Sindbad~EG File Manager

Current Path : /usr/share/crypto-policies/python/policygenerators/__pycache__/
Upload File :
Current File : //usr/share/crypto-policies/python/policygenerators/__pycache__/libreswan.cpython-36.pyc

3

."�d��@sDddlmZmZddlmZddlZddlmZGdd�de�ZdS)�)�call�CalledProcessError)�mkstempN�)�ConfigGeneratorc@s�eZdZdZdddhZdZddddddd	d
ddd
d�Zdddddddd�Zdddddddddddddd�
Zddddddddddddd�Z	ddddd �Z
ddddd!�Zed"d#��Z
ed$d%��Zed&d'��Zed(d)��Zd*S)+�LibreswanGeneratorZ	libreswanZipsecZikez5systemctl try-restart ipsec.service 2>/dev/null || :
�Zdh19Zdh20Zdh21Zdh5Zdh14Zdh15Zdh16Zdh18)ZX448ZX25519Z	SECP256R1Z	SECP384R1Z	SECP521R1z
FFDHE-6144z
FFDHE-1536z
FFDHE-2048z
FFDHE-3072z
FFDHE-4096z
FFDHE-8192Zaes256Zaes192Zaes128Z
aes_gcm256Z
aes_gcm192Z
aes_gcm128Zchacha20_poly1305)zAES-256-CBCzAES-192-CBCzAES-128-CBCzAES-256-GCMzAES-192-GCMzAES-128-GCMzCHACHA20-POLY1305Zsha2_512Zsha2_256)
zAES-256-CBC-HMAC-SHA2-512zAES-256-CBC-HMAC-SHA2-256zAES-192-CBC-HMAC-SHA2-512zAES-192-CBC-HMAC-SHA2-256zAES-128-CBC-HMAC-SHA2-256zAES-256-GCM-HMAC-SHA2-512zAES-256-GCM-HMAC-SHA2-256zAES-192-GCM-HMAC-SHA2-512zAES-192-GCM-HMAC-SHA2-256zAES-128-GCM-HMAC-SHA2-512zAES-128-GCM-HMAC-SHA2-256zCHACHA20-POLY1305-HMAC-SHA2-512zCHACHA20-POLY1305-HMAC-SHA2-256Zsha1)zAES-256-CBC-HMAC-SHA2-512zAES-192-CBC-HMAC-SHA2-512zAES-256-CBC-HMAC-SHA2-256zAES-192-CBC-HMAC-SHA2-256zAES-128-CBC-HMAC-SHA2-256zAES-256-CBC-HMAC-SHA1zAES-192-CBC-HMAC-SHA1zAES-128-CBC-HMAC-SHA1zAES-256-GCM-AEADzAES-192-GCM-AEADzAES-128-GCM-AEADzCHACHA20-POLY1305-AEADrr��)�AEADz
HMAC-SHA2-512z
HMAC-SHA2-256z	HMAC-SHA1)rz
HMAC-SHA2-512z	HMAC-SHA1z
HMAC-SHA2-256cCs||jkrdS|j|S)N�c)�mac_ike_prio_map)�cls�key�r�@./usr/share/crypto-policies/python/policygenerators/libreswan.pyZ__get_ike_priobs
z!LibreswanGenerator.__get_ike_priocCs||jkrdS|j|S)Nr)�mac_esp_prio_map)rrrrrZ__get_esp_priohs
z!LibreswanGenerator.__get_esp_priocCs�d}d}|j}d}|d}d|kr(d}nd|kr4d}|rH|d	|d
7}|d7}t|d|jd
�}d}�x|dD]�}	y|j|	}
Wntk
r�wrYnX|
d}d}xH|D]@}y|j|	d|}
Wntk
r�w�YnX|j||
d�}q�W|s�qr||7}d}xJ|dD]>}y|j|}Wntk
�r:�wYnX|j||d�}�qW|j||d�}|j|||�}qrW|�r�|d|d
7}t|d|jd
�}d}x�|dD]�}	y|j|	}
Wntk
�r��w�YnX|
d}d}xZ|D]R}y|j	|	d|}
Wntk
�r�w�YnX|
�s(|
}P|j||
d�}�q�W||7}|dd�dk�rZ�q�|j|||�}�q�W|�r�|d|d
7}|S)Nzconn %default
�,rZprotocolZIKEv2zikev2=insistZIKEv1zikev2=never�	�
z		pfs=yes
�mac)r�cipher�-�+�groupz	ike=rz	esp=���)
Zenabled�sorted�!_LibreswanGenerator__get_ike_prio�
cipher_map�KeyError�cipher_prf_map�append�	group_map�!_LibreswanGenerator__get_esp_prio�cipher_mac_map)rZpolicyZcfg�sep�p�s�protoZsorted_macsZtmpr�cmZcomborZmm�irrrr�generate_configns�





z"LibreswanGenerator.generate_configcCs�tjdtj�sdSt�\}}d}z^tj|d��}|j|�WdQRXytd|ddd�}Wntk
rz|jd�YnXWdtj	|�X|r�|jd	�|jd
|�dSdS)Nz/usr/sbin/ipsecT��wz'/usr/sbin/ipsec readwriteconf --config z >/dev/null)�shellz!/usr/sbin/ipsec: Execution failedz/There is an error in libreswan generated policyz
Policy:
%sF)
�os�access�X_OKr�fdopen�writerrZeprint�unlink)r�config�fd�pathZret�frrr�test_config�s&

zLibreswanGenerator.test_configN)�__name__�
__module__�__qualname__ZCONFIG_NAMEZSCOPESZ
RELOAD_CMDr"rr r$r
r�classmethodrr#r+r9rrrrrst
Pr)	�
subprocessrrZtempfilerr/Zconfiggeneratorrrrrrr�<module>s

Sindbad File Manager Version 1.0, Coded By Sindbad EG ~ The Terrorists