ó ì $Sc@sçdZdZdZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl m Z ddlmZdd lmZd ejfd „ƒYZd efd „ƒYZdefd„ƒYZdS(s!Cyril Jaquier, Yaroslav Halchenkos>Copyright (c) 2004 Cyril Jaquier, 2011-2013 Yaroslav HalchenkotGPLiÿÿÿÿN(t ConfigReader(t JailReader(t JailsReader(t Configurator(tLogCaptureTestCasetConfigReaderTestcBsJeZd„Zd„Zd„Zd„Zdd„Zd„Zd„ZRS(cCs.tjddƒ|_td|jƒ|_dS(sCall before every test case.tprefixsf2b-temptbasedirN(ttempfiletmkdtemptdRtc(tself((s5/usr/share/fail2ban/testcases/clientreadertestcase.pytsetUp"scCstj|jƒdS(sCall after every test case.N(tshutiltrmtreeR (R ((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttearDown'scCsŒtjj|kratjj|ƒ}tjj|j|ƒ}tjj|ƒsatj|ƒqantd|j|fdƒj d|ƒdS(Ns%s/%stws [section] option = %s ( tostpathtseptdirnametjoinR texiststmakedirstopentwrite(R tfnametvalueR td_((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyt_write+scCs7tjd|j|fƒ|j|jjdƒƒdS(Ns%s/%sR (RtunlinkR t assertTrueR tread(R R((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyt_remove7sR cCs3|j|jj|ƒƒ|jjddgƒdS(Ntsectiontinttoption(sintR&(R!R R"t getOptions(R tf((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyt _getoption<scCs†tjj|jdƒ}|jddƒ|j|jdƒdƒtj|dƒtj|tj ƒs‚|j |j j dƒƒndS(Nsd.confiR ( RRRR Rt assertEqualR)tchmodtaccesstR_OKt assertFalseR R"(R R(((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestInaccessibleFileAscCsó|j|jjdƒƒ|jddƒ|j|jƒdƒ|jddƒ|j|jƒdƒ|jddƒ|j|jƒd ƒ|jd d ƒ|j|jƒd ƒ|jd d ƒ|j|jƒdƒ|jd ƒ|j|jƒd ƒ|jdƒ|j|jƒdƒ|jd ƒ|j|jƒdƒ|jddƒ|j|jƒdƒ|jddƒ|j|jƒdƒ|jdƒ|j|jƒdƒ|jddƒ|jdƒ|jdƒ|j|jƒdƒdS(NR sc.conft1it2is c.d/98.conft998iæs c.d/90.conft990s c.d/99.conft999içiÞsc.localt3is c.d/5.localt9i (R.R R"RR*R)R#(R ((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestOptionalDotDDirPs6      ( t__name__t __module__RRRR#R)R/R7(((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyR s     tJailReaderTestcBs>eZd„Zd„Zd„Zd„Zd„Zd„ZRS(cCsŠtddtjjddƒƒ}|j|jƒƒ|j|jƒƒ|j|jƒƒ|j|jdƒƒ|j|jdƒƒdS(Nt emptyactionRt testcasestconfigs"No filter set for jail emptyactions'No actions were defined for emptyaction( RRRRR!R"R't isEnabledt _is_logged(R tjail((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestJailActionEmptyps !cCsŠtddtjjddƒƒ}|j|jƒƒ|j|jƒƒ|j|jƒƒ|j|j dƒƒ|j|j dƒƒdS(NtmissingbitsjailRR<R=sXFound no accessible config files for 'filter.d/catchallthebadies' under testcases/configsUnable to read the filter( RRRRR!R"R.R'R>R?(R R@((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestJailActionFilterMissingxs !cCsŠtddtjjddƒƒ}|j|jƒƒ|j|jƒƒ|j|jƒƒ|j|j dƒƒ|j|j dƒƒdS(NtbrokenactiondefRR<R=s#Error in action definition joho[foosXCaught exception: While reading action joho[foo we should have got 1 or 2 groups. Got: 0( RRRRR!R"R.R'R>R?(R R@((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestJailActionBrokenDef€s !cCsˆtdddƒ}|j|jƒƒ|j|jƒƒ|j|jƒƒ|j|jƒdƒ|jdƒ|j|jƒdƒdS(Ns ssh-iptablesRR=sssh-funky-blocker( RR!R"R'R.R>R*tgetNametsetName(R R@((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestStockSSHJailˆs cCsd}didd6g}tj|ƒ}|j||ƒ|jdigtjdƒƒ|jdidd6dd 6gtjd ƒƒ|jd igtjd ƒƒ|jd igtjd ƒƒ|j|jd ƒƒ|jdidd6gtjdƒƒ|jttjdƒdS(Nsmail-whois[name=SSH]s mail-whoistSSHtnames mail.who_istcattatdogtbsmail.who_is[a=cat,b=dog]s mail--ho_issmail--ho_is['s']sInvalid argument ['s'] in ''s''tmailt,s mail[a=',']s mail-how[(Rt splitActionR*R!R?t assertRaisest ValueError(R tactiontexpectedtresult((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestSplitAction‘s-&cCstjddƒ}tjj|dƒ}t|dƒjƒtjj|dƒ}tjd|ƒ|jt j tjj|dƒƒ|gƒ|jt j |ƒgƒ|j |j d|ƒƒ|jt j tjj|dƒƒgƒtj |ƒtj |ƒtj|ƒdS( NRsf2b-temptf1Rtf2t nonexistingt*s4File %s is a dangling link, thus cannot be monitored(R R RRRRtclosetsymlinkR*Rt_globR!R?tremovetrmdir(R R RXRY((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestGlob£s+(  (R8R9RARCRERHRWRa(((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyR:ns     tJailsReaderTestcBs>eZd„Zd„Zd„Zd„Zd„Zd„ZRS(cCs;tjjdƒs7tddƒ}|jt|jƒndS(Ns/XXXR(RRRRRRRSR"(R treader((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestProvidingBadBasedirºsc,Csøtdtjjddƒƒ}|j|jƒƒ|j|jƒƒ|jt |j ƒ|j dt ƒ}d|_ |jt|ƒtdddgddd d gddd d gddd dgddddgdddgddd d gddd d gddddgddd dgddddgdddgddd d gddd d gddd dgddddgddddgdddgddd d gddd d gddd dgddddgddddgddddgdddddgdddddgdddddgdddddgdddddgdddgddd d gddd d gddd dgddddgddddgddgddgddgddgddgg(ƒƒ|j|jdƒƒ|j|jd ƒƒdS(!NRR<R=tallow_no_filestaddR;tautotsettusednstwarntmaxretryitfindtimeiXtbantimetspecialt addfailregexstmissinglogfilest brokenactiont addactiont actionbanshit with big stick t actionstoptt actionstartt actionunbant actionchecksparse_to_end_of_jail.conftstarts-Errors in jail 'missingbitsjail'. Skipping...s6No file(s) found for glob /weapons/of/mass/destruction(RRRRR!R"R.R'RRRStconverttTruetNonetmaxDiffR*tsortedR?(R tjailst comm_commands((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestReadTestJailConf¿sj         cCs§tddƒ}|j|jƒƒ|j|jƒƒ|jƒ}d|_|j|gƒ|}|j|jdƒƒ|j|j dƒƒ|j|jƒ|ƒdS(NRR=tBOGUSsNo section: 'BOGUS'( RR!R"R'RzR|R}R*R.R?(R RR€told_comm_commands((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestReadStockJailConf÷s  cCsátdddtƒ}|j|jƒƒ|j|jƒƒtd„tjtjj dddƒƒDƒƒ}td„|j ƒDƒƒ}d|_ |j|j |ƒd|j|ƒƒ|j|j |ƒd |j|ƒƒdS( NRR=t force_enablecssD|]:}|jdƒstjjtjj|ƒdƒdVqdS(s common.confiiN(tendswithRRtsplitexttsplit(t.0RL((s5/usr/share/fail2ban/testcases/clientreadertestcase.pys ssfilter.ds*.confcss|]}|jƒdVqdS(tfilterN(t getRawOptions(R‰R@((s5/usr/share/fail2ban/testcases/clientreadertestcase.pys ss=More filters exists than are referenced in stock jail.conf %rs2Stock jail.conf references non-existent filters %r(RR{R!R"R'RhtglobRRRtgetJailsR|R}tissubsett difference(R Rtfilterst filters_jail((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestReadSockJailConfCompletes ( c Csþtdddtƒ}|j|jƒƒ|j|jƒƒ|jdtƒ}|jt|ƒƒxhddgD]Z}|jd|dg|kƒ|jd |d d g|kƒ|jd |g|kƒqmW|j|d dd ƒx|jD] }|j }|j ƒ}|jt|ƒdd|ƒxÎ|D]Æ}|jƒ}|j ƒ}dt |ƒkr,|jd|j kƒt} d |d|dg} x<|D]4} t| ƒdkr”| d | kr”t} q”q”q”W|j| dd| t |ƒfƒq,q,WqíWdS(NRR=R…Res ssh-iptablestrecidiveRfRgRhRiRjRyiÿÿÿÿitmsgsNo actions found for jail %ss t blocktypetsetcinfoisFound no %s command among %s(RR{R!R"R'RztlenR*t_JailsReader__jailst_JailReader__actionsRFtgetFiletstrt_ActionReader__cInfotFalse( R RR€tjtactionst jail_nameRTtcommandstfile_tblocktype_presentttarget_commandtcommand((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyt!testReadStockJailConfForceEnableds>        cCsûtƒ}|jdƒ|j|jƒdƒ|jƒ|jƒ}|j|ddƒ|j|ddƒ|jƒ|jƒ|jƒ}|jt |ƒdddgdd d ggƒ|j jd ƒ|j|j jƒd ƒ|j|jƒdƒdS( NR=tsockets/var/run/fail2ban/fail2ban.socktpidfiles/var/run/fail2ban/fail2ban.pidRhtloglevelit logtargets/var/log/fail2ban.logs/tmp( Rt setBaseDirR*t getBaseDirt readEarlytgetEarlyOptionsR'tconvertToProtocoltgetConfigStreamR~t_Configurator__jails(R t configuratortoptsR¡((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyttestConfiguratorJs         (R8R9RdRR„R’R¦R´(((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyRb¸s   8   3(t __author__t __copyright__t __license__RRŒR Rtunittesttclient.configreaderRtclient.jailreaderRtclient.jailsreaderRtclient.configuratorRtutilsRtTestCaseRR:Rb(((s5/usr/share/fail2ban/testcases/clientreadertestcase.pyts<NJ