[tor-commits] [stem/master] Add ExitPolicy.get_summary()
atagar at torproject.org
atagar at torproject.org
Thu Jul 19 16:01:03 UTC 2012
commit 0a1c6238cc95f37a1b26369247d5d9876ba2b804
Author: Sathyanarayanan Gunasekaran <gsathya.ceg at gmail.com>
Date: Thu May 17 22:19:10 2012 +0530
Add ExitPolicy.get_summary()
This provides a summary description of the policy chain
similar to the consensus.
---
stem/exit_policy.py | 84 ++++++++++++++++++++++++++++++++++++++++++++++++--
1 files changed, 80 insertions(+), 4 deletions(-)
diff --git a/stem/exit_policy.py b/stem/exit_policy.py
index 0a51f5f..dcee159 100644
--- a/stem/exit_policy.py
+++ b/stem/exit_policy.py
@@ -3,9 +3,13 @@ Tor Exit Policy information and requirements for its features. These can be
easily parsed and compared, for instance...
>>> exit_policies = stem.exit_policy.ExitPolicy()
+>>> exit_policies.add("accept *:80")
+>>> exit_policies.add("accept *:443")
>>> exit_policies.add("reject *:*")
>>> print exit_policies
-reject *:*
+accept *:80 , accept *:443, reject *:*
+>>> print exit_policies.get_summary()
+accept 80, 443
ExitPolicyLine - Single rule from the exit policy
|- __str__ - string representation
@@ -16,7 +20,9 @@ ExitPolicy - List of ExitPolicyLine objects
|- __iter__ - ExitPolicyLine entries for the exit policy
|- check - check if exiting to this ip is allowed
|- add - add new rule to the exit policy
- +- isExitingAllowed - check if exit node
+ |- get_summary - provides a summary description of the policy chain
+ +- is_exiting_allowed - check if exit node
+
"""
# ip address ranges substituted by the 'private' keyword
@@ -140,6 +146,7 @@ class ExitPolicy:
ExitPolicy constructor
"""
self._policies = []
+ self.summary = ""
def add(self, rule_entry):
"""
@@ -156,7 +163,76 @@ class ExitPolicy:
self._policies.append(ExitPolicyLine(new_entry))
else:
self._policies.append(ExitPolicyLine(rule_entry))
-
+
+ def get_summary(self):
+ """
+ Provides a summary description of the policy chain similar to the
+ consensus. This excludes entries that don't cover all ips, and is either
+ a whitelist or blacklist policy based on the final entry.
+ """
+
+ if not self.summary:
+ # determines if we're a whitelist or blacklist
+ is_whitelist = False # default in case we don't have a catch-all policy at the end
+
+ for policy in self._policies:
+ if policy.is_ip_wildcard and policy.is_port_wildcard:
+ is_whitelist = not policy.is_accept
+ break
+
+ # Iterates over the policys and adds the the ports we'll return (ie, allows
+ # if a whitelist and rejects if a blacklist). Reguardless of a port's
+ # allow/reject policy, all further entries with that port are ignored since
+ # policies respect the first matching policy.
+
+ display_ports, skip_ports = [], []
+
+ for policy in self._policies:
+ if not policy.is_ip_wildcard: continue
+
+ if policy.min_port == policy.max_port:
+ port_range = [policy.min_port]
+ else:
+ port_range = range(policy.min_port, policy.max_port + 1)
+
+ for port in port_range:
+ if port in skip_ports: continue
+
+ # if accept + whitelist or reject + blacklist then add
+ if policy.is_accept == is_whitelist:
+ display_ports.append(port)
+
+ # all further entries with this port are to be ignored
+ skip_ports.append(port)
+
+ # gets a list of the port ranges
+ if display_ports:
+ display_ranges, temp_range = [], []
+ display_ports.sort()
+ display_ports.append(None) # ending item to include last range in loop
+
+ for port in display_ports:
+ if not temp_range or temp_range[-1] + 1 == port:
+ temp_range.append(port)
+ else:
+ if len(temp_range) > 1:
+ display_ranges.append("%i-%i" % (temp_range[0], temp_range[-1]))
+ else:
+ display_ranges.append(str(temp_range[0]))
+
+ temp_range = [port]
+ else:
+ # everything for the inverse
+ is_whitelist = not is_whitelist
+ display_ranges = ["1-65535"]
+
+ # constructs the summary string
+ label_prefix = "accept " if is_whitelist else "reject "
+
+ self.summary = (label_prefix + ", ".join(display_ranges)).strip()
+
+ return self.summary
+
def is_exiting_allowed(self):
"""
Provides true if the policy allows exiting whatsoever, false otherwise.
@@ -188,4 +264,4 @@ class ExitPolicy:
Provides the string used to construct the Exit Policy
"""
return ' , '.join([str(policy) for policy in self._policies])
-
+
More information about the tor-commits
mailing list