PageRenderTime 44ms CodeModel.GetById 16ms RepoModel.GetById 1ms app.codeStats 0ms

/tests/parser/large_examples/acl.rb

https://github.com/mfurr/Diamondback-Ruby
Ruby | 144 lines | 119 code | 18 blank | 7 comment | 15 complexity | 18e465e8504533514ec56a493e8426ba MD5 | raw file
Possible License(s): BSD-3-Clause 
    

  1. # acl-2.0 - simple Access Control List
    2. 

  2. #
    3. 

  3. # Copyright (c) 2000,2002,2003 Masatoshi SEKI
    4. 

  4. #
    5. 

  5. # acl.rb is copyrighted free software by Masatoshi SEKI.
    6. 

  6. # You can redistribute it and/or modify it under the same terms as Ruby.
    7. 

  7. 

  8. require 'ipaddr'
    9. 

  9. 

  10. class ACL
    11. 

  11.   VERSION=["2.0.0"]
    12. 

  12.   class ACLEntry
    13. 

  13.     def initialize(str)
    14. 

  14.       if str == '*' or str == 'all'
    15. 

  15. 	@pat = [:all]
    16. 

  16.       else
    17. 

  17. 	begin
    18. 

  18. 	  @pat = [:ip, IPAddr.new(str)]
    19. 

  19. 	rescue ArgumentError
    20. 

  20. 	  @pat = [:name, dot_pat(str)]
    21. 

  21. 	end
    22. 

  22.       end
    23. 

  23.     end
    24. 

  24. 

  25.     private
    26. 

  26.     def dot_pat_str(str)
    27. 

  27.       list = str.split('.').collect { |s|
    28. 

  28. 	(s == '*') ? '.+' : s
    29. 

  29.       }
    30. 

  30.       list.join("\\.")
    31. 

  31.     end
    32. 

  32. 

  33.     private
    34. 

  34.     def dot_pat(str)
    35. 

  35.       exp = "^" + dot_pat_str(str) + "$"
    36. 

  36.       Regexp.new(exp)
    37. 

  37.     end
    38. 

  38. 

  39.     public
    40. 

  40.     def match(addr)
    41. 

  41.       case @pat[0]
    42. 

  42.       when :all
    43. 

  43. 	true
    44. 

  44.       when :ip
    45. 

  45. 	begin
    46. 

  46. 	  ipaddr = IPAddr.new(addr[3])
    47. 

  47. 	  ipaddr = ipaddr.ipv4_mapped if @pat[1].ipv6? && ipaddr.ipv4?
    48. 

  48. 	rescue ArgumentError
    49. 

  49. 	  return false
    50. 

  50. 	end
    51. 

  51. 	(@pat[1].include?(ipaddr)) ? true : false
    52. 

  52.       when :name
    53. 

  53. 	(@pat[1] =~ addr[2]) ? true : false
    54. 

  54.       else
    55. 

  55. 	false
    56. 

  56.       end
    57. 

  57.     end
    58. 

  58.   end
    59. 

  59. 

  60.   class ACLList
    61. 

  61.     def initialize
    62. 

  62.       @list = []
    63. 

  63.     end
    64. 

  64. 

  65.     public
    66. 

  66.     def match(addr)
    67. 

  67.       @list.each do |e|
    68. 

  68. 	return true if e.match(addr)
    69. 

  69.       end
    70. 

  70.       false
    71. 

  71.     end
    72. 

  72. 

  73.     public
    74. 

  74.     def add(str)
    75. 

  75.       @list.push(ACLEntry.new(str))
    76. 

  76.     end
    77. 

  77.   end
    78. 

  78. 

  79.   DENY_ALLOW = 0
    80. 

  80.   ALLOW_DENY = 1
    81. 

  81. 

  82.   def initialize(list=nil, order = DENY_ALLOW)
    83. 

  83.     @order = order
    84. 

  84.     @deny = ACLList.new
    85. 

  85.     @allow = ACLList.new
    86. 

  86.     install_list(list) if list
    87. 

  87.   end
    88. 

  88. 

  89.   public
    90. 

  90.   def allow_socket?(soc)
    91. 

  91.     allow_addr?(soc.peeraddr)
    92. 

  92.   end
    93. 

  93. 

  94.   public
    95. 

  95.   def allow_addr?(addr)
    96. 

  96.     case @order
    97. 

  97.     when DENY_ALLOW
    98. 

  98.       return true if @allow.match(addr)
    99. 

  99.       return false if @deny.match(addr)
    100. 

  100.       return true
    101. 

  101.     when ALLOW_DENY
    102. 

  102.       return false if @deny.match(addr)
    103. 

  103.       return true if @allow.match(addr)
    104. 

  104.       return false
    105. 

  105.     else
    106. 

  106.       false
    107. 

  107.     end
    108. 

  108.   end
    109. 

  109. 

  110.   public
    111. 

  111.   def install_list(list)
    112. 

  112.     i = 0
    113. 

  113.     while i < list.size
    114. 

  114.       permission, domain = list.slice(i,2)
    115. 

  115.       case permission.downcase
    116. 

  116.       when 'allow'
    117. 

  117. 	@allow.add(domain)
    118. 

  118.       when 'deny'
    119. 

  119. 	@deny.add(domain)
    120. 

  120.       else
    121. 

  121. 	raise "Invalid ACL entry #{list.to_s}"
    122. 

  122.       end
    123. 

  123.       i += 2
    124. 

  124.     end
    125. 

  125.   end
    126. 

  126. end
    127. 

  127. 

  128. if __FILE__ == $0
    129. 

  129.   # example
    130. 

  130.   list = %w(deny all
    131. 

  131. 	    allow 192.168.1.1
    132. 

  132.             allow ::ffff:192.168.1.2
    133. 

  133.             allow 192.168.1.3
    134. 

  134.             )
    135. 

  135. 

  136.   addr = ["AF_INET", 10, "lc630", "192.168.1.3"]
    137. 

  137. 

  138.   acl = ACL.new
    139. 

  139.   p acl.allow_addr?(addr)
    140. 

  140. 

  141.   acl = ACL.new(list, ACL::DENY_ALLOW)
    142. 

  142.   p acl.allow_addr?(addr)
    143. 

  143. end
    144. 

  144. 

  145.