airship/promenade
Code Issues Proposed changes

Security: Add bandit job to tox

Browse Source 
Change-Id: Idcf6efade852e7de0c636184c21f35a03fe0d980
This commit is contained in:
Mark Burnett 2017-10-27 14:53:47 -05:00
parent 6c7208c33f
commit 597c1a3929
7 changed files with 42 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
promenade/builder.py
View File

@ -3,6 +3,7 @@ import io
import itertools import itertools
import os import os
import requests import requests
import stat
import tarfile import tarfile
__all__ = ['Builder'] __all__ = ['Builder']
@ -119,5 +120,8 @@ def _join_name(node_name):
def _write_script(output_dir, name, script): def _write_script(output_dir, name, script):
path = os.path.join(output_dir, name) path = os.path.join(output_dir, name)
with open(path, 'w') as f: with open(path, 'w') as f:
os.fchmod(f.fileno(), 0o555)
f.write(script) f.write(script)
os.chmod(
path,
os.stat(path).st_mode | stat.S_IXUSR | stat.S_IXGRP | stat.S_IXOTH)

7
promenade/config.py
View File

@ -59,7 +59,9 @@ class Configuration:
def iterate(self, *, kind=None, schema=None, labels=None): def iterate(self, *, kind=None, schema=None, labels=None):
if kind is not None: if kind is not None:
assert schema is None if schema is not None:
raise AssertionError(
'Logic error: specified both kind and schema')
schema = 'promenade/%s/v1' % kind schema = 'promenade/%s/v1' % kind
for document in self.documents: for document in self.documents:
@ -144,7 +146,8 @@ def _matches_filter(document, *, schema, labels):
def _get(documents, kind=None, schema=None, name=None): def _get(documents, kind=None, schema=None, name=None):
if kind is not None: if kind is not None:
assert schema is None if schema is not None:
raise AssertionError('Logic error: specified both kind and schema')
schema = 'promenade/%s/v1' % kind schema = 'promenade/%s/v1' % kind
for document in documents: for document in documents:

18
promenade/pki.py
View File

@ -1,7 +1,9 @@
from . import logging from . import logging
import json import json
import os import os
import subprocess # Ignore bandit false positive: B404:blacklist
# The purpose of this module is to safely encapsulate calls via fork.
import subprocess # nosec
import tempfile import tempfile
import yaml import yaml
@ -96,7 +98,10 @@ class PKI:
with open(os.path.join(tmp, filename), 'w') as f: with open(os.path.join(tmp, filename), 'w') as f:
f.write(data) f.write(data)
return json.loads( # Ignore bandit false positive:
# B603:subprocess_without_shell_equals_true
# This method wraps cfssl calls originating from this module.
return json.loads( # nosec
subprocess.check_output( subprocess.check_output(
['cfssl'] + command, cwd=tmp, stderr=subprocess.PIPE)) ['cfssl'] + command, cwd=tmp, stderr=subprocess.PIPE))
@ -109,8 +114,13 @@ class PKI:
with open(os.path.join(tmp, filename), 'w') as f: with open(os.path.join(tmp, filename), 'w') as f:
f.write(data) f.write(data)
subprocess.check_call( # Ignore bandit false positive:
['openssl'] + command, cwd=tmp, stderr=subprocess.PIPE) # B603:subprocess_without_shell_equals_true
# This method wraps openssl calls originating from this module.
subprocess.check_call( # nosec
['openssl'] + command,
cwd=tmp,
stderr=subprocess.PIPE)
result = {} result = {}
for filename in os.listdir(tmp): for filename in os.listdir(tmp):

4
promenade/renderer.py
View File

@ -93,7 +93,9 @@ def render_template(config, *, template, context=None):
def _build_env(): def _build_env():
env = jinja2.Environment( # Ignore bandit false positive: B701:jinja2_autoescape_false
# This env is not used to render content that is vulnerable to XSS.
env = jinja2.Environment( # nosec
loader=jinja2.PackageLoader('promenade', 'templates/include'), loader=jinja2.PackageLoader('promenade', 'templates/include'),
undefined=jinja2.StrictUndefined) undefined=jinja2.StrictUndefined)
env.filters['b64enc'] = _base64_encode env.filters['b64enc'] = _base64_encode

7
promenade/tar_bundler.py
View File

@ -26,8 +26,11 @@ class TarBundler:
tar_info.mode = mode tar_info.mode = mode
if tar_info.size > 0: if tar_info.size > 0:
LOG.debug('Adding file path=%s size=%s md5=%s', path, # Ignore bandit false positive: B303:blacklist
tar_info.size, hashlib.md5(data_bytes).hexdigest()) # This is a basic checksum for debugging not a secure hash.
LOG.debug( # nosec
'Adding file path=%s size=%s md5=%s', path, tar_info.size,
hashlib.md5(data_bytes).hexdigest())
else: else:
LOG.warning('Zero length file added to path=%s', path) LOG.warning('Zero length file added to path=%s', path)

5
promenade/validation.py
View File

@ -46,7 +46,10 @@ def _load_schemas():
with open(os.path.join(schema_dir, schema_file)) as f: with open(os.path.join(schema_dir, schema_file)) as f:
for schema in yaml.safe_load_all(f): for schema in yaml.safe_load_all(f):
name = schema['metadata']['name'] name = schema['metadata']['name']
assert name not in SCHEMAS if name in SCHEMAS:
raise RuntimeError(
'Duplicate schema specified for: %s' % name)
SCHEMAS[name] = schema['data'] SCHEMAS[name] = schema['data']

7
tox.ini
View File

@ -1,5 +1,5 @@
[tox] [tox]
envlist = py35 envlist = bandit,lint
[testenv] [testenv]
deps = -r{toxinidir}/requirements.txt deps = -r{toxinidir}/requirements.txt
@ -10,6 +10,11 @@ commands=
pytest \ pytest \
{posargs} {posargs}
[testenv:bandit]
deps = bandit
commands =
bandit -r promenade
[testenv:docs] [testenv:docs]
whitelist_externals=rm whitelist_externals=rm
commands = commands =