Home Explore Help
Sign In
Qubes
/
core-admin
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 28737d16ce
Branches Tags
core-admin
/
qubespolicy
/
utils.py

utils.py 2.1 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758 
  1. # -*- encoding: utf8 -*-
    2. 

  2. #
    3. 

  3. # The Qubes OS Project, http://www.qubes-os.org
    4. 

  4. #
    5. 

  5. # Copyright (C) 2017 boring-stuff <boring-stuff@users.noreply.github.com>
    6. 

  6. #
    7. 

  7. # This program is free software; you can redistribute it and/or modify
    8. 

  8. # it under the terms of the GNU General Public License as published by
    9. 

  9. # the Free Software Foundation; either version 2 of the License, or
    10. 

  10. # (at your option) any later version.
    11. 

  11. #
    12. 

  12. # This program is distributed in the hope that it will be useful,
    13. 

  13. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    15. 

  15. # GNU General Public License for more details.
    16. 

  16. #
    17. 

  17. # You should have received a copy of the GNU General Public License along
    18. 

  18. # with this program; if not, see <http://www.gnu.org/licenses/>.
    19. 

  19. 

  20. 

  21. def _sanitize_char(input_char, extra_allowed_characters):
    22. 

  22.     input_char_ord = ord(input_char)
    23. 

  23. 

  24.     if (ord('a') <= input_char_ord <= ord('z')) \
    25. 

  25.        or (ord('A') <= input_char_ord <= ord('Z')) \
    26. 

  26.        or (ord('0') <= input_char_ord <= ord('9')) \
    27. 

  27.        or (input_char in ['$', '_', '-', '.']) \
    28. 

  28.        or (input_char in extra_allowed_characters):
    29. 

  29.         result = input_char
    30. 

  30.     else:
    31. 

  31.         result = '_'
    32. 

  32. 

  33.     return result
    34. 

  34. 

  35. 

  36. # This function needs to be synchronized with qrexec-daemon.c's sanitize_name()
    37. 

  37. # from the qubes-core-admin-linux repository.
    38. 

  38. #
    39. 

  39. # See https://github.com/QubesOS/qubes-core-admin-linux/blob/
    40. 

  40. #  4f0878ccbf8a95f8264b54d2b6f4dc433ca0793a/qrexec/qrexec-daemon.c#L627-L646
    41. 

  41. #
    42. 

  42. def _sanitize_name(input_string, extra_allowed_characters, assert_sanitized):
    43. 

  43.     result = ''.join(_sanitize_char(character, extra_allowed_characters)
    44. 

  44.                     for character in input_string)
    45. 

  45. 

  46.     if assert_sanitized:
    47. 

  47.         assert input_string == result, \
    48. 

  48.                'Input string was expected to be sanitized, but was not.'
    49. 

  49.     else:
    50. 

  50.         return result
    51. 

  51. 

  52. 

  53. def sanitize_domain_name(input_string, assert_sanitized=False):
    54. 

  54.     return _sanitize_name(input_string, {}, assert_sanitized)
    55. 

  55. 

  56. 

  57. def sanitize_service_name(input_string, assert_sanitized=False):
    58. 

  58.     return _sanitize_name(input_string, {'+'}, assert_sanitized)
    59.