org_fedora_oscap.service.kickstart - Code Metrics - Inspection of "Merge pull request #196 from matejak/firstboot-raw..." - OpenSCAP/oscap-anaconda-addon - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( c97ece...6b05e2 )

by Jan

created 2022-03-21 13:39 UTC

org_fedora_oscap.service.kickstart B

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	264
Duplicated Lines	0 %

Importance

Changes

Metric	Value
eloc	153
dl	0
loc	264
rs	8.72
c	0
b	0
f	0
wmc	46

16 Methods

Rating	Name	Size	Complexity
A	OSCAPKickstartData._parse_cpe_path()	3	1
A	OSCAPKickstartData._parse_datastream_id()	3	1
A	OSCAPKickstartData._parse_fingerprint()	10	3
A	OSCAPKickstartData._parse_content_type()	8	2
A	OSCAPKickstartData._parse_certificates()	2	1
A	OSCAPKickstartData._parse_profile_id()	3	1
A	OSCAPKickstartData._parse_tailoring_path()	3	1
A	OSCAPKickstartData._parse_content_path()	3	1
A	OSCAPKickstartData._parse_content_url()	7	2
A	OSCAPKickstartData._parse_xccdf_id()	3	1
A	OSCAPKickstartData.handle_header()	8	1
A	OSCAPKickstartData.__init__()	7	1
D	OSCAPKickstartData.handle_end()	47	13
D	OSCAPKickstartData.__str__()	47	12
A	OSCAPKickstartData.handle_line()	33	2
A	OSCAPKickstartData._parse_remediate()	3	1

2 Functions

Rating	Name	Duplication	Size	Complexity
A	key_value_pair()	0	2	1
A	get_oscap_kickstart_data()	0	7	1

How to fix Complexity

#
# Copyright (C) 2020 Red Hat, Inc.
#
# This copyrighted material is made available to anyone wishing to use,
# modify, copy, or redistribute it subject to the terms and conditions of
# the GNU General Public License v.2, or (at your option) any later version.
# This program is distributed in the hope that it will be useful, but WITHOUT
# ANY WARRANTY expressed or implied, including the implied warranties of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General
# Public License for more details.  You should have received a copy of the
# GNU General Public License along with this program; if not, write to the
# Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
# 02110-1301, USA.  Any Red Hat trademarks that are incorporated in the
# source code or documentation are not subject to the GNU General Public
# License and may only be used or replicated with the express permission of
# Red Hat, Inc.
#
import logging
import re

from pyanaconda.core.kickstart import KickstartSpecification
from pyanaconda.core.kickstart.addon import AddonData
from pykickstart.errors import KickstartValueError, KickstartParseError

from org_fedora_oscap import common, utils
from org_fedora_oscap.structures import PolicyData

log = logging.getLogger("anaconda")

__all__ = ["OSCAPKickstartSpecification"]


FINGERPRINT_REGEX = re.compile(r'^[a-z0-9]+$')


def key_value_pair(key, value, indent=4):
    return "%s%s = %s" % (indent * " ", key, value)


class OSCAPKickstartData(AddonData):
    """The kickstart data for the add-on."""

    def __init__(self):
        super().__init__()
        self.policy_data = PolicyData()

        """The name of the %addon section."""
        self.name = common.ADDON_NAMES[0]
        self.addon_section_present = False

    def handle_header(self, args, line_number=None):
        """Handle the arguments of the %addon line.

        :param args: a list of additional arguments
        :param line_number: a line number
        :raise: KickstartParseError for invalid arguments
        """
        self.addon_section_present = True

    def handle_line(self, line, line_number=None):
        """Handle one line of the section.

        :param line: a line to parse
        :param line_number: a line number
        :raise: KickstartParseError for invalid lines
        """
        actions = {
            "content-type": self._parse_content_type,
            "content-url": self._parse_content_url,
            "content-path": self._parse_content_path,
            "datastream-id": self._parse_datastream_id,
            "profile": self._parse_profile_id,
            "xccdf-id": self._parse_xccdf_id,
            "xccdf-path": self._parse_content_path,
            "cpe-path": self._parse_cpe_path,
            "tailoring-path": self._parse_tailoring_path,
            "fingerprint": self._parse_fingerprint,
            "certificates": self._parse_certificates,
            "remediate": self._parse_remediate,
        }

        line = line.strip()
        (pre, sep, post) = line.partition("=")
        pre = pre.strip()
        post = post.strip()
        post = post.strip('"')

        try:
            actions[pre](post)
        except KeyError:
            msg = "Unknown item '%s' for %s addon" % (line, self.name)
            raise KickstartParseError(msg)

    def _parse_content_type(self, value):
        value_low = value.lower()
        if value_low in common.SUPPORTED_CONTENT_TYPES:
            self.policy_data.content_type = value_low
        else:
            msg = "Unsupported content type '%s' in the %s addon" % (value,
                                                                     self.name)
            raise KickstartValueError(msg)

    def _parse_content_url(self, value):
        if any(value.startswith(prefix)
               for prefix in common.SUPPORTED_URL_PREFIXES):
            self.policy_data.content_url = value
        else:
            msg = "Unsupported url '%s' in the %s addon" % (value, self.name)
            raise KickstartValueError(msg)

    def _parse_datastream_id(self, value):
        # need to be checked?
        self.policy_data.datastream_id = value

    def _parse_xccdf_id(self, value):
        # need to be checked?
        self.policy_data.xccdf_id = value

    def _parse_profile_id(self, value):
        # need to be checked?
        self.policy_data.profile_id = value

    def _parse_content_path(self, value):
        # need to be checked?
        self.policy_data.content_path = value

    def _parse_cpe_path(self, value):
        # need to be checked?
        self.policy_data.cpe_path = value

    def _parse_tailoring_path(self, value):
        # need to be checked?
        self.policy_data.tailoring_path = value

    def _parse_fingerprint(self, value):
        if FINGERPRINT_REGEX.match(value) is None:
            msg = "Unsupported or invalid fingerprint"
            raise KickstartValueError(msg)

        if utils.get_hashing_algorithm(value) is None:
            msg = "Unsupported fingerprint"
            raise KickstartValueError(msg)

        self.policy_data.fingerprint = value

    def _parse_certificates(self, value):
        self.policy_data.certificates = value

    def _parse_remediate(self, value):
        assert value in ("none", "post", "firstboot", "both")
        self.policy_data.remediate = value

    def handle_end(self):
        """Handle the end of the section."""
        tmpl = "%s missing for the %s addon"

        # check provided data
        if not self.policy_data.content_type:
            raise KickstartValueError(tmpl % ("content-type", self.name))

        if (
                self.policy_data.content_type != "scap-security-guide"
                and not self.policy_data.content_url):
            raise KickstartValueError(tmpl % ("content-url", self.name))

        if not self.policy_data.profile_id:
            self.policy_data.profile_id = "default"

        if (
                self.policy_data.content_type in ("rpm", "archive")
                and not self.policy_data.content_path):
            msg = "Path to the XCCDF file has to be given if content in RPM "\
                  "or archive is used"
            raise KickstartValueError(msg)

        if (
                self.policy_data.content_type == "rpm"
                and not self.policy_data.content_url.endswith(".rpm")):
            msg = "Content type set to RPM, but the content URL doesn't end "\
                  "with '.rpm'"
            raise KickstartValueError(msg)

        if self.policy_data.content_type == "archive":
            supported_archive = any(
                self.policy_data.content_url.endswith(arch_type)
                for arch_type in common.SUPPORTED_ARCHIVES
            )
            if not supported_archive:
                msg = "Unsupported archive type of the content "\
                      "file '%s'" % self.policy_data.content_url
                raise KickstartValueError(msg)

        # do some initialization magic in case of SSG
        if self.policy_data.content_type == "scap-security-guide":
            if not common.ssg_available():
                msg = "SCAP Security Guide not found on the system"
                raise KickstartValueError(msg)

            self.policy_data.content_path = common.SSG_DIR + common.SSG_CONTENT

    def __str__(self):
        """Generate the kickstart representation.

        What should end up in the resulting kickstart file,
        i.e. string representation of the stored data.

        :return: a string
        """
        if not self.policy_data.profile_id:
            return ""

        ret = "%%addon %s" % self.name
        ret += "\n%s" % key_value_pair("content-type", self.policy_data.content_type)

        if self.policy_data.content_url:
            ret += "\n%s" % key_value_pair("content-url", self.policy_data.content_url)

        if self.policy_data.datastream_id:
            ret += "\n%s" % key_value_pair("datastream-id", self.policy_data.datastream_id)

        if self.policy_data.xccdf_id:
            ret += "\n%s" % key_value_pair("xccdf-id", self.policy_data.xccdf_id)

        if (
                self.policy_data.content_path
                and self.policy_data.content_type != "scap-security-guide"):
            ret += "\n%s" % key_value_pair("content-path", self.policy_data.content_path)

        if self.policy_data.cpe_path:
            ret += "\n%s" % key_value_pair("cpe-path", self.policy_data.cpe_path)

        if self.policy_data.tailoring_path:
            ret += "\n%s" % key_value_pair("tailoring-path", self.policy_data.tailoring_path)

        ret += "\n%s" % key_value_pair("profile", self.policy_data.profile_id)

        if self.policy_data.fingerprint:
            ret += "\n%s" % key_value_pair("fingerprint", self.policy_data.fingerprint)

        if self.policy_data.certificates:
            ret += "\n%s" % key_value_pair("certificates", self.policy_data.certificates)

        if self.policy_data.remediate:
            ret += "\n%s" % key_value_pair("remediate", self.policy_data.remediate)

        ret += "\n%end\n\n"
        return ret


def get_oscap_kickstart_data(name):
    class NamedOSCAPKickstartData(OSCAPKickstartData):
        def __init__(self):
            super().__init__()
            self.name = name

    return NamedOSCAPKickstartData


class OSCAPKickstartSpecification(KickstartSpecification):
    """The kickstart specification of the OSCAP service."""

    addons = {
        name: get_oscap_kickstart_data(name) for name in common.ADDON_NAMES
    }


1			#
2			# Copyright (C) 2020 Red Hat, Inc.
3			#
4			# This copyrighted material is made available to anyone wishing to use,
5			# modify, copy, or redistribute it subject to the terms and conditions of
6			# the GNU General Public License v.2, or (at your option) any later version.
7			# This program is distributed in the hope that it will be useful, but WITHOUT
8			# ANY WARRANTY expressed or implied, including the implied warranties of
9			# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General
10			# Public License for more details. You should have received a copy of the
11			# GNU General Public License along with this program; if not, write to the
12			# Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
13			# 02110-1301, USA. Any Red Hat trademarks that are incorporated in the
14			# source code or documentation are not subject to the GNU General Public
15			# License and may only be used or replicated with the express permission of
16			# Red Hat, Inc.
17			#
18			import logging
19			import re
20
21			from pyanaconda.core.kickstart import KickstartSpecification
22			from pyanaconda.core.kickstart.addon import AddonData
23			from pykickstart.errors import KickstartValueError, KickstartParseError
24
25			from org_fedora_oscap import common, utils
26			from org_fedora_oscap.structures import PolicyData
27
28			log = logging.getLogger("anaconda")
29
30			__all__ = ["OSCAPKickstartSpecification"]
31
32
33			FINGERPRINT_REGEX = re.compile(r'^[a-z0-9]+$')
34
35
36			def key_value_pair(key, value, indent=4):
37			return "%s%s = %s" % (indent * " ", key, value)
38
39
40			class OSCAPKickstartData(AddonData):
41			"""The kickstart data for the add-on."""
42
43			def __init__(self):
44			super().__init__()
45			self.policy_data = PolicyData()
46
47			"""The name of the %addon section."""
48			self.name = common.ADDON_NAMES[0]
49			self.addon_section_present = False
50
51			def handle_header(self, args, line_number=None):
52			"""Handle the arguments of the %addon line.
53
54			:param args: a list of additional arguments
55			:param line_number: a line number
56			:raise: KickstartParseError for invalid arguments
57			"""
58			self.addon_section_present = True
59
60			def handle_line(self, line, line_number=None):
61			"""Handle one line of the section.
62
63			:param line: a line to parse
64			:param line_number: a line number
65			:raise: KickstartParseError for invalid lines
66			"""
67			actions = {
68			"content-type": self._parse_content_type,
69			"content-url": self._parse_content_url,
70			"content-path": self._parse_content_path,
71			"datastream-id": self._parse_datastream_id,
72			"profile": self._parse_profile_id,
73			"xccdf-id": self._parse_xccdf_id,
74			"xccdf-path": self._parse_content_path,
75			"cpe-path": self._parse_cpe_path,
76			"tailoring-path": self._parse_tailoring_path,
77			"fingerprint": self._parse_fingerprint,
78			"certificates": self._parse_certificates,
79			"remediate": self._parse_remediate,
80			}
81
82			line = line.strip()
83			(pre, sep, post) = line.partition("=")
84			pre = pre.strip()
85			post = post.strip()
86			post = post.strip('"')
87
88			try:
89			actions[pre](post)
90			except KeyError:
91			msg = "Unknown item '%s' for %s addon" % (line, self.name)
92			raise KickstartParseError(msg)
93
94			def _parse_content_type(self, value):
95			value_low = value.lower()
96			if value_low in common.SUPPORTED_CONTENT_TYPES:
97			self.policy_data.content_type = value_low
98			else:
99			msg = "Unsupported content type '%s' in the %s addon" % (value,
100			self.name)
101			raise KickstartValueError(msg)
102
103			def _parse_content_url(self, value):
104			if any(value.startswith(prefix)
105			for prefix in common.SUPPORTED_URL_PREFIXES):
106			self.policy_data.content_url = value
107			else:
108			msg = "Unsupported url '%s' in the %s addon" % (value, self.name)
109			raise KickstartValueError(msg)
110
111			def _parse_datastream_id(self, value):
112			# need to be checked?
113			self.policy_data.datastream_id = value
114
115			def _parse_xccdf_id(self, value):
116			# need to be checked?
117			self.policy_data.xccdf_id = value
118
119			def _parse_profile_id(self, value):
120			# need to be checked?
121			self.policy_data.profile_id = value
122
123			def _parse_content_path(self, value):
124			# need to be checked?
125			self.policy_data.content_path = value
126
127			def _parse_cpe_path(self, value):
128			# need to be checked?
129			self.policy_data.cpe_path = value
130
131			def _parse_tailoring_path(self, value):
132			# need to be checked?
133			self.policy_data.tailoring_path = value
134
135			def _parse_fingerprint(self, value):
136			if FINGERPRINT_REGEX.match(value) is None:
137			msg = "Unsupported or invalid fingerprint"
138			raise KickstartValueError(msg)
139
140			if utils.get_hashing_algorithm(value) is None:
141			msg = "Unsupported fingerprint"
142			raise KickstartValueError(msg)
143
144			self.policy_data.fingerprint = value
145
146			def _parse_certificates(self, value):
147			self.policy_data.certificates = value
148
149			def _parse_remediate(self, value):
150			assert value in ("none", "post", "firstboot", "both")
151			self.policy_data.remediate = value
152
153			def handle_end(self):
154			"""Handle the end of the section."""
155			tmpl = "%s missing for the %s addon"
156
157			# check provided data
158			if not self.policy_data.content_type:
159			raise KickstartValueError(tmpl % ("content-type", self.name))
160
161			if (
162			self.policy_data.content_type != "scap-security-guide"
163			and not self.policy_data.content_url):
164			raise KickstartValueError(tmpl % ("content-url", self.name))
165
166			if not self.policy_data.profile_id:
167			self.policy_data.profile_id = "default"
168
169			if (
170			self.policy_data.content_type in ("rpm", "archive")
171			and not self.policy_data.content_path):
172			msg = "Path to the XCCDF file has to be given if content in RPM "\
173			"or archive is used"
174			raise KickstartValueError(msg)
175
176			if (
177			self.policy_data.content_type == "rpm"
178			and not self.policy_data.content_url.endswith(".rpm")):
179			msg = "Content type set to RPM, but the content URL doesn't end "\
180			"with '.rpm'"
181			raise KickstartValueError(msg)
182
183			if self.policy_data.content_type == "archive":
184			supported_archive = any(
185			self.policy_data.content_url.endswith(arch_type)
186			for arch_type in common.SUPPORTED_ARCHIVES
187			)
188			if not supported_archive:
189			msg = "Unsupported archive type of the content "\
190			"file '%s'" % self.policy_data.content_url
191			raise KickstartValueError(msg)
192
193			# do some initialization magic in case of SSG
194			if self.policy_data.content_type == "scap-security-guide":
195			if not common.ssg_available():
196			msg = "SCAP Security Guide not found on the system"
197			raise KickstartValueError(msg)
198
199			self.policy_data.content_path = common.SSG_DIR + common.SSG_CONTENT
200
201			def __str__(self):
202			"""Generate the kickstart representation.
203
204			What should end up in the resulting kickstart file,
205			i.e. string representation of the stored data.
206
207			:return: a string
208			"""
209			if not self.policy_data.profile_id:
210			return ""
211
212			ret = "%%addon %s" % self.name
213			ret += "\n%s" % key_value_pair("content-type", self.policy_data.content_type)
214
215			if self.policy_data.content_url:
216			ret += "\n%s" % key_value_pair("content-url", self.policy_data.content_url)
217
218			if self.policy_data.datastream_id:
219			ret += "\n%s" % key_value_pair("datastream-id", self.policy_data.datastream_id)
220
221			if self.policy_data.xccdf_id:
222			ret += "\n%s" % key_value_pair("xccdf-id", self.policy_data.xccdf_id)
223
224			if (
225			self.policy_data.content_path
226			and self.policy_data.content_type != "scap-security-guide"):
227			ret += "\n%s" % key_value_pair("content-path", self.policy_data.content_path)
228
229			if self.policy_data.cpe_path:
230			ret += "\n%s" % key_value_pair("cpe-path", self.policy_data.cpe_path)
231
232			if self.policy_data.tailoring_path:
233			ret += "\n%s" % key_value_pair("tailoring-path", self.policy_data.tailoring_path)
234
235			ret += "\n%s" % key_value_pair("profile", self.policy_data.profile_id)
236
237			if self.policy_data.fingerprint:
238			ret += "\n%s" % key_value_pair("fingerprint", self.policy_data.fingerprint)
239
240			if self.policy_data.certificates:
241			ret += "\n%s" % key_value_pair("certificates", self.policy_data.certificates)
242
243			if self.policy_data.remediate:
244			ret += "\n%s" % key_value_pair("remediate", self.policy_data.remediate)
245
246			ret += "\n%end\n\n"
247			return ret
248
249
250			def get_oscap_kickstart_data(name):
251			class NamedOSCAPKickstartData(OSCAPKickstartData):
252			def __init__(self):
253			super().__init__()
254			self.name = name
255
256			return NamedOSCAPKickstartData
257
258
259			class OSCAPKickstartSpecification(KickstartSpecification):
260			"""The kickstart specification of the OSCAP service."""
261
262			addons = {
263			name: get_oscap_kickstart_data(name) for name in common.ADDON_NAMES
264			}
265

OpenSCAP / oscap-anaconda-addon

Push — master ( c97ece...6b05e2 )

org_fedora_oscap.service.kickstart B

Complexity

Size/Duplication

Importance

16 Methods

2 Functions

How to fix Complexity

Complexity

Duplication Side-by-Side

Filter issues like