kissbac
/
packages
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
1757 Commits
1 Branch
Tree: 78bf9cc554
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '78bf9cc554'
${ noResults }
packages/net/openconnect/files/openconnect.sh

openconnect.sh 2.2KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. #!/bin/sh

  2. . /lib/functions.sh

  3. . ../netifd-proto.sh

  4. init_proto "$@"

  5. 

  6. proto_openconnect_init_config() {

  7. 	proto_config_add_string "server"

  8. 	proto_config_add_int "port"

  9. 	proto_config_add_string "username"

  10. 	proto_config_add_string "serverhash"

  11. 	proto_config_add_string "authgroup"

  12. 	proto_config_add_string "password"

  13. 	no_device=1

  14. 	available=1

  15. }

  16. 

  17. proto_openconnect_setup() {

  18. 	local config="$1"

  19. 

  20. 	json_get_vars server port username serverhash authgroup password vgroup

  21. 

  22. 	grep -q tun /proc/modules || insmod tun

  23. 

  24. 	logger -t openconnect "initializing..."

  25. 	serv_addr=

  26. 	for ip in $(resolveip -t 10 "$server"); do

  27. 		( proto_add_host_dependency "$config" "$ip" )

  28. 		serv_addr=1

  29. 	done

  30. 	[ -n "$serv_addr" ] || {

  31. 		logger -t openconnect "Could not resolve server address: '$server'"

  32. 		sleep 60

  33. 		proto_setup_failed "$config"

  34. 		exit 1

  35. 	}

  36. 

  37. 	[ -n "$port" ] && port=":$port"

  38. 

  39. 	cmdline="$server$port -i vpn-$config --non-inter --syslog --script /lib/netifd/vpnc-script"

  40. 

  41. 	[ -f /etc/openconnect/user-cert-vpn-$config.pem ] && append cmdline "-c /etc/openconnect/user-cert-vpn-$config.pem"

  42. 	[ -f /etc/openconnect/user-key-vpn-$config.pem ] && append cmdline "--sslkey /etc/openconnect/user-key-vpn-$config.pem"

  43. 	if test -f /etc/openconnect/ca-vpn-$config.pem;then

  44. 		append cmdline "--cafile /etc/openconnect/ca-vpn-$config.pem"

  45. 		append cmdline "--no-system-trust"

  46. 	fi

  47. 	if test -n "$serverhash";then

  48. 		append cmdline " --servercert=$serverhash"

  49. 		append cmdline "--no-system-trust"

  50. 	fi

  51. 	[ -n "$authgroup" ] && append cmdline "--authgroup $authgroup"

  52. 	[ -n "$username" ] && append cmdline "-u $username"

  53. 	[ -n "$password" ] && {

  54. 		umask 077

  55. 		pwfile="/var/run/openconnect-$config.passwd"

  56. 		echo "$password" > "$pwfile"

  57. 		append cmdline "--passwd-on-stdin"

  58. 	}

  59. 

  60. 	proto_export INTERFACE="$config"

  61. 	logger -t openconnect "executing 'openconnect $cmdline'"

  62. 

  63. 	if [ -f "$pwfile" ];then

  64. 		proto_run_command "$config" /usr/sbin/openconnect-wrapper $pwfile $cmdline

  65. 	else

  66. 		proto_run_command "$config" /usr/sbin/openconnect $cmdline

  67. 	fi

  68. }

  69. 

  70. proto_openconnect_teardown() {

  71. 	local config="$1"

  72. 

  73. 	pwfile="/var/run/openconnect-$config.passwd"

  74. 

  75. 	rm -f $pwfile

  76. 	logger -t openconnect "bringing down openconnect"

  77. 	proto_kill_command "$config" 2

  78. }

  79. 

  80. add_protocol openconnect