Changeset 351

Timestamp:

07/14/08 14:33:10 (6 months ago)

Author:

rgl

Message:

Bugfix: binaryproxy not honoring access whitelist.

This closes #23.

Files:

• branches/0.5/daemon/orbited/binaryproxy.py (modified) (4 diffs)

branches/0.5/daemon/orbited/binaryproxy.py

@@ +1 @@
+from config import map as config
 from tcp import TCPConnection, TCPConnectionFactory
 from twisted.internet import reactor, defer
@@ -60 +61 @@
         for item in self.buffer:
             self.remote_conn.send(item)
+        # TODO clear buffer?
     
     def dataReceived(self, data):
@@ -71 +73 @@
             self.host = host
             self.port = int(port)
+            # TODO DRY this with ProxyConnection.
+            if (self.host, self.port) not in config['[access]']:
+                log.warn('unauthorized', data)
+                raise (Exception("Unauthorized"), "(host, port) pair not authorized for proxying")
             log.access(self.getClientIP(), "TCP/bin", " -> ", self.host, ":", self.port, " [ ", self.getClientIP(), " ]")
+            # TODO set errback (also look for errback misses in other classes)!
             self.factory.client.connect(self.host, self.port).addCallback(self.connected_remote)
             self.state = 'proxy'
         except Exception, x:
+            # TODO when we raise the unauthorized message, the client does not understand it.
             self.send("Invalid handhsake: " + str(x) + "(payload: %s)" % data)
             self.loseConnection()
@@ -91 +99 @@
         if self.remote_conn:
             self.remote_conn.transport.loseConnection()
+        # TODO set connected=False et al?
 #        print "Proxy Connection Lost", self.id