free
/
freedombone
ウォッチ 1
お気に入りに登録 0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
7482 コミット
5 ブランチ
ツリー: c247d4c63d
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'c247d4c63d' から
${ noResults }
freedombone/src/freedombone-app-batman

freedombone-app-batman 12KB
履歴 Raw形式

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271 
  1. #!/bin/bash

  2. #

  3. # .---.                  .              .

  4. # |                      |              |

  5. # |--- .--. .-.  .-.  .-.|  .-. .--.--. |.-.  .-. .--.  .-.

  6. # |    |   (.-' (.-' (   | (   )|  |  | |   )(   )|  | (.-'

  7. # '    '     --'  --'  -' -  -' '  '   -' -'   -' '   -  --'

  8. #

  9. #                    Freedom in the Cloud

  10. #

  11. # batman adv mesh functions

  12. #

  13. # License

  14. # =======

  15. #

  16. # Copyright (C) 2014-2016 Bob Mottram <bob@freedombone.net>

  17. #

  18. # This program is free software: you can redistribute it and/or modify

  19. # it under the terms of the GNU Affero General Public License as published by

  20. # the Free Software Foundation, either version 3 of the License, or

  21. # (at your option) any later version.

  22. #

  23. # This program is distributed in the hope that it will be useful,

  24. # but WITHOUT ANY WARRANTY; without even the implied warranty of

  25. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  26. # GNU Affero General Public License for more details.

  27. #

  28. # You should have received a copy of the GNU Affero General Public License

  29. # along with this program.  If not, see <http://www.gnu.org/licenses/>.

  30. 

  31. VARIANTS=''

  32. 

  33. IN_DEFAULT_INSTALL=0

  34. SHOW_ON_ABOUT=0

  35. 

  36. ENABLE_BATMAN="no"

  37. BATMAN_CELLID='any'

  38. 

  39. batman_variables=(MY_USERNAME

  40.                   BATMAN_CELLID)

  41. 

  42. function logging_on_batman {

  43.     echo -n ''

  44. }

  45. 

  46. function logging_off_batman {

  47.     echo -n ''

  48. }

  49. 

  50. function install_interactive_batman {

  51.     echo -n ''

  52.     APP_INSTALLED=1

  53. }

  54. 

  55. function configure_firewall_for_batman {

  56.     if [[ $(is_completed $FUNCNAME) == "1" ]]; then

  57.         return

  58.     fi

  59.     if [[ $ENABLE_BATMAN != "yes" ]]; then

  60.         return

  61.     fi

  62. 

  63.     function_check save_firewall_settings

  64.     save_firewall_settings

  65.     mark_completed $FUNCNAME

  66. }

  67. 

  68. function reconfigure_batman {

  69.     echo -n ''

  70. }

  71. 

  72. function upgrade_batman {

  73.     echo -n ''

  74. }

  75. 

  76. function backup_local_batman {

  77.     echo -n ''

  78. }

  79. 

  80. function restore_local_batman {

  81.     echo -n ''

  82. }

  83. 

  84. function backup_remote_batman {

  85.     echo -n ''

  86. }

  87. 

  88. function restore_remote_batman {

  89.     echo -n ''

  90. }

  91. 

  92. function remove_batman {

  93.     ${PROJECT_NAME}-mesh-install -f batman --remove yes

  94.     if [ ! "$?" = "0" ]; then

  95.         echo $'Failed to remove batman'

  96.         exit 79353

  97.     fi

  98.     remove_completion_param install_batman

  99.     remove_completion_param configure_firewall_for_batman

  100. }

  101. 

  102. function mesh_install_batman {

  103.     chroot "$rootdir" apt-get -yq install iproute bridge-utils libnetfilter-conntrack3 batctl

  104.     chroot "$rootdir" apt-get -yq install python-dev libevent-dev ebtables python-pip git

  105.     chroot "$rootdir" apt-get -yq install wireless-tools rfkill

  106. 

  107.     if ! grep -q "batman_adv" $rootdir/etc/modules; then

  108.         echo 'batman_adv' >> $rootdir/etc/modules

  109.     fi

  110. 

  111.     BATMAN_SCRIPT=$rootdir/var/lib/batman

  112. 

  113.     if [ -f /usr/local/bin/${PROJECT_NAME}-mesh-batman ]; then

  114.         cp /usr/local/bin/${PROJECT_NAME}-mesh-batman $BATMAN_SCRIPT

  115.     else

  116.         cp /usr/bin/${PROJECT_NAME}-mesh-batman $BATMAN_SCRIPT

  117.     fi

  118. 

  119.     BATMAN_DAEMON=$rootdir/etc/systemd/system/batman.service

  120.     echo '[Unit]' > $BATMAN_DAEMON

  121.     echo 'Description=B.A.T.M.A.N. Advanced' >> $BATMAN_DAEMON

  122.     echo 'After=network.target' >> $BATMAN_DAEMON

  123.     echo '' >> $BATMAN_DAEMON

  124.     echo '[Service]' >> $BATMAN_DAEMON

  125.     echo 'RemainAfterExit=yes' >> $BATMAN_DAEMON

  126.     echo "ExecStart=/var/lib/batman start" >> $BATMAN_DAEMON

  127.     echo "ExecStop=/var/lib/batman stop" >> $BATMAN_DAEMON

  128.     echo 'Restart=on-failure' >> $BATMAN_DAEMON

  129.     echo 'SuccessExitStatus=3 4' >> $BATMAN_DAEMON

  130.     echo 'RestartForceExitStatus=3 4' >> $BATMAN_DAEMON

  131.     echo '' >> $BATMAN_DAEMON

  132.     echo '# Allow time for the server to start/stop' >> $BATMAN_DAEMON

  133.     echo 'TimeoutSec=300' >> $BATMAN_DAEMON

  134.     echo '' >> $BATMAN_DAEMON

  135.     echo '[Install]' >> $BATMAN_DAEMON

  136.     echo 'WantedBy=multi-user.target' >> $BATMAN_DAEMON

  137.     chroot "$rootdir" systemctl enable batman

  138. }

  139. 

  140. function install_mesh_tunnel {

  141.     # https://sudoroom.org/wiki/Mesh/Relay_setup

  142.     chroot "$rootdir" apt-get -yq install xl2tpd l2tpns

  143.     chroot "$rootdir" apt-get -yq install iproute bridge-utils libnetfilter-conntrack3 python-dev libevent-dev ebtables python-pip git

  144. 

  145.     git clone https://github.com/wlanslovenija/tunneldigger $rootdir/opt/tunneldigger

  146.     cd $rootdir/opt/tunneldigger/client

  147.     chroot "$rootdir" make

  148.     if [ ! -f $rootdir/opt/tunneldigger/client/l2tp_client ]; then

  149.         echo $'tunneldigger failed to build client'

  150.         exit 823563

  151.     fi

  152.     cd $rootdir/opt/tunneldigger/broker

  153.     chroot "$rootdir" pip install -r requirements.txt

  154.     echo 'l2tp_core' >> $rootdir/etc/modules

  155.     echo 'l2tp_eth' >> $rootdir/etc/modules

  156.     echo 'l2tp_netlink' >> $rootdir/etc/modules

  157. 

  158.     echo '#!/bin/sh' > $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  159.     echo 'INTERFACE="$3"' >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  160.     echo 'ifconfig $INTERFACE up' >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  161.     echo 'batctl if add $INTERFACE' >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  162.     echo 'if [ `cat /sys/class/net/bat0/operstate` != "up" ]; then' >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  163.     echo "  ipv4addr=\$(ip -o -f inet addr show dev \"eth0\" | awk '{print \$4}' | awk 'END {print}' | awk -F '/' '{print \$1}')" >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  164.     echo '  ifconfig bat0 $ipv4addr netmask 255.0.0.0 up' >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  165.     echo 'fi' >> $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  166.     chmod +x $rootdir/opt/tunneldigger/broker/scripts/up_hook.sh

  167. 

  168.     echo '[broker]' > $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  169.     echo '; IP address the broker will listen and accept tunnels on' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  170.     echo 'address=127.0.0.1' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  171.     echo '; Ports where the broker will listen on' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  172.     echo 'port=53,8942' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  173.     echo '; Interface with that IP address' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  174.     echo 'interface=lo' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  175.     echo '; Maximum number of tunnels that will be allowed by the broker' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  176.     echo 'max_tunnels=1024' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  177.     echo '; Tunnel port base' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  178.     echo 'port_base=20000' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  179.     echo '; Tunnel id base' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  180.     echo 'tunnel_id_base=100' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  181.     echo '; Namespace (for running multiple brokers); note that you must also' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  182.     echo '; configure disjunct ports, and tunnel identifiers in order for' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  183.     echo '; namespacing to work' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  184.     echo 'namespace=default' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  185.     echo '; check if all kernel module are loaded. Do not check for built-ins.' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  186.     echo 'check_modules=true' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  187.     echo '' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  188.     echo '[log]' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  189.     echo '; Log filename' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  190.     echo 'filename=tunneldigger-broker.log' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  191.     echo '; Verbosity' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  192.     echo 'verbosity=DEBUG' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  193.     echo '; Should IP addresses be logged or not' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  194.     echo 'log_ip_addresses=false' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  195.     echo '' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  196.     echo '[hooks]' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  197.     echo '; Arguments to the session.{up,pre-down,down} hooks are as follows:' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  198.     echo ';' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  199.     echo ';    <tunnel_id> <session_id> <interface> <mtu> <endpoint_ip> <endpoint_port> <local_port>' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  200.     echo ';' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  201.     echo '; Arguments to the session.mtu-changed hook are as follows:' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  202.     echo ';' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  203.     echo ';    <tunnel_id> <session_id> <interface> <old_mtu> <new_mtu>' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  204.     echo ';' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  205.     echo '' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  206.     echo '; Called after the tunnel interface goes up' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  207.     echo 'session.up=/opt/tunneldigger/broker/scripts/up_hook.sh' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  208.     echo '; Called just before the tunnel interface goes down' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  209.     echo 'session.pre-down=' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  210.     echo '; Called after the tunnel interface goes down' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  211.     echo 'session.down=' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  212.     echo '; Called after the tunnel MTU gets changed because of PMTU discovery' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  213.     echo 'session.mtu-changed=' >> $rootdir/opt/tunneldigger/broker/l2tp_broker.cfg

  214. 

  215.     echo '[Unit]' > $rootdir/etc/systemd/system/tunneldigger.service

  216.     echo 'Description=TunnelDigger Broker' >> $rootdir/etc/systemd/system/tunneldigger.service

  217.     echo 'After=syslog.target' >> $rootdir/etc/systemd/system/tunneldigger.service

  218.     echo 'After=network.target' >> $rootdir/etc/systemd/system/tunneldigger.service

  219.     echo '' >> $rootdir/etc/systemd/system/tunneldigger.service

  220.     echo '[Service]' >> $rootdir/etc/systemd/system/tunneldigger.service

  221.     echo 'Type=simple' >> $rootdir/etc/systemd/system/tunneldigger.service

  222.     echo 'User=root' >> $rootdir/etc/systemd/system/tunneldigger.service

  223.     echo 'Group=root' >> $rootdir/etc/systemd/system/tunneldigger.service

  224.     echo 'WorkingDirectory=/opt/tunneldigger/broker' >> $rootdir/etc/systemd/system/tunneldigger.service

  225.     echo 'ExecStart=/opt/tunneldigger/broker/l2tp_broker.py l2tp_broker.cfg' >> $rootdir/etc/systemd/system/tunneldigger.service

  226.     echo 'Restart=always' >> $rootdir/etc/systemd/system/tunneldigger.service

  227.     echo 'RestartSec=60' >> $rootdir/etc/systemd/system/tunneldigger.service

  228.     echo '' >> $rootdir/etc/systemd/system/tunneldigger.service

  229.     echo '[Install]' >> $rootdir/etc/systemd/system/tunneldigger.service

  230.     echo 'WantedBy=multi-user.target' >> $rootdir/etc/systemd/system/tunneldigger.service

  231. 

  232.     echo '#!/bin/bash' > $rootdir/usr/bin/meshtunnel

  233.     echo 'if [ ! $1 ]; then' >> $rootdir/usr/bin/meshtunnel

  234.     echo '    echo "Syntax: meshtunnel [from external IP] [to external IP]"' >> $rootdir/usr/bin/meshtunnel

  235.     echo '    exit 1' >> $rootdir/usr/bin/meshtunnel

  236.     echo 'fi' >> $rootdir/usr/bin/meshtunnel

  237.     echo 'if [ ! $2 ]; then' >> $rootdir/usr/bin/meshtunnel

  238.     echo '    echo "Syntax: meshtunnel [from external IP] [to external IP]"' >> $rootdir/usr/bin/meshtunnel

  239.     echo '    exit 2' >> $rootdir/usr/bin/meshtunnel

  240.     echo 'fi' >> $rootdir/usr/bin/meshtunnel

  241.     echo '' >> $rootdir/usr/bin/meshtunnel

  242.     echo 'sed -i "s|address=.*|address=$1|g" /opt/tunneldigger/broker/l2tp_broker.cfg' >> $rootdir/usr/bin/meshtunnel

  243.     echo 'systemctl restart tunneldigger' >> $rootdir/usr/bin/meshtunnel

  244.     echo 'sleep 3' >> $rootdir/usr/bin/meshtunnel

  245.     echo 'cd /opt/tunneldigger/client' >> $rootdir/usr/bin/meshtunnel

  246.     echo './l2tp_client -f -u foo -l ${2}:53 -i l2tp' >> $rootdir/usr/bin/meshtunnel

  247.     echo 'exit 0' >> $rootdir/usr/bin/meshtunnel

  248.     chmod +x $rootdir/usr/bin/meshtunnel

  249. }

  250. 

  251. function install_batman {

  252.     if [ $INSTALLING_MESH ]; then

  253.         mesh_install_batman

  254.         return

  255.     fi

  256.     if [[ $ENABLE_BATMAN != "yes" ]]; then

  257.         return

  258.     fi

  259. 

  260.     ${PROJECT_NAME}-mesh-install -f batman

  261.     if [ ! "$?" = "0" ]; then

  262.         echo $'Failed to install batman'

  263.         exit 72524

  264.     fi

  265. 

  266.     function_check configure_firewall_for_batman

  267.     configure_firewall_for_batman

  268.     APP_INSTALLED=1

  269. }

  270. 

  271. # NOTE: deliberately no exit 0