diff options
| author | J08nY | 2021-04-22 20:52:13 +0200 |
|---|---|---|
| committer | J08nY | 2021-12-23 18:00:33 +0100 |
| commit | bc1e5d61cea6597a184f79baed8caedab35fb66e (patch) | |
| tree | 7ea1cfe49b9f4404f06b460feac7d290e4109785 | |
| parent | 3c6d71c1c10bbd13e914c045ed15b88a0236f2e9 (diff) | |
| download | sec-certs-bc1e5d61cea6597a184f79baed8caedab35fb66e.tar.gz sec-certs-bc1e5d61cea6597a184f79baed8caedab35fb66e.tar.zst sec-certs-bc1e5d61cea6597a184f79baed8caedab35fb66e.zip | |
Split MIP+IUT code into CLI part in examples and rest in library.
| -rwxr-xr-x | examples/fips_iut_demo.py | 29 | ||||
| -rwxr-xr-x | examples/fips_mip_demo.py | 29 | ||||
| -rwxr-xr-x | in_process.py | 337 | ||||
| -rw-r--r-- | sec_certs/helpers.py | 6 | ||||
| -rw-r--r-- | sec_certs/iut.py | 128 | ||||
| -rw-r--r-- | sec_certs/mip.py | 161 |
6 files changed, 353 insertions, 337 deletions
diff --git a/examples/fips_iut_demo.py b/examples/fips_iut_demo.py new file mode 100755 index 00000000..fc10286e --- /dev/null +++ b/examples/fips_iut_demo.py @@ -0,0 +1,29 @@ +#!/usr/bin/env python3 + +import click +from sec_certs.iut import IUTDataset + + +@click.command() +@click.argument("directory", type=click.Path(exists=True, file_okay=False)) +@click.argument("output", type=click.Path(dir_okay=False, writable=True)) +def main(directory, output): + """ + Parse FIPS 'Implementation Under Test' pages. + + \b + To use, download pages from the URL: + https://csrc.nist.gov/Projects/cryptographic-module-validation-program/modules-in-process/IUT-List + into a directory `d` and name them `fips_iut_<iso-timestamp>.html`. + + \b + Then run: + in_process.py fips-iut d output.json + to obtain the parsed output in `output.json`. + """ + dataset = IUTDataset.from_dump(directory) + dataset.to_json(output) + + +if __name__ == "__main__": + main() diff --git a/examples/fips_mip_demo.py b/examples/fips_mip_demo.py new file mode 100755 index 00000000..0173efda --- /dev/null +++ b/examples/fips_mip_demo.py @@ -0,0 +1,29 @@ +#!/usr/bin/env python3 + +import click +from sec_certs.mip import MIPDataset + + +@click.command() +@click.argument("directory", type=click.Path(exists=True, file_okay=False)) +@click.argument("output", type=click.Path(dir_okay=False, writable=True)) +def main(directory, output): + """ + Parse FIPS 'Modules In Process' pages. + + \b + To use, download pages from the URL: + https://csrc.nist.gov/Projects/cryptographic-module-validation-program/modules-in-process/Modules-In-Process-List + into a directory `d` and name them `fips_mip_<iso-timestamp>.html`. + + \b + Then run: + in_process.py fips-mip d output.json + to obtain the parsed output in `output.json`. + """ + dataset = MIPDataset.from_dump(directory) + dataset.to_json(output) + + +if __name__ == "__main__": + main() diff --git a/in_process.py b/in_process.py deleted file mode 100755 index 35bfddc4..00000000 --- a/in_process.py +++ /dev/null @@ -1,337 +0,0 @@ -#!/usr/bin/env python3 - -import logging -import json -import click -from typing import List, Set, Mapping, Union -from tqdm import tqdm -from datetime import datetime, date -from pathlib import Path -from bs4 import BeautifulSoup, Tag -from dataclasses import dataclass -from enum import Enum -from sec_certs.serialization import ComplexSerializableType, CustomJSONEncoder, CustomJSONDecoder - - -logger = logging.getLogger(__name__) - - -def to_utc(dt): - dt -= dt.utcoffset() - dt = dt.replace(tzinfo=None) - return dt - - -class MIPStatus(Enum): - IN_REVIEW = "In Review" - REVIEW_PENDING = "Review Pending" - COORDINATION = "Coordination" - FINALIZATION = "Finalization" - - -@dataclass(frozen=True) -class MIPEntry(ComplexSerializableType): - module_name: str - vendor_name: str - standard: str - status: MIPStatus - - def to_dict(self): - return {**self.__dict__, "status": self.status.value} - - @classmethod - def from_dict(cls, dct: Mapping) -> "MIPEntry": - return cls( - dct["module_name"], - dct["vendor_name"], - dct["standard"], - MIPStatus(dct["status"]), - ) - - -@dataclass -class MIPSnapshot(ComplexSerializableType): - entries: Set[MIPEntry] - timestamp: datetime - last_updated: date - - def to_dict(self): - return { - "entries": list(self.entries), - "timestamp": self.timestamp.isoformat(), - "last_updated": self.last_updated.isoformat(), - } - - @classmethod - def from_dict(cls, dct: Mapping) -> "MIPSnapshot": - return cls( - set(dct["entries"]), - datetime.fromisoformat(dct["timestamp"]), - date.fromisoformat(dct["last_updated"]), - ) - - -@dataclass -class MIPDataset(ComplexSerializableType): - snapshots: List[MIPSnapshot] - - def __iter__(self): - yield from self.snapshots - - def __getitem__(self, item: int) -> MIPSnapshot: - return self.snapshots.__getitem__(item) - - def __len__(self) -> int: - return len(self.snapshots) - - @classmethod - def from_dump(cls, dump_path: Union[str, Path]) -> "MIPDataset": - directory = Path(dump_path) - snapshots = [] - fnames = list(directory.glob("*")) - for fname in tqdm(sorted(fnames), total=len(fnames)): - snapshot_date = to_utc( - datetime.fromisoformat(fname.name[len("fips_mip_") : -len(".html")]) - ) - with open(fname) as f: - soup = BeautifulSoup(f, "html.parser") - tables = soup.find_all("table") - if len(tables) != 1: - logger.error(f"*** Not only a single table in {fname}.") - continue - last_updated_elem = next( - filter( - lambda e: isinstance(e, Tag) and e.name == "p", - soup.find(id="content").next_siblings, - ) - ) - last_updated_text = str(last_updated_elem.string).strip() - last_updated = datetime.strptime( - last_updated_text, "Last Updated: %m/%d/%Y" - ).date() - table = tables[0].find("tbody") - lines = table.find_all("tr") - if snapshot_date <= datetime(2020, 10, 28): - # NIST had a different format of the MIP table before this date, handle it. - entries = set() - for tr in lines: - tds = tr.find_all("td") - status = None - if "mip-highlight" in tds[-1]["class"]: - status = MIPStatus.FINALIZATION - elif "mip-highlight" in tds[-2]["class"]: - status = MIPStatus.COORDINATION - elif "mip-highlight" in tds[-3]["class"]: - status = MIPStatus.REVIEW_PENDING - elif "mip-highlight" in tds[-4]["class"]: - status = MIPStatus.IN_REVIEW - entries.add( - MIPEntry( - str(tds[0].string), - str(tds[1].string), - str(tds[2].string), - status, - ) - ) - else: - entries = { - MIPEntry( - str(line[0].string), - str(line[1].string), - str(line[2].string), - MIPStatus(str(line[3].string)), - ) - for line in map(lambda tr: tr.find_all("td"), lines) - } - snapshots.append(MIPSnapshot(entries, snapshot_date, last_updated)) - return cls(snapshots) - - - def to_dict(self): - return { - "snapshots": list(self.snapshots) - } - - @classmethod - def from_dict(cls, dct: Mapping) -> "MIPDataset": - return cls( - dct["snapshots"] - ) - - def to_json(self, json_path: Union[str, Path]): - with open(json_path, 'w') as handle: - json.dump(self, handle, indent=4, cls=CustomJSONEncoder) - - @classmethod - def from_json(cls, json_path: Union[str, Path]): - with Path(json_path).open('r') as handle: - return json.load(handle, cls=CustomJSONDecoder) - - -@dataclass(frozen=True) -class IUTEntry(ComplexSerializableType): - module_name: str - vendor_name: str - standard: str - iut_date: date - - def to_dict(self): - return {**self.__dict__, "iut_date": self.iut_date.isoformat()} - - @classmethod - def from_dict(cls, dct: Mapping) -> "IUTEntry": - return cls( - dct["module_name"], - dct["vendor_name"], - dct["standard"], - date.fromisoformat(dct["iut_date"]), - ) - - -@dataclass -class IUTSnapshot(ComplexSerializableType): - entries: Set[IUTEntry] - timestamp: datetime - last_updated: date - - def to_dict(self): - return { - "entries": list(self.entries), - "timestamp": self.timestamp.isoformat(), - "last_updated": self.last_updated.isoformat(), - } - - @classmethod - def from_dict(cls, dct: Mapping) -> "IUTSnapshot": - print(type(dct), type(dct["entries"])) - return cls( - set(dct["entries"]), - datetime.fromisoformat(dct["timestamp"]), - date.fromisoformat(dct["last_updated"]), - ) - - -@dataclass -class IUTDataset(ComplexSerializableType): - snapshots: List[IUTSnapshot] - - def __iter__(self): - yield from self.snapshots - - def __getitem__(self, item: int) -> IUTSnapshot: - return self.snapshots.__getitem__(item) - - def __len__(self) -> int: - return len(self.snapshots) - - @classmethod - def from_dump(cls, dump_path: Union[str, Path]) -> "IUTDataset": - directory = Path(dump_path) - snapshots = [] - fnames = list(directory.glob("*")) - for fname in tqdm(sorted(fnames), total=len(fnames)): - snapshot_date = to_utc( - datetime.fromisoformat(fname.name[len("fips_iut_") : -len(".html")]) - ) - with open(fname) as f: - soup = BeautifulSoup(f, "html.parser") - tables = soup.find_all("table") - if len(tables) != 1: - logger.error(f"*** Not only a single table in {fname}.") - continue - last_updated_elem = next( - filter( - lambda e: isinstance(e, Tag) and e.name == "p", - soup.find(id="content").next_siblings, - ) - ) - last_updated_text = str(last_updated_elem.string).strip() - last_updated = datetime.strptime( - last_updated_text, "Last Updated: %m/%d/%Y" - ).date() - table = tables[0].find("tbody") - lines = table.find_all("tr") - entries = { - IUTEntry( - str(line[0].string), - str(line[1].string), - str(line[2].string), - datetime.strptime(str(line[3].string), "%m/%d/%Y").date(), - ) - for line in map(lambda tr: tr.find_all("td"), lines) - } - snapshots.append(IUTSnapshot(entries, snapshot_date, last_updated)) - return cls(snapshots) - - - def to_dict(self): - return { - "snapshots": list(self.snapshots) - } - - @classmethod - def from_dict(cls, dct: Mapping) -> "IUTDataset": - return cls( - dct["snapshots"] - ) - - def to_json(self, json_path: Union[str, Path]): - with open(json_path, 'w') as handle: - json.dump(self, handle, indent=4, cls=CustomJSONEncoder) - - @classmethod - def from_json(cls, json_path: Union[str, Path]) -> "IUTDataset": - with Path(json_path).open('r') as handle: - return json.load(handle, cls=CustomJSONDecoder) - - - -@click.group() -def main(): - pass - - -@main.command("fips-mip") -@click.argument("directory", type=click.Path(exists=True, file_okay=False)) -@click.argument("output", type=click.Path(dir_okay=False, writable=True)) -def fips_mip(directory, output): - """ - Parse FIPS 'Modules In Process' pages. - - \b - To use, download pages from the URL: - https://csrc.nist.gov/Projects/cryptographic-module-validation-program/modules-in-process/Modules-In-Process-List - into a directory `d` and name them `fips_mip_<iso-timestamp>.html`. - - \b - Then run: - in_process.py fips-mip d output.json - to obtain the parsed output in `output.json`. - """ - dataset = MIPDataset.from_dump(directory) - dataset.to_json(output) - - -@main.command("fips-iut") -@click.argument("directory", type=click.Path(exists=True, file_okay=False)) -@click.argument("output", type=click.Path(dir_okay=False, writable=True)) -def fips_iut(directory, output): - """ - Parse FIPS 'Implementation Under Test' pages. - - \b - To use, download pages from the URL: - https://csrc.nist.gov/Projects/cryptographic-module-validation-program/modules-in-process/IUT-List - into a directory `d` and name them `fips_iut_<iso-timestamp>.html`. - - \b - Then run: - in_process.py fips-iut d output.json - to obtain the parsed output in `output.json`. - """ - dataset = IUTDataset.from_dump(directory) - dataset.to_json(output) - - -if __name__ == "__main__": - main() diff --git a/sec_certs/helpers.py b/sec_certs/helpers.py index 3637fe38..8c28b729 100644 --- a/sec_certs/helpers.py +++ b/sec_certs/helpers.py @@ -224,6 +224,12 @@ def extract_pdf_metadata(filepath: Path): return constants.RETURNCODE_OK, metadata +def to_utc(dt): + dt -= dt.utcoffset() + dt = dt.replace(tzinfo=None) + return dt + + # TODO: Please, refactor me. I reallyyyyyyyyyyyyy need it!!!!!! def search_only_headers_anssi(filepath: Path): # noqa: C901 class HEADER_TYPE(Enum): diff --git a/sec_certs/iut.py b/sec_certs/iut.py new file mode 100644 index 00000000..1100eacd --- /dev/null +++ b/sec_certs/iut.py @@ -0,0 +1,128 @@ +import json +import logging + +from dataclasses import dataclass +from typing import List, Set, Mapping, Union +from datetime import datetime, date +from pathlib import Path + +from tqdm import tqdm +from bs4 import BeautifulSoup, Tag +from sec_certs.serialization import ComplexSerializableType, CustomJSONEncoder, CustomJSONDecoder + + +@dataclass(frozen=True) +class IUTEntry(ComplexSerializableType): + module_name: str + vendor_name: str + standard: str + iut_date: date + + def to_dict(self): + return {**self.__dict__, "iut_date": self.iut_date.isoformat()} + + @classmethod + def from_dict(cls, dct: Mapping) -> "IUTEntry": + return cls( + dct["module_name"], + dct["vendor_name"], + dct["standard"], + date.fromisoformat(dct["iut_date"]), + ) + + +@dataclass +class IUTSnapshot(ComplexSerializableType): + entries: Set[IUTEntry] + timestamp: datetime + last_updated: date + + def to_dict(self): + return { + "entries": list(self.entries), + "timestamp": self.timestamp.isoformat(), + "last_updated": self.last_updated.isoformat(), + } + + @classmethod + def from_dict(cls, dct: Mapping) -> "IUTSnapshot": + print(type(dct), type(dct["entries"])) + return cls( + set(dct["entries"]), + datetime.fromisoformat(dct["timestamp"]), + date.fromisoformat(dct["last_updated"]), + ) + + +@dataclass +class IUTDataset(ComplexSerializableType): + snapshots: List[IUTSnapshot] + + def __iter__(self): + yield from self.snapshots + + def __getitem__(self, item: int) -> IUTSnapshot: + return self.snapshots.__getitem__(item) + + def __len__(self) -> int: + return len(self.snapshots) + + @classmethod + def from_dump(cls, dump_path: Union[str, Path]) -> "IUTDataset": + directory = Path(dump_path) + snapshots = [] + fnames = list(directory.glob("*")) + for fname in tqdm(sorted(fnames), total=len(fnames)): + snapshot_date = to_utc( + datetime.fromisoformat(fname.name[len("fips_iut_") : -len(".html")]) + ) + with open(fname) as f: + soup = BeautifulSoup(f, "html.parser") + tables = soup.find_all("table") + if len(tables) != 1: + logger.error(f"*** Not only a single table in {fname}.") + continue + last_updated_elem = next( + filter( + lambda e: isinstance(e, Tag) and e.name == "p", + soup.find(id="content").next_siblings, + ) + ) + last_updated_text = str(last_updated_elem.string).strip() + last_updated = datetime.strptime( + last_updated_text, "Last Updated: %m/%d/%Y" + ).date() + table = tables[0].find("tbody") + lines = table.find_all("tr") + entries = { + IUTEntry( + str(line[0].string), + str(line[1].string), + str(line[2].string), + datetime.strptime(str(line[3].string), "%m/%d/%Y").date(), + ) + for line in map(lambda tr: tr.find_all("td"), lines) + } + snapshots.append(IUTSnapshot(entries, snapshot_date, last_updated)) + return cls(snapshots) + + + def to_dict(self): + return { + "snapshots": list(self.snapshots) + } + + @classmethod + def from_dict(cls, dct: Mapping) -> "IUTDataset": + return cls( + dct["snapshots"] + ) + + def to_json(self, json_path: Union[str, Path]): + with open(json_path, 'w') as handle: + json.dump(self, handle, indent=4, cls=CustomJSONEncoder) + + @classmethod + def from_json(cls, json_path: Union[str, Path]) -> "IUTDataset": + with Path(json_path).open('r') as handle: + return json.load(handle, cls=CustomJSONDecoder) diff --git a/sec_certs/mip.py b/sec_certs/mip.py new file mode 100644 index 00000000..ec014b30 --- /dev/null +++ b/sec_certs/mip.py @@ -0,0 +1,161 @@ +import json +import logging + +from dataclasses import dataclass +from enum import Enum +from typing import List, Set, Mapping, Union +from datetime import datetime, date +from pathlib import Path + +from tqdm import tqdm +from bs4 import BeautifulSoup, Tag +from sec_certs.serialization import ComplexSerializableType, CustomJSONEncoder, CustomJSONDecoder + + +logger = logging.getLogger(__name__) + + +class MIPStatus(Enum): + IN_REVIEW = "In Review" + REVIEW_PENDING = "Review Pending" + COORDINATION = "Coordination" + FINALIZATION = "Finalization" + + +@dataclass(frozen=True) +class MIPEntry(ComplexSerializableType): + module_name: str + vendor_name: str + standard: str + status: MIPStatus + + def to_dict(self): + return {**self.__dict__, "status": self.status.value} + + @classmethod + def from_dict(cls, dct: Mapping) -> "MIPEntry": + return cls( + dct["module_name"], + dct["vendor_name"], + dct["standard"], + MIPStatus(dct["status"]), + ) + + +@dataclass +class MIPSnapshot(ComplexSerializableType): + entries: Set[MIPEntry] + timestamp: datetime + last_updated: date + + def to_dict(self): + return { + "entries": list(self.entries), + "timestamp": self.timestamp.isoformat(), + "last_updated": self.last_updated.isoformat(), + } + + @classmethod + def from_dict(cls, dct: Mapping) -> "MIPSnapshot": + return cls( + set(dct["entries"]), + datetime.fromisoformat(dct["timestamp"]), + date.fromisoformat(dct["last_updated"]), + ) + + +@dataclass +class MIPDataset(ComplexSerializableType): + snapshots: List[MIPSnapshot] + + def __iter__(self): + yield from self.snapshots + + def __getitem__(self, item: int) -> MIPSnapshot: + return self.snapshots.__getitem__(item) + + def __len__(self) -> int: + return len(self.snapshots) + + @classmethod + def from_dump(cls, dump_path: Union[str, Path]) -> "MIPDataset": + directory = Path(dump_path) + snapshots = [] + fnames = list(directory.glob("*")) + for fname in tqdm(sorted(fnames), total=len(fnames)): + snapshot_date = to_utc( + datetime.fromisoformat(fname.name[len("fips_mip_") : -len(".html")]) + ) + with open(fname) as f: + soup = BeautifulSoup(f, "html.parser") + tables = soup.find_all("table") + if len(tables) != 1: + logger.error(f"*** Not only a single table in {fname}.") + continue + last_updated_elem = next( + filter( + lambda e: isinstance(e, Tag) and e.name == "p", + soup.find(id="content").next_siblings, + ) + ) + last_updated_text = str(last_updated_elem.string).strip() + last_updated = datetime.strptime( + last_updated_text, "Last Updated: %m/%d/%Y" + ).date() + table = tables[0].find("tbody") + lines = table.find_all("tr") + if snapshot_date <= datetime(2020, 10, 28): + # NIST had a different format of the MIP table before this date, handle it. + entries = set() + for tr in lines: + tds = tr.find_all("td") + status = None + if "mip-highlight" in tds[-1]["class"]: + status = MIPStatus.FINALIZATION + elif "mip-highlight" in tds[-2]["class"]: + status = MIPStatus.COORDINATION + elif "mip-highlight" in tds[-3]["class"]: + status = MIPStatus.REVIEW_PENDING + elif "mip-highlight" in tds[-4]["class"]: + status = MIPStatus.IN_REVIEW + entries.add( + MIPEntry( + str(tds[0].string), + str(tds[1].string), + str(tds[2].string), + status, + ) + ) + else: + entries = { + MIPEntry( + str(line[0].string), + str(line[1].string), + str(line[2].string), + MIPStatus(str(line[3].string)), + ) + for line in map(lambda tr: tr.find_all("td"), lines) + } + snapshots.append(MIPSnapshot(entries, snapshot_date, last_updated)) + return cls(snapshots) + + + def to_dict(self): + return { + "snapshots": list(self.snapshots) + } + + @classmethod + def from_dict(cls, dct: Mapping) -> "MIPDataset": + return cls( + dct["snapshots"] + ) + + def to_json(self, json_path: Union[str, Path]): + with open(json_path, 'w') as handle: + json.dump(self, handle, indent=4, cls=CustomJSONEncoder) + + @classmethod + def from_json(cls, json_path: Union[str, Path]): + with Path(json_path).open('r') as handle: + return json.load(handle, cls=CustomJSONDecoder) |