/**
* test case for get_broadcast() functions
*/
void
TestEthernet::tcGet_broadcast(void)
{
cout << "获取广播地址:" << endl;
char *interface_name = NULL;
char *strRetValue = NULL;
if (get_broadcast(interface_name, strRetValue))
{
cout << "获取广播地址成功!" << endl;
cout << "interface_name : " << interface_name << endl;
cout << "strRetValue : " << strRetValue << endl;
}
else
{
cout << "获取广播地址失败!" << endl;
}
char interface_name1[] = "abc";
char *strRetValue1 = NULL;
if (get_broadcast(interface_name1, strRetValue1))
{
cout << "获取广播地址成功!" << endl;
cout << "interface_name : " << interface_name1 << endl;
cout << "strRetValue : " << strRetValue1 << endl;
}
else
{
cout << "获取广播地址失败!" << endl;
}
char interface_name2[] = "eth0";
char *strRetValue2 = NULL;
if (get_broadcast(interface_name2, strRetValue2))
{
cout << "获取广播地址成功!" << endl;
cout << "interface_name : " << interface_name2 << endl;
cout << "strRetValue : " << strRetValue2 << endl;
}
else
{
cout << "获取广播地址失败!" << endl;
}
}
t_bool seek_master(t_player *player, t_cmds **cmds)
{
int i;
int pos;
char **split;
i = -1;
if ((split = get_broadcast(&pos, &player->msg)) == NULL)
return (FALSE);
is_master(player, pos, split);
if (pos == 1)
modify_cmd(ADV, -1, NULL, cmds);
else if (pos == 3)
modify_cmd(LEFT, -1, NULL, cmds);
else if (pos == 5)
{
modify_cmd(LEFT, -1, NULL, cmds);
modify_cmd(LEFT, -1, NULL, cmds);
}
else if (pos == 7)
modify_cmd(RIGHT, -1, NULL, cmds);
while (split[++i])
ft_strdel(&split[i]);
free(split);
return (TRUE);
}
static int bound_tv(void)
{
static char *ifname;
ifname = safe_getenv("interface");
static char *ip;
ip = safe_getenv("ip");
static char *net;
net = safe_getenv("subnet");
static char *cidr;
cidr = safe_getenv("cidrroute");
if (ip && net && ifname) {
static char bcast[32];
strcpy(bcast, ip);
get_broadcast(bcast, net);
nvram_set("tvnicaddr", ip);
eval("ifconfig", ifname, ip, "netmask", net, "broadcast", bcast,
"multicast");
}
if (cidr && ifname) {
char *callbuffer = malloc(strlen(cidr) + 128);
sprintf(callbuffer,
"export cidrroute=\"%s\";export interface=\"%s\";/etc/cidrroute.sh",
cidr, ifname);
system(callbuffer);
free(callbuffer);
}
return 0;
}
/* Return the broadcast ip. */
static IP broadcast_ip(void)
{
IP ip;
#ifdef __linux
ip.uint32 = get_broadcast();
if (ip.uint32 == 0)
ip.uint32 = ~0; /* Error occured, but try anyway? */
#else
ip.uint32 = ~0;
#endif
return ip;
}
void start_pptpd(void)
{
int ret = 0, mss = 0;
char *lpTemp;
FILE *fp;
if (!nvram_invmatch("pptpd_enable", "0")) {
stop_pptpd();
return;
}
#ifdef HAVE_PPTP_ACCEL
insmod("pptp");
#endif
// cprintf("stop vpn modules\n");
// stop_vpn_modules ();
// copy existing peer data to /tmp
if (nvram_default_match("sys_enable_jffs2", "1", "0"))
system("/bin/cp /jffs/etc/pptp_peer.db /tmp/");
// Create directory for use by pptpd daemon and its supporting files
mkdir("/tmp/pptpd", 0744);
cprintf("open options file\n");
// Create options file that will be unique to pptpd to avoid interference
// with pppoe and pptp
fp = fopen("/tmp/pptpd/options.pptpd", "w");
cprintf("adding radius plugin\n");
if (nvram_match("pptpd_radius", "1"))
fprintf(fp, "plugin radius.so\nplugin radattr.so\n"
"radius-config-file /tmp/pptpd/radius/radiusclient.conf\n");
cprintf("check if wan_wins = zero\n");
int nowins = 0;
if (nvram_match("wan_wins", "0.0.0.0")) {
nvram_set("wan_wins", "");
nowins = 1;
}
if (strlen(nvram_safe_get("wan_wins")) == 0)
nowins = 1;
cprintf("write config\n");
fprintf(fp, "lock\n"
"name *\n"
"nobsdcomp\n"
"nodeflate\n"
"auth\n"
"refuse-pap\n"
"refuse-eap\n"
"refuse-chap\n"
"refuse-mschap\n"
"require-mschap-v2\n");
if (nvram_match("pptpd_forcemppe", "1"))
fprintf(fp, "mppe required,stateless,no40,no56\n");
else
fprintf(fp, "mppe stateless\n");
fprintf(fp, "mppc\n" //enable compression
"debug\n" "logfd 2\n"
"ms-ignore-domain\n"
"chap-secrets /tmp/pptpd/chap-secrets\n"
"ip-up-script /tmp/pptpd/ip-up\n"
"ip-down-script /tmp/pptpd/ip-down\n"
"proxyarp\n"
"ipcp-accept-local\n"
"ipcp-accept-remote\n"
"lcp-echo-failure 15\n"
"lcp-echo-interval 4\n"
// "lcp-echo-adaptive" //disable interval
"mtu %s\n" "mru %s\n",
nvram_safe_get("pptpd_mtu"),
nvram_safe_get("pptpd_mru"));
if (!nowins) {
fprintf(fp, "ms-wins %s\n", nvram_safe_get("wan_wins"));
}
if (strlen(nvram_safe_get("pptpd_wins1"))) {
fprintf(fp, "ms-wins %s\n", nvram_safe_get("pptpd_wins1"));
}
if (strlen(nvram_safe_get("pptpd_wins2"))) {
fprintf(fp, "ms-wins %s\n", nvram_safe_get("pptpd_wins2"));
}
struct dns_lists *dns_list = get_dns_list();
if (nvram_match("dnsmasq_enable", "1")) {
if (nvram_invmatch("lan_ipaddr", ""))
fprintf(fp, "ms-dns %s\n",
nvram_safe_get("lan_ipaddr"));
} else if (nvram_match("local_dns", "1")) {
if (dns_list && (nvram_invmatch("lan_ipaddr", "")
|| strlen(dns_list->dns_server[0]) > 0
|| strlen(dns_list->dns_server[1]) > 0
|| strlen(dns_list->dns_server[2]) > 0)) {
if (nvram_invmatch("lan_ipaddr", ""))
fprintf(fp, "ms-dns %s\n",
nvram_safe_get("lan_ipaddr"));
if (strlen(dns_list->dns_server[0]) > 0)
fprintf(fp, "ms-dns %s\n",
dns_list->dns_server[0]);
if (strlen(dns_list->dns_server[1]) > 0)
fprintf(fp, "ms-dns %s\n",
dns_list->dns_server[1]);
if (strlen(dns_list->dns_server[2]) > 0)
fprintf(fp, "ms-dns %s\n",
dns_list->dns_server[2]);
}
} else {
if (dns_list
&& (strlen(dns_list->dns_server[0]) > 0
|| strlen(dns_list->dns_server[1]) > 0
|| strlen(dns_list->dns_server[2]) > 0)) {
if (strlen(dns_list->dns_server[0]) > 0)
fprintf(fp, "ms-dns %s\n",
dns_list->dns_server[0]);
if (strlen(dns_list->dns_server[1]) > 0)
fprintf(fp, "ms-dns %s\n",
dns_list->dns_server[1]);
if (strlen(dns_list->dns_server[2]) > 0)
fprintf(fp, "ms-dns %s\n",
dns_list->dns_server[2]);
}
}
if (dns_list)
free(dns_list);
if (strlen(nvram_safe_get("pptpd_dns1"))) {
fprintf(fp, "ms-dns %s\n", nvram_safe_get("pptpd_dns1"));
}
if (strlen(nvram_safe_get("pptpd_dns2"))) {
fprintf(fp, "ms-dns %s\n", nvram_safe_get("pptpd_dns2"));
}
// Following is all crude and need to be revisited once testing confirms
// that it does work
// Should be enough for testing..
if (nvram_match("pptpd_radius", "1")) {
if (nvram_get("pptpd_radserver") != NULL
&& nvram_get("pptpd_radpass") != NULL) {
fclose(fp);
mkdir("/tmp/pptpd/radius", 0744);
fp = fopen("/tmp/pptpd/radius/radiusclient.conf", "w");
fprintf(fp, "auth_order radius\n"
"login_tries 4\n"
"login_timeout 60\n"
"radius_timeout 10\n"
"nologin /etc/nologin\n"
"servers /tmp/pptpd/radius/servers\n"
"dictionary /etc/dictionary\n"
"seqfile /var/run/radius.seq\n"
"mapfile /etc/port-id-map\n"
"radius_retries 3\n"
"authserver %s:%s\n",
nvram_get("pptpd_radserver"),
nvram_get("pptpd_radport") ?
nvram_get("pptpd_radport") : "radius");
if (nvram_get("pptpd_radserver") != NULL
&& nvram_get("pptpd_acctport") != NULL)
fprintf(fp, "acctserver %s:%s\n",
nvram_get("pptpd_radserver"),
nvram_get("pptpd_acctport") ?
nvram_get("pptpd_acctport") :
"radacct");
fclose(fp);
fp = fopen("/tmp/pptpd/radius/servers", "w");
fprintf(fp, "%s\t%s\n", nvram_get("pptpd_radserver"),
nvram_get("pptpd_radpass"));
fclose(fp);
} else
fclose(fp);
} else
fclose(fp);
// Create pptpd.conf options file for pptpd daemon
fp = fopen("/tmp/pptpd/pptpd.conf", "w");
if (nvram_match("pptpd_bcrelay", "1"))
fprintf(fp, "bcrelay %s\n", nvram_safe_get("lan_ifname"));
fprintf(fp, "connections %s\nlocalip %s\n"
"remoteip %s\n", nvram_safe_get("pptpd_conn"),nvram_safe_get("pptpd_lip"),
nvram_safe_get("pptpd_rip"));
fclose(fp);
// Create ip-up and ip-down scripts that are unique to pptpd to avoid
// interference with pppoe and pptp
/*
* adjust for tunneling overhead (mtu - 40 byte IP - 108 byte tunnel
* overhead)
*/
if (nvram_match("mtu_enable", "1"))
mss = atoi(nvram_safe_get("wan_mtu")) - 40 - 108;
else
mss = 1500 - 40 - 108;
char bcast[32];
strcpy(bcast, nvram_safe_get("lan_ipaddr"));
get_broadcast(bcast, nvram_safe_get("lan_netmask"));
fp = fopen("/tmp/pptpd/ip-up", "w");
fprintf(fp, "#!/bin/sh\n" "startservice set_routes\n" // reinitialize
"echo $PPPD_PID $1 $5 $6 $PEERNAME >> /tmp/pptp_connected\n"
"iptables -I INPUT -i $1 -j ACCEPT\n"
"iptables -I FORWARD -i $1 -j ACCEPT\n" //
"iptables -I FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu\n"
"iptables -t nat -I PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destination %s\n" // rule for wake on lan over pptp tunnel
"%s\n", bcast,
nvram_get("pptpd_ipdown_script") ?
nvram_get("pptpd_ipdown_script") : "");
// per peer shaping
if (nvram_match("pptpd_radius", "1"))
fprintf(fp, "IN=`grep -i RP-Upstream-Speed-Limit /var/run/radattr.$1 | awk '{print $2}'`\n"
"OUT=`grep -i RP-Downstream-Speed-Limit /var/run/radattr.$1 | awk '{print $2}'`\n"
"if [ ! -z $IN ] && [ $IN -gt 0 ]\n" //Speed limit !0 and !empty
"then tc qdisc del root dev $1\n"
"\t tc qdisc add dev $1 handle ffff: ingress\n"
"\t tc filter add dev $1 parent ffff: protocol ip prio 50 u32 match ip src 0.0.0.0/0 police rate \"$IN\"kbit burst \"$IN\"kbit drop flowid :1\n"
"fi\n"
"if [ ! -z $OUT ] && [ $OUT -gt 0 ]\n"
"then tc qdisc del dev $1 ingress\n"
"\t tc qdisc add dev $1 root tbf rate \"$OUT\"kbit latency 50ms burst \"$OUT\"kbit\n"
"fi\n");
fclose(fp);
fp = fopen("/tmp/pptpd/ip-down", "w");
fprintf(fp, "#!/bin/sh\n" "grep -v $PPPD_PID /tmp/pptp_connected > /tmp/pptp_connected.tmp\n"
"mv /tmp/pptp_connected.tmp /tmp/pptp_connected\n"
// calc connected time and volume per peer
"CONTIME=$(($CONNECT_TIME+`grep $PEERNAME /tmp/pptp_peer.db | awk '{print $3}'`))\n"
"SENT=$(($BYTES_SENT+`grep $PEERNAME /tmp/pptp_peer.db | awk '{print $4}'`))\n"
"RCVD=$(($BYTES_RCVD+`grep $PEERNAME /tmp/pptp_peer.db | awk '{print $5}'`))\n"
"grep -v $PEERNAME /tmp/ppp_peer.db > /tmp/pptp_peer.db.tmp\n"
"mv /tmp/pptp_peer.db.tmp /tmp/pptp_peer.db\n"
"echo \"$PEERNAME $CONTIME $SENT $RCVD\" >> /tmp/pptp_peer.db\n"
"iptables -D FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu\n"
"iptables -D INPUT -i $1 -j ACCEPT\n" "iptables -D FORWARD -i $1 -j ACCEPT\n"
"iptables -t nat -D PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destination %s\n" // rule for wake on lan over pptp tunnel
"%s\n", bcast,
nvram_get("pptpd_ipdown_script") ?
nvram_get("pptpd_ipdown_script") : "");
if (nvram_match("pptpd_radius", "1"))
fprintf(fp, "tc qdisc del root dev $1\n"
"tc qdisc del ingress dev $1\n");
fclose(fp);
chmod("/tmp/pptpd/ip-up", 0744);
chmod("/tmp/pptpd/ip-down", 0744);
// Exctract chap-secrets from nvram and add the default account with
// routers password
lpTemp = nvram_safe_get("pptpd_auth");
fp = fopen("/tmp/pptpd/chap-secrets", "w");
// fprintf (fp, "root\t*\t%s\t*\n", nvram_safe_get ("http_passwd"));
if (strlen(lpTemp) != 0)
fprintf(fp, "%s\n", lpTemp);
fclose(fp);
chmod("/tmp/pptpd/chap-secrets", 0600);
// Execute pptpd daemon
ret =
eval("pptpd", "-c", "/tmp/pptpd/pptpd.conf", "-o",
"/tmp/pptpd/options.pptpd");
dd_syslog(LOG_INFO, "pptpd : pptp daemon successfully started\n");
return;
}
void start_pptpd(void)
{
int ret = 0, mss = 0, manual_dns = 0;
char *lpTemp;
FILE *fp;
int pid = getpid();
_dprintf("start_pptpd: getpid= %d\n", pid);
if(getpid() != 1) {
notify_rc("start_pptpd");
return;
}
if (!nvram_match("pptpd_enable", "1")) {
return;
}
// cprintf("stop vpn modules\n");
// stop_vpn_modules ();
// Create directory for use by pptpd daemon and its supporting files
mkdir("/tmp/pptpd", 0744);
cprintf("open options file\n");
// Create options file that will be unique to pptpd to avoid interference
// with pppoe and pptp
fp = fopen("/tmp/pptpd/options.pptpd", "w");
fprintf(fp, "logfile /var/log/pptpd-pppd.log\ndebug\n");
if (nvram_match("pptpd_radius", "1"))
fprintf(fp, "plugin radius.so\nplugin radattr.so\n"
"radius-config-file /tmp/pptpd/radius/radiusclient.conf\n");
cprintf("check if wan_wins = zero\n");
int nowins = 0;
if (nvram_match("wan_wins", "0.0.0.0")) {
nvram_set("wan_wins", "");
nowins = 1;
}
if (strlen(nvram_safe_get("wan_wins")) == 0)
nowins = 1;
cprintf("write config\n");
fprintf(fp, "lock\n"
"name *\n"
"proxyarp\n"
"ipcp-accept-local\n"
"ipcp-accept-remote\n"
"lcp-echo-failure 10\n"
"lcp-echo-interval 5\n"
"deflate 0\n" "auth\n" "-chap\n" "-mschap\n" "+mschap-v2\n");
fprintf(fp, "nomppe-stateful\n");
if (nvram_match("pptpd_forcemppe", "none")) {
fprintf(fp, "nomppe nomppc\n");
}
else if (nvram_match("pptpd_forcemppe", "auto")) {
fprintf(fp, "require-mppe-40\n"
"require-mppe-56\n"
"require-mppe-128\n");
}
else if (nvram_match("pptpd_forcemppe", "+mppe-40")) {
fprintf(fp, "require-mppe\n"
"require-mppe-40\n");
}
else if (nvram_match("pptpd_forcemppe", "+mppe-56")) {
fprintf(fp, "require-mppe\n"
"nomppe-40\n"
"require-mppe-56\n");
}
else if (nvram_match("pptpd_forcemppe", "+mppe-128")) {
fprintf(fp, "require-mppe\n"
"nomppe-40\n"
"nomppe-56\n"
"require-mppe-128\n");
}
fprintf(fp, "ms-ignore-domain\n"
"chap-secrets /tmp/pptpd/chap-secrets\n"
"ip-up-script /tmp/pptpd/ip-up\n"
"ip-down-script /tmp/pptpd/ip-down\n"
"mtu %s\n" "mru %s\n",
nvram_get("pptpd_mtu") ? nvram_get("pptpd_mtu") : "1450",
nvram_get("pptpd_mru") ? nvram_get("pptpd_mru") : "1450");
//WINS Server
if (!nowins) {
fprintf(fp, "ms-wins %s\n", nvram_safe_get("wan_wins"));
}
if (strlen(nvram_safe_get("pptpd_wins1"))) {
fprintf(fp, "ms-wins %s\n", nvram_safe_get("pptpd_wins1"));
}
if (strlen(nvram_safe_get("pptpd_wins2"))) {
fprintf(fp, "ms-wins %s\n", nvram_safe_get("pptpd_wins2"));
}
//DNS Server
if (strlen(nvram_safe_get("pptpd_dns1"))) {
fprintf(fp, "ms-dns %s\n", nvram_safe_get("pptpd_dns1"));
manual_dns=1;
}
if (strlen(nvram_safe_get("pptpd_dns2"))) {
fprintf(fp, "ms-dns %s\n", nvram_safe_get("pptpd_dns2"));
manual_dns=1;
}
if(!manual_dns && !nvram_match("lan_ipaddr", ""))
fprintf(fp, "ms-dns %s\n", nvram_safe_get("lan_ipaddr"));
// force ppp interface starting from 10
fprintf(fp, "minunit 10\n");
// Following is all crude and need to be revisited once testing confirms
// that it does work
// Should be enough for testing..
if (nvram_match("pptpd_radius", "1")) {
if (nvram_get("pptpd_radserver") != NULL
&& nvram_get("pptpd_radpass") != NULL) {
fclose(fp);
mkdir("/tmp/pptpd/radius", 0744);
fp = fopen("/tmp/pptpd/radius/radiusclient.conf", "w");
fprintf(fp, "auth_order radius\n"
"login_tries 4\n"
"login_timeout 60\n"
"radius_timeout 10\n"
"nologin /etc/nologin\n"
"servers /tmp/pptpd/radius/servers\n"
"dictionary /etc/dictionary\n"
"seqfile /var/run/radius.seq\n"
"mapfile /etc/port-id-map\n"
"radius_retries 3\n"
"authserver %s:%s\n",
nvram_get("pptpd_radserver"),
nvram_get("pptpd_radport") ?
nvram_get("pptpd_radport") : "radius");
if (nvram_get("pptpd_radserver") != NULL
&& nvram_get("pptpd_acctport") != NULL)
fprintf(fp, "acctserver %s:%s\n",
nvram_get("pptpd_radserver"),
nvram_get("pptpd_acctport") ?
nvram_get("pptpd_acctport") :
"radacct");
fclose(fp);
fp = fopen("/tmp/pptpd/radius/servers", "w");
fprintf(fp, "%s\t%s\n", nvram_get("pptpd_radserver"),
nvram_get("pptpd_radpass"));
fclose(fp);
} else
fclose(fp);
} else
fclose(fp);
// Create pptpd.conf options file for pptpd daemon
fp = fopen("/tmp/pptpd/pptpd.conf", "w");
fprintf(fp, "bcrelay %s\n", nvram_safe_get("pptpd_broadcast"));
fprintf(fp, "localip %s\n"
"remoteip %s\n", nvram_safe_get("lan_ipaddr"),
nvram_safe_get("pptpd_clients"));
fclose(fp);
// Create ip-up and ip-down scripts that are unique to pptpd to avoid
// interference with pppoe and pptp
/*
* adjust for tunneling overhead (mtu - 40 byte IP - 108 byte tunnel
* overhead)
*/
if (nvram_match("mtu_enable", "1"))
mss = atoi(nvram_safe_get("wan_mtu")) - 40 - 108;
else
mss = 1500 - 40 - 108;
char bcast[32];
strcpy(bcast, nvram_safe_get("lan_ipaddr"));
get_broadcast(bcast, nvram_safe_get("lan_netmask"));
fp = fopen("/tmp/pptpd/ip-up", "w");
fprintf(fp, "#!/bin/sh\n" "startservice set_routes\n" // reinitialize
"echo $PPPD_PID $1 $5 $6 $PEERNAME >> /tmp/pptp_connected\n"
"iptables -I FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu\n"
"iptables -I INPUT -i $1 -j ACCEPT\n" "iptables -I FORWARD -i $1 -j ACCEPT\n"
"iptables -t nat -I PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destinati on %s " // rule for wake on lan over pptp tunnel
"%s\n", bcast,
nvram_get("pptpd_ipup_script") ? nvram_get("pptpd_ipup_script") : "");
fclose(fp);
fp = fopen("/tmp/pptpd/ip-down", "w");
fprintf(fp, "#!/bin/sh\n" "grep -v $1 /tmp/pptp_connected > /tmp/pptp_connected.new\n"
"mv /tmp/pptp_connected.new /tmp/pptp_connected\n"
"iptables -D FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu\n"
"iptables -D INPUT -i $1 -j ACCEPT\n"
"iptables -D FORWARD -i $1 -j ACCEPT\n"
"iptables -t nat -D PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destination %s " // rule for wake on lan over pptp tunnel
"%s\n", bcast,
nvram_get("pptpd_ipdown_script") ? nvram_get("pptpd_ipdown_script") : "");
fclose(fp);
chmod("/tmp/pptpd/ip-up", 0744);
chmod("/tmp/pptpd/ip-down", 0744);
// Exctract chap-secrets from nvram
write_chap_secret("/tmp/pptpd/chap-secrets");
chmod("/tmp/pptpd/chap-secrets", 0600);
// Execute pptpd daemon
ret =
eval("pptpd", "-c", "/tmp/pptpd/pptpd.conf", "-o",
"/tmp/pptpd/options.pptpd");
_dprintf("start_pptpd: ret= %d\n", ret);
//dd_syslog(LOG_INFO, "pptpd : pptp daemon successfully started\n");
return;
}
void start_pptpd(void)
{
int ret = 0, manual_dns = 0, pptpd_opt = 0;
FILE *fp;
char buf[MAXLEN_TCAPI_MSG];
char lan_ipaddr[16] = {0};
int pid = getpid();
_dprintf("start_pptpd: getpid= %d\n", pid);
//if(getpid() != 1) {
//notify_rc("start_pptpd");
//return;
//}
if (!tcapi_match(VPN_DATA, "pptpd_enable", "1")) {
return;
}
// cprintf("stop vpn modules\n");
// stop_vpn_modules ();
// Create directory for use by pptpd daemon and its supporting files
mkdir("/tmp/pptpd", 0744);
cprintf("open options file\n");
// Create options file that will be unique to pptpd to avoid interference
// with pppoe and pptp
fp = fopen("/tmp/pptpd/options.pptpd", "w");
fprintf(fp, "logfile /var/log/pptpd-pppd.log\n");
//fprintf(fp, "debug dump logfd 2 nodetach\n");
if (tcapi_match(VPN_DATA, "pptpd_radius", "1"))
fprintf(fp, "plugin radius.so\nplugin radattr.so\n"
"radius-config-file /tmp/pptpd/radius/radiusclient.conf\n");
//cprintf("check if wan_wins = zero\n");
//int nowins = 0;
//if (nvram_match("wan_wins", "0.0.0.0")) {
//nvram_set("wan_wins", "");
//nowins = 1;
//}
//if (strlen(nvram_safe_get("wan_wins")) == 0)
//nowins = 1;
cprintf("write config\n");
fprintf(fp, "lock\n"
"name *\n"
"proxyarp\n"
// "ipcp-accept-local\n"
// "ipcp-accept-remote\n"
"lcp-echo-failure 10\n"
"lcp-echo-interval 6\n"
"deflate 0\n" "auth\n" "-chap\n"
"nomppe-stateful\n");
pptpd_opt = tcapi_get_int(VPN_DATA, "pptpd_chap");
fprintf(fp, "%smschap\n", (pptpd_opt == 0 || pptpd_opt & 1) ? "+" : "-");
fprintf(fp, "%smschap-v2\n", (pptpd_opt == 0 || pptpd_opt & 2) ? "+" : "-");
pptpd_opt = tcapi_get_int(VPN_DATA, "pptpd_mppe");
if (pptpd_opt == 0)
pptpd_opt = 1 | 4 | 8;
if (pptpd_opt & (1 | 2 | 4)) {
fprintf(fp, "%s", (pptpd_opt & 8) ? "" : "require-mppe\n");
fprintf(fp, "%smppe-128\n", (pptpd_opt & 1) ? "require-" : "no");
//fprintf(fp, "%smppe-56\n", (pptpd_opt & 2) ? "require-" : "no");
fprintf(fp, "%smppe-40\n", (pptpd_opt & 4) ? "require-" : "no");
} else
fprintf(fp, "nomppe nomppc\n");
fprintf(fp, "ms-ignore-domain\n"
"chap-secrets /tmp/pptpd/chap-secrets\n"
"ip-up-script /tmp/pptpd/ip-up\n"
"ip-down-script /tmp/pptpd/ip-down\n"
"mtu %d\n" "mru %d\n",
tcapi_get_int(VPN_DATA, "pptpd_mtu"),
tcapi_get_int(VPN_DATA, "pptpd_mru"));
//WINS Server
//if (!nowins) {
//fprintf(fp, "ms-wins %s\n", nvram_safe_get("wan_wins"));
//}
memset(buf, 0, sizeof(buf));
tcapi_get(VPN_DATA, "pptpd_wins1", buf);
if(strlen(buf)) {
fprintf(fp, "ms-wins %s\n", buf);
}
memset(buf, 0, sizeof(buf));
tcapi_get(VPN_DATA, "pptpd_wins2", buf);
if(strlen(buf)) {
fprintf(fp, "ms-wins %s\n", buf);
}
//DNS Server
memset(buf, 0, sizeof(buf));
tcapi_get(VPN_DATA, "pptpd_dns1", buf);
if(strlen(buf)) {
fprintf(fp, "ms-dns %s\n", buf);
manual_dns=1;
}
memset(buf, 0, sizeof(buf));
tcapi_get(VPN_DATA, "pptpd_dns2", buf);
if(strlen(buf)) {
fprintf(fp, "ms-dns %s\n", buf);
manual_dns=1;
}
tcapi_get("Lan_Entry0", "IP", lan_ipaddr);
if(!manual_dns && strcmp(lan_ipaddr, ""))
fprintf(fp, "ms-dns %s\n", lan_ipaddr);
// force ppp interface starting from 20
fprintf(fp, "minunit 20\n");
// Following is all crude and need to be revisited once testing confirms
// that it does work
// Should be enough for testing..
if (tcapi_match(VPN_DATA, "pptpd_radius", "1")) {
char pptpd_radserver[128] = {0};
char pptpd_radpass[128] = {0};
char pptpd_radport[128] = {0};
char pptpd_acctport[128] = {0};
if (tcapi_get(VPN_DATA, "pptpd_radserver", pptpd_radserver) == TCAPI_PROCESS_OK
&& tcapi_get(VPN_DATA, "pptpd_radpass", pptpd_radpass) == TCAPI_PROCESS_OK) {
fclose(fp);
mkdir("/tmp/pptpd/radius", 0744);
if (tcapi_get(VPN_DATA, "pptpd_radport", pptpd_radport) != TCAPI_PROCESS_OK)
strcpy(pptpd_radport, "radius");
fp = fopen("/tmp/pptpd/radius/radiusclient.conf", "w");
fprintf(fp, "auth_order radius\n"
"login_tries 4\n"
"login_timeout 60\n"
"radius_timeout 10\n"
"nologin /etc/nologin\n"
"servers /tmp/pptpd/radius/servers\n"
"dictionary /etc/dictionary\n"
"seqfile /var/run/radius.seq\n"
"mapfile /etc/port-id-map\n"
"radius_retries 3\n"
"authserver %s:%s\n",
pptpd_radserver, pptpd_radport);
if (tcapi_get(VPN_DATA, "pptpd_acctport", pptpd_acctport) != TCAPI_PROCESS_OK)
strcpy(pptpd_acctport, "radacct");
fprintf(fp, "acctserver %s:%s\n", pptpd_radserver, pptpd_acctport);
fclose(fp);
fp = fopen("/tmp/pptpd/radius/servers", "w");
fprintf(fp, "%s\t%s\n", pptpd_radserver, pptpd_radpass);
fclose(fp);
} else
fclose(fp);
} else
fclose(fp);
// Create pptpd.conf options file for pptpd daemon
fp = fopen("/tmp/pptpd/pptpd.conf", "w");
memset(buf, 0, sizeof(buf));
fprintf(fp, "bcrelay %s\n", tcapi_get_string(VPN_DATA, "pptpd_broadcast", buf));
memset(buf, 0, sizeof(buf));
fprintf(fp, "localip %s\n"
"remoteip %s\n", lan_ipaddr,
tcapi_get_string(VPN_DATA, "pptpd_clients", buf));
fclose(fp);
// Create ip-up and ip-down scripts that are unique to pptpd to avoid
// interference with pppoe and pptp
/*
* adjust for tunneling overhead (mtu - 40 byte IP - 108 byte tunnel
* overhead)
*/
//if (nvram_match("mtu_enable", "1"))
//mss = atoi(nvram_safe_get("wan_mtu")) - 40 - 108;
//else
//mss = 1500 - 40 - 108;
char bcast[32];
strcpy(bcast, lan_ipaddr);
memset(buf, 0, sizeof(buf));
get_broadcast(bcast, tcapi_get_string("Lan_Entry0", "netmask", buf));
memset(buf, 0, sizeof(buf));
tcapi_get(VPN_DATA, "pptpd_ipup_script", buf);
fp = fopen("/tmp/pptpd/ip-up", "w");
fprintf(fp, "#!/bin/sh\n" "startservice set_routes\n" // reinitialize
"echo $PPPD_PID $1 $5 $6 $PEERNAME >> /tmp/pptp_connected\n"
"iptables -I FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu\n"
"iptables -I INPUT -i $1 -j ACCEPT\n" "iptables -I FORWARD -i $1 -j ACCEPT\n"
"iptables -t nat -I PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destination %s " // rule for wake on lan over pptp tunnel
"%s\n", bcast, buf);
fclose(fp);
memset(buf, 0, sizeof(buf));
tcapi_get(VPN_DATA, "pptpd_ipdown_script", buf);
fp = fopen("/tmp/pptpd/ip-down", "w");
fprintf(fp, "#!/bin/sh\n" "grep -v $1 /tmp/pptp_connected > /tmp/pptp_connected.new\n"
"mv /tmp/pptp_connected.new /tmp/pptp_connected\n"
"iptables -D FORWARD -i $1 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu\n"
"iptables -D INPUT -i $1 -j ACCEPT\n"
"iptables -D FORWARD -i $1 -j ACCEPT\n"
"iptables -t nat -D PREROUTING -i $1 -p udp -m udp --sport 9 -j DNAT --to-destination %s " // rule for wake on lan over pptp tunnel
"%s\n", bcast, buf);
fclose(fp);
chmod("/tmp/pptpd/ip-up", 0744);
chmod("/tmp/pptpd/ip-down", 0744);
// Exctract chap-secrets from nvram
write_chap_secret("/tmp/pptpd/chap-secrets");
chmod("/tmp/pptpd/chap-secrets", 0600);
// Execute pptpd daemon
ret =
eval("pptpd", "-c", "/tmp/pptpd/pptpd.conf", "-o",
"/tmp/pptpd/options.pptpd");
_dprintf("start_pptpd: ret= %d\n", ret);
//dd_syslog(LOG_INFO, "pptpd : pptp daemon successfully started\n");
return;
}
