OutputEngine: Console Output Updated

Signed-off-by: John Andersen <[email protected]>

Author: SinghHrmn

cve_bin_tool/OutputEngine.py

@@ -7,6 +7,14 @@
 
 
 class OutputEngine(object):
+
+    # Max space for each console tabular cell
+    MODULENAME_MAX = 18
+    VERSION_MAX = 9
+    CVE_NUMBER_MAX = 18
+    CVE_SEVERITY_MAX = 9
+    DOTS = "..."
+
     def __init__(self, filename=None, modules=None, logger=None):
         if logger is None:
             logger = LOGGER.getChild(self.__class__.__name__)
@@ -27,8 +35,10 @@ def output_cves(self, outfile, output=None):
         """
         if output == "json":
             self.output_json(outfile)
-        else:  # csv, console, or anything else that is unrecognised
+        elif output == "csv":
             self.output_csv(outfile)
+        else:  # console, or anything else that is unrecognised
+            self.output_console(outfile)
 
     def formatted_modules(self):
         """ Returns self.modules converted into form
@@ -62,6 +72,87 @@ def output_csv(self, outfile):
                     row = [modulename, version, cve_number, cve_severity]
                     writer.writerow(row)
 
+    def write_console(self, modulename, version, cve_number, cve_severity, outfile):
+        """ Output Module, Version, CVE_Number, Severity to the console in tabular form"""
+
+        if len(modulename) > (self.MODULENAME_MAX - len(self.DOTS)):
+            modulename = modulename[: self.MODULENAME_MAX - len(self.DOTS)] + self.DOTS
+
+        # Calculate length of -- modulename, version, cve_number, cve_severity
+        modulename_len = len(modulename)
+        version_len = len(str(version))
+        cve_number_len = len(cve_number)
+        cve_severity_len = len(cve_severity)
+
+        # Generate all the fields with appropriate space to be fit into tabular form
+        modulename = f"{modulename}{' '* (self.MODULENAME_MAX - modulename_len)}"
+        version = f"{version}{' '* (self.VERSION_MAX - version_len)}"
+        cve_number = f"{cve_number}{' '* (self.CVE_NUMBER_MAX - cve_number_len)}"
+        cve_severity = (
+            f"{cve_severity}{' '* (self.CVE_SEVERITY_MAX - cve_severity_len)}"
+        )
+
+        # End string marks end for the previous length data
+        end_string = f"+{'-'*(self.MODULENAME_MAX + 2)}+{'-'*(self.VERSION_MAX + 2)}+{'-'*(self.CVE_NUMBER_MAX + 2)}+{'-'*(self.CVE_SEVERITY_MAX + 2)}+\n"
+
+        # string generate the details in tabular form
+        string = f"| {modulename} | {version} | {cve_number} | {cve_severity} |\n"
+
+        # Write String and End String to the console
+        outfile.write(string)
+        outfile.write(end_string)
+
+    def output_console(self, outfile):
+        """ Output list of CVEs in a tabular format  """
+
+        # Now contains the time at which report is generated
+        now = datetime.now().strftime("%Y-%m-%d  %H:%m:%S")
+
+        # The main heading containing CVE-Bin-Tool logo
+        heading = f"""
++=================================================================+
+|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
++=================================================================+
+||     ____  __        __  _____      ______    __    __    _    ||
+||    /$$$$| \$\      /$/ |$$$$$|    |$$$$$$\  |$$|  |$$\  |$|   ||
+||   |$$      \$\    /$/  |$____     |$____$/  |$$|  |$$$\ |$|   ||
+||   |$$       \$\  /$/   |$$$$$| == |$$$$$$\  |$$|  |$|\$\|$|   ||
+||   |$$        \$\/$/    |$____  `` |$_____$  |$$|  |$| \$$$|   ||
+||    \$$$$|     \$$/     |$$$$$|    |$$$$$$/  |$4|  |$|  \$$|   ||
+||     `````      ``       ``````     ``````    ```   ``   ```   ||
+||     ____________    ________      ________     __             ||
+||    |$$$$$$$$$$$$|  /$$$$$$$$\    /$$$$$$$$\   |$$|            ||
+||         |$$|      |$$|    |$$|  |$$|    |$$|  |$$|            ||
+||         |$$|      |$$|    |$$|  |$$|    |$$|  |$$|            ||
+||         |$$|      |$$|    |$$|  |$$|    |$$|  |$$|            ||
+||         |$$|      |$$|    |$$|  |$$|    |$$|  |$$|_______     ||
+||         |$$|       \$$$$$$$$/    \$$$$$$$$/   |$$$$$$$$$$|    ||
+||         ````        ````````      ````````    ````````````    ||
++=================================================================+
+|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
++=================================================================+
+
++=================================================================+
+|   Report Generated:{now}                         |
++=================================================================+
+
++=================================================================+
+|   MODULE NAME      |  VERSION  |    CVE NUMBER      | SEVERITY  |
++=================================================================+
+"""
+
+        # Outputs Heading to the console
+        outfile.write(heading)
+
+        # for every module that is scanned -- output to the console
+        for modulename, versions in self.modules.items():
+            for version, cve_list in versions.items():
+                for cve_number, cve_severity in cve_list.items():
+                    # call to the write_console function for each module,version
+                    self.write_console(
+                        modulename, version, cve_number, cve_severity, outfile
+                    )
+
     def output_file(self, output="csv"):
 
         """ Generate a file for list of CVE """

test/test_output_engine.py

@@ -5,6 +5,7 @@
 import io
 import json
 import csv
+import sys
 
 from cve_bin_tool.OutputEngine import OutputEngine
 
@@ -59,3 +60,49 @@ def test_output_csv(self):
                 read_modules[modulename][version] = {}
             read_modules[modulename][version][cve_number] = severity
         self.assertEqual(read_modules, self.MOCK_MODULES)
+
+    def test_output_console(self):
+        """Test Formatting Output as console"""
+
+        # list of mock modules having length greater than the current Respective Max Length
+        mock_module_names = [
+            "ABCDEFGHIJKLMNOPQRS",
+            "ABCDEFGHIJKLMNOPQR",
+            "ABCDEFGHIJKLMNOPQ",
+            "ABCDEFGHIJKLMNOP",
+            "ABCDEFGHIJKLMNO",
+            "ABCDEFGHIJKLMN",
+            "glibc",
+            "I'm a different module",
+        ]
+
+        # generate output
+        for name in mock_module_names:
+            self.output_engine.write_console(
+                name, "0.0.1", "CVE-2018-12381", "HIGH", self.mock_file
+            )
+
+        # expected output
+        output_modules = """| ABCDEFGHIJKLMNO... | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| ABCDEFGHIJKLMNO... | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| ABCDEFGHIJKLMNO... | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| ABCDEFGHIJKLMNO... | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| ABCDEFGHIJKLMNO    | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| ABCDEFGHIJKLMN     | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| glibc              | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+| I'm a different... | 0.0.1     | CVE-2018-12381     | HIGH      |
++--------------------+-----------+--------------------+-----------+
+"""
+        self.mock_file.seek(0)  # reset file position
+
+        output = self.mock_file.getvalue().split("\n")
+        for i, line in enumerate(output_modules.split("\n")):
+            with self.subTest(i=i):
+                self.assertEqual(line, output[i])