Improve IP address handling in IPA option parser

Implements a way to pass match_local and parse_netmask parameters to IP option checker. Now, there is just one common option type "ip" with new optional attributes "ip_local" and "ip_netmask" which can be used to pass IP address validation parameters. https://fedorahosted.org/freeipa/ticket/1333
2025-02-25 18:55:28 -06:00 · 2011-06-16 10:47:11 +02:00
parent 79ce958a3c
commit d9808498a8
5 changed files with 15 additions and 10 deletions
--- a/install/tools/ipa-dns-install
+++ b/install/tools/ipa-dns-install
@@ -38,9 +38,9 @@ def parse_options():
    parser.add_option("-d", "--debug", dest="debug", action="store_true",
                      default=False, help="print debugging information")
    parser.add_option("--ip-address", dest="ip_address",
-                      type="ipnet", help="Master Server IP Address")
+                      type="ip", ip_netmask=True, ip_local=True, help="Master Server IP Address")
    parser.add_option("--forwarder", dest="forwarders", action="append",
-                      type="ipaddr", help="Add a DNS forwarder")
+                      type="ip", help="Add a DNS forwarder")
    parser.add_option("--no-forwarders", dest="no_forwarders", action="store_true",
                      default=False, help="Do not add any DNS forwarders, use root servers instead")
    parser.add_option("--no-reverse", dest="no_reverse",
--- a/install/tools/ipa-replica-install
+++ b/install/tools/ipa-replica-install
@@ -64,7 +64,7 @@ def parse_options():
    parser.add_option("--setup-dns", dest="setup_dns", action="store_true",
                      default=False, help="configure bind with our zone")
    parser.add_option("--forwarder", dest="forwarders", action="append",
-                      type="ipaddr", help="Add a DNS forwarder")
+                      type="ip", help="Add a DNS forwarder")
    parser.add_option("--no-forwarders", dest="no_forwarders", action="store_true",
                      default=False, help="Do not add any DNS forwarders, use root servers instead")
    parser.add_option("--no-reverse", dest="no_reverse", action="store_true",
--- a/install/tools/ipa-replica-prepare
+++ b/install/tools/ipa-replica-prepare
@@ -54,7 +54,8 @@ def parse_options():
    parser.add_option("-p", "--password", dest="password", 
                      help="Directory Manager (existing master) password")
    parser.add_option("--ip-address", dest="ip_address",
-                      type="ipnet", help="Add A and PTR records of the future replica")
+                      type="ip", ip_netmask=True,
+                      help="Add A and PTR records of the future replica")
    parser.add_option("--ca", dest="ca_file", default="/root/cacert.p12",
                      help="Location of CA PKCS#12 file, default /root/cacert.p12")
    parser.add_option("--no-pkinit", dest="setup_pkinit", action="store_false",
--- a/install/tools/ipa-server-install
+++ b/install/tools/ipa-server-install
@@ -100,11 +100,12 @@ def parse_options():
                      help="File containing PKCS#10 of the external CA chain")
    parser.add_option("--hostname", dest="host_name", help="fully qualified name of server")
    parser.add_option("--ip-address", dest="ip_address",
-                      type="ipnet", help="Master Server IP Address")
+                      type="ip", ip_netmask=True, ip_local=True,
+                      help="Master Server IP Address")
    parser.add_option("--setup-dns", dest="setup_dns", action="store_true",
                      default=False, help="configure bind with our zone")
    parser.add_option("--forwarder", dest="forwarders", action="append",
-                      type="ipaddr", help="Add a DNS forwarder")
+                      type="ip", help="Add a DNS forwarder")
    parser.add_option("--no-forwarders", dest="no_forwarders", action="store_true",
                      default=False, help="Do not add any DNS forwarders, use root servers instead")
    parser.add_option("--no-reverse", dest="no_reverse", action="store_true",
--- a/ipapython/config.py
+++ b/ipapython/config.py
@@ -49,8 +49,11 @@ class IPAFormatter(IndentedHelpFormatter):

 def check_ip_option(option, opt, value):
    from ipapython.ipautil import CheckedIPAddress
+
+    ip_local = option.ip_local is True
+    ip_netmask = option.ip_netmask is True
    try:
-        return CheckedIPAddress(value, parse_netmask=(option.type == "ipnet"))
+        return CheckedIPAddress(value, parse_netmask=ip_netmask, match_local=ip_local)
    except Exception as e:
        raise OptionValueError("option %s: invalid IP address %s: %s" % (opt, value, e))

@@ -59,10 +62,10 @@ class IPAOption(Option):
    optparse.Option subclass with support of options labeled as
    security-sensitive such as passwords.
    """
-    ATTRS = Option.ATTRS + ["sensitive"]
-    TYPES = Option.TYPES + ("ipaddr", "ipnet")
+    ATTRS = Option.ATTRS + ["sensitive", "ip_local", "ip_netmask"]
+    TYPES = Option.TYPES + ("ip",)
    TYPE_CHECKER = copy(Option.TYPE_CHECKER)
-    TYPE_CHECKER["ipaddr"] = TYPE_CHECKER["ipnet"] = check_ip_option
+    TYPE_CHECKER["ip"] = check_ip_option

 class IPAOptionParser(OptionParser):
    """