internal/dbstore: working dbstore cpe search

author: Paul Duncan <pabs@pablotron.org> 2022-02-05 02:36:07 -0500
committer: Paul Duncan <pabs@pablotron.org> 2022-02-05 02:36:07 -0500
commit: 56cc399430d127cb628b3abe84bc653d2b0ce59b (patch)
tree: 8eb7514d9433fbeac24682896c8abc04e2c74f29 /internal/dbstore/dbstore_test.go
parent: 425d2a2aa3e3d4ebb1cbf60982ef7a699dd79d97 (diff)
download: cvez-56cc399430d127cb628b3abe84bc653d2b0ce59b.tar.bz2
cvez-56cc399430d127cb628b3abe84bc653d2b0ce59b.zip
1 files changed, 164 insertions, 1 deletions
diff --git a/internal/dbstore/dbstore_test.go b/internal/dbstore/dbstore_test.go
index 974573d..f957146 100644
--- a/internal/dbstore/dbstore_test.go
+++ b/internal/dbstore/dbstore_test.go
@@ -2,6 +2,7 @@ package dbstore
 
 import (
   "compress/gzip"
+  "context"
   db_sql "database/sql"
   "encoding/xml"
   "embed"
@@ -11,6 +12,7 @@ import (
   "github.com/pablotron/cvez/cpedict"
   io_fs "io/fs"
   "os"
+  "reflect"
   "testing"
 )
 
@@ -67,7 +69,7 @@ func getTestQueries() (map[string]string, error) {
   return r, nil
 }
 
-func TestSimple(t *testing.T) {
+func ignoreTestSimple(t *testing.T) {
   testDbPath := "./testdata/foo.db"
   // get queries
   queries, err := getTestQueries()
@@ -170,3 +172,164 @@ func TestSimple(t *testing.T) {
     return
   }
 }
+
+// remove file if it exists
+func removeFile(path string) error {
+  // remove file
+  err := os.Remove(path)
+  if err != nil && errors.Is(err, io_fs.ErrNotExist) {
+    return nil
+  }
+
+  return err
+}
+
+func createTestDb(ctx context.Context, path string) (DbStore, error) {
+  // remove existing file
+  if err := removeFile(path); err != nil {
+    return DbStore{}, err
+  }
+
+  // open db
+  return Open(path)
+}
+
+func seedTestDb(ctx context.Context, db DbStore) error {
+  // load test CPEs
+  dict, err := getTestDictionary("testdata/test-0.xml.gz")
+  if err != nil {
+    return err
+  }
+
+  // add cpe dictionary
+  return db.AddCpeDictionary(ctx, dict)
+
+  // TODO: seed with other data
+}
+
+func TestOpen(t *testing.T) {
+  path := "./testdata/test-new.db"
+  ctx := context.Background()
+
+  if _, err := createTestDb(ctx, path); err != nil {
+    t.Error(err)
+    return
+  }
+}
+
+func TestAddCpeDictionary(t *testing.T) {
+  path := "./testdata/test-addcpedict.db"
+  ctx := context.Background()
+
+  // create db
+  db, err := createTestDb(ctx, path)
+  if err != nil {
+    t.Error(err)
+    return
+  }
+
+  // load test CPEs
+  dict, err := getTestDictionary("testdata/test-0.xml.gz")
+  if err != nil {
+    t.Error(err)
+    return
+  }
+
+  // add cpe dictionary
+  if err := db.AddCpeDictionary(ctx, dict); err != nil {
+    t.Error(err)
+    return
+  }
+}
+
+// sqlite> select a.cpe23 from cpes a join (select cpe_id, min(rank) as rank from cpe_fts_all where cpe_fts_all match 'advisory' group by cpe_id) b on (b.cpe_id = a.cpe_id) order by b.rank;
+// sqlite> select a.cpe23 from cpes a join (select cpe_id, min(rank) as rank from cpe_fts_all where cpe_fts_all match 'advisory AND book' group by cpe_id) b on (b.cpe_id = a.cpe_id) order by b.rank;
+// cpe:2.3:a:\$0.99_kindle_books_project:\$0.99_kindle_books:6:*:*:*:*:android:*:*
+//
+// sqlite> select c.cpe_id, c.cpe23, a.rank from cpe_titles_fts a join cpe_titles b on (b.cpe_title_id = a.rowid) join cpes c on (c.cpe_id = b.cpe_id) where cpe_titles_fts match 'project' order by a.rank;
+// 2|cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:-:*:*:*:*:node.js:*:*|-0.775759508773217
+// 3|cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:0.1.0:*:*:*:*:node.js:*:*|-0.66983333682734
+// 4|cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:0.2.0:*:*:*:*:node.js:*:*|-0.66983333682734
+// 5|cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:0.2.1:*:*:*:*:node.js:*:*|-0.66983333682734
+// 1|cpe:2.3:a:\$0.99_kindle_books_project:\$0.99_kindle_books:6:*:*:*:*:android:*:*|-0.545655647541265
+//
+// sqlite> select a.cpe23 from cpes a join (select cpe_id, min(rank) as rank from cpe_fts_refs where cpe_fts_refs match 'advisory' group by cpe_id) b on (b.cpe_id = a.cpe_id) order by b.rank;
+// cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:-:*:*:*:*:node.js:*:*
+// cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:0.1.0:*:*:*:*:node.js:*:*
+// cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:0.2.0:*:*:*:*:node.js:*:*
+// cpe:2.3:a:\@thi.ng\/egf_project:\@thi.ng\/egf:0.2.1:*:*:*:*:node.js:*:*
+// cpe:2.3:a:360totalsecurity:360_total_security:12.1.0.1005:*:*:*:*:*:*:*
+// cpe:2.3:a:\$0.99_kindle_books_project:\$0.99_kindle_books:6:*:*:*:*:android:*:*
+
+
+func TestCpeSearch(t *testing.T) {
+  path := "./testdata/test-search.db"
+  ctx := context.Background()
+
+  tests := []struct {
+    t CpeSearchType // search type
+    q string // query string
+    exp []string // expected search results (cpe23s)
+  } {{
+    t: CpeSearchAll,
+    q: "advisory AND book",
+    exp: []string {
+      "cpe:2.3:a:\\$0.99_kindle_books_project:\\$0.99_kindle_books:6:*:*:*:*:android:*:*",
+    },
+  }, {
+    t: CpeSearchTitle,
+    q: "project",
+    exp: []string {
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:-:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:0.1.0:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:0.2.0:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:0.2.1:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\$0.99_kindle_books_project:\\$0.99_kindle_books:6:*:*:*:*:android:*:*",
+    },
+  }, {
+    t: CpeSearchRef,
+    q: "advisory",
+    exp: []string {
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:-:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:0.1.0:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:0.2.0:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:\\@thi.ng\\/egf_project:\\@thi.ng\\/egf:0.2.1:*:*:*:*:node.js:*:*",
+      "cpe:2.3:a:360totalsecurity:360_total_security:12.1.0.1005:*:*:*:*:*:*:*",
+      "cpe:2.3:a:\\$0.99_kindle_books_project:\\$0.99_kindle_books:6:*:*:*:*:android:*:*",
+    },
+  }}
+
+  // create db
+  db, err := createTestDb(ctx, path)
+  if err != nil {
+    t.Error(err)
+    return
+  }
+
+  // seed test database
+  if err = seedTestDb(ctx, db); err != nil {
+    t.Error(err)
+    return
+  }
+
+  for _, test := range(tests) {
+    t.Run(test.t.String(), func(t *testing.T) {
+      rows, err := db.CpeSearch(ctx, test.t, test.q)
+      if err != nil {
+        t.Error(err)
+        return
+      }
+
+      // build ids
+      got := make([]string, len(rows))
+      for i, row := range(rows) {
+        got[i] = row.Cpe23
+      }
+
+      if !reflect.DeepEqual(got, test.exp) {
+        t.Errorf("got \"%v\", exp \"%v\"", got, test.exp)
+        return
+      }
+    })
+  }
+}
author	Paul Duncan <pabs@pablotron.org>	2022-02-05 02:36:07 -0500
committer	Paul Duncan <pabs@pablotron.org>	2022-02-05 02:36:07 -0500
commit	56cc399430d127cb628b3abe84bc653d2b0ce59b (patch)
tree	8eb7514d9433fbeac24682896c8abc04e2c74f29 /internal/dbstore/dbstore_test.go
parent	425d2a2aa3e3d4ebb1cbf60982ef7a699dd79d97 (diff)
download	cvez-56cc399430d127cb628b3abe84bc653d2b0ce59b.tar.bz2 cvez-56cc399430d127cb628b3abe84bc653d2b0ce59b.zip