security: Properly handle sandbox analysis of timer units (!2136) · Merge requests · FreedomBox / FreedomBox · GitLab

Sunil Mohan Adapa requested to merge sunilmohan/freedombox:fix-wordpress-timer-security-analysis into master Nov 09, 2021

When a timer is provided to 'systemctl show' not all expected keys are provided in the result. This leads to a KeyError exception.
Also the security analysis for a timer unit is not useful. Instead perform the analysis on the corresponding .service unit.

Closes: #2145 (closed)

Tests:

Before the patch, Wordpress shows as not sandboxed. The security report page crashes on Debian testing setup.
After the patch, there is no crash. Wordpress shows as sandboxed with 86% coverage.

Signed-off-by: Sunil Mohan Adapa sunil@medhas.org