mardock2009/oscam-2.26.01-11942-802-with-Advanced-fake-dcw-detection
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
16673d1b64
oscam-2.26.01-11942-802-wit.../config.sh
mardock2009 0bb2e22017 fix
2026-02-17 14:42:42 +00:00

1016 lines
31 KiB
Bash
Executable File
Raw Blame History

#!/bin/sh
addons="WEBIF WEBIF_LIVELOG WEBIF_JQUERY WEBIF_WIKI WITH_COMPRESS_WEBIF WITH_SSL HAVE_DVBAPI WITH_EXTENDED_CW WITH_NEUTRINO READ_SDT_CHARSETS CS_ANTICASC WITH_DEBUG MODULE_MONITOR WITH_LB CS_CACHEEX CS_CACHEEX_AIO CW_CYCLE_CHECK LCDSUPPORT LEDSUPPORT CLOCKFIX IPV6SUPPORT WITH_ARM_NEON WITH_SIGNING WITH_EMU WITH_SOFTCAM"
protocols="MODULE_CAMD33 MODULE_CAMD35 MODULE_CAMD35_TCP MODULE_NEWCAMD MODULE_CCCAM MODULE_CCCSHARE MODULE_GBOX MODULE_RADEGAST MODULE_SCAM MODULE_SERIAL MODULE_CONSTCW MODULE_PANDORA MODULE_GHTTP MODULE_STREAMRELAY"
readers="READER_NAGRA READER_NAGRA_MERLIN READER_IRDETO READER_CONAX READER_CRYPTOWORKS READER_SECA READER_VIACCESS READER_VIDEOGUARD READER_DRE READER_TONGFANG READER_BULCRYPT READER_GRIFFIN READER_DGCRYPT"
card_readers="CARDREADER_PHOENIX CARDREADER_INTERNAL CARDREADER_SC8IN1 CARDREADER_MP35 CARDREADER_SMARGO CARDREADER_DB2COM CARDREADER_STAPI CARDREADER_STAPI5 CARDREADER_STINGER CARDREADER_DRECAS"
defconfig="
CONFIG_WEBIF=y
CONFIG_WEBIF_LIVELOG=y
CONFIG_WEBIF_JQUERY=y
CONFIG_WEBIF_WIKI=y
CONFIG_WITH_COMPRESS_WEBIF=y
CONFIG_WITH_SSL=y
CONFIG_HAVE_DVBAPI=y
CONFIG_WITH_EXTENDED_CW=y
# CONFIG_WITH_NEUTRINO=n
CONFIG_READ_SDT_CHARSETS=y
CONFIG_CS_ANTICASC=y
CONFIG_WITH_DEBUG=y
CONFIG_MODULE_MONITOR=y
CONFIG_WITH_LB=y
CONFIG_CS_CACHEEX=y
CONFIG_CS_CACHEEX_AIO=y
CONFIG_CW_CYCLE_CHECK=y
CONFIG_LCDSUPPORT=y
CONFIG_LEDSUPPORT=y
CONFIG_CLOCKFIX=y
CONFIG_IPV6SUPPORT=y
# CONFIG_WITH_ARM_NEON=n
CONFIG_WITH_SIGNING=n
CONFIG_WITH_EMU=y
CONFIG_WITH_SOFTCAM=y
CONFIG_MODULE_CAMD33=n
CONFIG_MODULE_CAMD35=y
CONFIG_MODULE_CAMD35_TCP=y
CONFIG_MODULE_NEWCAMD=y
CONFIG_MODULE_CCCAM=y
CONFIG_MODULE_CCCSHARE=y
CONFIG_MODULE_GBOX=y
CONFIG_MODULE_RADEGAST=y
CONFIG_MODULE_SERIAL=y
CONFIG_MODULE_CONSTCW=y
CONFIG_MODULE_PANDORA=y
CONFIG_MODULE_SCAM=y
CONFIG_MODULE_GHTTP=y
CONFIG_MODULE_STREAMRELAY=y
CONFIG_WITH_CARDREADER=y
CONFIG_READER_NAGRA_COMMON=y
CONFIG_READER_NAGRA=y
CONFIG_READER_NAGRA_MERLIN=y
CONFIG_READER_IRDETO=y
CONFIG_READER_CONAX=y
CONFIG_READER_CRYPTOWORKS=y
CONFIG_READER_SECA=y
CONFIG_READER_VIACCESS=y
CONFIG_READER_VIDEOGUARD=y
CONFIG_READER_DRE=y
CONFIG_READER_TONGFANG=y
CONFIG_READER_BULCRYPT=y
CONFIG_READER_GRIFFIN=y
CONFIG_READER_DGCRYPT=y
CARDREADER_PHOENIX=y
# CARDREADER_DRECAS=n
CARDREADER_INTERNAL=y
# CARDREADER_SC8IN1=n
# CARDREADER_MP35=n
# CARDREADER_SMARGO=n
# CARDREADER_DB2COM=n
# CARDREADER_STAPI=n
# CARDREADER_STAPI5=n
# CARDREADER_STINGER=n
"
usage() {
echo \
"OSCam config
Usage: `basename $0` [parameters]
-g, --gui Start interactive configuration
-s, --show-enabled [param] Show enabled configuration options.
-Z, --show-disabled [param] Show disabled configuration options.
-S, --show-valid [param] Show valid configuration options.
Possible params: all, addons, protocols,
readers, card_readers
-l, --list-config List active configuration variables.
-e, --enabled [option] Check if certain option is enabled.
-d, --disabled [option] Check if certain option is disabled.
-E, --enable [option] Enable config option.
-D, --disable [option] Disable config option.
The following [option]s enable or disable multiple settings.
all - Everything.
addons - All addons.
protocols - All protocols.
readers - All readers.
card_readers - All card readers.
-R, --restore Restore default config.
-cc, --create-cert [option] Create a new self signed X.509 certificate and private key.
The following [option]s in this order are supported:
ecdsa|rsa - key type (default: ecdsa)
prime256v1|4096 - key length (default: prime256v1), any ecdsa curve or rsa length should work
ca - create Root CA certificates
subject - X.509 certificate subject e.g. 'My OSCam Distribution'
-cf, --cert-file [option] Get filename of requested (cert|privkey) type.
-ci, --cert-info Get a list of useful certificate information.
-cl, --add-cert [option] Create symlinks to use a custom, pre-created set of X.509 certificate and private key.
The following [option]s in this order are mandatory:
certificate filename - relative/absolute path to certificate file
private key filename - relative/absolute path to private key file
-sm, --sign-marker Get Oscam binary signature marker.
-um, --upx-marker Get Oscam binary upx marker.
-v, --oscam-version Display OSCam version.
-c, --oscam-commit Display OSCam GIT short commit sha 8-digits.
-O, --detect-osx-sdk-version Find where OS X SDK is located
-h, --help Display this help text.
Examples:
# Enable WEBIF and SSL
./config.sh --enable WEBIF WITH_SSL
# Disable WEBIF but enable WITH_SSL
./config.sh --disable WEBIF --enable WITH_SSL
# Restore defaults and disable WEBIF and READER_NAGRA
./config.sh --restore --disable WEBIF READER_NAGRA
# Use default config with only one enabled reader
./config.sh --restore --disable readers --enable READER_BULCRYPT
# Disable everything and enable webif one module and one card reader
./config.sh --disable all --enable WEBIF MODULE_NEWCAMD READER_BULCRYPT
# Disable all card readers except INTERNAL
./config.sh -D card_readers -E CARDREADER_INTERNAL
# Create new self signed private key and certificate with defaults
./config.sh --create-cert
# Create new self signed private key and certificate with custom settings
./config.sh --create-cert rsa 4096
# Create new Root CA with private key and certificate with custom settings
./config.sh --create-cert ecdsa prime256v1 ca 'My OSCam Distribution'
Available options:
addons: $addons
protocols: $protocols
readers: $readers
card_readers: $card_readers
"
}
# Output directory for config.mak set by --objdir parameter
OBJDIR=.
# Use flags set by --use-flags parameter
USE_FLAGS=
# Used by --cert, --get-cert parameter
CERT_DIR="./certs"
CERT_PRIVATE_KEY="private.key"
CERT_X509="certificate.crt"
have_flag() {
for FLAG in $USE_FLAGS
do
[ "$FLAG" = "$1" ] && return 0
done
return 1
}
have_all_flags() {
for opt ; do
have_flag $opt || return 1
done
return 0
}
have_any_flags() {
for opt ; do
have_flag $opt && return 0
done
return 1
}
not_have_flag() {
for FLAG in $USE_FLAGS
do
[ "$FLAG" = "$1" ] && return 1
done
return 0
}
not_have_all_flags() {
for opt ; do
not_have_flag $opt || return 1
done
return 0
}
not_have_any_flags() {
for opt ; do
not_have_flag $opt && return 0
done
return 1
}
# Config functions
enabled() {
grep "^\#define $1 1$" config.h >/dev/null 2>/dev/null
return $?
}
disabled() {
grep "^\#define $1 1$" config.h >/dev/null 2>/dev/null
test $? = 0 && return 1
return 0
}
enabled_all() {
for opt ; do
enabled $opt || return 1
done
return 0
}
disabled_all() {
for opt ; do
disabled $opt || return 1
done
return 0
}
enabled_any() {
for opt ; do
enabled $opt && return 0
done
return 1
}
disabled_any() {
for opt ; do
disabled $opt && return 0
done
return 1
}
list_enabled() {
for OPT in $@
do
enabled $OPT && echo $OPT
done
}
list_disabled() {
for OPT in $@
do
disabled $OPT && echo $OPT
done
}
write_enabled() {
defined_file="webif/is_defined.txt"
pages_c="webif/pages.c"
rm -f $defined_file $pages_c 2>/dev/null
for OPT in $(get_opts) WITH_CARDREADER
do
enabled $OPT && printf "%s\n" $OPT >> $defined_file
done
# Handle USE_FLAG based card readers for webif template filtering
have_flag USE_PCSC && printf "%s\n" CARDREADER_PCSC >> $defined_file
}
valid_opt() {
[ "$1" = "WITH_CARDREADER" ] && return 0 # Special case
echo $addons $protocols $readers $card_readers | grep -w "$1" >/dev/null
return $?
}
enable_opt() {
valid_opt $1 && disabled $1 && {
sed -e "s|//#define $1 1$|#define $1 1|g" config.h > config.h.tmp && \
mv config.h.tmp config.h
echo "Enable $1"
}
}
enable_opts() {
for OPT in $@
do
enable_opt $OPT
done
}
disable_opt() {
valid_opt $1 && enabled $1 && {
sed -e "s|#define $1 1$|//#define $1 1|g" config.h > config.h.tmp && \
mv config.h.tmp config.h
echo "Disable $1"
}
}
disable_opts() {
for OPT in $@
do
disable_opt $OPT
done
}
get_opts() {
OPTS=""
case "$1" in
'addons') OPTS="$addons" ; ;;
'protocols') OPTS="$protocols" ; ;;
'readers') OPTS="$readers" ; ;;
'card_readers') OPTS="$card_readers" ; ;;
*) OPTS="$addons $protocols $readers $card_readers" ; ;;
esac
echo $OPTS
}
update_deps() {
# Calculate dependencies
enabled_any $(get_opts readers) $(get_opts card_readers) WITH_EMU && enable_opt WITH_CARDREADER >/dev/null
disabled_all $(get_opts readers) $(get_opts card_readers) WITH_EMU && disable_opt WITH_CARDREADER >/dev/null
disabled WEBIF && disable_opt WEBIF_LIVELOG >/dev/null
disabled WEBIF && disable_opt WEBIF_JQUERY >/dev/null
disabled WEBIF && disable_opt WEBIF_WIKI >/dev/null
have_flag USE_COMPRESS && disable_opt WITH_COMPRESS_WEBIF >/dev/null
enabled MODULE_CCCSHARE && enable_opt MODULE_CCCAM >/dev/null
enabled_any CARDREADER_DB2COM CARDREADER_MP35 CARDREADER_SC8IN1 CARDREADER_STINGER && enable_opt CARDREADER_PHOENIX >/dev/null
enabled CS_CACHEEX_AIO && enable_opt CS_CACHEEX >/dev/null
enabled WITH_SIGNING && enable_opt WITH_SSL >/dev/null
enabled WITH_EMU && enable_opt READER_VIACCESS >/dev/null
enabled WITH_EMU && enable_opt MODULE_NEWCAMD >/dev/null
disabled WITH_EMU && disable_opt WITH_SOFTCAM >/dev/null
}
list_config() {
update_deps
# Handle use flags
have_flag USE_STAPI && echo "CONFIG_WITH_STAPI=y" || echo "# CONFIG_WITH_STAPI=n"
have_flag USE_STAPI5 && echo "CONFIG_WITH_STAPI5=y" || echo "# CONFIG_WITH_STAPI5=n"
have_flag USE_COOLAPI && echo "CONFIG_WITH_COOLAPI=y" || echo "# CONFIG_WITH_COOLAPI=n"
have_flag USE_COOLAPI2 && echo "CONFIG_WITH_COOLAPI2=y" || echo "# CONFIG_WITH_COOLAPI2=n"
have_flag USE_SU980 && echo "CONFIG_WITH_SU980=y" || echo "# CONFIG_WITH_SU980=n"
have_flag USE_AZBOX && echo "CONFIG_WITH_AZBOX=y" || echo "# CONFIG_WITH_AZBOX=n"
have_flag USE_AMSMC && echo "CONFIG_WITH_AMSMC=y" || echo "# CONFIG_WITH_AMSMC=n"
have_flag USE_MCA && echo "CONFIG_WITH_MCA=y" || echo "# CONFIG_WITH_MCA=n"
have_flag USE_LIBCRYPTO && echo "CONFIG_WITH_LIBCRYPTO=y" || echo "# CONFIG_WITH_LIBCRYPTO=n"
for OPT in $addons $protocols WITH_CARDREADER $readers
do
enabled $OPT && echo "CONFIG_$OPT=y" || echo "# CONFIG_$OPT=n"
done
for OPT in $card_readers
do
if [ $OPT = CARDREADER_INTERNAL ]
then
# Internal card reader is actually three different readers depending on USE flags
enabled $OPT && have_flag USE_AZBOX && echo "CONFIG_${OPT}_AZBOX=y" || echo "# CONFIG_${OPT}_AZBOX=n"
enabled $OPT && have_any_flags USE_COOLAPI USE_SU980 && echo "CONFIG_${OPT}_COOLAPI=y" || echo "# CONFIG_${OPT}_COOLAPI=n"
enabled $OPT && have_flag USE_COOLAPI2 && echo "CONFIG_${OPT}_COOLAPI2=y" || echo "# CONFIG_${OPT}_COOLAPI2=n"
enabled $OPT && have_flag USE_AMSMC && echo "CONFIG_${OPT}_AMSMC=y" || echo "# CONFIG_${OPT}_AMSMC=n"
enabled $OPT && not_have_all_flags USE_AZBOX USE_COOLAPI USE_COOLAPI2 USE_SU980 USE_AMSMC && echo "CONFIG_${OPT}_SCI=y" || echo "# CONFIG_${OPT}_SCI=n"
continue
fi
if [ $OPT = CARDREADER_STAPI ]
then
# Enable CARDREADER_STAPI only if USE_STAPI is set
enabled $OPT && have_flag USE_STAPI && echo "CONFIG_$OPT=y" || echo "# CONFIG_$OPT=n"
continue
fi
if [ $OPT = CARDREADER_STAPI5 ]
then
# Enable CARDREADER_STAPI5 only if USE_STAPI5 is set
enabled $OPT && have_flag USE_STAPI5 && echo "CONFIG_$OPT=y" || echo "# CONFIG_$OPT=n"
continue
fi
enabled $OPT && echo "CONFIG_$OPT=y" || echo "# CONFIG_$OPT=n"
done
have_flag USE_LIBUSB && echo "CONFIG_CARDREADER_SMART=y" || echo "# CONFIG_CARDREADER_SMART=n"
have_flag USE_PCSC && echo "CONFIG_CARDREADER_PCSC=y" || echo "# CONFIG_CARDREADER_PCSC=n"
# Extra modules/libraries
enabled_any MODULE_GBOX WITH_COMPRESS_WEBIF && echo "CONFIG_LIB_MINILZO=y" || echo "# CONFIG_LIB_MINILZO=n"
not_have_flag USE_LIBCRYPTO && echo "CONFIG_LIB_AES=y" || echo "# CONFIG_LIB_AES=n"
enabled MODULE_CCCAM && echo "CONFIG_LIB_RC6=y" || echo "# CONFIG_LIB_RC6=n"
not_have_flag USE_LIBCRYPTO && enabled MODULE_CCCAM && echo "CONFIG_LIB_SHA1=y" || echo "# CONFIG_LIB_SHA1=n"
enabled_any READER_DRE MODULE_SCAM READER_VIACCESS READER_NAGRA READER_NAGRA_MERLIN READER_VIDEOGUARD READER_CONAX READER_TONGFANG WITH_EMU && echo "CONFIG_LIB_DES=y" || echo "# CONFIG_LIB_DES=n"
enabled_any MODULE_CCCAM READER_NAGRA READER_NAGRA_MERLIN READER_SECA WITH_EMU && echo "CONFIG_LIB_IDEA=y" || echo "# CONFIG_LIB_IDEA=n"
not_have_flag USE_LIBCRYPTO && enabled_any READER_CONAX READER_CRYPTOWORKS READER_NAGRA READER_NAGRA_MERLIN WITH_EMU && echo "CONFIG_LIB_BIGNUM=y" || echo "# CONFIG_LIB_BIGNUM=n"
enabled READER_NAGRA_MERLIN && echo "CONFIG_LIB_MDC2=y" || echo "# CONFIG_LIB_MDC2=n"
enabled READER_NAGRA_MERLIN && echo "CONFIG_LIB_FAST_AES=y" || echo "# CONFIG_LIB_FAST_AES=n"
enabled_any READER_NAGRA_MERLIN WITH_SIGNING && echo "CONFIG_LIB_SHA256=y" || echo "# CONFIG_LIB_SHA256=n"
enabled_any READER_NAGRA READER_NAGRA_MERLIN && echo "CONFIG_READER_NAGRA_COMMON=y" || echo "# CONFIG_READER_NAGRA_COMMON=n"
}
make_config_c() {
OPENSSL=$(which openssl 2>/dev/null)
if [ "$OPENSSL" = "" ]
then
echo "// openssl not found!"
echo "const char *config_mak = \"CFG: openssl not found in PATH!\";"
else
echo "// This file is generated by ./config.sh --objdir $OBJDIR --make-config.mak"
printf "const char *config_ssl = \"$($OPENSSL version | head -n 1 | awk -F'(' '{ print $1 }' | xargs)\";\n\n"
echo "const char *config_mak ="
printf " \"\\\nCFG: strings FILE | sed -n 's/^CFG~//p' | openssl enc -d -base64 | gzip -d\\\n\"\n"
gzip -9 < $OBJDIR/config.mak | $OPENSSL enc -base64 | while read LINE
do
printf " \"CFG~%s\\\\n\"\n" "$LINE"
done
echo " ;"
fi
if enabled WITH_SIGNING
then
printf "\nconst char *config_cert =\n"
cat $(cert_file 'cert') | while read LINE
do
printf "\"%s\\\\n\"\n" "$LINE"
done
echo " ;"
fi
}
make_config_mak() {
TMPFILE=$(mktemp -t config.mak.XXXXXX) || exit 1
list_config > $TMPFILE
[ ! -d $OBJDIR ] && mkdir -p $OBJDIR 2>/dev/null
cmp $TMPFILE $OBJDIR/config.mak >/dev/null 2>/dev/null
if [ $? != 0 ]
then
cat $TMPFILE > $OBJDIR/config.mak
make_config_c > $OBJDIR/config.c
else
make_config_c > $TMPFILE
cmp $TMPFILE $OBJDIR/config.c >/dev/null 2>/dev/null
[ $? != 0 ] && cat $TMPFILE > $OBJDIR/config.c
fi
rm -rf $TMPFILE
write_enabled
}
check_test() {
if [ "$(cat $configfile | grep "^#define $1 1$")" != "" ]; then
echo "on"
else
echo "off"
fi
}
disable_all() {
for i in $1; do
sed -e "s/^#define ${i} 1$/\/\/#define ${i} 1/g" $tempfileconfig > ${tempfileconfig}.tmp && \
mv ${tempfileconfig}.tmp $tempfileconfig
done
}
enable_package() {
for i in $(cat $tempfile); do
strip=$(echo $i | sed "s/\"//g")
sed -e "s/\/\/#define ${strip} 1$/#define ${strip} 1/g" $tempfileconfig > ${tempfileconfig}.tmp && \
mv ${tempfileconfig}.tmp $tempfileconfig
done
}
print_components() {
clear
echo "You have selected the following components:"
echo
echo "Add-ons:"
for i in $addons; do
printf "\t%-20s: %s\n" $i $(check_test "$i")
done
echo
echo "Protocols:"
for i in $protocols; do
printf "\t%-20s: %s\n" $i $(check_test "$i")
done
echo
echo "Readers:"
for i in $readers; do
printf "\t%-20s: %s\n" $i $(check_test "$i")
done
echo
echo "Card readers:"
for i in $card_readers; do
printf "\t%-20s: %s\n" $i $(check_test "$i")
done
}
menu_addons() {
${DIALOG} --checklist "\nChoose add-ons:\n " $height $width $listheight \
WEBIF "Web Interface" $(check_test "WEBIF") \
WEBIF_LIVELOG "LiveLog" $(check_test "WEBIF_LIVELOG") \
WEBIF_JQUERY "Jquery onboard (if disabled webload)" $(check_test "WEBIF_JQUERY") \
WEBIF_WIKI "Embedded wiki help system" $(check_test "WEBIF_WIKI") \
WITH_COMPRESS_WEBIF "Compress webpages" $(check_test "WITH_COMPRESS_WEBIF") \
WITH_SSL "OpenSSL support" $(check_test "WITH_SSL") \
HAVE_DVBAPI "DVB API" $(check_test "HAVE_DVBAPI") \
WITH_EXTENDED_CW "DVB API EXTENDED CW API" $(check_test "WITH_EXTENDED_CW") \
WITH_NEUTRINO "Neutrino support" $(check_test "WITH_NEUTRINO") \
READ_SDT_CHARSETS "DVB API read-sdt charsets" $(check_test "READ_SDT_CHARSETS") \
CS_ANTICASC "Anti cascading" $(check_test "CS_ANTICASC") \
WITH_DEBUG "Debug messages" $(check_test "WITH_DEBUG") \
MODULE_MONITOR "Monitor" $(check_test "MODULE_MONITOR") \
WITH_LB "Loadbalancing" $(check_test "WITH_LB") \
CS_CACHEEX "Cache exchange" $(check_test "CS_CACHEEX") \
CS_CACHEEX_AIO "Cache exchange aio (depend on Cache exchange)" $(check_test "CS_CACHEEX_AIO") \
CW_CYCLE_CHECK "CW Cycle Check" $(check_test "CW_CYCLE_CHECK") \
LCDSUPPORT "LCD support" $(check_test "LCDSUPPORT") \
LEDSUPPORT "LED support" $(check_test "LEDSUPPORT") \
CLOCKFIX "Clockfix (disable on old systems!)" $(check_test "CLOCKFIX") \
IPV6SUPPORT "IPv6 support (experimental)" $(check_test "IPV6SUPPORT") \
WITH_ARM_NEON "ARM NEON (SIMD/MPE) support" $(check_test "WITH_ARM_NEON") \
WITH_SIGNING "Binary signing with X.509 certificate" $(check_test "WITH_SIGNING") \
WITH_EMU "Emulator support" $(check_test "WITH_EMU") \
WITH_SOFTCAM "Built-in SoftCam.Key" $(check_test "WITH_SOFTCAM") \
2> ${tempfile}
opt=${?}
if [ $opt != 0 ]; then return; fi
disable_all "$addons"
enable_package
}
menu_protocols() {
${DIALOG} --checklist "\nChoose protocols:\n " $height $width $listheight \
MODULE_CAMD33 "camd 3.3" $(check_test "MODULE_CAMD33") \
MODULE_CAMD35 "camd 3.5 UDP" $(check_test "MODULE_CAMD35") \
MODULE_CAMD35_TCP "camd 3.5 TCP" $(check_test "MODULE_CAMD35_TCP") \
MODULE_NEWCAMD "newcamd" $(check_test "MODULE_NEWCAMD") \
MODULE_CCCAM "CCcam" $(check_test "MODULE_CCCAM") \
MODULE_CCCSHARE "CCcam share" $(check_test "MODULE_CCCSHARE") \
MODULE_GBOX "gbox" $(check_test "MODULE_GBOX") \
MODULE_RADEGAST "radegast" $(check_test "MODULE_RADEGAST") \
MODULE_SERIAL "Serial" $(check_test "MODULE_SERIAL") \
MODULE_CONSTCW "constant CW" $(check_test "MODULE_CONSTCW") \
MODULE_PANDORA "Pandora" $(check_test "MODULE_PANDORA") \
MODULE_GHTTP "Ghttp" $(check_test "MODULE_GHTTP") \
MODULE_SCAM "scam" $(check_test "MODULE_SCAM") \
MODULE_STREAMRELAY "Stream Relay" $(check_test "MODULE_STREAMRELAY") \
2> ${tempfile}
opt=${?}
if [ $opt != 0 ]; then return; fi
disable_all "$protocols"
enable_package
}
menu_readers() {
${DIALOG} --checklist "\nChoose readers (CA systems):\n " $height $width $listheight \
READER_NAGRA "Nagravision" $(check_test "READER_NAGRA") \
READER_NAGRA_MERLIN "Nagra Merlin" $(check_test "READER_NAGRA_MERLIN") \
READER_IRDETO "Irdeto" $(check_test "READER_IRDETO") \
READER_CONAX "Conax" $(check_test "READER_CONAX") \
READER_CRYPTOWORKS "Cryptoworks" $(check_test "READER_CRYPTOWORKS") \
READER_SECA "Seca" $(check_test "READER_SECA") \
READER_VIACCESS "Viaccess" $(check_test "READER_VIACCESS") \
READER_VIDEOGUARD "NDS Videoguard" $(check_test "READER_VIDEOGUARD") \
READER_DRE "DRE Crypt" $(check_test "READER_DRE") \
READER_TONGFANG "Tongfang" $(check_test "READER_TONGFANG") \
READER_BULCRYPT "Bulcrypt" $(check_test "READER_BULCRYPT") \
READER_GRIFFIN "Griffin" $(check_test "READER_GRIFFIN") \
READER_DGCRYPT "DGCrypt" $(check_test "READER_DGCRYPT") \
2> ${tempfile}
opt=${?}
if [ $opt != 0 ]; then return; fi
disable_all "$readers"
enable_package
}
menu_card_readers() {
${DIALOG} --checklist "\nChoose card reader drivers:\n " $height $width $listheight \
CARDREADER_PHOENIX "Phoenix/mouse" $(check_test "CARDREADER_PHOENIX") \
CARDREADER_INTERNAL "Internal (Sci,Azbox,Cool)" $(check_test "CARDREADER_INTERNAL") \
CARDREADER_SC8IN1 "SC8in1" $(check_test "CARDREADER_SC8IN1") \
CARDREADER_MP35 "AD-Teknik MP 3.6/USB Phoenix" $(check_test "CARDREADER_MP35") \
CARDREADER_SMARGO "Argolis Smargo Smartreader" $(check_test "CARDREADER_SMARGO") \
CARDREADER_DB2COM "dbox2" $(check_test "CARDREADER_DB2COM") \
CARDREADER_STAPI "STAPI" $(check_test "CARDREADER_STAPI") \
CARDREADER_STAPI5 "STAPI5" $(check_test "CARDREADER_STAPI5") \
CARDREADER_STINGER "STINGER" $(check_test "CARDREADER_STINGER") \
CARDREADER_DRECAS "DRECAS" $(check_test "CARDREADER_DRECAS") \
2> ${tempfile}
opt=${?}
if [ $opt != 0 ]; then return; fi
disable_all "$card_readers"
enable_package
}
config_dialog() {
height=30
width=65
listheight=16
DIALOG=${DIALOG:-`which dialog`}
if [ -z "${DIALOG}" ]; then
echo "Please install dialog package." 1>&2
exit 1
fi
configfile=config.h
tempfile=$(mktemp -t oscam-config.dialog.XXXXXX) || exit 1
tempfileconfig=$(mktemp -t oscam-config.h.XXXXXX) || exit 1
trap 'rm -f $tempfile $tempfileconfig $tempfileconfig.bak 2>/dev/null' INT TERM EXIT
cp -f $configfile $tempfileconfig
while true; do
${DIALOG} --menu "\nSelect category:\n " $height $width $listheight \
Add-ons "Add-ons" \
Protocols "Network protocols" \
Readers "Readers (CA systems)" \
CardReaders "Card reader drivers" \
Save "Save" \
2> ${tempfile}
opt=${?}
if [ $opt != 0 ]; then clear; exit; fi
menuitem=$(cat $tempfile)
case $menuitem in
Add-ons) menu_addons ;;
Protocols) menu_protocols ;;
Readers) menu_readers ;;
CardReaders) menu_card_readers ;;
Save)
cp -f $tempfileconfig $configfile
update_deps
write_enabled
print_components
exit 0
;;
esac
cp -f $tempfileconfig $configfile
done
}
create_cert() {
# define certificate details
CERT_SUBJECT_DEFAULT="/CN=Private OSCam Self Signed Certificate"
CERT_DAYS=365
mkdir -p "$CERT_DIR"
# define certificate type
case "$1" in
'rsa')
CERT_TYPE="rsa"
[ -z $2 ] && CERT_ALGO="4096" || CERT_ALGO="$2"
PRIVATE_KEY_GEN="openssl genrsa -out "$CERT_DIR/$CERT_PRIVATE_KEY" ${CERT_ALGO}"
;;
'ecdsa'|*)
CERT_TYPE="ec -pkeyopt ec_paramgen_curve"
[ -z $2 ] && CERT_ALGO="prime256v1" || CERT_ALGO="$2"
PRIVATE_KEY_GEN="openssl ecparam -name ${CERT_ALGO} -genkey -noout -out "$CERT_DIR/$CERT_PRIVATE_KEY""
;;
esac
# custom subject
if [ -z "$4" ]; then
CERT_SUBJECT="$CERT_SUBJECT_DEFAULT"
else
for param in $*; do
i=$(( i + 1 ))
[ $i -ge 4 ] && CERT_SUBJECT="$CERT_SUBJECT$param "
done
CERT_SUBJECT="/CN=$(echo "$CERT_SUBJECT" | sed 's/[[:space:]]*$//' | sed 's/CN=//g')"
fi
if [ ! -f "$CERT_DIR/$CERT_PRIVATE_KEY" ] || [ ! -f "$CERT_DIR/$CERT_X509" ]; then
# create X.509 V3 extensions file
printf "authorityKeyIdentifier=keyid,issuer\nbasicConstraints=CA:FALSE\nkeyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment\n" > "$CERT_DIR/v3.ext"
if [ "$3" != 'ca' ]; then
# create self signed certificate and private key
openssl req -nodes -x509 -utf8 -sha256 -newkey ${CERT_TYPE}:${CERT_ALGO} -addext "$(grep keyUsage "$CERT_DIR/v3.ext")" -keyout "$CERT_DIR/$CERT_PRIVATE_KEY" -out "$CERT_DIR/$CERT_X509" -days $CERT_DAYS -subj "${CERT_SUBJECT}"
else
if [ ! -f "$CERT_DIR/root-ca-$CERT_PRIVATE_KEY" ] || [ ! -f "$CERT_DIR/root-ca-$CERT_X509" ]; then
# create Root CA, CA certificate and private key
openssl req -nodes -x509 -utf8 -sha256 -newkey ${CERT_TYPE}:${CERT_ALGO} -extensions v3_ca -keyout "$CERT_DIR/root-ca-$CERT_PRIVATE_KEY" -out "$CERT_DIR/root-ca-$CERT_X509" -days $(($CERT_DAYS * 10)) -subj "$(echo "$CERT_SUBJECT" | sed "s/ Self Signed Certificate//g") Root CA"
fi
# create private key
$($PRIVATE_KEY_GEN)
# create csr
openssl req -new -utf8 -sha256 -key "$CERT_DIR/$CERT_PRIVATE_KEY" -out "$CERT_DIR/$CERT_X509".csr -subj "$(echo "$CERT_SUBJECT" | sed "s/Self Signed Certificate/CA Certificate/g")"
# issue new certificate by Root CA
openssl x509 -req -nameopt utf8 -sha256 -in "$CERT_DIR/$CERT_X509".csr -extfile "$CERT_DIR/v3.ext" -CA "$CERT_DIR/root-ca-$CERT_X509" -CAkey "$CERT_DIR/root-ca-$CERT_PRIVATE_KEY" -CAcreateserial -out "$CERT_DIR/$CERT_X509" -days $CERT_DAYS
# chain Root CA and CA certificate
cat "$CERT_DIR/$CERT_X509" "$CERT_DIR/root-ca-$CERT_X509" > "$CERT_DIR/$CERT_X509.chained"
mv "$CERT_DIR/$CERT_X509.chained" "$CERT_DIR/$CERT_X509"
fi
# cleanup
rm -f "$CERT_DIR/$CERT_X509".csr "$CERT_DIR/v3.ext"
else
echo "Private Key and/or Certificates still exists in $(realpath "$(pwd)/$CERT_DIR")!" 1>&2
return 1
fi
}
add_cert() {
if [ ! -f "$1" ] || [ ! -f "$2" ]; then
echo "At least one of the provided files was not found!" 1>&2
return 1
else
mkdir -p "$CERT_DIR"
# Symlink certificate
ln -sf "$1" "$CERT_DIR/$CERT_X509"
# Symlink private key
ln -sf "$2" "$CERT_DIR/$CERT_PRIVATE_KEY"
fi
}
cert_file() {
case "$1" in
'cert')
CHECK_FILE="$CERT_DIR/$CERT_X509"
HINT="Certificate"
;;
'privkey')
CHECK_FILE="$CERT_DIR/$CERT_PRIVATE_KEY"
HINT="Private Key"
;;
esac
if [ -f "$CHECK_FILE" ]; then
echo "$(realpath "$CHECK_FILE")"
return 0;
else
echo "$HINT file not found in $(realpath $(pwd)/$CERT_DIR)!" 1>&2
return 1;
fi
}
cert_info() {
if [ -f "$CERT_DIR/$CERT_X509" ]; then
DATE=$(hash gdate 2>/dev/null && printf 'gdate' || printf 'date')
for attrib in 'Subject' 'Issuer' 'Not Before' 'Not After' 'Public Key Algorithm'\
'Public-Key' 'ASN1 OID' 'NIST CURVE' 'Exponent' 'Signature Algorithm'; do
if [ "$attrib" = 'Not Before' ]; then
openssl x509 -in "$CERT_DIR/$CERT_X509" -noout -nameopt oneline,-esc_msb -startdate | awk -F '=' '{print $2}' | $DATE +"%d.%m.%Y %H:%M:%S" -f - | xargs -0 printf "$attrib: %s" 2>/dev/null
elif [ "$attrib" = 'Not After' ]; then
openssl x509 -in "$CERT_DIR/$CERT_X509" -noout -nameopt oneline,-esc_msb -enddate | awk -F '=' '{print $2}' | $DATE +"%d.%m.%Y %H:%M:%S" -f - | xargs -0 printf "$attrib: %s" 2>/dev/null
else
openssl x509 -in "$CERT_DIR/$CERT_X509" -text -noout -nameopt oneline,-esc_msb | grep -m1 "$attrib" | xargs -0 printf "%s" | awk '{$1=$1};1'
fi
done
return 0
else
echo "$HINT file not found in $(realpath $(pwd)/$CERT_DIR)!" 1>&2
return 1
fi
}
# Change working directory to the directory where the script is
cd $(dirname $0)
if [ $# = 0 ]
then
usage
exit 1
fi
while [ $# -gt 0 ]
do
case "$1" in
'-g'|'--gui'|'--config'|'--menuconfig')
config_dialog
break
;;
'-s'|'--show-enabled'|'--show')
shift
list_enabled $(get_opts $1)
# Take special care of USE_xxx flags
if [ "$1" = "card_readers" ]
then
have_flag USE_LIBUSB && echo "CARDREADER_SMART"
have_flag USE_PCSC && echo "CARDREADER_PCSC"
fi
break
;;
'-Z'|'--show-disabled')
shift
list_disabled $(get_opts $1)
break
;;
'-S'|'--show-valid')
shift
for OPT in $(get_opts $1)
do
echo $OPT
done
break
;;
'-E'|'--enable')
shift
while [ "$1" != "" ]
do
case "$1" in
-*)
update_deps
continue 2
;;
all|addons|protocols|readers|card_readers)
enable_opts $(get_opts $1)
;;
*)
enable_opt "$1"
;;
esac
shift
done
update_deps
write_enabled
;;
'-D'|'--disable')
shift
while [ "$1" != "" ]
do
case "$1" in
-*)
update_deps
continue 2
;;
all|addons|protocols|readers|card_readers)
disable_opts $(get_opts $1)
;;
*)
disable_opt "$1"
;;
esac
shift
done
update_deps
write_enabled
;;
'-R'|'--restore')
echo $defconfig | sed -e 's|# ||g' | xargs printf "%s\n" | grep "=y$" | sed -e 's|^CONFIG_||g;s|=.*||g' |
while read OPT
do
enable_opt "$OPT"
done
echo $defconfig | sed -e 's|# ||g' | xargs printf "%s\n" | grep "=n$" | sed -e 's|^CONFIG_||g;s|=.*||g' |
while read OPT
do
disable_opt "$OPT"
done
update_deps
write_enabled
;;
'-e'|'--enabled')
enabled $2 && echo "Y" && exit 0 || echo "N" && exit 1
break
;;
'-d'|'--disabled')
disabled $2 && echo "Y" && exit 0 || echo "N" && exit 1
break
;;
'-cc'|'--create-cert')
shift
create_cert $@
exit $?
;;
'-cl'|'--add-cert')
shift
add_cert $@
exit $?
;;
'-cf'|'--cert-file')
shift
cert_file $1
exit $?
;;
'-ci'|'--cert-info')
cert_info
exit $?
;;
'-sm'|'--sign-marker')
obsm=`grep '^#define OBSM' oscam-signing.h | cut -d\" -f2`
echo $obsm
break
;;
'-um'|'--upx-marker')
upxm=`grep '^#define UPXM' oscam-signing.h | cut -d\" -f2`
echo $upxm
break
;;
'-v'|'--oscam-version')
version=`grep '^#define CS_VERSION' globals.h | cut -d\" -f2`
emuversion=`grep EMU_VERSION module-emulator-osemu.h | awk '{ print $3 }'`
echo $version-$emuversion
break
;;
'--submodule')
shift
name="$1"
if [ ! -f .gitmodules ]; then
exit 0
fi
# If no name given, process all submodules
if [ -z "$name" ]; then
for sm in `grep '^\[submodule "' .gitmodules | sed 's/.*"\(.*\)".*/\1/'`; do
$0 --submodule "$sm"
done
exit 0
fi
# Extract submodule section from .gitmodules
section=`sed -n "/\[submodule \"$name\"\]/,/^\[/p" .gitmodules | grep ' = '`
# Check if submodule is needed based on depends config option
depends=`echo "$section" | grep 'depends = ' | sed 's/.*depends = //'`
if [ -n "$depends" ]; then
enabled $depends || exit 0
fi
if [ "`git rev-parse --show-toplevel 2>/dev/null`" = "`pwd`" ]; then
if echo "$section" | grep -q 'branch = '; then
echo "Updating git submodule '$name' (tracking)..."
git submodule update --init --remote "$name" || {
echo "Warning: failed to update submodule. Using existing version." >&2
}
else
echo "Updating git submodule '$name' (pinned)..."
git submodule update --init "$name" || {
echo "Warning: failed to update submodule. Using existing version." >&2
}
fi
else
url=`echo "$section" | grep 'url = ' | sed 's/.*url = //'`
if [ -z "$url" ]; then
echo "Error: submodule '$name' not found in .gitmodules" >&2
exit 1
fi
echo "Fetching $name repository..."
rm -rf "$name"
git clone --depth 1 "$url" "$name" || {
echo "Error: failed to clone $name repository." >&2
exit 1
}
fi
break
;;
'-c'|'--oscam-commit')
sha=`git log --no-merges 2>/dev/null | sed -n 1p | cut -d ' ' -f2 | cut -c1-8`
echo $sha
break
;;
'-O'|'--detect-osx-sdk-version')
shift
OSX_VER=${1:-10.10}
for DIR in /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX{$OSX_VER,10.10,10.9,10.8,10.7}.sdk /Developer/SDKs/MacOSX{$OSX_VER,10.6,10.5}.sdk
do
if test -d $DIR
then
echo $DIR
exit 0
fi
done
echo Cant_find_OSX_SDK
break
;;
'-l'|'--list-config')
list_config
exit 0
;;
'-m'|'--make-config.mak')
make_config_mak
exit 0
;;
'--use-flags')
shift
USE_FLAGS=$1
;;
'--objdir')
shift
OBJDIR=$1
;;
'-h'|'--help')
usage
break
;;
*)
echo "[WARN] Unknown parameter: $1" >&2
;;
esac
# Some shells complain when there are no more parameters to shift
test $# -gt 0 && shift
done
exit 0
Reference in New Issue View Git Blame Copy Permalink