mirror of
https://github.com/evilsocket/opensnitch.git
synced 2025-03-04 16:44:46 +01:00
70 lines
1.3 KiB
Go
70 lines
1.3 KiB
Go
package rule
|
|
|
|
import (
|
|
"fmt"
|
|
"time"
|
|
|
|
"github.com/evilsocket/opensnitch/daemon/conman"
|
|
"github.com/evilsocket/opensnitch/daemon/ui/protocol"
|
|
)
|
|
|
|
type Action string
|
|
|
|
const (
|
|
Allow = Action("allow")
|
|
Deny = Action("deny")
|
|
)
|
|
|
|
type Duration string
|
|
|
|
const (
|
|
Once = Duration("once")
|
|
Restart = Duration("until restart")
|
|
Always = Duration("always")
|
|
)
|
|
|
|
type Rule struct {
|
|
Created time.Time `json:"created"`
|
|
Updated time.Time `json:"updated"`
|
|
Name string `json:"name"`
|
|
Enabled bool `json:"enabled"`
|
|
Action Action `json:"action"`
|
|
Duration Duration `json:"duration"`
|
|
Operator Operator `json:"operator"`
|
|
}
|
|
|
|
func FromReply(reply *protocol.RuleReply) *Rule {
|
|
operator := NewOperator(
|
|
Type(reply.Operator.Type),
|
|
Operand(reply.Operator.Operand),
|
|
reply.Operator.Data)
|
|
|
|
return Create(
|
|
reply.Name,
|
|
Action(reply.Action),
|
|
Duration(reply.Duration),
|
|
operator,
|
|
)
|
|
}
|
|
|
|
func Create(name string, action Action, duration Duration, op Operator) *Rule {
|
|
return &Rule{
|
|
Created: time.Now(),
|
|
Enabled: true,
|
|
Name: name,
|
|
Action: action,
|
|
Duration: duration,
|
|
Operator: op,
|
|
}
|
|
}
|
|
|
|
func (r *Rule) String() string {
|
|
return fmt.Sprintf("%s: if(%s){ %s %s }", r.Name, r.Operator.String(), r.Action, r.Duration)
|
|
}
|
|
|
|
func (r *Rule) Match(con *conman.Connection) bool {
|
|
if r.Enabled == false {
|
|
return false
|
|
}
|
|
return r.Operator.Match(con)
|
|
}
|