chore: add advisory to example

Author: ctron

Cargo.lock

@@ -17,9 +17,13 @@ trustify-module-storage = { workspace = true }
 anyhow = { workspace = true }
 bytes = { workspace = true }
 clap = { workspace = true, features = ["derive", "env"] }
+csaf = { workspace = true }
+cve = { workspace = true }
 futures = { workspace = true }
 futures-util = { workspace = true }
+humantime = { workspace = true }
 indicatif = { workspace = true, features = ["tokio", "futures"] }
+osv = { workspace = true, features = ["schema"] }
 sea-orm = { workspace = true }
 sea-orm-migration = { workspace = true, features = ["runtime-tokio-rustls", "sqlx-postgres", "with-uuid"] }
 serde-cyclonedx = { workspace = true }
@@ -29,7 +33,6 @@ tokio = { workspace = true, features = ["full"] }
 tracing = { workspace = true }
 tracing-subscriber = { workspace = true }
 uuid = { workspace = true, features = ["v5"] }
-humantime = { workspace = true }
 
 [dev-dependencies]
 trustify-common = { workspace = true }

migration/Cargo.toml

@@ -0,0 +1,39 @@
+use super::Document;
+use bytes::Bytes;
+use sea_orm::prelude::*;
+use trustify_entity::advisory;
+use trustify_module_storage::service::StorageBackend;
+
+#[allow(clippy::large_enum_variant)]
+pub enum Advisory {
+    Cve(cve::Cve),
+    Csaf(csaf::Csaf),
+    Osv(osv::schema::Vulnerability),
+    Other(Bytes),
+}
+
+impl From<Bytes> for Advisory {
+    fn from(value: Bytes) -> Self {
+        serde_json::from_slice(&value)
+            .map(Advisory::Cve)
+            .or_else(|_| serde_json::from_slice(&value).map(Advisory::Csaf))
+            .or_else(|_| serde_json::from_slice(&value).map(Advisory::Osv))
+            .unwrap_or_else(|_err| Advisory::Other(value))
+    }
+}
+
+impl Document for Advisory {
+    type Model = advisory::Model;
+
+    async fn all<C: ConnectionTrait>(tx: &C) -> Result<Vec<Self::Model>, DbErr> {
+        advisory::Entity::find().all(tx).await
+    }
+
+    async fn source<S, C>(model: &Self::Model, storage: &S, tx: &C) -> Result<Self, anyhow::Error>
+    where
+        S: StorageBackend + Send + Sync,
+        C: ConnectionTrait,
+    {
+        super::load(model.source_document_id, storage, tx).await
+    }
+}

migration/src/data/document/advisory.rs

@@ -1,9 +1,18 @@
+mod advisory;
+
+pub use advisory::*;
+use anyhow::{anyhow, bail};
+use bytes::{Bytes, BytesMut};
+use futures_util::TryStreamExt;
 mod sbom;
 pub use sbom::*;
 
 use crate::data::Partitionable;
-use sea_orm::{ConnectionTrait, DbErr};
-use trustify_module_storage::service::StorageBackend;
+use sea_orm::{ConnectionTrait, DbErr, EntityTrait};
+use trustify_common::id::Id;
+use trustify_entity::source_document;
+use trustify_module_storage::service::{StorageBackend, StorageKey};
+use uuid::Uuid;
 
 #[allow(async_fn_in_trait)]
 pub trait Document: Sized + Send + Sync {
@@ -18,3 +27,34 @@ pub trait Document: Sized + Send + Sync {
         S: StorageBackend + Send + Sync,
         C: ConnectionTrait;
 }
+
+pub(crate) async fn load<D>(
+    id: Uuid,
+    storage: &(impl StorageBackend + Send + Sync),
+    tx: &impl ConnectionTrait,
+) -> anyhow::Result<D>
+where
+    D: Document + From<Bytes>,
+{
+    let source = source_document::Entity::find_by_id(id).one(tx).await?;
+
+    let Some(source) = source else {
+        bail!("Missing source document entry for: {id}");
+    };
+
+    let stream = storage
+        .retrieve(
+            StorageKey::try_from(Id::Sha256(source.sha256))
+                .map_err(|err| anyhow!("Invalid ID: {err}"))?,
+        )
+        .await
+        .map_err(|err| anyhow!("Failed to retrieve document: {err}"))?
+        .ok_or_else(|| anyhow!("Missing source document for: {id}"))?;
+
+    stream
+        .try_collect::<BytesMut>()
+        .await
+        .map_err(|err| anyhow!("Failed to collect bytes: {err}"))
+        .map(|bytes| bytes.freeze())
+        .map(|bytes| bytes.into())
+}

migration/src/data/document/mod.rs

@@ -1,16 +1,23 @@
 use super::Document;
-use anyhow::{anyhow, bail};
-use bytes::BytesMut;
-use futures_util::TryStreamExt;
+use bytes::Bytes;
 use sea_orm::prelude::*;
-use trustify_common::id::Id;
-use trustify_entity::{sbom, source_document};
-use trustify_module_storage::service::{StorageBackend, StorageKey};
+use trustify_entity::sbom;
+use trustify_module_storage::service::StorageBackend;
 
 #[allow(clippy::large_enum_variant)]
 pub enum Sbom {
     CycloneDx(serde_cyclonedx::cyclonedx::v_1_6::CycloneDx),
     Spdx(spdx_rs::models::SPDX),
+    Other(Bytes),
+}
+
+impl From<Bytes> for Sbom {
+    fn from(value: Bytes) -> Self {
+        serde_json::from_slice(&value)
+            .map(Sbom::Spdx)
+            .or_else(|_| serde_json::from_slice(&value).map(Sbom::CycloneDx))
+            .unwrap_or_else(|_err| Sbom::Other(value))
+    }
 }
 
 impl Document for Sbom {
@@ -25,31 +32,6 @@ impl Document for Sbom {
         S: StorageBackend + Send + Sync,
         C: ConnectionTrait,
     {
-        let source = model.find_related(source_document::Entity).one(tx).await?;
-
-        let Some(source) = source else {
-            bail!("Missing source document ID for SBOM: {}", model.sbom_id);
-        };
-
-        let stream = storage
-            .retrieve(
-                StorageKey::try_from(Id::Sha256(source.sha256))
-                    .map_err(|err| anyhow!("Invalid ID: {err}"))?,
-            )
-            .await
-            .map_err(|err| anyhow!("Failed to retrieve document: {err}"))?
-            .ok_or_else(|| anyhow!("Missing source document for SBOM: {}", model.sbom_id))?;
-
-        stream
-            .try_collect::<BytesMut>()
-            .await
-            .map_err(|err| anyhow!("Failed to collect bytes: {err}"))
-            .map(|bytes| bytes.freeze())
-            .and_then(|bytes| {
-                serde_json::from_slice(&bytes)
-                    .map(Sbom::Spdx)
-                    .or_else(|_| serde_json::from_slice(&bytes).map(Sbom::CycloneDx))
-                    .map_err(|err| anyhow!("Failed to parse document: {err}"))
-            })
+        super::load(model.source_document_id, storage, tx).await
     }
 }

migration/src/data/document/sbom.rs

@@ -80,6 +80,7 @@ impl<'c> SchemaDataManager<'c> {
         }
     }
 
+    /// Run a data migration
     pub async fn process<D, N>(&self, name: &N, f: impl Handler<D>) -> Result<(), DbErr>
     where
         D: Document,

migration/src/data/migration.rs

@@ -159,6 +159,7 @@ impl<'c> DocumentProcessor for SchemaManager<'c> {
     }
 }
 
+/// A handler for data migration of documents.
 #[macro_export]
 macro_rules! handler {
     (async | $doc:ident: $doc_ty:ty, $model:ident, $tx:ident | $body:block) => {{
@@ -179,13 +180,26 @@ macro_rules! handler {
     }};
 }
 
+/// A handler for SBOMs.
+///
+/// See: [`handler!`].
 #[macro_export]
 macro_rules! sbom {
     (async | $doc:ident, $model:ident, $tx:ident | $body:block) => {
         $crate::handler!(async |$doc: $crate::data::Sbom, $model, $tx| $body)
     };
 }
 
+/// A handler for advisories.
+///
+/// See: [`handler!`].
+#[macro_export]
+macro_rules! advisories {
+    (async | $doc:ident, $model:ident, $tx:ident | $body:block) => {
+        $crate::handler!(async |$doc: $crate::data::Advisory, $model, $tx| $body)
+    };
+}
+
 pub trait MigratorWithData {
     fn data_migrations() -> Vec<Box<dyn MigrationTraitWithData>>;
 }

migration/src/data/mod.rs

@@ -3,15 +3,20 @@ use std::{
     hash::{DefaultHasher, Hash, Hasher},
     num::NonZeroU64,
 };
-use trustify_entity::sbom;
+use trustify_entity::{advisory, sbom};
 
 #[derive(Debug, Copy, Clone)]
 pub struct Partition {
     pub current: u64,
     pub total: NonZeroU64,
 }
 
+/// A thing which can be distributed over different partitions via a hashed id.
+///
+/// The idea is that the thing returns a hash ID, which can then be distributed over partitions
+/// by using a "X of Y" approach. Where the thing is processed when "ID modulo Y == X".
 pub trait Partitionable {
+    /// Get the hashed ID for the thing.
     fn hashed_id(&self) -> u64;
 }
 
@@ -23,6 +28,14 @@ impl Partitionable for sbom::Model {
     }
 }
 
+impl Partitionable for advisory::Model {
+    fn hashed_id(&self) -> u64 {
+        let mut hasher = DefaultHasher::new();
+        self.id.hash(&mut hasher);
+        hasher.finish()
+    }
+}
+
 impl Default for Partition {
     fn default() -> Self {
         Self::new_one()

migration/src/data/partition.rs

@@ -34,7 +34,8 @@ mod m0001140_expand_spdx_licenses_function;
 mod m0001150_case_license_text_sbom_id_function;
 mod m0001160_improve_expand_spdx_licenses_function;
 mod m0001170_non_null_source_document_id;
-mod m0002000_example_data_migration;
+mod m0002000_example_sbom_data_migration;
+mod m0002010_example_advisory_data_migration;
 
 pub struct Migrator;
 
@@ -70,7 +71,8 @@ impl Migrator {
             .normal(m0001150_case_license_text_sbom_id_function::Migration)
             .normal(m0001160_improve_expand_spdx_licenses_function::Migration)
             .normal(m0001170_non_null_source_document_id::Migration)
-            .data(m0002000_example_data_migration::Migration)
+            .data(m0002000_example_sbom_data_migration::Migration)
+            .data(m0002010_)
     }
 }
 

migration/src/lib.rs

@@ -47,6 +47,9 @@ impl MigrationTraitWithData for Migration {
                         SbomDoc::Spdx(_sbom) => {
                             model.properties = Set(serde_json::Value::Object(Default::default()));
                         }
+                        SbomDoc::Other(_) => {
+                            // we ignore others
+                        }
                     }
 
                     model.save(tx).await?;