Check sudo permissions before call openvas.

[jjnicola]

Check if the user running ospd-openvas has permissions to call openvas
with sudo and without password.
Depending on it, it will run openvas with sudo or without it.

How to give the user permission to call openvas with sudo and without password:
$ sudo visudo
Add at the end of the file
<user> ALL = NOPASSWD: /<install/path/sbin/openvas

[bjoernricks]

For sudo_available I would propose to use the property decorator https://docs.python.org/3/library/functions.html#property

It allows to use calling a method when a property on the class instance is accessed.

[bjoernricks]

Suggested change

	return _sudo_available
	self._sudo_available = False

[bjoernricks]

Suggested change

	)
	)
	self._sudo_available = True

[bjoernricks]

Just remove these lines above.

[bjoernricks]

check_call doesn't return the returncode. If the returncode is != 0 it raises an exception https://docs.python.org/3/library/subprocess.html#subprocess.check_output So no need to check the result.

[bjoernricks]

Suggested change

	def sudo_check(self):
	@property
	def sudo_available(self):

[bjoernricks]

Suggested change

	""" Checks that sudo is available and set the global var. """
	""" Checks that sudo is available and set the global var. """
	if self._sudo_available is not None:
	return self._sudo_available

[bjoernricks]

Suggested change

_sudo_available = False

[bjoernricks]

Suggested change

	result = subprocess.check_call(
	subprocess.check_call(

[bjoernricks]

These lines can be simplified by something like:

cmd = ['openvas', '--scan-stop', scan_id]
if self.sudo_available:
    cmd = ['sudo'] + cmd

[bjoernricks]

Can be simplified as above.

Maybe it would even better to extract calling openvas into an own method/function e.g.

def call_openvas(args, use_sudo=False, niceness=None):
   cmd = args

   if use_sudo:
       cmd = ['sudo'] + cmd

   if niceness is not None:
      cmd = ['nice', ...] + cmd

    try:
        subproces. ....
    ...

but i am not 100 percent sure about that because we are calling different functions of subrocess at the moment with slightly different arguments.

[codecov]

Codecov Report

Merging #87 into master will decrease coverage by 0.22%.
The diff coverage is 37.5%.

@@            Coverage Diff             @@
##           master      #87      +/-   ##
==========================================
- Coverage    72.1%   71.88%   -0.23%     
==========================================
  Files           4        4              
  Lines         864      875      +11     
==========================================
+ Hits          623      629       +6     
- Misses        241      246       +5

Impacted Files	Coverage Δ
ospd_openvas/wrapper.py	59.02% <37.5%> (-0.09%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 5cbc020...8594ead. Read the comment docs.

[codecov]

Codecov Report

Merging #87 into master will decrease coverage by 0.15%.
The diff coverage is 44.44%.

@@            Coverage Diff             @@
##           master      #87      +/-   ##
==========================================
- Coverage    72.1%   71.94%   -0.16%     
==========================================
  Files           4        4              
  Lines         864      877      +13     
==========================================
+ Hits          623      631       +8     
- Misses        241      246       +5

Impacted Files	Coverage Δ
ospd_openvas/wrapper.py	59.15% <44.44%> (+0.05%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 5cbc020...d75ef15. Read the comment docs.