py-i2phosts/web/lib/validation.py

#!/usr/bin/env python2.6

import re

from django import forms
from web.postkey.models import i2phost


def validate_hostname(data):
	"""
	Here we do additional hostname validation as described in
	http://www.i2p2.i2p/naming.html
	"""
	# convert hostname to lowercase
	data = data.lower()
	# Must end with '.i2p'.
	if re.match(r'.*\.i2p$', data) == None:
		raise forms.ValidationError('Hostname doesn\'t ends with .i2p')
	# Base 32 hostnames (*.b32.i2p) are not allowed
	if re.match(r'.*\.b32\.i2p$', data):
		raise forms.ValidationError('Base 32 hostnames are not allowed')
	# Must contain only [a-z] [0-9] '.' and '-'
	h = re.match(r'([a-z0-9.-]+)\.i2p$', data)
	if h == None:
		raise forms.ValidationError('Illegal characters in hostname')
	else:
		namepart = h.groups()[0]
	# Must not contain '..'
	if re.search(r'\.\.', namepart):
		raise forms.ValidationError('".." in hostname')
	# Must not contain '.-' or '-.' (as of 0.6.1.33)
	if re.search(r'(\.-)|(-\.)', namepart):
		raise forms.ValidationError('Hostname contain ".-" or "-."')
	# Must not contain '--' except in 'xn--' for IDN
	if re.search(r'(?<!^xn)--', namepart):
		raise forms.ValidationError('Hostname contain "--" and it\'s not an IDN')
	# Certain hostnames reserved for project use are not allowed
	if re.search(r'(^|\.)(proxy|router|console)$', namepart):
		raise forms.ValidationError('Trying to use reserved hostname')
	return data


def validate_b64hash(data, check_uniq=True):
	"""
	Base64 hash validation
	"""
	length = len(data)
	# Minimum key length 516 bytes
	if length < 516:
		raise forms.ValidationError('Specified base64 hash are less than 516 bytes')
	# keys with cert may ends with anything, so check is relaxed
	if length > 516 and re.match(r'[a-zA-Z0-9\-~]+$', data) == None:
		raise forms.ValidationError('Invalid characters in base64 hash')
	# base64-i2p
	if length == 516 and re.match(r'[a-zA-Z0-9\-~]+AA$', data) == None:
		raise forms.ValidationError('Invalid base64 hash')
	if check_uniq == True:
		# Avoid adding non-unique hashes
		qs = i2phost.objects.filter(b64hash=data)
		if qs.exists():
			raise forms.ValidationError('Base64 hash must be unique')
	return data
Move validation functions to separate module 14 years ago			`#!/usr/bin/env python2.6`

			`import re`

			`from django import forms`
			`from web.postkey.models import i2phost`


			`def validate_hostname(data):`
			`"""`
			`Here we do additional hostname validation as described in`
			`http://www.i2p2.i2p/naming.html`
			`"""`
			`# convert hostname to lowercase`
			`data = data.lower()`
			`# Must end with '.i2p'.`
			`if re.match(r'.*\.i2p$', data) == None:`
			`raise forms.ValidationError('Hostname doesn\'t ends with .i2p')`
			`# Base 32 hostnames (*.b32.i2p) are not allowed`
			`if re.match(r'.*\.b32\.i2p$', data):`
			`raise forms.ValidationError('Base 32 hostnames are not allowed')`
			`# Must contain only [a-z] [0-9] '.' and '-'`
			`h = re.match(r'([a-z0-9.-]+)\.i2p$', data)`
			`if h == None:`
			`raise forms.ValidationError('Illegal characters in hostname')`
			`else:`
			`namepart = h.groups()[0]`
			`# Must not contain '..'`
			`if re.search(r'\.\.', namepart):`
			`raise forms.ValidationError('".." in hostname')`
			`# Must not contain '.-' or '-.' (as of 0.6.1.33)`
			`if re.search(r'(\.-)\|(-\.)', namepart):`
			`raise forms.ValidationError('Hostname contain ".-" or "-."')`
			`# Must not contain '--' except in 'xn--' for IDN`
			`if re.search(r'(?<!^xn)--', namepart):`
			`raise forms.ValidationError('Hostname contain "--" and it\'s not an IDN')`
			`# Certain hostnames reserved for project use are not allowed`
			`if re.search(r'(^\|\.)(proxy\|router\|console)$', namepart):`
			`raise forms.ValidationError('Trying to use reserved hostname')`
			`return data`


			`def validate_b64hash(data, check_uniq=True):`
			`"""`
			`Base64 hash validation`
			`"""`
web/lib/validation.py: call len() for "data" only once Sort of optimisation. 14 years ago			`length = len(data)`
Move validation functions to separate module 14 years ago			`# Minimum key length 516 bytes`
web/lib/validation.py: call len() for "data" only once Sort of optimisation. 14 years ago			`if length < 516:`
Move validation functions to separate module 14 years ago			`raise forms.ValidationError('Specified base64 hash are less than 516 bytes')`
web/lib/validation.py: fix base64 validations according to zzz's explanation 14 years ago			`# keys with cert may ends with anything, so check is relaxed`
web/lib/validation.py: call len() for "data" only once Sort of optimisation. 14 years ago			`if length > 516 and re.match(r'[a-zA-Z0-9\-~]+$', data) == None:`
web/lib/validation.py: fix base64 validations according to zzz's explanation 14 years ago			`raise forms.ValidationError('Invalid characters in base64 hash')`
Move validation functions to separate module 14 years ago			`# base64-i2p`
web/lib/validation.py: call len() for "data" only once Sort of optimisation. 14 years ago			`if length == 516 and re.match(r'[a-zA-Z0-9\-~]+AA$', data) == None:`
Move validation functions to separate module 14 years ago			`raise forms.ValidationError('Invalid base64 hash')`
			`if check_uniq == True:`
			`# Avoid adding non-unique hashes`
			`qs = i2phost.objects.filter(b64hash=data)`
			`if qs.exists():`
			`raise forms.ValidationError('Base64 hash must be unique')`
			`return data`