Change: when sha256sums for notus are missing ignore instead of crash

This commit changes the behaviour of ospd-openvas quitting when sha256sums files are missing to just ignoring the advisories and print a WARNING like: ``` OSPD[316986] 2022-07-27 13:20:01,611: WARNING: (ospd_openvas.notus) ignoring /var/lib/notus/advisories/my test family.notus due to invalid signature ```
greenbone · Aug 8, 2022 · 301e0a5 · 301e0a5
1 parent 78cecf6
commit 301e0a5
Showing 1 changed file with 9 additions and 4 deletions.
diff --git a/ospd_openvas/gpg_sha_verifier.py b/ospd_openvas/gpg_sha_verifier.py
@@ -44,13 +44,18 @@ def create_hash(file: Path) -> str:
         # therefore a collision is not the end of the world and sha1 is more
         # than sufficient
         hasher = hashlib.sha1()
-        with file.open(mode="rb") as f:
-            for hash_file_bytes in iter(lambda: f.read(1024), b""):
-                hasher.update(hash_file_bytes)
-        return hasher.hexdigest()
+        try:
+            with file.open(mode="rb") as f:
+                for hash_file_bytes in iter(lambda: f.read(1024), b""):
+                    hasher.update(hash_file_bytes)
+            return hasher.hexdigest()
+        except FileNotFoundError:
+            return ""
 
     def internal_reload() -> Dict[str, str]:
         fingerprint = create_hash(config.hash_file)
+        if not fingerprint:
+            return {}
         if not config.cache or config.fingerprint != fingerprint:
             config.fingerprint = fingerprint
             config.cache = gpg_sha256sums(config.hash_file, config.gpg)