setnet/setnet-dhcpc

1889 lines
48 KiB
Bash
Executable File

#!/bin/sh
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or (at
# your option) any later version.
#
# This program is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
#
# ----------------------------------------------------------------------
#
# setnet.sh -- view and configure network interfaces
#
# ----------------------------------------------------------------------
#
# Copyleft (C) Vincenzo "KatolaZ" Nicosia (katolaz@freaknet.org) -- (2016-2018)
# Copyleft (C) Nova (novaburst@tilde.team) -- 2021
#
##
## Initialisation
##
VERSION=0.5.1
TOPSTR="setnet-${VERSION} [user: $(id -run)]"
DIALOG="dialog --backtitle \"${TOPSTR}\" --clear "
DIALOG_EXTRA="dialog --backtitle \"${TOPSTR}\" --clear --extra-button --extra-label 'Quit' "
###############################
## ##
## Internal config variables ##
## ##
###############################
##
## Required dependencies. If any of those commands is missing,
## the script will exit
##
HARD_DEPS="ip dhcp-client dialog iw sed grep cat awk which"
##
## Suggested dependencies. The script will issue a warning if any of
## those commands is missing
##
SOFT_DEPS="wpa_cli wpa_supplicant"
##
## Optional dependencies. The script will check if those dependencies
## exist, and if they do, will set a variable HAS_OPTS which contains
## the names of the commands actually found
##
OPT_DEPS="host ping traceroute netstat minpb"
#################################
#####################################
## ##
## HEIGHT/WIDTH of various dialogs ##
## ##
#####################################
##
## Regular windows
##
WINDOW_WIDTH=80
WINDOW_HEIGHT=20
##
## Infoboxes
##
INFO_WIDTH=60
INFO_HEIGHT=15
##
## Forms
##
FORM_WIDTH=60
FORM_HEIGHT=15
##
## Large windows
##
LARGE_WIDTH=100
LARGE_HEIGHT=25
#################################
################################
## ##
## Supported network families ##
## ##
################################
NET_FAMILIES="inet inet6"
#################################
##
## Load the configuration file "setnetrc"
##
load_setnetrc() {
WPA_FILE=""
LOGFILE=""
## If we were given a parameter, that is the rc file to load...
##
if [ $# -ge 1 ]; then
. "$1"
return
fi
##
## Otherwise, let's look in the standard locations, namely:
##
##
## 1) /etc/setnetrc
##
if [ -f /etc/setnetrc ]; then
SETNETRC=/etc/setnetrc
fi
##
## 2) ~/.setnetrc
##
if [ -f ~/.setnetrc ]; then
SETNETRC=~/.setnetrc
fi
if [ -n "${SETNETRC}" ] &&
[ -f "${SETNETRC}" ]; then
. ${SETNETRC}
fi
if [ -z ${WPA_FILE} ]; then
echo "Could not find WPA_FILE defined anywhere. Exiting"
exit 1
fi
if [ -z ${LOGFILE} ]; then
echo "Could not find LOGFILE defined anywhere. Exiting"
exit 1
fi
}
##
## handler called upon exit/signal (NONE HUP INT TRAP TERM QUIT)
##
cleanup() {
rm -f ${TMPFILE}
rm -f ${WPA_PIDFILE}
}
###################
# #
# LOGGING #
# #
###################
##
## log() takes two arguments, namely the label and the message
##
##
log() {
LABEL=$1
MSG=$2
echo "${LABEL}:" "${MSG}" >> "${LOGFILE}"
}
##
## Check whether the shell which called the script is supported, or
## exit. Currently, we support the follwing shells:
##
## - bash
## - busybox
## - dash
## - ksh
## - mksh
## - posh
## - sh
## - yash
##
check_shell() {
##
## FIXME!!! THIS TEST DOES NOT WORK yet...
##
SCRIPT_CMD=$(ps $$ | tail -1 | sed -r -e 's/\ +/\ /g;s/^\ +//g' | cut -d " " -f 5)
CUR_SH=$(basename ${SCRIPT_CMD})
case ${CUR_SH} in
ash|bash|busybox|dash|ksh|mksh|posh|sh|yash|zsh)
log "check_shell" "The current shell (${CUR_SH}) is supported"
return
;;
*)
log "check_shell" "The current shell (${CUR_SH}) is not supported"
echo "The current shell (${CUR_SH}) is not supported. Exiting..."
exit 1
;;
esac
}
##
## Check dependencies
##
## - check if the current shell is supported through check_shell, and
## set the variable CUR_SH accordingly
##
## - each command in HARD_DEPS MUST exist, or the script exits
##
## - each command in SOFT_DEPS SHOULD exist, or the script will log a
## warning
##
## - each command in OPT_DEPS MIGHT exist, and if it does its name is
## included in the variable "HAS_OPTS"
##
check_deps() {
check_shell
## Workaround for zsh
if [ "${CUR_SH}" = "zsh" ]; then
setopt shwordsplit
fi
for h in $(echo ${HARD_DEPS}); do
_W=$(which ${h})
if [ -z "${_W}" ]; then
echo "Error: required command \"${h}\" not found. Exiting..."
exit 1
fi
log "check_deps" "NOTICE: required command '${h}'...found"
done
for s in $(echo ${SOFT_DEPS}); do
_S=$(which ${s})
if [ -z "${_S}" ]; then
log "check_deps" "WARNING: suggested command '${s}' not found! Some functions might not work properly"
fi
done
HAS_OPTS=""
for o in $(echo ${OPT_DEPS}); do
_O=$(which ${o})
if [ -n "${_O}" ]; then
HAS_OPTS=" ${HAS_OPTS} ${o} "
log "check_deps" "NOTICE: optional command '${o}'...found"
else
log "check_deps" "NOTICE: optional command '${o}' not found!"
fi
done
log "check_deps" "HAS_OPTS: \"${HAS_OPTS}\""
}
##
## Set debug mode -- dialog is instructed to dump a trace to the file
## TRACE_FILE provided by the user
##
set_debug() {
TRACE_FILE=$1
DEBUG_MODE="DEBUG"
DIALOG="${DIALOG} --trace ${TRACE_FILE}"
}
##
## Generic function for unimplemented features. It just pops up a
## message-box and returns
##
unimplemented() {
LABEL=$1
eval "${DIALOG} --msgbox 'Sorry! '$LABEL' not implemented, yet!' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2>${TMPFILE}
}
##
## Check whether doas/su/sudo/sup is used or not
##
check_sudo() {
LABEL="$1"
if [ "${USING_SUDO}" = "1" ]; then
eval "${DIALOG} --msgbox '${LABEL}' ${INFO_HEIGHT} ${INFO_WIDTH} " 2>${TMPFILE}
return 1
else
return 0
fi
}
##
## Check the output of a command provided as argument against an
## expected output. Return 1 if the check fails, otherwise return 0
##
chk_out() {
EXP_OUT=$1
shift
log "chk_out" "check output of: $(echo $@)"
ACT_OUT=$($@)
[ "${ACT_OUT}" = "${EXP_OUT}" ] || \
log "chk_out" "Error: got '${ACT_OUT}' when expecting '${EXP_OUT}'" && \
return 1
return 0
}
##
## Check the exit value of a command provided as argument against an
## expected output -- return 1 if the check fails, otherwise return 0
##
chk_exit() {
EXP_EXIT=$1
shift
log "chk_exit" "check exit value of: $(echo $@)"
$@
ACT_EXIT=$?
[ "${ACT_EXIT}" = "${EXP_EXIT}" ] || \
log "chk_exit" "Error: got '${ACT_EXIT}' when expecting '${EXP_EXIT}'" && \
return 1
return 0
}
##########################################
edit_file() {
FILEIN=$1
log "edit_file" "editing file ${FILEIN}"
eval "${DIALOG} --title 'Editing file: ${FILEIN}' \
--editbox ${FILEIN} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" 2> ${TMPFILE}
if [ $? -eq 0 ]; then
log "edit_file" "Copying ${TMPFILE} into ${FILEIN}"
if cp "${TMPFILE}" "${FILEIN}";then
eval "${DIALOG} --msgbox 'File ${FILEIN} saved successfully' \
${INFO_HEIGHT} ${INFO_WIDTH}"
else
eval "${DIALOG} --msgbox 'Error saving file ${FILEIN}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
else
log "edit_file" "Editing of ${FILEIN} aborted..."
eval "${DIALOG} --msgbox 'File ${FILEIN} not saved' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
}
##
## Read all the configured addresses for a given inet family
##
get_addr_family() {
DEVNAME=$1
DEVFAMILY=$2
NUMADDR=$(ip -f "${DEVFAMILY}" addr show "${DEVNAME}" | grep -c "${DEVFAMILY}")
ADDR_STR=""
for i in $(seq ${NUMADDR}); do
ADDR=$(ip -f "${DEVFAMILY}" addr show "${DEVNAME}" | grep "${DEVFAMILY}" | \
tail -n +$i | head -1 | sed -r -e "s:^\ +::g" | cut -d " " -f 2,4,6 |
sed -r -e "s:\ : -- :g")
ADDR_STR="${ADDR_STR}\n${DEVFAMILY}: ${ADDR}\n"
done
}
##
## Show the current configuration of a given device
##
show_device_conf() {
DEVNAME=$1
if [ -z "${DEVNAME}" ]; then
return -1
fi
DEVMAC=$(ip link show "${DEVNAME}" | tail -n +2 | sed -r 's/^\ +//g' | cut -d " " -f 2)
DEV_STATUS=$(ip -o link | cut -d " " -f 2,9 | grep -E "^${DEVNAME}: " | cut -d " " -f 2)
DEVCONF="MAC: ${DEVMAC}\nLINK STATUS: ${DEV_STATUS}\n"
log "show_device_conf" "NET_FAMILIES: \"${NET_FAMILIES}\""
for f in ${NET_FAMILIES}; do
get_addr_family ${DEVNAME} ${f}
log "show_device_conf" "family: ${f} ADDR_STR: \"${ADDR_STR}\""
if [ -z "${ADDR_STR}" ]; then
DEVCONF="${DEVCONF}${f}: Unconfigured\n"
else
DEVCONF="${DEVCONF}${ADDR_STR}"
fi
log "show_device_conf" "DEVCONF: ${DEVCONF}"
done
DEVCONF="${DEVCONF}\n== name servers ==\n$(grep '^nameserver' /etc/resolv.conf)"
eval "${DIALOG} --title 'Current configuration of device: ${DEVNAME}' \
--msgbox '\n\n${DEVCONF}' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} "
return 0
}
config_ip_static() {
DEV_IP=""
DEV_NET=""
DEV_NETMASK="255.255.255.0"
DEV_GW=""
DEV_DNS1=""
DEV_DNS2=""
DEVNAME=$1
eval "${DIALOG} --form 'Set network for device: ${DEVNAME}' \
${FORM_HEIGHT} ${FORM_WIDTH} 6 \
'IP' 1 1 '${DEV_IP}' 1 16 16 16 \
'Network' 2 1 '${DEV_NET}' 2 16 16 16 \
'Netmask' 3 1 '${DEV_NETMASK}' 3 16 16 16 \
'Gateway' 4 1 '${DEV_GW}' 4 16 16 16 \
'Primary DNS' 5 1 '${DEV_DNS1}' 5 16 16 16 \
'Secondary DNS' 6 1 '${DEV_DNS2}' 6 16 16 16 " \
2> ${TMPFILE}
if [ $? -eq 1 ]; then
eval "${DIALOG} --infobox 'Configuration of ${DEVNAME} aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
cat ${TMPFILE} | tr '\n' ' ' >${TMPFILE}_2
read DEV_IP DEV_NET DEV_NETMASK DEV_GW DEV_DNS1 DEV_DNS2 <${TMPFILE}_2
eval "${DIALOG} --msgbox 'Proposed configuration of ${DEVNAME}:\n \
IP: ${DEV_IP}\nNetwork: ${DEV_NET}\nNetmask: ${DEV_NETMASK}\nGateway: \
${DEV_GW}\nDNS1: ${DEV_DNS1}\nDNS2: ${DEV_DNS2}'\
${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
rm -f ${TMPFILE}_2
## Configure IP
chk_exit 0 ip link set "${DEVNAME}" down
chk_exit 0 ip link set "${DEVNAME}" up
chk_exit 0 ip address flush dev "${DEVNAME}"
chk_exit 0 ip address add "${DEV_IP}/${DEV_NETMASK}" dev "${DEVNAME}"
## Configure GW
chk_exit 0 ip route flush dev "${DEVNAME}"
chk_exit 0 ip route add "${DEV_NET}/${DEV_NETMASK}" dev "${DEVNAME}"
chk_exit 0 ip route add default via "${DEV_GW}"
## Configure DNS
mv /etc/resolv.conf /etc/resolv.conf.bak
if [ -n "${DEV_DNS1}" ]; then
echo "nameserver ${DEV_DNS1}" >> /etc/resolv.conf
fi
if [ -n "${DEV_DNS2}" ]; then
echo "nameserver ${DEV_DNS2}" >> /etc/resolv.conf
fi
[ -z "${SUPPRESS}" ] && show_device_conf "${DEVNAME}"
}
config_ip_dhcp() {
DEVNAME=$1
dhcp-client ${DEVNAME} 2>&1 |
eval "${DIALOG} --title 'Running dhcp-client ${DEVNAME}' \
--programbox ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "config_ip_dhcp" "dhcp-client aborted"
fi
[ -z "${SUPPRESS}" ] && show_device_conf ${DEVNAME}
}
configure_ip_address() {
DEVNAME=$1
eval "${DIALOG} --cancel-label 'Up' \
--menu 'Configuring ${DEVNAME}' ${INFO_HEIGHT} ${INFO_WIDTH} 4 \
'DHCP' ''\
'Static' ''" 2>${TMPFILE}
if [ $? -eq 1 ]; then
return
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"Static")
config_ip_static ${DEVNAME}
;;
"DHCP")
config_ip_dhcp ${DEVNAME}
;;
esac
}
wifi_essid_from_mac() {
DEVNAME=$1
W_MAC=$2
W_ESSID="$(wpa_cli -i "${DEVNAME}" scan_results | grep -E "^${W_MAC}" | \
sed -r -e 's/\t/\|/g' | cut -d "|" -f 5)"
log "wifi_essid_from_mac" "Recovered ESSID: ${W_ESSID}"
}
wifi_flags_from_mac() {
DEVNAME=$1
W_MAC=$2
W_FLAGS=$(wpa_cli -i "${DEVNAME}" scan_results | grep -E "^${W_MAC}" | \
sed -r -e 's/\t/\|/g' | cut -d "|" -f 4)
log "wifi_essid_from_mac" "Recovered W_FLAGS: ${W_FLAGS}"
}
wifi_network_list() {
DEVNAME=$1
wpa_cli -i ${DEVNAME} list_networks | tail -n +2 | sed -r -e 's/\t/\|/g' > ${TMPFILE}
NETLIST=""
LAST_IFS=$IFS
IFS="|"
while read NETNUM NETESSID NETBSSID NETFLAGS; do
IS_DIS=$(echo ${NETFLAGS} | sed -r -e 's/\[//g;s/\]//g' | grep -c -i disabled )
if [ ${IS_DIS} -eq 1 ]; then
STATUS="(DIS)"
else
STATUS="(ENAB)"
fi
IS_CUR=$(echo ${NETFLAGS} | sed -r -e 's/\[//g;s/\]//g' | grep -c -i current )
if [ ${IS_CUR} -eq 1 ]; then
STATUS="${STATUS}(CUR)"
fi
NETLIST="${NETLIST} ${NETNUM} \"${NETESSID}-${STATUS}\""
done < ${TMPFILE}
IFS=${LAST_IFS}
log "wifi_network_list" "NETLIST: ${NETLIST}"
}
wpa_authenticate_EAP_TLS() {
DEVNAME=$1
W_ESSID="$2"
## We first add the new network
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate_EAP_PEAP" "NET_NUM: ${NET_NUM}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
## we get the needed information, namely:
##
## - identity
## - server certificate (ca_cert)
## - client certificate
## -
##
eval "${DIALOG} --form 'PEAP parameters:' \
${FORM_HEIGHT} ${FORM_WIDTH} 3 \
'identity' 1 1 '' 1 20 30 80 \
'CA certificate' 2 1 '' 2 20 30 200 \
'client certificate' 3 1 '' 3 20 30 200 \
'private key' 4 1 '' 4 20 30 200 \
'private key password' 5 1 '' 5 30 30 80 \
" 2>${TMPFILE}
if [ $? != "0" ]; then
log "wifi_authenticate_EAP_TLS" "Aborting EAP/TLS authentication"
wpa_cli -i ${DEVNAME} remove_network ${NET_NUM}
return 1
fi
##
## Now, this is not super-clean, but seems necessary to maintain
## POSIX shell compatibility
##
cat ${TMPFILE} | tr '\n' ' ' >${TMPFILE}_2
read EAP_IDENTITY EAP_SERV_CERT EAP_CLIENT_CERT EAP_PRIV_KEY EAP_PRIV_KEY_PWD <${TMPFILE}_2
rm -f ${TMPFILE}_2
## Remove everything from the temp file
echo "" > ${TMPFILE}
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} key_mgmt WPA-EAP
## Set eap to PEAP
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} eap TLS
## Set identity
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} identity "\"${EAP_IDENTITY}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ca_cert "\"${EAP_SERV_CERT}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} client_cert "\"${EAP_CLIENT_CERT}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} private_key "\"${EAP_PRIV_KEY}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} private_key_passwd "\"${EAP_PRIV_KEY_PWD}\""
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" configured\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
return 0
}
wpa_authenticate_EAP_PEAP() {
DEVNAME=$1
W_ESSID="$2"
## We first add the new network
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate_EAP_PEAP" "NET_NUM: ${NET_NUM}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
## we get the needed information, namely:
##
## - identity
## - password
## - server certificate (ca_cert)
##
eval "${DIALOG} --form 'PEAP parameters:' \
${FORM_HEIGHT} ${FORM_WIDTH} 3 \
'identity' 1 1 '' 1 20 30 80 \
'password' 2 1 '' 2 20 30 80 \
'CA certificate' 3 1 '' 3 20 30 80 \
" 2>${TMPFILE}
if [ $? != "0" ]; then
log "wifi_authenticate_EAP_PEAP" "Aborting EAP/PEAP authentication"
wpa_cli -i ${DEVNAME} remove_network ${NET_NUM}
return 1
fi
##
## Now, this is not super-clean, but seems necessary to maintain
## POSIX shell compatibility
##
cat ${TMPFILE} | tr '\n' ' ' >${TMPFILE}_2
read EAP_IDENTITY EAP_PASSWORD EAP_CERT <${TMPFILE}_2
rm -f ${TMPFILE}_2
## Remove identity and password from the temp file
echo "" > ${TMPFILE}
log "wpa_authenticate_EAP_PEAP" "EAP_IDENTITY: ${EAP_IDENTITY}"
log "wpa_authenticate_EAP_PEAP" "EAP_PASSWORD: ${EAP_PASSWORD}"
log "wpa_authenticate_EAP_PEAP" "EAP_CERT: ${EAP_CERT}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} key_mgmt WPA-EAP
## Set eap to PEAP
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} eap PEAP
## Set identity and password
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} identity "\"${EAP_IDENTITY}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} password "\"${EAP_PASSWORD}\""
if [ -n "${EAP_CERT}" ]; then
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ca_cert "\"${EAP_CERT}\""
fi
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" configured\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
return 0
}
wifi_authenticate_NONE() {
DEVNAME="$1"
W_ESSID="$2"
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate" "NET_NUM: ${NET_NUM}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} key_mgmt NONE
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" added\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
return 0
}
wpa_authenticate_PSK() {
DEVNAME=$1
W_ESSID="$2"
PSK=""
PSK_LENGTH=${#PSK}
while [ ${PSK_LENGTH} -le 7 ]; do
eval "${DIALOG} --insecure --inputbox 'Please insert WPA PSK\n(min 8 characters)' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -eq 1 ]; then
eval "${DIALOG} --msgbox 'Network configuration aborted!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return 1
fi
PSK=$(cat ${TMPFILE})
PSK_LENGTH=${#PSK}
done
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate_PSK" "NET_NUM: ${NET_NUM}"
log "wifi_authenticate_PSK" "W_ESSID: ${W_ESSID}"
log "wifi_authenticate_PSK" "PSK: ${PSK}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} psk "\"${PSK}\""
## remove the password from tmpfile
echo "" > ${TMPFILE}
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" added\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
eval "${DIALOG} --msgbox 'Network added successfully' ${INFO_HEIGHT} ${INFO_WIDTH}"
return 0
}
wifi_authenticate_WPA() {
DEVNAME=$1
W_ESSID="$2"
##
## Construct the menu with all the available authentication modes
##
MODES=$(echo $W_FLAGS | sed -r -e 's/\]\[/\n/g;s/\[//g;s/\]//g' | grep -E "^WPA")
log "wifi_authenticate_WPA" "W_ESSID ${W_ESSID}"
log "wifi_authenticate_WPA" "MODES: ${MODES}"
MENU_ITEMS=""
CNT=0
for m in ${MODES}; do
WPA_TYPE=$(echo ${m} | cut -d "-" -f 1)
HAS_PSK=$(echo ${m} | cut -d "-" -f 2 | grep "PSK")
if [ "${HAS_PSK}" != "" ]; then
MENU_ITEMS="${MENU_ITEMS} '${WPA_TYPE}+PSK' 'Pre-shared key' "
fi
HAS_EAP=$(echo ${m} | cut -d "-" -f 2 | grep "EAP")
if [ "${HAS_EAP}" != "" ]; then
MENU_ITEMS="${MENU_ITEMS} '${WPA_TYPE}+EAP/PEAP' 'EAP/PEAP' "
MENU_ITEMS="${MENU_ITEMS} '${WPA_TYPE}+EAP/TLS' 'EAP/TLS' "
fi
done
log "wifi_authenticate_WPA" "MENU_ITEMS: ${MENU_ITEMS}"
eval "${DIALOG} --menu 'Select authentication' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
${MENU_ITEMS} " 2> ${TMPFILE}
if [ $? != "0" ]; then
## conf aborted
log "wifi_authenticate_WPA" "configuration aborted"
return 1;
fi
SEL_MODE=$(cat ${TMPFILE})
log "wifi_authenticate_WPA" "SEL_MODE: ${SEL_MODE}"
case ${SEL_MODE} in
"WPA+EAP/PEAP"|"WPA2+EAP/PEAP")
wpa_authenticate_EAP_PEAP ${DEVNAME} "${W_ESSID}"
;;
"WPA+EAP/TLS"|"WPA2+EAP/TLS")
wpa_authenticate_EAP_TLS ${DEVNAME} "${W_ESSID}"
;;
"WPA+PSK"|"WPA2+PSK")
wpa_authenticate_PSK ${DEVNAME} "${W_ESSID}"
;;
*)
log "wifi_authenticate_WPA" "Error. SEL_MODE '${SEL_MODE}' unsupported"
esac
}
##
## Manage the authentication for a given wifi ESSID
##
## We use wpa_cli to check the type of authentication supported by the
## network, and then we call the corresponding function
##
wifi_authenticate() {
DEVNAME=$1
W_MAC=$2
log "wifi_authenticate" "configuring ${DEVNAME} on ${W_MAC}"
## This will set the variable W_ESSID appropriately
wifi_essid_from_mac ${DEVNAME} ${W_MAC}
## This will set the variable W_FLAGS appropriately
wifi_flags_from_mac ${DEVNAME} ${W_MAC}
log "wifi_authenticate" "configuring essid: ${W_ESSID} on device: ${DEVNAME}"
log "wifi_authenticate" "W_FLAGS: ${W_FLAGS}"
## If the network exists already, we first remove it...
NET_EXISTS=$(wpa_cli -i ${DEVNAME} list_networks | tail -n +2 | sed -r -e 's/\t/\|/g' \
| cut -d "|" -f 2 | grep -c "${W_ESSID}$" )
if [ ${NET_EXISTS} != 0 ]; then
NET_NUM=$(wpa_cli -i ${DEVNAME} list_networks | tail -n +2 | sed -r -e 's/\t/\|/g' \
| cut -d "|" -f 1,2 | grep "${W_ESSID}$" | cut -d "|" -f 1)
STATUS=$(wpa_cli -i ${DEVNAME} remove_network ${NET_NUM})
if [ "${STATUS}" != "OK" ]; then
eval "${DIALOG} --msgbox 'Error while removing existing \
network:\n$essid: {W_ESSID}'" ${INFO_HEIGHT} ${INFO_WIDTH}
return
fi
fi
## Check whether WPA is available
HAS_WPA=$(echo "${W_FLAGS}" | grep -E -c "WPA" )
log "wifi_authenticate" "HAS_WPA: \"${HAS_WPA}\""
### This will configure WPA
if [ "${HAS_WPA}" != "0" ]; then
wifi_authenticate_WPA ${DEVNAME} "${W_ESSID}"
if [ $? = "0" ]; then
log "wifi_authenticate" "WPA configured"
return 0
fi
fi
log "wifi_authenticate" "WPA authentication failed, aborted, or not supported"
### ...otherwise, try to configure an open connection (key_mgmt=NONE)
log "wifi_authenticate" "Trying open (no WPA) configuration..."
wifi_authenticate_NONE "${DEVNAME}" "${W_ESSID}"
if [ $? = "0" ]; then
log "wifi_authenticate" "Open connection configured"
return 0
fi
log "wifi_authenticate" "Open connection not supported"
## No available authentication methods....
eval "${DIALOG} --msgbox 'No supported authentication method for ${W_ESSID}'"
return 1
}
##
## Configure a new connection from a list of available wi-fi networks
##
wifi_add() {
DEVNAME=$1
wpa_cli -i ${DEVNAME} scan
eval "${DIALOG} --timeout 4 --msgbox 'Scanning for networks...' \
${INFO_HEIGHT} ${INFO_WIDTH}"
wpa_cli -i ${DEVNAME} scan_results | grep -E "^[0-9a-f][0-9a-f]:" | \
sed -r -e 's/\t/|/g' |\
sort -t "|" -r -n -k 3 > ${TMPFILE}
wifinets=""
LAST_IFS=$IFS
IFS="|"
while read W_MAC W_FREQ W_STRNGT W_FLAGS W_ESSID; do
log "wifi_add" "W_ESSID: \"${W_ESSID}\""
wifinets="${wifinets} ${W_MAC} \"${W_ESSID} -- ${W_FLAGS}\""
done < ${TMPFILE}
IFS=${LAST_IFS}
log "wifi_add" "Wifi nets: \n${wifinets}\n==="
eval "dialog --menu 'Select a network' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
${wifinets} " 2> ${TMPFILE}
if [ $? -eq 1 ]; then
return
fi
W_MAC=$(cat ${TMPFILE})
wifi_authenticate ${DEVNAME} ${W_MAC}
if [ $? != "0" ]; then
eval "${DIALOG} --msgbox 'Error while configuring ${DEVNAME}' "
fi
return $?
}
wifi_save_file() {
DEVNAME=$1
SAVE_STATUS=$(wpa_cli -i ${DEVNAME} save_config | tail -1 )
if [ "${SAVE_STATUS}" = "OK" ]; then
eval "${DIALOG} --msgbox 'Current configuration dumped to file ${WPA_FILE}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
else
eval "${DIALOG} --msgbox 'Error while saving configuration to file ${WPA_FILE}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
}
wifi_remove() {
DEVNAME=$1
wifi_network_list ${DEVNAME}
eval "${DIALOG} --menu 'Select network to remove' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 ${NETLIST}" \
2> ${TMPFILE}
if [ $? -eq 0 ]; then
## a network has been selected
NETNUM=$(cat ${TMPFILE})
WPA_STATUS=$(wpa_cli -i ${DEVNAME} remove_network ${NETNUM} | tail -1 )
if [ "${WPA_STATUS}" = "OK" ]; then
eval "${DIALOG} --defaultno --yesno \
'Network ${NETNUM} removed\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
return
else
eval "${DIALOG} --msgbox 'Network ${NETNUM} NOT removed' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
else
eval "${DIALOG} --msgbox 'No network removed!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
}
wifi_restart_wpa() {
DEVNAME=$1
WPA_FILE=$2
WPA_PID=$(pidof wpa_supplicant)
if [ -n "wpa_supplicant" ]; then
log "wifi_restart_wpa" "WPA_PID: ${WPA_PID}"
kill -TERM $(pidof wpa_supplicant)
else
log "wifi_restart_wpa" "no wpa_supplicant is running!!!"
fi
wpa_supplicant -B -i ${DEVNAME} -c ${WPA_FILE} -P${WPA_PIDFILE} 2>&1 >/dev/null
WPA_PID=$(pidof wpa_supplicant)
WPA_PID_SAVED=$(cat ${WPA_PIDFILE})
log "wifi_restart_wpa" "WPA_PID: ${WPA_PID} WPA_PID_SAVED: ${WPA_PID_SAVED}"
if [ -n "${WPA_PID}" ] && [ "${WPA_PID}" != "${WPA_PID_SAVED}" ]; then
eval "${DIALOG} --msgbox 'Error restarting wpa_supplicant' \
${INFO_HEIGHT} ${INFO_WIDTH}"
else
eval "${DIALOG} --msgbox 'wpa_supplicant restarted successfully' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
}
##
## wifi_enable: show the list of configured networks, and enable the
## one the used has clicked on
##
wifi_enable() {
DEVNAME=$1
wifi_network_list ${DEVNAME}
eval "${DIALOG} --menu 'Select configured network' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 ${NETLIST}" \
2> ${TMPFILE}
if [ $? -eq 0 ]; then
## a network has been selected
NETNUM=$(cat ${TMPFILE})
WPA_STATUS=$(wpa_cli -i ${DEVNAME} enable ${NETNUM} | tail -1 )
if [ "${WPA_STATUS}" = "OK" ]; then
eval "${DIALOG} --msgbox 'Network ${NETNUM} enabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
eval "${DIALOG} --msgbox 'Network ${NETNUM} NOT enabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
else
eval "${DIALOG} --msgbox 'No network enabled!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
}
wifi_disable() {
DEVNAME=$1
wifi_network_list ${DEVNAME}
eval "${DIALOG} --menu 'Select configured network' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 ${NETLIST}" \
2> ${TMPFILE}
if [ $? -eq 0 ]; then
## a network has been selected
NETNUM=$(cat ${TMPFILE})
WPA_STATUS=$(wpa_cli -i ${DEVNAME} disable ${NETNUM} | tail -1 )
if [ "${WPA_STATUS}" = "OK" ]; then
eval "${DIALOG} --msgbox 'Network ${NETNUM} disabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
eval "${DIALOG} --msgbox 'Network ${NETNUM} NOT disabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
else
eval "${DIALOG} --msgbox 'No network disabled!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
}
config_wifi() {
DEVNAME=$1
while true; do
CUR_NET=$(wpa_cli -i ${DEVNAME} status | grep "^ssid" | cut -d "=" -f 2)
eval "${DIALOG} --cancel-label 'Up' \
--menu 'Configuring ${DEVNAME}\nCurrent network: ${CUR_NET}\n(Current file: ${WPA_FILE})' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 12 \
'Restart' 'Restart wpa_supplicant' \
'Enable' 'Enable a configured network' \
'Disable' 'Disable a configured network' \
'Add' 'Configure a new network' \
'Remove' 'Delete an existing network' \
'Show' 'Show current configuration file' \
'Edit' 'Edit current configuration file' \
'Save' 'Save configuration to file' "\
2>${TMPFILE}
if [ $? = "1" ]; then
return
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"Restart")
## Restart wpa_supplicant
wifi_restart_wpa ${DEVNAME} ${WPA_FILE}
;;
"Enable")
wifi_enable ${DEVNAME}
;;
"Disable")
wifi_disable ${DEVNAME}
;;
"Add")
wifi_add ${DEVNAME}
;;
"Remove")
wifi_remove ${DEVNAME}
;;
"Show")
eval "${DIALOG} --title 'Current file: ${WPA_FILE}' \
--textbox ${WPA_FILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
;;
"Edit")
edit_file ${WPA_FILE}
;;
"Save")
wifi_save_file ${DEVNAME}
;;
esac
done
}
##
## (Re)-Configure
##
configure_wifi() {
DEVNAME=$1
## Automatically Check if the network device is a wifi -- this
## should be robust...
! iw ${DEVNAME} info 2>&1 >/dev/null
IS_WIFI=$?
log "configure_device" "Device ${DEVNAME} -- IS_WIFI: ${IS_WIFI} (automatic)"
if [ "${IS_WIFI}" = "0" ] && \
[ -n "${WIFI_DEVICES}" ]; then
## WIFI_DEVICES is set, hence we check whether the current
## device is in the list
IS_WIFI=$(echo " ${WIFI_DEVICES} " | grep -E -c "(\ ${DEVNAME}\ )")
log "configure_device" "Device ${DEVNAME} -- IS_WIFI: ${IS_WIFI} (config file)"
fi
case ${IS_WIFI} in
1)
config_wifi ${DEVNAME}
;;
*)
## Show a message here
eval "${DIALOG} --msgbox '${DEVNAME} is not a WiFi device... ' \
${INFO_HEIGHT} ${INFO_WIDTH}"
;;
esac
}
set_device_up() {
DEVNAME=$1
chk_exit 0 ip link set ${DEVNAME} up
}
set_device_down() {
DEVNAME=$1
chk_exit 0 ip link set ${DEVNAME} down
}
show_device_menu() {
DEVNAME=$1
while true; do
DEV_STATUS=$(ip -o link | cut -d " " -f 2,9 | grep -E "^${DEVNAME}: " | cut -d " " -f 2)
log "show_device_menu" "DEVNAME: ${DEVNAME} DEV_STATUS: ${DEV_STATUS}"
eval "${DIALOG_EXTRA} --cancel-label 'Up' --menu\
'Device: ${DEVNAME}\nStatus: ${DEV_STATUS}' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 8 \
'View' 'View current configuration' \
'Conf' 'Configure IP Address' \
'WiFi' 'Manage WiFi networking' \
'Start' 'Bring interface up' \
'Stop' 'Put interface down' \
'Restart' 'Restart interface'" 2> ${TMPFILE}
ext=$?
if [ $ext -eq 1 ]; then
return
elif [ $ext -eq 3 ]; then
exit 0
fi
DEV_ACTION=$(cat ${TMPFILE})
case ${DEV_ACTION} in
"View")
show_device_conf ${DEVNAME}
;;
"Conf")
configure_ip_address ${DEVNAME}
;;
"WiFi")
configure_wifi ${DEVNAME}
;;
"Start")
set_device_up ${DEVNAME}
;;
"Stop")
set_device_down ${DEVNAME}
;;
"Restart")
set_device_down ${DEVNAME}
set_device_up ${DEVNAME}
;;
*)
;;
esac
done
}
##
## Show all the available network devices
##
show_devs() {
DEVICES=$(ip link show | awk 'NR % 2 == 1' | cut -d ":" -f 2)
DEVICE_TAGS=""
for i in $DEVICES; do
if [ "$i" != "lo" -o -n "${SHOW_LO}" ]; then
DEVICE_TAGS="${DEVICE_TAGS} $i $i"
fi
done
eval "${DIALOG_EXTRA} --cancel-label 'Up' \
--menu 'Select Interface to configure' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} 4 \
${DEVICE_TAGS}" 2> ${TMPFILE}
return $?
}
dev_config_menu() {
while true; do
show_devs
ext=$?
if [ ${ext} -eq 1 ]; then
return
elif [ ${ext} -eq 3 ]; then
exit 0
fi
DEVNAME=$(cat ${TMPFILE})
show_device_menu ${DEVNAME}
done
}
show_info() {
cat <<EOF > ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
setnet.sh is a simple state-less tool to manage and configure network
interfaces. It is a shell wrapper around the functionalities of
standard command-line tools, including "ip", "dhcp-client", "wpa_cli",
etc., and can be used to configure network connections via
Ethernet/Wi-Fi interfaces.
Both Static and DHCP-based IP configuration are supported.
Setnet supports the configuration of open (no-key), WPA-Personal
(WPA-PSK and WPA2-PSK) and WPA-Enterprise (EAP/PEAP and EPA/TLS) Wi-Fi
connections.
For more information, please visit the webpage of the project:
http://kalos.mine.nu/setnet/
or, better, RTFM.
Please report bugs at:
https://git.devuan.org/devuan-packages/setnet
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
return
}
show_copyright() {
cat <<EOF > ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
--------------------------------------------------------------------
Copyleft (C) Vincenzo "KatolaZ" Nicosia <katolaz@freaknet.org> 2016-2018
Copyleft (C) Nova <novaburst@tilde.team> 2021
--------------------------------------------------------------------
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
return
}
show_license() {
cat <<EOF > ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or (at
your option) any later version.
This program is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
--------------------------------------------------------------------
Copyleft (C) Vincenzo "KatolaZ" Nicosia <katolaz@freaknet.org> 2016-2018
Copyleft (C) Nova <novaburst@tilde.team> 2021
--------------------------------------------------------------------
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
return
}
about_menu() {
while true; do
eval "${DIALOG} --cancel-label 'Up' --menu 'setnet ${VERSION} -- About' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 6 \
'Info' 'General information' \
'Copyleft' 'Copyleft information' \
'License' 'How to distribute this program' " \
2> ${TMPFILE}
if [ $? -eq 1 ];then
return;
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"Info")
show_info
;;
"Copyleft")
show_copyright
;;
"License")
show_license
;;
esac
done
}
notfound() {
CMDNAME=$1
eval "${DIALOG} --msgbox 'Sorry! Commmand ${CMDNAME} not found!'" \
${INFO_HEIGHT} ${INFO_WIDTH}
}
netdiag_DNS() {
DUMPFILE=$1
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== DNS Configuration (/etc/resolv.conf)\n=====\n\n" >> ${DUMPFILE}
cat /etc/resolv.conf >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
NAMESERVERS=$(grep '^nameserver' /etc/resolv.conf)
MSG_STR="Configured name servers in /etc/resolv.conf ==\n\n${NAMESERVERS}"
eval "${DIALOG} --title 'DNS servers' --msgbox '${MSG_STR}' "\
${WINDOW_HEIGHT} ${WINDOW_WIDTH}
}
netdiag_resolver() {
DUMPFILE=$1
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Resolver Configuration (/etc/nsswitch.conf)\n=====\n\n" >> ${DUMPFILE}
grep -v '^#' /etc/nsswitch.conf >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
RESOLVER=$(grep -v '^#' /etc/nsswitch.conf)
eval "${DIALOG} --title 'Resolver configuration (/etc/nsswitch.conf)' \
--msgbox '${RESOLVER}' "\
${WINDOW_HEIGHT} ${WINDOW_WIDTH}
}
netdiag_routes() {
DUMPFILE=$1
HAS_NETSTAT=$(echo "${HAS_OPTS}" | grep -c "\ netstat\ ")
if [ ${HAS_NETSTAT} -ne 1 ]; then
notfound "netstat"
return
fi
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Routing table\n=====\n\n" >> ${DUMPFILE}
netstat -rn >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
ROUTES=$(netstat -rn > ${TMPFILE} )
eval "${DIALOG} --no-collapse --title 'Routing table (netstat -rn) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
netdiag_ARP() {
DUMPFILE=$1
log "netdiag_ARP" "DUMPFILE: '${DUMPFILE}'"
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== ARP table\n=====\n\n" >> "${DUMPFILE}"
cat /proc/net/arp >> "${DUMPFILE}"
echo "==================================" >> ${DUMPFILE}
return 0
fi
# Dump to dialog
ARP=$(cat /proc/net/arp >${TMPFILE})
eval "${DIALOG} --no-collapse --title 'ARP table (/proc/net/arp) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
netdiag_connections() {
DUMPFILE=$1
HAS_NETSTAT=$(echo "${HAS_OPTS}" | grep -c "\ netstat\ ")
if [ ${HAS_NETSTAT} -ne 1 ]; then
notfound "netstat"
return
fi
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Active Network Connections\n=====\n\n" >> ${DUMPFILE}
netstat -tnp | sed -r -e 's/$/\n/g' >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
SERV=$(netstat -tnp | sed -r -e 's/$/\n/g' > ${TMPFILE})
eval "${DIALOG} --no-collapse "\
" --title 'Active network connections (netstat -tnp) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
netdiag_services() {
DUMPFILE=$1
HAS_NETSTAT=$(echo "${HAS_OPTS}" | grep -c "\ netstat\ ")
if [ ${HAS_NETSTAT} -ne 1 ]; then
notfound "netstat"
return
fi
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Active network services\n=====\n\n" >> ${DUMPFILE}
netstat -ltnp | sed -r -e 's/$/\n/g' >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
SERV=$(netstat -ltnp | sed -r -e 's/$/\n/g' > ${TMPFILE})
eval "${DIALOG} --no-collapse "\
" --title 'Active network services (netstat -ltnp) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
netdiag_ping() {
HAS_PING=$(echo "${HAS_OPTS}" | grep -E -c "\ ping\ ")
if [ ${HAS_PING} -ne 1 ]; then
notfound "ping"
return
fi
eval "${DIALOG} --insecure --inputbox 'Host or IP to ping:' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -ne 0 ]; then
eval "${DIALOG} --msgbox 'Ping Aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
PINGIP=$(cat ${TMPFILE})
ping -c 5 ${PINGIP} 2>&1 |\
eval "${DIALOG} --title 'Ping ${PINGIP}' \
--programbox ${LARGE_HEIGHT} ${LARGE_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "netdiag_ping" "ping aborted"
fi
fi
}
netdiag_traceroute() {
HAS_TRACERT=$(echo "${HAS_OPTS}" | grep -c "\ traceroute\ ")
if [ ${HAS_TRACERT} -ne 1 ]; then
notfound "traceroute"
return
fi
eval "${DIALOG} --insecure --inputbox 'Host or IP to trace:' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -ne 0 ]; then
eval "${DIALOG} --msgbox 'Traceroute Aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
TRACEIP=$(cat ${TMPFILE})
traceroute ${TRACEIP} 2>&1 | eval "${DIALOG} --title 'Traceroute ${TRACEIP}' \
--programbox ${LARGE_HEIGHT} ${LARGE_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "netdiag_traceroute" "traceroute aborted"
fi
fi
}
netdiag_lookup() {
HAS_HOST=$(echo "${HAS_OPTS}" | grep -c "\ host\ ")
if [ ${HAS_HOST} -ne 1 ]; then
notfound "host"
return
fi
eval "${DIALOG} --insecure --inputbox 'Hostname or IP to lookup:' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -ne 0 ]; then
eval "${DIALOG} --msgbox 'DNS lookup aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
QUERYIP=$(cat ${TMPFILE})
host ${QUERYIP} 2>&1 |\
eval "${DIALOG} --title 'host ${QUERYIP}' \
--programbox ${LARGE_HEIGHT} ${LARGE_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "netdiag_ping" "host lookup aborted"
fi
fi
}
netdiag_devices() {
DUMPFILE=$1
if [ -n "${DUMPFILE}" ]; then
printf "\n=====\n== Network Devices\n=====\n\n" >> ${DUMPFILE}
ip addr >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
}
##
## Main menu for network diagnostics
##
netdiag_menu() {
while true; do
eval "${DIALOG} --cancel-label 'Up' --menu 'Network diagnostics' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
'ARP' 'Show ARP table' \
'Connections' 'List active network connections' \
'DNS' 'List DNS servers' \
'Lookup' 'DNS Lookup' \
'Ping' 'Ping a host' \
'Resolver' 'Show resolver configuration' \
'Routes' 'Show routing table' \
'Services' 'List active network daemons' \
'Traceroute' 'Show the route to a host' " \
2> ${TMPFILE}
if [ $? -eq 1 ];then
return;
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"ARP")
netdiag_ARP
;;
"Connections")
netdiag_connections
;;
"DNS")
netdiag_DNS
;;
"Ping")
netdiag_ping
;;
"Lookup")
netdiag_lookup
;;
"Resolver")
netdiag_resolver
;;
"Routes")
netdiag_routes
;;
"Services")
netdiag_services
;;
"Traceroute")
netdiag_traceroute
;;
esac
done
}
dump_file() {
CONF=$1
log "dump_file" "CONF: ${CONF}"
DUMPFILE="/tmp/network_dump.txt"
eval "${DIALOG} --fselect ${DUMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" \
2>${TMPFILE}
if [ $? -eq 0 ]; then
SEL_FILE=$(cat ${TMPFILE})
while [ -d "${SEL_FILE}" ]; do
eval "${DIALOG} --fselect ${SEL_FILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" \
2>${TMPFILE}
if [ $? -eq 0 ]; then
SEL_FILE=$(cat ${TMPFILE})
else
eval "${DIALOG} --msgbox 'Dump aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
done
## The dump starts here....
DUMPFILE=${SEL_FILE}
truncate -s 0 ${DUMPFILE}
echo "===== setnet ${VERSION}" >> ${DUMPFILE}
echo "===== Date: $(date)" >> ${DUMPFILE}
echo "===== Network configuration dump: ${CONF} " >> ${DUMPFILE}
for c in ${CONF}; do
eval "netdiag_${c} \"${DUMPFILE}\""
done
else
eval "${DIALOG} --msgbox 'Dump aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
eval "${DIALOG} --msgbox 'Status dumped to ${DUMPFILE}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
}
dump_pastebin() {
DUMP_CONF=$1
minpb -p ${DUMP_CONF} https://ttm.sh
}
dump_menu() {
eval "${DIALOG} --checklist 'Select conf to dump' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
'ARP' 'ARP table' on \
'devices' 'Device configuration' on \
'DNS' 'DNS configuration' on \
'resolver' 'System resolver configuration' on \
'routes' 'Routing table' on \
'connections' 'Active network connections' on \
'services' 'Active network services' on " 2> ${TMPFILE}
if [ $? -ne 0 ]; then
return
fi
DUMP_CONF=$(cat ${TMPFILE})
eval "${DIALOG} --cancel-label 'Up' \
--menu 'Dump configuration to:' \
${INFO_HEIGHT} ${INFO_WIDTH} 6 \
'File' 'Dump to file' \
'Pastebin' 'Dump to pastebin'" \
2> ${TMPFILE}
if [ $? -eq 1 ];then
return;
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"File")
dump_file "${DUMP_CONF}"
;;
"Pastebin")
dump_pastebin "${DUMP_CONF}"
;;
esac
}
show_toplevel() {
log "show_toplevel" "TMPFILE: ${TMPFILE}"
eval "${DIALOG} --cancel-label 'Quit' --menu 'Main Menu' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 6 \
'Setup' 'Setup interfaces' \
'Info' 'Network diagnostics' \
'Dump' 'Dump current network status' \
'Log' 'View setnet log' \
'About' 'License & Copyleft'" 2> ${TMPFILE}
return $?
}
show_help() {
SCRIPTNAME=$1
echo "Usage: ${SCRIPTNAME} [OPTION]"
echo "Options:"
printf "\t -c cfg_file\tLoad configuration from cfg_file.\n"
printf "\t -c trace_file\tDump dialog debug trace to trace_file.\n"
printf "\t -v\t\tPrint version number and exit.\n"
printf "\t -h\t\tShow this help.\n"
}
show_version() {
SCRIPTNAME=$1
echo "${SCRIPTNAME} -- version ${VERSION}"
echo "Copyleft (C) Vincenzo \"KatolaZ\" Nicosia (katolaz@freaknet.org) -- 2016-2018"
echo "Copyleft (C) Nova (novaburst@tilde.team) -- 2021"
echo "This is free software. You can use and redistribute it under the "
echo "terms of the GNU General Public Licence version 3 or (at your option)"
echo "any later version."
echo
echo "YOU USE THIS SOFTWARE AT YOUR OWN RISK."
echo "There is ABSOLUTELY NO WARRANTY; not even for MERCHANTABILITY or"
echo "FITNESS FOR A PARTICULAR PURPOSE."
}
show_disclaimer() {
cat <<EOF > ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
Copyleft (C) KatolaZ (katolaz@freaknet.org) 2016-2018
Copyleft (C) Nova (novaburst@tilde.team) - 2021
-+- This is a beta release of setnet.sh -+-
THIS IS FREE SOFTWARE
YOU CAN USE AND DISTRIBUTE IT UNDER THE
TERMS OF THE GNU GENERAL PUBLIC LICENSE
USE THIS SOFTWARE AT YOUR OWN RISK
There is ABSOLUTELY NO WARRANTY; not even for
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE
See "About" for more information about
your right and distribution terms
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} 23 60"
return
}
initialise() {
TMPFILE=$( (tempfile) 2>/dev/null) || TMPFILE=/tmp/setnet_$$
WPA_PIDFILE=$( (tempfile) 2>/dev/null) || WPA_PIDFILE=/tmp/setnet_wpapid_$$
trap cleanup 0 HUP INT TRAP TERM QUIT
if [ -z ${TRUNCATE_LOG} ] || \
[ ${TRUNCATE_LOG} = "yes" ] || \
[ ${TRUNCATE_LOG} = "YES" ]; then
truncate -s 0 ${LOGFILE}
fi
chmod 600 ${LOGFILE}
log "initialise" "Starting afresh on $(date)"
log "initialise" "Using TMPFILE: ${TMPFILE}"
log "initialise" "Using LOGFILE: ${LOGFILE}"
if [ -n ${DEBUG_MODE} ]; then
log "initialise" "Running in debug mode -- dumping dialog trace to ${TRACE_FILE}"
fi
EUID=$(id -ru)
if [ "${EUID}" = "0" ] &&
[ -n "${SUDO_UID}" ] && [ "${EUID}" != "${SUDO_UID}" ]; then
USING_SUDO="1"
elif [ "${EUID}" = "0" ] && [ -n "${SUP_UID}" ] && [ "${EUID}" != "${SUP_UID}" ]; then
USING_SUDO="1"
else
USING_SUDO="0"
fi
log "initialise" "EUID: ${EUID}"
log "initialise" "SUDO_UID: ${SUDO_UID}"
log "initialise" "SUP_UID: ${SUP_UID}"
log "initialise" "USING_SUDO: ${USING_SUDO}"
SUPPRESS=""
if [ -n "${SUPPRESS_INFO}" ] &&
[ "${SUPPRESS_INFO}" != "no" ] && [ "${SUPPRESS_INFO}" != "NO" ]; then
SUPPRESS="1"
fi
if [ -n "${SHOW_LO}" ] && [ "${SHOW_LO}" != "no" ] && [ "${SHOW_LO}" != "NO" ]; then
SHOW_LO="1"
else
SHOW_LO=""
fi
log "initialise" "SUPPRESS: ${SUPPRESS}"
}
log_show() {
eval "${DIALOG} --cr-wrap --title 'setnet log file (${LOGFILE})'\
--textbox ${LOGFILE} \
${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
}
main() {
log "main" "SUPPRESS: ${SUPPRESS}"
[ -z "${SUPPRESS}" ] && show_disclaimer
SETNETRC=$(realpath ${SETNETRC})
log "main" "Using config file \"${SETNETRC}\""
WPA_FILE=$(realpath ${WPA_FILE})
log "main" "Using WPA config file \"${WPA_FILE}\""
LOFGILE=$(realpath ${LOGFILE})
log "main" "Using log file \"${LOGFILE}\""
while true; do
show_toplevel
if [ $? -eq 1 ]; then
cleanup
exit 1
fi
log "main" "${TMPFILE}"
ACTION=$(cat ${TMPFILE})
log "main" "ACTION: ${ACTION}"
case ${ACTION} in
"Setup")
dev_config_menu
;;
"Info")
netdiag_menu
;;
"Dump")
dump_menu
;;
"Log")
log_show
;;
"About")
about_menu
;;
esac
done
}
##
## The script starts here
##
##
## Get command-line arguments
##
SETNETRC=""
while getopts ":c:d:hv" opt; do
case $opt in
c)
SETNETRC=$(realpath ${OPTARG})
;;
h)
show_help $(basename $0)
exit 1
;;
v)
show_version $(basename $0)
exit 1
;;
d)
TRACE_FILE=$(realpath ${OPTARG})
set_debug ${TRACE_FILE}
;;
\?)
echo "Invalid option: -${OPTARG}"
exit 1
;;
:)
echo "Option -${OPTARG} requires an argument"
exit 1
;;
esac
done
##
## Load the configuration file
##
load_setnetrc ${SETNETRC}
##
## Init stuff
##
initialise
##
## Check dependencies. If we are missing someting essential, then exit.
##
check_deps
##
## This is the main loop
##
main