GkcDdZdZdZddlZddlmZddlmZddlZddl Z ddl Z ddl Z ddl Z ddl Z ddlZddlZdd lmZdd lmZdd lmZeeZGd d eZGddZeZdS)zSerg G. Brester (sebres)z"Copyright (c) 2014 Serg G. BresterGPLN) JailThread)FailManagerEmpty) getLogger)MyTime)Utilsc`eZdZdZejdz ZfdZdZdZdZ dZ dZ d Z d Z d Zd Zd ZdZdZdZdZdZd(dZfdZd)dZedZd(dZd(dZedZejdZedZdZ d Z!d!Z"Gd"d#Z#d$Z$d%Z%d&Z&d'Z'xZ(S)*ObserverThreada8Handles observing a database, managing bad ips and ban increment. Parameters ---------- Attributes ---------- daemon ident name status active : bool Control the state of the thread. idle : bool Control the idle state of the thread. sleeptime : int The time the thread sleeps for in the loop. c*tt|dd|_t j|_g|_t j|_ d|_ i|_ d|_ d|_ d|_d|_dS)Nz f2b/observer)nameT<Fi)superr __init__idle threadingRLock _queue_lock_queueEvent_notify sleeptime_timers_paused_ObserverThread__db"_ObserverThread__db_purge_intervaldaemonself __class__s :/usr/lib/python3/dist-packages/fail2ban/server/observer.pyrzObserverThread.__init__?s&&N&;;;$)_&&$$+""$,$.$,$,$)"$$+++c^ |j|S#t$rtd|zwxYw)NzInvalid event index : %srKeyErrorr!is r# __getitem__zObserverThread.__getitem__TsB2 +a. 222 ,q0 1 112s ,cX |j|=dS#t$rtd|zwxYw)NzInvalid event index: %sr&r(s r# __delitem__zObserverThread.__delitem__ZsC1 {1~~~ 111 +a/ 0 001s )c*t|jSN)iterrr!s r#__iter__zObserverThread.__iter__`s dk  r$c*t|jSr.)lenrr0s r#__len__zObserverThread.__len__cs T[  r$cdS)NF)r!others r#__eq__zObserverThread.__eq__fs r$c t|Sr.)idr0s r#__hash__zObserverThread.__hash__is D/r$c|j|d}||tj||j|}||j|<|dS)zAdd a named timer event to queue will start (and wake) in 'starttime' seconds Previous timer event with same name will be canceled and trigger self into queue after new 'starttime' value N)rgetcancelrTimeraddstart)r!r starttimeeventts r#add_named_timerzObserverThread.add_named_timerls_  ltT""!]88:::oi511!$,t'')))))r$cLtjh|rftjtj|jtj|ztj|z|f}|dStj||j |}|dS)zJAdd a timer event to queue will start (and wake) in 'starttime' seconds N) r myTimerr?r DEFAULT_SLEEP_INTERVAL _delayedEventtimerAr@)r!rBrCrDs r# add_timerzObserverThread.add_timerys ]9u3T5G []]Y i 7?177999 6oi511!'')))))r$ctj|kstj|kr|jdg|RdStjt j|j|||f}|dS)Nr) r rJrKrr?r rHrIrA)r! endMyTimeendTimerCrDs r#rIzObserverThread._delayedEventsz []]i49;;'#9#94>!e 6oe2D4F w!'')))))r$cV|js|j}|r|dSdSdS)z1Notify wakeup (sets /and resets/ notify event) N)rrset)r!ns r# pulse_notifyzObserverThread.pulse_notifysB   |1 EEGGGGG    r$c|j5|j|dddn #1swxYwY|dS)z5Add a event to queue and notify thread to wake up. N)rrappendrRr!rCs r#r@zObserverThread.adds ;es /33cz|j5|j|ddddS#1swxYwYdS)z=Add a event to queue withouth notifying thread to wake up. N)rrrTrUs r#add_wnzObserverThread.add_wns ;es 044c||dSr.r6)r!largss r# call_lambdazObserverThread.call_lambdas!T((((r$c td|d|jd|j|j|j|j|j|j |j ddd } | d|j rbd|_ |js d }|j5t!|jr|jd }d d d n #1swxYwY|n|d }t'|d s%||pt+||}||d d n4#t,$r'}td |d Yd }~nd }~wwxYw|j|j}|r?d |_ ||j||jr;n&t9jt<j|j sn|j btdt!|jd |_n4#t,$r'}td|d Yd }~nd }~wwxYw|j5g|_d d d n #1swxYwYd |_ d S)zMain loop for Threading. This function is the main loop of the thread. Returns ------- bool True when the thread exits nicely. zObserver start...DB_PURGEdb_purgecdSNr6r6r6r$r#z$ObserverThread.run..sr$cdSr`r6r6r$r#raz$ObserverThread.run..sbr$) calldb_setr^is_alive is_activerAstopnopshutdownreFNrr%sTexc_infoz&Observer stopped, %s events remaining.z Observer stopped after error: %s)!logSysinforErr[rdr^isAliveisActiverArgr@activerrrr3rpopcallabler=getattr ExceptionerrorrwaitrclearrJsleepr rHis_full)r!_ObserverThread__methevmetherQs r#runzObserverThread.runs: ++!"""z4#;ZHHH   [}  J 9 )y  &,F88J " DIl++ b    dk   [__Q                   Ud be__LVZZ%5%5%Lt9L9Ld dBqrrFmmm +++ ll4Tl********+l+$ A  TYVVDNWWYYY  Z5666 L  E " H ;;7T[9I9IJJJ4<< FFF <<2A<EEEEEEEEF 4;$) s)+H D7/C D7CD7 C!D7&H'AD76H7 E(E#H#E((B4H I'I  II,,I03I0cdS)NTr6r0s r#rozObserverThread.isAlives r$Nc|jSr.)rq)r!fromStrs r#rpzObserverThread.isActives  r$c|j5|js'tt|ddddS#1swxYwYdSr.)rrqrr rAr s r#rAzObserverThread.starts (( +( .$%%'''((((((((((((((((((s/AA  A Tc|jr|jrtd||j5|d|j}|jd|_dddn #1swxYwY||s|r*|d|_d|_ d|_ n||_| t|do|j SdS)Nz-Observer stop ... try to end queue %s secondsriFTg?)rqrrmrnrrWrP wait_emptyrxrr wait_idleminrz)r!wtime forceQuitrQs r#rgzObserverThread.stop s/ [?T\? ;;>FFF KK  ALDL  ooe GGIIIDKDLDIIDL ..UC ) ) >$,.>> s=A::A>A>ct|j5t|jrdndcdddS#1swxYwYdS)NTF)rr3rr0s r#rzzObserverThread.is_full#s ..dk"" -$$..................s -11ctjtj|t j|z}|j7|d|jr|jr| |jr?|t j|krn%tjtj|j?| d|j S)zWWait observer is running and returns if observer has no more events (queue is empty) NrhgMbP?) rJryr rHr rrWrzrrRrr!rr~s r#rzObserverThread.wait_empty(s*^ 2333 {}}y 1 \;;u lty 5  1 1 :n3444 5 .. \ r$ctjtj|jrdS|t j|z}|js?|t j|krn%tjtj|j?|jS)zJWait observer is running and returns if observer idle (observer sleeps) T)rJryr rHrr rs r#rzObserverThread.wait_idle<s*^ 2333 Y $ {}}y 1 I5  1 1 :n3444 I5 r$c|jSr.)rr0s r#pausedzObserverThread.pausedJs r$cV|j|krdS||_|dSr.)rrR)r!pauses r#rzObserverThread.pausedNs3 \U 6$,r$cdS)z/Status of observer to be implemented. [TODO] )rr6r0s r#statuszObserverThread.statusWs  r$c||_dSr.)r)r!dbs r#rdzObserverThread.db_setas $)))r$ctd|j|j|d|jddS)NzPurge database event occurredr]r^)rmdebugrpurgerErr0s r#r^zObserverThread.db_purgedsP,,./// Y9??z4#;ZHHHHHr$c `|r|dsdS|}|}td|j|d}d}d} |jj }|j } | | ||D];\}}} t|| }d|dkr|ndzdz dz}t||}|+||kr%td|j|||dS|dkrdStd |j|t!j|||||krd nd |jj||dz d }||||kr|j|dSdS#t*$rM} td | tt0jkYd} ~ dSd} ~ wwxYw)z} Notify observer a failure for ip was found Observer will check ip was known (bad) and possibly increase an retry count incrementNz[%s] Observer: failure found %srrrz8[%s] Ignore failure %s before last ban %s < %s, restoredz%[%s] Found %s, bad - %s, %s # -> %s%sz, BanrTrjrk)rogetBanTimeExtragetIDgetTimermrrfilter failManager getMaxRetrydatabasegetBanmax getBanCountrrnr time2str addFailure setBanCount performBanrurvgetEffectiveLevelloggingDEBUG) r!jailticketipunixTimebanCount retryCount timeOfBanmaxRetryr lastBanTimer~s r# failureFoundzObserverThread.failureFoundos\  t33K@@  6 ||~~" ^^  (,,0$)R@@@ (*) Mk%11338 2n,.IIb$,?,?  ()[Hf002233Xhmm((4PP: hHK2 MMM <<a&":":"<" " ||~~"*M kkbff[%00k ]"d1N1NOO  ()[ F&&(((( !$$$ \\6HiPPP1 ; 0 0( C CDDg w9$$ kkktyyyRTRTRTV^V^V^ y!!!! *%%%%v'9''B'B'BDEEEEfo MMM <<a&":":"<" %s)rz[%s] Observer: prolong %s in %sr rrjrk)rrrmrr getBanTimerrrr rrrJnoticerlogrKrr prolongBanraddBanrurvrrr) r!rrbtimeoldbtimerbendtimelogtimer~s r#banFoundzObserverThread.banFoundsS  _  6 M8 2 <<149b%HHH rkkf''))1   T5& 1 1E {{eh&& u rkk~~%'H!%((&/(*C*CDG&+-- \\)71:666 E (G x M8$)    ) ')))) JJq3TYUHDUVVVNN3r3q%("2Q"67788$/6SWXXX mMv&&&&&  MMM <<a&":":"<">>'''R(M(M(MT M M M M M M Mr$r ceZdZdZdS) _Observerscd|_dSr.)Mainr0s r#rz_Observers.__init__s $)))r$Nrr6r$r#rr s#r$r) __author__ __copyright__ __license__r jailthreadr failmanagerrosrrJdatetimemathjsonrandomsyshelpersrmytimer utilsr rrmr r Observersr6r$r#rs^0( 4  """"""))))))6666666666666666666666666666  8  bMbMbMbMbMZbMbMbMJ JLL r$