projects / project / luci.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
modules/admin-full: add mac address suggestions to mac filter settings
[project/luci.git] / modules / admin-full / luasrc / model / cbi / admin_network / wifi.lua
1 --[[
2 LuCI - Lua Configuration Interface
3
4 Copyright 2008 Steven Barth <steven@midlink.org>
5
6 Licensed under the Apache License, Version 2.0 (the "License");
7 you may not use this file except in compliance with the License.
8 You may obtain a copy of the License at
9
10 http://www.apache.org/licenses/LICENSE-2.0
11
12 $Id$
13 ]]--
14
15 local wa = require "luci.tools.webadmin"
16 local nw = require "luci.model.network"
17 local fs = require "nixio.fs"
18
19 arg[1] = arg[1] or ""
20
21 m = Map("wireless", "",
22 translate("The <em>Device Configuration</em> section covers physical settings of the radio " ..
23 "hardware such as channel, transmit power or antenna selection which is shared among all " ..
24 "defined wireless networks (if the radio hardware is multi-SSID capable). Per network settings " ..
25 "like encryption or operation mode are grouped in the <em>Interface Configuration</em>."))
26
27 m:chain("network")
28 m:chain("firewall")
29
30 local ifsection
31
32 function m.on_commit(map)
33 local wnet = nw:get_wifinet(arg[1])
34 if ifsection and wnet then
35 ifsection.section = wnet.sid
36 m.title = luci.util.pcdata(wnet:get_i18n())
37 end
38 end
39
40 nw.init(m.uci)
41
42 local wnet = nw:get_wifinet(arg[1])
43 local wdev = wnet and wnet:get_device()
44
45 -- redirect to overview page if network does not exist anymore (e.g. after a revert)
46 if not wnet or not wdev then
47 luci.http.redirect(luci.dispatcher.build_url("admin/network/wireless"))
48 return
49 end
50
51 -- wireless toggle was requested, commit and reload page
52 function m.parse(map)
53 if m:formvalue("cbid.wireless.%s.__toggle" % wdev:name()) then
54 if wdev:get("disabled") == "1" or wnet:get("disabled") == "1" then
55 wnet:set("disabled", nil)
56 else
57 wnet:set("disabled", "1")
58 end
59 wdev:set("disabled", nil)
60
61 nw:commit("wireless")
62 luci.sys.call("(env -i /sbin/wifi down; env -i /sbin/wifi up) >/dev/null 2>/dev/null")
63
64 luci.http.redirect(luci.dispatcher.build_url("admin/network/wireless", arg[1]))
65 return
66 end
67 Map.parse(map)
68 end
69
70 m.title = luci.util.pcdata(wnet:get_i18n())
71
72
73 local function txpower_list(iw)
74 local list = iw.txpwrlist or { }
75 local off = tonumber(iw.txpower_offset) or 0
76 local new = { }
77 local prev = -1
78 local _, val
79 for _, val in ipairs(list) do
80 local dbm = val.dbm + off
81 local mw = math.floor(10 ^ (dbm / 10))
82 if mw ~= prev then
83 prev = mw
84 new[#new+1] = {
85 display_dbm = dbm,
86 display_mw = mw,
87 driver_dbm = val.dbm,
88 driver_mw = val.mw
89 }
90 end
91 end
92 return new
93 end
94
95 local function txpower_current(pwr, list)
96 pwr = tonumber(pwr)
97 if pwr ~= nil then
98 local _, item
99 for _, item in ipairs(list) do
100 if item.driver_dbm >= pwr then
101 return item.driver_dbm
102 end
103 end
104 end
105 return (list[#list] and list[#list].driver_dbm) or pwr or 0
106 end
107
108 local function arplist(opt)
109 local _, e, mac, ip, name
110 local arp = { }
111
112 for _, e in ipairs(luci.sys.net.arptable()) do
113 arp[e["HW address"]:upper()] = { e["IP address"] }
114 end
115
116 for e in io.lines("/etc/ethers") do
117 mac, ip = e:match("^([a-f0-9]%S+) (%S+)")
118 if mac and ip then arp[mac:upper()] = { ip } end
119 end
120
121 for e in io.lines("/var/dhcp.leases") do
122 mac, ip, name = e:match("^%d+ (%S+) (%S+) (%S+)")
123 if mac and ip then arp[mac:upper()] = { ip, name ~= "*" and name } end
124 end
125
126 for mac, e in luci.util.kspairs(arp) do
127 opt:value(mac, "%s (%s)" %{ mac, e[2] or e[1] })
128 end
129 end
130
131 local iw = luci.sys.wifi.getiwinfo(arg[1])
132 local hw_modes = iw.hwmodelist or { }
133 local tx_power_list = txpower_list(iw)
134 local tx_power_cur = txpower_current(wdev:get("txpower"), tx_power_list)
135
136 s = m:section(NamedSection, wdev:name(), "wifi-device", translate("Device Configuration"))
137 s.addremove = false
138
139 s:tab("general", translate("General Setup"))
140 s:tab("macfilter", translate("MAC-Filter"))
141 s:tab("advanced", translate("Advanced Settings"))
142
143 --[[
144 back = s:option(DummyValue, "_overview", translate("Overview"))
145 back.value = ""
146 back.titleref = luci.dispatcher.build_url("admin", "network", "wireless")
147 ]]
148
149 st = s:taboption("general", DummyValue, "__status", translate("Status"))
150 st.template = "admin_network/wifi_status"
151 st.ifname = arg[1]
152
153 en = s:taboption("general", Button, "__toggle")
154
155 if wdev:get("disabled") == "1" or wnet:get("disabled") == "1" then
156 en.title = translate("Wireless network is disabled")
157 en.inputtitle = translate("Enable")
158 en.inputstyle = "apply"
159 else
160 en.title = translate("Wireless network is enabled")
161 en.inputtitle = translate("Disable")
162 en.inputstyle = "reset"
163 end
164
165
166 local hwtype = wdev:get("type")
167 local htcaps = wdev:get("ht_capab") and true or false
168
169 -- NanoFoo
170 local nsantenna = wdev:get("antenna")
171
172 -- Check whether there is a client interface on the same radio,
173 -- if yes, lock the channel choice as the station will dicatate the freq
174 local has_sta = nil
175 local _, net
176 for _, net in ipairs(wdev:get_wifinets()) do
177 if net:mode() == "sta" and net:id() ~= wnet:id() then
178 has_sta = net
179 break
180 end
181 end
182
183 if has_sta then
184 ch = s:taboption("general", DummyValue, "choice", translate("Channel"))
185 ch.value = translatef("Locked to channel %d used by %s",
186 has_sta:channel(), has_sta:shortname())
187 else
188 ch = s:taboption("general", Value, "channel", translate("Channel"))
189 ch:value("auto", translate("auto"))
190 for _, f in ipairs(iw and iw.freqlist or luci.sys.wifi.channels()) do
191 if not f.restricted then
192 ch:value(f.channel, "%i (%.3f GHz)" %{ f.channel, f.mhz / 1000 })
193 end
194 end
195 end
196
197 ------------------- MAC80211 Device ------------------
198
199 if hwtype == "mac80211" then
200 tp = s:taboption("general",
201 (#tx_power_list > 0) and ListValue or Value,
202 "txpower", translate("Transmit Power"), "dBm")
203
204 tp.rmempty = true
205 tp.default = tx_power_cur
206
207 function tp.cfgvalue(...)
208 return txpower_current(Value.cfgvalue(...), tx_power_list)
209 end
210
211 for _, p in ipairs(tx_power_list) do
212 tp:value(p.driver_dbm, "%i dBm (%i mW)"
213 %{ p.display_dbm, p.display_mw })
214 end
215
216 mode = s:taboption("advanced", ListValue, "hwmode", translate("Mode"))
217 mode:value("", translate("auto"))
218 if hw_modes.b then mode:value("11b", "802.11b") end
219 if hw_modes.g then mode:value("11g", "802.11g") end
220 if hw_modes.a then mode:value("11a", "802.11a") end
221
222 if htcaps then
223 if hw_modes.g and hw_modes.n then mode:value("11ng", "802.11g+n") end
224 if hw_modes.a and hw_modes.n then mode:value("11na", "802.11a+n") end
225
226 htmode = s:taboption("advanced", ListValue, "htmode", translate("HT mode"))
227 htmode:depends("hwmode", "11na")
228 htmode:depends("hwmode", "11ng")
229 htmode:value("HT20", "20MHz")
230 htmode:value("HT40-", translate("40MHz 2nd channel below"))
231 htmode:value("HT40+", translate("40MHz 2nd channel above"))
232
233 --htcapab = s:taboption("advanced", DynamicList, "ht_capab", translate("HT capabilities"))
234 --htcapab:depends("hwmode", "11na")
235 --htcapab:depends("hwmode", "11ng")
236 end
237
238 local cl = iw and iw.countrylist
239 if cl and #cl > 0 then
240 cc = s:taboption("advanced", ListValue, "country", translate("Country Code"), translate("Use ISO/IEC 3166 alpha2 country codes."))
241 cc.default = tostring(iw and iw.country or "00")
242 for _, c in ipairs(cl) do
243 cc:value(c.alpha2, "%s - %s" %{ c.alpha2, c.name })
244 end
245 else
246 s:taboption("advanced", Value, "country", translate("Country Code"), translate("Use ISO/IEC 3166 alpha2 country codes."))
247 end
248
249 s:taboption("advanced", Value, "distance", translate("Distance Optimization"),
250 translate("Distance to farthest network member in meters."))
251
252 s:taboption("advanced", Value, "frag", translate("Fragmentation Threshold"))
253 s:taboption("advanced", Value, "rts", translate("RTS/CTS Threshold"))
254 end
255
256
257 ------------------- Madwifi Device ------------------
258
259 if hwtype == "atheros" then
260 tp = s:taboption("general",
261 (#tx_power_list > 0) and ListValue or Value,
262 "txpower", translate("Transmit Power"), "dBm")
263
264 tp.rmempty = true
265 tp.default = tx_power_cur
266
267 function tp.cfgvalue(...)
268 return txpower_current(Value.cfgvalue(...), tx_power_list)
269 end
270
271 for _, p in ipairs(tx_power_list) do
272 tp:value(p.driver_dbm, "%i dBm (%i mW)"
273 %{ p.display_dbm, p.display_mw })
274 end
275
276 mode = s:taboption("advanced", ListValue, "hwmode", translate("Mode"))
277 mode:value("", translate("auto"))
278 if hw_modes.b then mode:value("11b", "802.11b") end
279 if hw_modes.g then mode:value("11g", "802.11g") end
280 if hw_modes.a then mode:value("11a", "802.11a") end
281 if hw_modes.g then mode:value("11bg", "802.11b+g") end
282 if hw_modes.g then mode:value("11gst", "802.11g + Turbo") end
283 if hw_modes.a then mode:value("11ast", "802.11a + Turbo") end
284 mode:value("fh", translate("Frequency Hopping"))
285
286 s:taboption("advanced", Flag, "diversity", translate("Diversity")).rmempty = false
287
288 if not nsantenna then
289 ant1 = s:taboption("advanced", ListValue, "txantenna", translate("Transmitter Antenna"))
290 ant1.widget = "radio"
291 ant1.orientation = "horizontal"
292 ant1:depends("diversity", "")
293 ant1:value("0", translate("auto"))
294 ant1:value("1", translate("Antenna 1"))
295 ant1:value("2", translate("Antenna 2"))
296
297 ant2 = s:taboption("advanced", ListValue, "rxantenna", translate("Receiver Antenna"))
298 ant2.widget = "radio"
299 ant2.orientation = "horizontal"
300 ant2:depends("diversity", "")
301 ant2:value("0", translate("auto"))
302 ant2:value("1", translate("Antenna 1"))
303 ant2:value("2", translate("Antenna 2"))
304
305 else -- NanoFoo
306 local ant = s:taboption("advanced", ListValue, "antenna", translate("Transmitter Antenna"))
307 ant:value("auto")
308 ant:value("vertical")
309 ant:value("horizontal")
310 ant:value("external")
311 end
312
313 s:taboption("advanced", Value, "distance", translate("Distance Optimization"),
314 translate("Distance to farthest network member in meters."))
315 s:taboption("advanced", Value, "regdomain", translate("Regulatory Domain"))
316 s:taboption("advanced", Value, "country", translate("Country Code"))
317 s:taboption("advanced", Flag, "outdoor", translate("Outdoor Channels"))
318
319 --s:option(Flag, "nosbeacon", translate("Disable HW-Beacon timer"))
320 end
321
322
323
324 ------------------- Broadcom Device ------------------
325
326 if hwtype == "broadcom" then
327 tp = s:taboption("general",
328 (#tx_power_list > 0) and ListValue or Value,
329 "txpower", translate("Transmit Power"), "dBm")
330
331 tp.rmempty = true
332 tp.default = tx_power_cur
333
334 function tp.cfgvalue(...)
335 return txpower_current(Value.cfgvalue(...), tx_power_list)
336 end
337
338 for _, p in ipairs(tx_power_list) do
339 tp:value(p.driver_dbm, "%i dBm (%i mW)"
340 %{ p.display_dbm, p.display_mw })
341 end
342
343 mode = s:taboption("advanced", ListValue, "hwmode", translate("Mode"))
344 mode:value("11bg", "802.11b+g")
345 mode:value("11b", "802.11b")
346 mode:value("11g", "802.11g")
347 mode:value("11gst", "802.11g + Turbo")
348
349 ant1 = s:taboption("advanced", ListValue, "txantenna", translate("Transmitter Antenna"))
350 ant1.widget = "radio"
351 ant1:depends("diversity", "")
352 ant1:value("3", translate("auto"))
353 ant1:value("0", translate("Antenna 1"))
354 ant1:value("1", translate("Antenna 2"))
355
356 ant2 = s:taboption("advanced", ListValue, "rxantenna", translate("Receiver Antenna"))
357 ant2.widget = "radio"
358 ant2:depends("diversity", "")
359 ant2:value("3", translate("auto"))
360 ant2:value("0", translate("Antenna 1"))
361 ant2:value("1", translate("Antenna 2"))
362
363 s:taboption("advanced", Flag, "frameburst", translate("Frame Bursting"))
364
365 s:taboption("advanced", Value, "distance", translate("Distance Optimization"))
366 --s:option(Value, "slottime", translate("Slot time"))
367
368 s:taboption("advanced", Value, "country", translate("Country Code"))
369 s:taboption("advanced", Value, "maxassoc", translate("Connection Limit"))
370 end
371
372
373 --------------------- HostAP Device ---------------------
374
375 if hwtype == "prism2" then
376 s:taboption("advanced", Value, "txpower", translate("Transmit Power"), "att units").rmempty = true
377
378 s:taboption("advanced", Flag, "diversity", translate("Diversity")).rmempty = false
379
380 s:taboption("advanced", Value, "txantenna", translate("Transmitter Antenna"))
381 s:taboption("advanced", Value, "rxantenna", translate("Receiver Antenna"))
382 end
383
384
385 ----------------------- Interface -----------------------
386
387 s = m:section(NamedSection, wnet.sid, "wifi-iface", translate("Interface Configuration"))
388 ifsection = s
389 s.addremove = false
390 s.anonymous = true
391 s.defaults.device = wdev:name()
392
393 s:tab("general", translate("General Setup"))
394 s:tab("encryption", translate("Wireless Security"))
395 s:tab("macfilter", translate("MAC-Filter"))
396 s:tab("advanced", translate("Advanced Settings"))
397
398 s:taboption("general", Value, "ssid", translate("<abbr title=\"Extended Service Set Identifier\">ESSID</abbr>"))
399
400 mode = s:taboption("general", ListValue, "mode", translate("Mode"))
401 mode.override_values = true
402 mode:value("ap", translate("Access Point"))
403 mode:value("sta", translate("Client"))
404 mode:value("adhoc", translate("Ad-Hoc"))
405
406 bssid = s:taboption("general", Value, "bssid", translate("<abbr title=\"Basic Service Set Identifier\">BSSID</abbr>"))
407
408 network = s:taboption("general", Value, "network", translate("Network"),
409 translate("Choose the network you want to attach to this wireless interface. " ..
410 "Select <em>unspecified</em> to not attach any network or fill out the " ..
411 "<em>create</em> field to define a new network."))
412
413 network.rmempty = true
414 network.template = "cbi/network_netlist"
415 network.widget = "radio"
416
417 function network.write(self, section, value)
418 local i = nw:get_interface(section)
419 if i then
420 if value == '-' then
421 value = m:formvalue(self:cbid(section) .. ".newnet")
422 if value and #value > 0 then
423 local n = nw:add_network(value, {proto="none"})
424 if n then n:add_interface(i) end
425 else
426 local n = i:get_network()
427 if n then n:del_interface(i) end
428 end
429 else
430 local n = nw:get_network(value)
431 if n then
432 n:set("type", "bridge")
433 n:add_interface(i)
434 end
435 end
436 end
437 end
438
439 -------------------- MAC80211 Interface ----------------------
440
441 if hwtype == "mac80211" then
442 if fs.access("/usr/sbin/iw") then
443 mode:value("mesh", "802.11s")
444 end
445
446 mode:value("ahdemo", translate("Pseudo Ad-Hoc (ahdemo)"))
447 mode:value("monitor", translate("Monitor"))
448 bssid:depends({mode="adhoc"})
449 bssid:depends({mode="sta"})
450 bssid:depends({mode="sta-wds"})
451
452 mp = s:taboption("macfilter", ListValue, "macfilter", translate("MAC-Address Filter"))
453 mp:depends({mode="ap"})
454 mp:depends({mode="ap-wds"})
455 mp:value("", translate("disable"))
456 mp:value("allow", translate("Allow listed only"))
457 mp:value("deny", translate("Allow all except listed"))
458
459 ml = s:taboption("macfilter", DynamicList, "maclist", translate("MAC-List"))
460 ml.datatype = "macaddr"
461 ml:depends({macfilter="allow"})
462 ml:depends({macfilter="deny"})
463 arplist(ml)
464
465 mode:value("ap-wds", "%s (%s)" % {translate("Access Point"), translate("WDS")})
466 mode:value("sta-wds", "%s (%s)" % {translate("Client"), translate("WDS")})
467
468 function mode.write(self, section, value)
469 if value == "ap-wds" then
470 ListValue.write(self, section, "ap")
471 m.uci:set("wireless", section, "wds", 1)
472 elseif value == "sta-wds" then
473 ListValue.write(self, section, "sta")
474 m.uci:set("wireless", section, "wds", 1)
475 else
476 ListValue.write(self, section, value)
477 m.uci:delete("wireless", section, "wds")
478 end
479 end
480
481 function mode.cfgvalue(self, section)
482 local mode = ListValue.cfgvalue(self, section)
483 local wds = m.uci:get("wireless", section, "wds") == "1"
484
485 if mode == "ap" and wds then
486 return "ap-wds"
487 elseif mode == "sta" and wds then
488 return "sta-wds"
489 else
490 return mode
491 end
492 end
493
494 hidden = s:taboption("general", Flag, "hidden", translate("Hide <abbr title=\"Extended Service Set Identifier\">ESSID</abbr>"))
495 hidden:depends({mode="ap"})
496 hidden:depends({mode="ap-wds"})
497 end
498
499
500
501 -------------------- Madwifi Interface ----------------------
502
503 if hwtype == "atheros" then
504 mode:value("ahdemo", translate("Pseudo Ad-Hoc (ahdemo)"))
505 mode:value("monitor", translate("Monitor"))
506 mode:value("ap-wds", "%s (%s)" % {translate("Access Point"), translate("WDS")})
507 mode:value("sta-wds", "%s (%s)" % {translate("Client"), translate("WDS")})
508 mode:value("wds", translate("Static WDS"))
509
510 function mode.write(self, section, value)
511 if value == "ap-wds" then
512 ListValue.write(self, section, "ap")
513 m.uci:set("wireless", section, "wds", 1)
514 elseif value == "sta-wds" then
515 ListValue.write(self, section, "sta")
516 m.uci:set("wireless", section, "wds", 1)
517 else
518 ListValue.write(self, section, value)
519 m.uci:delete("wireless", section, "wds")
520 end
521 end
522
523 function mode.cfgvalue(self, section)
524 local mode = ListValue.cfgvalue(self, section)
525 local wds = m.uci:get("wireless", section, "wds") == "1"
526
527 if mode == "ap" and wds then
528 return "ap-wds"
529 elseif mode == "sta" and wds then
530 return "sta-wds"
531 else
532 return mode
533 end
534 end
535
536 bssid:depends({mode="adhoc"})
537 bssid:depends({mode="ahdemo"})
538 bssid:depends({mode="wds"})
539
540 wdssep = s:taboption("advanced", Flag, "wdssep", translate("Separate WDS"))
541 wdssep:depends({mode="ap-wds"})
542
543 s:taboption("advanced", Flag, "doth", "802.11h")
544 hidden = s:taboption("general", Flag, "hidden", translate("Hide <abbr title=\"Extended Service Set Identifier\">ESSID</abbr>"))
545 hidden:depends({mode="ap"})
546 hidden:depends({mode="adhoc"})
547 hidden:depends({mode="ap-wds"})
548 hidden:depends({mode="sta-wds"})
549 isolate = s:taboption("advanced", Flag, "isolate", translate("Separate Clients"),
550 translate("Prevents client-to-client communication"))
551 isolate:depends({mode="ap"})
552 s:taboption("advanced", Flag, "bgscan", translate("Background Scan"))
553
554 mp = s:taboption("macfilter", ListValue, "macpolicy", translate("MAC-Address Filter"))
555 mp:value("", translate("disable"))
556 mp:value("allow", translate("Allow listed only"))
557 mp:value("deny", translate("Allow all except listed"))
558
559 ml = s:taboption("macfilter", DynamicList, "maclist", translate("MAC-List"))
560 ml.datatype = "macaddr"
561 ml:depends({macpolicy="allow"})
562 ml:depends({macpolicy="deny"})
563 arplist(ml)
564
565 s:taboption("advanced", Value, "rate", translate("Transmission Rate"))
566 s:taboption("advanced", Value, "mcast_rate", translate("Multicast Rate"))
567 s:taboption("advanced", Value, "frag", translate("Fragmentation Threshold"))
568 s:taboption("advanced", Value, "rts", translate("RTS/CTS Threshold"))
569 s:taboption("advanced", Value, "minrate", translate("Minimum Rate"))
570 s:taboption("advanced", Value, "maxrate", translate("Maximum Rate"))
571 s:taboption("advanced", Flag, "compression", translate("Compression"))
572
573 s:taboption("advanced", Flag, "bursting", translate("Frame Bursting"))
574 s:taboption("advanced", Flag, "turbo", translate("Turbo Mode"))
575 s:taboption("advanced", Flag, "ff", translate("Fast Frames"))
576
577 s:taboption("advanced", Flag, "wmm", translate("WMM Mode"))
578 s:taboption("advanced", Flag, "xr", translate("XR Support"))
579 s:taboption("advanced", Flag, "ar", translate("AR Support"))
580
581 local swm = s:taboption("advanced", Flag, "sw_merge", translate("Disable HW-Beacon timer"))
582 swm:depends({mode="adhoc"})
583
584 local nos = s:taboption("advanced", Flag, "nosbeacon", translate("Disable HW-Beacon timer"))
585 nos:depends({mode="sta"})
586 nos:depends({mode="sta-wds"})
587
588 local probereq = s:taboption("advanced", Flag, "probereq", translate("Do not send probe responses"))
589 probereq.enabled = "0"
590 probereq.disabled = "1"
591 end
592
593
594 -------------------- Broadcom Interface ----------------------
595
596 if hwtype == "broadcom" then
597 mode:value("wds", translate("WDS"))
598 mode:value("monitor", translate("Monitor"))
599
600 hidden = s:taboption("general", Flag, "hidden", translate("Hide <abbr title=\"Extended Service Set Identifier\">ESSID</abbr>"))
601 hidden:depends({mode="ap"})
602 hidden:depends({mode="adhoc"})
603 hidden:depends({mode="wds"})
604
605 isolate = s:taboption("advanced", Flag, "isolate", translate("Separate Clients"),
606 translate("Prevents client-to-client communication"))
607 isolate:depends({mode="ap"})
608
609 s:taboption("advanced", Flag, "doth", "802.11h")
610 s:taboption("advanced", Flag, "wmm", translate("WMM Mode"))
611
612 bssid:depends({mode="wds"})
613 bssid:depends({mode="adhoc"})
614 end
615
616
617 ----------------------- HostAP Interface ---------------------
618
619 if hwtype == "prism2" then
620 mode:value("wds", translate("WDS"))
621 mode:value("monitor", translate("Monitor"))
622
623 hidden = s:taboption("general", Flag, "hidden", translate("Hide <abbr title=\"Extended Service Set Identifier\">ESSID</abbr>"))
624 hidden:depends({mode="ap"})
625 hidden:depends({mode="adhoc"})
626 hidden:depends({mode="wds"})
627
628 bssid:depends({mode="sta"})
629
630 mp = s:taboption("macfilter", ListValue, "macpolicy", translate("MAC-Address Filter"))
631 mp:value("", translate("disable"))
632 mp:value("allow", translate("Allow listed only"))
633 mp:value("deny", translate("Allow all except listed"))
634 ml = s:taboption("macfilter", DynamicList, "maclist", translate("MAC-List"))
635 ml:depends({macpolicy="allow"})
636 ml:depends({macpolicy="deny"})
637 arplist(ml)
638
639 s:taboption("advanced", Value, "rate", translate("Transmission Rate"))
640 s:taboption("advanced", Value, "frag", translate("Fragmentation Threshold"))
641 s:taboption("advanced", Value, "rts", translate("RTS/CTS Threshold"))
642 end
643
644
645 ------------------- WiFI-Encryption -------------------
646
647 encr = s:taboption("encryption", ListValue, "encryption", translate("Encryption"))
648 encr.override_values = true
649 encr.override_depends = true
650 encr:depends({mode="ap"})
651 encr:depends({mode="sta"})
652 encr:depends({mode="adhoc"})
653 encr:depends({mode="ahdemo"})
654 encr:depends({mode="ap-wds"})
655 encr:depends({mode="sta-wds"})
656 encr:depends({mode="mesh"})
657
658 cipher = s:taboption("encryption", ListValue, "cipher", translate("Cipher"))
659 cipher:depends({encryption="wpa"})
660 cipher:depends({encryption="wpa2"})
661 cipher:depends({encryption="psk"})
662 cipher:depends({encryption="psk2"})
663 cipher:depends({encryption="wpa-mixed"})
664 cipher:depends({encryption="psk-mixed"})
665 cipher:value("auto", translate("auto"))
666 cipher:value("ccmp", translate("Force CCMP (AES)"))
667 cipher:value("tkip", translate("Force TKIP"))
668 cipher:value("tkip+ccmp", translate("Force TKIP and CCMP (AES)"))
669
670 function encr.cfgvalue(self, section)
671 local v = tostring(ListValue.cfgvalue(self, section))
672 if v == "wep" then
673 return "wep-open"
674 elseif v and v:match("%+") then
675 return (v:gsub("%+.+$", ""))
676 end
677 return v
678 end
679
680 function encr.write(self, section, value)
681 local e = tostring(encr:formvalue(section))
682 local c = tostring(cipher:formvalue(section))
683 if value == "wpa" or value == "wpa2" then
684 self.map.uci:delete("wireless", section, "key")
685 end
686 if e and (c == "tkip" or c == "ccmp" or c == "tkip+ccmp") then
687 e = e .. "+" .. c
688 end
689 self.map:set(section, "encryption", e)
690 end
691
692 function cipher.cfgvalue(self, section)
693 local v = tostring(ListValue.cfgvalue(encr, section))
694 if v and v:match("%+") then
695 v = v:gsub("^[^%+]+%+", "")
696 if v == "aes" then v = "ccmp"
697 elseif v == "tkip+aes" then v = "tkip+ccmp"
698 elseif v == "aes+tkip" then v = "tkip+ccmp"
699 elseif v == "ccmp+tkip" then v = "tkip+ccmp"
700 end
701 end
702 return v
703 end
704
705 function cipher.write(self, section)
706 return encr:write(section)
707 end
708
709
710 encr:value("none", "No Encryption")
711 encr:value("wep-open", translate("WEP Open System"), {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"}, {mode="adhoc"}, {mode="ahdemo"}, {mode="wds"})
712 encr:value("wep-shared", translate("WEP Shared Key"), {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"}, {mode="adhoc"}, {mode="ahdemo"}, {mode="wds"})
713
714 if hwtype == "atheros" or hwtype == "mac80211" or hwtype == "prism2" then
715 local supplicant = fs.access("/usr/sbin/wpa_supplicant")
716 local hostapd = fs.access("/usr/sbin/hostapd")
717
718 -- Probe EAP support
719 local has_ap_eap = (os.execute("hostapd -veap >/dev/null 2>/dev/null") == 0)
720 local has_sta_eap = (os.execute("wpa_supplicant -veap >/dev/null 2>/dev/null") == 0)
721
722 if hostapd and supplicant then
723 encr:value("psk", "WPA-PSK", {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"})
724 encr:value("psk2", "WPA2-PSK", {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"})
725 encr:value("psk-mixed", "WPA-PSK/WPA2-PSK Mixed Mode", {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"})
726 if has_ap_eap and has_sta_eap then
727 encr:value("wpa", "WPA-EAP", {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"})
728 encr:value("wpa2", "WPA2-EAP", {mode="ap"}, {mode="sta"}, {mode="ap-wds"}, {mode="sta-wds"})
729 end
730 elseif hostapd and not supplicant then
731 encr:value("psk", "WPA-PSK", {mode="ap"}, {mode="ap-wds"})
732 encr:value("psk2", "WPA2-PSK", {mode="ap"}, {mode="ap-wds"})
733 encr:value("psk-mixed", "WPA-PSK/WPA2-PSK Mixed Mode", {mode="ap"}, {mode="ap-wds"})
734 if has_ap_eap then
735 encr:value("wpa", "WPA-EAP", {mode="ap"}, {mode="ap-wds"})
736 encr:value("wpa2", "WPA2-EAP", {mode="ap"}, {mode="ap-wds"})
737 end
738 encr.description = translate(
739 "WPA-Encryption requires wpa_supplicant (for client mode) or hostapd (for AP " ..
740 "and ad-hoc mode) to be installed."
741 )
742 elseif not hostapd and supplicant then
743 encr:value("psk", "WPA-PSK", {mode="sta"}, {mode="sta-wds"})
744 encr:value("psk2", "WPA2-PSK", {mode="sta"}, {mode="sta-wds"})
745 encr:value("psk-mixed", "WPA-PSK/WPA2-PSK Mixed Mode", {mode="sta"}, {mode="sta-wds"})
746 if has_sta_eap then
747 encr:value("wpa", "WPA-EAP", {mode="sta"}, {mode="sta-wds"})
748 encr:value("wpa2", "WPA2-EAP", {mode="sta"}, {mode="sta-wds"})
749 end
750 encr.description = translate(
751 "WPA-Encryption requires wpa_supplicant (for client mode) or hostapd (for AP " ..
752 "and ad-hoc mode) to be installed."
753 )
754 else
755 encr.description = translate(
756 "WPA-Encryption requires wpa_supplicant (for client mode) or hostapd (for AP " ..
757 "and ad-hoc mode) to be installed."
758 )
759 end
760 elseif hwtype == "broadcom" then
761 encr:value("psk", "WPA-PSK")
762 encr:value("psk2", "WPA2-PSK")
763 encr:value("psk+psk2", "WPA-PSK/WPA2-PSK Mixed Mode")
764 end
765
766 auth_server = s:taboption("encryption", Value, "auth_server", translate("Radius-Authentication-Server"))
767 auth_server:depends({mode="ap", encryption="wpa"})
768 auth_server:depends({mode="ap", encryption="wpa2"})
769 auth_server:depends({mode="ap-wds", encryption="wpa"})
770 auth_server:depends({mode="ap-wds", encryption="wpa2"})
771 auth_server.rmempty = true
772 auth_server.datatype = "host"
773
774 auth_port = s:taboption("encryption", Value, "auth_port", translate("Radius-Authentication-Port"), translatef("Default %d", 1812))
775 auth_port:depends({mode="ap", encryption="wpa"})
776 auth_port:depends({mode="ap", encryption="wpa2"})
777 auth_port:depends({mode="ap-wds", encryption="wpa"})
778 auth_port:depends({mode="ap-wds", encryption="wpa2"})
779 auth_port.rmempty = true
780 auth_port.datatype = "port"
781
782 auth_secret = s:taboption("encryption", Value, "auth_secret", translate("Radius-Authentication-Secret"))
783 auth_secret:depends({mode="ap", encryption="wpa"})
784 auth_secret:depends({mode="ap", encryption="wpa2"})
785 auth_secret:depends({mode="ap-wds", encryption="wpa"})
786 auth_secret:depends({mode="ap-wds", encryption="wpa2"})
787 auth_secret.rmempty = true
788 auth_secret.password = true
789
790 acct_server = s:taboption("encryption", Value, "acct_server", translate("Radius-Accounting-Server"))
791 acct_server:depends({mode="ap", encryption="wpa"})
792 acct_server:depends({mode="ap", encryption="wpa2"})
793 acct_server:depends({mode="ap-wds", encryption="wpa"})
794 acct_server:depends({mode="ap-wds", encryption="wpa2"})
795 acct_server.rmempty = true
796 acct_server.datatype = "host"
797
798 acct_port = s:taboption("encryption", Value, "acct_port", translate("Radius-Accounting-Port"), translatef("Default %d", 1813))
799 acct_port:depends({mode="ap", encryption="wpa"})
800 acct_port:depends({mode="ap", encryption="wpa2"})
801 acct_port:depends({mode="ap-wds", encryption="wpa"})
802 acct_port:depends({mode="ap-wds", encryption="wpa2"})
803 acct_port.rmempty = true
804 acct_port.datatype = "port"
805
806 acct_secret = s:taboption("encryption", Value, "acct_secret", translate("Radius-Accounting-Secret"))
807 acct_secret:depends({mode="ap", encryption="wpa"})
808 acct_secret:depends({mode="ap", encryption="wpa2"})
809 acct_secret:depends({mode="ap-wds", encryption="wpa"})
810 acct_secret:depends({mode="ap-wds", encryption="wpa2"})
811 acct_secret.rmempty = true
812 acct_secret.password = true
813
814 wpakey = s:taboption("encryption", Value, "_wpa_key", translate("Key"))
815 wpakey:depends("encryption", "psk")
816 wpakey:depends("encryption", "psk2")
817 wpakey:depends("encryption", "psk+psk2")
818 wpakey:depends("encryption", "psk-mixed")
819 wpakey.datatype = "wpakey"
820 wpakey.rmempty = true
821 wpakey.password = true
822
823 wpakey.cfgvalue = function(self, section, value)
824 local key = m.uci:get("wireless", section, "key")
825 if key == "1" or key == "2" or key == "3" or key == "4" then
826 return nil
827 end
828 return key
829 end
830
831 wpakey.write = function(self, section, value)
832 self.map.uci:set("wireless", section, "key", value)
833 self.map.uci:delete("wireless", section, "key1")
834 end
835
836
837 wepslot = s:taboption("encryption", ListValue, "_wep_key", translate("Used Key Slot"))
838 wepslot:depends("encryption", "wep-open")
839 wepslot:depends("encryption", "wep-shared")
840 wepslot:value("1", translatef("Key #%d", 1))
841 wepslot:value("2", translatef("Key #%d", 2))
842 wepslot:value("3", translatef("Key #%d", 3))
843 wepslot:value("4", translatef("Key #%d", 4))
844
845 wepslot.cfgvalue = function(self, section)
846 local slot = tonumber(m.uci:get("wireless", section, "key"))
847 if not slot or slot < 1 or slot > 4 then
848 return 1
849 end
850 return slot
851 end
852
853 wepslot.write = function(self, section, value)
854 self.map.uci:set("wireless", section, "key", value)
855 end
856
857 local slot
858 for slot=1,4 do
859 wepkey = s:taboption("encryption", Value, "key" .. slot, translatef("Key #%d", slot))
860 wepkey:depends("encryption", "wep-open")
861 wepkey:depends("encryption", "wep-shared")
862 wepkey.datatype = "wepkey"
863 wepkey.rmempty = true
864 wepkey.password = true
865
866 function wepkey.write(self, section, value)
867 if value and (#value == 5 or #value == 13) then
868 value = "s:" .. value
869 end
870 return Value.write(self, section, value)
871 end
872 end
873
874
875 if hwtype == "atheros" or hwtype == "mac80211" or hwtype == "prism2" then
876 nasid = s:taboption("encryption", Value, "nasid", translate("NAS ID"))
877 nasid:depends({mode="ap", encryption="wpa"})
878 nasid:depends({mode="ap", encryption="wpa2"})
879 nasid:depends({mode="ap-wds", encryption="wpa"})
880 nasid:depends({mode="ap-wds", encryption="wpa2"})
881 nasid.rmempty = true
882
883 eaptype = s:taboption("encryption", ListValue, "eap_type", translate("EAP-Method"))
884 eaptype:value("tls", "TLS")
885 eaptype:value("ttls", "TTLS")
886 eaptype:value("peap", "PEAP")
887 eaptype:depends({mode="sta", encryption="wpa"})
888 eaptype:depends({mode="sta", encryption="wpa2"})
889 eaptype:depends({mode="sta-wds", encryption="wpa"})
890 eaptype:depends({mode="sta-wds", encryption="wpa2"})
891
892 cacert = s:taboption("encryption", FileUpload, "ca_cert", translate("Path to CA-Certificate"))
893 cacert:depends({mode="sta", encryption="wpa"})
894 cacert:depends({mode="sta", encryption="wpa2"})
895 cacert:depends({mode="sta-wds", encryption="wpa"})
896 cacert:depends({mode="sta-wds", encryption="wpa2"})
897
898 clientcert = s:taboption("encryption", FileUpload, "client_cert", translate("Path to Client-Certificate"))
899 clientcert:depends({mode="sta", encryption="wpa"})
900 clientcert:depends({mode="sta", encryption="wpa2"})
901 clientcert:depends({mode="sta-wds", encryption="wpa"})
902 clientcert:depends({mode="sta-wds", encryption="wpa2"})
903
904 privkey = s:taboption("encryption", FileUpload, "priv_key", translate("Path to Private Key"))
905 privkey:depends({mode="sta", eap_type="tls", encryption="wpa2"})
906 privkey:depends({mode="sta", eap_type="tls", encryption="wpa"})
907 privkey:depends({mode="sta-wds", eap_type="tls", encryption="wpa2"})
908 privkey:depends({mode="sta-wds", eap_type="tls", encryption="wpa"})
909
910 privkeypwd = s:taboption("encryption", Value, "priv_key_pwd", translate("Password of Private Key"))
911 privkeypwd:depends({mode="sta", eap_type="tls", encryption="wpa2"})
912 privkeypwd:depends({mode="sta", eap_type="tls", encryption="wpa"})
913 privkeypwd:depends({mode="sta-wds", eap_type="tls", encryption="wpa2"})
914 privkeypwd:depends({mode="sta-wds", eap_type="tls", encryption="wpa"})
915
916
917 auth = s:taboption("encryption", Value, "auth", translate("Authentication"))
918 auth:value("PAP")
919 auth:value("CHAP")
920 auth:value("MSCHAP")
921 auth:value("MSCHAPV2")
922 auth:depends({mode="sta", eap_type="peap", encryption="wpa2"})
923 auth:depends({mode="sta", eap_type="peap", encryption="wpa"})
924 auth:depends({mode="sta", eap_type="ttls", encryption="wpa2"})
925 auth:depends({mode="sta", eap_type="ttls", encryption="wpa"})
926 auth:depends({mode="sta-wds", eap_type="peap", encryption="wpa2"})
927 auth:depends({mode="sta-wds", eap_type="peap", encryption="wpa"})
928 auth:depends({mode="sta-wds", eap_type="ttls", encryption="wpa2"})
929 auth:depends({mode="sta-wds", eap_type="ttls", encryption="wpa"})
930
931
932 identity = s:taboption("encryption", Value, "identity", translate("Identity"))
933 identity:depends({mode="sta", eap_type="peap", encryption="wpa2"})
934 identity:depends({mode="sta", eap_type="peap", encryption="wpa"})
935 identity:depends({mode="sta", eap_type="ttls", encryption="wpa2"})
936 identity:depends({mode="sta", eap_type="ttls", encryption="wpa"})
937 identity:depends({mode="sta-wds", eap_type="peap", encryption="wpa2"})
938 identity:depends({mode="sta-wds", eap_type="peap", encryption="wpa"})
939 identity:depends({mode="sta-wds", eap_type="ttls", encryption="wpa2"})
940 identity:depends({mode="sta-wds", eap_type="ttls", encryption="wpa"})
941
942 password = s:taboption("encryption", Value, "password", translate("Password"))
943 password:depends({mode="sta", eap_type="peap", encryption="wpa2"})
944 password:depends({mode="sta", eap_type="peap", encryption="wpa"})
945 password:depends({mode="sta", eap_type="ttls", encryption="wpa2"})
946 password:depends({mode="sta", eap_type="ttls", encryption="wpa"})
947 password:depends({mode="sta-wds", eap_type="peap", encryption="wpa2"})
948 password:depends({mode="sta-wds", eap_type="peap", encryption="wpa"})
949 password:depends({mode="sta-wds", eap_type="ttls", encryption="wpa2"})
950 password:depends({mode="sta-wds", eap_type="ttls", encryption="wpa"})
951 end
952
953 return m
Lua Configuration Interface (mirror)