cfg-gen-for-certs.gmp.main() - Code Metrics - greenbone/gvm-tools - Measure and Improve Code Quality continuously with Scrutinizer

cfg-gen-for-certs.gmp.main() A
last analyzed 2021-02-02 09:40 UTC

↳ Parent: cfg-gen-for-certs.gmp

Complexity

Conditions

Size

Total Lines	10
Code Lines	5

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	1
eloc	5
nop	2
dl	0
loc	10
rs	10
c	0
b	0
f	0

# -*- coding: utf-8 -*-
# Copyright (C) 2017-2021 Greenbone Networks GmbH
#
# SPDX-License-Identifier: GPL-3.0-or-later
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.

import sys

from gvm.errors import GvmError


def check_args(args):
    len_args = len(args.script) - 1
    if len_args != 1:
        message = """
        This script creates a new scan config with nvts from a given CERT-Bund!
        It needs one parameter after the script name.

        1. <cert>   -- Name or ID of the CERT-Bund

        Example:
            $ gvm-script --gmp-username name --gmp-password pass \
    ssh --hostname <gsm> scripts/cfg-gen-for-certs.gmp.py CB-K16/0943
        """
        print(message)
        sys.exit()


def create_config(gmp, cert_bund_name):
    cert_bund_details = gmp.get_info(
        info_id=cert_bund_name, info_type=gmp.types.InfoType.CERT_BUND_ADV
    )

    list_cves = cert_bund_details.xpath(
        'info/cert_bund_adv/raw_data/Advisory/CVEList/CVE/text()'
    )

    nvt_dict = dict()
    counter = 0

    for cve in list_cves:
        # Get all nvts of this cve
        cve_info = gmp.get_info(info_id=cve, info_type=gmp.types.InfoType.CVE)
        nvts = cve_info.xpath('info/cve/nvts/nvt')

        for nvt in nvts:
            counter += 1
            oid = nvt.xpath('@oid')[0]

            # We need the nvt family to modify scan config
            nvt_data = gmp.get_nvt(oid)
            family = nvt_data.xpath('nvt/family/text()')[0]

            # Create key value map
            if family in nvt_dict and oid not in nvt_dict[family]:
                nvt_dict[family].append(oid)
            else:
                nvt_dict[family] = [oid]

    # Create new config
    copy_id = '085569ce-73ed-11df-83c3-002264764cea'
    config_name = 'scanconfig_for_%s' % cert_bund_name
    config_id = ''

    try:
        res = gmp.create_config(copy_id, config_name)
        config_id = res.xpath('@id')[0]

        # Modify the config with the nvts oid
        for family, nvt_oid in nvt_dict.items():
            gmp.modify_config(config_id, nvt_oids=nvt_oid, family=family)

        # This nvts must be present to work
        family = 'Port scanners'
        nvts = ['1.3.6.1.4.1.25623.1.0.14259', '1.3.6.1.4.1.25623.1.0.100315']
        gmp.modify_config(config_id=config_id, nvt_oids=nvts, family=family)

    except GvmError:
        print('Config exist')


def main(gmp, args):
    # pylint: disable=undefined-variable

    check_args(args)

    cert_bund_name = args.script[1]

    print('Creating scan config for {0}'.format(cert_bund_name))

    create_config(gmp, cert_bund_name)


if __name__ == '__gmp__':
    main(gmp, args)



1			# -- coding: utf-8 --
2			# Copyright (C) 2017-2021 Greenbone Networks GmbH
3			#
4			# SPDX-License-Identifier: GPL-3.0-or-later
5			#
6			# This program is free software: you can redistribute it and/or modify
7			# it under the terms of the GNU General Public License as published by
8			# the Free Software Foundation, either version 3 of the License, or
9			# (at your option) any later version.
10			#
11			# This program is distributed in the hope that it will be useful,
12			# but WITHOUT ANY WARRANTY; without even the implied warranty of
13			# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14			# GNU General Public License for more details.
15			#
16			# You should have received a copy of the GNU General Public License
17			# along with this program. If not, see <http://www.gnu.org/licenses/>.
18
19			import sys
20
21			from gvm.errors import GvmError
22
23
24			def check_args(args):
25			len_args = len(args.script) - 1
26			if len_args != 1:
27			message = """
28			This script creates a new scan config with nvts from a given CERT-Bund!
29			It needs one parameter after the script name.
30
31			1. <cert> -- Name or ID of the CERT-Bund
32
33			Example:
34			$ gvm-script --gmp-username name --gmp-password pass \
35			ssh --hostname <gsm> scripts/cfg-gen-for-certs.gmp.py CB-K16/0943
36			"""
37			print(message)
38			sys.exit()
39
40
41			def create_config(gmp, cert_bund_name):
42			cert_bund_details = gmp.get_info(
43			info_id=cert_bund_name, info_type=gmp.types.InfoType.CERT_BUND_ADV
44			)
45
46			list_cves = cert_bund_details.xpath(
47			'info/cert_bund_adv/raw_data/Advisory/CVEList/CVE/text()'
48			)
49
50			nvt_dict = dict()
51			counter = 0
52
53			for cve in list_cves:
54			# Get all nvts of this cve
55			cve_info = gmp.get_info(info_id=cve, info_type=gmp.types.InfoType.CVE)
56			nvts = cve_info.xpath('info/cve/nvts/nvt')
57
58			for nvt in nvts:
59			counter += 1
60			oid = nvt.xpath('@oid')[0]
61
62			# We need the nvt family to modify scan config
63			nvt_data = gmp.get_nvt(oid)
64			family = nvt_data.xpath('nvt/family/text()')[0]
65
66			# Create key value map
67			if family in nvt_dict and oid not in nvt_dict[family]:
68			nvt_dict[family].append(oid)
69			else:
70			nvt_dict[family] = [oid]
71
72			# Create new config
73			copy_id = '085569ce-73ed-11df-83c3-002264764cea'
74			config_name = 'scanconfig_for_%s' % cert_bund_name
75			config_id = ''
76
77			try:
78			res = gmp.create_config(copy_id, config_name)
79			config_id = res.xpath('@id')[0]
80
81			# Modify the config with the nvts oid
82			for family, nvt_oid in nvt_dict.items():
83			gmp.modify_config(config_id, nvt_oids=nvt_oid, family=family)
84
85			# This nvts must be present to work
86			family = 'Port scanners'
87			nvts = ['1.3.6.1.4.1.25623.1.0.14259', '1.3.6.1.4.1.25623.1.0.100315']
88			gmp.modify_config(config_id=config_id, nvt_oids=nvts, family=family)
89
90			except GvmError:
91			print('Config exist')
92
93
94			def main(gmp, args):
95			# pylint: disable=undefined-variable
96
97			check_args(args)
98
99			cert_bund_name = args.script[1]
100
101			print('Creating scan config for {0}'.format(cert_bund_name))
102
103			create_config(gmp, cert_bund_name)
104
105
106			if __name__ == '__gmp__':
107			main(gmp, args)
			0 ignored issues – show Comprehensibility Best Practice introduced 2020-03-19 10:34 UTC by Report Bug Copy Issue Report The variable `gmp` does not seem to be defined. Loading history... Comprehensibility Best Practice introduced 2020-03-19 10:34 UTC by Report Bug Copy Issue Report The variable `args` does not seem to be defined. Loading history...
108

greenbone / gvm-tools

cfg-gen-for-certs.gmp.main() A last analyzed 2021-02-02 09:40 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

cfg-gen-for-certs.gmp.main() A
last analyzed 2021-02-02 09:40 UTC