kissbac
/
packages
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Activity
Ei kuvausta
1905 Commitit
1 Haara
Puu: f2fb6217ab
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'f2fb6217ab'
${ noResults }
packages/net/openconnect/files/openconnect.sh

openconnect.sh 2.3KB
Historia Raaka

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. #!/bin/sh

  2. . /lib/functions.sh

  3. . ../netifd-proto.sh

  4. init_proto "$@"

  5. 

  6. proto_openconnect_init_config() {

  7. 	proto_config_add_string "server"

  8. 	proto_config_add_int "port"

  9. 	proto_config_add_string "username"

  10. 	proto_config_add_string "serverhash"

  11. 	proto_config_add_string "authgroup"

  12. 	proto_config_add_string "password"

  13. 	no_device=1

  14. 	available=1

  15. }

  16. 

  17. proto_openconnect_setup() {

  18. 	local config="$1"

  19. 

  20. 	json_get_vars server port username serverhash authgroup password vgroup token_mode token_secret

  21. 

  22. 	grep -q tun /proc/modules || insmod tun

  23. 

  24. 	logger -t openconnect "initializing..."

  25. 	serv_addr=

  26. 	for ip in $(resolveip -t 10 "$server"); do

  27. 		( proto_add_host_dependency "$config" "$ip" )

  28. 		serv_addr=1

  29. 	done

  30. 	[ -n "$serv_addr" ] || {

  31. 		logger -t openconnect "Could not resolve server address: '$server'"

  32. 		sleep 60

  33. 		proto_setup_failed "$config"

  34. 		exit 1

  35. 	}

  36. 

  37. 	[ -n "$port" ] && port=":$port"

  38. 

  39. 	cmdline="$server$port -i vpn-$config --non-inter --syslog --script /lib/netifd/vpnc-script"

  40. 

  41. 	[ -f /etc/openconnect/user-cert-vpn-$config.pem ] && append cmdline "-c /etc/openconnect/user-cert-vpn-$config.pem"

  42. 	[ -f /etc/openconnect/user-key-vpn-$config.pem ] && append cmdline "--sslkey /etc/openconnect/user-key-vpn-$config.pem"

  43. 	[ -f /etc/openconnect/ca-vpn-$config.pem ] && {

  44. 		append cmdline "--cafile /etc/openconnect/ca-vpn-$config.pem"

  45. 		append cmdline "--no-system-trust"

  46. 	}

  47. 	[ -n "$serverhash" ] && {

  48. 		append cmdline " --servercert=$serverhash"

  49. 		append cmdline "--no-system-trust"

  50. 	}

  51. 	[ -n "$authgroup" ] && append cmdline "--authgroup $authgroup"

  52. 	[ -n "$username" ] && append cmdline "-u $username"

  53. 	[ -n "$password" ] && {

  54. 		umask 077

  55. 		pwfile="/var/run/openconnect-$config.passwd"

  56. 		echo "$password" > "$pwfile"

  57. 		append cmdline "--passwd-on-stdin"

  58. 	}

  59. 

  60. 	[ -n "$token_mode" ] && append cmdline "--token-mode=$token_mode"

  61. 	[ -n "$token_secret" ] && append cmdline "--token-secret=$token_secret"

  62. 

  63. 	proto_export INTERFACE="$config"

  64. 	logger -t openconnect "executing 'openconnect $cmdline'"

  65. 

  66. 	if [ -f "$pwfile" ]; then

  67. 		proto_run_command "$config" /usr/sbin/openconnect-wrapper $pwfile $cmdline

  68. 	else

  69. 		proto_run_command "$config" /usr/sbin/openconnect $cmdline

  70. 	fi

  71. }

  72. 

  73. proto_openconnect_teardown() {

  74. 	local config="$1"

  75. 

  76. 	pwfile="/var/run/openconnect-$config.passwd"

  77. 

  78. 	rm -f $pwfile

  79. 	logger -t openconnect "bringing down openconnect"

  80. 	proto_kill_command "$config" 2

  81. }

  82. 

  83. add_protocol openconnect