SystemSh0cker/gocsaf
1
0
Fork 0
mirror of https://github.com/gocsaf/csaf.git synced 2025-12-22 11:55:40 +01:00
Code Issues Releases Activity Actions

Code documentation and fix typo

Browse source
This commit is contained in:
Fadi Abbud 2022-03-08 17:31:13 +01:00
parent 056f0fc6d6
commit 9e2a9d7fad
2 changed files with 30 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

28
cmd/csaf_checker/processor.go
View file

@ -182,7 +182,7 @@ func (p *processor) checkDomain(domain string) error {
return nil return nil
} }
// checkTLS parses the given URL to check its schema, as a result set // checkTLS parses the given URL to check its schema, as a result it sets
// the value of "noneTLS" field if it is not HTTPS. // the value of "noneTLS" field if it is not HTTPS.
func (p *processor) checkTLS(u string) { func (p *processor) checkTLS(u string) {
if p.noneTLS == nil { if p.noneTLS == nil {
@ -242,6 +242,7 @@ func (p *processor) httpClient() *http.Client {
return p.client return p.client
} }
// use checks the given array and initializes an empty array if its nil.
func use(s *[]string) { func use(s *[]string) {
if *s == nil { if *s == nil {
*s = []string{} *s = []string{}
@ -252,34 +253,50 @@ func used(s []string) bool {
return s != nil return s != nil
} }
// badIntegrity appends a message to the value of "badIntegrity" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badIntegrity(format string, args ...interface{}) { func (p *processor) badIntegrity(format string, args ...interface{}) {
p.badIntegrities = append(p.badIntegrities, fmt.Sprintf(format, args...)) p.badIntegrities = append(p.badIntegrities, fmt.Sprintf(format, args...))
} }
// badSignature appends a message to the value of "badSignature" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badSignature(format string, args ...interface{}) { func (p *processor) badSignature(format string, args ...interface{}) {
p.badSignatures = append(p.badSignatures, fmt.Sprintf(format, args...)) p.badSignatures = append(p.badSignatures, fmt.Sprintf(format, args...))
} }
// badProviderMetadata appends a message to the value of "badProviderMetadatas" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badProviderMetadata(format string, args ...interface{}) { func (p *processor) badProviderMetadata(format string, args ...interface{}) {
p.badProviderMetadatas = append(p.badProviderMetadatas, fmt.Sprintf(format, args...)) p.badProviderMetadatas = append(p.badProviderMetadatas, fmt.Sprintf(format, args...))
} }
// badPGP appends a message to the value of "badPGPs" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badPGP(format string, args ...interface{}) { func (p *processor) badPGP(format string, args ...interface{}) {
p.badPGPs = append(p.badPGPs, fmt.Sprintf(format, args...)) p.badPGPs = append(p.badPGPs, fmt.Sprintf(format, args...))
} }
// badSecurity appends a message to the value of "badSecurity" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badSecurity(format string, args ...interface{}) { func (p *processor) badSecurity(format string, args ...interface{}) {
p.badSecurities = append(p.badSecurities, fmt.Sprintf(format, args...)) p.badSecurities = append(p.badSecurities, fmt.Sprintf(format, args...))
} }
// badIndex appends a message to the value of "badIndices" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badIndex(format string, args ...interface{}) { func (p *processor) badIndex(format string, args ...interface{}) {
p.badIndices = append(p.badIndices, fmt.Sprintf(format, args...)) p.badIndices = append(p.badIndices, fmt.Sprintf(format, args...))
} }
// badChange appends a message to the value of "badChanges" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badChange(format string, args ...interface{}) { func (p *processor) badChange(format string, args ...interface{}) {
p.badChanges = append(p.badChanges, fmt.Sprintf(format, args...)) p.badChanges = append(p.badChanges, fmt.Sprintf(format, args...))
} }
// badFolder appends a message to the value of "badFolders" field of
// the "processor" struct according to the given format and parameters.
func (p *processor) badFolder(format string, args ...interface{}) { func (p *processor) badFolder(format string, args ...interface{}) {
p.badFolders = append(p.badFolders, fmt.Sprintf(format, args...)) p.badFolders = append(p.badFolders, fmt.Sprintf(format, args...))
} }
@ -503,6 +520,9 @@ func (p *processor) processROLIEFeed(feed string) error {
return nil return nil
} }
// checkIndex fetches the "index.txt" and calls "checkTLS" method for HTTPS checks.
// It extracts the file names from the file and passes them to "integrity" function.
// It returns error if fetching/reading the file(s) fails, otherwise nil.
func (p *processor) checkIndex(base string, mask whereType) error { func (p *processor) checkIndex(base string, mask whereType) error {
client := p.httpClient() client := p.httpClient()
index := base + "/index.txt" index := base + "/index.txt"
@ -541,6 +561,10 @@ func (p *processor) checkIndex(base string, mask whereType) error {
return p.integrity(files, base, mask, p.badIndex) return p.integrity(files, base, mask, p.badIndex)
} }
// checkChanges fetches the "changes.csv" and calls the "checkTLS" method for HTTPs checks.
// It extracts the file content, tests the column number and the validity of the time format
// of the fields' values and if they are sorted properly. Then it passes the files to the
// "integrity" functions. It returns error if some test fails, otherwise nil.
func (p *processor) checkChanges(base string, mask whereType) error { func (p *processor) checkChanges(base string, mask whereType) error {
client := p.httpClient() client := p.httpClient()
changes := base + "/changes.csv" changes := base + "/changes.csv"
@ -927,7 +951,7 @@ func (p *processor) checkSecurity(domain string) error {
return nil return nil
} }
// checkPGPKeys checks if the OpenPGP keys are available and valid, fetchs // checkPGPKeys checks if the OpenPGP keys are available and valid, fetches
// the the remotely keys and compares the fingerprints. // the the remotely keys and compares the fingerprints.
// As a result of these a respective error messages are passed to badPGP method // As a result of these a respective error messages are passed to badPGP method
// in case of errors. It returns nil if all checks are passed. // in case of errors. It returns nil if all checks are passed.

8
cmd/csaf_checker/reporters.go
View file

@ -42,7 +42,7 @@ func (bc *baseReporter) requirement(domain *Domain) *Requirement {
return req return req
} }
// report tests if the URLs are HTTPS and set the "message" field value // report tests if the URLs are HTTPS and sets the "message" field value
// of the "Requirement" struct as a result of that. // of the "Requirement" struct as a result of that.
// A list of non HTTPS URLs is included in the value of the "message" field. // A list of non HTTPS URLs is included in the value of the "message" field.
func (r *tlsReporter) report(p *processor, domain *Domain) { func (r *tlsReporter) report(p *processor, domain *Domain) {
@ -67,7 +67,7 @@ func (r *tlsReporter) report(p *processor, domain *Domain) {
req.message(urls...) req.message(urls...)
} }
// report tests if redirects are used and set the "message" field value // report tests if redirects are used and sets the "message" field value
// of the "Requirement" struct as a result of that. // of the "Requirement" struct as a result of that.
func (r *redirectsReporter) report(p *processor, domain *Domain) { func (r *redirectsReporter) report(p *processor, domain *Domain) {
req := r.requirement(domain) req := r.requirement(domain)
@ -89,7 +89,7 @@ func (r *redirectsReporter) report(p *processor, domain *Domain) {
req.Messages = keys req.Messages = keys
} }
// report tests if an provider-metatdata.json are available and set the // report tests if an provider-metatdata.json are available and sets the
// "message" field value of the "Requirement" struct as a result of that. // "message" field value of the "Requirement" struct as a result of that.
func (r *providerMetadataReport) report(p *processor, domain *Domain) { func (r *providerMetadataReport) report(p *processor, domain *Domain) {
req := r.requirement(domain) req := r.requirement(domain)
@ -104,7 +104,7 @@ func (r *providerMetadataReport) report(p *processor, domain *Domain) {
req.Messages = p.badProviderMetadatas req.Messages = p.badProviderMetadatas
} }
// report tests the "security.txt" file and set the "message" field value // report tests the "security.txt" file and sets the "message" field value
// of the "Requirement" struct as a result of that. // of the "Requirement" struct as a result of that.
func (r *securityReporter) report(p *processor, domain *Domain) { func (r *securityReporter) report(p *processor, domain *Domain) {
req := r.requirement(domain) req := r.requirement(domain)