872.patch - pfSense Packages - pfSense bugtracker

Feature #4687 » 872.patch

David Young, 05/07/2015 10:05 PM

     function openvpn_client_export_install() {
     	global $current_openvpn_version;
     	conf_mount_rw();
     	$tarpath = "/usr/local/pkg/openvpn-client-export-{$current_openvpn_version}.tgz";
     	$phpfile = "vpn_openvpn_export.php";
     	$ovpndir = "/usr/local/share/openvpn";
     	$workdir = "{$ovpndir}/client-export";
     	$pfs_version = substr(trim(file_get_contents("/etc/version")),0,3);
     	if ($pfs_version == "2.1" || $pfs_version == "2.2") {
     		conf_mount_rw();
     		$tarpath = "/usr/local/pkg/openvpn-client-export-{$current_openvpn_version}.tgz";
     		$ovpndir = "/usr/local/share/openvpn";
     		$workdir = "{$ovpndir}/client-export";
     		if (!is_dir($workdir))
     			mkdir($workdir, 0777, true);
     	if (!is_dir($workdir))
     		mkdir($workdir, 0777, true);
     		exec("/usr/bin/tar zxf {$tarpath} -C {$ovpndir}");
     		conf_mount_ro();
+    	}
     	exec("/usr/bin/tar zxf {$tarpath} -C {$ovpndir}");
     	conf_mount_ro();
+    }
     function openvpn_client_export_deinstall() {
-...
     	conf_mount_ro();
+    }
     function openvpn_client_export_prefix($srvid, $usrid = null, $crtid = null) {
     function openvpn_client_export_prefix($srvid, $usrid = null, $crtid = null, $usevpndescription) {
     	global $config;
     	// lookup server settings
-...
     	$host = empty($config['system']['hostname']) ? "openvpn" : $config['system']['hostname'];
     	$prot = ($settings['protocol'] == 'UDP' ? 'udp' : $settings['protocol']);
     	$port = $settings['local_port'];
     	$description = $settings['description'];
     	// strip out unwanted characters from the description (spaces etc make for bad filenames)
     	$description = $string = preg_replace('/[^\d\-a-z]/i', '', $description);
     	$filename_addition = "";
     	if ($usrid && is_numeric($usrid))
     		$filename_addition = "-".$config['system']['user'][$usrid]['name'];
     	elseif ($crtid && is_numeric($crtid) && function_exists("cert_get_cn"))
     		$filename_addition = "-" . str_replace(' ', '_', cert_get_cn($config['cert'][$crtid]['crt']));
     	return "{$host}-{$prot}-{$port}{$filename_addition}";
     	// if the usevpndescription variable is set, use the VPN description instead of the host-proto-port combination
     	if ($usevpndescription) {
     		return "{$description}{$filename_addition}";
     	} else {
     		return "{$host}-{$prot}-{$port}{$filename_addition}";
+    	}
+    }
     function openvpn_client_pem_to_pk12($outpath, $outpass, $crtpath, $keypath, $capath = false) {
-...
     	return array($settings, $server_cert, $server_ca, $servercn, $user, $cert, $nokeys);
+    }
     function openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, $nokeys = false, $proxy, $expformat = "baseconf", $outpass = "", $skiptls=false, $doslines=false, $openvpnmanager, $advancedoptions = "") {
     function openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, $nokeys = false, $proxy, $expformat = "baseconf", $outpass = "", $skiptls=false, $doslines=false, $openvpnmanager, $advancedoptions = "") {
     	global $config, $input_errors, $g;
     	$pfs_version = substr(trim(file_get_contents("/etc/version")),0,3);
-...
     			$conf .= "socks-proxy {$proxy['ip']} {$proxy['port']} ";
     		if ($proxy['proxy_authtype'] != "none") {
     			if (!isset($proxy['passwdfile']))
     				$proxy['passwdfile'] = openvpn_client_export_prefix($srvid, $usrid, $crtid) . "-proxy";
     				$proxy['passwdfile'] = openvpn_client_export_prefix($srvid, $usrid, $crtid, $usevpndescription) . "-proxy";
     			$conf .= " {$proxy['passwdfile']} {$proxy['proxy_authtype']}";
+    		}
     		$conf .= "{$nl}";
-...
+    	}
     	// add key settings
     	$prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid);
     	$prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid, $usevpndescription);
     	$cafile = "{$prefix}-ca.crt";
     	if($nokeys == false) {
     		if ($expformat == "yealink_t28") {
-...
+    	}
+    }
     function openvpn_client_export_installer($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, $outpass, $proxy, $openvpnmanager, $advancedoptions, $openvpn_version = "x86-xp") {
     function openvpn_client_export_installer($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, $outpass, $proxy, $openvpnmanager, $advancedoptions, $openvpn_version = "x86-xp") {
     	global $config, $g, $input_errors, $current_openvpn_version, $current_openvpn_version_rev;
     	$uname_p = trim(exec("uname -p"));
-...
     		rename("{$tempdir}/openvpn-postinstall64.exe", "{$tempdir}/openvpn-postinstall.exe");
     	// write configuration file
     	$prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid);
     	$prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid, $usevpndescription);
     	$cfgfile = "{$confdir}/{$prefix}-config.ovpn";
     	if (!empty($proxy) && $proxy['proxy_authtype'] != "none") {
     		$proxy['passwdfile'] = "{$prefix}-password";
-...
     		$pwdfle .= "{$proxy['password']}\r\n";
     		file_put_contents("{$confdir}/{$proxy['passwdfile']}", $pwdfle);
+    	}
     	$conf = openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken,  $nokeys, $proxy, "", "baseconf", false, true, $openvpnmanager, $advancedoptions);
     	$conf = openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken,  $nokeys, $proxy, "", "baseconf", false, true, $openvpnmanager, $advancedoptions);
     	if (!$conf) {
     		$input_errors[] = "Could not create a config to export.";
     		return false;
-...
     	return $outfile;
+    }
     function viscosity_openvpn_client_config_exporter($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, $outpass, $proxy, $openvpnmanager, $advancedoptions) {
     function viscosity_openvpn_client_config_exporter($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, $outpass, $proxy, $openvpnmanager, $advancedoptions) {
     	global $config, $g;
     	$uname_p = trim(exec("uname -p"));
-...
     	$tempdir = $tempdir . "/Viscosity.visc/";
     	// write cofiguration file
     	$prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid);
     	$prefix = openvpn_client_export_prefix($srvid, $usrid, $crtid, $usevpndescription);
     	if (!empty($proxy) && $proxy['proxy_authtype'] != "none") {
     		$proxy['passwdfile'] = "config-password";
     		$pwdfle = "{$proxy['user']}\n";
-...
     		file_put_contents("{$tempdir}/{$proxy['passwdfile']}", $pwdfle);
+    	}
     	$conf = openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, true, $proxy, "baseconf", $outpass, true, true, $openvpnmanager, $advancedoptions);
     	$conf = openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, true, $proxy, "baseconf", $outpass, true, true, $openvpnmanager, $advancedoptions);
     	if (!$conf)
     		return false;

     	$verifyservercn = $_GET['verifyservercn'];
     	$randomlocalport = $_GET['randomlocalport'];
     	$usevpndescription = $_GET['usevpndescription'];
     	$usetoken = $_GET['usetoken'];
     	if ($usetoken && (substr($act, 0, 10) == "confinline"))
     		$input_errors[] = "You cannot use Microsoft Certificate Storage with an Inline configuration.";
-...
+    		}
+    	}
     	$exp_name = openvpn_client_export_prefix($srvid, $usrid, $crtid);
     	$exp_name = openvpn_client_export_prefix($srvid, $usrid, $crtid, $usevpndescription);
     	if(substr($act, 0, 4) == "conf") {
     		switch ($act) {
-...
     				$exp_name = urlencode($exp_name."-config.ovpn");
     				$expformat = "baseconf";
+    		}
     		$exp_path = openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, $nokeys, $proxy, $expformat, $password, false, false, $openvpnmanager, $advancedoptions);
     		$exp_path = openvpn_client_export_config($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, $nokeys, $proxy, $expformat, $password, false, false, $openvpnmanager, $advancedoptions);
+    	}
     	if($act == "visc") {
     		$exp_name = urlencode($exp_name."-Viscosity.visc.zip");
     		$exp_path = viscosity_openvpn_client_config_exporter($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, $password, $proxy, $openvpnmanager, $advancedoptions);
     		$exp_path = viscosity_openvpn_client_config_exporter($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, $password, $proxy, $openvpnmanager, $advancedoptions);
+    	}
     	if(substr($act, 0, 4) == "inst") {
     		$exp_name = urlencode($exp_name."-install.exe");
     		$exp_path = openvpn_client_export_installer($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usetoken, $password, $proxy, $openvpnmanager, $advancedoptions, substr($act, 5));
     		$exp_path = openvpn_client_export_installer($srvid, $usrid, $crtid, $useaddr, $verifyservercn, $randomlocalport, $usevpndescription, $usetoken, $password, $proxy, $openvpnmanager, $advancedoptions, substr($act, 5));
+    	}
     	if (!$exp_path) {
-...
     	var randomlocalport = 0;
     	if (document.getElementById("randomlocalport").checked)
     		randomlocalport = 1;
     	var usevpndescription = 0;
     	if (document.getElementById("usevpndescription").checked)
     		usevpndescription = 1;
     	var usetoken = 0;
     	if (document.getElementById("usetoken").checked)
     		usetoken = 1;
-...
     	dlurl += "&useaddr=" + escape(useaddr);
     	dlurl += "&verifyservercn=" + escape(verifyservercn);
     	dlurl += "&randomlocalport=" + escape(randomlocalport);
     	dlurl += "&usevpndescription=" + escape(usevpndescription);
     	dlurl += "&openvpnmanager=" + escape(openvpnmanager);
     	dlurl += "&usetoken=" + escape(usetoken);
     	if (usepass)
-...
     							</table>
     					</tr>
     					<tr>
     						<td width="22%" valign="top" class="vncell">Use VPN description for export</td>
     						<td width="78%" class="vtable">
     							 <table border="0" cellpadding="2" cellspacing="0" summary="use vpn description">
     								<tr>
     									<td valign=top>
     										<input name="usevpndescription" id="usevpndescription" type="checkbox" value="yes" checked="CHECKED" />
     									</td>
     									<td>
     										<span class="vexpl">
     										Use the VPN description (as defined in VPN settings) as the prefix for exported configuration files, rather than an auto-generated combination of hostname, protocol, and port. This makes the client install package more consistent and user-friendly. The username or certificate name will still be appended to the generated filename, e.g. <i><b>acme-inc-wiley.ovpn</b></i></span>
     									</td>
     								</tr>
     								<tr>
     									<td colspan="2">
     										<span class="vexpl"><br/>NOTE: Non-alphanumeric characters will be stripped from the description prior to export.</span>
     									</td>
     								</tr>
     							</table>
     					</tr>
     					<tr>
     						<td width="22%" valign="top" class="vncell">Certificate Export Options</td>
     						<td width="78%" class="vtable">
     							<table border="0" cellpadding="2" cellspacing="0" summary="export options">

(1-1/1)

Project

General

Profile

pfSense » pfSense Packages

Feature #4687 » 872.patch