Add license header to source code files that were missing one

greenbone · Jan 7, 2025 · 14319de · 14319de
1 parent 3026195
commit 14319de
Show file tree

Hide file tree

Showing 54 changed files with 481 additions and 15 deletions.
diff --git a/misc/openvas-krb5.c b/misc/openvas-krb5.c
@@ -1,3 +1,7 @@
+// SPDX-FileCopyrightText: 2025 Greenbone AG
+//
+// SPDX-License-Identifier: GPL-2.0-or-later WITH x11vnc-openssl-exception
+
 #include "openvas-krb5.h"
 
 #include <ctype.h>
@@ -49,7 +53,7 @@
     {                                            \
       for (i = start; i < line_len; i++)         \
         {                                        \
-          if (line[i] != ' ' && line[i] != '\t') \
+          if (line[i] != ' ' && line[i] != '	') \
             {                                    \
               break;                             \
             }                                    \
@@ -66,10 +70,10 @@
 #define GSS_KRB5_INQ_SSPI_SESSION_KEY_OID_LENGTH 11
 // TODO: make GSS_KRB5_INQ_SSPI_SESSION_KEY_OID dynamic
 #define GSS_KRB5_INQ_SSPI_SESSION_KEY_OID \
-  "\x2a\x86\x48\x86\xf7\x12\x01\x02\x02\x05\x05"
+  "*†H†÷"
 
 #ifndef gss_mech_spnego
-gss_OID_desc spnego_mech_oid_desc = {6, (void *) "\x2b\x06\x01\x05\x05\x02"};
+gss_OID_desc spnego_mech_oid_desc = {6, (void *) "+"};
 #define gss_mech_spnego (&spnego_mech_oid_desc)
 #endif
 
@@ -98,7 +102,8 @@ o_krb5_find_kdc (const OKrb5Credential *creds, char **kdc)
 
   while (fgets (line, MAX_LINE_LENGTH, file))
     {
-      line[strcspn (line, "\n")] = 0;
+      line[strcspn (line, "
+")] = 0;
       last_element = strlen (line) - 1;
       SKIP_WS (line, last_element, 0, i);
       if (line[i] == '[' && line[last_element] == ']')
@@ -200,7 +205,8 @@ o_krb5_write_trimmed (FILE *file, const char *prefix, const char *start,
     start++;
   while (end > start && isspace ((unsigned char) *(end - 1)))
     end--;
-  CHECK_FPRINTF (result, file, "%s = %.*s\n", prefix, (int) (end - start),
+  CHECK_FPRINTF (result, file, "%s = %.*s
+", prefix, (int) (end - start),
                  start);
 
 result:
@@ -211,7 +217,8 @@ static OKrb5ErrorCode
 o_krb5_write_realm (FILE *file, const OKrb5Credential *creds, const char *kdc)
 {
   OKrb5ErrorCode result = O_KRB5_SUCCESS;
-  CHECK_FPRINTF (result, file, "%s = {\n", (char *) creds->realm.data);
+  CHECK_FPRINTF (result, file, "%s = {
+", (char *) creds->realm.data);
   const char *kdc_delimiter = strchr (kdc, ',');
   const char *kdc_start = kdc;
   const char *kdc_first_start = kdc_start;
@@ -232,7 +239,9 @@ o_krb5_write_realm (FILE *file, const OKrb5Credential *creds, const char *kdc)
     }
   o_krb5_write_trimmed (file, "  admin_server", kdc_first_start, kdc_first_end);
   o_krb5_write_trimmed (file, "  master_kdc", kdc_first_start, kdc_first_end);
-  CHECK_FPRINT (result, file, "\n}\n");
+  CHECK_FPRINT (result, file, "
+}
+");
 
 result:
   return result;
@@ -256,7 +265,8 @@ o_krb5_add_realm (const OKrb5Credential *creds, const char *kdc)
           result = O_KRB5_CONF_NOT_CREATED;
           goto result;
         }
-      CHECK_FPRINT (result, file, "[realms]\n");
+      CHECK_FPRINT (result, file, "[realms]
+");
       o_krb5_write_realm (file, creds, kdc);
       goto result;
     }

diff --git a/misc/openvas-krb5.h b/misc/openvas-krb5.h
@@ -1,3 +1,7 @@
+// SPDX-FileCopyrightText: 2025 Greenbone AG
+//
+// SPDX-License-Identifier: GPL-2.0-or-later WITH x11vnc-openssl-exception
+
 #include <krb5/krb5.h>
 #include <stdbool.h>
 #ifndef OPENVAS_KRB5

diff --git a/rust/.devcontainer/Dockerfile b/rust/.devcontainer/Dockerfile
@@ -0,0 +1,66 @@
+FROM rust:latest
+ARG UID=1000
+ARG GID=1000
+
+RUN apt-get update && apt-get install -y \
+    sudo \ 
+    git \ 
+    rsync \ 
+    pipx \ 
+    redis-server \ 
+    clangd \
+    # Runtime dependencies, required for .devcontainer
+    nmap \
+    snmp \
+    netdiag \
+    pnscan \
+    linux-perf \
+    # net-tools is required by some nasl plugins.
+    # nasl_pread: Failed to execute child process “netstat” (No such file or directory)
+    net-tools 
+# Add prepare-user-dirs.sh and execcute it
+COPY prepare-user-dirs.sh /prepare-user-dirs.sh
+COPY build-cmake-project.sh /usr/local/bin/build-cmake-project.sh
+RUN chmod +x /usr/local/bin/build-cmake-project.sh
+COPY build-openvas /usr/local/bin/build-openvas
+RUN chmod +x /usr/local/bin/build-openvas
+COPY build-gvm-libs /usr/local/bin/build-gvm-libs
+RUN chmod +x /usr/local/bin/build-gvm-libs
+COPY github-clone.sh /usr/local/bin/github-clone
+RUN chmod +x /usr/local/bin/github-clone
+
+RUN bash /prepare-user-dirs.sh && rm /prepare-user-dirs.sh
+USER user
+RUN python3 -m pipx install greenbone-feed-sync
+# installing gvm-libs and openvas-scanner
+RUN github-clone greenbone/gvm-libs 
+RUN github-clone greenbone/openvas-scanner
+RUN sudo sh /workspaces/greenbone/gvm-libs/.github/install-dependencies.sh
+RUN sudo sh /workspaces/greenbone/openvas-scanner/.github/install-openvas-dependencies.sh
+
+RUN build-gvm-libs
+RUN build-openvas
+# Currently we don't install scannerctl and openvasd as they don't have dependencies
+# that must be preloaded in order to function.
+# WORKDIR /workspaces/openvas/rust/scannerctl 
+# RUN cargo install --path .
+# WORKDIR /workspaces/openvas/rust/openvasd
+# RUN cargo install --path .
+USER redis
+RUN sed 's/redis-openvas/redis/' /workspaces/greenbone/openvas-scanner/config/redis-openvas.conf | tee /etc/redis/redis.conf
+USER user
+# We clean up the cloned repositories as they are usually mounted into the container
+RUN rm -r /workspaces/greenbone
+
+# RUN sudo apt-get clean && sudo rm -rf /var/lib/apt/lists/*
+
+SHELL ["/bin/bash", "-c"]
+
+RUN rustup component add rust-analyzer rust-src
+RUN cargo install flamegraph
+ENV PATH="/home/user/.cargo/bin:${PATH}"
+ENV PATH="/home/user/.local/bin:${PATH}"
+RUN echo "alias start_redis='redis-server /etc/redis/redis.conf'" >> /home/user/.bashrc
+ENV start_redis="redis-server /etc/redis/redis.conf"
+WORKDIR /workspaces/openvas-scanner/rust
+CMD ["bash"]
diff --git a/rust/.devcontainer/Makefile b/rust/.devcontainer/Makefile
@@ -0,0 +1,87 @@
+# TODO: 
+# - add update script
+# - change install-nvim to adapt update script to also update neovim
+
+
+# Get the UID and GID of the user those will be used within the Dockerfile to share the same id between host and container.
+UID := $(shell id -u)
+GID := $(shell id -g)
+MF_DIR := $(dir $(abspath $(lastword $(MAKEFILE_LIST))))
+# if podman exists, use it instead of docker 
+ifneq (,$(shell which podman))
+	CONTAINERR=podman
+else
+	CONTAINERR=docker
+endif
+# disable docker hints, who needs that?
+export DOCKER_CLI_HINTS=false
+
+.PHONY: build
+
+command-exists = $(CONTAINERR) exec -it openvas-dev command -v $(1) >/dev/null 2>&1 && echo "exists" || echo "not exists"
+# @if [ "$$(basename $$SHELL)" = "fish" ]; then \
+get-shell = $(basename $(notdir $(SHELL)))
+
+build:
+	$(CONTAINERR) build \
+		--build-arg UID=$(UID) \
+		--build-arg GID=$(GID) \
+		-t openvas-dev:latest \
+		.
+
+start: 
+	$(CONTAINERR) start openvas-dev
+
+create:
+	$(CONTAINERR) create -it \
+		--name openvas-dev \
+		-v $(HOME)/.ssh:/home/user/.ssh\
+		-v $(HOME)/.config:/home/user/.config\
+		-v $(HOME)/.gitconfig:/home/user/.gitconfig \
+		openvas-dev:latest
+
+is-running:
+	$(CONTAINERR) ps -q --filter "name=openvas-dev" | grep -q . 
+
+enforce-running:
+	$(MAKE) is-running || $(MAKE) start || $(MAKE) create && $(MAKE) start 
+
+install-fish: enforce-running
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "sudo apt update"
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "sudo apt install -y fish"
+	# doesn't work because of attached tty on create there is no reinit of the shell
+	#$(CONTAINERR) exec -it openvas-dev /bin/bash -c "sudo chsh -s /usr/bin/fish user"
+
+install-pyright: enforce-running
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "pipx install pyright"
+
+
+install-rg-fzf: enforce-running
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "sudo apt update"
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "sudo apt install -y ripgrep fzf"
+
+install-nvim: install-rg-fzf
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "sudo apt install -y ninja-build gettext cmake unzip curl build-essential nodejs"
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "github-clone neovim/neovim"
+	$(CONTAINERR) exec -it openvas-dev /bin/bash -c "cd /workspaces/neovim/neovim && make CMAKE_BUILD_TYPE=RelWithDebInfo && sudo make install"
+
+
+enter: enforce-running
+	@if $(call command-exists,fish); then \
+		$(MAKE) enter-fish; \
+	else \
+		$(MAKE) enter-bash; \
+	fi
+
+enter-bash: enforce-running
+	$(CONTAINERR) exec -it openvas-dev /bin/bash
+
+# TODO: detect running shell and use that
+enter-fish: enforce-running
+	$(CONTAINERR) exec -it openvas-dev /usr/bin/fish
+
+stop:
+	-$(CONTAINERR) stop openvas-dev
+
+rm: stop
+	$(CONTAINERR) rm openvas-dev
diff --git a/rust/.devcontainer/build-cmake-project.sh b/rust/.devcontainer/build-cmake-project.sh
@@ -0,0 +1,10 @@
+#/bin/sh
+[ -d "$1" ] && WORKD_DIR="$1" || (
+    echo "Usage: $0 <project-dir>"
+    exit 1
+)
+cd $WORKD_DIR
+set -ex
+cmake -B build -DCMAKE_EXPORT_COMPILE_COMMANDS=ON
+cmake --build build --target install
+sudo ldconfig
diff --git a/rust/.devcontainer/build-gvm-libs b/rust/.devcontainer/build-gvm-libs
@@ -0,0 +1,8 @@
+#!/bin/bash
+owner=${1:-greenbone}
+if [ -d "/workspaces/$owner" ]; then
+    target_dir="/workspaces/$owner/gvm-libs"
+else
+    target_dir="/workspaces/gvm-libs"
+fi
+/usr/local/bin/build-cmake-project.sh "$target_dir"
diff --git a/rust/.devcontainer/build-openvas b/rust/.devcontainer/build-openvas
@@ -0,0 +1,9 @@
+#!/bin/bash
+owner=${1:-greenbone}
+if [ -d "/workspaces/$owner" ]; then
+    target_dir="/workspaces/$owner/openvas-scanner"
+else
+    target_dir="/workspaces/openvas-scanner"
+fi
+
+/usr/local/bin/build-cmake-project.sh "$target_dir"
diff --git a/rust/.devcontainer/devcontainer.json b/rust/.devcontainer/devcontainer.json
@@ -0,0 +1,3 @@
+{
+  "build": { "dockerfile": "Dockerfile" },
+}
diff --git a/rust/.devcontainer/github-clone.sh b/rust/.devcontainer/github-clone.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+
+if [ -z "$1" ]; then
+    echo "Error: Repository name is not provided."
+    exit 1
+fi
+
+IFS='/' read -r owner repo <<< "$1"
+
+parent_dir="/workspaces"
+if [ ! -d "$parent_dir" ]; then
+    echo "Parent directory '$parent_dir' does not exist. Creating it."
+    mkdir -p "$parent_dir"
+fi
+
+owner_dir="$parent_dir/$owner"
+if [ ! -d "$owner_dir" ]; then
+    echo "Owner directory '$owner_dir' does not exist. Creating it."
+    mkdir -p "$owner_dir"
+fi
+
+target_dir="/workspaces/$1"
+
+if [ -d "$target_dir" ]; then
+    echo "Error: Target directory '$target_dir' already exists."
+    exit 1
+fi
+
+if ls $HOME/.ssh/id_* &>/dev/null; then
+    if git clone [email protected]:$1.git "$target_dir"; then
+        echo "Cloning with SSH URL successful."
+    else
+        echo "Warning: Cloning with SSH URL failed. Falling back to HTTPS URL."
+        git clone https://github.com/$1.git "$target_dir"
+    fi
+else
+    git clone https://github.com/$1.git "$target_dir"
+fi
diff --git a/rust/.devcontainer/prepare-user-dirs.sh b/rust/.devcontainer/prepare-user-dirs.sh
@@ -0,0 +1,44 @@
+#!/bin/sh
+# This scripts creates the dirs defined in dirs and sets the rights to the given user and id.
+# This script creates a user with a $UID as well as a group with $GID 
+# afterwards it creates set of directories, assigns ownership to a newly created user and group, and configures sudo permissions for the user.
+# This is done to allow cmake --build build --target install to work without permission issues.
+
+dirs="
+/workspaces
+/run/gvm
+/var/log/gvm
+/etc/openvas
+/var/lib/openvas
+/usr/local/lib
+/usr/local/share/man/man1/
+/usr/local/share/man/man8/
+/usr/local/include/gvm
+/usr/local/share/openvas
+/usr/local/bin
+/usr/local/sbin
+/var/lib/openvas
+/var/lib/notus
+/var/lib/gvm
+/var/lib/openvasd
+/etc/openvasd
+/run/redis
+"
+
+set -ex
+groupadd --gid "$GID" "developer" || true
+# for the case that the GID already existed when we tried to create developer
+# this can happen when we reuse staff from a mac os host
+group_name=$(getent group "$GID" | cut -d: -f1) 
+
+useradd --uid "$UID" --gid "$group_name" --shell /bin/bash --groups redis --create-home user
+
+for dir in ${dirs[@]}; do
+	if [ ! -d $dir ]; then
+		mkdir -p $dir
+	fi
+	chown -R user:$group_name $dir
+done
+# allow user to run sudo without password since it is intented as development 
+# container it is assumed that the user wants to install or manipulate the container
+echo "user ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/user
diff --git a/rust/src/feed/transpile/error.rs b/rust/src/feed/transpile/error.rs
@@ -1,3 +1,7 @@
+// SPDX-FileCopyrightText: 2025 Greenbone AG
+//
+// SPDX-License-Identifier: GPL-2.0-or-later WITH x11vnc-openssl-exception
+
 use thiserror::Error;
 
 use crate::nasl::syntax::{LoadError, Statement};

diff --git a/rust/src/lib.rs b/rust/src/lib.rs
@@ -1,3 +1,7 @@
+// SPDX-FileCopyrightText: 2025 Greenbone AG
+//
+// SPDX-License-Identifier: GPL-2.0-or-later WITH x11vnc-openssl-exception
+
 pub mod feed;
 pub mod models;
 pub mod nasl;

diff --git a/rust/src/models/resources/check.rs b/rust/src/models/resources/check.rs
@@ -1,3 +1,7 @@
+// SPDX-FileCopyrightText: 2025 Greenbone AG
+//
+// SPDX-License-Identifier: GPL-2.0-or-later WITH x11vnc-openssl-exception
+
 use crate::models::scanner::ObservableResources;
 
 /// Checks for relative resource availability.

diff --git a/rust/src/models/resources/mod.rs b/rust/src/models/resources/mod.rs
@@ -1,3 +1,7 @@
+// SPDX-FileCopyrightText: 2025 Greenbone AG
+//
+// SPDX-License-Identifier: GPL-2.0-or-later WITH x11vnc-openssl-exception
+
 pub mod check;
 
 #[derive(Debug)]