Home Explore Help
Sign In
rajven
/
openvpn-status-page
mirror of https://github.com/rajven/openvpn-status-page
1
0
Fork 0
Files Issues 0 Wiki
Tree: 4480346ff1
Branches Tags
openvpn-status-...
/
addons
/
cmd
/
functions.sh

functions.sh 2.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 
  1. #!/bin/bash
    2. 

  2. 

  3. owner_user=nobody
    4. 

  4. owner_group=nogroup
    5. 

  5. 

  6. # Name of the current script (without path)
    7. 

  7. script_name="$(basename "${BASH_SOURCE[0]}")"
    8. 

  8. 

  9. log() {
    10. 

  10.     logger -t "$script_name" -p user.info "$1"
    11. 

  11.     echo "$1"
    12. 

  12. }
    13. 

  13. 

  14. mlog() {
    15. 

  15.     logger -t "$script_name" -p user.info "$1"
    16. 

  16. }
    17. 

  17. 

  18. # Check permissions (must be root)
    19. 

  19. check_permissions() {
    20. 

  20.     if [[ $EUID -ne 0 ]]; then
    21. 

  21.         log "Error: This script must be run as root"
    22. 

  22.         exit 1
    23. 

  23.     fi
    24. 

  24. }
    25. 

  25. 

  26. # Validate that the path is a file or directory and is writable
    27. 

  27. check_ccd_path() {
    28. 

  28.     local path="$1"
    29. 

  29. 

  30.     if [[ -d "$path" ]]; then
    31. 

  31.         # It's a directory — check write permission
    32. 

  32.         if [[ ! -w "$path" ]]; then
    33. 

  33.             log "Error: No write permission for directory: $path"
    34. 

  34.             exit 1
    35. 

  35.         fi
    36. 

  36.     elif [[ -f "$path" ]]; then
    37. 

  37.         # It's a file — check write permission
    38. 

  38.         if [[ ! -w "$path" ]]; then
    39. 

  39.             log "Error: No write permission for file: $path"
    40. 

  40.             exit 1
    41. 

  41.         fi
    42. 

  42.     fi
    43. 

  43. }
    44. 

  44. 

  45. validate_pki_dir() {
    46. 

  46.     local pki_dir=$1
    47. 

  47.     if [[ ! -d "${pki_dir}" || ! -f "${pki_dir}/index.txt" ]]; then
    48. 

  48.         log "Error: Invalid PKI directory - missing index.txt"
    49. 

  49.         exit 2
    50. 

  50.     fi
    51. 

  51. }
    52. 

  52. 

  53. find_cert_file() {
    54. 

  54.     local cn=$1 pki_dir=$2
    55. 

  55.     local cert_file
    56. 

  56. 

  57.     # Try standard location first
    58. 

  58.     cert_file="${pki_dir}/issued/${cn}.crt"
    59. 

  59.     [[ -f "${cert_file}" ]] && echo "${cert_file}" && return 0
    60. 

  60. 

  61.     # Fallback to serial-based lookup
    62. 

  62.     local serial
    63. 

  63.     serial=$(awk -v cn="${cn}" '$0 ~ "/CN=" cn "/" && $1 == "V" {print $3}' "${pki_dir}/index.txt")
    64. 

  64.     [[ -z "${serial}" ]] && return 1
    65. 

  65. 

  66.     cert_file="${pki_dir}/certs_by_serial/${serial}.pem"
    67. 

  67.     [[ -f "${cert_file}" ]] && echo "${cert_file}" && return 0
    68. 

  68. 

  69.     return 1
    70. 

  70. }
    71. 

  71. 

  72. find_key_file() {
    73. 

  73.     local cn=$1 pki_dir=$2 serial=$3
    74. 

  74.     local key_file
    75. 

  75. 

  76.     # Try standard locations
    77. 

  77.     for candidate in "${pki_dir}/private/${cn}.key" "${pki_dir}/private/${serial}.key"; do
    78. 

  78.         if [[ -f "${candidate}" ]]; then
    79. 

  79.             echo "${candidate}"
    80. 

  80.             return 0
    81. 

  81.         fi
    82. 

  82.     done
    83. 

  83. 

  84.     return 1
    85. 

  85. }
    86. 

  86. 

  87. #mlog "Script called with: $0 $@"
    88.