kissbac
/
packages
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
暂无描述
2472 提交
1 分支
目录树: efc8978b91
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'efc8978b91'
${ noResults }
packages/net/openconnect/files/openconnect.sh

openconnect.sh 3.0KB
文件历史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192 
  1. #!/bin/sh

  2. . /lib/functions.sh

  3. . ../netifd-proto.sh

  4. init_proto "$@"

  5. 

  6. proto_openconnect_init_config() {

  7. 	proto_config_add_string "server"

  8. 	proto_config_add_int "port"

  9. 	proto_config_add_string "username"

  10. 	proto_config_add_string "serverhash"

  11. 	proto_config_add_string "authgroup"

  12. 	proto_config_add_string "password"

  13. 	proto_config_add_string "token_mode"

  14. 	proto_config_add_string "token_secret"

  15. 	proto_config_add_string "interface"

  16. 	no_device=1

  17. 	available=1

  18. }

  19. 

  20. proto_openconnect_setup() {

  21. 	local config="$1"

  22. 

  23. 	json_get_vars server port username serverhash authgroup password interface token_mode token_secret

  24. 

  25. 	grep -q tun /proc/modules || insmod tun

  26. 

  27. 	logger -t openconnect "initializing..."

  28. 	serv_addr=

  29. 	for ip in $(resolveip -t 10 "$server"); do

  30. 		( proto_add_host_dependency "$config" "$ip" $interface )

  31. 		serv_addr=1

  32. 	done

  33. 	[ -n "$serv_addr" ] || {

  34. 		logger -t openconnect "Could not resolve server address: '$server'"

  35. 		sleep 60

  36. 		proto_setup_failed "$config"

  37. 		exit 1

  38. 	}

  39. 

  40. 	[ -n "$port" ] && port=":$port"

  41. 

  42. 	cmdline="$server$port -i vpn-$config --non-inter --syslog --script /lib/netifd/vpnc-script"

  43. 

  44. 	# migrate to standard config files

  45. 	[ -f "/etc/config/openconnect-user-cert-vpn-$config.pem" ] && mv "/etc/config/openconnect-user-cert-vpn-$config.pem" "/etc/openconnect/user-cert-vpn-$config.pem"

  46. 	[ -f "/etc/config/openconnect-user-key-vpn-$config.pem" ] && mv "/etc/config/openconnect-user-key-vpn-$config.pem" "/etc/openconnect/user-key-vpn-$config.pem"

  47. 	[ -f "/etc/config/openconnect-ca-vpn-$config.pem" ] && mv "/etc/config/openconnect-ca-vpn-$config.pem" "/etc/openconnect/ca-vpn-$config.pem"

  48. 

  49. 	[ -f /etc/openconnect/user-cert-vpn-$config.pem ] && append cmdline "-c /etc/openconnect/user-cert-vpn-$config.pem"

  50. 	[ -f /etc/openconnect/user-key-vpn-$config.pem ] && append cmdline "--sslkey /etc/openconnect/user-key-vpn-$config.pem"

  51. 	[ -f /etc/openconnect/ca-vpn-$config.pem ] && {

  52. 		append cmdline "--cafile /etc/openconnect/ca-vpn-$config.pem"

  53. 		append cmdline "--no-system-trust"

  54. 	}

  55. 	[ -n "$serverhash" ] && {

  56. 		append cmdline " --servercert=$serverhash"

  57. 		append cmdline "--no-system-trust"

  58. 	}

  59. 	[ -n "$authgroup" ] && append cmdline "--authgroup $authgroup"

  60. 	[ -n "$username" ] && append cmdline "-u $username"

  61. 	[ -n "$password" ] && {

  62. 		umask 077

  63. 		mkdir -p /var/etc

  64. 		pwfile="/var/etc/openconnect-$config.passwd"

  65. 		echo "$password" > "$pwfile"

  66. 		append cmdline "--passwd-on-stdin"

  67. 	}

  68. 

  69. 	[ -n "$token_mode" ] && append cmdline "--token-mode=$token_mode"

  70. 	[ -n "$token_secret" ] && append cmdline "--token-secret=$token_secret"

  71. 

  72. 	proto_export INTERFACE="$config"

  73. 	logger -t openconnect "executing 'openconnect $cmdline'"

  74. 

  75. 	if [ -f "$pwfile" ]; then

  76. 		proto_run_command "$config" /usr/sbin/openconnect-wrapper $pwfile $cmdline

  77. 	else

  78. 		proto_run_command "$config" /usr/sbin/openconnect $cmdline

  79. 	fi

  80. }

  81. 

  82. proto_openconnect_teardown() {

  83. 	local config="$1"

  84. 

  85. 	pwfile="/var/etc/openconnect-$config.passwd"

  86. 

  87. 	rm -f $pwfile

  88. 	logger -t openconnect "bringing down openconnect"

  89. 	proto_kill_command "$config" 2

  90. }

  91. 

  92. add_protocol openconnect