2020-02-20 23:29:46 +00:00
|
|
|
"""Support for displaying IPs banned by fail2ban."""
|
2017-10-23 07:20:45 +00:00
|
|
|
from datetime import timedelta
|
2019-12-09 13:14:40 +00:00
|
|
|
import logging
|
|
|
|
import os
|
2017-10-23 07:20:45 +00:00
|
|
|
import re
|
2019-12-09 13:14:40 +00:00
|
|
|
|
2017-10-23 07:20:45 +00:00
|
|
|
import voluptuous as vol
|
|
|
|
|
2021-03-22 18:45:17 +00:00
|
|
|
from homeassistant.components.sensor import PLATFORM_SCHEMA, SensorEntity
|
2019-12-09 13:14:40 +00:00
|
|
|
from homeassistant.const import CONF_FILE_PATH, CONF_NAME
|
|
|
|
import homeassistant.helpers.config_validation as cv
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
_LOGGER = logging.getLogger(__name__)
|
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
CONF_JAILS = "jails"
|
2017-10-23 07:20:45 +00:00
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
DEFAULT_NAME = "fail2ban"
|
|
|
|
DEFAULT_LOG = "/var/log/fail2ban.log"
|
2017-10-23 07:20:45 +00:00
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
STATE_CURRENT_BANS = "current_bans"
|
|
|
|
STATE_ALL_BANS = "total_bans"
|
2018-12-22 17:25:02 +00:00
|
|
|
SCAN_INTERVAL = timedelta(seconds=120)
|
2017-10-23 07:20:45 +00:00
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
PLATFORM_SCHEMA = PLATFORM_SCHEMA.extend(
|
|
|
|
{
|
|
|
|
vol.Required(CONF_JAILS): vol.All(cv.ensure_list, vol.Length(min=1)),
|
|
|
|
vol.Optional(CONF_FILE_PATH): cv.isfile,
|
|
|
|
vol.Optional(CONF_NAME, default=DEFAULT_NAME): cv.string,
|
|
|
|
}
|
|
|
|
)
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
async def async_setup_platform(hass, config, async_add_entities, discovery_info=None):
|
2017-10-23 07:20:45 +00:00
|
|
|
"""Set up the fail2ban sensor."""
|
|
|
|
name = config.get(CONF_NAME)
|
|
|
|
jails = config.get(CONF_JAILS)
|
2018-02-17 09:29:14 +00:00
|
|
|
log_file = config.get(CONF_FILE_PATH, DEFAULT_LOG)
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
device_list = []
|
2018-12-22 17:25:02 +00:00
|
|
|
log_parser = BanLogParser(log_file)
|
2017-10-23 07:20:45 +00:00
|
|
|
for jail in jails:
|
|
|
|
device_list.append(BanSensor(name, jail, log_parser))
|
|
|
|
|
2018-08-24 14:37:30 +00:00
|
|
|
async_add_entities(device_list, True)
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
|
2021-03-22 18:45:17 +00:00
|
|
|
class BanSensor(SensorEntity):
|
2017-10-23 07:20:45 +00:00
|
|
|
"""Implementation of a fail2ban sensor."""
|
|
|
|
|
|
|
|
def __init__(self, name, jail, log_parser):
|
|
|
|
"""Initialize the sensor."""
|
2019-09-03 15:10:56 +00:00
|
|
|
self._name = f"{name} {jail}"
|
2017-10-23 07:20:45 +00:00
|
|
|
self.jail = jail
|
|
|
|
self.ban_dict = {STATE_CURRENT_BANS: [], STATE_ALL_BANS: []}
|
|
|
|
self.last_ban = None
|
|
|
|
self.log_parser = log_parser
|
|
|
|
self.log_parser.ip_regex[self.jail] = re.compile(
|
2021-04-09 16:58:27 +00:00
|
|
|
fr"\[{re.escape(self.jail)}\]\s*(Ban|Unban) (.*)"
|
2017-10-23 07:20:45 +00:00
|
|
|
)
|
|
|
|
_LOGGER.debug("Setting up jail %s", self.jail)
|
|
|
|
|
|
|
|
@property
|
|
|
|
def name(self):
|
|
|
|
"""Return the name of the sensor."""
|
|
|
|
return self._name
|
|
|
|
|
|
|
|
@property
|
2021-03-21 09:38:24 +00:00
|
|
|
def extra_state_attributes(self):
|
2017-10-23 07:20:45 +00:00
|
|
|
"""Return the state attributes of the fail2ban sensor."""
|
|
|
|
return self.ban_dict
|
|
|
|
|
|
|
|
@property
|
2021-08-12 12:23:56 +00:00
|
|
|
def native_value(self):
|
2017-10-23 07:20:45 +00:00
|
|
|
"""Return the most recently banned IP Address."""
|
|
|
|
return self.last_ban
|
|
|
|
|
|
|
|
def update(self):
|
|
|
|
"""Update the list of banned ips."""
|
2018-12-22 17:25:02 +00:00
|
|
|
self.log_parser.read_log(self.jail)
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
if self.log_parser.data:
|
|
|
|
for entry in self.log_parser.data:
|
|
|
|
_LOGGER.debug(entry)
|
|
|
|
current_ip = entry[1]
|
2019-07-31 19:25:30 +00:00
|
|
|
if entry[0] == "Ban":
|
2017-10-23 07:20:45 +00:00
|
|
|
if current_ip not in self.ban_dict[STATE_CURRENT_BANS]:
|
|
|
|
self.ban_dict[STATE_CURRENT_BANS].append(current_ip)
|
|
|
|
if current_ip not in self.ban_dict[STATE_ALL_BANS]:
|
|
|
|
self.ban_dict[STATE_ALL_BANS].append(current_ip)
|
|
|
|
if len(self.ban_dict[STATE_ALL_BANS]) > 10:
|
|
|
|
self.ban_dict[STATE_ALL_BANS].pop(0)
|
|
|
|
|
2021-03-27 11:39:37 +00:00
|
|
|
elif (
|
|
|
|
entry[0] == "Unban"
|
|
|
|
and current_ip in self.ban_dict[STATE_CURRENT_BANS]
|
|
|
|
):
|
|
|
|
self.ban_dict[STATE_CURRENT_BANS].remove(current_ip)
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
if self.ban_dict[STATE_CURRENT_BANS]:
|
|
|
|
self.last_ban = self.ban_dict[STATE_CURRENT_BANS][-1]
|
|
|
|
else:
|
2019-07-31 19:25:30 +00:00
|
|
|
self.last_ban = "None"
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
|
2018-07-20 08:45:20 +00:00
|
|
|
class BanLogParser:
|
2017-10-23 07:20:45 +00:00
|
|
|
"""Class to parse fail2ban logs."""
|
|
|
|
|
2018-12-22 17:25:02 +00:00
|
|
|
def __init__(self, log_file):
|
2017-10-23 07:20:45 +00:00
|
|
|
"""Initialize the parser."""
|
|
|
|
self.log_file = log_file
|
2020-04-04 21:14:47 +00:00
|
|
|
self.data = []
|
2020-04-04 20:31:56 +00:00
|
|
|
self.ip_regex = {}
|
2017-10-23 07:20:45 +00:00
|
|
|
|
|
|
|
def read_log(self, jail):
|
|
|
|
"""Read the fail2ban log and find entries for jail."""
|
2020-04-04 21:14:47 +00:00
|
|
|
self.data = []
|
2017-10-23 07:20:45 +00:00
|
|
|
try:
|
2020-04-04 20:49:15 +00:00
|
|
|
with open(self.log_file, encoding="utf-8") as file_data:
|
2017-10-23 07:20:45 +00:00
|
|
|
self.data = self.ip_regex[jail].findall(file_data.read())
|
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
except (IndexError, FileNotFoundError, IsADirectoryError, UnboundLocalError):
|
|
|
|
_LOGGER.warning("File not present: %s", os.path.basename(self.log_file))
|