mirror of
https://github.com/SELinuxProject/setools
synced 2025-02-22 15:16:58 +00:00
230 lines
8.2 KiB
Python
230 lines
8.2 KiB
Python
# Copyright 2016, Tresys Technology, LLC
|
|
#
|
|
# SPDX-License-Identifier: LGPL-2.1-only
|
|
#
|
|
#
|
|
|
|
import logging
|
|
from contextlib import suppress
|
|
|
|
from PyQt5.QtCore import Qt, QSortFilterProxyModel, QStringListModel, QThread
|
|
from PyQt5.QtGui import QPalette, QTextCursor
|
|
from PyQt5.QtWidgets import QCompleter, QHeaderView, QMessageBox, QProgressDialog
|
|
from setools import ObjClassQuery
|
|
|
|
from ..logtosignal import LogHandlerToSignal
|
|
from ..models import PermListModel, SEToolsListModel, invert_list_selection
|
|
from ..objclassmodel import ObjClassTableModel, class_detail
|
|
from .analysistab import AnalysisSection, AnalysisTab
|
|
from .exception import TabFieldError
|
|
from .queryupdater import QueryResultsUpdater
|
|
from .workspace import load_checkboxes, load_lineedits, load_listviews, load_textedits, \
|
|
save_checkboxes, save_lineedits, save_listviews, save_textedits
|
|
|
|
|
|
class ObjClassQueryTab(AnalysisTab):
|
|
|
|
"""ObjClass browser and query tab."""
|
|
|
|
section = AnalysisSection.Components
|
|
tab_title = "Object Classes"
|
|
mlsonly = False
|
|
|
|
def __init__(self, parent, policy, perm_map):
|
|
super(ObjClassQueryTab, self).__init__(parent)
|
|
self.log = logging.getLogger(__name__)
|
|
self.policy = policy
|
|
self.query = ObjClassQuery(policy)
|
|
self.setupUi()
|
|
|
|
def __del__(self):
|
|
with suppress(RuntimeError):
|
|
self.thread.quit()
|
|
self.thread.wait(5000)
|
|
|
|
logging.getLogger("setools.objclassquery").removeHandler(self.handler)
|
|
|
|
def setupUi(self):
|
|
self.load_ui("apol/objclassquery.ui")
|
|
|
|
# populate class list
|
|
self.class_model = SEToolsListModel(self)
|
|
self.class_model.item_list = sorted(c for c in self.policy.classes())
|
|
self.classes.setModel(self.class_model)
|
|
|
|
# populate commons list
|
|
self.common_model = SEToolsListModel(self)
|
|
self.common_model.item_list = sorted(c for c in self.policy.commons())
|
|
self.common.setModel(self.common_model)
|
|
|
|
# populate perm list
|
|
self.perms_model = PermListModel(self, self.policy)
|
|
self.perms.setModel(self.perms_model)
|
|
|
|
# set up results
|
|
self.table_results_model = ObjClassTableModel(self)
|
|
self.sort_proxy = QSortFilterProxyModel(self)
|
|
self.sort_proxy.setSourceModel(self.table_results_model)
|
|
self.table_results.setModel(self.sort_proxy)
|
|
self.table_results.sortByColumn(0, Qt.AscendingOrder)
|
|
|
|
# setup indications of errors on level/range
|
|
self.errors = set()
|
|
self.orig_palette = self.name.palette()
|
|
self.error_palette = self.name.palette()
|
|
self.error_palette.setColor(QPalette.Base, Qt.red)
|
|
self.clear_name_error()
|
|
|
|
# set up processing thread
|
|
self.thread = QThread()
|
|
self.worker = QueryResultsUpdater(self.query, self.table_results_model)
|
|
self.worker.moveToThread(self.thread)
|
|
self.worker.raw_line.connect(self.raw_results.appendPlainText)
|
|
self.worker.finished.connect(self.update_complete)
|
|
self.worker.finished.connect(self.thread.quit)
|
|
self.thread.started.connect(self.worker.update)
|
|
|
|
# create a "busy, please wait" dialog
|
|
self.busy = QProgressDialog(self)
|
|
self.busy.setModal(True)
|
|
self.busy.setRange(0, 0)
|
|
self.busy.setMinimumDuration(0)
|
|
self.busy.canceled.connect(self.thread.requestInterruption)
|
|
self.busy.reset()
|
|
|
|
# update busy dialog from query INFO logs
|
|
self.handler = LogHandlerToSignal()
|
|
self.handler.message.connect(self.busy.setLabelText)
|
|
logging.getLogger("setools.objclassquery").addHandler(self.handler)
|
|
|
|
# Ensure settings are consistent with the initial .ui state
|
|
self.notes.setHidden(not self.notes_expander.isChecked())
|
|
|
|
# connect signals
|
|
self.classes.doubleClicked.connect(self.get_detail)
|
|
self.classes.get_detail.triggered.connect(self.get_detail)
|
|
self.name.textEdited.connect(self.clear_name_error)
|
|
self.name.editingFinished.connect(self.set_name)
|
|
self.name_regex.toggled.connect(self.set_name_regex)
|
|
self.common.selectionModel().selectionChanged.connect(self.set_common)
|
|
self.perms.selectionModel().selectionChanged.connect(self.set_perms)
|
|
self.invert_perms.clicked.connect(self.invert_perms_selection)
|
|
self.buttonBox.clicked.connect(self.run)
|
|
|
|
#
|
|
# Class browser
|
|
#
|
|
def get_detail(self):
|
|
# .ui is set for single item selection.
|
|
index = self.classes.selectedIndexes()[0]
|
|
item = self.class_model.data(index, Qt.UserRole)
|
|
|
|
self.log.debug("Generating detail window for {0}".format(item))
|
|
class_detail(self, item)
|
|
|
|
#
|
|
# Name criteria
|
|
#
|
|
def clear_name_error(self):
|
|
self.clear_criteria_error(self.name, "Match the object class name.")
|
|
|
|
def set_name(self):
|
|
try:
|
|
self.query.name = self.name.text()
|
|
except Exception as ex:
|
|
self.log.error("Object class name error: {0}".format(ex))
|
|
self.set_criteria_error(self.name, ex)
|
|
|
|
def set_name_regex(self, state):
|
|
self.log.debug("Setting name_regex {0}".format(state))
|
|
self.query.name_regex = state
|
|
self.clear_name_error()
|
|
self.set_name()
|
|
|
|
#
|
|
# Common criteria
|
|
#
|
|
def set_common(self):
|
|
for index in self.common.selectionModel().selectedIndexes():
|
|
self.query.common = self.common_model.data(index, Qt.UserRole)
|
|
break
|
|
else:
|
|
self.query.common = None
|
|
|
|
#
|
|
# Permissions criteria
|
|
#
|
|
def set_perms(self):
|
|
selected_perms = []
|
|
for index in self.perms.selectionModel().selectedIndexes():
|
|
selected_perms.append(self.perms_model.data(index, Qt.UserRole))
|
|
|
|
self.query.perms = selected_perms
|
|
|
|
def invert_perms_selection(self):
|
|
invert_list_selection(self.perms.selectionModel())
|
|
|
|
#
|
|
# Save/Load tab
|
|
#
|
|
def save(self):
|
|
"""Return a dictionary of settings."""
|
|
if self.errors:
|
|
raise TabFieldError("Field(s) are in error: {0}".
|
|
format(" ".join(o.objectName() for o in self.errors)))
|
|
|
|
settings = {}
|
|
save_checkboxes(self, settings, ["criteria_expander", "notes_expander", "name_regex",
|
|
"perms_equal"])
|
|
save_lineedits(self, settings, ["name"])
|
|
save_listviews(self, settings, ["common", "perms"])
|
|
save_textedits(self, settings, ["notes"])
|
|
return settings
|
|
|
|
def load(self, settings):
|
|
load_checkboxes(self, settings, ["criteria_expander", "notes_expander", "name_regex",
|
|
"perms_equal"])
|
|
load_lineedits(self, settings, ["name"])
|
|
load_listviews(self, settings, ["common", "perms"])
|
|
load_textedits(self, settings, ["notes"])
|
|
|
|
#
|
|
# Results runner
|
|
#
|
|
|
|
def run(self, button):
|
|
# right now there is only one button.
|
|
self.query.perms_equal = self.perms_equal.isChecked()
|
|
|
|
# start processing
|
|
self.busy.setLabelText("Processing query...")
|
|
self.busy.show()
|
|
self.raw_results.clear()
|
|
self.thread.start()
|
|
|
|
def update_complete(self, count):
|
|
self.log.info("{0} object class(es) found.".format(count))
|
|
|
|
# update sizes/location of result displays
|
|
if not self.busy.wasCanceled():
|
|
self.busy.setLabelText("Resizing the result table's columns; GUI may be unresponsive")
|
|
self.busy.repaint()
|
|
self.table_results.resizeColumnsToContents()
|
|
# If the permissions column width is too long, pull back
|
|
# to a reasonable size
|
|
header = self.table_results.horizontalHeader()
|
|
if header.sectionSize(1) > 400:
|
|
header.resizeSection(1, 400)
|
|
|
|
if not self.busy.wasCanceled():
|
|
self.busy.setLabelText("Resizing the result table's rows; GUI may be unresponsive")
|
|
self.busy.repaint()
|
|
self.table_results.resizeRowsToContents()
|
|
|
|
if not self.busy.wasCanceled():
|
|
self.busy.setLabelText("Moving the raw result to top; GUI may be unresponsive")
|
|
self.busy.repaint()
|
|
self.raw_results.moveCursor(QTextCursor.Start)
|
|
|
|
self.busy.reset()
|