improves logging

timbastin · timbastin · commit 83e12cde0d4e · 2026-05-06T13:07:34.000+02:00
diff --git a/vulndb/cisa_kev_service.go b/vulndb/cisa_kev_service.go
@@ -195,12 +195,15 @@ func insertCISAKEVBulk(ctx context.Context, tx pgx.Tx, entries []CISAKEVEntry) e
 			cisa_action_due         = ks.cisa_action_due,
 			cisa_required_action    = ks.cisa_required_action,
 			cisa_vulnerability_name = ks.cisa_vulnerability_name
-		FROM kev_stage ks
-		WHERE cves.cve = ks.cve
-		   OR EXISTS (
-		       SELECT 1 FROM cve_relationships cr
-		       WHERE cr.source_cve = cves.cve AND cr.target_cve = ks.cve
-		   )`); err != nil {
+		FROM (
+			SELECT cve, cisa_exploit_add, cisa_action_due, cisa_required_action, cisa_vulnerability_name
+			FROM kev_stage
+			UNION
+			SELECT cr.source_cve, ks.cisa_exploit_add, ks.cisa_action_due, ks.cisa_required_action, ks.cisa_vulnerability_name
+			FROM kev_stage ks
+			JOIN cve_relationships cr ON cr.target_cve = ks.cve
+		) ks
+		WHERE cves.cve = ks.cve`); err != nil {
 		return fmt.Errorf("could not update cves with kev data: %w", err)
 	}
 	return nil
diff --git a/vulndb/vulndb_service.go b/vulndb/vulndb_service.go
@@ -426,40 +426,54 @@ func (s *VulnDBService) populateDBFromGobs(ctx context.Context, tx pgx.Tx, worki
 
 	if lastImportTime.IsZero() {
 		group.Go(func() error {
-			slog.Info("full import: truncating vulndb tables")
-			return truncateVulnDBTables(ctx, tx)
+			t := time.Now()
+			slog.Info("start truncating vulndb tables")
+			if err := truncateVulnDBTables(ctx, tx); err != nil {
+				return err
+			}
+			slog.Info("finished truncating vulndb tables", "took", time.Since(t).Round(time.Millisecond))
+			return nil
 		})
 	}
 
 	group.Go(func() error {
+		t := time.Now()
 		if err := readGobFile(workingDir+"/osv.gob", &osvEntries); err != nil {
 			return fmt.Errorf("could not read OSV gob: %w", err)
 		}
-		slog.Info("decoded OSV gob file", "amount", len(osvEntries))
+		slog.Info("finished decoding OSV gob", "entries", len(osvEntries), "took", time.Since(t).Round(time.Millisecond))
 		return nil
 	})
 	group.Go(func() error {
+		t := time.Now()
 		if err := readGobFile(workingDir+"/epss.gob", &epssData); err != nil {
 			return fmt.Errorf("could not read EPSS gob: %w", err)
 		}
+		slog.Info("finished decoding EPSS gob", "entries", len(epssData), "took", time.Since(t).Round(time.Millisecond))
 		return nil
 	})
 	group.Go(func() error {
+		t := time.Now()
 		if err := readGobFile(workingDir+"/cisakev.gob", &kevEntries); err != nil {
 			return fmt.Errorf("could not read CISA KEV gob: %w", err)
 		}
+		slog.Info("finished decoding CISA KEV gob", "entries", len(kevEntries), "took", time.Since(t).Round(time.Millisecond))
 		return nil
 	})
 	group.Go(func() error {
+		t := time.Now()
 		if err := readGobFile(workingDir+"/exploits.gob", &gobExploit); err != nil {
 			return fmt.Errorf("could not read exploits gob: %w", err)
 		}
+		slog.Info("finished decoding exploits gob", "entries", len(gobExploit), "took", time.Since(t).Round(time.Millisecond))
 		return nil
 	})
 	group.Go(func() error {
+		t := time.Now()
 		if err := readGobFile(workingDir+"/maliciouspackages.gob", &malExport); err != nil {
 			return fmt.Errorf("could not read malicious packages gob: %w", err)
 		}
+		slog.Info("finished decoding malicious packages gob", "took", time.Since(t).Round(time.Millisecond))
 		return nil
 	})
 	if err := group.Wait(); err != nil {
@@ -470,31 +484,40 @@ func (s *VulnDBService) populateDBFromGobs(ctx context.Context, tx pgx.Tx, worki
 	exploits := gobExploitsToModels(gobExploit, lastImportTime)
 	pkgs, comps := gobMalPackagesExportToModels(malExport, lastImportTime)
 
-	slog.Info("applying OSV data")
+	t := time.Now()
+	slog.Info("start applying OSV data", "entries", len(osvEntries), "incremental", !lastImportTime.IsZero())
 	if err := s.osv.applyOSVEntries(ctx, tx, osvEntries, lastImportTime); err != nil {
 		return fmt.Errorf("OSV import failed: %w", err)
 	}
+	slog.Info("finished applying OSV data", "took", time.Since(t).Round(time.Millisecond))
 
-	slog.Info("applying EPSS data", "entries", len(epssData))
+	t = time.Now()
+	slog.Info("start applying EPSS data", "entries", len(epssData))
 	if err := insertEPSSBulk(ctx, tx, epssData); err != nil {
 		return fmt.Errorf("could not apply EPSS data: %w", err)
 	}
+	slog.Info("finished applying EPSS data", "took", time.Since(t).Round(time.Millisecond))
 
-	slog.Info("applying CISA KEV data", "entries", len(kevEntries))
+	t = time.Now()
+	slog.Info("start applying CISA KEV data", "entries", len(kevEntries))
 	if err := insertCISAKEVBulk(ctx, tx, kevEntries); err != nil {
 		return fmt.Errorf("could not apply CISA KEV data: %w", err)
 	}
+	slog.Info("finished applying CISA KEV data", "took", time.Since(t).Round(time.Millisecond))
 
-	slog.Info("applying exploit data", "entries", len(exploits))
+	t = time.Now()
+	slog.Info("start applying exploit data", "entries", len(exploits))
 	if err := insertExploitsBulk(ctx, tx, exploits); err != nil {
 		return fmt.Errorf("could not apply exploit data: %w", err)
 	}
+	slog.Info("finished applying exploit data", "took", time.Since(t).Round(time.Millisecond))
 
-	slog.Info("applying malicious packages")
+	t = time.Now()
+	slog.Info("start applying malicious packages", "packages", len(pkgs), "components", len(comps))
 	if err := insertMaliciousPackagesBulk(ctx, tx, pkgs, comps); err != nil {
 		return fmt.Errorf("could not apply malicious packages: %w", err)
 	}
-	slog.Info("applied malicious packages", "packages", len(pkgs), "components", len(comps))
+	slog.Info("finished applying malicious packages", "took", time.Since(t).Round(time.Millisecond))
 
 	return nil
 }
