search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
allow coexistance of N build and AC build.
[tomato.git] / release / src / router / rc / nocat.c
blob112bafd97d15aa993a6759a94d9e0793c8275e90
1 /*
2 * nocat.c
3 *
4 * Copyright (C) 2009 zd <tomato@winddns.cn>
5 * Copyright (C) 2011 Modifications for K2.6 Victek, Roadkill
6 *
7 * $Id:
8 */
9 #include <stdlib.h>
10 #include <rc.h>
11 #include <shutils.h>
12 #include <utils.h>
13 #include <syslog.h>
14 #include <sys/stat.h>
15 #define NOCAT_CONF "/tmp/etc/nocat.conf"
16
17
18 int build_nocat_conf( void )
19 {
20 char *p;
21 FILE *fp;
22
23
24 if( !( fp = fopen( NOCAT_CONF, "w" ) ) )
25 {
26 perror( NOCAT_CONF );
27 return errno;
28 }
29
30 fprintf( fp, "#\n" );
31
32 /*
33 * settings that need to be set based on router configurations
34 * Autodetected on the device: lan_ifname & NC_Iface variable
35 */
36 fprintf( fp, "ExternalDevice\t%s\n", nvram_safe_get("wan_iface"));
37 fprintf( fp, "RouteOnly\t%s\n", "1" );
38
39 if (nvram_match( "NC_BridgeLAN", "br0") )
40 {
41 fprintf( fp, "InternalDevice\t%s\n", nvram_safe_get( "lan_ifname" ));
42 fprintf( fp, "GatewayAddr\t%s\n", nvram_safe_get( "lan_ipaddr" ) );
43 }
44 if (nvram_match( "NC_BridgeLAN", "br1") )
45 {
46 fprintf( fp, "InternalDevice\t%s\n", nvram_safe_get( "lan1_ifname" ));
47 fprintf( fp, "GatewayAddr\t%s\n", nvram_safe_get( "lan1_ipaddr" ) );
48 }
49 if (nvram_match( "NC_BridgeLAN", "br2") )
50 {
51 fprintf( fp, "InternalDevice\t%s\n", nvram_safe_get( "lan2_ifname" ));
52 fprintf( fp, "GatewayAddr\t%s\n", nvram_safe_get( "lan2_ipaddr" ) );
53 }
54 if (nvram_match( "NC_BridgeLAN", "br3") )
55 {
56 fprintf( fp, "InternalDevice\t%s\n", nvram_safe_get( "lan3_ifname" ));
57 fprintf( fp, "GatewayAddr\t%s\n", nvram_safe_get( "lan3_ipaddr" ) );
58 }
59
60 fprintf( fp, "GatewayMAC\t%s\n", nvram_safe_get( "et0macaddr" ) );
61
62 /*
63 *These are user defined, eventually via the web page
64 */
65 if ((p = nvram_get("NC_Verbosity")) == NULL) p = "2";
66 fprintf( fp, "Verbosity\t%s\n", p );
67
68 if ((p = nvram_get("NC_GatewayName")) == NULL) p = "Tomato RAF Portal";
69 fprintf( fp, "GatewayName\t%s\n", p );
70
71 if ((p = nvram_get("NC_GatewayPort")) == NULL) p = "5280";
72 fprintf( fp, "GatewayPort\t%s\n", p );
73
74 if ((p = nvram_get("NC_Password")) == NULL) p = "";
75 fprintf( fp, "GatewayPassword\t%s\n", p );
76
77 if ((p = nvram_get("NC_GatewayMode")) == NULL) p = "Open";
78 fprintf( fp, "GatewayMode\t%s\n", p );
79
80 if ((p = nvram_get("NC_DocumentRoot")) == NULL) p = "/tmp/splashd";
81 fprintf( fp, "DocumentRoot\t%s\n", p );
82 if( nvram_invmatch( "NC_SplashURL", "" ) )
83 {
84 fprintf( fp, "SplashURL\t%s\n", nvram_safe_get( "NC_SplashURL" ) );
85 fprintf( fp, "SplashURLTimeout\t%s\n",
86 nvram_safe_get( "NC_SplashURLTimeout" ) );
87 }
88 /*
89 * do we really need this?
90 * Internal register of host IP's logged.. that's all (Victek)
91 */
92 fprintf( fp, "LeaseFile\t%s\n", "/tmp/nocat.leases");
93
94 /*
95 * Open-mode and common options
96 */
97 fprintf( fp, "FirewallPath\t%s\n", "/usr/libexec/nocat/" );
98 fprintf( fp, "ExcludePorts\t%s\n", nvram_safe_get( "NC_ExcludePorts" ) );
99 fprintf( fp, "IncludePorts\t%s\n", nvram_safe_get( "NC_IncludePorts" ) );
100 fprintf( fp, "AllowedWebHosts\t%s %s\n", nvram_safe_get( "lan_ipaddr" ),
101 nvram_safe_get( "NC_AllowedWebHosts" ) );
102 /*
103 * TJaqua: Added MACWhiteList to ignore given machines or routers on the
104 * local net (e.g. routers with an alternate Auth).
105 */
106 fprintf( fp, "MACWhiteList\t%s\n", nvram_safe_get( "NC_MACWhiteList" ) );
107 /*
108 * TJaqua: Added AnyDNS to pass through any client-defined servers.
109 */
110 fprintf( fp, "AnyDNS\t%s\n", "1" );
111
112 fprintf( fp, "HomePage\t%s\n", nvram_safe_get( "NC_HomePage" ) );
113
114 fprintf( fp, "PeerCheckTimeout\t%s\n", nvram_safe_get( "NC_PeerChecktimeout" ) );
115
116 if ((p = nvram_get("NC_ForcedRedirect")) == NULL) p = "0";
117 fprintf( fp, "ForcedRedirect\t%s\n", p );
118
119 if ((p = nvram_get("NC_IdleTimeout")) == NULL) p = "0";
120 fprintf( fp, "IdleTimeout\t%s\n", p );
121
122 if ((p = nvram_get("NC_MaxMissedARP")) == NULL) p = "5";
123 fprintf( fp, "MaxMissedARP\t%s\n", p );
124
125 if ((p = nvram_get("NC_LoginTimeout")) == NULL) p = "6400";
126 fprintf( fp, "LoginTimeout\t%s\n", p );
127
128 if ((p = nvram_get("NC_RenewTimeout")) == NULL) p = "0";
129 fprintf( fp, "RenewTimeout\t%s\n", p );
130
131 fclose( fp );
132 /*
133 * end BPsmythe
134 */
135 fprintf( stderr, "Wrote: %s\n", NOCAT_CONF );
136
137 return 0;
138 }
139
140 void start_nocat(void)
141 {
142 FILE *fp;
143 char splashfile[255];
144 char logofile[255];
145 char iconfile[255];
146 char cpcmd[255];
147 char *p;
148
149 stop_nocat();
150
151 if( !nvram_match( "NC_enable", "1" ) )
152 return;
153 /* not needed .. but this is what it's testing depending on kernel.. should be modified in /nocat/src/nocat.conf
154 #ifdef LINUX26
155 syslog(LOG_INFO,"Device using K2.6\n");
156 syslog(LOG_INFO,"tested & bypassed modprobe xt_mark\n");
157 syslog(LOG_INFO,"tested & bypassed modprobe xt_mac\n");
158 #else
159 syslog(LOG_INFO,"Device using K2.4\n");
160 syslog(LOG_INFO,"Tested & bypassed modprobe ipt_mark\n");
161 syslog(LOG_INFO,"Tested & bypassed modprobe ipt_mac\n");
162 #endif
163 */
164 build_nocat_conf();
165
166 if ((p = nvram_get("NC_DocumentRoot")) == NULL) p = "/tmp/splashd";
167 sprintf( splashfile, "%s/splash.html", p );
168 sprintf( logofile, "%s/style.css", p );
169 sprintf( iconfile, "%s/favicon.ico", p );
170 if (!f_exists(splashfile)) {
171 nvram_get_file("NC_SplashFile", splashfile, 8192);
172 if (!f_exists(splashfile)) {
173 sprintf(cpcmd, "cp /www/splash.html %s", splashfile);
174 system(cpcmd);
175 sprintf(cpcmd, "cp /www/style.css %s", logofile);
176 system(cpcmd);
177 sprintf(cpcmd, "cp /www/favicon.ico %s", iconfile);
178 system(cpcmd);
179 }
180 }
181
182 if( !( fp = fopen( "/tmp/start_splashd.sh", "w" ) ) )
183 {
184 perror( "/tmp/start_splashd.sh" );
185 return;
186 }
187
188 // if ( !pidof("splashd") > 0 && (fp = fopen("/tmp/var/lock/splashd.lock", "r" ) ) )
189 // {
190 // unlink( "/tmp/var/lock/splashd.lock");
191 // }
192
193 fprintf( fp, "#!/bin/sh\n" );
194 fprintf( fp, "LOGGER=logger\n");
195 fprintf( fp, "LOCK_FILE=/tmp/var/lock/splashd.lock\n");
196 fprintf( fp, "if [ -f $LOCK_FILE ]; then\n");
197 fprintf( fp, " $LOGGER \"Captive Portal halted (0), other process starting.\" \n");
198 fprintf( fp, " exit\n");
199 fprintf( fp, "fi\n");
200 fprintf( fp, "echo \"TOMATO_RAF\" > $LOCK_FILE\n");
201 fprintf( fp, "sleep 20\n" );
202 fprintf( fp, "$LOGGER \"splashd : Captive Portal Splash Daemon successfully started\" \n");
203 fprintf( fp, "echo 1 > /proc/sys/net/ipv4/tcp_tw_reuse\n");
204 fprintf( fp, "/usr/sbin/splashd >> /tmp/nocat.log 2>&1 &\n" );
205 fprintf( fp, "sleep 2\n" );
206 fprintf( fp, "echo 0 > /proc/sys/net/ipv4/tcp_tw_reuse\n");
207 fprintf( fp, "rm $LOCK_FILE\n");
208 fclose( fp );
209 chmod( "/tmp/start_splashd.sh", 0700 );
210 xstart( "/tmp/start_splashd.sh" );
211 return;
212 }
213
214 void stop_nocat( void )
215 {
216 if( pidof( "splashd" ) > 0 )
217 {
218 syslog( LOG_INFO,
219 "splashd : Captive Portal Splash daemon successfully stopped\n" );
220 killall_tk( "splashd");
221 eval( "/usr/libexec/nocat/uninitialize.fw" );
222 system( "rm /tmp/nocat.leases\n");
223 system( "rm /tmp/start_splashd.sh\n");
224 system( "rm /tmp/nocat.log\n");
225
226 }
227 return;
228 }
229
230 void reset_nocat( void )
231 {
232 if( pidof( "splashd" ) > 0 )
233 {
234 syslog( LOG_INFO,
235 "splashd : Reseting splashd firewall rules\n" );
236 killall( "splashd", SIGUSR1);
237 }
238 return;
239 }
Tomato firmware and modifications.