static struct oscap_list *xccdf_benchmark_resolve_dependencies(void *itemptr, void *userdata)
{
struct xccdf_item *item = XITEM(itemptr);
struct oscap_list *ret = oscap_list_new();
struct xccdf_value_iterator *val_it = NULL;
const char *extends = xccdf_item_get_extends(item);
if (extends) oscap_list_add(ret, xccdf_benchmark_get_member(xccdf_item_get_benchmark(item), xccdf_item_get_type(item), extends));
switch (xccdf_item_get_type(item)) {
case XCCDF_BENCHMARK: {
OSCAP_FOR(xccdf_profile, profile, xccdf_benchmark_get_profiles(xccdf_item_to_benchmark(item)))
oscap_list_add(ret, profile);
val_it = xccdf_benchmark_get_values(xccdf_item_to_benchmark(item));
break;
}
case XCCDF_GROUP:
val_it = xccdf_group_get_values(xccdf_item_to_group(item));
default: break; /* no-op */
}
OSCAP_FOR(xccdf_item, child, xccdf_item_get_content(item))
oscap_list_add(ret, child);
OSCAP_FOR(xccdf_value, val, val_it)
oscap_list_add(ret, val);
return ret;
}
static inline void _xccdf_policy_add_xccdf_refine_rule_internal(struct xccdf_policy* policy, struct xccdf_benchmark* benchmark, const struct xccdf_refine_rule* refine_rule)
{
const char* rr_item_id = xccdf_refine_rule_get_item(refine_rule);
struct xccdf_item* item = xccdf_benchmark_get_member(benchmark, XCCDF_ITEM, rr_item_id);
if (item != NULL) { // get item by id
_add_refine_rule(policy->refine_rules_internal, refine_rule, rr_item_id);
return;
}
// try to get items by cluster-id
struct oscap_htable_iterator* hit = xccdf_benchmark_get_cluster_items(benchmark, rr_item_id);
if (hit == NULL) {
oscap_seterr(OSCAP_EFAMILY_XCCDF, "Selector ID(%s) does not exist in Benchmark.", rr_item_id);
return;
}
while (oscap_htable_iterator_has_more(hit)) { // iterate through every item in cluster
const char* item_id = oscap_htable_iterator_next_key(hit);
if (item_id == NULL) {
assert(item_id != NULL);
continue;
}
_add_refine_rule(policy->refine_rules_internal,refine_rule, item_id);
}
oscap_htable_iterator_free(hit);
}
static struct xccdf_profile *_xccdf_tailoring_profile_get_real_parent(struct xccdf_tailoring *tailoring, struct xccdf_profile *profile)
{
const char *extends = xccdf_profile_get_extends(profile);
struct xccdf_profile *parent_from_tailoring = xccdf_tailoring_get_profile_by_id(tailoring, extends);
if (parent_from_tailoring != NULL && parent_from_tailoring != profile) {
return parent_from_tailoring;
}
else {
return XPROFILE(xccdf_benchmark_get_member(xccdf_profile_get_benchmark(profile), XCCDF_PROFILE, extends));
}
}
static void xccdf_resolve_item(struct xccdf_item *item, struct xccdf_tailoring *tailoring)
{
assert(item != NULL);
if (xccdf_item_get_type(item) == XCCDF_BENCHMARK) {
xccdf_benchmark_set_resolved(xccdf_item_to_benchmark(item), true);
return; // benchmark has no extends
}
assert(!xccdf_item_get_extends(item) || xccdf_item_get_type(item) & (XCCDF_PROFILE | XCCDF_ITEM));
struct xccdf_item *parent = NULL;
if (xccdf_item_get_type(item) == XCCDF_PROFILE && tailoring != NULL) {
parent = XITEM(_xccdf_tailoring_profile_get_real_parent(tailoring, XPROFILE(item)));
}
else {
parent = xccdf_benchmark_get_member(xccdf_item_get_benchmark(item), xccdf_item_get_type(item), xccdf_item_get_extends(item));
}
if (parent == NULL) return;
if (xccdf_item_get_type(item) != xccdf_item_get_type(parent)) return;
if (xccdf_item_get_type(item) == XCCDF_GROUP && xccdf_version_cmp(xccdf_item_get_schema_version(item), "1.2") >= 0)
return; // Group/@extends= has been obsoleted in XCCDF 1.2
// resolve flags
XCCDF_RESOLVE_FLAG(item, parent, selected);
XCCDF_RESOLVE_FLAG(item, parent, hidden);
XCCDF_RESOLVE_FLAG(item, parent, prohibit_changes);
XCCDF_RESOLVE_FLAG(item, parent, interactive);
XCCDF_RESOLVE_FLAG(item, parent, multiple);
// resolve weight & version
if (!item->item.defined_flags.weight)
xccdf_item_set_weight(item, xccdf_item_get_weight(parent));
if (xccdf_item_get_version(item) == NULL) {
xccdf_item_set_version(item, xccdf_item_get_version(parent));
xccdf_item_set_version_update(item, xccdf_item_get_version_update(parent));
xccdf_item_set_version_time(item, xccdf_item_get_version_time(parent));
}
// resolve textual elements
xccdf_resolve_textlist(item->item.title, parent->item.title, NULL);
xccdf_resolve_textlist(item->item.description, parent->item.description, NULL);
xccdf_resolve_textlist(item->item.question, parent->item.question, NULL);
xccdf_resolve_textlist(item->item.rationale, parent->item.rationale, NULL);
xccdf_resolve_textlist(item->item.warnings, parent->item.warnings, xccdf_resolve_warning);
xccdf_resolve_textlist(item->item.references, parent->item.references, NULL);
// resolve platforms
OSCAP_FOR_STR(platform, xccdf_item_get_platforms(parent))
xccdf_item_add_platform(item, platform);
// resolve properties specific to particular item type
switch (xccdf_item_get_type(item)) {
case XCCDF_PROFILE: xccdf_resolve_profile(item, parent); break;
case XCCDF_GROUP: xccdf_resolve_group(item, parent); break;
case XCCDF_RULE: xccdf_resolve_rule(item, parent); break;
case XCCDF_VALUE: xccdf_resolve_value(item, parent); break;
default: assert(false);
}
// item resolved -> it no longer has a parent
xccdf_item_set_extends(item, NULL);
}
