Use 4 space indents

For greater compatibility with LE codebases
2026-06-04 22:33:00 -04:00 · 2016-02-17 11:19:02 -08:00 · 2016-02-17 11:19:02 -08:00 · 39a01190d5
commit 39a01190d5
parent 9539f21390
1 changed files with 131 additions and 131 deletions
--- a/MTAConfigGenerator.py
+++ b/MTAConfigGenerator.py
@ -5,153 +5,153 @@ import string
 import os, os.path

 def parse_line(line_data):
-  """
-  Return the (line number, left hand side, right hand side) of a stripped
-  postfix config line.
+    """
+    Return the (line number, left hand side, right hand side) of a stripped
+    postfix config line.

-  Lines are like:
-  smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
-  """
-  num,line = line_data
-  left, sep, right = line.partition("=")
-  if not sep:
-    return None
-  return (num, left.strip(), right.strip())
+    Lines are like:
+    smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
+    """
+    num,line = line_data
+    left, sep, right = line.partition("=")
+    if not sep:
+        return None
+    return (num, left.strip(), right.strip())

 class MTAConfigGenerator:
-  def __init__(self, policy_config):
-    self.policy_config = policy_config
+    def __init__(self, policy_config):
+        self.policy_config = policy_config

 class ExistingConfigError(ValueError): pass

 class PostfixConfigGenerator(MTAConfigGenerator):
-  def __init__(self, policy_config, postfix_dir, fixup=False):
-    self.fixup = fixup
-    self.postfix_dir = postfix_dir
-    self.policy_file = os.path.join(postfix_dir, "starttls_everywhere_policy")
-    MTAConfigGenerator.__init__(self, policy_config)
-    self.postfix_cf_file = self.find_postfix_cf()
-    self.wrangle_existing_config()
-    self.set_domainwise_tls_policies()
-    #TODO make this optional for testing, etc.
-    os.system("sudo service postfix reload")
+    def __init__(self, policy_config, postfix_dir, fixup=False):
+        self.fixup = fixup
+        self.postfix_dir = postfix_dir
+        self.policy_file = os.path.join(postfix_dir, "starttls_everywhere_policy")
+        MTAConfigGenerator.__init__(self, policy_config)
+        self.postfix_cf_file = self.find_postfix_cf()
+        self.wrangle_existing_config()
+        self.set_domainwise_tls_policies()
+        #TODO make this optional for testing, etc.
+        os.system("sudo service postfix reload")

-  def ensure_cf_var(self, var, ideal, also_acceptable):
-    """
-    Ensure that existing postfix config @var is in the list of @acceptable
-    values; if not, set it to the ideal value.
-    """
-    acceptable = [ideal] + also_acceptable
+    def ensure_cf_var(self, var, ideal, also_acceptable):
+        """
+        Ensure that existing postfix config @var is in the list of @acceptable
+        values; if not, set it to the ideal value.
+        """
+        acceptable = [ideal] + also_acceptable

-    l = [(num,line) for num,line in enumerate(self.cf) if line.startswith(var)]
-    if not any(l):
-      self.additions.append(var + " = " + ideal)
-    else:
-      values = map(parse_line, l)
-      if len(set(values)) > 1:
-        if self.fixup:
-          #print "Scheduling deletions:" + `values`
-          conflicting_lines = [num for num,_var,val in values]
-          self.deletions.extend(conflicting_lines)
-          self.additions.append(var + " = " + ideal)
+        l = [(num,line) for num,line in enumerate(self.cf) if line.startswith(var)]
+        if not any(l):
+            self.additions.append(var + " = " + ideal)
        else:
-          raise ExistingConfigError, "Conflicting existing config values " + `l`
-      val = values[0][2]
-      if val not in acceptable:
-        #print "Scheduling deletions:" + `values`
+            values = map(parse_line, l)
+            if len(set(values)) > 1:
+                if self.fixup:
+                    #print "Scheduling deletions:" + `values`
+                    conflicting_lines = [num for num,_var,val in values]
+                    self.deletions.extend(conflicting_lines)
+                    self.additions.append(var + " = " + ideal)
+                else:
+                    raise ExistingConfigError, "Conflicting existing config values " + `l`
+            val = values[0][2]
+            if val not in acceptable:
+                #print "Scheduling deletions:" + `values`
+                if self.fixup:
+                    self.deletions.append(values[0][0])
+                    self.additions.append(var + " = " + ideal)
+                else:
+                    raise ExistingConfigError, "Existing config has %s=%s"%(var,val)
+
+    def wrangle_existing_config(self):
+        """
+        Try to ensure/mutate that the config file is in a sane state.
+        Fixup means we'll delete existing lines if necessary to get there.
+        """
+        self.additions = []
+        self.deletions = []
+        self.fn = self.find_postfix_cf()
+        self.raw_cf = open(self.fn).readlines()
+        self.cf = map(string.strip, self.raw_cf)
+        #self.cf = [line for line in cf if line and not line.startswith("#")]
+
+        # Check we're currently accepting inbound STARTTLS sensibly
+        self.ensure_cf_var("smtpd_use_tls", "yes", [])
+        # Ideally we use it opportunistically in the outbound direction
+        self.ensure_cf_var("smtp_tls_security_level", "may", ["encrypt","dane"])
+        # Maximum verbosity lets us collect failure information
+        self.ensure_cf_var("smtp_tls_loglevel", "1", [])
+        # Inject a reference to our per-domain policy map
+        policy_cf_entry = "texthash:" + self.policy_file
+
+        self.ensure_cf_var("smtp_tls_policy_maps", policy_cf_entry, [])
+
+        self.maybe_add_config_lines()
+
+    def maybe_add_config_lines(self):
+        if not self.additions:
+            return
        if self.fixup:
-          self.deletions.append(values[0][0])
-          self.additions.append(var + " = " + ideal)
-        else:
-          raise ExistingConfigError, "Existing config has %s=%s"%(var,val)
+            print "Deleting lines:", self.deletions
+        self.additions[:0]=["#","# New config lines added by STARTTLS Everywhere","#"]
+        new_cf_lines = "\n".join(self.additions) + "\n"
+        print "Adding to %s:" % self.fn
+        print new_cf_lines
+        if self.raw_cf[-1][-1] == "\n":         sep = ""
+        else:                                   sep = "\n"

-  def wrangle_existing_config(self):
-    """
-    Try to ensure/mutate that the config file is in a sane state.
-    Fixup means we'll delete existing lines if necessary to get there.
-    """
-    self.additions = []
-    self.deletions = []
-    self.fn = self.find_postfix_cf()
-    self.raw_cf = open(self.fn).readlines()
-    self.cf = map(string.strip, self.raw_cf)
-    #self.cf = [line for line in cf if line and not line.startswith("#")]
+        self.new_cf = ""
+        for num, line in enumerate(self.raw_cf):
+            if self.fixup and num in self.deletions:
+                self.new_cf += "# Line removed by STARTTLS Everywhere\n# " + line
+            else:
+                self.new_cf += line
+        self.new_cf += sep + new_cf_lines

-    # Check we're currently accepting inbound STARTTLS sensibly
-    self.ensure_cf_var("smtpd_use_tls", "yes", [])
-    # Ideally we use it opportunistically in the outbound direction
-    self.ensure_cf_var("smtp_tls_security_level", "may", ["encrypt","dane"])
-    # Maximum verbosity lets us collect failure information
-    self.ensure_cf_var("smtp_tls_loglevel", "1", [])
-    # Inject a reference to our per-domain policy map
-    policy_cf_entry = "texthash:" + self.policy_file
+        #print self.new_cf
+        f = open(self.fn, "w")
+        f.write(self.new_cf)
+        f.close()

-    self.ensure_cf_var("smtp_tls_policy_maps", policy_cf_entry, [])
+    def find_postfix_cf(self):
+        "Search far and wide for the correct postfix configuration file"
+        return os.path.join(self.postfix_dir, "main.cf")

-    self.maybe_add_config_lines()
+    def set_domainwise_tls_policies(self):
+        self.policy_lines = []
+        all_acceptable_mxs = self.policy_config.get_acceptable_mxs_dict()
+        for address_domain, properties in all_acceptable_mxs.items():
+            mx_list = properties.accept_mx_domains
+            if len(mx_list) > 1:
+                print "Lists of multiple accept-mx-domains not yet supported."
+                print "Using MX %s for %s" % (mx_list[0], address_domain)
+                print "Ignoring: %s" % (', '.join(mx_list[1:]))
+            mx_domain = mx_list[0]
+            mx_policy = self.policy_config.get_tls_policy(mx_domain)
+            entry = address_domain + " encrypt"
+            if mx_policy.min_tls_version.lower() == "tlsv1":
+                entry += " protocols=!SSLv2,!SSLv3"
+            elif mx_policy.min_tls_version.lower() == "tlsv1.1":
+                entry += " protocols=!SSLv2,!SSLv3,!TLSv1"
+            elif mx_policy.min_tls_version.lower() == "tlsv1.2":
+                entry += " protocols=!SSLv2,!SSLv3,!TLSv1,!TLSv1.1"
+            else:
+                print mx_policy.min_tls_version
+            self.policy_lines.append(entry)

-  def maybe_add_config_lines(self):
-    if not self.additions:
-      return
-    if self.fixup:
-      print "Deleting lines:", self.deletions
-    self.additions[:0]=["#","# New config lines added by STARTTLS Everywhere","#"]
-    new_cf_lines = "\n".join(self.additions) + "\n"
-    print "Adding to %s:" % self.fn
-    print new_cf_lines
-    if self.raw_cf[-1][-1] == "\n":     sep = ""
-    else:                               sep = "\n"
-
-    self.new_cf = ""
-    for num, line in enumerate(self.raw_cf):
-      if self.fixup and num in self.deletions:
-        self.new_cf += "# Line removed by STARTTLS Everywhere\n# " + line
-      else:
-        self.new_cf += line
-    self.new_cf += sep + new_cf_lines
-
-    #print self.new_cf
-    f = open(self.fn, "w")
-    f.write(self.new_cf)
-    f.close()
-
-  def find_postfix_cf(self):
-    "Search far and wide for the correct postfix configuration file"
-    return os.path.join(self.postfix_dir, "main.cf")
-
-  def set_domainwise_tls_policies(self):
-    self.policy_lines = []
-    all_acceptable_mxs = self.policy_config.get_acceptable_mxs_dict()
-    for address_domain, properties in all_acceptable_mxs.items():
-      mx_list = properties.accept_mx_domains
-      if len(mx_list) > 1:
-        print "Lists of multiple accept-mx-domains not yet supported."
-        print "Using MX %s for %s" % (mx_list[0], address_domain)
-        print "Ignoring: %s" % (', '.join(mx_list[1:]))
-      mx_domain = mx_list[0]
-      mx_policy = self.policy_config.get_tls_policy(mx_domain)
-      entry = address_domain + " encrypt"
-      if mx_policy.min_tls_version.lower() == "tlsv1":
-        entry += " protocols=!SSLv2,!SSLv3"
-      elif mx_policy.min_tls_version.lower() == "tlsv1.1":
-        entry += " protocols=!SSLv2,!SSLv3,!TLSv1"
-      elif mx_policy.min_tls_version.lower() == "tlsv1.2":
-        entry += " protocols=!SSLv2,!SSLv3,!TLSv1,!TLSv1.1"
-      else:
-        print mx_policy.min_tls_version
-      self.policy_lines.append(entry)
-
-    f = open(self.policy_file, "w")
-    f.write("\n".join(self.policy_lines) + "\n")
-    f.close()
+        f = open(self.policy_file, "w")
+        f.write("\n".join(self.policy_lines) + "\n")
+        f.close()


 if __name__ == "__main__":
-  import Config as config
-  if len(sys.argv) != 3:
-    print "Usage: MTAConfigGenerator starttls-everywhere.json /etc/postfix"
-    sys.exit(1)
-  c = config.Config()
-  c.load_from_json_file(sys.argv[1])
-  postfix_dir = sys.argv[2]
-  pcgen = PostfixConfigGenerator(c, postfix_dir, fixup=True)
+    import Config as config
+    if len(sys.argv) != 3:
+        print "Usage: MTAConfigGenerator starttls-everywhere.json /etc/postfix"
+        sys.exit(1)
+    c = config.Config()
+    c.load_from_json_file(sys.argv[1])
+    postfix_dir = sys.argv[2]
+    pcgen = PostfixConfigGenerator(c, postfix_dir, fixup=True)