Module: AbideDevUtils::XCCDF::Common

Included in:

Benchmark, ObjectContainer, XccdfElement

Defined in:

lib/abide_dev_utils/xccdf.rb

Overview

Common constants and methods included by nearly everything else

Constant Summary

XPATHS =

{
  benchmark: {
    all: 'xccdf:Benchmark',
    title: 'xccdf:Benchmark/xccdf:title',
    version: 'xccdf:Benchmark/xccdf:version'
  },
  cis: {
    profiles: {
      all: 'xccdf:Benchmark/xccdf:Profile',
      relative_title: './xccdf:title',
      relative_select: './xccdf:select'
    }
  }
}.freeze

CONTROL_PREFIX =

/^[\d.]+_/.freeze

UNDERSCORED =

/(\s|\(|\)|-|\.)/.freeze

CIS_NEXT_GEN_WINDOWS =

/[Nn]ext_[Gg]eneration_[Ww]indows_[Ss]ecurity/.freeze

CIS_CONTROL_NUMBER =

/([0-9.]+[0-9]+)/.freeze

CIS_LEVEL_CODE =

/(?:_|^)([Ll]evel_[0-9]|[Ll]1|[Ll]2|[NnBb][GgLl]|#{CIS_NEXT_GEN_WINDOWS})/.freeze

CIS_CONTROL_PARTS =

/#{CIS_CONTROL_NUMBER}#{CIS_LEVEL_CODE}?_+([A-Za-z].*)/.freeze

CIS_PROFILE_PARTS =

/#{CIS_LEVEL_CODE}[_-]+([A-Za-z].*)/.freeze

Instance Method Summary

• #==(other) ⇒ Object
• #abide_object? ⇒ Boolean
• #control_parts(control, parent_level: nil) ⇒ Object
• #control_profile_text(item) ⇒ Object
• #name_normalize_control(control) ⇒ Object
• #normalize_control_name(control, number_format: false) ⇒ Object
• #normalize_profile_name(prof, **_opts) ⇒ Object
• #normalize_string(str) ⇒ Object
• #number_normalize_control(control) ⇒ Object
• #profile_parts(profile) ⇒ Object
• #sorted_control_classes(raw_select_list, sort_key: :number) ⇒ Object
• #sorted_profile_classes(raw_profile_list, sort_key: :title) ⇒ Object
• #text_normalize(control) ⇒ Object
• #validate_xccdf(path) ⇒ Object
• #xpath(path) ⇒ Object

Instance Method Details

#==(other) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 159

def ==(other)
  diff_properties.map { |x| send(x) } == other.diff_properties.map { |x| other.send(x) }
end

#abide_object? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/abide_dev_utils/xccdf.rb', line 163

def abide_object?
  true
end

#control_parts(control, parent_level: nil) ⇒ Object

Raises:

• (AbideDevUtils::Errors::ControlPartsError)

# File 'lib/abide_dev_utils/xccdf.rb', line 129

def control_parts(control, parent_level: nil)
  mdata = control_profile_text(control).match(CIS_CONTROL_PARTS)
  raise AbideDevUtils::Errors::ControlPartsError, control if mdata.nil?

  mdata[2] = parent_level unless parent_level.nil?
  mdata[1..3]
end

#control_profile_text(item) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 137

def control_profile_text(item)
  return item.raw_title if item.respond_to?(:abide_object?)

  if item.respond_to?(:split)
    return item.split('benchmarks_rule_')[-1] if item.include?('benchmarks_rule_')

    item.split('benchmarks_profile_')[-1]
  else
    return item['idref'].to_s.split('benchmarks_rule_')[-1] if item.name == 'select'

    item['id'].to_s.split('benchmarks_profile_')[-1]
  end
end

#name_normalize_control(control) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 108

def name_normalize_control(control)
  normalize_string(control_profile_text(control).gsub(CONTROL_PREFIX, ''))
end

#normalize_control_name(control, number_format: false) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 102

def normalize_control_name(control, number_format: false)
  return number_normalize_control(control) if number_format

  name_normalize_control(control)
end

#normalize_profile_name(prof, **_opts) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 93

def normalize_profile_name(prof, **_opts)
  prof_name = normalize_string("profile_#{control_profile_text(prof)}").dup
  prof_name.gsub!(CIS_NEXT_GEN_WINDOWS, 'ngws')
  prof_name.delete_suffix!('_environment_general_use')
  prof_name.delete_suffix!('sensitive_data_environment_limited_functionality')
  prof_name.strip!
  prof_name
end

#normalize_string(str) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 82

def normalize_string(str)
  nstr = str.dup.downcase
  nstr.gsub!(/[^a-z0-9]$/, '')
  nstr.gsub!(/^[^a-z]/, '')
  nstr.gsub!(/(?:_|^)([Ll]1_|[Ll]2_|ng_)/, '')
  nstr.delete!('(/|\\|\+)')
  nstr.gsub!(UNDERSCORED, '_')
  nstr.strip!
  nstr
end

#number_normalize_control(control) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 112

def number_normalize_control(control)
  numpart = CONTROL_PREFIX.match(control_profile_text(control)).to_s.chop.gsub(UNDERSCORED, '_')
  "c#{numpart}"
end

#profile_parts(profile) ⇒ Object

Raises:

• (AbideDevUtils::Errors::ProfilePartsError)

# File 'lib/abide_dev_utils/xccdf.rb', line 121

def profile_parts(profile)
  parts = control_profile_text(profile).match(CIS_PROFILE_PARTS)
  raise AbideDevUtils::Errors::ProfilePartsError, profile if parts.nil?

  parts[1].gsub!(/[Ll]evel_/, 'L')
  parts[1..2]
end

#sorted_control_classes(raw_select_list, sort_key: :number) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 151

def sorted_control_classes(raw_select_list, sort_key: :number)
  raw_select_list.map { |x| Control.new(x) }.sort_by(&sort_key)
end

#sorted_profile_classes(raw_profile_list, sort_key: :title) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 155

def sorted_profile_classes(raw_profile_list, sort_key: :title)
  raw_profile_list.map { |x| Profile.new(x) }.sort_by(&sort_key)
end

#text_normalize(control) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 117

def text_normalize(control)
  control_profile_text(control).tr('_', ' ')
end

#validate_xccdf(path) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 78

def validate_xccdf(path)
  AbideDevUtils::Validate.file(path, extension: '.xml')
end

#xpath(path) ⇒ Object

# File 'lib/abide_dev_utils/xccdf.rb', line 74

def xpath(path)
  @xml.xpath(path)
end