LILiK
/
openwrt-packages-dist
5
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
24795 Commits
1 Branch
46 MiB
Tree: ab0881b0dc
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ab0881b0dc'
${ noResults }
openwrt-packages-dist/net/atlas-sw-probe/files/atlas.init

246 lines
6.5 KiB
Raw Normal View History

atlas-sw-probe: add new package Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years ago
atlas-sw-probe: improve key creation - Exit start if a probe_key is not present - Add create_key command to generate a private_key based on the provided username in the atlas config. - Add registration instruction in /etc/atlas - Rework script to save probe_key on sysupgrade (the key are now adviced to be placed in the /etc/atlas dir and a link is used to make them accessible in the atlas-sw-scripts etc dir) Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
3 years ago
atlas-sw-probe: add new package Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years ago
atlas-sw-probe: improve key creation - Exit start if a probe_key is not present - Add create_key command to generate a private_key based on the provided username in the atlas config. - Add registration instruction in /etc/atlas - Rework script to save probe_key on sysupgrade (the key are now adviced to be placed in the /etc/atlas dir and a link is used to make them accessible in the atlas-sw-scripts etc dir) Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
3 years ago
atlas-sw-probe: add new package Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years ago
atlas-sw-probe: improve key creation - Exit start if a probe_key is not present - Add create_key command to generate a private_key based on the provided username in the atlas config. - Add registration instruction in /etc/atlas - Rework script to save probe_key on sysupgrade (the key are now adviced to be placed in the /etc/atlas dir and a link is used to make them accessible in the atlas-sw-scripts etc dir) Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
3 years ago
atlas-sw-probe: add new package Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years ago
atlas-sw-probe: fix missing link on sysupgrade Recreate symbolic link if it's missing after a sysupgrade with a private and public key present in /etc/atlas/ Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
3 years ago
atlas-sw-probe: add new package Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years ago
atlas-sw-probe: fix missing link on sysupgrade Recreate symbolic link if it's missing after a sysupgrade with a private and public key present in /etc/atlas/ Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
3 years ago
atlas-sw-probe: improve key creation - Exit start if a probe_key is not present - Add create_key command to generate a private_key based on the provided username in the atlas config. - Add registration instruction in /etc/atlas - Rework script to save probe_key on sysupgrade (the key are now adviced to be placed in the /etc/atlas dir and a link is used to make them accessible in the atlas-sw-scripts etc dir) Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
3 years ago
atlas-sw-probe: add new package Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
4 years ago
 
  1. #!/bin/sh /etc/rc.common
  2. 

  3. USE_PROCD=1
  4. START=30
  5. EXTRA_COMMANDS="get_key probeid log create_backup load_backup create_key"
  6. EXTRA_HELP="	get_key	print probe public key (used for probe registration)
  7. 	probeid	print probe id
  8. 	log	print probe status log
  9. 	create_backup 	backup ssh key to tar.gz
  10. 	load_backup 'backup.tar.gz' 	load backup ssh key from tar.gz
  11. 	create_key create probe priv/pub key 
  12. "
  13. 

  14. SCRIPTS_DIR="/usr/libexec/atlas-probe-scripts"
  15. TMP_BASE_DIR="/tmp/ripe_atlas_probe"
  16. PUB_KEY_FILE="$SCRIPTS_DIR/etc/probe_key.pub"
  17. PRIV_KEY_FILE="$SCRIPTS_DIR/etc/probe_key"
  18. PROBE_ID_FILE="$TMP_BASE_DIR/status/reg_init_reply.txt"
  19. LOG_FILE="/tmp/log/ripe_sw_probe"
  20. STATE_CONFIG="$SCRIPTS_DIR/state/config.txt"
  21. 

  22. load_backup() {
  23. 	local backup_arch
  24. 	local tmp_dir
  25. 

  26. 	backup_arch="$1"
  27. 	tmp_dir="$(mktemp -u -p /var/run/atlas)"
  28. 	if [ -f "$backup_arch" ]; then
  29. 		safe_mkdir "$tmp_dir"
  30. 		tar -xzf "$backup_arch" -C "$tmp_dir/"
  31. 		if [ -f "$tmp_dir/probe_key.pub" ] && [ -f "$tmp_dir/probe_key" ]; then
  32. 			mv "$tmp_dir/probe_key.pub" "$PUB_KEY_FILE"
  33. 			mv "$tmp_dir/probe_key" "$PRIV_KEY_FILE"
  34. 			rm -rf "$tmp_dir"
  35. 			print_msg "Info: public and private key loaded from backup"
  36. 		else
  37. 			print_msg "Error: Could not extract probe_key or probe_key form backup archive"
  38. 			rm -rf "$tmp_dir"
  39. 			exit 1
  40. 		fi
  41. 	else
  42. 		print_msg "Error: Provided backup file $backup_arch does not exists"
  43. 		exit 1
  44. 	fi
  45. }
  46. 

  47. create_backup() {
  48. 	local back_dir
  49. 

  50. 	back_dir="$(pwd)"
  51. 

  52. 	if [ -f "$PUB_KEY_FILE" -a -f "$PRIV_KEY_FILE" ]; then
  53. 		print_msg "Info: Creating backup arch in $back_dir"
  54. 		tar -czf "$back_dir/atlas-key-backup.tar.gz" -C "$SCRIPTS_DIR/etc" probe_key probe_key.pub
  55. 	else
  56. 		print_msg "Error: private or public key does not exists."
  57. 		exit 1
  58. 	fi
  59. }
  60. 

  61. create_key() {
  62. 	local username
  63. 	local probe_key=/etc/atlas/probe_key
  64. 	local probe_pub_key=/etc/atlas/probe_key.pub
  65. 

  66. 	config_load atlas
  67. 

  68. 	config_get username "common" username
  69. 

  70. 	if [ -f "$PRIV_KEY_FILE" ]; then
  71. 		if [ ! -f $probe_key ]; then
  72. 			print_msg "Missing probe_key in /etc/atlas"
  73. 			print_msg "The key will be lost on sysupgrade. Cosider moving the keys in /etc/atlas and create a link in the $SCRIPTS_DIR/etc/ dir."
  74. 		fi
  75. 

  76. 		print_msg "probe_key already present. Exiting..."
  77. 		exit 1
  78. 	fi
  79. 

  80. 	if [ -z "$username" ]; then
  81. 		print_msg "Username not set in atlas config file. Enter your ripe-atlas username."
  82. 		exit 1
  83. 	fi
  84. 

  85. 	if [ -n "$(which ssh-keygen)" ]; then
  86. 		ssh-keygen -t rsa -b 2048 -f $probe_key -N ""
  87. 		sed -i "s/ \S*$/ "$username"/" $probe_pub_key
  88. 	elif [ -n "$(which dropbearkey)" ] && [ -n "$(which dropbearconvert)" ]; then
  89. 		local public_key
  90. 

  91. 		public_key="$(dropbearkey -t rsa -f /etc/atlas/probe_key_dropbear -s 2048 | sed -n 2p)"
  92. 		public_key="$(echo "$public_key" | sed "s/ \S*$/ "$username"/")"
  93. 		echo $public_key > $probe_pub_key
  94. 		dropbearconvert dropbear openssh /etc/atlas/probe_key_dropbear $probe_key
  95. 		rm /etc/atlas/probe_key_dropbear
  96. 	else
  97. 		print_msg "Can't find a way to generate key."
  98. 		exit 1
  99. 	fi
  100. 

  101. 	#Link priv/pub key
  102. 	[ -f $PRIV_KEY_FILE ] || ln -s $probe_key $PRIV_KEY_FILE
  103. 	[ -f $PRIV_KEY_FILE ] || ln -s $probe_pub_key $PUB_KEY_FILE
  104. 

  105. 	#Fix permission
  106. 	chown atlas $probe_key $probe_pub_key
  107. 	chgrp atlas $probe_key $probe_pub_key
  108. 	chmod 644 $probe_key $probe_pub_key
  109. 

  110. 	print_msg "Key generated successfully. Use the get_key command to show the public key and get instruction on how to register your probe."
  111. }
  112. 

  113. log() {
  114. 	if [ -f "$LOG_FILE" ];then
  115. 		tail "$LOG_FILE"
  116. 	else
  117. 		print_msg "Error. No log file found. Probe isn't probably running"
  118. 		exit 1
  119. 	fi
  120. }
  121. 

  122. get_key() {
  123. 	if [ -f "$PUB_KEY_FILE" ]; then
  124. 		echo "Probe public key (use for registration)"
  125. 		echo "URL with registration form https://atlas.ripe.net/apply/swprobe/"
  126. 		echo "=========================================="
  127. 		cat "$PUB_KEY_FILE"
  128. 	else
  129. 		print_msg "Error! Pub. key not found"
  130. 		exit 1
  131. 	fi
  132. }
  133. 

  134. probeid() {
  135. 	local probe_id
  136. 

  137. 	if [ -f "$PROBE_ID_FILE" ]; then
  138. 		probe_id="$(awk '/PROBE_ID/ {print $2}' "$PROBE_ID_FILE")"
  139. 		if [ -z "$probe_id" ]; then
  140. 			print_msg "Probe ID not found SW probe isn't probably registered yet"
  141. 			exit 1
  142. 		else
  143. 			print_msg "Probe ID is $probe_id"
  144. 		fi
  145. 	else
  146. 		print_msg "Probe ID not found. SW probe is not running or probe_key isn't registered yet"
  147. 		exit 1
  148. 	fi
  149. }
  150. 

  151. print_msg() {
  152. 	echo "$1" >&2
  153. 	logger -t atlas-sw-probe "$1"
  154. }
  155. 

  156. stop_service() {
  157. 	local atlas_pid
  158. 	local tunnel_pid
  159. 	local pid_file
  160. 

  161. 	print_msg "Stopping atlas sw probe"
  162. 	print_msg "Kill all atlas processes"
  163. 

  164. 	for pid_file in "$SCRIPTS_DIR/run/"*.vol; do
  165. 		[ -f "$pid_file" ] || continue
  166. 		# test if proccess is still running
  167. 		atlas_pid="$(cat "$pid_file")"
  168. 		if kill -0 "$atlas_pid" 2>/dev/null; then
  169. 			kill "$atlas_pid"
  170. 		fi
  171. 	done
  172. 

  173. 	if [ -f "$SCRIPTS_DIR/status/con_keep_pid.vol" ]; then
  174. 		print_msg "Kill ssh tunnel"
  175. 		tunnel_pid="$(cat "$SCRIPTS_DIR/status/con_keep_pid.vol")"
  176. 		if kill -0 "$tunnel_pid" 2>/dev/null; then
  177. 			kill "$tunnel_pid"
  178. 		fi
  179. 	fi
  180. }
  181. 

  182. safe_mkdir() {
  183.     local dir="$1"
  184.     if [ -e "$dir" ] && [ ! -d "$dir" -o -L "$dir" ]; then
  185.         rm -rf "$dir"
  186.     fi
  187.     mkdir -p "$dir"
  188.     chmod 700 "$dir"
  189.     chown root:root "$dir"
  190. }
  191. 

  192. create_tmp_dirs() {
  193. 	local dirs
  194. 

  195. 	chown -R atlas:atlas "$SCRIPTS_DIR/bin"
  196. 	chmod 755 "$SCRIPTS_DIR/bin"
  197. 	dirs='crons data run status'
  198. 

  199. 	safe_mkdir "$TMP_BASE_DIR"
  200. 	for i in $dirs;	do
  201. 		safe_mkdir "$TMP_BASE_DIR/$i"
  202. 	done
  203. }
  204. 

  205. start_service() {
  206. 	local log_stderr
  207. 	local log_stdout
  208. 	local rxtxrpt
  209. 	local test_setting
  210. 	local probe_key=/etc/atlas/probe_key
  211. 	local probe_pub_key=/etc/atlas/probe_key.pub
  212. 

  213. 	# The link is not saved across sysupgrade, recreate if missing
  214. 	if [ ! -f $PRIV_KEY_FILE ]; then
  215. 		[ -f $probe_key ] && ln -s $probe_key $PRIV_KEY_FILE
  216. 		[ -f $probe_pub_key ] && ln -s $probe_pub_key $PUB_KEY_FILE
  217. 	fi
  218. 

  219. 	# With the precheck done, check if the priv key is actually present
  220. 	if [ ! -f $PRIV_KEY_FILE ]; then
  221. 		print_msg "Missing probe_key. To init the key follow instruction in /etc/atlas/atlas.readme"
  222. 		print_msg "Assuming atlas-sw-probe not init. Exiting..."
  223. 		exit 1
  224. 	fi
  225. 

  226. 	create_tmp_dirs
  227. 

  228. 	config_load atlas
  229. 	config_get_bool log_stderr "common" log_stderr "0"
  230. 	config_get_bool log_stdout "common" log_stdout "0"
  231. 	config_get_bool rxtxrpt "common" rxtxrpt "1"
  232. 	test_setting=$(grep "^[ 	]*RXTXRPT=yes" "$STATE_CONFIG")
  233. 

  234. 	# Decide if we should write to permanent storage
  235. 	if [ "$rxtxrpt" == "1" ] &&  [ -z "$test_setting" ]; then
  236. 		echo "RXTXRPT=yes">$STATE_CONFIG
  237. 	elif [ "$rxtxrpt" == "0" ] &&  [ ! -z "$test_setting" ]; then
  238. 		echo "RXTXRPT=no">$STATE_CONFIG
  239. 	fi
  240. 

  241. 	procd_open_instance
  242. 	procd_set_param command "$SCRIPTS_DIR/bin/ATLAS"
  243. 	procd_set_param stdout "$log_stdout"
  244. 	procd_set_param stderr "$log_stderr"
  245. 	procd_close_instance
  246. }