def write_source_config(config, enabled):
if enabled:
filename = sources.get_enabled_source_filename(config.name)
else:
filename = sources.get_disabled_source_filename(config.name)
with open(filename, "w") as fileobj:
logger.debug("Writing %s", filename)
fileobj.write(yaml.safe_dump(config.dict(), default_flow_style=False))
def disable_source():
name = config.args().name
filename = sources.get_enabled_source_filename(name)
if not os.path.exists(filename):
logger.debug("Filename %s does not exist.", filename)
logger.warning("Source %s is not enabled.", name)
return 0
logger.debug("Renaming %s to %s.disabled.", filename, filename)
os.rename(filename, "%s.disabled" % (filename))
logger.info("Source %s has been disabled", name)
def enable_source():
name = config.args().name
# Check if source is already enabled.
enabled_source_filename = sources.get_enabled_source_filename(name)
if os.path.exists(enabled_source_filename):
logger.error("The source %s is already enabled.", name)
return 1
# First check if this source was previous disabled and then just
# re-enable it.
disabled_source_filename = sources.get_disabled_source_filename(name)
if os.path.exists(disabled_source_filename):
logger.info("Re-enabling previous disabled source for %s.", name)
os.rename(disabled_source_filename, enabled_source_filename)
return 0
if not os.path.exists(sources.get_index_filename()):
logger.warning("Source index does not exist, will use bundled one.")
logger.warning("Please run suricata-update update-sources.")
source_index = sources.load_source_index(config)
if not name in source_index.get_sources():
logger.error("Unknown source: %s", name)
return 1
# Parse key=val options.
opts = {}
for param in config.args().params:
key, val = param.split("=", 1)
opts[key] = val
source = source_index.get_sources()[name]
if "subscribe-url" in source:
print("The source %s requires a subscription. Subscribe here:" %
(name))
print(" %s" % source["subscribe-url"])
params = {}
if "parameters" in source:
for param in source["parameters"]:
if param in opts:
params[param] = opts[param]
else:
prompt = source["parameters"][param]["prompt"]
while True:
r = raw_input("%s (%s): " % (prompt, param))
r = r.strip()
if r:
break
params[param] = r.strip()
new_source = sources.SourceConfiguration(name, params=params)
# If the source directory does not exist, create it. Also create
# the default rule-source of et/open, unless the source being
# enabled replaces it.
source_directory = sources.get_source_directory()
if not os.path.exists(source_directory):
try:
logger.info("Creating directory %s", source_directory)
os.makedirs(source_directory)
except Exception as err:
logger.error("Failed to create directory %s: %s", source_directory,
err)
return 1
if "replaces" in source and default_source in source["replaces"]:
logger.debug(
"Not enabling default source as selected source replaces it")
elif new_source.name == default_source:
logger.debug(
"Not enabling default source as selected source is the default"
)
else:
logger.info("Enabling default source %s", default_source)
if not source_index.get_source_by_name(default_source):
logger.error("Default source %s not in index", default_source)
else:
default_source_config = sources.SourceConfiguration(
default_source)
write_source_config(default_source_config, True)
write_source_config(new_source, True)
logger.info("Source %s enabled", new_source.name)
if "replaces" in source:
for replaces in source["replaces"]:
filename = sources.get_enabled_source_filename(replaces)
if os.path.exists(filename):
logger.info("Removing source %s as its replaced by %s",
replaces, new_source.name)
logger.debug("Deleting %s", filename)
os.unlink(filename)