blob: b6997bb294df7e3888e7e58e3db73c9a59574b9b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
#!/usr/bin/env python
import sys
import logging
import lxml.etree
import Bcfg2.Logger
import Bcfg2.Options
from Bcfg2.Client.Tools.SELinux import *
LOGGER = None
def get_setup():
global LOGGER
optinfo = Bcfg2.Options.CLIENT_COMMON_OPTIONS
setup = Bcfg2.Options.OptionParser(optinfo)
setup.parse(sys.argv[1:])
if setup['args']:
print("selinux_baseline.py takes no arguments, only options")
print(setup.buildHelpMessage())
raise SystemExit(1)
level = 30
if setup['verbose']:
level = 20
if setup['debug']:
level = 0
Bcfg2.Logger.setup_logging('selinux_base',
to_syslog=False,
level=level,
to_file=setup['logging'])
LOGGER = logging.getLogger('bcfg2')
return setup
def main():
setup = get_setup()
config = lxml.etree.Element("Configuration")
selinux = SELinux(LOGGER, setup, config)
baseline = lxml.etree.Element("Bundle", name="selinux_baseline")
for etype, handler in selinux.handlers.items():
baseline.append(lxml.etree.Comment("%s entries" % etype))
extra = handler.FindExtra()
for entry in extra:
entry.tag = "BoundSELinux"
baseline.extend(extra)
print(lxml.etree.tostring(baseline, pretty_print=True))
if __name__ == "__main__":
sys.exit(main())
|