english/security/oval/parseDsa2Oval.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106

#!/usr/bin/python
# -*- coding: utf-8 -*-
# Extracts the data DSA files and creates OVAL queries to
# be used with the OVAL query interpreter (see http://oval.mitre.org)

# (c) 2007 Pavel Vinogradov
# (c) 2004 Javier Fernandez-Sanguino                                                                                                           
# Licensed under the GNU General Public License version 2.                                                                                     
                                                                                                                                               
import os
import sys
import getopt
import logging

import oval.definition.generator
from oval.parser import dsa
from oval.parser import wml

dsaref = {}

def usage (prog = "parse-wml-oval.py"):
  """Print information about script flags and options"""

  print """
usage: %s [vh] [-d <directory>]
\t-d\twhich directory use for dsa definition search
\t-v\tverbose mode
\t-h\tthis help
  """ % prog
   
def printdsas (dsaref):
    """ Generate and print OVAL Definitions for collected DSA information """
    
    ovalDefinitions = oval.definition.generator.createOVALDefinitions (dsaref)
    oval.definition.generator.printOVALDefinitions (ovalDefinitions)

def parsedirs (directory, postfix, depth):
  """ Recursive search directory for DSA files contain postfix in their names.

    For this files called oval.parser.dsa.parseFile() for extracting DSA information.
  """

  if depth == 0:
    logging.log(logging.DEBUG, "Maximum depth reached at directory " + directory)
    return (0)
  
  for file in os.listdir (directory):
    
    path = "%s/%s" % (directory, file)
    
    logging.log (logging.DEBUG, "Checking %s (for %s at %s)" % (file, postfix, depth))
    
    if os.access(path, os.R_OK) and os.path.isdir (path) and not os.path.islink (path) and file[0] != '.':
      logging.log(logging.DEBUG, "Entering directory " + path)
      parsedirs (path, postfix, depth-1)

        #Parse DSA data files
    if os.access(path, os.R_OK) and file.endswith(postfix) and file[0] != '.' and file[0] != '#':
      result = dsa.parseFile (path)
      if result:
				if dsaref.has_key (result[0]):
          for (k, v) in result[1].iteritems():
						dsaref[result[0]][k] = v
        else:
					dsaref[result[0]] = result[1]

        #Parse DSA wml descriptions
		if os.access(path, os.R_OK) and file.endswith(".wml") and file[0] != '.' and file[0] != '#':
			result = wml.parseFile(path)
			if result:
				if dsaref.has_key (result[0]):
					for (k, v) in result[1].iteritems():
						dsaref[result[0]][k] = v
				else:
					dsaref[result[0]] = result[1]

  return 0

if __name__ == "__main__":
    
    # Parse cmd options with getopt
    opts = {}
    
    #By default we search dsa definitions from current directory, but -d option override this
    opts['-d'] = "./"
    
    try:
        opt, args = getopt.getopt (sys.argv[1:], 'vhd:')
    except getopt.GetoptError:
        usage ()
        sys.exit(1)
    
    for key, value in opt:
        opts[key] = value
    
    if opts.has_key ('-h'):
        usage()
        sys.exit(0)
        
    if opts.has_key('-v'):
        logging.basicConfig(level=logging.DEBUG)
        
    logging.basicConfig(level=logging.WARNING)
        
    parsedirs (opts['-d'], '.data', 2)
    printdsas(dsaref)