File: constraint.py

package info (click to toggle)
setools 4.6.0-2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 3,600 kB
  • sloc: python: 24,485; makefile: 14
file content (92 lines) | stat: -rw-r--r-- 3,050 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
 
# Copyright 2016, Tresys Technology, LLC
#
# SPDX-License-Identifier: LGPL-2.1-only
#

import typing

from PyQt6 import QtCore
import setools

from .. import details
from .modelroles import ModelRoles
from .table import SEToolsTableModel

HAS_PERMS: typing.Final[tuple[setools.ConstraintRuletype, ...]] = (
    setools.ConstraintRuletype.constrain,
    setools.ConstraintRuletype.mlsconstrain)

__all__ = ("ConstraintTable",)


class ConstraintTable(SEToolsTableModel[setools.Constraint]):

    """A table-based model for constraints."""

    headers = ["Rule Type", "Class", "Permissions", "Expression"]

    def data(self, index: QtCore.QModelIndex, role: int = ModelRoles.DisplayRole):
        if not self.item_list or not index.isValid():
            return None

        row = index.row()
        col = index.column()
        rule = self.item_list[row]

        match role:
            case ModelRoles.DisplayRole:
                match col:
                    case 0:
                        return rule.ruletype.name
                    case 1:
                        return rule.tclass.name
                    case 2:
                        if rule.ruletype in HAS_PERMS:
                            return ", ".join(sorted(rule.perms))
                        else:
                            return None
                    case 3:
                        return str(rule.expression)

            case ModelRoles.ContextMenuRole:
                if col == 2:
                    return details.objclass_detail_action(rule.tclass)

            case ModelRoles.WhatsThisRole:
                match col:
                    case 0:
                        column_whatsthis = \
                            """
                            <p>This is the type of constraint.</p>
                            """
                    case 1:
                        column_whatsthis = \
                            """
                            <p>This is the object class of the constraint.</p>
                            """
                    case 2:
                        if rule.ruletype in HAS_PERMS:
                            column_whatsthis = \
                                """
                                <p>These are the permissions of the constraint.</p>
                                """
                        else:
                            column_whatsthis = f"This column does not apply to {rule.ruletype}."
                    case 3:
                        column_whatsthis = \
                            """
                            <p>This expression of the constraint.</p>
                            """
                    case _:
                        column_whatsthis = ""

                return \
                    f"""
                    <b><p>Table Representation of Constraints</p></b>

                    <p>Each part of the rule is represented as a column in the table.</p>

                    {column_whatsthis}
                    """

        return super().data(index, role)