diff options
author | Christian Breunig <christian@breunig.cc> | 2023-01-25 20:46:26 +0100 |
---|---|---|
committer | Christian Breunig <christian@breunig.cc> | 2023-01-25 20:46:26 +0100 |
commit | e2537c30236b4a0e64cffa9ec4391ece6e5b1fcd (patch) | |
tree | 1322ea3ea832abb7e5f0f7dab592a51d7ef5299f /src/validators/port-range | |
parent | 155d3c1ac748a945ce62d3f9b2629696dbdb4b70 (diff) | |
download | vyos-1x-e2537c30236b4a0e64cffa9ec4391ece6e5b1fcd.tar.gz vyos-1x-e2537c30236b4a0e64cffa9ec4391ece6e5b1fcd.zip |
container: T4947: backport missing port-range validator
Diffstat (limited to 'src/validators/port-range')
-rwxr-xr-x | src/validators/port-range | 40 |
1 files changed, 40 insertions, 0 deletions
diff --git a/src/validators/port-range b/src/validators/port-range new file mode 100755 index 000000000..5468000a7 --- /dev/null +++ b/src/validators/port-range @@ -0,0 +1,40 @@ +#!/usr/bin/python3 + +import sys +import re + +from vyos.util import read_file + +services_file = '/etc/services' + +def get_services(): + names = [] + service_data = read_file(services_file, "") + for line in service_data.split("\n"): + if not line or line[0] == '#': + continue + names.append(line.split(None, 1)[0]) + return names + +def error(port_range): + print(f'Error: {port_range} is not a valid port or port range') + sys.exit(1) + +if __name__ == '__main__': + if len(sys.argv)>1: + port_range = sys.argv[1] + if re.match('^[0-9]{1,5}-[0-9]{1,5}$', port_range): + port_1, port_2 = port_range.split('-') + if int(port_1) not in range(1, 65536) or int(port_2) not in range(1, 65536): + error(port_range) + if int(port_1) > int(port_2): + error(port_range) + elif port_range.isnumeric() and int(port_range) not in range(1, 65536): + error(port_range) + elif not port_range.isnumeric() and port_range not in get_services(): + print(f'Error: {port_range} is not a valid service name') + sys.exit(1) + else: + sys.exit(2) + + sys.exit(0) |