aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSebastien Delafond <seb>2016-07-19 09:54:03 +0000
committerSebastien Delafond <seb>2016-07-19 09:54:03 +0000
commiteffbfb12858505a3c7aae46e212e077d22bfe7f3 (patch)
treea6f23494ebf47ef4a924dde24bd619e6d63963a5
parentba1d809666059315db391a539920b342bc777ffe (diff)
Fix messed-up tab-based indentation that I can't for the life get to
work with in emacs. CVS version numbers english/security/oval/parseDsa2Oval.py: 1.3 -> 1.4 english/security/oval/oval/definition/generator.py: 1.10 -> 1.11 english/security/oval/oval/parser/dsa.py: 1.4 -> 1.5 english/security/oval/oval/parser/wml.py: 1.4 -> 1.5
Diffstat
-rw-r--r--english/security/oval/oval/definition/generator.py906
-rw-r--r--english/security/oval/oval/parser/dsa.py188
-rw-r--r--english/security/oval/oval/parser/wml.py84
-rwxr-xr-xenglish/security/oval/parseDsa2Oval.py56
4 files changed, 617 insertions, 617 deletions
diff --git a/english/security/oval/oval/definition/generator.py b/english/security/oval/oval/definition/generator.py
index 60c026c28ea..32c9e3cec33 100644
--- a/english/security/oval/oval/definition/generator.py
+++ b/english/security/oval/oval/definition/generator.py
@@ -19,44 +19,44 @@ import re
RE_XML_ILLEGAL = u'([\u0000-\u0008\u000b-\u000c\u000e-\u001f\ufffe-\uffff])' + u'|' + u'([%s-%s][^%s-%s])|([^%s-%s][%s-%s])|([%s-%s]$)|(^[%s-%s])' % (unichr(0xd800),unichr(0xdbff),unichr(0xdc00),unichr(0xdfff), unichr(0xd800),unichr(0xdbff),unichr(0xdc00),unichr(0xdfff), unichr(0xd800),unichr(0xdbff),unichr(0xdc00),unichr(0xdfff))
regex = re.compile(RE_XML_ILLEGAL)
-
+
class OvalGeneratorException (Exception):
pass
class DSAFormatException (OvalGeneratorException):
- code = 1
-
+ code = 1
+
def __createXMLElement (name, descr = None, attrs = {}):
- """
- Create XML element with text descr and attributes attrs
-
- Keyword arguments:
- name -- Name of XML element
- descr -- content of textNode (default None)
- attrs -- attributes of element (default {})
-
- Return created XML element
- """
-
- doc = xml.dom.minidom.Document ()
- element = doc.createElement (name)
-
- for (attr, value) in attrs.items():
- for match in regex.finditer(attr):
- attr = attr[:match.start()] + "?" + attr[match.end():]
- for match in regex.finditer(value):
- value = value[:match.start()] + "?" + value[match.end():]
- attribute = doc.createAttribute (attr.encode("utf8"))
- attribute.value = value.encode("utf8")
- element.attributes.setNamedItem (attribute)
-
- if descr != None:
- for match in regex.finditer(descr):
- descr = descr[:match.start()] + "?" + descr[match.end():]
- description = doc.createTextNode (descr.encode("utf8"))
- element.appendChild (description)
-
- return (element)
+ """
+ Create XML element with text descr and attributes attrs
+
+ Keyword arguments:
+ name -- Name of XML element
+ descr -- content of textNode (default None)
+ attrs -- attributes of element (default {})
+
+ Return created XML element
+ """
+
+ doc = xml.dom.minidom.Document ()
+ element = doc.createElement (name)
+
+ for (attr, value) in attrs.items():
+ for match in regex.finditer(attr):
+ attr = attr[:match.start()] + "?" + attr[match.end():]
+ for match in regex.finditer(value):
+ value = value[:match.start()] + "?" + value[match.end():]
+ attribute = doc.createAttribute (attr.encode("utf8"))
+ attribute.value = value.encode("utf8")
+ element.attributes.setNamedItem (attribute)
+
+ if descr != None:
+ for match in regex.finditer(descr):
+ descr = descr[:match.start()] + "?" + descr[match.end():]
+ description = doc.createTextNode (descr.encode("utf8"))
+ element.appendChild (description)
+
+ return (element)
namespace = "oval:org.debian.oval"
tests = __createXMLElement ("tests")
@@ -76,454 +76,454 @@ def getOvalId(cve):
return cve[3:].replace('-', '')
def __getNewId (type):
- """Generate new unique id for tests, objects or states
-
- Argument keqywords:
- type -- type of generated id test | object | state
-
- return Generate id like <namespace>:tst|obj|ste:<id>
- """
- global testsCurId, objectsCurId, statesCurId
-
- if type == "test":
- result = "%s:tst:%d" % (namespace, testsCurId)
- testsCurId += 1
-
- if type == "object":
- result = "%s:obj:%d" % (namespace, objectsCurId)
- objectsCurId += 1
-
- if type == "state":
- result = "%s:ste:%d" % (namespace, statesCurId)
- statesCurId += 1
-
- return (result)
+ """Generate new unique id for tests, objects or states
+
+ Argument keqywords:
+ type -- type of generated id test | object | state
+
+ return Generate id like <namespace>:tst|obj|ste:<id>
+ """
+ global testsCurId, objectsCurId, statesCurId
+
+ if type == "test":
+ result = "%s:tst:%d" % (namespace, testsCurId)
+ testsCurId += 1
+
+ if type == "object":
+ result = "%s:obj:%d" % (namespace, objectsCurId)
+ objectsCurId += 1
+
+ if type == "state":
+ result = "%s:ste:%d" % (namespace, statesCurId)
+ statesCurId += 1
+
+ return (result)
def __createOVALDpkginfoObject (name):
- """ Generate OVAL dpkginfo_object definition """
-
- if not testsHash["obj"].has_key(name):
- objectId = __getNewId ("object");
- object = __createXMLElement("dpkginfo_object",
- attrs={"id":objectId,
- "version":"1",
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#linux"})
- object.appendChild ( __createXMLElement ("name", name))
- objects.appendChild (object)
-
- testsHash["obj"][name] = objectId
-
- return (testsHash["obj"][name])
+ """ Generate OVAL dpkginfo_object definition """
+
+ if not testsHash["obj"].has_key(name):
+ objectId = __getNewId ("object");
+ object = __createXMLElement("dpkginfo_object",
+ attrs={"id":objectId,
+ "version":"1",
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#linux"})
+ object.appendChild ( __createXMLElement ("name", name))
+ objects.appendChild (object)
+
+ testsHash["obj"][name] = objectId
+
+ return (testsHash["obj"][name])
def __createOVALTextfilecontentObject (pattern, path = "/etc", filename = "debian_version"):
- """ Generate OVAL textfilecontent_object definition """
- name = path + filename + pattern
-
- if not testsHash["obj"].has_key(name):
- objectId = __getNewId ("object");
- object = __createXMLElement("textfilecontent_object",
- attrs={"id":objectId,
- "version":"1",
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"})
- object.appendChild ( __createXMLElement ("path", path))
- object.appendChild ( __createXMLElement ("filename", filename))
- object.appendChild ( __createXMLElement ("line", pattern, attrs={"operation" : "pattern match"}))
- objects.appendChild (object)
-
- testsHash["obj"][name] = objectId
-
- return (testsHash["obj"][name])
+ """ Generate OVAL textfilecontent_object definition """
+ name = path + filename + pattern
+
+ if not testsHash["obj"].has_key(name):
+ objectId = __getNewId ("object");
+ object = __createXMLElement("textfilecontent_object",
+ attrs={"id":objectId,
+ "version":"1",
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"})
+ object.appendChild ( __createXMLElement ("path", path))
+ object.appendChild ( __createXMLElement ("filename", filename))
+ object.appendChild ( __createXMLElement ("line", pattern, attrs={"operation" : "pattern match"}))
+ objects.appendChild (object)
+
+ testsHash["obj"][name] = objectId
+
+ return (testsHash["obj"][name])
def __createOVALUnameObject ():
- """ Generate OVAL textfilecontent_object definition """
- name = "uname_object"
-
- if not testsHash["obj"].has_key(name):
- objectId = __getNewId ("object");
- object = __createXMLElement("uname_object",
- attrs={"id":objectId,
- "version":"1",
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#unix"})
- objects.appendChild (object)
-
- testsHash["obj"][name] = objectId
-
- return (testsHash["obj"][name])
+ """ Generate OVAL textfilecontent_object definition """
+ name = "uname_object"
+
+ if not testsHash["obj"].has_key(name):
+ objectId = __getNewId ("object");
+ object = __createXMLElement("uname_object",
+ attrs={"id":objectId,
+ "version":"1",
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#unix"})
+ objects.appendChild (object)
+
+ testsHash["obj"][name] = objectId
+
+ return (testsHash["obj"][name])
def __createOVALState (value, operation = "less than"):
- """ Generate OVAL state definition
-
- Use state hash for optimization of resulted XML
- """
- #TODO: Add arch state generation
- if not testsHash["dpkgSte"].has_key(operation) or not testsHash["dpkgSte"][operation].has_key(value):
- stateId = __getNewId ("state")
-
- state = __createXMLElement("dpkginfo_state",
- attrs={"id":stateId,
- "version":"1",
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#linux"})
- state.appendChild ( __createXMLElement ("evr", "0:"+value,
- {"datatype":"evr_string",
- "operation":operation}))
- states.appendChild (state)
-
- testsHash["dpkgSte"][operation] = {value : stateId}
-
- return (testsHash["dpkgSte"][operation][value])
+ """ Generate OVAL state definition
+
+ Use state hash for optimization of resulted XML
+ """
+ #TODO: Add arch state generation
+ if not testsHash["dpkgSte"].has_key(operation) or not testsHash["dpkgSte"][operation].has_key(value):
+ stateId = __getNewId ("state")
+
+ state = __createXMLElement("dpkginfo_state",
+ attrs={"id":stateId,
+ "version":"1",
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#linux"})
+ state.appendChild ( __createXMLElement ("evr", "0:"+value,
+ {"datatype":"evr_string",
+ "operation":operation}))
+ states.appendChild (state)
+
+ testsHash["dpkgSte"][operation] = {value : stateId}
+
+ return (testsHash["dpkgSte"][operation][value])
def __createOVALUnameState (field, value, operation = "equals"):
- """ Generate OVAL uname state definition
-
- Use unameArchTable to convert dsa arch to uname arch value
- """
-
- try:
- value = unameArchTable[value]
- except KeyError:
- pass
-
- #TODO: Add arch state generation
- if not testsHash["unameSte"].has_key(operation) or not testsHash["unameSte"][operation].has_key(value):
- stateId = __getNewId ("state")
-
- state = __createXMLElement("uname_state",
- attrs={"id":stateId,
- "version":"1",
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#unix"})
- state.appendChild ( __createXMLElement (field, value,
- {"operation":operation}))
- states.appendChild (state)
-
- testsHash["unameSte"][operation] = {value : stateId}
-
- return (testsHash["unameSte"][operation][value])
+ """ Generate OVAL uname state definition
+
+ Use unameArchTable to convert dsa arch to uname arch value
+ """
+
+ try:
+ value = unameArchTable[value]
+ except KeyError:
+ pass
+
+ #TODO: Add arch state generation
+ if not testsHash["unameSte"].has_key(operation) or not testsHash["unameSte"][operation].has_key(value):
+ stateId = __getNewId ("state")
+
+ state = __createXMLElement("uname_state",
+ attrs={"id":stateId,
+ "version":"1",
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#unix"})
+ state.appendChild ( __createXMLElement (field, value,
+ {"operation":operation}))
+ states.appendChild (state)
+
+ testsHash["unameSte"][operation] = {value : stateId}
+
+ return (testsHash["unameSte"][operation][value])
def __createOVALTextfilecontentState (value, operation = "equals"):
- """ Generate OVAL state definition
-
- Use state hash for optimization of resulted XML
- """
- #TODO: Add arch state generation
- if not testsHash["fileSte"].has_key(operation) or not testsHash["fileSte"][operation].has_key(value):
- stateId = __getNewId ("state")
-
- state = __createXMLElement("textfilecontent_state",
- attrs={"id":stateId,
- "version":"1",
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"})
- state.appendChild ( __createXMLElement ("line", value,
- {"operation":operation}))
- states.appendChild (state)
-
- testsHash["fileSte"][operation] = {value : stateId}
-
- return (testsHash["fileSte"][operation][value])
-
+ """ Generate OVAL state definition
+
+ Use state hash for optimization of resulted XML
+ """
+ #TODO: Add arch state generation
+ if not testsHash["fileSte"].has_key(operation) or not testsHash["fileSte"][operation].has_key(value):
+ stateId = __getNewId ("state")
+
+ state = __createXMLElement("textfilecontent_state",
+ attrs={"id":stateId,
+ "version":"1",
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"})
+ state.appendChild ( __createXMLElement ("line", value,
+ {"operation":operation}))
+ states.appendChild (state)
+
+ testsHash["fileSte"][operation] = {value : stateId}
+
+ return (testsHash["fileSte"][operation][value])
+
def __createDPKGTest(name, version):
- """ Generate OVAL DPKG test """
-
- ref = __getNewId ("test")
- test = __createXMLElement("dpkginfo_test",
- attrs={"id":ref,
- "version":"1",
- "check":"all",
- "check_existence":"at_least_one_exists",
- "comment":"%s is earlier than %s" % (name, version),
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#linux"
- })
- test.appendChild ( __createXMLElement("object", attrs={"object_ref" : __createOVALDpkginfoObject (name)}))
- test.appendChild ( __createXMLElement("state", attrs={"state_ref" : __createOVALState (version)}))
- tests.appendChild(test)
-
- return (ref)
-
+ """ Generate OVAL DPKG test """
+
+ ref = __getNewId ("test")
+ test = __createXMLElement("dpkginfo_test",
+ attrs={"id":ref,
+ "version":"1",
+ "check":"all",
+ "check_existence":"at_least_one_exists",
+ "comment":"%s is earlier than %s" % (name, version),
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#linux"
+ })
+ test.appendChild ( __createXMLElement("object", attrs={"object_ref" : __createOVALDpkginfoObject (name)}))
+ test.appendChild ( __createXMLElement("state", attrs={"state_ref" : __createOVALState (version)}))
+ tests.appendChild(test)
+
+ return (ref)
+
def __createTest(testType, value):
- """ Generate OVAL test for release or architecture cases"""
-
- if not testsHash[testType].has_key(value):
- comment = None
-
- ref = __getNewId("test")
-
- if testType == "release":
- objectId = __createOVALTextfilecontentObject ("\d\.\d")
- comment = "Debian GNU/Linux %s is installed" % value
-
- test = __createXMLElement("textfilecontent_test",
- attrs={"id":ref,
- "version":"1",
- "check":"all",
- "check_existence":"at_least_one_exists",
- "comment":comment,
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"
- })
- test.appendChild ( __createXMLElement("object", attrs={"object_ref" : objectId}))
- test.appendChild ( __createXMLElement("state", attrs={"state_ref" : __createOVALTextfilecontentState (value, "equals")}))
-
- else:
- objectId = __createOVALUnameObject ()
- comment = "Installed architecture is %s" % value
-
- test = __createXMLElement("uname_test",
- attrs={"id":ref,
- "version":"1",
- "check":"all",
- "check_existence":"at_least_one_exists",
- "comment":comment,
- "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#unix"
- })
- test.appendChild ( __createXMLElement("object", attrs={"object_ref" : objectId}))
- if value != "all":
- test.appendChild ( __createXMLElement("state", attrs={"state_ref" : __createOVALUnameState ("processor_type", value, "equals")}))
-
- tests.appendChild(test)
-
- testsHash[testType][value] = ref
-
- return (testsHash[testType][value])
+ """ Generate OVAL test for release or architecture cases"""
+
+ if not testsHash[testType].has_key(value):
+ comment = None
+
+ ref = __getNewId("test")
+
+ if testType == "release":
+ objectId = __createOVALTextfilecontentObject ("\d\.\d")
+ comment = "Debian GNU/Linux %s is installed" % value
+
+ test = __createXMLElement("textfilecontent_test",
+ attrs={"id":ref,
+ "version":"1",
+ "check":"all",
+ "check_existence":"at_least_one_exists",
+ "comment":comment,
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#independent"
+ })
+ test.appendChild ( __createXMLElement("object", attrs={"object_ref" : objectId}))
+ test.appendChild ( __createXMLElement("state", attrs={"state_ref" : __createOVALTextfilecontentState (value, "equals")}))
+
+ else:
+ objectId = __createOVALUnameObject ()
+ comment = "Installed architecture is %s" % value
+
+ test = __createXMLElement("uname_test",
+ attrs={"id":ref,
+ "version":"1",
+ "check":"all",
+ "check_existence":"at_least_one_exists",
+ "comment":comment,
+ "xmlns":"http://oval.mitre.org/XMLSchema/oval-definitions-5#unix"
+ })
+ test.appendChild ( __createXMLElement("object", attrs={"object_ref" : objectId}))
+ if value != "all":
+ test.appendChild ( __createXMLElement("state", attrs={"state_ref" : __createOVALUnameState ("processor_type", value, "equals")}))
+
+ tests.appendChild(test)
+
+ testsHash[testType][value] = ref
+
+ return (testsHash[testType][value])
def __createGeneratorHeader ():
- """
- Create OVAL definitions XML generator element.
-
- return xml.dom.minidom.Document with header information
- """
-
- doc = xml.dom.minidom.Document ()
- generator = doc.createElement ("generator")
+ """
+ Create OVAL definitions XML generator element.
+
+ return xml.dom.minidom.Document with header information
+ """
+
+ doc = xml.dom.minidom.Document ()
+ generator = doc.createElement ("generator")
- generator.appendChild ( __createXMLElement ("oval:product_name", "Debian") )
- generator.appendChild ( __createXMLElement ("oval:schema_version", "5.3") )
- generator.appendChild ( __createXMLElement ("oval:timestamp", datetime.datetime.now().strftime ("%Y-%m-%dT%H:%M:%S.188-04:00")) )
+ generator.appendChild ( __createXMLElement ("oval:product_name", "Debian") )
+ generator.appendChild ( __createXMLElement ("oval:schema_version", "5.3") )
+ generator.appendChild ( __createXMLElement ("oval:timestamp", datetime.datetime.now().strftime ("%Y-%m-%dT%H:%M:%S.188-04:00")) )
- return (generator)
+ return (generator)
def createPlatformDefinition (release, data, dsa):
- """ Generate OVAL definitions for current release
-
- Generate full criteria tree for specified release. Tests, states and objects
- stored in global dictionaries.
- Use differ module for otimize generated tree.
-
- Argument keywords:
- release -- Debian release
- data -- dict with information about packages
- dsa - DSA id
-
- return Generated XML fragment
- """
- #Raise exception if we receive too small data
- if len(data) == 0:
- logging.log(logging.WARNING, "DSA %s: Information of affected platforms is not available." % dsa)
-
- softwareCriteria = __createXMLElement ("criteria", attrs = {"comment" : "Release section", "operator" : "AND"})
- softwareCriteria.appendChild ( __createXMLElement ("criterion", attrs={"test_ref" : __createTest("release", release), "comment" : "Debian %s is installed" % release}))
-
- archCriteria = __createXMLElement ("criteria", attrs = {"comment" : "Architecture section", "operator" : "OR"})
-
- # Handle architecture independed section
- if data.has_key ("all"):
- archIndepCriteria = __createXMLElement ("criteria", attrs={"comment" : "Architecture independent section", "operator" : "AND"})
-
- archIndepCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createTest("arch", "all"), "comment" : "all architecture"}))
- #Build packages section only if we have more then one package
- if len (data["all"]) > 1:
- packageCriteria = __createXMLElement ("criteria", attrs={"comment" : "Packages section", "operator" : "OR"})
- archIndepCriteria.appendChild (packageCriteria)
- else:
- packageCriteria = archIndepCriteria
-
- for pkg in data["all"].keys():
- packageCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createDPKGTest(pkg, data["all"][pkg]), "comment" : "%s DPKG is earlier than %s" % (pkg, data["all"][pkg])}))
-
- archCriteria.appendChild (archIndepCriteria)
-
- # Optimize packages tree in 2 stages
- diff = differ ()
- for i in range(2):
-
- if i == 0:
- dsaData = data
- else:
- dsaData = diff.getDiffer()
-
- diff.Clean()
- for (key, value) in dsaData.iteritems():
- if key != "all":
- diff.compareElement(key, value)
-
- eq = diff.getEqual()
- di = diff.getDiffer()
-
- # Generate XML for optimized packages
- if (len(eq)):
- if len(diff.getArchs()) != releaseArchHash[release]:
- archDependCriteria = __createXMLElement ("criteria", attrs={"comment" : "Architecture depended section", "operator" : "AND"})
-
- supportedArchCriteria = __createXMLElement ("criteria", attrs={"comment" : "Supported architectures section", "operator" : "OR"})
- for arch in diff.getArchs():
- supportedArchCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createTest("arch", arch), "comment" : "%s architecture" % arch}))
- archDependCriteria.appendChild (supportedArchCriteria)
-
- packageCriteria = __createXMLElement ("criteria", attrs={"comment" : "Packages section", "operator" : "OR"})
- for bpkg in eq.keys():
- packageCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createDPKGTest(bpkg, eq[bpkg]), "comment" : "%s DPKG is earlier than %s" % (bpkg, eq[bpkg])}))
-
- if len(diff.getArchs()) != releaseArchHash[release]:
- archDependCriteria.appendChild (packageCriteria)
- archCriteria.appendChild (archDependCriteria)
- else:
- archCriteria.appendChild (packageCriteria)
-
- # Generate XML for all other packages
- if len(di):
- archDependCriteria = __createXMLElement ("criteria", attrs={"comment" : "Architecture depended section", "operator" : "AND"})
-
- for (key, value) in di.iteritems():
- supportedPlatformCriteria = __createXMLElement ("criteria", attrs={"comment" : "Supported platform section", "operator" : "AND"})
- supportedPlatformCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createTest("arch", key), "comment" : "%s architecture" % key}))
-
- packageCriteria = __createXMLElement ("criteria", attrs={"comment" : "Packages section", "operator" : "OR"})
-
- for bpkg in di[key].keys():
- packageCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createDPKGTest(bpkg, di[key][bpkg]), "comment" : "%s DPKG is earlier than %s" % (bpkg, di[key][bpkg])}))
- supportedPlatformCriteria.appendChild (packageCriteria)
-
- archDependCriteria.appendChild (supportedPlatformCriteria)
- archCriteria.appendChild (archDependCriteria)
-
- softwareCriteria.appendChild (archCriteria)
-
- return (softwareCriteria)
+ """ Generate OVAL definitions for current release
+
+ Generate full criteria tree for specified release. Tests, states and objects
+ stored in global dictionaries.
+ Use differ module for otimize generated tree.
+
+ Argument keywords:
+ release -- Debian release
+ data -- dict with information about packages
+ dsa - DSA id
+
+ return Generated XML fragment
+ """
+ #Raise exception if we receive too small data
+ if len(data) == 0:
+ logging.log(logging.WARNING, "DSA %s: Information of affected platforms is not available." % dsa)
+
+ softwareCriteria = __createXMLElement ("criteria", attrs = {"comment" : "Release section", "operator" : "AND"})
+ softwareCriteria.appendChild ( __createXMLElement ("criterion", attrs={"test_ref" : __createTest("release", release), "comment" : "Debian %s is installed" % release}))
+
+ archCriteria = __createXMLElement ("criteria", attrs = {"comment" : "Architecture section", "operator" : "OR"})
+
+ # Handle architecture independed section
+ if data.has_key ("all"):
+ archIndepCriteria = __createXMLElement ("criteria", attrs={"comment" : "Architecture independent section", "operator" : "AND"})
+
+ archIndepCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createTest("arch", "all"), "comment" : "all architecture"}))
+ #Build packages section only if we have more then one package
+ if len (data["all"]) > 1:
+ packageCriteria = __createXMLElement ("criteria", attrs={"comment" : "Packages section", "operator" : "OR"})
+ archIndepCriteria.appendChild (packageCriteria)
+ else:
+ packageCriteria = archIndepCriteria
+
+ for pkg in data["all"].keys():
+ packageCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createDPKGTest(pkg, data["all"][pkg]), "comment" : "%s DPKG is earlier than %s" % (pkg, data["all"][pkg])}))
+
+ archCriteria.appendChild (archIndepCriteria)
+
+ # Optimize packages tree in 2 stages
+ diff = differ ()
+ for i in range(2):
+
+ if i == 0:
+ dsaData = data
+ else:
+ dsaData = diff.getDiffer()
+
+ diff.Clean()
+ for (key, value) in dsaData.iteritems():
+ if key != "all":
+ diff.compareElement(key, value)
+
+ eq = diff.getEqual()
+ di = diff.getDiffer()
+
+ # Generate XML for optimized packages
+ if (len(eq)):
+ if len(diff.getArchs()) != releaseArchHash[release]:
+ archDependCriteria = __createXMLElement ("criteria", attrs={"comment" : "Architecture depended section", "operator" : "AND"})
+
+ supportedArchCriteria = __createXMLElement ("criteria", attrs={"comment" : "Supported architectures section", "operator" : "OR"})
+ for arch in diff.getArchs():
+ supportedArchCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createTest("arch", arch), "comment" : "%s architecture" % arch}))
+ archDependCriteria.appendChild (supportedArchCriteria)
+
+ packageCriteria = __createXMLElement ("criteria", attrs={"comment" : "Packages section", "operator" : "OR"})
+ for bpkg in eq.keys():
+ packageCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createDPKGTest(bpkg, eq[bpkg]), "comment" : "%s DPKG is earlier than %s" % (bpkg, eq[bpkg])}))
+
+ if len(diff.getArchs()) != releaseArchHash[release]:
+ archDependCriteria.appendChild (packageCriteria)
+ archCriteria.appendChild (archDependCriteria)
+ else:
+ archCriteria.appendChild (packageCriteria)
+
+ # Generate XML for all other packages
+ if len(di):
+ archDependCriteria = __createXMLElement ("criteria", attrs={"comment" : "Architecture depended section", "operator" : "AND"})
+
+ for (key, value) in di.iteritems():
+ supportedPlatformCriteria = __createXMLElement ("criteria", attrs={"comment" : "Supported platform section", "operator" : "AND"})
+ supportedPlatformCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createTest("arch", key), "comment" : "%s architecture" % key}))
+
+ packageCriteria = __createXMLElement ("criteria", attrs={"comment" : "Packages section", "operator" : "OR"})
+
+ for bpkg in di[key].keys():
+ packageCriteria.appendChild ( __createXMLElement ("criterion", attrs = {"test_ref" : __createDPKGTest(bpkg, di[key][bpkg]), "comment" : "%s DPKG is earlier than %s" % (bpkg, di[key][bpkg])}))
+ supportedPlatformCriteria.appendChild (packageCriteria)
+
+ archDependCriteria.appendChild (supportedPlatformCriteria)
+ archCriteria.appendChild (archDependCriteria)
+
+ softwareCriteria.appendChild (archCriteria)
+
+ return (softwareCriteria)
def createDefinition (dsa, dsaref):
- """ Generate OVAL header of Definition tag
-
- Print general informaton about OVAL definition. Use createPlatformDefinition for generate criteria
- sections for each affected release.
-
- Argument keywords:
- dsa -- DSA dentificator
- dsaref -- DSA parsed data
- """
- if not dsaref.has_key("release"):
- logging.log(logging.WARNING, "DSA %s: Release definition not well formatted. Ignoring this DSA." % dsa)
- raise DSAFormatException
-
- if not dsaref.has_key("packages"):
- logging.log(logging.WARNING, "DSA %s: Package information missed. Ignoring this DSA." % dsa)
- dsaref["packages"] = ""
-
- if not dsaref.has_key("title"):
- logging.log(logging.WARNING, "DSA %s: title information missed." % dsa)
- dsaref["title"] = ""
-
- if not dsaref.has_key("description"):
- logging.log(logging.WARNING, "DSA %s: Description information missed." % dsa)
- dsaref["description"] = ""
-
- if not dsaref.has_key("moreinfo"):
- logging.log(logging.WARNING, "DSA %s: Moreinfo information missed." % dsa)
- dsaref["moreinfo"] = ""
-
- if not dsaref.has_key("secrefs"):
- logging.log(logging.WARNING, "DSA %s: Secrefs information missed." % dsa)
- dsaref["secrefs"] = ""
+ """ Generate OVAL header of Definition tag
+
+ Print general informaton about OVAL definition. Use createPlatformDefinition for generate criteria
+ sections for each affected release.
+
+ Argument keywords:
+ dsa -- DSA dentificator
+ dsaref -- DSA parsed data
+ """
+ if not dsaref.has_key("release"):
+ logging.log(logging.WARNING, "DSA %s: Release definition not well formatted. Ignoring this DSA." % dsa)
+ raise DSAFormatException
+
+ if not dsaref.has_key("packages"):
+ logging.log(logging.WARNING, "DSA %s: Package information missed. Ignoring this DSA." % dsa)
+ dsaref["packages"] = ""
+
+ if not dsaref.has_key("title"):
+ logging.log(logging.WARNING, "DSA %s: title information missed." % dsa)
+ dsaref["title"] = ""
+
+ if not dsaref.has_key("description"):
+ logging.log(logging.WARNING, "DSA %s: Description information missed." % dsa)
+ dsaref["description"] = ""
+
+ if not dsaref.has_key("moreinfo"):
+ logging.log(logging.WARNING, "DSA %s: Moreinfo information missed." % dsa)
+ dsaref["moreinfo"] = ""
+
+ if not dsaref.has_key("secrefs"):
+ logging.log(logging.WARNING, "DSA %s: Secrefs information missed." % dsa)
+ dsaref["secrefs"] = ""
doc = xml.dom.minidom.Document ()
- ### Definition block: Metadata, Notes, Criteria
+ ### Definition block: Metadata, Notes, Criteria
definition = __createXMLElement ("definition", attrs = {"id" : "oval:org.debian:def:%s" % getOvalId(dsaref["description"]), "version" : "1", "class" : "vulnerability"})
-
- ### Definition : Metadata : title, affected, reference, description ###
- metadata = __createXMLElement ("metadata")
- metadata.appendChild (__createXMLElement ("title", dsaref["title"]))
-
- ### Definition : Metadata : Affected : platform, product ###
- affected = __createXMLElement ("affected", attrs = {"family" : "unix"})
- for platform in dsaref["release"]:
- affected.appendChild ( __createXMLElement ("platform", "Debian GNU/Linux %s" % platform))
- affected.appendChild ( __createXMLElement ("product", dsaref.get("packages")))
-
- metadata.appendChild (affected)
- ### Definition : Metadata : Affected : END ###
-
- refpatern = re.compile (r'((CVE|CAN)-[\d-]+)')
- for ref in dsaref.get("secrefs").split(" "):
- result = refpatern.search(ref)
- if result:
- (ref_id, source) = result.groups()
- metadata.appendChild ( __createXMLElement ("reference", attrs = {"source" : source, "ref_id" : ref_id, "ref_url" : "http://cve.mitre.org/cgi-bin/cvename.cgi?name=%s" % ref_id}) )
-
- #TODO: move this info to other place
- metadata.appendChild ( __createXMLElement ("description", dsaref["description"]))
- debianMetadata = __createXMLElement ("debian")
- if dsaref.has_key("date"):
- debianMetadata.appendChild ( __createXMLElement ("date", dsaref["date"]) )
- debianMetadata.appendChild ( __createXMLElement ("moreinfo", dsaref["moreinfo"]) )
- metadata.appendChild (debianMetadata)
- definition.appendChild ( metadata )
-
- ### Definition : Criteria ###
- if len(dsaref["release"]) > 1:
- #f we have more than one release - generate additional criteria section
- platformCriteria = __createXMLElement ("criteria", attrs = {"comment" : "Platform section", "operator" : "OR"})
- definition.appendChild (platformCriteria)
- else:
- platformCriteria = definition
-
- for platform in dsaref["release"]:
- data = dsaref["release"][platform]
- platformCriteria.appendChild (createPlatformDefinition(platform, data, dsa))
-
- ### Definition : Criteria END ###
- return (definition)
+ ### Definition : Metadata : title, affected, reference, description ###
+ metadata = __createXMLElement ("metadata")
+ metadata.appendChild (__createXMLElement ("title", dsaref["title"]))
+
+ ### Definition : Metadata : Affected : platform, product ###
+ affected = __createXMLElement ("affected", attrs = {"family" : "unix"})
+ for platform in dsaref["release"]:
+ affected.appendChild ( __createXMLElement ("platform", "Debian GNU/Linux %s" % platform))
+ affected.appendChild ( __createXMLElement ("product", dsaref.get("packages")))
+
+ metadata.appendChild (affected)
+ ### Definition : Metadata : Affected : END ###
+
+ refpatern = re.compile (r'((CVE|CAN)-[\d-]+)')
+ for ref in dsaref.get("secrefs").split(" "):
+ result = refpatern.search(ref)
+ if result:
+ (ref_id, source) = result.groups()
+ metadata.appendChild ( __createXMLElement ("reference", attrs = {"source" : source, "ref_id" : ref_id, "ref_url" : "http://cve.mitre.org/cgi-bin/cvename.cgi?name=%s" % ref_id}) )
+
+ #TODO: move this info to other place
+ metadata.appendChild ( __createXMLElement ("description", dsaref["description"]))
+ debianMetadata = __createXMLElement ("debian")
+ if dsaref.has_key("date"):
+ debianMetadata.appendChild ( __createXMLElement ("date", dsaref["date"]) )
+ debianMetadata.appendChild ( __createXMLElement ("moreinfo", dsaref["moreinfo"]) )
+ metadata.appendChild (debianMetadata)
+ definition.appendChild ( metadata )
+
+ ### Definition : Criteria ###
+ if len(dsaref["release"]) > 1:
+ #f we have more than one release - generate additional criteria section
+ platformCriteria = __createXMLElement ("criteria", attrs = {"comment" : "Platform section", "operator" : "OR"})
+ definition.appendChild (platformCriteria)
+ else:
+ platformCriteria = definition
+
+ for platform in dsaref["release"]:
+ data = dsaref["release"][platform]
+ platformCriteria.appendChild (createPlatformDefinition(platform, data, dsa))
+
+ ### Definition : Criteria END ###
+
+ return (definition)
def createOVALDefinitions (dsaref):
- """ Generate XML OVAL definition tree for range of DSA
-
- Generate namespace section and use other functions to generate definitions,
- tests, objects and states subsections.
-
- return -- Generated OVAL XML definition
- """
- doc = xml.dom.minidom.Document ()
-
- root = __createXMLElement ("oval_definitions",
- attrs= {
- "xsi:schemaLocation" : "http://oval.mitre.org/XMLSchema/oval-definitions-5#independent independent-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#linux linux-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd",
- "xmlns:xsi" : "http://www.w3.org/2001/XMLSchema-instance",
- "xmlns:ind-def " : "http://oval.mitre.org/XMLSchema/oval-definitions-5#independent",
- "xmlns:linux-def" : "http://oval.mitre.org/XMLSchema/oval-definitions-5#linux",
- "xmlns:oval-def" : "http://oval.mitre.org/XMLSchema/oval-definitions-5",
- "xmlns:unix-def" : "http://oval.mitre.org/XMLSchema/oval-definitions-5#unix",
- "xmlns" : "http://oval.mitre.org/XMLSchema/oval-definitions-5",
- "xmlns:oval" : "http://oval.mitre.org/XMLSchema/oval-common-5"
- }
- )
- doc.appendChild (root)
- root.appendChild ( __createGeneratorHeader () )
-
- definitions = doc.createElement ("definitions")
-
- keyids = dsaref.keys()
- keyids.sort()
- for dsa in keyids:
- try:
- definitions.appendChild (createDefinition(dsa, dsaref[dsa]))
- except DSAFormatException:
- logging.log (logging.WARNING, "DSA %s: Bad data file. Ignoring this DSA." % dsa)
-
- root.appendChild (definitions)
-
- root.appendChild(tests)
- root.appendChild(objects)
- root.appendChild(states)
-
- return doc
+ """ Generate XML OVAL definition tree for range of DSA
+
+ Generate namespace section and use other functions to generate definitions,
+ tests, objects and states subsections.
+
+ return -- Generated OVAL XML definition
+ """
+ doc = xml.dom.minidom.Document ()
+
+ root = __createXMLElement ("oval_definitions",
+ attrs= {
+ "xsi:schemaLocation" : "http://oval.mitre.org/XMLSchema/oval-definitions-5#independent independent-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#linux linux-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5#unix unix-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-definitions-5 oval-definitions-schema.xsd http://oval.mitre.org/XMLSchema/oval-common-5 oval-common-schema.xsd",
+ "xmlns:xsi" : "http://www.w3.org/2001/XMLSchema-instance",
+ "xmlns:ind-def " : "http://oval.mitre.org/XMLSchema/oval-definitions-5#independent",
+ "xmlns:linux-def" : "http://oval.mitre.org/XMLSchema/oval-definitions-5#linux",
+ "xmlns:oval-def" : "http://oval.mitre.org/XMLSchema/oval-definitions-5",
+ "xmlns:unix-def" : "http://oval.mitre.org/XMLSchema/oval-definitions-5#unix",
+ "xmlns" : "http://oval.mitre.org/XMLSchema/oval-definitions-5",
+ "xmlns:oval" : "http://oval.mitre.org/XMLSchema/oval-common-5"
+ }
+ )
+ doc.appendChild (root)
+ root.appendChild ( __createGeneratorHeader () )
+
+ definitions = doc.createElement ("definitions")
+
+ keyids = dsaref.keys()
+ keyids.sort()
+ for dsa in keyids:
+ try:
+ definitions.appendChild (createDefinition(dsa, dsaref[dsa]))
+ except DSAFormatException:
+ logging.log (logging.WARNING, "DSA %s: Bad data file. Ignoring this DSA." % dsa)
+
+ root.appendChild (definitions)
+
+ root.appendChild(tests)
+ root.appendChild(objects)
+ root.appendChild(states)
+
+ return doc
def printOVALDefinitions (doc):
- if doc.getElementsByTagName("definitions")[0].hasChildNodes():
- print doc.toprettyxml()
+ if doc.getElementsByTagName("definitions")[0].hasChildNodes():
+ print doc.toprettyxml()
diff --git a/english/security/oval/oval/parser/dsa.py b/english/security/oval/oval/parser/dsa.py
index cb66c23bbdc..c2a1bd88b1e 100644
--- a/english/security/oval/oval/parser/dsa.py
+++ b/english/security/oval/oval/parser/dsa.py
@@ -2,12 +2,12 @@
# oval.parser.dsa - module to parse Debian Security Advisories files.
#
# Extrected tags:
-# <pagetitle>
-# <report_date>
-# <secrefs>
-# <packages>
-# <isvulnerable>
-# <fixed>
+# <pagetitle>
+# <report_date>
+# <secrefs>
+# <packages>
+# <isvulnerable>
+# <fixed>
#
# (c) 2007 Pavel Vinogradov
# (c) 2004 Javier Fernandez-Sanguino
@@ -25,104 +25,104 @@ import logging
#<define-tag isvulnerable>yes|no</define-tag>
#<define-tag fixed>yes|no</define-tag>
def parseFile (path):
- """ Parse data file with information of Debian Security Advisories
-
- Keyword arguments:
- path -- full path to data file
-
- return list (dsa id, tags and packages data)"""
-
+ """ Parse data file with information of Debian Security Advisories
+
+ Keyword arguments:
+ path -- full path to data file
+
+ return list (dsa id, tags and packages data)"""
+
- data = {}
- deb_ver = None
- fdeb_ver = None
-
- filename = os.path.basename (path)
+ data = {}
+ deb_ver = None
+ fdeb_ver = None
+
+ filename = os.path.basename (path)
- patern = re.compile(r'dsa-(\d+)')
- result = patern.search(filename)
- if result:
- dsa = result.groups()[0]
- else:
- logging.log(logging.WARNING, "File %s does not look like a proper DSA, not checking" % filename)
- return (None)
+ patern = re.compile(r'dsa-(\d+)')
+ result = patern.search(filename)
+ if result:
+ dsa = result.groups()[0]
+ else:
+ logging.log(logging.WARNING, "File %s does not look like a proper DSA, not checking" % filename)
+ return (None)
- logging.log (logging.DEBUG, "Parsing DSA %s from file %s" % (dsa, filename))
+ logging.log (logging.DEBUG, "Parsing DSA %s from file %s" % (dsa, filename))
- dsaFile = open(path)
-
- for line in dsaFile:
- line= line.decode ("ISO-8859-2")
- datepatern = re.compile (r'report_date>([\d-]+)</define-tag>')
- result = datepatern.search (line)
- if result:
- date = result.groups()[0]
- normDate = lambda (date): "-".join([(len(p) > 1 and p or "0"+p) for p in date.split("-")])
- data["date"] = normDate(date)
-
- descrpatern = re.compile (r'(CVE-\d+-\d+)')
- result = descrpatern.search (line)
- if result:
- data["title"] = result.groups()[0]
- logging.log(logging.DEBUG, "Extracted CVE ID: " + data["title"])
- continue
-
- refspatern = re.compile (r'secrefs>(.*?)</define-tag>')
- result = refspatern.search (line)
- if result:
- data["secrefs"] = result.groups()[0]
- logging.log(logging.DEBUG, "Extracted security references: " + data["secrefs"])
+ dsaFile = open(path)
+
+ for line in dsaFile:
+ line= line.decode ("ISO-8859-2")
+ datepatern = re.compile (r'report_date>([\d-]+)</define-tag>')
+ result = datepatern.search (line)
+ if result:
+ date = result.groups()[0]
+ normDate = lambda (date): "-".join([(len(p) > 1 and p or "0"+p) for p in date.split("-")])
+ data["date"] = normDate(date)
+
+ descrpatern = re.compile (r'(CVE-\d+-\d+)')
+ result = descrpatern.search (line)
+ if result:
+ data["title"] = result.groups()[0]
+ logging.log(logging.DEBUG, "Extracted CVE ID: " + data["title"])
+ continue
+
+ refspatern = re.compile (r'secrefs>(.*?)</define-tag>')
+ result = refspatern.search (line)
+ if result:
+ data["secrefs"] = result.groups()[0]
+ logging.log(logging.DEBUG, "Extracted security references: " + data["secrefs"])
- pakpatern = re.compile (r'packages>(.*?)</define-tag>')
- result = pakpatern.search (line)
- if result:
- data["packages"] = result.groups()[0]
+ pakpatern = re.compile (r'packages>(.*?)</define-tag>')
+ result = pakpatern.search (line)
+ if result:
+ data["packages"] = result.groups()[0]
- vulpatern = re.compile (r'isvulnerable>(.*?)</define-tag>')
- result = vulpatern.search (line)
- if result:
- data["vulnarable"] = result.groups()[0]
+ vulpatern = re.compile (r'isvulnerable>(.*?)</define-tag>')
+ result = vulpatern.search (line)
+ if result:
+ data["vulnarable"] = result.groups()[0]
- fixpatern = re.compile (r'fixed>(.*?)</define-tag>')
- result = fixpatern.search (line)
- if result:
- data["fixed"] = result.groups()[0]
+ fixpatern = re.compile (r'fixed>(.*?)</define-tag>')
+ result = fixpatern.search (line)
+ if result:
+ data["fixed"] = result.groups()[0]
- versionpatern = re.compile (r'<h3>Debian GNU/Linux (\d.\d) \((.*?)\)</h3>')
- result = versionpatern.search (line)
- if result:
- fdeb_ver = result.groups()[0]
+ versionpatern = re.compile (r'<h3>Debian GNU/Linux (\d.\d) \((.*?)\)</h3>')
+ result = versionpatern.search (line)
+ if result:
+ fdeb_ver = result.groups()[0]
# Alternative format for data files
- versionpatern = re.compile (r'affected_release>([\d\.]+)<')
- result = versionpatern.search (line)
- if result:
- fdeb_ver = result.groups()[0]
+ versionpatern = re.compile (r'affected_release>([\d\.]+)<')
+ result = versionpatern.search (line)
+ if result:
+ fdeb_ver = result.groups()[0]
- if fdeb_ver:
- deb_ver = fdeb_ver
- fdeb_ver = None
- if data.has_key("release"):
- if data["release"].has_key(deb_ver):
- logging.log(logging.WARNING, "DSA %s: Found second files section for release %s" % (dsa, deb_ver))
- else:
- data["release"][deb_ver] = {}
- else:
- data["release"] = {deb_ver: {}}
+ if fdeb_ver:
+ deb_ver = fdeb_ver
+ fdeb_ver = None
+ if data.has_key("release"):
+ if data["release"].has_key(deb_ver):
+ logging.log(logging.WARNING, "DSA %s: Found second files section for release %s" % (dsa, deb_ver))
+ else:
+ data["release"][deb_ver] = {}
+ else:
+ data["release"] = {deb_ver: {}}
- # Binary packages are pushed into array
- # Those are prepended by fileurls
- # TODO: Packages do _NOT_ include epochs
- # (that should be fixed)
- if data.has_key("release") and deb_ver:
- urlpatern = re.compile (r'fileurl [\w:/.\-+]+/([\w\-.+~]+)\.deb[^i]')
- result = urlpatern.search (line)
- if result:
- (package, version, architecture) = result.groups()[0].split("_")
-
- if data["release"][deb_ver].has_key(architecture):
- data["release"][deb_ver][architecture][package] = version
- else:
- data["release"][deb_ver][architecture] = {package : version}
-
+ # Binary packages are pushed into array
+ # Those are prepended by fileurls
+ # TODO: Packages do _NOT_ include epochs
+ # (that should be fixed)
+ if data.has_key("release") and deb_ver:
+ urlpatern = re.compile (r'fileurl [\w:/.\-+]+/([\w\-.+~]+)\.deb[^i]')
+ result = urlpatern.search (line)
+ if result:
+ (package, version, architecture) = result.groups()[0].split("_")
+
+ if data["release"][deb_ver].has_key(architecture):
+ data["release"][deb_ver][architecture][package] = version
+ else:
+ data["release"][deb_ver][architecture] = {package : version}
+
return (dsa, data)
diff --git a/english/security/oval/oval/parser/wml.py b/english/security/oval/oval/parser/wml.py
index 7dd010fdc81..cb27a2d2353 100644
--- a/english/security/oval/oval/parser/wml.py
+++ b/english/security/oval/oval/parser/wml.py
@@ -19,59 +19,59 @@ import logging
#<define-tag description>DESCRIPTION</define-tag>
#<define-tag moreinfo>Multiline information</define-tag>
def parseFile (path):
- """ Parse wml file with description of Debian Security Advisories
+ """ Parse wml file with description of Debian Security Advisories
- Keyword arguments:
- path -- full path to wml file
+ Keyword arguments:
+ path -- full path to wml file
- return list (dsa id, tags data)"""
+ return list (dsa id, tags data)"""
- data = {}
- moreinfo = False
-
- filename = os.path.basename (path)
+ data = {}
+ moreinfo = False
+
+ filename = os.path.basename (path)
- patern = re.compile(r'dsa-(\d+)')
- result = patern.search(filename)
- if result:
- dsa = result.groups()[0]
- else:
- logging.log(logging.WARNING, "File %s does not look like a proper DSA wml description, not checking" % filename)
- return (None)
+ patern = re.compile(r'dsa-(\d+)')
+ result = patern.search(filename)
+ if result:
+ dsa = result.groups()[0]
+ else:
+ logging.log(logging.WARNING, "File %s does not look like a proper DSA wml description, not checking" % filename)
+ return (None)
- logging.log (logging.DEBUG, "Parsing information for DSA %s from wml file %s" % (dsa, filename))
+ logging.log (logging.DEBUG, "Parsing information for DSA %s from wml file %s" % (dsa, filename))
- try:
- wmlFile = open(path)
-
- for line in wmlFile:
- line= line.decode ("ISO-8859-2")
+ try:
+ wmlFile = open(path)
+
+ for line in wmlFile:
+ line= line.decode ("ISO-8859-2")
- descrpatern = re.compile (r'description>(.*?)</define-tag>')
- result = descrpatern.search (line)
- if result:
- data["description"] = result.groups()[0]
- continue
+ descrpatern = re.compile (r'description>(.*?)</define-tag>')
+ result = descrpatern.search (line)
+ if result:
+ data["description"] = result.groups()[0]
+ continue
- sinfopatern = re.compile (r'<define-tag moreinfo>(.*?)')
- result = sinfopatern.search (line)
- if result:
- moreinfo = True
- data["moreinfo"] = result.groups()[0]
- continue
+ sinfopatern = re.compile (r'<define-tag moreinfo>(.*?)')
+ result = sinfopatern.search (line)
+ if result:
+ moreinfo = True
+ data["moreinfo"] = result.groups()[0]
+ continue
- einfopatern = re.compile (r'</define-tag>')
- if moreinfo and einfopatern.search (line):
- data["moreinfo"] = __parseMoreinfo(data["moreinfo"])
- moreinfo = False
- continue
+ einfopatern = re.compile (r'</define-tag>')
+ if moreinfo and einfopatern.search (line):
+ data["moreinfo"] = __parseMoreinfo(data["moreinfo"])
+ moreinfo = False
+ continue
- if moreinfo:
- data["moreinfo"] += line
+ if moreinfo:
+ data["moreinfo"] += line
continue
-
- except IOError:
- logging.log (logging.ERROR, "Can't work with file %s" % path)
+
+ except IOError:
+ logging.log (logging.ERROR, "Can't work with file %s" % path)
return (dsa, data)
diff --git a/english/security/oval/parseDsa2Oval.py b/english/security/oval/parseDsa2Oval.py
index baa20c7fc95..131867bc2b4 100755
--- a/english/security/oval/parseDsa2Oval.py
+++ b/english/security/oval/parseDsa2Oval.py
@@ -19,14 +19,14 @@ from oval.parser import wml
dsaref = {}
def usage (prog = "parse-wml-oval.py"):
- """Print information about script flags and options"""
+ """Print information about script flags and options"""
- print """
+ print """
usage: %s [vh] [-d <directory>]
\t-d\twhich directory use for dsa definition search
\t-v\tverbose mode
\t-h\tthis help
- """ % prog
+ """ % prog
def printdsas (dsaref):
""" Generate and print OVAL Definitions for collected DSA information """
@@ -35,35 +35,35 @@ def printdsas (dsaref):
oval.definition.generator.printOVALDefinitions (ovalDefinitions)
def parsedirs (directory, postfix, depth):
- """ Recursive search directory for DSA files contain postfix in their names.
+ """ Recursive search directory for DSA files contain postfix in their names.
- For this files called oval.parser.dsa.parseFile() for extracting DSA information.
- """
+ For this files called oval.parser.dsa.parseFile() for extracting DSA information.
+ """
+
+ if depth == 0:
+ logging.log(logging.DEBUG, "Maximum depth reached at directory " + directory)
+ return (0)
+
+ for file in os.listdir (directory):
+
+ path = "%s/%s" % (directory, file)
+
+ logging.log (logging.DEBUG, "Checking %s (for %s at %s)" % (file, postfix, depth))
+
+ if os.access(path, os.R_OK) and os.path.isdir (path) and not os.path.islink (path) and file[0] != '.':
+ logging.log(logging.DEBUG, "Entering directory " + path)
+ parsedirs (path, postfix, depth-1)
- if depth == 0:
- logging.log(logging.DEBUG, "Maximum depth reached at directory " + directory)
- return (0)
-
- for file in os.listdir (directory):
-
- path = "%s/%s" % (directory, file)
-
- logging.log (logging.DEBUG, "Checking %s (for %s at %s)" % (file, postfix, depth))
-
- if os.access(path, os.R_OK) and os.path.isdir (path) and not os.path.islink (path) and file[0] != '.':
- logging.log(logging.DEBUG, "Entering directory " + path)
- parsedirs (path, postfix, depth-1)
-
#Parse DSA data files
- if os.access(path, os.R_OK) and file.endswith(postfix) and file[0] != '.' and file[0] != '#':
- result = dsa.parseFile (path)
- if result:
+ if os.access(path, os.R_OK) and file.endswith(postfix) and file[0] != '.' and file[0] != '#':
+ result = dsa.parseFile (path)
+ if result:
if dsaref.has_key (result[0]):
- for (k, v) in result[1].iteritems():
+ for (k, v) in result[1].iteritems():
dsaref[result[0]][k] = v
- else:
+ else:
dsaref[result[0]] = result[1]
-
+
#Parse DSA wml descriptions
if os.access(path, os.R_OK) and file.endswith(".wml") and file[0] != '.' and file[0] != '#':
result = wml.parseFile(path)
@@ -73,8 +73,8 @@ def parsedirs (directory, postfix, depth):
dsaref[result[0]][k] = v
else:
dsaref[result[0]] = result[1]
-
- return 0
+
+ return 0
if __name__ == "__main__":

© 2014-2024 Faster IT GmbH | imprint | privacy policy