c`c@s ddljZddlZddlZddlZddlmZddlmZddl m Z m Z m Z ddl mZmZmZddlmZddlmZddlmZdd lmZdd lmZd efd YZd efdYZdS(iN(tconfig(tLastUpdatedOrderedDict(t splitArgstjoinArgst u2b_if_py2(t IO_ObjecttIO_Object_ContentHandlertIO_Object_XMLGenerator(tlog(t ipXtables(tebtables(terrors(t FirewallErrortdirect_ContentHandlercBs#eZdZdZdZRS(cCstj||t|_dS(N(Rt__init__tFalsetdirect(tselftitem((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR(scCstj||||jj|||dkr\|jrPttjdnt|_n|dkr|jst j ddS|d}|d}|d}|jj t |t |t |n+|dkr|jst j ddS|d}|dkr ttj d |n|d}|d}yt|d }Wn'tk rqt j d|d dSXt |t |t ||g|_nZ|dkr|jst j ddS|d}t |g|_nt j d|dSdS(NRsMore than one direct tag.tchains$Parse Error: chain outside of directtipvttabletrules#Parse Error: rule outside of directtipv4tipv6tebs"'%s' not from {'ipv4'|'ipv6'|'eb'}tprioritys'Parse Error: %s is not a valid priorityt passthroughs&Parse Error: command outside of directsUnknown XML element %s(RRR(Rt startElementRtparser_check_element_attrsRR R t PARSE_ERRORtTrueRterrort add_chainRt INVALID_IPVtintt ValueErrort_rulet _passthrough(RtnametattrsRRRR((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR,sT                          cCstj|||dkr|jrm|jjgt|jD]}t|^q>|jj|jn t j dd|_nz|dkr|jr|j jgt|jD]}t|^q|jj |j nt j ddd|_ ndS(NRs2Error: rule does not have any arguments, ignoring.Rs0Error: passthrough does not have any arguments, s ignoring.(Rt endElementt_elementR%tappendRRRtadd_ruleRR tNoneR&tadd_passthrough(RR'tx((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR)^s    &     & (t__name__t __module__RRR)(((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR 's  2tDirectcBseZdZdd(gfddddddgfgfdddgfgffZdZid)d6dd d gd 6dd d d gd 6dgd 6ZiZdZdZ dZ dZ dZ dZ dZdZdZdZdZdZdZdZdZdZdZdZd Zd!Zd"Zd#Zd$Zd%Zd&Z d'Z!RS(*s Direct class tchainsttrulesit passthroughss(a(sss)a(sssias)a(sas))RRRRRRRcCsDtt|j||_t|_t|_t|_dS(N(tsuperR2RtfilenameRR3R5R6(RR8((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyRs    cCsdS(N((RtconfR((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt _check_configsc CsNg}g}xO|jD]D}x;|j|D],}|jtt|t|gq*WqW|j|g}xe|jD]Z}xQ|j|D]B}|jt|d|d|d|dt|dfqWq{W|j|g}xH|jD]=}x4|j|D]%}|jt|t|fq WqW|j|t|S(Niii(R3R+ttupletlistR5R6(RtretR/tkeyRR((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt export_configs$. % ' cCs|j|j|xt|jD]\}\}}|dkrjx"||D]}|j|qPWn|dkrx"||D]}|j|qWn|dkr'x"||D]}|j|qWq'q'WdS(NR3R5R6(tcleanupt check_configt enumeratetIMPORT_EXPORT_STRUCTURER!R,R.(RR9titelementtdummyR/((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt import_configs  "   cCs+|jj|jj|jjdS(N(R3tclearR5R6(R((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR@s  cCsdGHx;|jD]0}d|d|ddj|j|fGHqWdGHxe|jD]Z}d|d|d|dfGHx3|j|D]$\}}d |d j|fGHqWqRWd GHxD|jD]9}d |GHx'|j|D]}d d j|GHqWqWdS(NR3s (%s, %s): %siit,R5s (%s, %s, %s):is (%d, ('%s'))s','R6s %s:s ('%s')(R3tjoinR5R6(RR>Rtargs((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pytoutputs  cCs>dddg}||kr:ttjd||fndS(NRRRs'%s' not in '%s'(R R R"(RRtipvs((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt _check_ipvs  cCsf|j||dkr(tjjn tjj}||krbttjd||fndS(NRRs'%s' not in '%s'(sipv4sipv6(RNR tBUILT_IN_CHAINStkeysR R R t INVALID_TABLE(RRRttables((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt_check_ipv_tables    cCs|j||||f}||jkr;g|j|((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR!s  cCs|j||||f}||jkr{||j|kr{|j|j|t|j|dkr|j|=qntd|||fdS(Nis4Chain '%s' with table '%s' with ipv '%s' not in list(RSR3tremovetlenR$(RRRRR>((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt remove_chains "cCs<|j||||f}||jko;||j|kS(N(RSR3(RRRRR>((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt query_chains cCsP|j||||f}||jkr6|j|Std||fdS(Ns&No chains for table '%s' with ipv '%s'(RSR3R$(RRRR>((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt get_chainss   cCs|jS(N(R3(R((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pytget_all_chainsscCs|j|||||f}||jkrAt|j|tvalue((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR,s'cCs|j|||||f}|t|f}||jkr||j|kr|j||=t|j|dkr|j|=qn0tddj|||fd||fdS(Nis(Rule '%s' for table '%s' and chain '%s' s',s)with ipv '%s' and priority %d not in list(RSR;R5RVR$RJ(RRRRRRKR>R[((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt remove_rules"cCs|j|||||f}||jkrx)|j|jD]}|j||=qBWt|j|dkr|j|=qndS(Ni(RSR5RPRV(RRRRR>R[((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt remove_rules"scCsQ|j|||||f}|t|f}||jkoP||j|kS(N(RSR;R5(RRRRRRKR>R[((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt query_rule+scCs[|j|||||f}||jkr9|j|Std||fd|dS(Ns'No rules for table '%s' and chain '%s' s with ipv '%s'(RSR5R$(RRRRR>((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt get_rules1s  cCs|jS(N(R5(R((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyt get_all_rules:scCs~|j|||jkr,g|j|RRRRRK((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pytwriteusZ               (R4R4R4N("R0R1t__doc__RCtDBUS_SIGNATURER-tPARSER_REQUIRED_ELEMENT_ATTRStPARSER_OPTIONAL_ELEMENT_ATTRSRR:R?RGR@RLRNRSR!RWRXRYRZR,R\R]R^R_R`R.RaRbRcRdRwR(((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyR2usJ                  (txml.saxRhR{RR~tfirewallRtfirewall.fw_typesRtfirewall.functionsRRRtfirewall.core.io.io_objectRRRtfirewall.core.loggerRt firewall.coreR R R tfirewall.errorsR R R2(((s;/usr/lib/python2.7/site-packages/firewall/core/io/direct.pyts   N