add db backend redis (#445)

2017-06-27 18:10:09 +09:00
parent c442a433b0
commit 7778783dd8
16 changed files with 282 additions and 152 deletions
--- a/report/cve_client.go
+++ b/report/cve_client.go
@@ -26,6 +26,7 @@ import (
 	"github.com/cenkalti/backoff"
 	"github.com/parnurzeal/gorequest"

+	log "github.com/Sirupsen/logrus"
 	"github.com/future-architect/vuls/config"
 	"github.com/future-architect/vuls/util"
 	cveconfig "github.com/kotakanbe/go-cve-dictionary/config"
@@ -69,7 +70,7 @@ type response struct {
 	CveDetail cve.CveDetail
 }

-func (api cvedictClient) FetchCveDetails(cveIDs []string) (cveDetails cve.CveDetails, err error) {
+func (api cvedictClient) FetchCveDetails(cveIDs []string) (cveDetails []*cve.CveDetail, err error) {
 	if !api.isFetchViaHTTP() {
 		return api.FetchCveDetailsFromCveDB(cveIDs)
 	}
@@ -111,26 +112,26 @@ func (api cvedictClient) FetchCveDetails(cveIDs []string) (cveDetails cve.CveDet
 		select {
 		case res := <-resChan:
 			if len(res.CveDetail.CveID) == 0 {
-				cveDetails = append(cveDetails, cve.CveDetail{
+				cveDetails = append(cveDetails, &cve.CveDetail{
 					CveID: res.Key,
 				})
 			} else {
-				cveDetails = append(cveDetails, res.CveDetail)
+				cveDetails = append(cveDetails, &res.CveDetail)
 			}
 		case err := <-errChan:
 			errs = append(errs, err)
 		case <-timeout:
-			return []cve.CveDetail{}, fmt.Errorf("Timeout Fetching CVE")
+			return []*cve.CveDetail{}, fmt.Errorf("Timeout Fetching CVE")
 		}
 	}
 	if len(errs) != 0 {
-		return []cve.CveDetail{},
+		return []*cve.CveDetail{},
 			fmt.Errorf("Failed to fetch CVE. err: %v", errs)
 	}
 	return
 }

-func (api cvedictClient) FetchCveDetailsFromCveDB(cveIDs []string) (cveDetails cve.CveDetails, err error) {
+func (api cvedictClient) FetchCveDetailsFromCveDB(cveIDs []string) (cveDetails []*cve.CveDetail, err error) {
 	util.Log.Debugf("open cve-dictionary db (%s)", config.Conf.CveDBType)
 	cveconfig.Conf.DBType = config.Conf.CveDBType
 	if config.Conf.CveDBType == "sqlite3" {
@@ -139,14 +140,27 @@ func (api cvedictClient) FetchCveDetailsFromCveDB(cveIDs []string) (cveDetails c
 		cveconfig.Conf.DBPath = config.Conf.CveDBURL
 	}
 	cveconfig.Conf.DebugSQL = config.Conf.DebugSQL
-	if err := cvedb.OpenDB(); err != nil {
-		return []cve.CveDetail{},
+
+	var driver cvedb.DB
+	if driver, err = cvedb.NewDB(cveconfig.Conf.DBType); err != nil {
+		log.Error(err)
+		return []*cve.CveDetail{}, fmt.Errorf("Failed to New DB. err: %s", err)
+	}
+
+	log.Infof("Opening DB (%s).", driver.Name())
+	if err := driver.OpenDB(
+		cveconfig.Conf.DBType,
+		cveconfig.Conf.DBPath,
+		cveconfig.Conf.DebugSQL,
+	); err != nil {
+		return []*cve.CveDetail{},
 			fmt.Errorf("Failed to open DB. err: %s", err)
 	}
+
 	for _, cveID := range cveIDs {
-		cveDetail := cvedb.Get(cveID)
+		cveDetail := driver.Get(cveID)
 		if len(cveDetail.CveID) == 0 {
-			cveDetails = append(cveDetails, cve.CveDetail{
+			cveDetails = append(cveDetails, &cve.CveDetail{
 				CveID: cveID,
 			})
 		} else {
@@ -203,12 +217,12 @@ func (api cvedictClient) isFetchViaHTTP() bool {
 	return false
 }

-func (api cvedictClient) FetchCveDetailsByCpeName(cpeName string) ([]cve.CveDetail, error) {
+func (api cvedictClient) FetchCveDetailsByCpeName(cpeName string) ([]*cve.CveDetail, error) {
 	if api.isFetchViaHTTP() {
 		api.baseURL = config.Conf.CveDBURL
 		url, err := util.URLPathJoin(api.baseURL, "cpes")
 		if err != nil {
-			return []cve.CveDetail{}, err
+			return []*cve.CveDetail{}, err
 		}

 		query := map[string]string{"name": cpeName}
@@ -219,7 +233,7 @@ func (api cvedictClient) FetchCveDetailsByCpeName(cpeName string) ([]cve.CveDeta
 	return api.FetchCveDetailsByCpeNameFromDB(cpeName)
 }

-func (api cvedictClient) httpPost(key, url string, query map[string]string) ([]cve.CveDetail, error) {
+func (api cvedictClient) httpPost(key, url string, query map[string]string) ([]*cve.CveDetail, error) {
 	var body string
 	var errs []error
 	var resp *http.Response
@@ -240,18 +254,18 @@ func (api cvedictClient) httpPost(key, url string, query map[string]string) ([]c
 	}
 	err := backoff.RetryNotify(f, backoff.NewExponentialBackOff(), notify)
 	if err != nil {
-		return []cve.CveDetail{}, fmt.Errorf("HTTP Error %s", err)
+		return []*cve.CveDetail{}, fmt.Errorf("HTTP Error %s", err)
 	}

-	cveDetails := []cve.CveDetail{}
+	cveDetails := []*cve.CveDetail{}
 	if err := json.Unmarshal([]byte(body), &cveDetails); err != nil {
-		return []cve.CveDetail{},
+		return []*cve.CveDetail{},
 			fmt.Errorf("Failed to Unmarshall. body: %s, err: %s", body, err)
 	}
 	return cveDetails, nil
 }

-func (api cvedictClient) FetchCveDetailsByCpeNameFromDB(cpeName string) ([]cve.CveDetail, error) {
+func (api cvedictClient) FetchCveDetailsByCpeNameFromDB(cpeName string) (cveDetails []*cve.CveDetail, err error) {
 	util.Log.Debugf("open cve-dictionary db (%s)", config.Conf.CveDBType)
 	cveconfig.Conf.DBType = config.Conf.CveDBType
 	if config.Conf.CveDBType == "sqlite3" {
@@ -261,9 +275,20 @@ func (api cvedictClient) FetchCveDetailsByCpeNameFromDB(cpeName string) ([]cve.C
 	}
 	cveconfig.Conf.DebugSQL = config.Conf.DebugSQL

-	if err := cvedb.OpenDB(); err != nil {
-		return []cve.CveDetail{},
+	var driver cvedb.DB
+	if driver, err = cvedb.NewDB(cveconfig.Conf.DBType); err != nil {
+		log.Error(err)
+		return []*cve.CveDetail{}, fmt.Errorf("Failed to New DB. err: %s", err)
+	}
+
+	log.Infof("Opening DB (%s).", driver.Name())
+	if err = driver.OpenDB(
+		cveconfig.Conf.DBType,
+		cveconfig.Conf.DBPath,
+		cveconfig.Conf.DebugSQL,
+	); err != nil {
+		return []*cve.CveDetail{},
 			fmt.Errorf("Failed to open DB. err: %s", err)
 	}
-	return cvedb.GetByCpeName(cpeName), nil
+	return driver.GetByCpeName(cpeName), nil
 }
--- a/report/report.go
+++ b/report/report.go
@@ -19,7 +19,6 @@ package report

 import (
 	"fmt"
-	"os"

 	c "github.com/future-architect/vuls/config"
 	"github.com/future-architect/vuls/models"
@@ -79,19 +78,6 @@ func FillCveInfos(rs []models.ScanResult, dir string) ([]models.ScanResult, erro

 func fillCveInfo(r *models.ScanResult) error {
 	util.Log.Debugf("need to refresh")
-	if c.Conf.CveDBType == "sqlite3" && c.Conf.CveDBURL == "" {
-		if _, err := os.Stat(c.Conf.CveDBPath); os.IsNotExist(err) {
-			return fmt.Errorf("SQLite3 DB(CVE-Dictionary) is not exist: %s",
-				c.Conf.CveDBPath)
-		}
-	}
-	if c.Conf.OvalDBType == "sqlite3" && c.Conf.OvalDBURL == "" {
-		if _, err := os.Stat(c.Conf.OvalDBPath); os.IsNotExist(err) {
-			// TODO Warning??
-			return fmt.Errorf("SQLite3 DB(OVAL-Dictionary) is not exist: %s",
-				c.Conf.OvalDBPath)
-		}
-	}

 	util.Log.Debugf("Fill CVE detailed information with OVAL")
 	if err := fillWithOval(r); err != nil {
@@ -156,15 +142,15 @@ func fillWithCveDB(r *models.ScanResult) error {
 func fillWithOval(r *models.ScanResult) error {
 	var ovalClient oval.Client
 	switch r.Family {
-	case "debian":
+	case c.Debian:
 		ovalClient = oval.NewDebian()
-	case "ubuntu":
+	case c.Ubuntu:
 		ovalClient = oval.NewUbuntu()
-	case "rhel":
+	case c.RedHat:
 		ovalClient = oval.NewRedhat()
-	case "centos":
+	case c.CentOS:
 		ovalClient = oval.NewCentOS()
-	case "amazon", "oraclelinux", "Raspbian", "FreeBSD":
+	case c.Amazon, c.Oracle, c.Raspbian, c.FreeBSD:
 		//TODO implement OracleLinux
 		return nil
 	default: