Parse and sync OVAL definitions in bulk

Author: HoussemNasri

java/code/src/com/redhat/rhn/manager/audit/CVEAuditManagerOVAL.java

@@ -29,11 +29,12 @@
 
 import com.suse.oval.OVALCleaner;
 import com.suse.oval.OsFamily;
-import com.suse.oval.OvalParser;
 import com.suse.oval.config.OVALConfigLoader;
 import com.suse.oval.ovaldownloader.OVALDownloadResult;
 import com.suse.oval.ovaldownloader.OVALDownloader;
 import com.suse.oval.ovaltypes.OvalRootType;
+import com.suse.oval.parser.OVALResources;
+import com.suse.oval.parser.OvalParser;
 import com.suse.oval.vulnerablepkgextractor.VulnerablePackage;
 
 import org.apache.logging.log4j.LogManager;
@@ -345,29 +346,35 @@ public static void syncOVAL() {
             LOG.warn("OVAL patch file: " + downloadResult.getPatchFile().map(File::getAbsoluteFile).orElse(null));
 
             downloadResult.getVulnerabilityFile().ifPresent(ovalVulnerabilityFile -> {
-                OvalParser ovalParser = new OvalParser();
-                OvalRootType ovalRoot = ovalParser.parse(ovalVulnerabilityFile);
-
-                LOG.warn("Saving Vulnerability OVAL for {} {}", product.getOsFamily(), product.getOsVersion());
-
-                OVALCleaner.cleanup(ovalRoot, product.getOsFamily(), product.getOsVersion());
-                OVALCachingFactory.savePlatformsVulnerablePackages(ovalRoot);
+                LOG.warn("Syncing Vulnerability OVAL for {} {}",
+                        product.getOsFamily(), product.getOsVersion());
+                syncOVALFromFile(product, ovalVulnerabilityFile);
             });
 
             downloadResult.getPatchFile().ifPresent(patchFile -> {
-                OvalParser ovalParser = new OvalParser();
-                OvalRootType ovalRoot = ovalParser.parse(patchFile);
-
-                LOG.warn("Saving Patch OVAL for {} {}", product.getOsFamily(), product.getOsVersion());
-
-                OVALCleaner.cleanup(ovalRoot, product.getOsFamily(), product.getOsVersion());
-                OVALCachingFactory.savePlatformsVulnerablePackages(ovalRoot);
+                LOG.warn("Syncing Patch OVAL for {} {}", product.getOsFamily(), product.getOsVersion());
+                syncOVALFromFile(product, patchFile);
             });
 
             LOG.warn("Saving OVAL finished");
         }
     }
 
+    private static void syncOVALFromFile(OVALProduct product, File ovalVulnerabilityFile) {
+        OvalParser ovalParser = new OvalParser();
+        OVALResources ovalResources = ovalParser.parseResources(ovalVulnerabilityFile);
+        ovalParser.parseDefinitionsInBulk(ovalVulnerabilityFile, (definitionsBulk) -> {
+            OvalRootType ovalRoot = new OvalRootType();
+            ovalRoot.setDefinitions(definitionsBulk);
+            ovalRoot.setTests(ovalResources.getTests());
+            ovalRoot.setObjects(ovalResources.getObjects());
+            ovalRoot.setStates(ovalResources.getStates());
+
+            OVALCleaner.cleanup(ovalRoot, product.getOsFamily(), product.getOsVersion());
+            OVALCachingFactory.savePlatformsVulnerablePackages(ovalRoot);
+        });
+    }
+
     /**
      * Identifies the OS products to synchronize OVAL data for.
      * */

java/code/src/com/redhat/rhn/manager/audit/test/CVEAuditManagerOVALTest.java

@@ -47,7 +47,7 @@
 import com.suse.oval.OVALCachingFactory;
 import com.suse.oval.OVALCleaner;
 import com.suse.oval.OsFamily;
-import com.suse.oval.OvalParser;
+import com.suse.oval.parser.OvalParser;
 import com.suse.oval.ovaltypes.OvalRootType;
 
 import org.apache.logging.log4j.LogManager;

java/code/src/com/suse/oval/exceptions/OvalParserException.java

@@ -15,8 +15,10 @@
 
 package com.suse.oval.exceptions;
 
+import com.suse.oval.parser.OvalParser;
+
 /**
- * A runtime exception throne by {@link com.suse.oval.OvalParser} when it encounters errors while parsing an OVAL file
+ * A runtime exception throne by {@link OvalParser} when it encounters errors while parsing an OVAL file
  * */
 public class OvalParserException extends RuntimeException {
 

java/code/src/com/suse/oval/manager/OVALResourcesCache.java

@@ -15,7 +15,7 @@
 
 package com.suse.oval.manager;
 
-import com.suse.oval.parser.OVALResourcesResult;
+import com.suse.oval.parser.OVALResources;
 import com.suse.oval.ovaltypes.ObjectType;
 import com.suse.oval.ovaltypes.OvalRootType;
 import com.suse.oval.ovaltypes.StateType;
@@ -39,7 +39,7 @@ public OVALResourcesCache(OvalRootType rootType) {
         this.objectManager = new OvalObjectManager(rootType.getObjects());
     }
 
-    public OVALResourcesCache(OVALResourcesResult resourcesResult) {
+    public OVALResourcesCache(OVALResources resourcesResult) {
         this.stateManager = new OvalStateManager(resourcesResult.getStates());
         this.testManager = new OvalTestManager(resourcesResult.getTests());
         this.objectManager = new OvalObjectManager(resourcesResult.getObjects());

java/code/src/com/suse/oval/parser/OVALDefinitionsBulkHandler.java

@@ -0,0 +1,26 @@
+/*
+ * Copyright (c) 2023 SUSE LLC
+ *
+ * This software is licensed to you under the GNU General Public License,
+ * version 2 (GPLv2). There is NO WARRANTY for this software, express or
+ * implied, including the implied warranties of MERCHANTABILITY or FITNESS
+ * FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv2
+ * along with this software; if not, see
+ * http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
+ *
+ * Red Hat trademarks are not licensed under GPLv2. No permission is
+ * granted to use or replicate Red Hat trademarks that are incorporated
+ * in this software or its documentation.
+ */
+
+package com.suse.oval.parser;
+
+import java.util.List;
+
+import com.suse.oval.manager.OVALResourcesCache;
+import com.suse.oval.ovaltypes.DefinitionType;
+
+@FunctionalInterface
+public interface OVALDefinitionsBulkHandler {
+    void handle(List<DefinitionType> bulk);
+}

java/code/src/com/suse/oval/parser/OVALResources.java

@@ -0,0 +1,58 @@
+/*
+ * Copyright (c) 2023 SUSE LLC
+ *
+ * This software is licensed to you under the GNU General Public License,
+ * version 2 (GPLv2). There is NO WARRANTY for this software, express or
+ * implied, including the implied warranties of MERCHANTABILITY or FITNESS
+ * FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv2
+ * along with this software; if not, see
+ * http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
+ *
+ * Red Hat trademarks are not licensed under GPLv2. No permission is
+ * granted to use or replicate Red Hat trademarks that are incorporated
+ * in this software or its documentation.
+ */
+
+package com.suse.oval.parser;
+
+import java.util.ArrayList;
+import java.util.List;
+
+import com.suse.oval.manager.OVALResourcesCache;
+import com.suse.oval.ovaltypes.ObjectType;
+import com.suse.oval.ovaltypes.StateType;
+import com.suse.oval.ovaltypes.TestType;
+
+public class OVALResources {
+    private List<ObjectType> objects = new ArrayList<>();
+    private List<StateType> states = new ArrayList<>();
+    private List<TestType> tests = new ArrayList<>();
+
+    public List<ObjectType> getObjects() {
+        return objects;
+    }
+
+    public List<StateType> getStates() {
+        return states;
+    }
+
+    public List<TestType> getTests() {
+        return tests;
+    }
+
+    public void setObjects(List<ObjectType> objects) {
+        this.objects = objects;
+    }
+
+    public void setStates(List<StateType> states) {
+        this.states = states;
+    }
+
+    public void setTests(List<TestType> tests) {
+        this.tests = tests;
+    }
+
+    public OVALResourcesCache getCache() {
+        return new OVALResourcesCache(this);
+    }
+}

…a/code/src/com/suse/oval/OvalParser.java …src/com/suse/oval/parser/OvalParser.javajava/code/src/com/suse/oval/OvalParser.java renamed to java/code/src/com/suse/oval/parser/OvalParser.java java/code/src/com/suse/oval/OvalParser.java renamed to java/code/src/com/suse/oval/parser/OvalParser.java

@@ -13,7 +13,7 @@
  * in this software or its documentation.
  */
 
-package com.suse.oval;
+package com.suse.oval.parser;
 
 import com.redhat.rhn.domain.rhnpackage.PackageType;
 import com.suse.oval.exceptions.OvalParserException;
@@ -60,16 +60,17 @@
 import java.io.File;
 import java.io.FileInputStream;
 import java.io.FileNotFoundException;
-import java.net.URISyntaxException;
 import java.net.URL;
-import java.util.List;
+
 import java.util.ArrayList;
+import java.util.List;
 import java.util.Objects;
 
 /**
  * The Oval Parser is responsible for parsing OVAL(Open Vulnerability and Assessment Language) documents
  */
 public class OvalParser {
+    private static final int DEFINITIONS_BULK_SIZE = 500;
     private static final Logger LOG = LogManager.getLogger(OvalParser.class);
     private static final List<String> TEST_TYPES = List.of("rpminfo_test", "dpkginfo_test");
     private static final List<String> OBJECT_TYPES = List.of("rpminfo_object", "dpkginfo_object");
@@ -81,38 +82,70 @@ public class OvalParser {
      * @param ovalFile the OVAL file to parse
      * @return the parsed OVAL encapulated in a {@link OvalRootType} object=
      * */
-    public OvalRootType parse(File ovalFile) throws OvalParserException {
+    public OvalRootType parse(URL ovalFile) throws OvalParserException {
         try {
             JAXBContext jaxbContext = JAXBContext.newInstance(OvalRootType.class);
             Unmarshaller unmarshaller = jaxbContext.createUnmarshaller();
             return (OvalRootType) unmarshaller.unmarshal(ovalFile);
         }
         catch (JAXBException e) {
-            throw new OvalParserException("Failed to parse the given OVAL file at: " + ovalFile.getAbsolutePath(), e);
+            throw new OvalParserException("Failed to parse the given OVAL file at: " + ovalFile, e);
         }
     }
 
-    /**
-     * Parse the given OVAL file from a URL
-     *
-     * @param url the URL to get the OVAL file from
-     * @return the parsed OVAL encapsulated in a {@link OvalRootType} object
-     * */
-    public OvalRootType parse(URL url) {
+    public void parseDefinitionsInBulk(File ovalFile, OVALDefinitionsBulkHandler bulkHandler) {
+        XMLInputFactory xmlInputFactory = XMLInputFactory.newInstance();
         try {
-            return parseStax(new File(url.toURI()));
+            XMLEventReader reader = xmlInputFactory.createXMLEventReader(new FileInputStream(ovalFile));
+
+            List<DefinitionType> definitions = new ArrayList<>();
+
+            while (reader.hasNext()) {
+                XMLEvent nextEvent = reader.nextEvent();
+
+                if (nextEvent.isStartElement()) {
+                    String elementName = nextEvent.asStartElement().getName().getLocalPart();
+                    if (elementName.equals("definition")) {
+                        DefinitionType definitionType = parseDefinitionType(nextEvent.asStartElement(), reader);
+                        definitions.add(definitionType);
+
+                        if (definitions.size() == DEFINITIONS_BULK_SIZE) {
+                            bulkHandler.handle(definitions);
+                            definitions = new ArrayList<>();
+                        }
+                    }
+                }
+
+                if (nextEvent.isEndElement()) {
+                    if (nextEvent.asEndElement().getName().getLocalPart().equals("definitions")) {
+                        if (!definitions.isEmpty()) {
+                            bulkHandler.handle(definitions);
+                            definitions = new ArrayList<>();
+                        }
+                    }
+                }
+            }
         }
-        catch (URISyntaxException e) {
-            throw new RuntimeException(e);
+        catch (XMLStreamException | FileNotFoundException e) {
+            throw new OvalParserException("Failed to parse OVAL definitions from OVAL file at: "
+                    + ovalFile.getAbsolutePath(), e);
         }
     }
 
-    public OvalRootType parseStax(File ovalFile) {
+    public List<DefinitionType> parseAllDefinitions(File ovalFile) {
+        List<DefinitionType> allDefinitions = new ArrayList<>();
+
+        parseDefinitionsInBulk(ovalFile, allDefinitions::addAll);
+
+        return allDefinitions;
+    }
+
+    public OVALResources parseResources(File ovalFile) {
         XMLInputFactory xmlInputFactory = XMLInputFactory.newInstance();
         try {
             XMLEventReader reader = xmlInputFactory.createXMLEventReader(new FileInputStream(ovalFile));
 
-            OvalRootType ovalRoot = new OvalRootType();
+            OVALResources resources = new OVALResources();
 
             while (reader.hasNext()) {
                 XMLEvent nextEvent = reader.nextEvent();
@@ -121,54 +154,28 @@ public OvalRootType parseStax(File ovalFile) {
                     String elementName = nextEvent.asStartElement().getName().getLocalPart();
                     switch (elementName) {
                         case "objects":
-                            ovalRoot.setObjects(parseObjects(reader));
+                            resources.setObjects(parseObjects(reader));
                             break;
                         case "states":
-                            ovalRoot.setStates(parseStates(reader));
+                            resources.setStates(parseStates(reader));
                             break;
                         case "tests":
-                            ovalRoot.setTests(parseTests(reader));
-                            break;
-                        case "definitions":
-                            ovalRoot.setDefinitions(parseDefinitions(reader));
+                            resources.setTests(parseTests(reader));
                             break;
                         default: // Do nothing
                     }
                 }
             }
 
-            return ovalRoot;
-
+            return resources;
         }
         catch (XMLStreamException | FileNotFoundException e) {
-            throw new OvalParserException("Failed to parse the given OVAL file at: " + ovalFile.getAbsolutePath(), e);
+            throw new OvalParserException(
+                    "Failed to parse the OVAL resources(tests, states and objects) from OVAL file at: " +
+                            ovalFile.getAbsolutePath(), e);
         }
     }
 
-    private List<DefinitionType> parseDefinitions(XMLEventReader reader) throws XMLStreamException {
-        List<DefinitionType> definitions = new ArrayList<>();
-
-        while (reader.hasNext()) {
-            XMLEvent nextEvent = reader.nextEvent();
-
-            if (nextEvent.isStartElement()) {
-                if (nextEvent.asStartElement().getName().getLocalPart().equals("definition")) {
-                    DefinitionType definitionType = parseDefinitionType(nextEvent.asStartElement(), reader);
-                    definitions.add(definitionType);
-                }
-            }
-
-            if (nextEvent.isEndElement()) {
-                if (nextEvent.asEndElement().getName().getLocalPart().equals("definitions")) {
-                    return definitions;
-                }
-            }
-        }
-
-        throw new OvalParserException("Unable to find the closing tag for </definitions>");
-
-    }
-
     private DefinitionType parseDefinitionType(StartElement definitionElement, XMLEventReader reader)
             throws XMLStreamException {
         DefinitionType definitionType = new DefinitionType();
@@ -541,7 +548,6 @@ private StateType parseStateType(StartElement rpmStateElement, XMLEventReader re
 
         rpmStateElement.getAttributes().forEachRemaining(attribute -> {
             String attributeName = attribute.getName().getLocalPart();
-
             switch (attributeName) {
                 case "id":
                     stateType.setId(attribute.getValue());
@@ -679,7 +685,6 @@ private ObjectType parseObjectType(StartElement rpmObjectElement, XMLEventReader
             }
         });
 
-
         while (reader.hasNext()) {
             XMLEvent nextEvent = reader.nextEvent();
             if (nextEvent.isStartElement()) {