14) { error_log("Attempting to set channel to '".$_POST['channel']."'"); // FIXME: log injection return false; } $good_input = true; // Check for Logging Checkbox $logEnable = 0; if($arrHostapdConf['LogEnable'] == 0) { if(isset($_POST['logEnable'])) { // Need code to enable logfile logging here $logEnable = 1; exec('sudo /etc/raspap/hostapd/enablelog.sh'); } else { exec('sudo /etc/raspap/hostapd/disablelog.sh'); } } else { if(isset($_POST['logEnable'])) { $logEnable = 1; exec('sudo /etc/raspap/hostapd/enablelog.sh'); } else { exec('sudo /etc/raspap/hostapd/disablelog.sh'); } } write_php_ini(["LogEnable" => $logEnable],'/etc/raspap/hostapd.ini'); // Verify input if (empty($_POST['ssid']) || strlen($_POST['ssid']) > 32) { // Not sure of all the restrictions of SSID $status->addMessage('SSID must be between 1 and 32 characters', 'danger'); $good_input = false; } if (strlen($_POST['wpa_passphrase']) < 8 || strlen($_POST['wpa_passphrase']) > 63) { $status->addMessage('WPA passphrase must be between 8 and 63 characters', 'danger'); $good_input = false; } if (! in_array($_POST['interface'], $interfaces)) { // The user is probably up to something here but it may also be a // genuine error. $status->addMessage('Unknown interface '.$_POST['interface'], 'danger'); $good_input = false; } if (strlen($_POST['country_code']) !== 0 && strlen($_POST['country_code']) != 2) { $status->addMessage('Country code must be blank or two characters', 'danger'); $good_input = false; } if ($good_input) { if ($tmp_file = fopen('/tmp/hostapddata', 'w')) { // Fixed values fwrite($tmp_file, 'driver=nl80211'.PHP_EOL); fwrite($tmp_file, 'ctrl_interface='.RASPI_HOSTAPD_CTRL_INTERFACE.PHP_EOL); fwrite($tmp_file, 'ctrl_interface_group=0'.PHP_EOL); fwrite($tmp_file, 'beacon_int=100'.PHP_EOL); fwrite($tmp_file, 'auth_algs=1'.PHP_EOL); fwrite($tmp_file, 'wpa_key_mgmt=WPA-PSK'.PHP_EOL); // TODO: deal with ini file value escaping. E.g. ssid=E=mc2 becomes ssid=E\=mc2 fwrite($tmp_file, 'ssid='.$_POST['ssid'].PHP_EOL); fwrite($tmp_file, 'channel='.$_POST['channel'].PHP_EOL); fwrite($tmp_file, 'hw_mode='.$_POST['hw_mode'].PHP_EOL); fwrite($tmp_file, 'wpa_passphrase='.$_POST['wpa_passphrase'].PHP_EOL); fwrite($tmp_file, 'interface='.$_POST['interface'].PHP_EOL); fwrite($tmp_file, 'wpa='.$_POST['wpa'].PHP_EOL); fwrite($tmp_file, 'wpa_pairwise='.$_POST['wpa_pairwise'].PHP_EOL); fwrite($tmp_file, 'country_code='.$_POST['country_code'].PHP_EOL); fclose($tmp_file); system( "sudo cp /tmp/hostapddata " . RASPI_HOSTAPD_CONFIG, $return ); if( $return == 0 ) { $status->addMessage('Wifi Hotspot settings saved', 'success'); } else { $status->addMessage('Unable to save wifi hotspot settings', 'danger'); } } else { $status->addMessage('Unable to save wifi hotspot settings', 'danger'); return false; } } return true; }