1*4882a593Smuzhiyun#!/bin/bash 2*4882a593Smuzhiyun# 3*4882a593Smuzhiyun# QEMU network configuration script to bring down tap devices. This 4*4882a593Smuzhiyun# utility needs to be run as root, and will use the tunctl binary 5*4882a593Smuzhiyun# from the native sysroot. 6*4882a593Smuzhiyun# 7*4882a593Smuzhiyun# If you find yourself calling this script a lot, you can add the 8*4882a593Smuzhiyun# the following to your /etc/sudoers file to be able to run this 9*4882a593Smuzhiyun# command without entering your password each time: 10*4882a593Smuzhiyun# 11*4882a593Smuzhiyun# <my-username> ALL=NOPASSWD: /path/to/runqemu-ifup 12*4882a593Smuzhiyun# <my-username> ALL=NOPASSWD: /path/to/runqemu-ifdown 13*4882a593Smuzhiyun# 14*4882a593Smuzhiyun# Copyright (c) 2006-2011 Linux Foundation 15*4882a593Smuzhiyun# 16*4882a593Smuzhiyun# SPDX-License-Identifier: GPL-2.0-only 17*4882a593Smuzhiyun# 18*4882a593Smuzhiyun 19*4882a593Smuzhiyunusage() { 20*4882a593Smuzhiyun echo "sudo $(basename $0) <tap-dev> <native-sysroot-basedir>" 21*4882a593Smuzhiyun} 22*4882a593Smuzhiyun 23*4882a593Smuzhiyunif [ $EUID -ne 0 ]; then 24*4882a593Smuzhiyun echo "Error: This script (runqemu-ifdown) must be run with root privileges" 25*4882a593Smuzhiyun exit 1 26*4882a593Smuzhiyunfi 27*4882a593Smuzhiyun 28*4882a593Smuzhiyunif [ $# -ne 2 ]; then 29*4882a593Smuzhiyun usage 30*4882a593Smuzhiyun exit 1 31*4882a593Smuzhiyunfi 32*4882a593Smuzhiyun 33*4882a593SmuzhiyunTAP=$1 34*4882a593SmuzhiyunSTAGING_BINDIR_NATIVE=$2 35*4882a593Smuzhiyun 36*4882a593SmuzhiyunTUNCTL=$STAGING_BINDIR_NATIVE/tunctl 37*4882a593Smuzhiyunif [ ! -e "$TUNCTL" ]; then 38*4882a593Smuzhiyun echo "Error: Unable to find tunctl binary in '$STAGING_BINDIR_NATIVE', please bitbake qemu-helper-native" 39*4882a593Smuzhiyun exit 1 40*4882a593Smuzhiyunfi 41*4882a593Smuzhiyun 42*4882a593Smuzhiyun$TUNCTL -d $TAP 43*4882a593Smuzhiyun 44*4882a593SmuzhiyunIFCONFIG=`which ip 2> /dev/null` 45*4882a593Smuzhiyunif [ "x$IFCONFIG" = "x" ]; then 46*4882a593Smuzhiyun # better than nothing... 47*4882a593Smuzhiyun IFCONFIG=/sbin/ip 48*4882a593Smuzhiyunfi 49*4882a593Smuzhiyunif [ -x "$IFCONFIG" ]; then 50*4882a593Smuzhiyun if `$IFCONFIG link show $TAP > /dev/null 2>&1`; then 51*4882a593Smuzhiyun $IFCONFIG link del $TAP 52*4882a593Smuzhiyun fi 53*4882a593Smuzhiyunfi 54*4882a593Smuzhiyun# cleanup the remaining iptables rules 55*4882a593SmuzhiyunIPTABLES=`which iptables 2> /dev/null` 56*4882a593Smuzhiyunif [ "x$IPTABLES" = "x" ]; then 57*4882a593Smuzhiyun IPTABLES=/sbin/iptables 58*4882a593Smuzhiyunfi 59*4882a593Smuzhiyunif [ ! -x "$IPTABLES" ]; then 60*4882a593Smuzhiyun echo "$IPTABLES cannot be executed" 61*4882a593Smuzhiyun exit 1 62*4882a593Smuzhiyunfi 63*4882a593Smuzhiyunn=$[ (`echo $TAP | sed 's/tap//'` * 2) + 1 ] 64*4882a593Smuzhiyundest=$[ (`echo $TAP | sed 's/tap//'` * 2) + 2 ] 65*4882a593Smuzhiyun$IPTABLES -D POSTROUTING -t nat -j MASQUERADE -s 192.168.7.$n/32 66*4882a593Smuzhiyun$IPTABLES -D POSTROUTING -t nat -j MASQUERADE -s 192.168.7.$dest/32 67*4882a593Smuzhiyuntrue 68