#!/bin/sh
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or (at
# your option) any later version.
#
# This program is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see .
#
# ----------------------------------------------------------------------
#
# setnet.sh -- view and configure network interfaces
#
# ----------------------------------------------------------------------
#
# Copyleft (C) Vincenzo "KatolaZ" Nicosia (katolaz@freaknet.org) --
# (2016, 2017)
#
#
##
## Initialisation
##
VERSION=0.4
TOPSTR="setnet-${VERSION} [user: $(id -run)]"
DIALOG="dialog --backtitle \"${TOPSTR}\" --clear "
DIALOG_EXTRA="dialog --backtitle \"${TOPSTR}\" --clear --extra-button --extra-label 'Quit' "
###############################
## ##
## Internal config variables ##
## ##
###############################
##
## Required dependencies. If any of those commands is missing,
## the script will exit
##
HARD_DEPS="ip dhclient dialog iw sed grep cat awk which"
##
## Suggested dependencies. The script will issue a warning if any of
## those commands is missing
##
SOFT_DEPS="wpa_cli wpa_supplicant"
##
## Optional dependencies. The script will check if those dependencies
## exist, and if they do, will set a variable HAS_OPTS which contains
## the names of the commands actually found
##
OPT_DEPS="host ping traceroute netstat pastebinit"
#################################
#####################################
## ##
## HEIGHT/WIDTH of various dialogs ##
## ##
#####################################
##
## Regular windows
##
WINDOW_WIDTH=75
WINDOW_HEIGHT=20
##
## Infoboxes
##
INFO_WIDTH=40
INFO_HEIGHT=10
##
## Forms
##
FORM_WIDTH=60
FORM_HEIGHT=12
##
## Large windows
##
LARGE_WIDTH=80
LARGE_HEIGHT=20
#################################
################################
## ##
## Supported network families ##
## ##
################################
NET_FAMILIES="inet inet6"
#################################
##
## Load the configuration file "setnetrc"
##
##function
load_setnetrc(){
WPA_FILE=""
LOGFILE=""
## If we were given a parameter, that is the rc file to load...
##
if [ $# -ge 1 ]; then
. "$1"
return
fi
##
## Otherwise, let's look in the standard locations, namely:
##
##
## 1) /etc/setnetrc
##
if [ -f /etc/setnetrc ]; then
SETNETRC=/etc/setnetrc
fi
##
## 2) ~/.setnetrc
##
if [ -f ~/.setnetrc ]; then
SETNETRC=~/.setnetrc
fi
if [ -n "${SETNETRC}" ] &&
[ -f "${SETNETRC}" ]; then
. ${SETNETRC}
fi
if [ -z ${WPA_FILE} ]; then
echo "Could not find WPA_FILE defined anywhere. Exiting"
exit 1
fi
if [ -z ${LOGFILE} ]; then
echo "Could not find LOGFILE defined anywhere. Exiting"
exit 1
fi
}
##
## handler called upon exit/signal (NONE HUP INT TRAP TERM QUIT)
##
##function
cleanup(){
rm -f ${TMPFILE}
rm -f ${WPA_PIDFILE}
}
###################
# #
# LOGGING #
# #
###################
##
## log() takes two arguments, namely the label and the message
##
##
##function
log(){
##local
LABEL=$1
##local
MSG=$2
echo "${LABEL}:" "${MSG}" >> "${LOGFILE}"
}
##
## Check whether the shell which called the script is supported, or
## exit. Currently, we support the follwing shells:
##
## - bash
## - busybox
## - dash
## - ksh
## - mksh
## - posh
## - sh
## - yash
##
##function
check_shell(){
##
## FIXME!!! THIS TEST DOES NOT WORK yet...
##
SCRIPT_CMD=$(ps $$ | tail -1 | sed -r -e 's/\ +/\ /g;s/^\ +//g' | cut -d " " -f 5)
CUR_SH=$(basename ${SCRIPT_CMD})
case ${CUR_SH} in
ash|bash|busybox|dash|ksh|mksh|posh|sh|yash|zsh)
log "check_shell" "The current shell (${CUR_SH}) is supported"
return
;;
*)
log "check_shell" "The current shell (${CUR_SH}) is not supported"
echo "The current shell (${CUR_SH}) is not supported. Exiting..."
exit 1
;;
esac
}
##
## Check dependencies
##
## - check if the current shell is supported through check_shell, and
## set the variable CUR_SH accordingly
##
## - each command in HARD_DEPS MUST exist, or the script exits
##
## - each command in SOFT_DEPS SHOULD exist, or the script will log a
## warning
##
## - each command in OPT_DEPS MIGHT exist, and if it does its name is
## included in the variable "HAS_OPTS"
##
##function
check_deps(){
check_shell
## Workaround for zsh
if [ "${CUR_SH}" = "zsh" ]; then
setopt shwordsplit
fi
for h in $(echo ${HARD_DEPS}); do
_W=$(which ${h})
if [ -z "${_W}" ]; then
echo "Error: required command \"${h}\" not found. Exiting..."
exit 1
fi
log "check_deps" "NOTICE: required command '${h}'...found"
done
for s in $(echo ${SOFT_DEPS}); do
_S=$(which ${s})
if [ -z "${_S}" ]; then
log "check_deps" "WARNING: suggested command '${s}' not found! Some functions might not work properly"
fi
done
HAS_OPTS=""
for o in $(echo ${OPT_DEPS}); do
_O=$(which ${o})
if [ -n "${_O}" ]; then
HAS_OPTS=" ${HAS_OPTS} ${o} "
log "check_deps" "NOTICE: optional command '${o}'...found"
else
log "check_deps" "NOTICE: optional command '${o}' not found!"
fi
done
log "check_deps" "HAS_OPTS: \"${HAS_OPTS}\""
}
##
## Set debug mode -- dialog is instructed to dump a trace to the file
## TRACE_FILE provided by the user
##
##function
set_debug(){
TRACE_FILE=$1
DEBUG_MODE="DEBUG"
DIALOG="${DIALOG} --trace ${TRACE_FILE}"
}
##
## Generic function for unimplemented features. It just pops up a
## message-box and returns
##
##function
unimplemented(){
LABEL=$1
eval "${DIALOG} --msgbox 'Sorry! '$LABEL' not implemented, yet!' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2>${TMPFILE}
}
##function
check_sudo(){
LABEL="$1"
if [ "${USING_SUDO}" = "1" ]; then
eval "${DIALOG} --msgbox '${LABEL}' ${INFO_HEIGHT} ${INFO_WIDTH} " 2>${TMPFILE}
return 1
else
return 0
fi
}
##
## Check the output of a command provided as argument against an
## expected output. Return 1 if the check fails, otherwise return 0
##
##function
chk_out(){
EXP_OUT=$1
shift
log "chk_out" "check output of: $(echo $@)"
ACT_OUT=$($@)
[ "${ACT_OUT}" = "${EXP_OUT}" ] || \
log "chk_out" "Error: got '${ACT_OUT}' when expecting '${EXP_OUT}'" && \
return 1
return 0
}
##
## Check the exit value of a command provided as argument against an
## expected output -- return 1 if the check fails, otherwise return 0
##
##function
chk_exit(){
EXP_EXIT=$1
shift
log "chk_exit" "check exit value of: $(echo $@)"
$@
ACT_EXIT=$?
[ "${ACT_EXIT}" = "${EXP_EXIT}" ] || \
log "chk_exit" "Error: got '${ACT_EXIT}' when expecting '${EXP_EXIT}'" && \
return 1
return 0
}
##########################################
##function
edit_file(){
##local
FILEIN=$1
log "edit_file" "editing file ${FILEIN}"
eval "${DIALOG} --title 'Editing file: ${FILEIN}' \
--editbox ${FILEIN} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" 2> ${TMPFILE}
if [ $? -eq 0 ]; then
log "edit_file" "Copying ${TMPFILE} into ${FILEIN}"
if cp "${TMPFILE}" "${FILEIN}"
then
eval "${DIALOG} --msgbox 'File ${FILEIN} saved successfully' \
${INFO_HEIGHT} ${INFO_WIDTH}"
else
eval "${DIALOG} --msgbox 'Error saving file ${FILEIN}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
else
log "edit_file" "Editing of ${FILEIN} aborted..."
eval "${DIALOG} --msgbox 'File ${FILEIN} not saved' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
}
##
## Read all the configured addresses for a given inet family
##
##function
get_addr_family(){
##local
DEVNAME=$1
##local
DEVFAMILY=$2
NUMADDR=$(ip -f "${DEVFAMILY}" addr show "${DEVNAME}" | grep -c "${DEVFAMILY}")
ADDR_STR=""
for i in $(seq ${NUMADDR}); do
ADDR=$(ip -f "${DEVFAMILY}" addr show "${DEVNAME}" | grep "${DEVFAMILY}" | \
tail -n +$i | head -1 | sed -r -e "s:^\ +::g" | cut -d " " -f 2,4,6 |\
sed -r -e "s:\ : -- :g")
ADDR_STR="${ADDR_STR}\n${DEVFAMILY}: ${ADDR}\n"
done
}
##
## Show the current configuration of a given device
##
##function
show_device_conf(){
##local
DEVNAME=$1
if [ -z "${DEVNAME}" ]; then
return -1
fi
DEVMAC=$(ip link show "${DEVNAME}" | tail -n +2 | sed -r 's/^\ +//g' | cut -d " " -f 2)
DEV_STATUS=$(ip -o link | cut -d " " -f 2,9 | grep -E "^${DEVNAME}: " | cut -d " " -f 2)
DEVCONF="MAC: ${DEVMAC}\nLINK STATUS: ${DEV_STATUS}\n"
log "show_device_conf" "NET_FAMILIES: \"${NET_FAMILIES}\""
for f in ${NET_FAMILIES}; do
get_addr_family ${DEVNAME} ${f}
log "show_device_conf" "family: ${f} ADDR_STR: \"${ADDR_STR}\""
if [ -z "${ADDR_STR}" ]; then
DEVCONF="${DEVCONF}${f}: Unconfigured\n"
else
DEVCONF="${DEVCONF}${ADDR_STR}"
fi
log "show_device_conf" "DEVCONF: ${DEVCONF}"
done
DEVCONF="${DEVCONF}\n== name servers ==\n$(grep '^nameserver' /etc/resolv.conf)"
eval "${DIALOG} --title 'Current configuration of device: ${DEVNAME}' \
--msgbox '\n\n${DEVCONF}' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} "
return 0
}
##function
config_ip_static(){
##local
DEV_IP="192.168.1.2"
##local
DEV_NET="192.168.1.0"
##local
DEV_NETMASK="255.255.255.0"
##local
DEV_GW="192.168.1.1"
##local
DEV_DNS1="208.67.222.222"
##local
DEV_DNS2="208.67.220.220"
##local
DEVNAME=$1
eval "${DIALOG} --form 'Set network for device: ${DEVNAME}' \
${FORM_HEIGHT} ${FORM_WIDTH} 6 \
'IP' 1 1 '${DEV_IP}' 1 16 16 16 \
'Network' 2 1 '${DEV_NET}' 2 16 16 16 \
'Netmask' 3 1 '${DEV_NETMASK}' 3 16 16 16 \
'Gateway' 4 1 '${DEV_GW}' 4 16 16 16 \
'Primary DNS' 5 1 '${DEV_DNS1}' 5 16 16 16 \
'Secondary DNS' 6 1 '${DEV_DNS2}' 6 16 16 16 " \
2> ${TMPFILE}
if [ $? -eq 1 ]; then
eval "${DIALOG} --infobox 'Configuration of ${DEVNAME} aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
cat ${TMPFILE} | tr '\n' ' ' >${TMPFILE}_2
read DEV_IP DEV_NET DEV_NETMASK DEV_GW DEV_DNS1 DEV_DNS2 <${TMPFILE}_2
eval "${DIALOG} --msgbox 'Proposed configuration of ${DEVNAME}:\n \
IP: ${DEV_IP}\nNetwork: ${DEV_NET}\nNetmask: ${DEV_NETMASK}\nGateway: \
${DEV_GW}\nDNS1: ${DEV_DNS1}\nDNS2: ${DEV_DNS2}'\
${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
rm -f ${TMPFILE}_2
## Configure IP
chk_exit 0 ip link set "${DEVNAME}" down
chk_exit 0 ip link set "${DEVNAME}" up
chk_exit 0 ip address flush dev "${DEVNAME}"
chk_exit 0 ip address add "${DEV_IP}/${DEV_NETMASK}" dev "${DEVNAME}"
## Configure GW
#if [ -n "${DEV_GW}" ]; then
chk_exit 0 ip route flush dev "${DEVNAME}"
chk_exit 0 ip route add "${DEV_NET}/${DEV_NETMASK}" dev "${DEVNAME}"
chk_exit 0 ip route add default via "${DEV_GW}"
#fi
## Configure DNS
#if [ -n "${DEV_DNS1}" ] ||
# [ -n "${DEV_DNS1}" ]; then
mv /etc/resolv.conf /etc/resolv.conf.bak
if [ -n "${DEV_DNS1}" ]; then
echo "nameserver ${DEV_DNS1}" >> /etc/resolv.conf
fi
if [ -n "${DEV_DNS2}" ]; then
echo "nameserver ${DEV_DNS2}" >> /etc/resolv.conf
fi
[ -z "${SUPPRESS}" ] && show_device_conf "${DEVNAME}"
#fi
}
##function
config_ip_dhcp(){
##local
DEVNAME=$1
##eval "${DIALOG} --msgbox 'Running \"dhclient ${DEVNAME}\"' ${INFO_HEIGHT} ${INFO_WIDTH}"
dhclient -r ${DEVNAME} 2>/dev/null
dhclient -v ${DEVNAME} 2>&1 |
eval "${DIALOG} --title 'Running dhclient ${DEVNAME}' \
--programbox ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "config_ip_dhcp" "dhclient aborted"
fi
[ -z "${SUPPRESS}" ] && show_device_conf ${DEVNAME}
}
##function
configure_ip_address(){
##local
DEVNAME=$1
eval "${DIALOG} --cancel-label 'Up' \
--menu 'Configuring ${DEVNAME}' ${INFO_HEIGHT} ${INFO_WIDTH} 4 \
'DHCP' ''\
'Static' ''" 2>${TMPFILE}
if [ $? -eq 1 ]; then
return
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"Static")
config_ip_static ${DEVNAME}
;;
"DHCP")
config_ip_dhcp ${DEVNAME}
;;
esac
}
##function
wifi_essid_from_mac(){
##local
DEVNAME=$1
##local
W_MAC=$2
W_ESSID="$(wpa_cli -i "${DEVNAME}" scan_results | grep -E "^${W_MAC}" | \
sed -r -e 's/\t/\|/g' | cut -d "|" -f 5)"
log "wifi_essid_from_mac" "Recovered ESSID: ${W_ESSID}"
}
##function
wifi_flags_from_mac(){
##local
DEVNAME=$1
##local
W_MAC=$2
W_FLAGS=$(wpa_cli -i "${DEVNAME}" scan_results | grep -E "^${W_MAC}" | \
sed -r -e 's/\t/\|/g' | cut -d "|" -f 4)
log "wifi_essid_from_mac" "Recovered W_FLAGS: ${W_FLAGS}"
}
##function
wifi_network_list(){
##local
DEVNAME=$1
wpa_cli -i ${DEVNAME} list_networks | tail -n +2 | sed -r -e 's/\t/\|/g' > ${TMPFILE}
NETLIST=""
LAST_IFS=$IFS
IFS="|"
while read NETNUM NETESSID NETBSSID NETFLAGS; do
IS_DIS=$(echo ${NETFLAGS} | sed -r -e 's/\[//g;s/\]//g' | grep -c -i disabled )
if [ ${IS_DIS} -eq 1 ]; then
STATUS="(DIS)"
else
STATUS="(ENAB)"
fi
IS_CUR=$(echo ${NETFLAGS} | sed -r -e 's/\[//g;s/\]//g' | grep -c -i current )
if [ ${IS_CUR} -eq 1 ]; then
STATUS="${STATUS}(CUR)"
fi
NETLIST="${NETLIST} ${NETNUM} \"${NETESSID}-${STATUS}\""
done < ${TMPFILE}
IFS=${LAST_IFS}
log "wifi_network_list" "NETLIST: ${NETLIST}"
}
##function
wpa_authenticate_EAP_TLS(){
##unimplemented "wpa_authenticate_EAP_TLS"
##return 1
DEVNAME=$1
W_ESSID="$2"
## We first add the new network
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate_EAP_PEAP" "NET_NUM: ${NET_NUM}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
## we get the needed information, namely:
##
## - identity
## - server certificate (ca_cert)
## - client certificate
## -
##
eval "${DIALOG} --form 'PEAP parameters:' \
${FORM_HEIGHT} ${FORM_WIDTH} 3 \
'identity' 1 1 '' 1 20 30 80 \
'CA certificate' 2 1 '' 2 20 30 200 \
'client certificate' 3 1 '' 3 20 30 200 \
'private key' 4 1 '' 4 20 30 200 \
'private key password' 5 1 '' 5 30 30 80 \
" 2>${TMPFILE}
if [ $? != "0" ]; then
log "wifi_authenticate_EAP_TLS" "Aborting EAP/TLS authentication"
wpa_cli -i ${DEVNAME} remove_network ${NET_NUM}
return 1
fi
##
## Now, this is not super-clean, but seems necessary to maintain
## POSIX shell compatibility
##
cat ${TMPFILE} | tr '\n' ' ' >${TMPFILE}_2
read EAP_IDENTITY EAP_SERV_CERT EAP_CLIENT_CERT EAP_PRIV_KEY EAP_PRIV_KEY_PWD <${TMPFILE}_2
rm -f ${TMPFILE}_2
## Remove everything from the temp file
echo "" > ${TMPFILE}
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} key_mgmt WPA-EAP
## Set eap to PEAP
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} eap TLS
## Set identity
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} identity "\"${EAP_IDENTITY}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ca_cert "\"${EAP_SERV_CERT}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} client_cert "\"${EAP_CLIENT_CERT}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} private_key "\"${EAP_PRIV_KEY}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} private_key_passwd "\"${EAP_PRIV_KEY_PWD}\""
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" configured\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
return 0
}
##function
wpa_authenticate_EAP_PEAP(){
##unimplemented "wpa_authenticate_EAP_PEAP"
DEVNAME=$1
W_ESSID="$2"
## We first add the new network
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate_EAP_PEAP" "NET_NUM: ${NET_NUM}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
## we get the needed information, namely:
##
## - identity
## - password
## - server certificate (ca_cert)
##
eval "${DIALOG} --form 'PEAP parameters:' \
${FORM_HEIGHT} ${FORM_WIDTH} 3 \
'identity' 1 1 '' 1 20 30 80 \
'password' 2 1 '' 2 20 30 80 \
'CA certificate' 3 1 '' 3 20 30 80 \
" 2>${TMPFILE}
if [ $? != "0" ]; then
log "wifi_authenticate_EAP_PEAP" "Aborting EAP/PEAP authentication"
wpa_cli -i ${DEVNAME} remove_network ${NET_NUM}
return 1
fi
##
## Now, this is not super-clean, but seems necessary to maintain
## POSIX shell compatibility
##
cat ${TMPFILE} | tr '\n' ' ' >${TMPFILE}_2
read EAP_IDENTITY EAP_PASSWORD EAP_CERT <${TMPFILE}_2
rm -f ${TMPFILE}_2
## Remove identity and password from the temp file
echo "" > ${TMPFILE}
log "wpa_authenticate_EAP_PEAP" "EAP_IDENTITY: ${EAP_IDENTITY}"
log "wpa_authenticate_EAP_PEAP" "EAP_PASSWORD: ${EAP_PASSWORD}"
log "wpa_authenticate_EAP_PEAP" "EAP_CERT: ${EAP_CERT}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} key_mgmt WPA-EAP
## Set eap to PEAP
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} eap PEAP
## Set identity and password
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} identity "\"${EAP_IDENTITY}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} password "\"${EAP_PASSWORD}\""
if [ -n "${EAP_CERT}" ]; then
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ca_cert "\"${EAP_CERT}\""
fi
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" configured\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
return 0
}
##
## Open access point -- no WPA
##
##function
wifi_authenticate_NONE(){
DEVNAME="$1"
W_ESSID="$2"
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate" "NET_NUM: ${NET_NUM}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} key_mgmt NONE
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" added\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
return 0
}
##function
wpa_authenticate_PSK(){
DEVNAME=$1
W_ESSID="$2"
PSK=""
PSK_LENGTH=${#PSK}
while [ ${PSK_LENGTH} -le 7 ]; do
eval "${DIALOG} --insecure --inputbox 'Please insert WPA PSK\n(min 8 characters)' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -eq 1 ]; then
eval "${DIALOG} --msgbox 'Network configuration aborted!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return 1
fi
PSK=$(cat ${TMPFILE})
PSK_LENGTH=${#PSK}
done
NET_NUM=$(wpa_cli -i ${DEVNAME} add_network | tail -1)
log "wifi_authenticate_PSK" "NET_NUM: ${NET_NUM}"
log "wifi_authenticate_PSK" "W_ESSID: ${W_ESSID}"
log "wifi_authenticate_PSK" "PSK: ${PSK}"
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} ssid "\"${W_ESSID}\""
chk_out "OK" wpa_cli -i ${DEVNAME} set_network ${NET_NUM} psk "\"${PSK}\""
## remove the password from tmpfile
echo "" > ${TMPFILE}
eval "${DIALOG} --defaultno --yesno \
'Network \"${W_ESSID}\" added\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH} " 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
## We can now enable the network
chk_out "OK" wpa_cli -i ${DEVNAME} enable_network ${NET_NUM}
eval "${DIALOG} --msgbox 'Network added successfully' ${INFO_HEIGHT} ${INFO_WIDTH}"
return 0
}
##
## Manage WPA authentication. Choose among the available
## authentication systems currently supported:
##
## - PSK
## - EAP/PEAP
## - EAP/TLS
##
##function
wifi_authenticate_WPA(){
DEVNAME=$1
W_ESSID="$2"
##
## Construct the menu with all the available authentication modes
##
MODES=$(echo $W_FLAGS | sed -r -e 's/\]\[/\n/g;s/\[//g;s/\]//g' | grep -E "^WPA")
log "wifi_authenticate_WPA" "W_ESSID ${W_ESSID}"
log "wifi_authenticate_WPA" "MODES: ${MODES}"
MENU_ITEMS=""
CNT=0
for m in ${MODES}; do
WPA_TYPE=$(echo ${m} | cut -d "-" -f 1)
HAS_PSK=$(echo ${m} | cut -d "-" -f 2 | grep "PSK")
if [ "${HAS_PSK}" != "" ]; then
MENU_ITEMS="${MENU_ITEMS} '${WPA_TYPE}+PSK' 'Pre-shared key' "
fi
HAS_EAP=$(echo ${m} | cut -d "-" -f 2 | grep "EAP")
if [ "${HAS_EAP}" != "" ]; then
MENU_ITEMS="${MENU_ITEMS} '${WPA_TYPE}+EAP/PEAP' 'EAP/PEAP' "
MENU_ITEMS="${MENU_ITEMS} '${WPA_TYPE}+EAP/TLS' 'EAP/TLS' "
fi
done
log "wifi_authenticate_WPA" "MENU_ITEMS: ${MENU_ITEMS}"
eval "${DIALOG} --menu 'Select authentication' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
${MENU_ITEMS} " 2> ${TMPFILE}
if [ $? != "0" ]; then
## conf aborted
log "wifi_authenticate_WPA" "configuration aborted"
return 1;
fi
SEL_MODE=$(cat ${TMPFILE})
log "wifi_authenticate_WPA" "SEL_MODE: ${SEL_MODE}"
case ${SEL_MODE} in
"WPA+EAP/PEAP"|"WPA2+EAP/PEAP")
wpa_authenticate_EAP_PEAP ${DEVNAME} "${W_ESSID}"
;;
"WPA+EAP/TLS"|"WPA2+EAP/TLS")
wpa_authenticate_EAP_TLS ${DEVNAME} "${W_ESSID}"
;;
"WPA+PSK"|"WPA2+PSK")
wpa_authenticate_PSK ${DEVNAME} "${W_ESSID}"
;;
*)
log "wifi_authenticate_WPA" "Error. SEL_MODE '${SEL_MODE}' unsupported"
esac
}
##
## Manage the authentication for a given wifi ESSID
##
## We use wpa_cli to check the type of authentication supported by the
## network, and then we call the corresponding function
##
##function
wifi_authenticate(){
##local
DEVNAME=$1
##local
W_MAC=$2
log "wifi_authenticate" "configuring ${DEVNAME} on ${W_MAC}"
## This will set the variable W_ESSID appropriately
wifi_essid_from_mac ${DEVNAME} ${W_MAC}
## This will set the variable W_FLAGS appropriately
wifi_flags_from_mac ${DEVNAME} ${W_MAC}
log "wifi_authenticate" "configuring essid: ${W_ESSID} on device: ${DEVNAME}"
log "wifi_authenticate" "W_FLAGS: ${W_FLAGS}"
## If the network exists already, we first remove it...
NET_EXISTS=$(wpa_cli -i ${DEVNAME} list_networks | tail -n +2 | sed -r -e 's/\t/\|/g' \
| cut -d "|" -f 2 | grep -c "${W_ESSID}$" )
if [ ${NET_EXISTS} != 0 ]; then
NET_NUM=$(wpa_cli -i ${DEVNAME} list_networks | tail -n +2 | sed -r -e 's/\t/\|/g' \
| cut -d "|" -f 1,2 | grep "${W_ESSID}$" | cut -d "|" -f 1)
STATUS=$(wpa_cli -i ${DEVNAME} remove_network ${NET_NUM})
if [ "${STATUS}" != "OK" ]; then
eval "${DIALOG} --msgbox 'Error while removing existing \
network:\n$essid: {W_ESSID}'" ${INFO_HEIGHT} ${INFO_WIDTH}
return
fi
fi
## Check whether WPA is available
HAS_WPA=$(echo "${W_FLAGS}" | grep -E -c "WPA" )
log "wifi_authenticate" "HAS_WPA: \"${HAS_WPA}\""
### This will configure WPA
if [ "${HAS_WPA}" != "0" ]; then
wifi_authenticate_WPA ${DEVNAME} "${W_ESSID}"
if [ $? = "0" ]; then
log "wifi_authenticate" "WPA configured"
return 0
fi
fi
log "wifi_authenticate" "WPA authentication failed, aborted, or not supported"
### ...otherwise, try to configure an open connection (key_mgmt=NONE)
log "wifi_authenticate" "Trying open (no WPA) configuration..."
wifi_authenticate_NONE "${DEVNAME}" "${W_ESSID}"
if [ $? = "0" ]; then
log "wifi_authenticate" "Open connection configured"
return 0
fi
log "wifi_authenticate" "Open connection not supported"
## No available authentication methods....
eval "${DIALOG} --msgbox 'No supported authentication method for ${W_ESSID}'"
return 1
}
##
## Configure a new connection from a list of available wi-fi networks
##
##function
wifi_add(){
##local
DEVNAME=$1
wpa_cli -i ${DEVNAME} scan
eval "${DIALOG} --timeout 4 --msgbox 'Scanning for networks...' \
${INFO_HEIGHT} ${INFO_WIDTH}"
wpa_cli -i ${DEVNAME} scan_results | grep -E "^[0-9a-f][0-9a-f]:" | \
sed -r -e 's/\t/|/g' |\
sort -t "|" -r -n -k 3 > ${TMPFILE}
wifinets=""
LAST_IFS=$IFS
IFS="|"
while read W_MAC W_FREQ W_STRNGT W_FLAGS W_ESSID; do
log "wifi_add" "W_ESSID: \"${W_ESSID}\""
wifinets="${wifinets} ${W_MAC} \"${W_ESSID} -- ${W_FLAGS}\""
done < ${TMPFILE}
IFS=${LAST_IFS}
log "wifi_add" "Wifi nets: \n${wifinets}\n==="
eval "dialog --menu 'Select a network' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
${wifinets} " 2> ${TMPFILE}
if [ $? -eq 1 ]; then
return
fi
W_MAC=$(cat ${TMPFILE})
wifi_authenticate ${DEVNAME} ${W_MAC}
if [ $? != "0" ]; then
eval "${DIALOG} --msgbox 'Error while configuring ${DEVNAME}' "
fi
return $?
}
##function
wifi_save_file(){
##local
DEVNAME=$1
SAVE_STATUS=$(wpa_cli -i ${DEVNAME} save_config | tail -1 )
if [ "${SAVE_STATUS}" = "OK" ]; then
eval "${DIALOG} --msgbox 'Current configuration dumped to file ${WPA_FILE}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
else
eval "${DIALOG} --msgbox 'Error while saving configuration to file ${WPA_FILE}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
}
##function
wifi_remove(){
##local
DEVNAME=$1
wifi_network_list ${DEVNAME}
eval "${DIALOG} --menu 'Select network to remove' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 ${NETLIST}" \
2> ${TMPFILE}
if [ $? -eq 0 ]; then
## a network has been selected
NETNUM=$(cat ${TMPFILE})
WPA_STATUS=$(wpa_cli -i ${DEVNAME} remove_network ${NETNUM} | tail -1 )
if [ "${WPA_STATUS}" = "OK" ]; then
eval "${DIALOG} --defaultno --yesno \
'Network ${NETNUM} removed\nSave configuration file?' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -eq 0 ]; then
## Save the config file
wifi_save_file ${DEVNAME}
fi
return
else
eval "${DIALOG} --msgbox 'Network ${NETNUM} NOT removed' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
else
eval "${DIALOG} --msgbox 'No network removed!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
}
##function
wifi_restart_wpa(){
##local
DEVNAME=$1
##local
WPA_FILE=$2
WPA_PID=$(ps ax | grep wpa_supplicant | grep " -i ${DEVNAME} " |
sed -r -e 's/^\ +//g' | cut -d " " -f 1)
if [ -n "${WPA_PID}" ]; then
log "wifi_restart_wpa" "WPA_PID: ${WPA_PID}"
kill -9 ${WPA_PID}
else
log "wifi_restart_wpa" "no wpa_supplicant is running!!!"
fi
wpa_supplicant -B -i ${DEVNAME} -c ${WPA_FILE} -P${WPA_PIDFILE} 2>&1 >/dev/null
WPA_PID=$(ps ax | grep wpa_supplicant | grep " -i ${DEVNAME}" | \
sed -r -e 's/^\ +//g' | cut -d " " -f 1 )
WPA_PID_SAVED=$(cat ${WPA_PIDFILE})
log "wifi_restart_wpa" "WPA_PID: ${WPA_PID} WPA_PID_SAVED: ${WPA_PID_SAVED}"
if [ -n "${WPA_PID}" ] && [ "${WPA_PID}" != "${WPA_PID_SAVED}" ]; then
eval "${DIALOG} --msgbox 'Error restarting wpa_supplicant' \
${INFO_HEIGHT} ${INFO_WIDTH}"
else
eval "${DIALOG} --msgbox 'wpa_supplicant restarted successfully' \
${INFO_HEIGHT} ${INFO_WIDTH}"
fi
}
##
## wifi_enable: show the list of configured networks, and enable the
## one the used has clicked on
##
##function
wifi_enable(){
##local
DEVNAME=$1
wifi_network_list ${DEVNAME}
eval "${DIALOG} --menu 'Select configured network' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 ${NETLIST}" \
2> ${TMPFILE}
if [ $? -eq 0 ]; then
## a network has been selected
NETNUM=$(cat ${TMPFILE})
WPA_STATUS=$(wpa_cli -i ${DEVNAME} enable ${NETNUM} | tail -1 )
if [ "${WPA_STATUS}" = "OK" ]; then
eval "${DIALOG} --msgbox 'Network ${NETNUM} enabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
#config_ethernet ${DEVNAME}
return
else
eval "${DIALOG} --msgbox 'Network ${NETNUM} NOT enabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
else
eval "${DIALOG} --msgbox 'No network enabled!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
}
##function
wifi_disable(){
##local
DEVNAME=$1
wifi_network_list ${DEVNAME}
eval "${DIALOG} --menu 'Select configured network' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 ${NETLIST}" \
2> ${TMPFILE}
if [ $? -eq 0 ]; then
## a network has been selected
NETNUM=$(cat ${TMPFILE})
WPA_STATUS=$(wpa_cli -i ${DEVNAME} disable ${NETNUM} | tail -1 )
if [ "${WPA_STATUS}" = "OK" ]; then
eval "${DIALOG} --msgbox 'Network ${NETNUM} disabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
eval "${DIALOG} --msgbox 'Network ${NETNUM} NOT disabled' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
else
eval "${DIALOG} --msgbox 'No network disabled!!!' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
}
##function
config_wifi(){
##local
DEVNAME=$1
while true; do
CUR_NET=$(wpa_cli -i ${DEVNAME} status | grep "^ssid" | cut -d "=" -f 2)
eval "${DIALOG} --cancel-label 'Up' \
--menu 'Configuring ${DEVNAME}\nCurrent network: ${CUR_NET}\n(Current file: ${WPA_FILE})' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 12 \
'Restart' 'Restart wpa_supplicant' \
'Enable' 'Enable a configured network' \
'Disable' 'Disable a configured network' \
'Add' 'Configure a new network' \
'Remove' 'Delete an existing network' \
'Show' 'Show current configuration file' \
'Edit' 'Edit current configuration file' \
'Save' 'Save configuration to file' "\
2>${TMPFILE}
if [ $? = "1" ]; then
return
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"Restart")
## Restart wpa_supplicant
wifi_restart_wpa ${DEVNAME} ${WPA_FILE}
;;
"Enable")
wifi_enable ${DEVNAME}
;;
"Disable")
wifi_disable ${DEVNAME}
;;
"Add")
wifi_add ${DEVNAME}
;;
"Remove")
wifi_remove ${DEVNAME}
;;
"Show")
eval "${DIALOG} --title 'Current file: ${WPA_FILE}' \
--textbox ${WPA_FILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
;;
"Edit")
edit_file ${WPA_FILE}
;;
"Save")
wifi_save_file ${DEVNAME}
;;
esac
done
}
##
## (Re)-Configure
##
##function
configure_wifi(){
##local
DEVNAME=$1
## Automatically Check if the network device is a wifi -- this
## should be robust...
! iw ${DEVNAME} info 2>&1 >/dev/null
IS_WIFI=$?
log "configure_device" "Device ${DEVNAME} -- IS_WIFI: ${IS_WIFI} (automatic)"
if [ "${IS_WIFI}" = "0" ] && \
[ -n "${WIFI_DEVICES}" ]; then
## WIFI_DEVICES is set, hence we check whether the current
## device is in the list
IS_WIFI=$(echo " ${WIFI_DEVICES} " | grep -E -c "(\ ${DEVNAME}\ )")
log "configure_device" "Device ${DEVNAME} -- IS_WIFI: ${IS_WIFI} (config file)"
fi
case ${IS_WIFI} in
1)
config_wifi ${DEVNAME}
;;
*)
## Show a message here
eval "${DIALOG} --msgbox '${DEVNAME} is not a WiFi device... ' \
${INFO_HEIGHT} ${INFO_WIDTH}"
;;
esac
}
##function
set_device_up(){
##local
DEVNAME=$1
chk_exit 0 ip link set ${DEVNAME} up
}
##function
set_device_down(){
##local
DEVNAME=$1
chk_exit 0 ip link set ${DEVNAME} down
}
##function
show_device_menu(){
##local
DEVNAME=$1
while true; do
DEV_STATUS=$(ip -o link | cut -d " " -f 2,9 | grep -E "^${DEVNAME}: " | cut -d " " -f 2)
log "show_device_menu" "DEVNAME: ${DEVNAME} DEV_STATUS: ${DEV_STATUS}"
eval "${DIALOG_EXTRA} --cancel-label 'Up' --menu\
'Device: ${DEVNAME}\nStatus: ${DEV_STATUS}' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 8 \
'View' 'View current configuration' \
'Conf' 'Configure IP Address' \
'WiFi' 'Manage WiFi networking' \
'Start' 'Bring interface up' \
'Stop' 'Put interface down' \
'Restart' 'Restart interface'" 2> ${TMPFILE}
ext=$?
if [ $ext -eq 1 ]; then
return
elif [ $ext -eq 3 ]; then
exit 0
fi
DEV_ACTION=$(cat ${TMPFILE})
case ${DEV_ACTION} in
"View")
show_device_conf ${DEVNAME}
;;
"Conf")
configure_ip_address ${DEVNAME}
;;
"WiFi")
configure_wifi ${DEVNAME}
;;
"Start")
set_device_up ${DEVNAME}
;;
"Stop")
set_device_down ${DEVNAME}
;;
"Restart")
set_device_down ${DEVNAME}
set_device_up ${DEVNAME}
;;
*)
;;
esac
done
}
##
## Show all the available network devices
##
##function
show_devs() {
DEVICES=$(ip link show | awk 'NR % 2 == 1' | cut -d ":" -f 2)
DEVICE_TAGS=""
for i in $DEVICES; do
if [ "$i" != "lo" -o -n "${SHOW_LO}" ]; then
DEVICE_TAGS="${DEVICE_TAGS} $i $i"
fi
done
eval "${DIALOG_EXTRA} --cancel-label 'Up' \
--menu 'Select Interface to configure' ${WINDOW_HEIGHT} ${WINDOW_WIDTH} 4 \
${DEVICE_TAGS}" 2> ${TMPFILE}
return $?
}
##function
dev_config_menu(){
while true; do
show_devs
ext=$?
if [ ${ext} -eq 1 ]; then
return
elif [ ${ext} -eq 3 ]; then
exit 0
fi
DEVNAME=$(cat ${TMPFILE})
show_device_menu ${DEVNAME}
done
}
##function
show_info(){
cat < ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
setnet.sh is a simple state-less tool to manage and configure network
interfaces. It is a shell wrapper around the functionalities of
standard command-line tools, including "ip", "dhclient", "wpa_cli",
etc., and can be used to configure network connections via
Ethernet/Wi-Fi interfaces.
Both Static and DHCP-based IP configuration are supported.
At the moment, only WPA-PSK and open (no key) Wi-Fi connections are
available.
For more information, please visit the webpage of the project:
http://kalos.mine.nu/setnet/
Please report bugs at:
https://git.devuan.org/KatolaZ/setnet
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
return
}
##function
show_copyright(){
cat < ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
--------------------------------------------------------------------
Copyleft (C) Vincenzo "KatolaZ" Nicosia
2016, 2017
--------------------------------------------------------------------
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
return
}
##function
show_license(){
cat < ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation, either version 3 of the License, or (at
your option) any later version.
This program is distributed in the hope that it will be useful, but
WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see .
--------------------------------------------------------------------
Copyleft (C) Vincenzo "KatolaZ" Nicosia
2016, 2017
--------------------------------------------------------------------
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
return
}
##function
about_menu(){
while true; do
eval "${DIALOG} --cancel-label 'Up' --menu 'setnet ${VERSION} -- About' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 6 \
'Info' 'General information' \
'Copyleft' 'Copyleft information' \
'License' 'How to distribute this program' " \
2> ${TMPFILE}
if [ $? -eq 1 ];then
return;
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"Info")
show_info
;;
"Copyleft")
show_copyright
;;
"License")
show_license
;;
esac
done
}
##function
notfound(){
CMDNAME=$1
eval "${DIALOG} --msgbox 'Sorry! Commmand ${CMDNAME} not found!'" \
${INFO_HEIGHT} ${INFO_WIDTH}
}
##function
netdiag_DNS(){
DUMPFILE=$1
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== DNS Configuration (/etc/resolv.conf)\n=====\n\n" >> ${DUMPFILE}
cat /etc/resolv.conf >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
NAMESERVERS=$(grep '^nameserver' /etc/resolv.conf)
MSG_STR="Configured name servers in /etc/resolv.conf ==\n\n${NAMESERVERS}"
eval "${DIALOG} --title 'DNS servers' --msgbox '${MSG_STR}' "\
${WINDOW_HEIGHT} ${WINDOW_WIDTH}
}
##function
netdiag_resolver(){
DUMPFILE=$1
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Resolver Configuration (/etc/nsswitch.conf)\n=====\n\n" >> ${DUMPFILE}
grep -v '^#' /etc/nsswitch.conf >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
RESOLVER=$(grep -v '^#' /etc/nsswitch.conf)
eval "${DIALOG} --title 'Resolver configuration (/etc/nsswitch.conf)' \
--msgbox '${RESOLVER}' "\
${WINDOW_HEIGHT} ${WINDOW_WIDTH}
}
##function
netdiag_routes(){
DUMPFILE=$1
HAS_NETSTAT=$(echo "${HAS_OPTS}" | grep -c "\ netstat\ ")
if [ ${HAS_NETSTAT} -ne 1 ]; then
notfound "netstat"
return
fi
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Routing table\n=====\n\n" >> ${DUMPFILE}
netstat -rn >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
ROUTES=$(netstat -rn > ${TMPFILE} )
eval "${DIALOG} --no-collapse --title 'Routing table (netstat -rn) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
##function
netdiag_ARP(){
DUMPFILE=$1
log "netdiag_ARP" "DUMPFILE: '${DUMPFILE}'"
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== ARP table\n=====\n\n" >> "${DUMPFILE}"
cat /proc/net/arp >> "${DUMPFILE}"
echo "==================================" >> ${DUMPFILE}
return 0
fi
# Dump to dialog
ARP=$(cat /proc/net/arp >${TMPFILE})
eval "${DIALOG} --no-collapse --title 'ARP table (/proc/net/arp) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
##function
netdiag_connections(){
DUMPFILE=$1
HAS_NETSTAT=$(echo "${HAS_OPTS}" | grep -c "\ netstat\ ")
if [ ${HAS_NETSTAT} -ne 1 ]; then
notfound "netstat"
return
fi
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Active Network Connections\n=====\n\n" >> ${DUMPFILE}
netstat -tnp | sed -r -e 's/$/\n/g' >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
## Dump to dialog
SERV=$(netstat -tnp | sed -r -e 's/$/\n/g' > ${TMPFILE})
eval "${DIALOG} --no-collapse "\
" --title 'Active network connections (netstat -tnp) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
##function
netdiag_services(){
DUMPFILE=$1
HAS_NETSTAT=$(echo "${HAS_OPTS}" | grep -c "\ netstat\ ")
if [ ${HAS_NETSTAT} -ne 1 ]; then
notfound "netstat"
return
fi
if [ -n "${DUMPFILE}" ]; then
## Dump to file
printf "\n=====\n== Active network services\n=====\n\n" >> ${DUMPFILE}
netstat -ltnp | sed -r -e 's/$/\n/g' >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
SERV=$(netstat -ltnp | sed -r -e 's/$/\n/g' > ${TMPFILE})
eval "${DIALOG} --no-collapse "\
" --title 'Active network services (netstat -ltnp) [arrows to scroll]'" \
"--tab-correct --tab-len 4 --textbox ${TMPFILE} "\
${LARGE_HEIGHT} ${LARGE_WIDTH}
}
##function
netdiag_ping(){
HAS_PING=$(echo "${HAS_OPTS}" | grep -E -c "\ ping\ ")
if [ ${HAS_PING} -ne 1 ]; then
notfound "ping"
return
fi
eval "${DIALOG} --insecure --inputbox 'Host or IP to ping:' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -ne 0 ]; then
eval "${DIALOG} --msgbox 'Ping Aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
PINGIP=$(cat ${TMPFILE})
ping -c 5 ${PINGIP} 2>&1 |\
eval "${DIALOG} --title 'Ping ${PINGIP}' \
--programbox ${LARGE_HEIGHT} ${LARGE_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "netdiag_ping" "ping aborted"
fi
fi
}
##function
netdiag_traceroute(){
HAS_TRACERT=$(echo "${HAS_OPTS}" | grep -c "\ traceroute\ ")
if [ ${HAS_TRACERT} -ne 1 ]; then
notfound "traceroute"
return
fi
eval "${DIALOG} --insecure --inputbox 'Host or IP to trace:' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -ne 0 ]; then
eval "${DIALOG} --msgbox 'Traceroute Aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
TRACEIP=$(cat ${TMPFILE})
traceroute ${TRACEIP} 2>&1 | \
eval "${DIALOG} --title 'Traceroute ${TRACEIP}' \
--programbox ${LARGE_HEIGHT} ${LARGE_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "netdiag_traceroute" "traceroute aborted"
fi
fi
}
##function
netdiag_lookup(){
HAS_HOST=$(echo "${HAS_OPTS}" | grep -c "\ host\ ")
if [ ${HAS_HOST} -ne 1 ]; then
notfound "host"
return
fi
eval "${DIALOG} --insecure --inputbox 'Hostname or IP to lookup:' \
${INFO_HEIGHT} ${INFO_WIDTH}" 2> ${TMPFILE}
if [ $? -ne 0 ]; then
eval "${DIALOG} --msgbox 'DNS lookup aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
else
QUERYIP=$(cat ${TMPFILE})
host ${QUERYIP} 2>&1 |\
eval "${DIALOG} --title 'host ${QUERYIP}' \
--programbox ${LARGE_HEIGHT} ${LARGE_WIDTH}" 2>${TMPFILE}
if [ $! -ne 0 ];then
log "netdiag_ping" "host lookup aborted"
fi
fi
}
##function
netdiag_devices(){
DUMPFILE=$1
if [ -n "${DUMPFILE}" ]; then
printf "\n=====\n== Network Devices\n=====\n\n" >> ${DUMPFILE}
ip addr >> ${DUMPFILE}
echo "==================================" >> ${DUMPFILE}
return 0
fi
}
##
## Main menu for network diagnostics
##
##function
netdiag_menu(){
while true; do
eval "${DIALOG} --cancel-label 'Up' --menu 'Network diagnostics' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
'ARP' 'Show ARP table' \
'Connections' 'List active network connections' \
'DNS' 'List DNS servers' \
'Lookup' 'DNS Lookup' \
'Ping' 'Ping a host' \
'Resolver' 'Show resolver configuration' \
'Routes' 'Show routing table' \
'Services' 'List active network daemons' \
'Traceroute' 'Show the route to a host' " \
2> ${TMPFILE}
if [ $? -eq 1 ];then
return;
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"ARP")
netdiag_ARP
;;
"Connections")
netdiag_connections
;;
"DNS")
netdiag_DNS
;;
"Ping")
netdiag_ping
;;
"Lookup")
netdiag_lookup
;;
"Resolver")
netdiag_resolver
;;
"Routes")
netdiag_routes
;;
"Services")
netdiag_services
;;
"Traceroute")
netdiag_traceroute
;;
esac
done
}
##function
dump_file(){
CONF=$1
log "dump_file" "CONF: ${CONF}"
DUMPFILE="/tmp/network_dump.txt"
eval "${DIALOG} --fselect ${DUMPFILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" \
2>${TMPFILE}
if [ $? -eq 0 ]; then
SEL_FILE=$(cat ${TMPFILE})
while [ -d "${SEL_FILE}" ]; do
eval "${DIALOG} --fselect ${SEL_FILE} ${WINDOW_HEIGHT} ${WINDOW_WIDTH}" \
2>${TMPFILE}
if [ $? -eq 0 ]; then
SEL_FILE=$(cat ${TMPFILE})
else
eval "${DIALOG} --msgbox 'Dump aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
done
## The dump starts here....
DUMPFILE=${SEL_FILE}
truncate -s 0 ${DUMPFILE}
echo "===== setnet ${VERSION}" >> ${DUMPFILE}
echo "===== Date: $(date)" >> ${DUMPFILE}
echo "===== Network configuration dump: ${CONF} " >> ${DUMPFILE}
for c in ${CONF}; do
eval "netdiag_${c} \"${DUMPFILE}\""
done
else
eval "${DIALOG} --msgbox 'Dump aborted' \
${INFO_HEIGHT} ${INFO_WIDTH}"
return
fi
eval "${DIALOG} --msgbox 'Status dumped to ${DUMPFILE}' \
${INFO_HEIGHT} ${INFO_WIDTH}"
}
##function
dump_pastebin(){
unimplemented "pastebin"
}
##function
dump_menu(){
eval "${DIALOG} --checklist 'Select conf to dump' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 10 \
'ARP' 'ARP table' on \
'devices' 'Device configuration' on \
'DNS' 'DNS configuration' on \
'resolver' 'System resolver configuration' on \
'routes' 'Routing table' on \
'connections' 'Active network connections' on \
'services' 'Active network services' on " 2> ${TMPFILE}
if [ $? -ne 0 ]; then
return
fi
DUMP_CONF=$(cat ${TMPFILE})
eval "${DIALOG} --cancel-label 'Up' \
--menu 'Dump configuration to:' \
${INFO_HEIGHT} ${INFO_WIDTH} 6 \
'File' 'Dump to file' \
'Pastebin' 'Dump to pastebin'" \
2> ${TMPFILE}
if [ $? -eq 1 ];then
return;
fi
ACTION=$(cat ${TMPFILE})
case ${ACTION} in
"File")
dump_file "${DUMP_CONF}"
;;
"Pastebin")
dump_pastebin "${DUMP_CONF}"
;;
esac
}
##function
show_toplevel(){
log "show_toplevel" "TMPFILE: ${TMPFILE}"
eval "${DIALOG} --cancel-label 'Quit' --menu 'Main Menu' \
${WINDOW_HEIGHT} ${WINDOW_WIDTH} 6 \
'Setup' 'Setup interfaces' \
'Info' 'Network diagnostics' \
'Dump' 'Dump current network status' \
'Log' 'View setnet log' \
'About' 'License & Copyleft'" 2> ${TMPFILE}
return $?
}
##function
show_help(){
##local
SCRIPTNAME=$1
echo "Usage: ${SCRIPTNAME} [OPTION]"
echo "Options:"
printf "\t -c cfg_file\tLoad configuration from cfg_file.\n"
printf "\t -c trace_file\tDump dialog debug trace to trace_file.\n"
printf "\t -v\t\tPrint version number and exit.\n"
printf "\t -h\t\tShow this help.\n"
}
##function
show_version(){
##local
SCRIPTNAME=$1
echo "${SCRIPTNAME} -- version ${VERSION}"
echo "Copyleft (C) Vincenzo \"KatolaZ\" Nicosia (katolaz@freaknet.org) -- 2016, 2017"
echo "This is free software. You can use and redistribute it under the "
echo "terms of the GNU General Public Licence version 3 or (at your option)"
echo "any later version."
echo
echo "YOU USE THIS SOFTWARE AT YOUR OWN RISK."
echo "There is ABSOLUTELY NO WARRANTY; not even for MERCHANTABILITY or"
echo "FITNESS FOR A PARTICULAR PURPOSE."
}
##function
show_disclaimer(){
cat < ${TMPFILE}
-+- setnet.sh ${VERSION} -+-
Copyleft (C) KatolaZ (katolaz@freaknet.org)
2016, 2017
-+- This is a beta release of setnet.sh -+-
THIS IS FREE SOFTWARE
YOU CAN USE AND DISTRIBUTE IT UNDER THE
TERMS OF THE GNU GENERAL PUBLIC LICENSE
USE THIS SOFTWARE AT YOUR OWN RISK
There is ABSOLUTELY NO WARRANTY; not even for
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE
See "About" for more information about
your right and distribution terms
EOF
eval "${DIALOG} --cr-wrap --textbox ${TMPFILE} 23 60"
return
}
##function
initialise(){
TMPFILE=$( (tempfile) 2>/dev/null) || TMPFILE=/tmp/setnet_$$
WPA_PIDFILE=$( (tempfile) 2>/dev/null) || WPA_PIDFILE=/tmp/setnet_wpapid_$$
trap cleanup 0 HUP INT TRAP TERM QUIT
if [ -z ${TRUNCATE_LOG} ] || \
[ ${TRUNCATE_LOG} = "yes" ] || \
[ ${TRUNCATE_LOG} = "YES" ]; then
truncate -s 0 ${LOGFILE}
fi
chmod 600 ${LOGFILE}
log "initialise" "Starting afresh on $(date)"
log "initialise" "Using TMPFILE: ${TMPFILE}"
log "initialise" "Using LOGFILE: ${LOGFILE}"
if [ -n ${DEBUG_MODE} ]; then
log "initialise" "Running in debug mode -- dumping dialog trace to ${TRACE_FILE}"
fi
EUID=$(id -ru)
if [ "${EUID}" = "0" ] &&
[ -n "${SUDO_UID}" ] &&
[ "${EUID}" != "${SUDO_UID}" ]; then
USING_SUDO="1"
elif [ "${EUID}" = "0" ] &&
[ -n "${SUP_UID}" ] &&
[ "${EUID}" != "${SUP_UID}" ]; then
USING_SUDO="1"
else
USING_SUDO="0"
fi
log "initialise" "EUID: ${EUID}"
log "initialise" "SUDO_UID: ${SUDO_UID}"
log "initialise" "SUP_UID: ${SUP_UID}"
log "initialise" "USING_SUDO: ${USING_SUDO}"
SUPPRESS=""
if [ -n "${SUPPRESS_INFO}" ] &&
[ "${SUPPRESS_INFO}" != "no" ] &&
[ "${SUPPRESS_INFO}" != "NO" ]; then
SUPPRESS="1"
fi
if [ -n "${SHOW_LO}" ] &&
[ "${SHOW_LO}" != "no" ] &&
[ "${SHOW_LO}" != "NO" ]; then
SHOW_LO="1"
else
SHOW_LO=""
fi
log "initialise" "SUPPRESS: ${SUPPRESS}"
}
##function
log_show(){
eval "${DIALOG} --cr-wrap --title 'setnet log file (${LOGFILE})'\
--textbox ${LOGFILE} \
${WINDOW_HEIGHT} ${WINDOW_WIDTH}"
}
##function
main(){
log "main" "SUPPRESS: ${SUPPRESS}"
[ -z "${SUPPRESS}" ] && show_disclaimer
SETNETRC=$(realpath ${SETNETRC})
log "main" "Using config file \"${SETNETRC}\""
WPA_FILE=$(realpath ${WPA_FILE})
log "main" "Using WPA config file \"${WPA_FILE}\""
LOFGILE=$(realpath ${LOGFILE})
log "main" "Using log file \"${LOGFILE}\""
while true; do
show_toplevel
if [ $? -eq 1 ]; then
cleanup
exit 1
fi
log "main" "${TMPFILE}"
ACTION=$(cat ${TMPFILE})
log "main" "ACTION: ${ACTION}"
case ${ACTION} in
"Setup")
dev_config_menu
;;
"Info")
netdiag_menu
;;
"Dump")
dump_menu
;;
"Log")
log_show
;;
"About")
about_menu
;;
esac
done
}
##
## The script starts here
##
##
## Get command-line arguments
##
SETNETRC=""
while getopts ":c:d:hv" opt; do
case $opt in
c)
#echo "Got option -c ${OPTARG}"
SETNETRC=$(realpath ${OPTARG})
#echo "SETNETRC: ${SETNETRC}"
;;
h)
show_help $(basename $0)
exit 1
;;
v)
show_version $(basename $0)
exit 1
;;
d)
TRACE_FILE=$(realpath ${OPTARG})
set_debug ${TRACE_FILE}
;;
\?)
echo "Invalid option: -${OPTARG}"
exit 1
;;
:)
echo "Option -${OPTARG} requires an argument"
exit 1
;;
esac
done
##
## Load the configuration file
##
load_setnetrc ${SETNETRC}
##
## Init stuff
##
initialise
##
## Check dependencies. If we are missing someting essential, then exit.
##
check_deps
##
## This is the main loop
##
main