}/config
	hostapd_config_write ${device} $@ > ${config_file}

	service_start "hostapd@${device}.service"
	local ret=$?

	case "${ret}" in
		0)
			log DEBUG "Hostapd was successfully started for '${device}'."
			return ${EXIT_OK}
			;;
		1)
			error_log "Could not start hostapd properly for '${device}'."
			
			error_log "Configuration file dump:"
			local line
			while read line; do
				error_log "  ${line}"
			done < ${config_file}

			return ${EXIT_ERROR}
			;;
	esac
}

function hostapd_stop() {
	local device=${1}
	assert isset device

	service_stop "hostapd@${device}.service"

	rm -rf $(hostapd_config_dir ${device})
}

function hostapd_get_pid() {
	local device=${1}

	assert isset device

	local pid_file="$(hostapd_config_dir ${device})/pid"

	[ -e "${pid_file}" ] || return ${EXIT_ERROR}

	cat ${pid_file} 2>/dev/null
	return ${EXIT_OK}
}

function hostapd_is_running() {
	local device=${1}

	assert isset device

	local pid=$(hostapd_get_pid ${device})

	if isset pid && [ -d "/proc/${pid}" ]; then
		return ${EXIT_OK}
	fi

	return ${EXIT_ERROR}
}

function wpa_supplicant_config_write() {
	local device=${1}
	shift

	assert isset device

	local ssid
	local encryption
	local key

	while [ $# -gt 0 ]; do
		case "${1}" in
			--ssid=*)
				ssid=${1#--ssid=}
				;;
			--encryption=*)
				encryption=${1#--encryption=}
				;;
			--key=*)
				key=${1#--key=}
				;;
		esac
		shift
	done

	assert isset ssid
	assert isset encryption
	assert isset key

	cat <<EOF
# WPA supplicant configuration for ${device}.
# DO NOT EDIT.

network={
	ssid="${ssid}"
	proto=RSN
	key_mgmt=${encryption}
	pairwise=CCMP
	group=TKIP
	psk="${key}"
}

EOF
}

function wpa_supplicant_config_dir() {
	local device=${1}

	assert isset device

	echo "${RUN_DIR}/wireless/${device}"
}

function wpa_supplicant_start() {
	local device=${1}
	shift

	assert device_exists ${device}

	local config_dir=$(wpa_supplicant_config_dir ${device})
	mkdir -p ${config_dir}

	local config_file=${config_dir}/config
	wpa_supplicant_config_write ${device} $@ > ${config_file}

	wpa_supplicant -i ${device} -D wext -B -c ${config_file} \
		-P ${config_dir}/pid
}

function wpa_supplicant_stop() {
	local device=${1}

	assert isset device

	local pid=$(wpa_supplicant_get_pid ${device})

	if isset pid; then
		process_kill ${pid}
	else
		warning_log "Could not find pid file for wpa_supplicant process running for ${device}."
	fi

	rm -rf $(wpa_supplicant_config_dir ${device})
}

function wpa_supplicant_get_pid() {
	local device=${1}

	assert isset device

	local pid_file="$(wpa_supplicant_config_dir ${device})/pid"

	[ -e "${pid_file}" ] || return ${EXIT_ERROR}

	cat ${pid_file} 2>/dev/null
	return ${EXIT_OK}
}

function wpa_supplicant_is_running() {
	local device=${1}

	assert isset device

	local pid=$(wpa_supplicant_get_pid ${device})

	if isset pid && [ -d "/proc/${pid}" ]; then
		return ${EXIT_OK}
	fi

	return ${EXIT_ERROR}
}

function wpa_supplicant_get_pid() {
	local zone=${1}
	shift

	
}

function wpa_supplicant_stop() {
	local zone=${1}
	shift

	killall wpa_supplicant
}
Commit	Line	Data
d76f5107	1	#!/bin/bash
1578dae9 MT	2	###############################################################################
	3	# #
	4	# IPFire.org - A linux based firewall #
	5	# Copyright (C) 2010 Michael Tremer & Christian Schmidt #
	6	# #
	7	# This program is free software: you can redistribute it and/or modify #
	8	# it under the terms of the GNU General Public License as published by #
	9	# the Free Software Foundation, either version 3 of the License, or #
	10	# (at your option) any later version. #
	11	# #
	12	# This program is distributed in the hope that it will be useful, #
	13	# but WITHOUT ANY WARRANTY; without even the implied warranty of #
	14	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
	15	# GNU General Public License for more details. #
	16	# #
	17	# You should have received a copy of the GNU General Public License #
	18	# along with this program. If not, see <http://www.gnu.org/licenses/>. #
	19	# #
	20	###############################################################################
d76f5107	21
d76f5107 MT	22	function wireless_create() {
	23	local device=${1}
	24	local phy=$(phy_get ${2})
	25	local type=${3}
	26	local mac=${4}
	27
	28	assert isset device
	29	assert isset phy
	30	assert isset type
	31
	32	isset mac \|\| mac=$(mac_generate)
	33
	34	assert phy_exists ${phy}
	35	assert isoneof type managed __ap
	36
	37	iw phy ${phy} interface add ${device} type ${type}
	38
	39	if device_exists ${device}; then
	40	device_set_address ${device} ${mac}
	41	fi
	42
	43	device_set_up ${device}
	44	}
	45
	46	function wireless_remove() {
	47	local device=${1}
	48
	49	assert device_exists ${device}
	50
	51	device_set_down ${device}
	52
	53	iw dev ${device} del
	54	}
	55
	56	function wireless_set_channel() {
	57	local device=${1}
	58	local channel=${2}
	59
	60	assert isset device
	61	assert device_exists ${device}
	62	assert isset channel
	63
	64	iw dev ${device} set channel ${channel} $@
	65	}
	66
d76f5107 MT	67	function hostapd_config_dir() {
	68	local device=${1}
	69
	70	echo "${RUN_DIR}/hostapd/${device}"
	71	}
	72
	73	function hostapd_config_write() {
	74	local device=${1}
	75	shift
	76
	77	assert device_exists ${device}
	78
	79	local broadcast_ssid
	80	local channel
	81	local country_code
25e32463 MT	82	local encryption
25e32463 MT	83	local key
d76f5107 MT	84	local mode
	85	local ssid
	86
	87	while [ $# -gt 0 ]; do
	88	case "${1}" in
	89	--broadcast-ssid=*)
	90	broadcast_ssid=${1#--broadcast-ssid=}
	91	;;
	92	--channel=*)
	93	channel=${1#--channel=}
	94	;;
	95	--country-code=*)
	96	country_code=${1#--country-code=}
	97	;;
	98	--mode=*)
	99	mode=${1#--mode=}
	100	;;
	101	--ssid=*)
	102	ssid=${1#--ssid=}
	103	;;
25e32463 MT	104	--encryption=*)
	105	encryption=$(cli_get_val ${1})
	106	;;
	107	--key=*)
	108	key=$(cli_get_val ${1})
	109	;;
d76f5107 MT	110	*)
	111	warning_log "Ignoring unknown argument '${1}'."
	112	;;
	113	esac
	114	shift
	115	done
	116
	117	assert isset broadcast_ssid
	118	assert isbool broadcast_ssid
	119
	120	assert isset channel
	121	assert isinteger channel
	122
	123	assert isset country_code
	124	assert isset mode
	125	assert isset ssid
	126
25e32463 MT	127	# Check if key is set when encryption is used.
	128	if isset encryption; then
	129	assert isoneof encryption WPA WPA2 WPA/WPA2
	130	assert isset key
	131	fi
	132
d76f5107 MT	133	local ignore_broadcast_ssid
	134	if enabled broadcast_ssid; then
	135	ignore_broadcast_ssid="0"
	136	else
	137	ignore_broadcast_ssid="1"
	138	fi
	139
93d614f0 MT	140	local hw_mode ieee80211n="0"
	141	if [ "${mode}" = "n" ]; then
	142	if [ ${channel} -le 15 ]; then
	143	hw_mode="g"
	144	else
	145	hw_mode="a"
	146	fi
	147	ieee80211n="1"
	148	fi
	149
d76f5107 MT	150	cat <<EOF
	151	### Hostapd configuration for ${device}
	152
	153	# Interface configuration
	154	driver=nl80211
	155	interface=${device}
	156
	157	# Wireless configuration
	158	channel=${channel}
	159	country_code=${country_code}
93d614f0 MT	160	hw_mode=${hw_mode}
93d614f0 MT	161	ieee80211n=${ieee80211n}
d76f5107 MT	162	ignore_broadcast_ssid=${ignore_broadcast_ssid}
	163	ssid=${ssid}
	164
d76f5107	165	# Dump file
25e32463	166	dump_file=$(hostapd_config_dir ${device}/dump)
d76f5107 MT	167
	168	ctrl_interface=/var/run/hostapd
	169	ctrl_interface_group=0
25e32463	170
d76f5107 MT	171	EOF
d76f5107 MT	172
25e32463 MT	173	if isset encryption; then
	174	local encryption_mode=0
	175	case "${encryption}" in
	176	WPA)
	177	encryption_mode=1
	178	;;
	179	WPA2)
	180	encryption_mode=2
	181	;;
	182	WPA/WPA2)
	183	encryption_mode=3
	184	;;
	185	esac
	186
	187	print "# Encryption settings."
	188	print "wpa=${encryption_mode}"
	189	print "wpa_passphrase=${key}"
	190	print "wpa_key_mgmt=WPA-PSK"
	191	print "wpa_pairwise=TKIP"
	192	print "rsn_pairwise=CCMP"
	193	print
	194	fi
	195
d76f5107 MT	196	return ${EXIT_OK}
	197	}
	198
	199	function hostapd_start() {
	200	local device=${1}
	201	shift
	202
	203	assert isset device
	204
	205	local config_dir=$(hostapd_config_dir ${device})
	206	mkdir -p ${config_dir}
	207
	208	local config_file=${config_dir}/config
	209	hostapd_config_write ${device} $@ > ${config_file}
	210
1d08b9b3	211	service_start "hostapd@${device}.service"
d76f5107 MT	212	local ret=$?
	213
	214	case "${ret}" in
	215	0)
	216	log DEBUG "Hostapd was successfully started for '${device}'."
	217	return ${EXIT_OK}
	218	;;
	219	1)
	220	error_log "Could not start hostapd properly for '${device}'."
	221
	222	error_log "Configuration file dump:"
	223	local line
	224	while read line; do
	225	error_log " ${line}"
	226	done < ${config_file}
	227
	228	return ${EXIT_ERROR}
	229	;;
	230	esac
	231	}
	232
	233	function hostapd_stop() {
	234	local device=${1}
d76f5107 MT	235	assert isset device
d76f5107 MT	236
1d08b9b3	237	service_stop "hostapd@${device}.service"
d76f5107 MT	238
	239	rm -rf $(hostapd_config_dir ${device})
	240	}
	241
	242	function hostapd_get_pid() {
	243	local device=${1}
	244
	245	assert isset device
	246
	247	local pid_file="$(hostapd_config_dir ${device})/pid"
	248
	249	[ -e "${pid_file}" ] \|\| return ${EXIT_ERROR}
	250
	251	cat ${pid_file} 2>/dev/null
	252	return ${EXIT_OK}
	253	}
	254
	255	function hostapd_is_running() {
	256	local device=${1}
	257
	258	assert isset device
	259
	260	local pid=$(hostapd_get_pid ${device})
	261
	262	if isset pid && [ -d "/proc/${pid}" ]; then
	263	return ${EXIT_OK}
	264	fi
	265
	266	return ${EXIT_ERROR}
	267	}
f6ee6bb1 AF	268
	269	function wpa_supplicant_config_write() {
	270	local device=${1}
	271	shift
	272
	273	assert isset device
	274
	275	local ssid
	276	local encryption
	277	local key
	278
	279	while [ $# -gt 0 ]; do
	280	case "${1}" in
	281	--ssid=*)
	282	ssid=${1#--ssid=}
	283	;;
	284	--encryption=*)
	285	encryption=${1#--encryption=}
	286	;;
	287	--key=*)
	288	key=${1#--key=}
	289	;;
	290	esac
	291	shift
	292	done
	293
	294	assert isset ssid
	295	assert isset encryption
	296	assert isset key
	297
	298	cat <<EOF
	299	# WPA supplicant configuration for ${device}.
	300	# DO NOT EDIT.
	301
	302	network={
	303	ssid="${ssid}"
	304	proto=RSN
	305	key_mgmt=${encryption}
	306	pairwise=CCMP
	307	group=TKIP
	308	psk="${key}"
	309	}
	310
	311	EOF
	312	}
	313
	314	function wpa_supplicant_config_dir() {
	315	local device=${1}
	316
	317	assert isset device
	318
	319	echo "${RUN_DIR}/wireless/${device}"
	320	}
	321
	322	function wpa_supplicant_start() {
	323	local device=${1}
	324	shift
	325
	326	assert device_exists ${device}
	327
	328	local config_dir=$(wpa_supplicant_config_dir ${device})
	329	mkdir -p ${config_dir}
	330
	331	local config_file=${config_dir}/config
332	wpa_supplicant_config_write ${device} $@ > ${config_file}
333
334	wpa_supplicant -i ${device} -D wext -B -c ${config_file} \
335	-P ${config_dir}/pid
336	}
337
338	function wpa_supplicant_stop() {
339	local device=${1}
340
341	assert isset device
342
343	local pid=$(wpa_supplicant_get_pid ${device})
344
345	if isset pid; then
346	process_kill ${pid}
347	else
348	warning_log "Could not find pid file for wpa_supplicant process running for ${device}."
349	fi
350
351	rm -rf $(wpa_supplicant_config_dir ${device})
352	}
353
354	function wpa_supplicant_get_pid() {
355	local device=${1}
356
357	assert isset device
358
359	local pid_file="$(wpa_supplicant_config_dir ${device})/pid"
360
361	[ -e "${pid_file}" ] \|\| return ${EXIT_ERROR}
362
363	cat ${pid_file} 2>/dev/null
364	return ${EXIT_OK}
365	}
366
367	function wpa_supplicant_is_running() {
368	local device=${1}
369
370	assert isset device
371
372	local pid=$(wpa_supplicant_get_pid ${device})
373
374	if isset pid && [ -d "/proc/${pid}" ]; then
375	return ${EXIT_OK}
376	fi
377
378	return ${EXIT_ERROR}
379	}
380
381	function wpa_supplicant_get_pid() {
382	local zone=${1}
383	shift
384
385
386	}
387
388	function wpa_supplicant_stop() {
389	local zone=${1}
390	shift
391
392	killall wpa_supplicant
393	}