wireguard-tools/contrib/ncat-client-server/server.sh

#!/bin/bash
# SPDX-License-Identifier: GPL-2.0
#
# Copyright (C) 2015-2020 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.

if [[ -z $NCAT_REMOTE_ADDR ]]; then
	ip link del dev wg0 2>/dev/null
	set -e
	ip link add dev wg0 type wireguard
	ip address add 192.168.4.1/24 dev wg0
	wg set wg0 private-key <(wg genkey) listen-port 12912
	ip link set up dev wg0
	exec ncat -e "$(readlink -f "$0")" -k -l -p 42912 -v
fi
read -r public_key
[[ $(wg show wg0 peers | wc -l) -ge 253 ]] && wg set wg0 peer $(wg show wg0 latest-handshakes | sort -k 2 -b -n | head -n 1 | cut -f 1) remove
next_ip=$(all="$(wg show wg0 allowed-ips)"; for ((i=2; i<=254; i++)); do ip="192.168.4.$i"; [[ $all != *$ip/32* ]] && echo $ip && break; done)
wg set wg0 peer "$public_key" allowed-ips $next_ip/32 2>/dev/null && echo "OK:$(wg show wg0 private-key | wg pubkey):$(wg show wg0 listen-port):$next_ip" || echo ERROR
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			`#!/bin/bash`
global: add SPDX tags to all files It's good to have SPDX identifiers in all files as the Linux kernel developers are working to add these identifiers to all files. Update all files with the correct SPDX license identifier based on the license text of the project or based on the license in the file itself. The SPDX identifier is a legally binding shorthand, which can be used instead of the full boiler plate text. Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Modified-by: Jason A. Donenfeld <Jason@zx2c4.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2017-11-30 16:23:50 +01:00			`# SPDX-License-Identifier: GPL-2.0`
			`#`
global: bump copyright Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2020-01-02 19:52:25 +01:00			`# Copyright (C) 2015-2020 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.`
headers: cleanup notices Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2016-11-18 06:22:00 +01:00
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			`if [[ -z $NCAT_REMOTE_ADDR ]]; then`
			`ip link del dev wg0 2>/dev/null`
			`set -e`
			`ip link add dev wg0 type wireguard`
			`ip address add 192.168.4.1/24 dev wg0`
			`wg set wg0 private-key <(wg genkey) listen-port 12912`
			`ip link set up dev wg0`
			`exec ncat -e "$(readlink -f "$0")" -k -l -p 42912 -v`
			`fi`
			`read -r public_key`
contrib: slight ncat tweak Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2017-01-03 05:23:17 +01:00			`[[ $(wg show wg0 peers \| wc -l) -ge 253 ]] && wg set wg0 peer $(wg show wg0 latest-handshakes \| sort -k 2 -b -n \| head -n 1 \| cut -f 1) remove`
Initial commit Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2015-06-05 15:58:00 +02:00			`next_ip=$(all="$(wg show wg0 allowed-ips)"; for ((i=2; i<=254; i++)); do ip="192.168.4.$i"; [[ $all != $ip/32 ]] && echo $ip && break; done)`
			`wg set wg0 peer "$public_key" allowed-ips $next_ip/32 2>/dev/null && echo "OK:$(wg show wg0 private-key \| wg pubkey):$(wg show wg0 listen-port):$next_ip" \|\| echo ERROR`