#!/bin/sh
. /bin/env.mod.rcconf
# Make sure that no command accidentally writes stdout or stderr stuff into
# the output stream = tar archive. File descriptor 3 is the real output.
exec 3>&1 > /dev/null 2>&1
FAIL=
fail() {
[ -z "$FAIL" ] && FAIL="$@"
}
para() {
echo "&$QUERY_STRING" | sed -rn "s/.*&${1}=([^&]*).*/\1/p"
}
DOEXP="$(para 'do_export')"
DOENC="$(para 'do_encrypt')"
export SICPW="$(para 'password_backup')"
[ "$DOENC" == "on" -a -z "$SICPW" ] && fail "$(lang de:"Es wurde kein Passwort angegeben" en:"You have not provided a password")."
[ -z "$CONFIG_LABOR_ID_NAME" ] && REV="" || REV="-$(sed -nr 's/.*[ ^]*CONFIG_BUILDNUMBER="?([^"]*).*/\1/p' /etc/init.d/rc.conf)"
fname="$(echo ${CONFIG_PRODUKT_NAME}_${CONFIG_VERSION_MAJOR}.${CONFIG_VERSION}${REV}-$(cat /etc/.freetz-version)$(date '+_%Y-%m-%d_%H%M')_settings${DOENC:+.crypted}.tar | tr ' !' '_.')"
# Create temp-dirs for backup
OUTER_DIR="/tmp/settings.tmp.backup"
INNER_DIR="$OUTER_DIR/var_flash"
rm -rf "$OUTER_DIR"
mkdir -p "$INNER_DIR" || fail "$(lang de:"Fehler beim Erstellen des Verzeichnisses" en:"Erron on creating directory")"
# Create additional files
sort /proc/sys/urlader/environment | sed -rn "s/^(SerialNumber|maca|tr069_passphrase|wlan_key)[ \t]*//p" | md5sum | sed 's/ .*//' > "$OUTER_DIR/identity.md5" \
|| fail "$(lang de:"Fehler beim Erstellen der Identität" en:"Erron on creating identity")"
[ "$DOEXP" == "on" ] && tr069fwupdate configexport $SICPW | sed -n "/^\*\*\*\* FRITZ/,\$p" | gzip > "$OUTER_DIR/export.avm.gz"
cat << EOF > "$OUTER_DIR/contents.txt"
This file contains a settings backup by Freetz-NG
$fname
To restore with an older freetz revision: upload only settings.tgz
EOF
[ "$DOENC" == "on" ] && echo 'For manual decryption: openssl enc -d -aes256 -in settings.tgz.crypted -out settings.tgz [-pbkdf2|-md sha256]' >> "$OUTER_DIR/contents.txt"
[ "$DOEXP" == "on" ] && echo 'The file export.avm could be restored with the AVM web interface.' >> "$OUTER_DIR/contents.txt"
[ -s "$OUTER_DIR/contents.txt" ] || fail "$(lang de:"Fehler beim Erstellen von contents.txt" en:"Erron on creating of contents.txt")"
# Create temporary files of character streams in /var/flash
for x in /var/flash/*; do cat "$x" > "$INNER_DIR/${x##*/}"; done
# Pack (and encrypt) temporary settings file
if [ "$DOENC" != "on" ]; then
tar cz -C "$OUTER_DIR" "${INNER_DIR##*/}/" > "$OUTER_DIR/settings.tgz" \
|| fail "$(lang de:"Fehler beim Erzeugen der Datei" en:"Erron on creating file")"
else
[ "$(openssl version | sed -rn 's/^OpenSSL ([0-9])\.([0-9])\..*/\1\2/p')" -lt 11 2>/dev/null ] && SSLOPT='-md sha256' || SSLOPT='-pbkdf2'
tar cz -C "$OUTER_DIR" "${INNER_DIR##*/}/" | openssl enc -e -aes256 $SSLOPT -pass env:SICPW > "$OUTER_DIR/settings.tgz.crypted" \
|| fail "$(lang de:"Fehler beim Verschlüsseln der Datei" en:"Erron on encrypting file")"
# Add environment (to decode password strings)
cat /proc/sys/urlader/environment | openssl enc -e -aes256 $SSLOPT -pass env:SICPW > "$OUTER_DIR/environment.txt.crypted" \
|| fail "$(lang de:"Fehler beim Verschlüsseln des Environments" en:"Erron on encrypting environment")"
fi
rm -rf "$INNER_DIR"
[ -s "$OUTER_DIR/settings.tgz.crypted" -o -s "$OUTER_DIR/settings.tgz" ] || fail "$(lang de:"Fehler beim Packen" en:"Error on packing")"
(
if [ -n "$FAIL" ]; then
# Show error message
. /usr/lib/libmodcgi.sh
cgi --id=do_backup
cgi_begin "$(lang de:"Konfiguration sichern (Backup)" en:"Backup configuration")"
echo "$(lang de:"Fehler" en:"Error")
"
echo "$FAIL
"
echo ""
back_button --title=" $(lang de:"Zurück" en:"Back") " mod backup
echo "
"
cgi_end
else
# Create backup file
CR=$'\r'
echo "Content-Type: application/x-tar${CR}"
echo "Content-Disposition: attachment; filename=\"$fname\"${CR}"
echo "${CR}"
tar c -C "${OUTER_DIR}" $(ls -1 $OUTER_DIR)
fi
) >&3
rm -rf "$OUTER_DIR"