/mandos/release : revision 237.7.89

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos-ctl

Committer: Teddy Hogeborn
Date: 2011-12-31 20:07:11 UTC
mfrom: (237.17.9 wireless-network-hook)
mto: (237.7.109 trunk) (299.1.1 release) (300.1.1 release) (301.1.1 release)
mto: This revision was merged to the branch mainline in revision 290.
Revision ID: teddy@recompile.se-20111231200711-6dli3r8drftem57r

Merge new wireless network hook. Fix bridge network hook to use
hardware addresses instead of interface names. Implement and document
new "CONNECT" environment variable for network hooks.

files added:
debian/source/local-options

intro.xml

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

files modified:
DBUS-API

Makefile

NEWS

README

TODO

clients.conf

common.ent

dbus-mandos.conf

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.docs

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

mandos-ctl

# Mandos Monitor - Control and monitor the Mandos server

# This program is free software: you can redistribute it and/or modify

# it under the terms of the GNU General Public License as published by

# You should have received a copy of the GNU General Public License

# along with this program. If not, see <http://www.gnu.org/licenses/>.

# Contact the authors at <mandos@fukt.bsnet.se>.

# Contact the authors at <mandos@recompile.se>.

from __future__ import (division, absolute_import, print_function,

"ApprovalDelay": "Approval Delay",

"ApprovalDuration": "Approval Duration",

"Checker": "Checker",

"ExtendedTimeout" : "Extended Timeout"

}

defaultkeywords = ("Name", "Enabled", "Timeout", "LastCheckedOK")

domain = "se.bsnet.fukt"

domain = "se.recompile"

busname = domain + ".Mandos"

server_path = "/"

server_interface = domain + ".Mandos"

client_interface = domain + ".Mandos.Client"

version = "1.3.1"

version = "1.4.1"

def timedelta_to_milliseconds(td):

"""Convert a datetime.timedelta object to milliseconds"""

>>> string_to_delta("5m 30s")

datetime.timedelta(0, 330)

"""

timevalue = datetime.timedelta(0)

regexp = re.compile("\d+[dsmhw]")

value = datetime.timedelta(0)

regexp = re.compile("(\d+)([dsmhw]?)")

for s in regexp.findall(interval):

try:

100

suffix = unicode(s[-1])

101

value = int(s[:-1])

102

if suffix == "d":

103

delta = datetime.timedelta(value)

104

elif suffix == "s":

105

delta = datetime.timedelta(0, value)

106

elif suffix == "m":

107

delta = datetime.timedelta(0, 0, 0, 0, value)

108

elif suffix == "h":

109

delta = datetime.timedelta(0, 0, 0, 0, 0, value)

110

elif suffix == "w":

111

delta = datetime.timedelta(0, 0, 0, 0, 0, 0, value)

112

else:

113

raise ValueError

114

except (ValueError, IndexError):

115

raise ValueError

116

timevalue += delta

117

return timevalue

for num, suffix in regexp.findall(interval):

100

if suffix == "d":

101

value += datetime.timedelta(int(num))

102

elif suffix == "s":

103

value += datetime.timedelta(0, int(num))

104

elif suffix == "m":

105

value += datetime.timedelta(0, 0, 0, 0, int(num))

106

elif suffix == "h":

107

value += datetime.timedelta(0, 0, 0, 0, 0, int(num))

108

elif suffix == "w":

109

value += datetime.timedelta(0, 0, 0, 0, 0, 0, int(num))

110

elif suffix == "":

111

value += datetime.timedelta(0, 0, 0, int(num))

112

return value

118

113

119

114

def print_clients(clients, keywords):

120

115

def valuetostring(value, keyword):

149

144

options.remove,

150

145

options.checker is not None,

151

146

options.timeout is not None,

147

options.extended_timeout is not None,

152

148

options.interval is not None,

153

149

options.approved_by_default is not None,

154

150

options.approval_delay is not None,

185

181

help="Set checker command for client")

186

182

parser.add_argument("-t", "--timeout",

187

183

help="Set timeout for client")

184

parser.add_argument("--extended-timeout",

185

help="Set extended timeout for client")

188

186

parser.add_argument("-i", "--interval",

189

187

help="Set checker interval for client")

190

188

parser.add_argument("--approve-by-default", action="store_true",

238

236

#restore stderr

239

237

os.dup2(stderrcopy, sys.stderr.fileno())

240

238

os.close(stderrcopy)

241

except dbus.exceptions.DBusException, e:

239

except dbus.exceptions.DBusException:

242

240

print("Access denied: Accessing mandos server through dbus.",

243

241

file=sys.stderr)

244

242

sys.exit(1)

270

268

"LastEnabled", "ApprovalPending",

271

269

"ApprovedByDefault",

272

270

"LastApprovalRequest", "ApprovalDelay",

273

"ApprovalDuration", "Checker")

271

"ApprovalDuration", "Checker",

272

"ExtendedTimeout")

274

273

else:

275

274

keywords = defaultkeywords

276

275

296

295

dbus_interface=

297

296

dbus.PROPERTIES_IFACE)

298

297

else 1)

299

if options.checker:

298

if options.checker is not None:

300

299

client.Set(client_interface, "Checker",

301

300

options.checker,

302

301

dbus_interface=dbus.PROPERTIES_IFACE)

303

if options.host:

302

if options.host is not None:

304

303

client.Set(client_interface, "Host", options.host,

305

304

dbus_interface=dbus.PROPERTIES_IFACE)

306

if options.interval:

305

if options.interval is not None:

307

306

client.Set(client_interface, "Interval",

308

307

timedelta_to_milliseconds

309

308

(string_to_delta(options.interval)),

310

309

dbus_interface=dbus.PROPERTIES_IFACE)

311

if options.approval_delay:

310

if options.approval_delay is not None:

312

311

client.Set(client_interface, "ApprovalDelay",

313

312

timedelta_to_milliseconds

314

313

(string_to_delta(options.

315

314

approval_delay)),

316

315

dbus_interface=dbus.PROPERTIES_IFACE)

317

if options.approval_duration:

316

if options.approval_duration is not None:

318

317

client.Set(client_interface, "ApprovalDuration",

319

318

timedelta_to_milliseconds

320

319

(string_to_delta(options.

321

320

approval_duration)),

322

321

dbus_interface=dbus.PROPERTIES_IFACE)

323

if options.timeout:

322

if options.timeout is not None:

324

323

client.Set(client_interface, "Timeout",

325

324

timedelta_to_milliseconds

326

325

(string_to_delta(options.timeout)),

327

326

dbus_interface=dbus.PROPERTIES_IFACE)

328

if options.secret:

327

if options.extended_timeout is not None:

328

client.Set(client_interface, "ExtendedTimeout",

329

timedelta_to_milliseconds

330

(string_to_delta(options.extended_timeout)),

331

dbus_interface=dbus.PROPERTIES_IFACE)

332

if options.secret is not None:

329

333

client.Set(client_interface, "Secret",

330

334

dbus.ByteArray(open(options.secret,

331

335

"rb").read()),

Older »