From 37cfa8cdb1c6a1d395109aabd3ee29e83db151da Mon Sep 17 00:00:00 2001
From: Nicolas Fort <nicolasfort1988@gmail.com>
Date: Sat, 27 Aug 2022 15:35:52 +0000
Subject: Firewall: T4651: Add options to match packet size on firewall rules.

---
 src/validators/ip-length | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100755 src/validators/ip-length

(limited to 'src/validators')

diff --git a/src/validators/ip-length b/src/validators/ip-length
new file mode 100755
index 000000000..d96093849
--- /dev/null
+++ b/src/validators/ip-length
@@ -0,0 +1,29 @@
+#!/usr/bin/python3
+
+from sys import argv
+from sys import exit
+import re
+
+if __name__ == '__main__':
+    if len(argv)>1:
+        lengths = argv[1].split(",")
+
+        for length in lengths:
+            if length and length[0] == '!':
+                length = length[1:]
+            if re.match('^[0-9]{1,5}-[0-9]{1,5}$', length):
+                length_1, length_2 = length.split('-')
+                if int(length_1) not in range(0, 65536) or int(length_2) not in range(0, 65536):
+                    print(f'Error: {length} is not a valid length range')
+                    exit(1)
+                if int(length_1) > int(length_2):
+                    print(f'Error: {length} is not a valid length range')
+                    exit(1)
+            elif length.isnumeric():
+                if int(length) not in range(0, 65536):
+                    print(f'Error: {length} is not a valid length value')
+                    exit(1)
+    else:
+        exit(2)
+
+    exit(0)
\ No newline at end of file
-- 
cgit v1.2.3