Performance improvements for file permission and ownership templates #8456
Commits on Mar 29, 2022
-
Performance improvements for file_owner template
This template used to hit performance issues when directories were recursively assessed. The OVAL logic was slightly changed to improve the performance around 50% or more for some rules.
-
Performance improvements for file_groupowner template
Like file_owner template, file_groupowner was also prone to hit performance issues when directories were recursively assessed. The OVAL logic was slightly changed to increase the performance for some rules.
-
Change the file_permissions template to improve performance
OVAL assessment was working with include filter to collect file objects and in a second step, checking these objects against a file state. This approach was collecting all file objects regardless of their permissions. This means that many objects may be evaluated unnecessarily. The logic was changed to exclude already compliant files from the file objects list. The permission check itself is expensive, limiting the performance gain. Even so the performance was slightly improved.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.