Coverage Report

Coverage Report - org.owasp.dependencycheck.AnalysisTask

Classes in this File

Line Coverage

Branch Coverage

Complexity

AnalysisTask

66%

18/27

100%

4/4

2.667

 /*
  * This file is part of dependency-check-core.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  *
  * Copyright (c) 2016 Stefan Neuhaus. All Rights Reserved.
  */
 package org.owasp.dependencycheck;
 
 import org.owasp.dependencycheck.analyzer.Analyzer;
 import org.owasp.dependencycheck.analyzer.FileTypeAnalyzer;
 import org.owasp.dependencycheck.analyzer.exception.AnalysisException;
 import org.owasp.dependencycheck.dependency.Dependency;
 import org.owasp.dependencycheck.utils.Settings;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 import java.util.List;
 import java.util.concurrent.Callable;
 
 /**
  * Task to support parallelism of dependency-check analysis.
  * Analyses a single {@link Dependency} by a specific {@link Analyzer}.
  *
  * @author Stefan Neuhaus
  */
 class AnalysisTask implements Callable<Void> {
 
     /**
      * Instance of the logger.
      */
     private static final Logger LOGGER = LoggerFactory.getLogger(AnalysisTask.class);
 
     /**
      * A reference to the analyzer.
      */
     private final Analyzer analyzer;
     /**
      * The dependency to analyze.
      */
     private final Dependency dependency;
     /**
      * A reference to the dependency-check engine.
      */
     private final Engine engine;
     /**
      * The list of exceptions that may occur during analysis.
      */
     private final List<Throwable> exceptions;
 
     /**
      * Creates a new analysis task.
      *
      * @param analyzer a reference of the analyzer to execute
      * @param dependency the dependency to analyze
      * @param engine the dependency-check engine
      * @param exceptions exceptions that occur during analysis will be added to
      * this collection of exceptions
      */
     AnalysisTask(Analyzer analyzer, Dependency dependency, Engine engine, List<Throwable> exceptions) {
         this.analyzer = analyzer;
         this.dependency = dependency;
         this.engine = engine;
         this.exceptions = exceptions;
     }
 
     /**
      * Executes the analysis task.
      *
      * @return null
      * @throws Exception thrown if unable to execute the analysis task
      */
     @Override
     public Void call() {
         Settings.initialize();
 
         if (shouldAnalyze()) {
             LOGGER.debug("Begin Analysis of '{}' ({})", dependency.getActualFilePath(), analyzer.getName());
             try {
                 analyzer.analyze(dependency, engine);
             } catch (AnalysisException ex) {
                 LOGGER.warn("An error occurred while analyzing '{}' ({}).", dependency.getActualFilePath(), analyzer.getName());
                 LOGGER.debug("", ex);
                 exceptions.add(ex);
             } catch (Throwable ex) {
                 LOGGER.warn("An unexpected error occurred during analysis of '{}' ({}): {}",
                         dependency.getActualFilePath(), analyzer.getName(), ex.getMessage());
                 LOGGER.debug("", ex);
                 exceptions.add(ex);
             }
         }
 
         return null;
     }
 
     /**
      * Determines if the analyzer can analyze the given dependency.
      *
      * @return whether or not the analyzer can analyze the dependency
      */
     boolean shouldAnalyze() {
         if (analyzer instanceof FileTypeAnalyzer) {
             final FileTypeAnalyzer fileTypeAnalyzer = (FileTypeAnalyzer) analyzer;
             return fileTypeAnalyzer.accept(dependency.getActualFile());
         }
 
         return true;
     }
 }

1		/*
2		* This file is part of dependency-check-core.
3		*
4		* Licensed under the Apache License, Version 2.0 (the "License");
5		* you may not use this file except in compliance with the License.
6		* You may obtain a copy of the License at
7		*
8		* http://www.apache.org/licenses/LICENSE-2.0
9		*
10		* Unless required by applicable law or agreed to in writing, software
11		* distributed under the License is distributed on an "AS IS" BASIS,
12		* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13		* See the License for the specific language governing permissions and
14		* limitations under the License.
15		*
16		* Copyright (c) 2016 Stefan Neuhaus. All Rights Reserved.
17		*/
18		package org.owasp.dependencycheck;
19
20		import org.owasp.dependencycheck.analyzer.Analyzer;
21		import org.owasp.dependencycheck.analyzer.FileTypeAnalyzer;
22		import org.owasp.dependencycheck.analyzer.exception.AnalysisException;
23		import org.owasp.dependencycheck.dependency.Dependency;
24		import org.owasp.dependencycheck.utils.Settings;
25		import org.slf4j.Logger;
26		import org.slf4j.LoggerFactory;
27
28		import java.util.List;
29		import java.util.concurrent.Callable;
30
31		/**
32		* Task to support parallelism of dependency-check analysis.
33		* Analyses a single {@link Dependency} by a specific {@link Analyzer}.
34		*
35		* @author Stefan Neuhaus
36		*/
37	101	class AnalysisTask implements Callable<Void> {
38
39		/**
40		* Instance of the logger.
41		*/
42	1	private static final Logger LOGGER = LoggerFactory.getLogger(AnalysisTask.class);
43
44		/**
45		* A reference to the analyzer.
46		*/
47		private final Analyzer analyzer;
48		/**
49		* The dependency to analyze.
50		*/
51		private final Dependency dependency;
52		/**
53		* A reference to the dependency-check engine.
54		*/
55		private final Engine engine;
56		/**
57		* The list of exceptions that may occur during analysis.
58		*/
59		private final List<Throwable> exceptions;
60
61		/**
62		* Creates a new analysis task.
63		*
64		* @param analyzer a reference of the analyzer to execute
65		* @param dependency the dependency to analyze
66		* @param engine the dependency-check engine
67		* @param exceptions exceptions that occur during analysis will be added to
68		* this collection of exceptions
69		*/
70	107	AnalysisTask(Analyzer analyzer, Dependency dependency, Engine engine, List<Throwable> exceptions) {
71	107	this.analyzer = analyzer;
72	107	this.dependency = dependency;
73	107	this.engine = engine;
74	107	this.exceptions = exceptions;
75	107	}
76
77		/**
78		* Executes the analysis task.
79		*
80		* @return null
81		* @throws Exception thrown if unable to execute the analysis task
82		*/
83		@Override
84		public Void call() {
85	102	Settings.initialize();
86
87	102	if (shouldAnalyze()) {
88	39	LOGGER.debug("Begin Analysis of '{}' ({})", dependency.getActualFilePath(), analyzer.getName());
89		try {
90	39	analyzer.analyze(dependency, engine);
91	0	} catch (AnalysisException ex) {
92	0	LOGGER.warn("An error occurred while analyzing '{}' ({}).", dependency.getActualFilePath(), analyzer.getName());
93	0	LOGGER.debug("", ex);
94	0	exceptions.add(ex);
95	0	} catch (Throwable ex) {
96	0	LOGGER.warn("An unexpected error occurred during analysis of '{}' ({}): {}",
97	0	dependency.getActualFilePath(), analyzer.getName(), ex.getMessage());
98	0	LOGGER.debug("", ex);
99	0	exceptions.add(ex);
100	39	}
101		}
102
103	102	return null;
104		}
105
106		/**
107		* Determines if the analyzer can analyze the given dependency.
108		*
109		* @return whether or not the analyzer can analyze the dependency
110		*/
111		boolean shouldAnalyze() {
112	104	if (analyzer instanceof FileTypeAnalyzer) {
113	70	final FileTypeAnalyzer fileTypeAnalyzer = (FileTypeAnalyzer) analyzer;
114	69	return fileTypeAnalyzer.accept(dependency.getActualFile());
115		}
116
117	32	return true;
118		}
119		}