started to implement entity tags

owasp-amass · Dec 19, 2024 · a147319 · a147319
1 parent e1d9eaf
commit a147319
Show file tree

Hide file tree

Showing 3 changed files with 416 additions and 15 deletions.
diff --git a/repository/neo4j/entity_tag.go b/repository/neo4j/entity_tag.go
@@ -0,0 +1,243 @@
+// Copyright © by Jeff Foley 2017-2024. All rights reserved.
+// Use of this source code is governed by Apache 2 LICENSE that can be found in the LICENSE file.
+// SPDX-License-Identifier: Apache-2.0
+
+package neo4j
+
+import (
+	"errors"
+	"strconv"
+	"time"
+
+	"github.com/owasp-amass/asset-db/types"
+	oam "github.com/owasp-amass/open-asset-model"
+	"gorm.io/gorm"
+)
+
+// CreateEntityTag creates a new entity tag in the database.
+// It takes an EntityTag as input and persists it in the database.
+// The property is serialized to JSON and stored in the Content field of the EntityTag struct.
+// Returns the created entity tag as a types.EntityTag or an error if the creation fails.
+func (sql *sqlRepository) CreateEntityTag(entity *types.Entity, input *types.EntityTag) (*types.EntityTag, error) {
+	entityid, err := strconv.ParseUint(entity.ID, 10, 64)
+	if err != nil {
+		return nil, err
+	}
+
+	jsonContent, err := input.Property.JSON()
+	if err != nil {
+		return nil, err
+	}
+
+	tag := EntityTag{
+		Type:     string(input.Property.PropertyType()),
+		Content:  jsonContent,
+		EntityID: entityid,
+	}
+
+	// ensure that duplicate entity tags are not entered into the database
+	if tags, err := sql.GetEntityTags(entity, time.Time{}, input.Property.Name()); err == nil && len(tags) > 0 {
+		for _, t := range tags {
+			if input.Property.PropertyType() == t.Property.PropertyType() && input.Property.Value() == t.Property.Value() {
+				if id, err := strconv.ParseUint(t.ID, 10, 64); err == nil {
+					tag.ID = id
+					tag.CreatedAt = t.CreatedAt
+					tag.UpdatedAt = time.Now().UTC()
+					break
+				}
+			}
+		}
+	} else {
+		if input.CreatedAt.IsZero() {
+			tag.CreatedAt = time.Now().UTC()
+		} else {
+			tag.CreatedAt = input.CreatedAt.UTC()
+		}
+
+		if input.LastSeen.IsZero() {
+			tag.UpdatedAt = time.Now().UTC()
+		} else {
+			tag.UpdatedAt = input.LastSeen.UTC()
+		}
+	}
+
+	result := sql.db.Save(&tag)
+	if err := result.Error; err != nil {
+		return nil, err
+	}
+
+	return &types.EntityTag{
+		ID:        strconv.FormatUint(tag.ID, 10),
+		CreatedAt: tag.CreatedAt.In(time.UTC).Local(),
+		LastSeen:  tag.UpdatedAt.In(time.UTC).Local(),
+		Property:  input.Property,
+		Entity:    entity,
+	}, nil
+}
+
+// CreateEntityProperty creates a new entity tag in the database.
+// It takes an oam.Property as input and persists it in the database.
+// The property is serialized to JSON and stored in the Content field of the EntityTag struct.
+// Returns the created entity tag as a types.EntityTag or an error if the creation fails.
+func (sql *sqlRepository) CreateEntityProperty(entity *types.Entity, prop oam.Property) (*types.EntityTag, error) {
+	return sql.CreateEntityTag(entity, &types.EntityTag{Property: prop})
+}
+
+// FindEntityTagById finds an entity tag in the database by the ID.
+// It takes a string representing the entity tag ID and retrieves the corresponding tag from the database.
+// Returns the discovered tag as a types.EntityTag or an error if the asset is not found.
+func (sql *sqlRepository) FindEntityTagById(id string) (*types.EntityTag, error) {
+	tagId, err := strconv.ParseUint(id, 10, 64)
+	if err != nil {
+		return nil, err
+	}
+
+	tag := EntityTag{ID: tagId}
+	result := sql.db.First(&tag)
+	if err := result.Error; err != nil {
+		return nil, err
+	}
+
+	data, err := tag.Parse()
+	if err != nil {
+		return nil, err
+	}
+
+	return &types.EntityTag{
+		ID:        strconv.FormatUint(tag.ID, 10),
+		CreatedAt: tag.CreatedAt.In(time.UTC).Local(),
+		LastSeen:  tag.UpdatedAt.In(time.UTC).Local(),
+		Property:  data,
+		Entity:    &types.Entity{ID: strconv.FormatUint(tag.EntityID, 10)},
+	}, nil
+}
+
+// FindEntityTagsByContent finds entity tags in the database that match the provided property data and updated_at after the since parameter.
+// It takes an oam.Property as input and searches for entity tags with matching content in the database.
+// If since.IsZero(), the parameter will be ignored.
+// The property data is serialized to JSON and compared against the Content field of the EntityTag struct.
+// Returns a slice of matching entity tags as []*types.EntityTag or an error if the search fails.
+func (sql *sqlRepository) FindEntityTagsByContent(prop oam.Property, since time.Time) ([]*types.EntityTag, error) {
+	jsonContent, err := prop.JSON()
+	if err != nil {
+		return nil, err
+	}
+
+	tag := EntityTag{
+		Type:    string(prop.PropertyType()),
+		Content: jsonContent,
+	}
+
+	nameQuery, err := tag.NameJSONQuery()
+	if err != nil {
+		return nil, err
+	}
+
+	valueQuery, err := tag.ValueJSONQuery()
+	if err != nil {
+		return nil, err
+	}
+
+	tx := sql.db.Where("ttype = ?", tag.Type)
+	if !since.IsZero() {
+		tx = tx.Where("updated_at >= ?", since.UTC())
+	}
+
+	var tags []EntityTag
+	tx = tx.Where(nameQuery).Where(valueQuery).Find(&tags)
+	if err := tx.Error; err != nil {
+		return nil, err
+	}
+
+	var results []*types.EntityTag
+	for _, t := range tags {
+		if propData, err := t.Parse(); err == nil {
+			results = append(results, &types.EntityTag{
+				ID:        strconv.FormatUint(t.ID, 10),
+				CreatedAt: t.CreatedAt.In(time.UTC).Local(),
+				LastSeen:  t.UpdatedAt.In(time.UTC).Local(),
+				Property:  propData,
+				Entity:    &types.Entity{ID: strconv.FormatUint(t.EntityID, 10)},
+			})
+		}
+	}
+
+	if len(results) == 0 {
+		return nil, errors.New("zero entity tags found")
+	}
+	return results, nil
+}
+
+// GetEntityTags finds all tags for the entity with the specified names and last seen after the since parameter.
+// If since.IsZero(), the parameter will be ignored.
+// If no names are specified, all tags for the specified entity are returned.
+func (sql *sqlRepository) GetEntityTags(entity *types.Entity, since time.Time, names ...string) ([]*types.EntityTag, error) {
+	entityId, err := strconv.ParseInt(entity.ID, 10, 64)
+	if err != nil {
+		return nil, err
+	}
+
+	var tags []EntityTag
+	var result *gorm.DB
+	if since.IsZero() {
+		result = sql.db.Where("entity_id = ?", entityId).Find(&tags)
+	} else {
+		result = sql.db.Where("entity_id = ? AND updated_at >= ?", entityId, since.UTC()).Find(&tags)
+	}
+	if err := result.Error; err != nil {
+		return nil, err
+	}
+
+	var results []*types.EntityTag
+	for _, tag := range tags {
+		t := &tag
+
+		if prop, err := t.Parse(); err == nil {
+			found := true
+
+			if len(names) > 0 {
+				found = false
+				n := prop.Name()
+
+				for _, name := range names {
+					if name == n {
+						found = true
+						break
+					}
+				}
+			}
+
+			if found {
+				results = append(results, &types.EntityTag{
+					ID:        strconv.Itoa(int(t.ID)),
+					CreatedAt: t.CreatedAt.In(time.UTC).Local(),
+					LastSeen:  t.UpdatedAt.In(time.UTC).Local(),
+					Property:  prop,
+					Entity:    entity,
+				})
+			}
+		}
+	}
+
+	if len(results) == 0 {
+		return nil, errors.New("zero tags found")
+	}
+	return results, nil
+}
+
+// DeleteEntityTag removes an entity tag in the database by its ID.
+// It takes a string representing the entity tag ID and removes the corresponding tag from the database.
+// Returns an error if the tag is not found.
+func (sql *sqlRepository) DeleteEntityTag(id string) error {
+	tagId, err := strconv.ParseUint(id, 10, 64)
+	if err != nil {
+		return err
+	}
+
+	tag := EntityTag{ID: tagId}
+	result := sql.db.Delete(&tag)
+	if err := result.Error; err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/repository/neo4j/entity_test.go b/repository/neo4j/entity_test.go
@@ -46,9 +46,8 @@ func TestCreateEntity(t *testing.T) {
 	} else if fqdn1.Name != fqdn2.Name {
 		t.Errorf("Failed to keep the asset the same")
 	}
-	if !entity.CreatedAt.Equal(newer.CreatedAt) {
-		t.Errorf("Failed to keep the CreatedAt timestamp the same")
-	}
+
+	assert.Equal(t, entity.CreatedAt, newer.CreatedAt)
 	if !entity.LastSeen.Before(newer.LastSeen) {
 		t.Errorf("Failed to update the LastSeen timestamp")
 	}
@@ -61,9 +60,7 @@ func TestCreateEntity(t *testing.T) {
 	})
 	assert.NoError(t, err)
 
-	if newer.ID == second.ID {
-		t.Errorf("Failed to create an unique entity_id for the second entity")
-	}
+	asset.Equal(t, entity.ID, second.ID)
 	if !second.CreatedAt.After(newer.LastSeen) {
 		t.Errorf("Failed to assign the second entity an accurate creation time")
 	}
@@ -78,12 +75,9 @@ func TestFindEntityById(t *testing.T) {
 	assert.NoError(t, err)
 
 	same, err := store.FindEntityById(entity.ID)
-	if err != nil {
-		t.Errorf("Failed to find the entity: %v", err)
-	}
-	if entity.ID != same.ID {
-		t.Errorf("Failed to return an entity with the correct ID")
-	}
+	assert.NoError(t, err)
+	asset.Equal(t, entity.ID, same.ID)
+
 	if fqdn1, ok := entity.Asset.(*domain.FQDN); !ok {
 		t.Errorf("Failed to type assert the first asset")
 	} else if fqdn2, ok := same.Asset.(*domain.FQDN); !ok {
@@ -105,10 +99,8 @@ func TestFindEntitiesByContent(t *testing.T) {
 	e, err := store.FindEntitiesByContent(fqdn, entity.CreatedAt.Add(-1*time.Second))
 	assert.NoError(t, err)
 	same := e[0]
+	asset.Equal(t, entity.ID, same.ID)
 
-	if entity.ID != same.ID {
-		t.Errorf("Failed to return an entity with the correct ID")
-	}
 	if fqdn1, ok := entity.Asset.(*domain.FQDN); !ok {
 		t.Errorf("Failed to type assert the first asset")
 	} else if fqdn2, ok := same.Asset.(*domain.FQDN); !ok {