Skip to content

Commit

Permalink
Change: Update handling of CVEs for the new JSON API.
Browse files Browse the repository at this point in the history
- Handle references explicitly to remove raw_data.
- Add affected software configurations and references to the
response of get_info for CVEs when details are enabled.
  • Loading branch information
a-h-abdelsalam committed Nov 1, 2024
1 parent c90f9d9 commit 3d75038
Show file tree
Hide file tree
Showing 6 changed files with 1,138 additions and 237 deletions.
195 changes: 195 additions & 0 deletions src/gmp.c
Original file line number Diff line number Diff line change
Expand Up @@ -101,6 +101,7 @@
#include "manage_report_configs.h"
#include "manage_report_formats.h"
#include "manage_tls_certificates.h"
#include "sql.h"
#include "utils.h"

#include <arpa/inet.h>
Expand Down Expand Up @@ -128,6 +129,7 @@
#include <gvm/util/fileutils.h>
#include <gvm/util/sshutils.h>
#include <gvm/util/authutils.h>
#include <gvm/util/cpeutils.h>

#undef G_LOG_DOMAIN
/**
Expand Down Expand Up @@ -13252,6 +13254,194 @@ handle_get_groups (gmp_parser_t *gmp_parser, GError **error)
set_client_state (CLIENT_AUTHENTIC);
}

/**
* @brief Print CPE match node with its matched CPEs.
*
* @param[in] node CPE match node to print.
* @param[in] buffer Buffer into which to print match node.
*/
static void
print_cpe_match_nodes_xml(resource_t node, GString *buffer)

Check warning on line 13264 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13264

Added line #L13264 was not covered by tests
{
iterator_t cpe_match_nodes, cpe_match_ranges;
const char *operator = NULL;
int negate = 0;

Check warning on line 13268 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13267-L13268

Added lines #L13267 - L13268 were not covered by tests

init_iterator (&cpe_match_nodes,

Check warning on line 13270 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13270

Added line #L13270 was not covered by tests
"SELECT operator, negate FROM scap.cpe_match_nodes WHERE id = %llu;",
node);
while (next (&cpe_match_nodes))
{
operator = iterator_string (&cpe_match_nodes, 0);
negate = iterator_int (&cpe_match_nodes, 1);

Check warning on line 13276 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13275-L13276

Added lines #L13275 - L13276 were not covered by tests
}
cleanup_iterator (&cpe_match_nodes);

Check warning on line 13278 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13278

Added line #L13278 was not covered by tests

xml_string_append (buffer, "<operator>%s</operator>", operator?: "");
xml_string_append (buffer, "<negate>%s</negate>", negate? "1" : "0");

Check warning on line 13281 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13280-L13281

Added lines #L13280 - L13281 were not covered by tests

init_cpe_match_range_iterator (&cpe_match_ranges, node);

Check warning on line 13283 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13283

Added line #L13283 was not covered by tests
while (next (&cpe_match_ranges))
{
const gchar *vsi, *vse, *vei, *vee, *match_criteria_id, *range_uri_product;

xml_string_append (buffer, "<match_criteria>");
match_criteria_id = cpe_match_range_iterator_match_criteria_id (&cpe_match_ranges);

Check warning on line 13289 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13288-L13289

Added lines #L13288 - L13289 were not covered by tests
range_uri_product
= fs_cpe_to_uri_cpe (cpe_match_range_iterator_cpe (&cpe_match_ranges));
xml_string_append (buffer, "<match_string>%s</match_string>", range_uri_product?: "");
xml_string_append (buffer, "<vulnerable>%s</vulnerable>",
cpe_match_range_iterator_vulnerable (&cpe_match_ranges) != 0

Check warning on line 13294 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13291-L13294

Added lines #L13291 - L13294 were not covered by tests
? "1"
: "0");
vsi = cpe_match_range_iterator_version_start_incl(&cpe_match_ranges);
vse = cpe_match_range_iterator_version_start_excl(&cpe_match_ranges);
vei = cpe_match_range_iterator_version_end_incl(&cpe_match_ranges);
vee = cpe_match_range_iterator_version_end_excl(&cpe_match_ranges);

Check warning on line 13300 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13297-L13300

Added lines #L13297 - L13300 were not covered by tests

xml_string_append (buffer,

Check warning on line 13302 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13302

Added line #L13302 was not covered by tests
"<version_start_including>%s</version_start_including>",
vsi ?: "");
xml_string_append (buffer,

Check warning on line 13305 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13304-L13305

Added lines #L13304 - L13305 were not covered by tests
"<version_start_excluding>%s</version_start_excluding>",
vse ?: "");
xml_string_append (buffer,

Check warning on line 13308 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13307-L13308

Added lines #L13307 - L13308 were not covered by tests
"<version_end_including>%s</version_end_including>",
vei ?: "");
xml_string_append (buffer,

Check warning on line 13311 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13310-L13311

Added lines #L13310 - L13311 were not covered by tests
"<version_end_excluding>%s</version_end_excluding>",
vee ?: "");

Check warning on line 13313 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13313

Added line #L13313 was not covered by tests

iterator_t cpe_matches;
init_cpe_match_range_matches_iterator (&cpe_matches, match_criteria_id);
xml_string_append (buffer, "<matched_cpes>");

Check warning on line 13317 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13316-L13317

Added lines #L13316 - L13317 were not covered by tests

while (next (&cpe_matches))
{
iterator_t cpes;

init_iterator (&cpes,

Check warning on line 13323 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13323

Added line #L13323 was not covered by tests
"SELECT name, deprecated FROM scap.cpes"
" WHERE cpe_name_id = '%s';",
cpe_matches_cpe_name_id(&cpe_matches));

const char* cpe = NULL;
int deprecated = 0;

Check warning on line 13329 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13328-L13329

Added lines #L13328 - L13329 were not covered by tests
while (next (&cpes))
{
cpe = iterator_string (&cpes, 0);
deprecated = iterator_int (&cpes, 1);

Check warning on line 13333 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13332-L13333

Added lines #L13332 - L13333 were not covered by tests
}
cleanup_iterator (&cpes);

Check warning on line 13335 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13335

Added line #L13335 was not covered by tests

xml_string_append (buffer, "<cpe>");
xml_string_append (buffer, "<name>%s</name>", cpe?: "");
xml_string_append (buffer,

Check warning on line 13339 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13337-L13339

Added lines #L13337 - L13339 were not covered by tests
"<deprecated>%s</deprecated>",
deprecated ? "1" : "0");
if (deprecated)
{
iterator_t deprecated_by;
init_cpe_deprecated_by_iterator (&deprecated_by, cpe);

Check warning on line 13345 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13345

Added line #L13345 was not covered by tests
while (next (&deprecated_by))
{
xml_string_append (buffer,

Check warning on line 13348 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13348

Added line #L13348 was not covered by tests
"<deprecated_by cpe_id=\"%s\"/>",
cpe_deprecated_by_iterator_deprecated_by
(&deprecated_by));
}
cleanup_iterator (&deprecated_by);

Check warning on line 13353 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13353

Added line #L13353 was not covered by tests
}
xml_string_append (buffer, "</cpe>");

Check warning on line 13355 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13355

Added line #L13355 was not covered by tests
}
xml_string_append (buffer, "</matched_cpes>");
xml_string_append (buffer, "</match_criteria>");
cleanup_iterator (&cpe_matches);

Check warning on line 13359 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13357-L13359

Added lines #L13357 - L13359 were not covered by tests
}
cleanup_iterator (&cpe_match_ranges);

Check warning on line 13361 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13361

Added line #L13361 was not covered by tests
}
/**
* @brief Print CVE affected software configurations
*
* @param[in] cve_uuid uuid of the CVE.
* @param[out] result Buffer into which to print.
*
*/
static void
print_cve_affected_software_configs_xml (gchar *cve_uuid, GString *result)

Check warning on line 13371 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13371

Added line #L13371 was not covered by tests
{
iterator_t cpe_match_root_nodes;
xml_string_append (result, "<configuration_nodes>");
init_cve_cpe_match_nodes_iterator (&cpe_match_root_nodes, cve_uuid);

Check warning on line 13375 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13374-L13375

Added lines #L13374 - L13375 were not covered by tests
while (next (&cpe_match_root_nodes))
{
result_t root_node;
iterator_t cpe_match_node_childs;
root_node = cpe_match_nodes_iterator_root_id (&cpe_match_root_nodes);
xml_string_append (result, "<node>");
print_cpe_match_nodes_xml(root_node, result);
init_cpe_match_node_childs_iterator (&cpe_match_node_childs, root_node);

Check warning on line 13383 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13380-L13383

Added lines #L13380 - L13383 were not covered by tests
while (next (&cpe_match_node_childs))
{
resource_t child_node;
child_node = cpe_match_node_childs_iterator_id (&cpe_match_node_childs);
xml_string_append (result, "<node>");
print_cpe_match_nodes_xml(child_node, result);
xml_string_append (result, "</node>");

Check warning on line 13390 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13387-L13390

Added lines #L13387 - L13390 were not covered by tests
}
xml_string_append (result, "</node>");
cleanup_iterator (&cpe_match_node_childs);

Check warning on line 13393 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13392-L13393

Added lines #L13392 - L13393 were not covered by tests
}
xml_string_append (result, "</configuration_nodes>");
cleanup_iterator (&cpe_match_root_nodes);

Check warning on line 13396 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13395-L13396

Added lines #L13395 - L13396 were not covered by tests
}

/**
* @brief Print CVE references
*
* @param[in] cve_uuid uuid of the CVE.
* @param[out] result Buffer into which to print.
*
*/
static void
print_cve_references_xml (gchar *cve_uuid, GString *result)

Check warning on line 13407 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13407

Added line #L13407 was not covered by tests
{
iterator_t references;
init_cve_reference_iterator (&references, cve_uuid);
xml_string_append (result, "<references>");

Check warning on line 13411 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13410-L13411

Added lines #L13410 - L13411 were not covered by tests
while (next (&references))
{
xml_string_append (result, "<reference>");
xml_string_append (result, "<url>%s</url>", cve_reference_iterator_url (&references));
xml_string_append (result, "<tags>");
const char * tags_array = cve_reference_iterator_tags (&references);

Check warning on line 13417 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13414-L13417

Added lines #L13414 - L13417 were not covered by tests
if(tags_array && strlen(tags_array) > 2)
{
char *trimmed_array = g_strndup (tags_array + 1, strlen (tags_array) - 2);

Check warning on line 13420 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13420

Added line #L13420 was not covered by tests
gchar **tags, **current_tag;
tags = g_strsplit (trimmed_array, ",", -1);
current_tag = tags;

Check warning on line 13423 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13422-L13423

Added lines #L13422 - L13423 were not covered by tests
while (*current_tag)
{
if (strlen (*current_tag) > 2 && (*current_tag)[0] == '"' && (*current_tag)[strlen (*current_tag) - 1] == '"')
{
char *trimmed_tag = g_strndup (*current_tag + 1, strlen (*current_tag) - 2);
xml_string_append (result, "<tag>%s</tag>", trimmed_tag);
g_free (trimmed_tag);

Check warning on line 13430 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13427-L13430

Added lines #L13427 - L13430 were not covered by tests
}
else
xml_string_append (result, "<tag>%s</tag>", *current_tag);
current_tag++;

Check warning on line 13434 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13433-L13434

Added lines #L13433 - L13434 were not covered by tests
}
g_strfreev (tags);
g_free (trimmed_array);

Check warning on line 13437 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13436-L13437

Added lines #L13436 - L13437 were not covered by tests
}
xml_string_append (result, "</tags>");
xml_string_append (result, "</reference>");

Check warning on line 13440 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13439-L13440

Added lines #L13439 - L13440 were not covered by tests
}
xml_string_append (result, "</references>");
cleanup_iterator (&references);

Check warning on line 13443 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13442-L13443

Added lines #L13442 - L13443 were not covered by tests
}
/**
* @brief Handle end of GET_INFO element.
*
Expand Down Expand Up @@ -13627,6 +13817,11 @@ handle_get_info (gmp_parser_t *gmp_parser, GError **error)
"</warning>");
}
g_string_append (result, "</cert>");

gchar *cve_uuid = g_strdup(get_iterator_uuid (&info));
print_cve_affected_software_configs_xml (cve_uuid, result);
print_cve_references_xml (cve_uuid, result);
g_free(cve_uuid);

Check warning on line 13824 in src/gmp.c

View check run for this annotation

Codecov / codecov/patch

src/gmp.c#L13821-L13824

Added lines #L13821 - L13824 were not covered by tests
}
}
else if (g_strcmp0 ("cert_bund_adv", get_info_data->type) == 0)
Expand Down
27 changes: 27 additions & 0 deletions src/manage.h
Original file line number Diff line number Diff line change
Expand Up @@ -1693,6 +1693,21 @@ app_locations_iterator_location (iterator_t*);
void
init_cpe_match_nodes_iterator (iterator_t*, const char *);

void
init_cve_cpe_match_nodes_iterator (iterator_t*, const char *);

void
init_cve_reference_iterator (iterator_t*, const char *);

const char*
cve_reference_iterator_url (iterator_t*);

const char*
cve_reference_iterator_tags (iterator_t*);

const char*
cve_reference_iterator_tags_count (iterator_t*);

long long int
cpe_match_nodes_iterator_root_id (iterator_t*);

Expand All @@ -1714,6 +1729,12 @@ init_cpe_match_range_iterator (iterator_t*, long long int);
const char*
cpe_match_range_iterator_cpe (iterator_t*);

const char*
cpe_match_range_iterator_match_criteria_id (iterator_t*);

const char*
cpe_match_range_iterator_status (iterator_t*);

const char*
cpe_match_range_iterator_version_start_incl (iterator_t*);

Expand All @@ -1729,6 +1750,12 @@ cpe_match_range_iterator_version_end_excl (iterator_t*);
int
cpe_match_range_iterator_vulnerable (iterator_t*);

void
init_cpe_match_range_matches_iterator (iterator_t*, const char *);

const char*
cpe_matches_cpe_name_id (iterator_t*);

void
init_host_details_cpe_product_iterator (iterator_t*, const char *, report_host_t);

Expand Down
39 changes: 32 additions & 7 deletions src/manage_pg.c
Original file line number Diff line number Diff line change
Expand Up @@ -3546,20 +3546,31 @@ manage_db_init (const gchar *name)

sql ("CREATE TABLE scap2.cpe_match_nodes"
" (id SERIAL PRIMARY KEY,"
" parent_id INTEGER DEFAULT 0,"
" root_id INTEGER DEFAULT 0,"
" cve_id INTEGER DEFAULT 0,"
" operator text);");
" root_id integer DEFAULT 0,"
" cve_id integer DEFAULT 0,"
" operator text,"
" negate integer DEFAULT 0);");

sql ("CREATE TABLE scap2.cpe_nodes_match_criteria"

Check warning on line 3554 in src/manage_pg.c

View check run for this annotation

Codecov / codecov/patch

src/manage_pg.c#L3554

Added line #L3554 was not covered by tests
" (id SERIAL PRIMARY KEY,"
" node_id integer DEFAULT 0,"
" vulnerable integer DEFAULT 0,"
" match_criteria_id text);");

sql ("CREATE TABLE scap2.cpe_match_range"
" (id SERIAL PRIMARY KEY,"
" node_id INTEGER DEFAULT 0,"
" vulnerable INTEGER DEFAULT 0,"
" match_criteria_id text,"
" cpe text DEFAULT NULL,"
" version_start_incl text DEFAULT NULL,"
" version_start_excl text DEFAULT NULL,"
" version_end_incl text DEFAULT NULL,"
" version_end_excl text DEFAULT NULL);");
" version_end_excl text DEFAULT NULL,"
" status text);");

sql ("CREATE TABLE scap2.cpe_matches"

Check warning on line 3570 in src/manage_pg.c

View check run for this annotation

Codecov / codecov/patch

src/manage_pg.c#L3570

Added line #L3570 was not covered by tests
" (id SERIAL PRIMARY KEY,"
" match_criteria_id text,"
" cpe_name_id text);");

sql ("CREATE TABLE scap2.cpe_details"
" (id SERIAL PRIMARY KEY,"
Expand All @@ -3575,6 +3586,11 @@ manage_db_init (const gchar *name)
" epss DOUBLE PRECISION,"
" percentile DOUBLE PRECISION);");

sql ("CREATE TABLE scap2.cve_references"

Check warning on line 3589 in src/manage_pg.c

View check run for this annotation

Codecov / codecov/patch

src/manage_pg.c#L3589

Added line #L3589 was not covered by tests
" (id SERIAL PRIMARY KEY,"
" cve_id INTEGER,"
" url text,"
" tags text[]);");

/* Init tables. */

Expand Down Expand Up @@ -3624,6 +3640,15 @@ manage_db_add_constraints (const gchar *name)
sql ("ALTER TABLE scap2.epss_scores"
" ALTER cve SET NOT NULL,"
" ADD UNIQUE (cve);");

sql ("ALTER TABLE scap2.cve_references"

Check warning on line 3644 in src/manage_pg.c

View check run for this annotation

Codecov / codecov/patch

src/manage_pg.c#L3644

Added line #L3644 was not covered by tests
" ALTER cve_id SET NOT NULL,"
" ALTER url SET NOT NULL,"
" ADD UNIQUE (cve_id, url);");

sql ("ALTER TABLE scap2.cpe_match_range"

Check warning on line 3649 in src/manage_pg.c

View check run for this annotation

Codecov / codecov/patch

src/manage_pg.c#L3649

Added line #L3649 was not covered by tests
" ADD UNIQUE (match_criteria_id);");

}
else
{
Expand Down
Loading

0 comments on commit 3d75038

Please sign in to comment.