mirror of
https://github.com/SELinuxProject/setools
synced 2025-02-23 15:47:00 +00:00
425e4f735b
Occasionally Qt calls these methods with column -1 and this exception otherwise goes unhandled. The default None return from Python functions should be sufficient.
197 lines
6.2 KiB
Python
197 lines
6.2 KiB
Python
# Copyright 2015, Tresys Technology, LLC
|
|
#
|
|
# This file is part of SETools.
|
|
#
|
|
# SETools is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Lesser General Public License as
|
|
# published by the Free Software Foundation, either version 2.1 of
|
|
# the License, or (at your option) any later version.
|
|
#
|
|
# SETools is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Lesser General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Lesser General Public
|
|
# License along with SETools. If not, see
|
|
# <http://www.gnu.org/licenses/>.
|
|
#
|
|
|
|
from PyQt5.QtCore import Qt, QAbstractTableModel, QModelIndex
|
|
from setools.policyrep.exception import RuleNotConditional, RuleUseError
|
|
|
|
|
|
class RuleListModel(QAbstractTableModel):
|
|
|
|
"""Base class for rule list models."""
|
|
|
|
def __init__(self, parent):
|
|
super(RuleListModel, self).__init__(parent)
|
|
self.resultlist = []
|
|
|
|
def headerData(self, section, orientation, role):
|
|
raise NotImplementedError
|
|
|
|
def columnCount(self, parent=QModelIndex()):
|
|
return 5
|
|
|
|
def rowCount(self, parent=QModelIndex()):
|
|
if self.resultlist:
|
|
return len(self.resultlist)
|
|
else:
|
|
return 0
|
|
|
|
def data(self, index, role):
|
|
raise NotImplementedError
|
|
|
|
|
|
class MLSRuleListModel(RuleListModel):
|
|
|
|
"""MLS rule model. Represents rules as a column."""
|
|
|
|
def headerData(self, section, orientation, role):
|
|
if role == Qt.DisplayRole and orientation == Qt.Horizontal:
|
|
if section == 0:
|
|
return "Rule Type"
|
|
elif section == 1:
|
|
return "Source"
|
|
elif section == 2:
|
|
return "Target"
|
|
elif section == 3:
|
|
return "Object Class"
|
|
elif section == 4:
|
|
return "Default Range"
|
|
|
|
def data(self, index, role):
|
|
if role == Qt.DisplayRole:
|
|
if not self.resultlist:
|
|
return None
|
|
|
|
row = index.row()
|
|
col = index.column()
|
|
|
|
if col == 0:
|
|
return self.resultlist[row].ruletype
|
|
elif col == 1:
|
|
return str(self.resultlist[row].source)
|
|
elif col == 2:
|
|
return str(self.resultlist[row].target)
|
|
elif col == 3:
|
|
return str(self.resultlist[row].tclass)
|
|
elif col == 4:
|
|
return str(self.resultlist[row].default)
|
|
|
|
elif role == Qt.UserRole:
|
|
# get the whole rule for user role
|
|
return self.resultlist[row].statement()
|
|
|
|
|
|
class RBACRuleListModel(RuleListModel):
|
|
|
|
"""RBAC rule model. Represents rules as a column."""
|
|
|
|
def headerData(self, section, orientation, role):
|
|
if role == Qt.DisplayRole and orientation == Qt.Horizontal:
|
|
if section == 0:
|
|
return "Rule Type"
|
|
elif section == 1:
|
|
return "Source"
|
|
elif section == 2:
|
|
return "Target"
|
|
elif section == 3:
|
|
return "Object Class"
|
|
elif section == 4:
|
|
return "Default Role"
|
|
|
|
def data(self, index, role):
|
|
if role == Qt.DisplayRole:
|
|
if not self.resultlist:
|
|
return None
|
|
|
|
row = index.row()
|
|
col = index.column()
|
|
|
|
if col == 0:
|
|
return self.resultlist[row].ruletype
|
|
elif col == 1:
|
|
return str(self.resultlist[row].source)
|
|
elif col == 2:
|
|
return str(self.resultlist[row].target)
|
|
elif col == 3:
|
|
try:
|
|
return str(self.resultlist[row].tclass)
|
|
except RuleUseError:
|
|
# role allow
|
|
return None
|
|
elif col == 4:
|
|
# next most common: default
|
|
try:
|
|
return str(self.resultlist[row].default)
|
|
except RuleUseError:
|
|
return None
|
|
|
|
elif role == Qt.UserRole:
|
|
# get the whole rule for user role
|
|
return self.resultlist[row].statement()
|
|
|
|
|
|
class TERuleListModel(RuleListModel):
|
|
|
|
"""Type Enforcement rule model. Represents rules as a column."""
|
|
|
|
def headerData(self, section, orientation, role):
|
|
if role == Qt.DisplayRole and orientation == Qt.Horizontal:
|
|
if section == 0:
|
|
return "Rule Type"
|
|
elif section == 1:
|
|
return "Source"
|
|
elif section == 2:
|
|
return "Target"
|
|
elif section == 3:
|
|
return "Object Class"
|
|
elif section == 4:
|
|
return "Permissons/Default Type"
|
|
elif section == 5:
|
|
return "Conditional Expression"
|
|
elif section == 6:
|
|
return "Conditional Block"
|
|
|
|
def columnCount(self, parent=QModelIndex()):
|
|
return 7
|
|
|
|
def data(self, index, role):
|
|
if role == Qt.DisplayRole:
|
|
if not self.resultlist:
|
|
return None
|
|
|
|
row = index.row()
|
|
col = index.column()
|
|
|
|
if col == 0:
|
|
return self.resultlist[row].ruletype
|
|
elif col == 1:
|
|
return str(self.resultlist[row].source)
|
|
elif col == 2:
|
|
return str(self.resultlist[row].target)
|
|
elif col == 3:
|
|
return str(self.resultlist[row].tclass)
|
|
elif col == 4:
|
|
try:
|
|
return ", ".join(sorted(self.resultlist[row].perms))
|
|
except RuleUseError:
|
|
return str(self.resultlist[row].default)
|
|
elif col == 5:
|
|
try:
|
|
return str(self.resultlist[row].conditional)
|
|
except RuleNotConditional:
|
|
return None
|
|
elif col == 6:
|
|
try:
|
|
return str(self.resultlist[row].conditional_block)
|
|
except RuleNotConditional:
|
|
return None
|
|
|
|
elif role == Qt.UserRole:
|
|
# get the whole rule for user role
|
|
return self.resultlist[row].statement()
|