ui,rules: improved uid parsing

When creating rules filtering by UID, there're 3 possible "modes": - simple: 0, 1000, etc. - user: root (0), opensnitch (1000) - regexp: ^(0|1000)$ regexp was not being used correctly.
evilsocket · Jul 20, 2023 · 3d8bdfc · 3d8bdfc
1 parent c97c322
commit 3d8bdfc
Showing 1 changed file with 16 additions and 9 deletions.
diff --git a/ui/opensnitch/dialogs/ruleseditor.py b/ui/opensnitch/dialogs/ruleseditor.py
@@ -850,34 +850,41 @@ def _save_rule(self):
                         })
 
         if self.uidCheck.isChecked():
-            if self.uidCombo.currentText() == "":
+            uidType = Config.RULE_TYPE_SIMPLE
+            uid = self.uidCombo.currentText()
+
+            if uid == "":
                 return False, QC.translate("rules", "User ID can not be empty")
+
             try:
                 # sometimes when loading a rule, instead of the UID, the format
                 # "user (uid)" is set. So try to parse it, in order not to save
                 # a wrong uid.
-                uidtmp = self.uidCombo.currentText().split(" ")
+                uidtmp = uid.split(" ")
                 if len(uidtmp) == 1:
                     int(uidtmp[0])
-                    uid = self.uidCombo.currentText()
                 else:
                     uid = str(pwd.getpwnam(uidtmp[0])[self.PW_UID])
             except:
-                return False, QC.translate("rules", "Invalid UID, it must be a digit.")
+                # if it's not a digit and nor a system user (user (id)), see if
+                # it's a regexp.
+                if self._is_regex(self.uidCombo.currentText()):
+                    uidType = Config.RULE_TYPE_REGEXP
+                    if self._is_valid_regex(self.uidCombo.currentText()) == False:
+                        return False, QC.translate("rules", "User ID regexp error")
+
+                else:
+                    return False, QC.translate("rules", "Invalid UID, it must be a digit.")
 
             self.rule.operator.operand = Config.OPERAND_USER_ID
             self.rule.operator.data = self.uidCombo.currentText()
             rule_data.append(
                     {
-                        'type': Config.RULE_TYPE_SIMPLE,
+                        'type': uidType,
                         'operand': Config.OPERAND_USER_ID,
                         'data': uid,
                         "sensitive": self.sensitiveCheck.isChecked()
                         })
-            if self._is_regex(self.uidCombo.currentText()):
-                rule_data[len(rule_data)-1]['type'] = Config.RULE_TYPE_REGEXP
-                if self._is_valid_regex(self.uidCombo.currentText()) == False:
-                    return False, QC.translate("rules", "User ID regexp error")
 
         if self.pidCheck.isChecked():
             if self.pidLine.text() == "":