From 9e3db3967a11808808a6408f01e0a53affe8e093 Mon Sep 17 00:00:00 2001 From: Rolf Leggewie Date: Mon, 24 Feb 2014 13:45:32 +0800 Subject: [PATCH] ship init script for controlling the n2n VPN. Closes: #742098 --- debian/default | 27 ++++++++ debian/init | 172 +++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 199 insertions(+) create mode 100644 debian/default create mode 100644 debian/init diff --git a/debian/default b/debian/default new file mode 100644 index 0000000..3e04913 --- /dev/null +++ b/debian/default @@ -0,0 +1,27 @@ +# Config file for the n2n edge node daemon. + +# Sets the n2n community name. All edges within the same community appear on +# the same LAN (layer 2 network segment). Community name is 16 bytes in length. +N2N_COMMUNITY="DEBIAN_n2n_Testers" + +# Sets the twofish encryption key from ASCII text. All edges communicating must +# use the same key and community name. +N2N_KEY="SuperSecurePassword" + +# Sets the n2n supernode IP address and port to register to. +N2N_SUPERNODE="remoteqth.com" +N2N_SUPERNODE_PORT="82" + +# Sets the n2n virtual LAN IP address being claimed. This is a private IP +# address. All IP addresses in an n2n community typical belong to the same /24 +# net‐ work (ie. only the last octet of the IP addresses varies). +N2N_IP="10.1.2.3" + +N2N_DAEMON_OPTS="" + +# Uncomment this to get edge node started. +#N2N_EDGE_CONFIG_DONE="yes" + +#TODO +# add routing option +# sudo ip route add 192.168.1.0/24 via 10.1.2.1 diff --git a/debian/init b/debian/init new file mode 100644 index 0000000..3d7f796 --- /dev/null +++ b/debian/init @@ -0,0 +1,172 @@ +#!/bin/sh +### BEGIN INIT INFO +# Provides: n2n +# Required-Start: $network $remote_fs $local_fs +# Required-Stop: $remote_fs $local_fs +# Default-Start: 2 3 4 5 +# Default-Stop: 0 1 6 +# Short-Description: Start or stop the n2n VPN +# Description: This script controls the n2n VPN service. +# It is called from the boot, halt and reboot scripts. +# So far, only 1 PVN is supported by this script. +# More can be started via the command line. +### END INIT INFO +# +# Author: Rolf Leggewie + +set -e + +# PATH should only include /usr/* if it runs after the mountnfs.sh script +PATH=/sbin:/usr/sbin:/bin:/usr/bin +DESC='n2n P2P VPN' +NAME=n2n +DAEMON=/usr/sbin/edge +DAEMON_ARGS="" # Arguments to run the daemon with +#PIDFILE=/var/run/$NAME-edge.pid +SCRIPTNAME=/etc/init.d/$NAME + +# Exit if the package is not installed +[ -x "$DAEMON" ] || exit 0 + +# Read configuration variable file if it is present +[ -r /etc/default/$NAME ] && . /etc/default/$NAME + +# Check config +if [ -z "$N2N_EDGE_CONFIG_DONE" ] +then + echo "Warning: n2n VPN client is not configured, edit config file in /etc/default/$NAME." 1>&2 + exit 0 +fi + +# Load the VERBOSE setting and other rcS variables +. /lib/init/vars.sh +. /lib/lsb/init-functions + +## Make sure /var/run/n2n exists. +#if [ ! -e /var/run/$NAME ] ; then +# mkdir -p /var/run/$NAME +# chown proxy:proxy /var/run/$NAME +# chmod 755 /var/run/$NAME +#fi + +# Function that starts the daemon/service +# +do_start() +{ + if [ -r /sys/class/net/edge0 ]; then + echo edge node is already running. + exit 0 + fi + + # Return + # 0 if daemon has been started + # 1 if daemon was already running + # 2 if daemon could not be started + start-stop-daemon --start --quiet --user nobody --exec $DAEMON --test > /dev/null \ + || return 1 + export N2N_KEY + start-stop-daemon --start --quiet --user nobody --exec $DAEMON -- \ + -f -a $N2N_IP -c $N2N_COMMUNITY -l $N2N_SUPERNODE:$N2N_SUPERNODE_PORT \ + -u $(id -u nobody) -g $(id -g nobody) $DAEMON_ARGS \ + || return 2 +} + +# +# Function that stops the daemon/service +# +do_stop() +{ + # Return + # 0 if daemon has been stopped + # 1 if daemon was already stopped + # 2 if daemon could not be stopped + # other if a failure occurred + start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --user nobody --exec $DAEMON + RETVAL="$?" + [ "$RETVAL" = 2 ] && return 2 + # Wait for children to finish too if this is a daemon that forks + # and if the daemon is only ever run from this initscript. + # If the above conditions are not satisfied then add some other code + # that waits for the process to drop all resources that could be + # needed by services started subsequently. A last resort is to + # sleep for some time. + start-stop-daemon --stop --quiet --oknodo --retry=0/30/KILL/5 --exec $DAEMON + [ "$?" = 2 ] && return 2 + # Many daemons don't delete their pidfiles when they exit. + rm -f $PIDFILE + return "$RETVAL" +} + +# +# Function that sends a SIGHUP to the daemon/service +# +do_reload() { + # + # If the daemon can reload its configuration without + # restarting (for example, when it is sent a SIGHUP), + # then implement that here. + # + start-stop-daemon --stop --signal 1 --quiet --name $NAME + return 0 +} + +case "$1" in + start) + [ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC " "$NAME" + do_start + case "$?" in + 0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;; + 2) [ "$VERBOSE" != no ] && log_end_msg 1 ;; + esac + ;; + stop) + [ "$VERBOSE" != no ] && log_daemon_msg "Stopping $DESC" "$NAME" + do_stop + case "$?" in + 0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;; + 2) [ "$VERBOSE" != no ] && log_end_msg 1 ;; + esac + ;; + status) + status_of_proc "$DAEMON" "$NAME" && exit 0 || exit $? + ;; + #reload|force-reload) + # + # If do_reload() is not implemented then leave this commented out + # and leave 'force-reload' as an alias for 'restart'. + # + #log_daemon_msg "Reloading $DESC" "$NAME" + #do_reload + #log_end_msg $? + #;; + restart|force-reload) + # + # If the "reload" option is implemented then remove the + # 'force-reload' alias + # + log_daemon_msg "Restarting $DESC" "$NAME" + do_stop + case "$?" in + 0|1) + do_start + case "$?" in + 0) log_end_msg 0 ;; + 1) log_end_msg 1 ;; # Old process is still running + *) log_end_msg 1 ;; # Failed to start + esac + ;; + *) + # Failed to stop + log_end_msg 1 + ;; + esac + ;; + *) + N=/etc/init.d/$NAME + #echo "Usage: $SCRIPTNAME {start|stop|restart|reload|force-reload}" >&2 + echo "Usage: $SCRIPTNAME {start|stop|status|restart|force-reload}" >&2 + exit 3 + ;; +esac + +exit 0