diff options
Diffstat (limited to 'lib/python2.7/site-packages/setools/policyrep/bounds.py')
-rwxr-xr-x | lib/python2.7/site-packages/setools/policyrep/bounds.py | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/lib/python2.7/site-packages/setools/policyrep/bounds.py b/lib/python2.7/site-packages/setools/policyrep/bounds.py new file mode 100755 index 0000000..469ddef --- /dev/null +++ b/lib/python2.7/site-packages/setools/policyrep/bounds.py @@ -0,0 +1,60 @@ +# Copyright 2016, Tresys Technology, LLC +# +# This file is part of SETools. +# +# SETools is free software: you can redistribute it and/or modify +# it under the terms of the GNU Lesser General Public License as +# published by the Free Software Foundation, either version 2.1 of +# the License, or (at your option) any later version. +# +# SETools is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU Lesser General Public License for more details. +# +# You should have received a copy of the GNU Lesser General Public +# License along with SETools. If not, see +# <http://www.gnu.org/licenses/>. +# +from . import exception +from .symbol import PolicySymbol +from .qpol import qpol_typebounds_t +from .typeattr import type_factory + + +def bounds_factory(policy, sym): + """Factory for creating bounds statement objects.""" + + if isinstance(sym, qpol_typebounds_t): + return Bounds(policy, sym) + else: + raise TypeError("typebounds rules cannot be looked up.") + + +def validate_ruletype(t): + """Validate *bounds rule types.""" + if t not in ["typebounds"]: + raise exception.InvalidBoundsType("{0} is not a valid *bounds rule type.".format(t)) + + return t + + +class Bounds(PolicySymbol): + + """A typebounds statement.""" + + def __str__(self): + return "{0.ruletype} {0.parent} {0.child};".format(self) + + def __hash__(self): + return hash("{0.ruletype}|{0.child};".format(self)) + + ruletype = "typebounds" + + @property + def parent(self): + return type_factory(self.policy, self.qpol_symbol.parent_name(self.policy)) + + @property + def child(self): + return type_factory(self.policy, self.qpol_symbol.child_name(self.policy)) |