-
Notifications
You must be signed in to change notification settings - Fork 49
/
Copy pathhostapd.py
153 lines (121 loc) · 4.99 KB
/
hostapd.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
import toolutils
class Hostapd(object):
''' basic hostapd conf file handling '''
def __init__(self, path, backup_path=None):
self._config = {}
self._path = path
if not backup_path:
self.backup_path = path + ".bak"
else:
self.backup_path = backup_path
@property
def config(self):
return self._config
def set(self, key, value):
if isinstance(value, str):
self._config[str(key).strip()] = value.strip()
else:
self._config[str(key).strip()] = value
def validate(self):
'''
Not sure which ones are really necessary for everyone,
here are the ones I require
I created 4 groups of keys : basic must always be there,
wireless if you want to be an AP, auth if you want to add
some security, bridge for, well, bridging
Not foul proof !
Raise KeyError and ValueError
'''
basic = ['interface', 'driver']
bridge = ['bridge']
wireless = ['ssid', 'channel', 'hw_mode']
auth = ['wpa', 'wpa_passphrase', 'wpa_key_mgmt']
for k in basic:
if self._config[k] is None:
raise ValueError("Missing required {} option".format(k))
if 'bridge' in self._config:
for k in bridge:
if self._config[k] is None:
raise ValueError("Missing required {} option for bridge".format(k))
if 'ssid' in self._config:
for k in wireless:
if self._config[k] is None:
raise ValueError("Missing required {} option for wireless".format(k))
self._config['channel'] = int(self._config['channel']) # will raise value error if not int
if 'wpa' in self._config:
self._config['wpa'] = int(self._config['wpa'])
if not self._config['wpa'] in [1, 2, 3]:
raise ValueError("Wpa option is not valid")
for k in auth:
if self._config[k] is None:
raise ValueError("Missing required {} option for wireless security".format(k))
if self._config['wpa'] in [1, 3]:
if not self._config['wpa_pairwise']:
raise ValueError("Missing required option for wireless security : wpa_pairwise")
if self._config['wpa'] in [2, 3]:
if not self._config['rsn_pairwise']:
raise ValueError("Missing required option for wireless security rsn_pairwise")
def set_defaults(self):
''' Defaults for my needs, you should probably override this one '''
self._config = {
'interface': 'wlan0',
'driver': 'nl80211',
# logs
'logger_syslog': -1,
'logger_syslog_level': 2,
'logger_stdout': -1,
'logger_stdout_level': 2,
# debug
'debug': 4,
# wifi
'hw_mode': 'g',
# security goodies
'macaddr_acl': 0,
'eapol_key_index_workaround': 0,
'eap_server': 0,
'eapol_version': 1,
# wifi auth
# please note ssid and wpa-passphrase are missing
'auth_algs': 3,
'wpa': 3, # WPA + WPA2. set to 2 to restrict to WPA2
'wpa_key_mgmt': 'WPA-PSK',
'wpa_pairwise': 'TKIP',
'rsn_pairwise': 'CCMP' # some windows clients may have issues with this one
}
def read(self, path=None):
if path is None:
path = self._path
self._config = {}
with open(path, "r") as hostapd:
for line in hostapd:
if line.startswith('#') is True:
pass
else:
param, value = line.split("=")
if param and value:
self.set(param, value)
def write(self, path=None):
self.validate()
if path is None:
path = self._path
self.backup()
with toolutils.atomic_write(path) as hostapd:
for k, v in self._config.iteritems():
hostapd.write("{}={}\n".format(str(k).strip(), str(v).strip()))
def controlService(self, action):
''' return True/False, command output '''
if action not in ["start", "stop", "restart"]:
return False, "Invalid action"
return toolutils.safe_subprocess(["/etc/init.d/hostapd", action])
def backup(self):
''' return True/False, command output '''
if self.backup_path:
return toolutils.safe_subprocess(["cp", self._path, self.backup_path])
def restore(self):
''' return True/False, command output '''
if self.backup_path:
return toolutils.safe_subprocess(["cp", self.backup_path, self._path])
def delete(self):
''' return True/False, command output '''
if self.backup_path:
return toolutils.safe_subprocess(["rm", self._path])