capture dedupe performance

valentijnscholten · valentijnscholten · commit f38cb19d9923 · 2025-10-12T17:45:03.000+02:00
diff --git a/unittests/test_importers_performance.py b/unittests/test_importers_performance.py
@@ -46,6 +46,7 @@ def setUp(self):
         self.system_settings(enable_webhooks_notifications=False)
         self.system_settings(enable_product_grade=False)
         self.system_settings(enable_github=False)
+        self.system_settings(enable_deduplication=True)
 
         # Warm up ContentType cache for relevant models. This is needed if we want to be able to run the test in isolation
         # As part of the test suite the ContentTYpe ids will already be cached and won't affect the query count.
@@ -219,11 +220,11 @@ def test_import_reimport_reimport_performance_no_async(self):
         testuser.usercontactinfo.block_execution = True
         testuser.usercontactinfo.save()
         self._import_reimport_performance(
-            expected_num_queries1=593,
+            expected_num_queries1=603,
             expected_num_async_tasks1=10,
-            expected_num_queries2=503,
+            expected_num_queries2=515,
             expected_num_async_tasks2=22,
-            expected_num_queries3=294,
+            expected_num_queries3=304,
             expected_num_async_tasks3=20,
         )
 
@@ -241,11 +242,11 @@ def test_import_reimport_reimport_performance_pghistory_no_async(self):
         testuser.usercontactinfo.save()
 
         self._import_reimport_performance(
-            expected_num_queries1=559,
+            expected_num_queries1=569,
             expected_num_async_tasks1=10,
-            expected_num_queries2=496,
+            expected_num_queries2=508,
             expected_num_async_tasks2=22,
-            expected_num_queries3=289,
+            expected_num_queries3=299,
             expected_num_async_tasks3=20,
         )
 
@@ -267,11 +268,11 @@ def test_import_reimport_reimport_performance_no_async_with_product_grading(self
         self.system_settings(enable_product_grade=True)
 
         self._import_reimport_performance(
-            expected_num_queries1=594,
+            expected_num_queries1=604,
             expected_num_async_tasks1=11,
-            expected_num_queries2=504,
+            expected_num_queries2=516,
             expected_num_async_tasks2=23,
-            expected_num_queries3=295,
+            expected_num_queries3=305,
             expected_num_async_tasks3=21,
         )
 
@@ -290,10 +291,189 @@ def test_import_reimport_reimport_performance_pghistory_no_async_with_product_gr
         self.system_settings(enable_product_grade=True)
 
         self._import_reimport_performance(
-            expected_num_queries1=560,
+            expected_num_queries1=570,
             expected_num_async_tasks1=11,
-            expected_num_queries2=497,
+            expected_num_queries2=509,
             expected_num_async_tasks2=23,
-            expected_num_queries3=290,
+            expected_num_queries3=300,
             expected_num_async_tasks3=21,
         )
+
+    # Deduplication is enabled in the tests above, but to properly test it we must run the same import twice and capture the results.
+    def _deduplication_performance(self, expected_num_queries1, expected_num_async_tasks1, expected_num_queries2, expected_num_async_tasks2, *, check_duplicates=True):
+        """
+        Test method to measure deduplication performance by importing the same scan twice.
+        The second import should result in all findings being marked as duplicates.
+        This is different from reimport as we create a new test each time.
+        """
+        product_type, _created = Product_Type.objects.get_or_create(name="test")
+        product, _created = Product.objects.get_or_create(
+            name="TestDojoDeduplicationPerformance",
+            prod_type=product_type,
+        )
+        engagement, _created = Engagement.objects.get_or_create(
+            name="Test Deduplication Performance Engagement",
+            product=product,
+            target_start=timezone.now(),
+            target_end=timezone.now(),
+        )
+        lead, _ = User.objects.get_or_create(username="admin")
+        environment, _ = Development_Environment.objects.get_or_create(name="Development")
+
+        # First import - all findings should be new
+        with (
+            self.subTest("first_import"), impersonate(Dojo_User.objects.get(username="admin")),
+            self.assertNumQueries(expected_num_queries1),
+            self._assertNumAsyncTask(expected_num_async_tasks1),
+            STACK_HAWK_FILENAME.open(encoding="utf-8") as scan,
+        ):
+            import_options = {
+                "user": lead,
+                "lead": lead,
+                "scan_date": None,
+                "environment": environment,
+                "minimum_severity": "Info",
+                "active": True,
+                "verified": True,
+                "scan_type": STACK_HAWK_SCAN_TYPE,
+                "engagement": engagement,
+            }
+            importer = DefaultImporter(**import_options)
+            _, _, len_new_findings1, len_closed_findings1, _, _, _ = importer.process_scan(scan)
+
+        # Second import - all findings should be duplicates
+        with (
+            self.subTest("second_import"), impersonate(Dojo_User.objects.get(username="admin")),
+            self.assertNumQueries(expected_num_queries2),
+            self._assertNumAsyncTask(expected_num_async_tasks2),
+            STACK_HAWK_FILENAME.open(encoding="utf-8") as scan,
+        ):
+            import_options = {
+                "user": lead,
+                "lead": lead,
+                "scan_date": None,
+                "environment": environment,
+                "minimum_severity": "Info",
+                "active": True,
+                "verified": True,
+                "scan_type": STACK_HAWK_SCAN_TYPE,
+                "engagement": engagement,
+            }
+            importer = DefaultImporter(**import_options)
+            _, _, len_new_findings2, len_closed_findings2, _, _, _ = importer.process_scan(scan)
+
+        # Log the results for analysis
+        logger.debug(f"First import: {len_new_findings1} new findings, {len_closed_findings1} closed findings")
+        logger.debug(f"Second import: {len_new_findings2} new findings, {len_closed_findings2} closed findings")
+
+        # Assert that process_scan results show no deduplication yet (deduplication happens asynchronously)
+        # The second import should report 6 new findings because deduplication is not visible in the stats from the importer
+        self.assertEqual(len_new_findings1, 6, "First import should create 6 new findings")
+        self.assertEqual(len_closed_findings1, 0, "First import should not close any findings")
+        self.assertEqual(len_new_findings2, 6, "Second import should report 6 new findings initially (before deduplication)")
+        self.assertEqual(len_closed_findings2, 0, "Second import should not close any findings")
+
+        # Verify that second import resulted in duplicates by checking the database
+        # Only check duplicates in sync mode since deduplication happens asynchronously
+        if check_duplicates:
+            # Count active findings (non-duplicates) in the engagement
+            active_findings = Finding.objects.filter(
+                test__engagement=engagement,
+                active=True,
+                duplicate=False,
+            ).count()
+
+            # Count duplicate findings in the engagement
+            duplicate_findings = Finding.objects.filter(
+                test__engagement=engagement,
+                duplicate=True,
+            ).count()
+
+            # We should have 6 active findings (from first import) and 6 duplicate findings (from second import)
+            self.assertEqual(active_findings, 6, f"Expected 6 active findings, got {active_findings}")
+            self.assertEqual(duplicate_findings, 6, f"Expected 6 duplicate findings, got {duplicate_findings}")
+
+            # Total findings should be 12 (6 active + 6 duplicates)
+            total_findings = Finding.objects.filter(test__engagement=engagement).count()
+            self.assertEqual(total_findings, 12, f"Expected 12 total findings, got {total_findings}")
+        else:
+            # In async mode, just verify we have 12 total findings (deduplication happens in celery tasks)
+            total_findings = Finding.objects.filter(test__engagement=engagement).count()
+            self.assertEqual(total_findings, 12, f"Expected 12 total findings, got {total_findings}")
+
+    @override_settings(ENABLE_AUDITLOG=True, AUDITLOG_TYPE="django-auditlog")
+    def test_deduplication_performance_async(self):
+        """
+        Test deduplication performance with async tasks enabled.
+        This test imports the same scan twice to measure deduplication query and task overhead.
+        """
+        configure_audit_system()
+        configure_pghistory_triggers()
+
+        # Enable deduplication
+        self.system_settings(enable_deduplication=True)
+
+        self._deduplication_performance(
+            expected_num_queries1=660,
+            expected_num_async_tasks1=12,
+            expected_num_queries2=519,
+            expected_num_async_tasks2=12,
+            check_duplicates=False,  # Async mode - deduplication happens later
+        )
+
+    @override_settings(ENABLE_AUDITLOG=True, AUDITLOG_TYPE="django-pghistory")
+    def test_deduplication_performance_pghistory_async(self):
+        """Test deduplication performance with django-pghistory and async tasks enabled."""
+        configure_audit_system()
+        configure_pghistory_triggers()
+
+        # Enable deduplication
+        self.system_settings(enable_deduplication=True)
+
+        self._deduplication_performance(
+            expected_num_queries1=624,
+            expected_num_async_tasks1=12,
+            expected_num_queries2=500,
+            expected_num_async_tasks2=12,
+            check_duplicates=False,  # Async mode - deduplication happens later
+        )
+
+    @override_settings(ENABLE_AUDITLOG=True, AUDITLOG_TYPE="django-auditlog")
+    def test_deduplication_performance_no_async(self):
+        """Test deduplication performance with async tasks disabled."""
+        configure_audit_system()
+        configure_pghistory_triggers()
+
+        # Enable deduplication
+        self.system_settings(enable_deduplication=True)
+
+        testuser = User.objects.get(username="admin")
+        testuser.usercontactinfo.block_execution = True
+        testuser.usercontactinfo.save()
+
+        self._deduplication_performance(
+            expected_num_queries1=672,
+            expected_num_async_tasks1=12,
+            expected_num_queries2=633,
+            expected_num_async_tasks2=12,
+        )
+
+    @override_settings(ENABLE_AUDITLOG=True, AUDITLOG_TYPE="django-pghistory")
+    def test_deduplication_performance_pghistory_no_async(self):
+        """Test deduplication performance with django-pghistory and async tasks disabled."""
+        configure_audit_system()
+        configure_pghistory_triggers()
+
+        # Enable deduplication
+        self.system_settings(enable_deduplication=True)
+
+        testuser = User.objects.get(username="admin")
+        testuser.usercontactinfo.block_execution = True
+        testuser.usercontactinfo.save()
+
+        self._deduplication_performance(
+            expected_num_queries1=636,
+            expected_num_async_tasks1=12,
+            expected_num_queries2=596,
+            expected_num_async_tasks2=12,
+        )
