RubyGems - cisco_acl_intp - Versions diffs - 0.0.2 → 0.0.3 - Mend

cisco_acl_intp 0.0.2 → 0.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

checksums.yaml +4 -4
data/Gemfile +1 -1
data/README.md +64 -3
data/cisco_acl_intp.gemspec +2 -2
data/lib/cisco_acl_intp/ace.rb +9 -286
data/lib/cisco_acl_intp/ace_ip.rb +24 -22
data/lib/cisco_acl_intp/ace_other_qualifiers.rb +23 -6
data/lib/cisco_acl_intp/ace_port.rb +37 -182
data/lib/cisco_acl_intp/ace_port_opr.rb +251 -0
data/lib/cisco_acl_intp/ace_port_opr_base.rb +138 -0
data/lib/cisco_acl_intp/ace_proto.rb +133 -328
data/lib/cisco_acl_intp/ace_proto_base.rb +163 -0
data/lib/cisco_acl_intp/ace_srcdst.rb +30 -40
data/lib/cisco_acl_intp/ace_tcp_flags.rb +9 -3
data/lib/cisco_acl_intp/acl.rb +1 -251
data/lib/cisco_acl_intp/acl_base.rb +1 -1
data/lib/cisco_acl_intp/acl_utils.rb +120 -0
data/lib/cisco_acl_intp/extended_ace.rb +149 -0
data/lib/cisco_acl_intp/mono_function_acl.rb +161 -0
data/lib/cisco_acl_intp/parser.rb +237 -395
data/lib/cisco_acl_intp/parser.ry +85 -243
data/lib/cisco_acl_intp/parser_api.rb +2 -2
data/lib/cisco_acl_intp/single_acl_base.rb +137 -0
data/lib/cisco_acl_intp/standard_ace.rb +105 -0
data/lib/cisco_acl_intp/version.rb +1 -1
data/spec/cisco_acl_intp/ace_ip_spec.rb +63 -0
data/spec/cisco_acl_intp/ace_other_qualifier_spec.rb +52 -1
data/spec/cisco_acl_intp/ace_port_operator_spec.rb +340 -0
data/spec/cisco_acl_intp/ace_port_spec.rb +67 -217
data/spec/cisco_acl_intp/ace_proto_spec.rb +118 -41
data/spec/cisco_acl_intp/ace_spec.rb +38 -547
data/spec/cisco_acl_intp/ace_srcdst_spec.rb +115 -226
data/spec/cisco_acl_intp/ace_tcp_flags_spec.rb +36 -4
data/spec/cisco_acl_intp/acl_base_spec.rb +2 -2
data/spec/cisco_acl_intp/extended_ace_spec.rb +411 -0
data/spec/cisco_acl_intp/extended_acl_spec.rb +265 -0
data/spec/cisco_acl_intp/scanner_spec.rb +13 -12
data/spec/cisco_acl_intp/standard_ace_spec.rb +77 -0
data/spec/cisco_acl_intp/standard_acl_spec.rb +245 -0
data/spec/conf/scanner_spec_data.yml +32 -0
data/spec/spec_helper.rb +2 -2
metadata +20 -4
data/spec/cisco_acl_intp/acl_spec.rb +0 -525

data/spec/cisco_acl_intp/acl_spec.rb DELETED Viewed

@@ -1,525 +0,0 @@
-# -*- coding: utf-8 -*-
-require 'spec_helper'
-describe NamedExtAcl do
-  describe '#add_entry' do
-    before do
-      @acl = NamedExtAcl.new 'test-ext-acl'
-    end
-    it 'should be zero when initialized' do
-      @acl.size.should be_zero
-    end
-    it 'should be size 1 and matches aclstr when added a acl entry' do
-      ea = ExtendedAce.new(
-        action: 'permit',
-        protocol: 'udp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-      @acl.add_entry ea
-      @acl.size.should eq 1
-      aclstr = <<'EOL'
-ip access-list extended test-ext-acl
- permit udp 192.168.3.0 0.0.0.127 192.168.4.0 0.0.0.255
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  describe '#add_entry_by_params' do
-    before do
-      @acl = NamedExtAcl.new 'test-ext-acl2'
-      @acl.add_entry_by_params(
-        action: 'permit',
-        protocol: 'udp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        protocol: 'tcp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.0'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255',
-          operator: 'gt',
-          port: AceUdpProtoSpec.new(
-            number: 32_768
-          )
-        }
-      )
-    end
-    it 'should be size 2' do
-      @acl.size.should eq 2
-    end
-    it 'mutches aclstr' do
-      aclstr = <<'EOL'
-ip access-list extended test-ext-acl2
- permit udp 192.168.3.0 0.0.0.127 192.168.4.0 0.0.0.255
- deny tcp host 192.168.3.3 192.168.4.0 0.0.0.255 gt 32768
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-    it 'mutches aclstr with remark' do
-      rmk = RemarkAce.new ' this is remark!!'
-      @acl.add_entry rmk
-      aclstr = <<'EOL'
-ip access-list extended test-ext-acl2
- permit udp 192.168.3.0 0.0.0.127 192.168.4.0 0.0.0.255
- deny tcp host 192.168.3.3 192.168.4.0 0.0.0.255 gt 32768
- remark this is remark!!
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  describe '#search_ace' do
-    # for extended ace, it is same as named/numbered ace.
-    # so that, tests only named-extended-ace
-    # and omit numbered-extended-acl
-    before do
-      @acl = NamedExtAcl.new 'test-ext-acl2'
-      @acl.add_entry_by_params(
-        action: 'permit',
-        protocol: 'udp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        protocol: 'tcp',
-        src: {
-          ipaddr: '192.168.10.3',
-          wildcard: '0.0.0.0'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255',
-          operator: 'gt',
-          port: AceUdpProtoSpec.new(
-            number: 32_768
-          )
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        protocol: 'ip',
-        src: {
-          ipaddr: '0.0.0.0',
-          wildcard: '255.255.255.255'
-        },
-        dst: {
-          ipaddr: '10.0.0.0',
-          wildcard: '0.0.0.255'
-        }
-      )
-    end
-    it 'should be match 2nd entry' do
-      ace = @acl.search_ace(
-        protocol: 'tcp',
-        src_ip: '192.168.10.3',
-        src_port: 64_332,
-        dst_ip: '192.168.4.5',
-        dst_port: 32_889
-      )
-      ace.to_s.should be_aclstr(
-        'deny tcp host 192.168.10.3 192.168.4.0 0.0.0.255 gt 32768'
-      )
-    end
-    it 'should be last entry' do
-      ace = @acl.search_ace(
-        protocol: 'udp',
-        src_ip: '192.168.10.3',
-        src_port: 64_332,
-        dst_ip: '10.0.0.3',
-        dst_port: 33_890
-      )
-      ace.to_s.should be_aclstr('deny ip any 10.0.0.0 0.0.0.255')
-    end
-    it 'should be nil if not found match entry' do
-      @acl.search_ace(
-        protocol: 'udp',
-        src_ip: '192.168.10.3',
-        src_port: 62_223,
-        dst_ip: '11.0.0.3',
-        dst_port: 33_333
-      ).should be_nil
-    end
-  end
-end
-describe NumberedExtAcl do
-  describe '#add_entry' do
-    before do
-      @acl = NumberedExtAcl.new 102
-    end
-    it 'should be zero when initialized' do
-      @acl.size.should be_zero
-    end
-    it 'should be size 1 and matches aclstr when added a acl entry' do
-      ea = ExtendedAce.new(
-        action: 'permit',
-        protocol: 'udp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-      @acl.add_entry ea
-      @acl.size.should eq 1
-      aclstr = <<'EOL'
-access-list 102 permit udp 192.168.3.0 0.0.0.127 192.168.4.0 0.0.0.255
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  describe '#add_entry_by_params' do
-    before do
-      @acl = NumberedExtAcl.new 104
-      @acl.add_entry_by_params(
-        action: 'permit',
-        protocol: 'udp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        protocol: 'tcp',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.0'
-        },
-        dst: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255',
-          operator: 'gt',
-          port: AceUdpProtoSpec.new(
-            number: 32_768
-          )
-        }
-      )
-    end
-    it 'should be size 2' do
-      @acl.size.should eq 2
-    end
-    it 'mutches aclstr' do
-      aclstr = <<'EOL'
-access-list 104 permit udp 192.168.3.0 0.0.0.127 192.168.4.0 0.0.0.255
-access-list 104 deny tcp host 192.168.3.3 192.168.4.0 0.0.0.255 gt 32768
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-    it 'mutches aclstr with remark' do
-      rmk = RemarkAce.new ' this is remark!!'
-      @acl.add_entry rmk
-      aclstr = <<'EOL'
-access-list 104 permit udp 192.168.3.0 0.0.0.127 192.168.4.0 0.0.0.255
-access-list 104 deny tcp host 192.168.3.3 192.168.4.0 0.0.0.255 gt 32768
-access-list 104 remark this is remark!!
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-end
-describe NamedStdAcl do
-  describe '#add_entry' do
-    before do
-      @acl = NamedStdAcl.new 'test-std-acl'
-    end
-    it 'should be zero when initialized' do
-      @acl.size.should be_zero
-    end
-    it 'should be size 1 and matches aclstr when added a acl entry' do
-      sa = StandardAce.new(
-        action: 'permit',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        }
-      )
-      @acl.add_entry sa
-      @acl.size.should eq 1
-      aclstr = <<'EOL'
-ip access-list standard test-std-acl
- permit 192.168.3.0 0.0.0.127
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  describe '#add_entry_by_params' do
-    before do
-      @acl = NamedStdAcl.new 'test-std-acl2'
-      @acl.add_entry_by_params(
-        action: 'permit',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        src: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-    end
-    it 'should be size 2' do
-      @acl.size.should eq 2
-    end
-    it 'mutches aclstr' do
-      aclstr = <<'EOL'
-ip access-list standard test-std-acl2
- permit 192.168.3.0 0.0.0.127
- deny 192.168.4.0 0.0.0.255
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-    it 'mutches aclstr with remark' do
-      rmk = RemarkAce.new ' this is remark!!'
-      @acl.add_entry rmk
-      aclstr = <<'EOL'
-ip access-list standard test-std-acl2
- permit 192.168.3.0 0.0.0.127
- deny 192.168.4.0 0.0.0.255
- remark this is remark!!
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  describe '#search_ace' do
-    # for standard ace, it is same as named/numbered ace.
-    # so that, tests only named-standard-ace
-    # and omit numbered-standard-acl
-    before do
-      @acl = NamedStdAcl.new 'test-stdacl3'
-      @acl.add_entry_by_params(
-        action: 'permit',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        src: {
-          ipaddr: '192.168.10.3',
-          wildcard: '0.0.0.0'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        src: {
-          ipaddr: '10.0.0.0',
-          wildcard: '0.0.0.255'
-        }
-      )
-    end
-    it 'should be match 2nd entry' do
-      ace = @acl.search_ace(
-        src_ip: '192.168.10.3',
-        src_port: 64_332
-      )
-      ace.to_s.should be_aclstr('deny host 192.168.10.3')
-    end
-    it 'should be last entry' do
-      ace = @acl.search_ace(
-        src_ip: '10.0.0.3',
-        src_port: 33_890
-      )
-      ace.to_s.should be_aclstr('deny 10.0.0.0 0.0.0.255')
-    end
-    it 'should be nil if not found match entry' do
-      @acl.search_ace(
-        protocol: 'udp',
-        src_ip: '11.0.0.3',
-        src_port: 33_333
-      ).should be_nil
-    end
-  end
-end
-describe NumberedStdAcl do
-  describe '#add_entry' do
-    before do
-      @acl = NumberedStdAcl.new 10
-    end
-    it 'should be zero when initialized' do
-      @acl.size.should be_zero
-    end
-    it 'should be size 1 and matches aclstr when added a acl entry' do
-      sa = StandardAce.new(
-        action: 'permit',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        }
-      )
-      @acl.add_entry sa
-      @acl.size.should eq 1
-      aclstr = <<'EOL'
-access-list 10 permit 192.168.3.0 0.0.0.127
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  describe '#add_entry_by_params' do
-    before do
-      @acl = NumberedStdAcl.new 14
-      @acl.add_entry_by_params(
-        action: 'permit',
-        src: {
-          ipaddr: '192.168.3.3',
-          wildcard: '0.0.0.127'
-        }
-      )
-      @acl.add_entry_by_params(
-        action: 'deny',
-        src: {
-          ipaddr: '192.168.4.4',
-          wildcard: '0.0.0.255'
-        }
-      )
-    end
-    it 'should be size 2' do
-      @acl.size.should eq 2
-    end
-    it 'mutches aclstr' do
-      aclstr = <<'EOL'
-access-list 14 permit 192.168.3.0 0.0.0.127
-access-list 14 deny 192.168.4.0 0.0.0.255
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-    it 'mutches aclstr with remark' do
-      rmk = RemarkAce.new ' this is remark!!'
-      @acl.add_entry rmk
-      aclstr = <<'EOL'
-access-list 14 permit 192.168.3.0 0.0.0.127
-access-list 14 deny 192.168.4.0 0.0.0.255
-access-list 14 remark this is remark!!
-EOL
-      @acl.to_s.should be_aclstr(aclstr)
-    end
-  end
-  context 'list operations' do
-    before do
-      @acl = NumberedStdAcl.new 15
-      @acl.add_entry RemarkAce.new('entry 1')
-      @acl.add_entry RemarkAce.new('entry 2')
-      @acl.add_entry RemarkAce.new('entry 3')
-      @acl.add_entry RemarkAce.new('entry 4')
-    end
-    describe '#renumber' do
-      it 'should has seq number by add_entry' do
-        @acl.renumber
-        @acl.reduce(10) do |num, each|
-          each.seq_number.should eq num
-          num + 10
-        end
-      end
-    end
-    describe '#sort' do
-      it 'should be sorted by seq number' do
-        @acl.renumber # initialize seq number
-        last_ace = @acl.pop
-        last_ace.seq_number = 15
-        @acl.add_entry last_ace
-        acl_new = @acl.dup_with_list(@acl.sort)
-        aclstr = <<'EOL'
-access-list 15 remark entry 1
-access-list 15 remark entry 2
-access-list 15 remark entry 3
-access-list 15 remark entry 4
-EOL
-        aclstr_new = <<'EOL'
-access-list 15 remark entry 1
-access-list 15 remark entry 4
-access-list 15 remark entry 2
-access-list 15 remark entry 3
-EOL
-        @acl.name.should eq acl_new.name
-        @acl.acl_type.should eq acl_new.acl_type
-        @acl.to_s.should be_aclstr(aclstr)
-        acl_new.to_s.should be_aclstr(aclstr_new)
-      end
-    end
-  end
-end
-### Local variables:
-### mode: Ruby
-### coding: utf-8-unix
-### indent-tabs-mode: nil
-### End: