| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465 | #!/bin/bash
#
# .---.                  .              .
# |                      |              |
# |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.
# |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'
# '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'
#
#                    Freedom in the Cloud
#
# Wifi configuration tools
# License
# =======
#
# Copyright (C) 2016 Bob Mottram <bob@robotics.uk.to>
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU Affero General Public License for more details.
#
# You should have received a copy of the GNU Affero General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
PROJECT_NAME='freedombone'
export TEXTDOMAIN=${PROJECT_NAME}-wifi
export TEXTDOMAINDIR="/usr/share/locale"
CONFIGURATION_FILE=$HOME/${PROJECT_NAME}.cfg
COMPLETION_FILE=$HOME/${PROJECT_NAME}-completed.txt
WIFI_INTERFACE=wlan0
WIFI_TYPE='wpa2-psk'
WIFI_SSID=
WIFI_PASSPHRASE=
WIFI_HOTSPOT='no'
WIFI_CONFIG=/etc/wpa_supplicant/wpa_supplicant.conf
WIFI_NETWORKS_FILE=~/${PROJECT_NAME}-wifi.cfg
NETWORKS_INTERACTIVE=
WIFI_DISABLE=
function wifi_get_psk {
    ssid=$1
    passphrase=$2
    psk=$(wpa_passphrase "$ssid" "$passphrase" | grep 'psk=' | sed -n 2p | awk -F '=' '{print $2}')
    echo $psk
}
function hotspot_off {
    if [ ! -f /etc/hostapd/hostapd.conf ]; then
        return
    fi
    systemctl stop hostapd
    rm /etc/hostapd/hostapd.conf
    if [ -f /etc/network/interfaces_original ]; then
        cp /etc/network/interfaces_original /etc/network/interfaces
    else
        echo '# interfaces(5) file used by ifup(8) and ifdown(8)' > /etc/network/interfaces
        echo '# Include files from /etc/network/interfaces.d:' >> /etc/network/interfaces
        echo 'source-directory /etc/network/interfaces.d' >> /etc/network/interfaces
    fi
    systemctl restart network-manager
    ifdown wlan0
}
function hotspot_on {
    if [ ! -f /etc/default/hostapd ]; then
        echo $'/etc/default/hostapd was not found'
        exit 67241
    fi
    if [ ${#WIFI_PASSPHRASE} -lt 8 ]; then
        echo $'Wifi hotspot passphrase is too short'
        exit 25719
    fi
    sed -i 's|#DAEMON_CONF=.*|DAEMON_CONF="/etc/hostapd/hostapd.conf"|g' /etc/default/hostapd
    echo '### Wireless network name ###' > /etc/hostapd/hostapd.conf
    echo "interface=$WIFI_INTERFACE" >> /etc/hostapd/hostapd.conf
    echo '' >> /etc/hostapd/hostapd.conf
    echo '### Set your bridge name ###' >> /etc/hostapd/hostapd.conf
    echo 'bridge=br0' >> /etc/hostapd/hostapd.conf
    echo '' >> /etc/hostapd/hostapd.conf
    echo 'driver=nl80211' >> /etc/hostapd/hostapd.conf
    echo "country_code=UK" >> /etc/hostapd/hostapd.conf
    echo "ssid=$WIFI_SSID" >> /etc/hostapd/hostapd.conf
    echo 'hw_mode=g' >> /etc/hostapd/hostapd.conf
    echo 'channel=6' >> /etc/hostapd/hostapd.conf
    echo 'wpa=2' >> /etc/hostapd/hostapd.conf
    echo "wpa_passphrase=$WIFI_PASSPHRASE" >> /etc/hostapd/hostapd.conf
    echo '' >> /etc/hostapd/hostapd.conf
    echo '## Key management algorithms ##' >> /etc/hostapd/hostapd.conf
    echo 'wpa_key_mgmt=WPA-PSK' >> /etc/hostapd/hostapd.conf
    echo '' >> /etc/hostapd/hostapd.conf
    echo '## Set cipher suites (encryption algorithms) ##' >> /etc/hostapd/hostapd.conf
    echo '## TKIP = Temporal Key Integrity Protocol' >> /etc/hostapd/hostapd.conf
    echo '## CCMP = AES in Counter mode with CBC-MAC' >> /etc/hostapd/hostapd.conf
    echo 'wpa_pairwise=TKIP' >> /etc/hostapd/hostapd.conf
    echo 'rsn_pairwise=CCMP' >> /etc/hostapd/hostapd.conf
    echo '' >> /etc/hostapd/hostapd.conf
    echo '## Shared Key Authentication ##'
    echo 'auth_algs=1'
    echo '' >> /etc/hostapd/hostapd.conf
    echo '## Accept all MAC address ###' >> /etc/hostapd/hostapd.conf
    echo 'macaddr_acl=0' >> /etc/hostapd/hostapd.conf
    if [ ! -f /etc/network/interfaces_original ]; then
        if ! grep -q "# wifi enabled" /etc/network/interfaces; then
            cp /etc/network/interfaces /etc/network/interfaces_original
        fi
    fi
    echo '# wifi enabled' > /etc/network/interfaces
    echo 'auto lo br0' >> /etc/network/interfaces
    echo 'iface lo inet loopback' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo "# wireless $WIFI_INTERFACE" >> /etc/network/interfaces
    echo "allow-hotplug $WIFI_INTERFACE" >> /etc/network/interfaces
    echo "iface $WIFI_INTERFACE inet manual" >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo '# eth0 connected to the ISP router' >> /etc/network/interfaces
    echo 'allow-hotplug eth0' >> /etc/network/interfaces
    echo 'iface eth0 inet manual' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo '# Setup bridge' >> /etc/network/interfaces
    echo 'iface br0 inet static' >> /etc/network/interfaces
    echo "    bridge_ports $WIFI_INTERFACE eth0" >> /etc/network/interfaces
    systemctl restart network-manager
    ifup wlan0
    systemctl restart hostapd
}
function wifi_wpa2_psk {
    ssid=$1
    passphrase=$2
    if [ ! -f /etc/network/interfaces_original ]; then
        if ! grep -q "# wifi enabled" /etc/network/interfaces; then
            cp /etc/network/interfaces /etc/network/interfaces_original
        fi
    fi
    echo '# wifi enabled' > /etc/network/interfaces
    echo 'auto lo' >> /etc/network/interfaces
    echo 'iface lo inet loopback' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'allow-hotplug eth0' >> /etc/network/interfaces
    echo 'iface eth0 inet dhcp' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'allow-hotplug wlan0' >> /etc/network/interfaces
    echo 'iface wlan0 inet manual' >> /etc/network/interfaces
    echo "  wpa-roam $WIFI_CONFIG" >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'iface default inet dhcp' >> /etc/network/interfaces
    wpa_passphrase "$ssid" "$passphrase" > $WIFI_CONFIG
    systemctl restart network-manager
    ifup wlan0
}
function wifi_none {
    ssid=$1
    if [ ! -f /etc/network/interfaces_original ]; then
        if ! grep -q "# wifi enabled" /etc/network/interfaces; then
            cp /etc/network/interfaces /etc/network/interfaces_original
        fi
    fi
    echo '# wifi enabled' > /etc/network/interfaces
    echo 'auto lo' >> /etc/network/interfaces
    echo 'iface lo inet loopback' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'allow-hotplug eth0' >> /etc/network/interfaces
    echo 'iface eth0 inet dhcp' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'allow-hotplug wlan0' >> /etc/network/interfaces
    echo 'iface wlan0 inet manual' >> /etc/network/interfaces
    echo "  wpa-roam $WIFI_CONFIG" >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'iface default inet dhcp' >> /etc/network/interfaces
    echo 'network={' > $WIFI_CONFIG
    echo "  ssid=\"${ssid}\"" >> $WIFI_CONFIG
    echo '  key_mgmt=NONE' >> $WIFI_CONFIG
    echo '}' >> $WIFI_CONFIG
    systemctl restart network-manager
    ifup wlan0
}
function networks_from_file {
    if [ ! -f $WIFI_NETWORKS_FILE ]; then
        exit 4
    fi
    if [ ! -f /etc/network/interfaces_original ]; then
        if ! grep -q "# wifi enabled" /etc/network/interfaces; then
            cp /etc/network/interfaces /etc/network/interfaces_original
        fi
    fi
    echo '# wifi enabled' > /etc/network/interfaces
    echo 'auto lo' >> /etc/network/interfaces
    echo 'iface lo inet loopback' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'allow-hotplug eth0' >> /etc/network/interfaces
    echo 'iface eth0 inet dhcp' >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'allow-hotplug wlan0' >> /etc/network/interfaces
    echo 'iface wlan0 inet manual' >> /etc/network/interfaces
    echo "  wpa-roam $WIFI_CONFIG" >> /etc/network/interfaces
    echo '' >> /etc/network/interfaces
    echo 'iface default inet dhcp' >> /etc/network/interfaces
    # remove wpa_supplicant.conf if it exists
    if [ -f $WIFI_CONFIG ]; then
        rm -f $WIFI_CONFIG
    fi
    ctr=0
    while read -r line
    do
        if [ ${#line} -gt 1 ]; then
            if [[ "$line" != '#'* ]]; then
                if [ $ctr -eq 0 ]; then
                    WIFI_SSID="$line"
                fi
                if [ $ctr -eq 1 ]; then
                    WIFI_TYPE="$line"
                    if [[ $WIFI_TYPE == $'none' || $WIFI_TYPE == $'None' ]]; then
                        echo 'network={' >> $WIFI_CONFIG
                        echo "  ssid=\"${WIFI_SSID}\"" >> $WIFI_CONFIG
                        echo '  key_mgmt=NONE' >> $WIFI_CONFIG
                        echo '}' >> $WIFI_CONFIG
                        ctr=0
                        continue
                    fi
                fi
                if [ $ctr -eq 2 ]; then
                    WIFI_PASSPHRASE="$line"
                    wpa_passphrase "$WIFI_SSID" "$WIFI_PASSPHRASE" >> $WIFI_CONFIG
                    ctr=0
                    continue
                fi
                ctr=$((ctr + 1))
            fi
        fi
    done < $WIFI_NETWORKS_FILE
    systemctl restart network-manager
    ifup wlan0
}
function create_networks_interactive {
    if [ -f $WIFI_NETWORKS_FILE ]; then
        rm $WIFI_NETWORKS_FILE
    fi
    echo $'# Add wifi networks as follows:' > $WIFI_NETWORKS_FILE
    echo '#' >> $WIFI_NETWORKS_FILE
    echo $'# MySSID' >> $WIFI_NETWORKS_FILE
    echo $'# wpa2-psk' >> $WIFI_NETWORKS_FILE
    echo $'# myWifiPassphrase' >> $WIFI_NETWORKS_FILE
    echo '#' >> $WIFI_NETWORKS_FILE
    echo $'# AnotherSSID' >> $WIFI_NETWORKS_FILE
    echo $'# none' >> $WIFI_NETWORKS_FILE
    echo '#' >> $WIFI_NETWORKS_FILE
    wifi_ctr=0
    wifi_networks_done=
    while [ ! $wifi_networks_done ]
    do
        data=$(tempfile 2>/dev/null)
        trap "rm -f $data" 0 1 2 5 15
        dialog --backtitle $"Freedombone Configuration" \
               --title $"Wifi Settings ${wifi_ctr}" \
               --form $"\nIf you wish to use wifi and have a Free Software compatible adapter (eg. Atheros) rather than wired ethernet then enter the details below, otherwise just select Ok:" 15 55 4 \
               $"SSID:" 1 1 "$WIFI_SSID" 1 16 30 30 \
               $"Type:" 2 1 "$WIFI_TYPE" 2 16 10 10 \
               $"Passphrase:" 3 1 "$WIFI_PASSPHRASE" 3 16 30 30 \
               2> $data
        sel=$?
        case $sel in
            1) return;;
            255) return;;
        esac
        WIFI_SSID=$(cat $data | sed -n 1p)
        WIFI_TYPE=$(cat $data | sed -n 2p)
        WIFI_PASSPHRASE=$(cat $data | sed -n 3p)
        # if these fields are empty then there are no more wifi networks
        if [ ${#WIFI_SSID} -lt 2 ]; then
            wifi_networks_done='yes'
            continue
        fi
        if [ ${#WIFI_TYPE} -lt 2 ]; then
            wifi_networks_done='yes'
            continue
        fi
        # update the wifi networks file
        echo '' >> $WIFI_NETWORKS_FILE
        echo "$WIFI_SSID" >> $WIFI_NETWORKS_FILE
        echo "$WIFI_TYPE" >> $WIFI_NETWORKS_FILE
        if [ ${#WIFI_PASSPHRASE} -gt 1 ]; then
            echo "$WIFI_PASSPHRASE" >> $WIFI_NETWORKS_FILE
        fi
        # clear values
        WIFI_SSID=
        WIFI_PASSPHRASE=
        wifi_ctr=$((wifi_ctr + 1))
    done
}
function disable_wifi {
    if [[ ${1} == 'yes' || ${1} == 'y' ]]; then
        hotspot_off
        echo '# interfaces(5) file used by ifup(8) and ifdown(8)' > /etc/network/interfaces
        echo '# Include files from /etc/network/interfaces.d:' >> /etc/network/interfaces
        echo 'source-directory /etc/network/interfaces.d' >> /etc/network/interfaces
        systemctl restart network-manager
        ifdown wlan0
    else
        networks_from_file
    fi
}
function show_help {
    echo ''
    echo $"${PROJECT_NAME}-wifi -i [interface] -t [type] -s [ssid] -p [passphrase]"
    echo ''
    echo $'Wifi configuration tool'
    echo ''
    echo $'     --help                        Show help'
    echo $'  -i --interface [wlan0|wlan1...]  Device name'
    echo $'  -t --type [wpa2-psk|none]        Security type'
    echo $'  -s --ssid [id]                   Set SSID'
    echo $'  -p --passphrase [text]           Set passphrase'
    echo $'     --hotspot [yes|no]            Create a hotspot'
    echo $'     --networks [filename]         File containing wifi networks'
    echo $'     --createnetworks [filename]   Create file containing wifi networks'
    echo $'     --disable [yes/no]            Disable wifi'
    echo ''
    exit 0
}
while [[ $# > 1 ]]
do
    key="$1"
    case $key in
        --help)
            show_help
            ;;
        -i|--if|--interface)
            shift
            WIFI_INTERFACE=${1}
            ;;
        -t|--type)
            shift
            WIFI_TYPE=${1}
            ;;
        -s|--ssid)
            shift
            WIFI_SSID=${1}
            ;;
        -p|--pass|--passphrase)
            shift
            WIFI_PASSPHRASE=${1}
            ;;
        --hotspot)
            shift
            WIFI_HOTSPOT=${1}
            ;;
        --networks)
            shift
            WIFI_NETWORKS_FILE=${1}
            ;;
        --networksinteractive)
            shift
            NETWORKS_INTERACTIVE='yes'
            WIFI_NETWORKS_FILE=${1}
            ;;
        --disable)
            shift
            WIFI_DISABLE=${1}
            if [[ $WIFI_DISABLE == $'yes' || $WIFI_DISABLE == $'y' ]]; then
                WIFI_DISABLE='yes'
            else
                WIFI_DISABLE='no'
            fi
            ;;
        *)
            # unknown option
            ;;
    esac
    shift
done
if [ $WIFI_DISABLE ]; then
    disable_wifi $WIFI_DISABLE
    exit 0
fi
if [ $NETWORKS_INTERACTIVE ]; then
    create_networks_interactive
    exit 0
fi
if [ -f $WIFI_NETWORKS_FILE ]; then
    networks_from_file
    exit 0
fi
if [ ! $WIFI_SSID ]; then
    echo $'No SSID given'
    exit 1
fi
if [[ $WIFI_HOTSPOT != 'no' ]]; then
    hotspot_on
    exit 0
else
    hotspot_off
fi
if [[ $WIFI_TYPE != 'none' ]]; then
    if [ ! $WIFI_PASSPHRASE ]; then
        echo $'No wifi passphrase was given'
        exit 2
    fi
fi
if [[ $WIFI_TYPE == 'wpa2-psk' ]]; then
    if [ ! -d /etc/wpa_supplicant ]; then
        echo $'wpasupplicant package is not installed'
        exit 3
    fi
    wifi_wpa2_psk "$WIFI_SSID" "$WIFI_PASSPHRASE"
    exit 0
fi
if [[ $WIFI_TYPE == 'none' ]]; then
    wifi_none "$WIFI_SSID"
    exit 0
fi
exit 0
 |