Merge pull request #540 from jzelinskie/document-proto

api/v3/clairpb: document and regenerate protos
This commit is contained in:
Jimmy Zelinskie 2018-07-10 17:30:04 -04:00 committed by GitHub
commit 158bb31b77
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
8 changed files with 873 additions and 702 deletions

View File

@ -5,10 +5,19 @@ go:
sudo: required sudo: required
env:
global:
- PATH=$HOME/.local/bin:$PATH
install: install:
- curl https://glide.sh/get | sh - curl https://glide.sh/get | sh
- mkdir -p $HOME/.local/bin
- curl -o $HOME/.local/bin/prototool -sSL https://github.com/uber/prototool/releases/download/v0.1.0/prototool-$(uname -s)-$(uname -m)
- chmod +x $HOME/.local/bin/prototool
script: script:
- prototool format -d api/v3/clairpb/clair.proto
- prototool lint api/v3/clairpb/clair.proto
- go test $(glide novendor | grep -v contrib) - go test $(glide novendor | grep -v contrib)
dist: trusty dist: trusty

File diff suppressed because it is too large Load Diff

View File

@ -28,21 +28,6 @@ var _ status.Status
var _ = runtime.String var _ = runtime.String
var _ = utilities.NewDoubleArray var _ = utilities.NewDoubleArray
func request_AncestryService_PostAncestry_0(ctx context.Context, marshaler runtime.Marshaler, client AncestryServiceClient, req *http.Request, pathParams map[string]string) (proto.Message, runtime.ServerMetadata, error) {
var protoReq PostAncestryRequest
var metadata runtime.ServerMetadata
if req.ContentLength > 0 {
if err := marshaler.NewDecoder(req.Body).Decode(&protoReq); err != nil {
return nil, metadata, status.Errorf(codes.InvalidArgument, "%v", err)
}
}
msg, err := client.PostAncestry(ctx, &protoReq, grpc.Header(&metadata.HeaderMD), grpc.Trailer(&metadata.TrailerMD))
return msg, metadata, err
}
var ( var (
filter_AncestryService_GetAncestry_0 = &utilities.DoubleArray{Encoding: map[string]int{"ancestry_name": 0}, Base: []int{1, 1, 0}, Check: []int{0, 1, 2}} filter_AncestryService_GetAncestry_0 = &utilities.DoubleArray{Encoding: map[string]int{"ancestry_name": 0}, Base: []int{1, 1, 0}, Check: []int{0, 1, 2}}
) )
@ -78,6 +63,21 @@ func request_AncestryService_GetAncestry_0(ctx context.Context, marshaler runtim
} }
func request_AncestryService_PostAncestry_0(ctx context.Context, marshaler runtime.Marshaler, client AncestryServiceClient, req *http.Request, pathParams map[string]string) (proto.Message, runtime.ServerMetadata, error) {
var protoReq PostAncestryRequest
var metadata runtime.ServerMetadata
if req.ContentLength > 0 {
if err := marshaler.NewDecoder(req.Body).Decode(&protoReq); err != nil {
return nil, metadata, status.Errorf(codes.InvalidArgument, "%v", err)
}
}
msg, err := client.PostAncestry(ctx, &protoReq, grpc.Header(&metadata.HeaderMD), grpc.Trailer(&metadata.TrailerMD))
return msg, metadata, err
}
var ( var (
filter_NotificationService_GetNotification_0 = &utilities.DoubleArray{Encoding: map[string]int{"name": 0}, Base: []int{1, 1, 0}, Check: []int{0, 1, 2}} filter_NotificationService_GetNotification_0 = &utilities.DoubleArray{Encoding: map[string]int{"name": 0}, Base: []int{1, 1, 0}, Check: []int{0, 1, 2}}
) )
@ -178,35 +178,6 @@ func RegisterAncestryServiceHandler(ctx context.Context, mux *runtime.ServeMux,
// "AncestryServiceClient" to call the correct interceptors. // "AncestryServiceClient" to call the correct interceptors.
func RegisterAncestryServiceHandlerClient(ctx context.Context, mux *runtime.ServeMux, client AncestryServiceClient) error { func RegisterAncestryServiceHandlerClient(ctx context.Context, mux *runtime.ServeMux, client AncestryServiceClient) error {
mux.Handle("POST", pattern_AncestryService_PostAncestry_0, func(w http.ResponseWriter, req *http.Request, pathParams map[string]string) {
ctx, cancel := context.WithCancel(req.Context())
defer cancel()
if cn, ok := w.(http.CloseNotifier); ok {
go func(done <-chan struct{}, closed <-chan bool) {
select {
case <-done:
case <-closed:
cancel()
}
}(ctx.Done(), cn.CloseNotify())
}
inboundMarshaler, outboundMarshaler := runtime.MarshalerForRequest(mux, req)
rctx, err := runtime.AnnotateContext(ctx, mux, req)
if err != nil {
runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err)
return
}
resp, md, err := request_AncestryService_PostAncestry_0(rctx, inboundMarshaler, client, req, pathParams)
ctx = runtime.NewServerMetadataContext(ctx, md)
if err != nil {
runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err)
return
}
forward_AncestryService_PostAncestry_0(ctx, mux, outboundMarshaler, w, req, resp, mux.GetForwardResponseOptions()...)
})
mux.Handle("GET", pattern_AncestryService_GetAncestry_0, func(w http.ResponseWriter, req *http.Request, pathParams map[string]string) { mux.Handle("GET", pattern_AncestryService_GetAncestry_0, func(w http.ResponseWriter, req *http.Request, pathParams map[string]string) {
ctx, cancel := context.WithCancel(req.Context()) ctx, cancel := context.WithCancel(req.Context())
defer cancel() defer cancel()
@ -236,19 +207,48 @@ func RegisterAncestryServiceHandlerClient(ctx context.Context, mux *runtime.Serv
}) })
mux.Handle("POST", pattern_AncestryService_PostAncestry_0, func(w http.ResponseWriter, req *http.Request, pathParams map[string]string) {
ctx, cancel := context.WithCancel(req.Context())
defer cancel()
if cn, ok := w.(http.CloseNotifier); ok {
go func(done <-chan struct{}, closed <-chan bool) {
select {
case <-done:
case <-closed:
cancel()
}
}(ctx.Done(), cn.CloseNotify())
}
inboundMarshaler, outboundMarshaler := runtime.MarshalerForRequest(mux, req)
rctx, err := runtime.AnnotateContext(ctx, mux, req)
if err != nil {
runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err)
return
}
resp, md, err := request_AncestryService_PostAncestry_0(rctx, inboundMarshaler, client, req, pathParams)
ctx = runtime.NewServerMetadataContext(ctx, md)
if err != nil {
runtime.HTTPError(ctx, mux, outboundMarshaler, w, req, err)
return
}
forward_AncestryService_PostAncestry_0(ctx, mux, outboundMarshaler, w, req, resp, mux.GetForwardResponseOptions()...)
})
return nil return nil
} }
var ( var (
pattern_AncestryService_PostAncestry_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0}, []string{"ancestry"}, ""))
pattern_AncestryService_GetAncestry_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0, 1, 0, 4, 1, 5, 1}, []string{"ancestry", "ancestry_name"}, "")) pattern_AncestryService_GetAncestry_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0, 1, 0, 4, 1, 5, 1}, []string{"ancestry", "ancestry_name"}, ""))
pattern_AncestryService_PostAncestry_0 = runtime.MustPattern(runtime.NewPattern(1, []int{2, 0}, []string{"ancestry"}, ""))
) )
var ( var (
forward_AncestryService_PostAncestry_0 = runtime.ForwardResponseMessage
forward_AncestryService_GetAncestry_0 = runtime.ForwardResponseMessage forward_AncestryService_GetAncestry_0 = runtime.ForwardResponseMessage
forward_AncestryService_PostAncestry_0 = runtime.ForwardResponseMessage
) )
// RegisterNotificationServiceHandlerFromEndpoint is same as RegisterNotificationServiceHandler but // RegisterNotificationServiceHandlerFromEndpoint is same as RegisterNotificationServiceHandler but

View File

@ -1,4 +1,4 @@
// Copyright 2017 clair authors // Copyright 2018 clair authors
// //
// Licensed under the Apache License, Version 2.0 (the "License"); // Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License. // you may not use this file except in compliance with the License.
@ -13,153 +13,197 @@
// limitations under the License. // limitations under the License.
syntax = "proto3"; syntax = "proto3";
option go_package = "clairpb";
package clairpb;
import "google/api/annotations.proto";
import "google/protobuf/empty.proto";
import "google/protobuf/timestamp.proto"; import "google/protobuf/timestamp.proto";
import "google/api/annotations.proto";
package coreos.clair;
option go_package = "clairpb";
option java_package = "com.coreos.clair.pb";
message Vulnerability { message Vulnerability {
// The name of the vulnerability.
string name = 1; string name = 1;
// The name of the namespace in which the vulnerability was detected.
string namespace_name = 2; string namespace_name = 2;
// A description of the vulnerability according to the source for the namespace.
string description = 3; string description = 3;
// A link to the vulnerability according to the source for the namespace.
string link = 4; string link = 4;
// How dangerous the vulnerability is.
string severity = 5; string severity = 5;
// Namespace agnostic metadata about the vulnerability.
string metadata = 6; string metadata = 6;
// fixed_by exists when vulnerability is under feature. // The feature that fixes this vulnerability.
// This field only exists when a vulnerability is a part of a Feature.
string fixed_by = 7; string fixed_by = 7;
// affected_versions exists when vulnerability is under notification. // The Features that are affected by the vulnerability.
// This field only exists when a vulnerability is a part of a Notification.
repeated Feature affected_versions = 8; repeated Feature affected_versions = 8;
} }
message ClairStatus { message Feature {
// listers and detectors are processors implemented in this Clair and used to // The name of the feature.
// scan ancestries
repeated string listers = 1;
repeated string detectors = 2;
google.protobuf.Timestamp last_update_time = 3;
}
message Feature{
string name = 1; string name = 1;
// The name of the namespace in which the feature is detected.
string namespace_name = 2; string namespace_name = 2;
// The specific version of this feature.
string version = 3; string version = 3;
// The format used to parse version numbers for the feature.
// version_format is the format used by installer package manager to store
// package versions.
string version_format = 4; string version_format = 4;
// The list of vulnerabilities that affect the feature.
repeated Vulnerability vulnerabilities = 5; repeated Vulnerability vulnerabilities = 5;
} }
message Ancestry {
string name = 1;
repeated Feature features = 2;
repeated Layer layers = 3;
// scanned_listers and scanned_detectors are used to scan this ancestry, it
// may be different from listers and detectors in ClairStatus since the
// ancestry could be scanned by previous version of Clair.
repeated string scanned_listers = 4;
repeated string scanned_detectors = 5;
}
message Layer { message Layer {
// The sha256 tarsum for the layer.
string hash = 1; string hash = 1;
} }
message Notification { service AncestryService {
string name = 1; // The RPC used to read the results of scanning for a particular ancestry.
string created = 2; rpc GetAncestry(GetAncestryRequest) returns (GetAncestryResponse) {
string notified = 3; option (google.api.http) = { get: "/ancestry/{ancestry_name}" };
string deleted = 4;
PagedVulnerableAncestries old = 5;
PagedVulnerableAncestries new = 6;
}
message IndexedAncestryName {
// index is unique to name in all streams simultaneously streamed, increasing
// and larger than all indexes in previous page in same stream.
int32 index = 1;
string name = 2;
}
message PagedVulnerableAncestries {
string current_page = 1;
// if next_page is empty, it signals the end of all pages.
string next_page = 2;
int32 limit = 3;
Vulnerability vulnerability = 4;
repeated IndexedAncestryName ancestries = 5;
}
message PostAncestryRequest {
message PostLayer {
string hash = 1;
string path = 2;
map<string, string> headers = 3;
} }
string ancestry_name = 1; // The RPC used to create a new scan of an ancestry.
string format = 2;
repeated PostLayer layers = 3;
}
message PostAncestryResponse {
ClairStatus status = 1;
}
message GetAncestryRequest {
string ancestry_name = 1;
bool with_vulnerabilities = 2;
bool with_features = 3;
}
message GetAncestryResponse {
Ancestry ancestry = 1;
ClairStatus status = 2;
}
message GetNotificationRequest {
// if the vulnerability_page is empty, it implies the first page.
string old_vulnerability_page = 1;
string new_vulnerability_page = 2;
int32 limit = 3;
string name = 4;
}
message GetNotificationResponse {
Notification notification = 1;
}
message MarkNotificationAsReadRequest {
string name = 1;
}
service AncestryService{
rpc PostAncestry(PostAncestryRequest) returns (PostAncestryResponse) { rpc PostAncestry(PostAncestryRequest) returns (PostAncestryResponse) {
option (google.api.http) = { option (google.api.http) = {
post: "/ancestry" post: "/ancestry"
body: "*" body: "*"
}; };
} }
rpc GetAncestry(GetAncestryRequest) returns (GetAncestryResponse) {
option (google.api.http) = {
get: "/ancestry/{ancestry_name}"
};
}
} }
service NotificationService{ message ClairStatus {
// The configured list of feature listers used to scan an ancestry.
repeated string listers = 1;
// The configured list of namespace detectors used to scan an ancestry.
repeated string detectors = 2;
// The time at which the updater last ran.
google.protobuf.Timestamp last_update_time = 3;
}
message GetAncestryRequest {
// The name of the desired ancestry.
string ancestry_name = 1;
// Whether to include vulnerabilities or not in the response.
bool with_vulnerabilities = 2;
// Whether to include features or not in the response.
bool with_features = 3;
}
message GetAncestryResponse {
message Ancestry {
// The name of the desired ancestry.
string name = 1;
// The list of features present in the ancestry.
// This will only be provided if requested.
repeated Feature features = 2;
// The layers present in the ancestry.
repeated Layer layers = 3;
// The configured list of feature listers used to scan this ancestry.
repeated string scanned_listers = 4;
// The configured list of namespace detectors used to scan an ancestry.
repeated string scanned_detectors = 5;
}
// The ancestry requested.
Ancestry ancestry = 1;
// The status of Clair at the time of the request.
ClairStatus status = 2;
}
message PostAncestryRequest {
message PostLayer {
// The hash of the layer.
string hash = 1;
// The location of the layer (URL or filepath).
string path = 2;
// Any HTTP Headers that need to be used if requesting a layer over HTTP(S).
map<string, string> headers = 3;
}
// The name of the ancestry being scanned.
// If scanning OCI images, this should be the hash of the manifest.
string ancestry_name = 1;
// The format of the image being uploaded.
string format = 2;
// The layers to be scanned for this particular ancestry.
repeated PostLayer layers = 3;
}
message PostAncestryResponse {
// The status of Clair at the time of the request.
ClairStatus status = 1;
}
service NotificationService {
// The RPC used to get a particularly Notification.
rpc GetNotification(GetNotificationRequest) returns (GetNotificationResponse) { rpc GetNotification(GetNotificationRequest) returns (GetNotificationResponse) {
option (google.api.http) = { option (google.api.http) = { get: "/notifications/{name}" };
get: "/notifications/{name}"
};
} }
// The RPC used to mark a Notification as read after it has been processed.
rpc MarkNotificationAsRead(MarkNotificationAsReadRequest) returns (google.protobuf.Empty) { rpc MarkNotificationAsRead(MarkNotificationAsReadRequest) returns (MarkNotificationAsReadResponse) {
option (google.api.http) = { option (google.api.http) = { delete: "/notifications/{name}" };
delete: "/notifications/{name}"
};
} }
} }
message GetNotificationRequest {
// The current page of previous vulnerabilities for the ancestry.
// This will be empty when it is the first page.
string old_vulnerability_page = 1;
// The current page of vulnerabilities for the ancestry.
// This will be empty when it is the first page.
string new_vulnerability_page = 2;
// The requested maximum number of results per page.
int32 limit = 3;
// The name of the notification being requested.
string name = 4;
}
message GetNotificationResponse {
message Notification {
// The name of the requested notification.
string name = 1;
// The time at which the notification was created.
string created = 2;
// The time at which the notification was last sent out.
string notified = 3;
// The time at which a notification has been deleted.
string deleted = 4;
// The previous vulnerability and a paginated view of the ancestries it affects.
PagedVulnerableAncestries old = 5;
// The newly updated vulnerability and a paginated view of the ancestries it affects.
PagedVulnerableAncestries new = 6;
}
// The notification as requested.
Notification notification = 1;
}
message PagedVulnerableAncestries {
message IndexedAncestryName {
// The index is an ever increasing number associated with the particular ancestry.
// This is useful if you're processing notifications, and need to keep track of the progress of paginating the results.
int32 index = 1;
// The name of the ancestry.
string name = 2;
}
// The identifier for the current page.
string current_page = 1;
// The token used to request the next page.
// This will be empty when there are no more pages.
string next_page = 2;
// The requested maximum number of results per page.
int32 limit = 3;
// The vulnerability that affects a given set of ancestries.
Vulnerability vulnerability = 4;
// The ancestries affected by a vulnerability.
repeated IndexedAncestryName ancestries = 5;
}
message MarkNotificationAsReadRequest {
// The name of the Notification that has been processed.
string name = 1;
}
message MarkNotificationAsReadResponse {}

View File

@ -17,12 +17,13 @@
"paths": { "paths": {
"/ancestry": { "/ancestry": {
"post": { "post": {
"summary": "The RPC used to create a new scan of an ancestry.",
"operationId": "PostAncestry", "operationId": "PostAncestry",
"responses": { "responses": {
"200": { "200": {
"description": "", "description": "",
"schema": { "schema": {
"$ref": "#/definitions/clairpbPostAncestryResponse" "$ref": "#/definitions/clairPostAncestryResponse"
} }
} }
}, },
@ -32,7 +33,7 @@
"in": "body", "in": "body",
"required": true, "required": true,
"schema": { "schema": {
"$ref": "#/definitions/clairpbPostAncestryRequest" "$ref": "#/definitions/clairPostAncestryRequest"
} }
} }
], ],
@ -43,12 +44,13 @@
}, },
"/ancestry/{ancestry_name}": { "/ancestry/{ancestry_name}": {
"get": { "get": {
"summary": "The RPC used to read the results of scanning for a particular ancestry.",
"operationId": "GetAncestry", "operationId": "GetAncestry",
"responses": { "responses": {
"200": { "200": {
"description": "", "description": "",
"schema": { "schema": {
"$ref": "#/definitions/clairpbGetAncestryResponse" "$ref": "#/definitions/clairGetAncestryResponse"
} }
} }
}, },
@ -61,6 +63,7 @@
}, },
{ {
"name": "with_vulnerabilities", "name": "with_vulnerabilities",
"description": "Whether to include vulnerabilities or not in the response.",
"in": "query", "in": "query",
"required": false, "required": false,
"type": "boolean", "type": "boolean",
@ -68,6 +71,7 @@
}, },
{ {
"name": "with_features", "name": "with_features",
"description": "Whether to include features or not in the response.",
"in": "query", "in": "query",
"required": false, "required": false,
"type": "boolean", "type": "boolean",
@ -81,12 +85,13 @@
}, },
"/notifications/{name}": { "/notifications/{name}": {
"get": { "get": {
"summary": "The RPC used to get a particularly Notification.",
"operationId": "GetNotification", "operationId": "GetNotification",
"responses": { "responses": {
"200": { "200": {
"description": "", "description": "",
"schema": { "schema": {
"$ref": "#/definitions/clairpbGetNotificationResponse" "$ref": "#/definitions/clairGetNotificationResponse"
} }
} }
}, },
@ -99,19 +104,21 @@
}, },
{ {
"name": "old_vulnerability_page", "name": "old_vulnerability_page",
"description": "if the vulnerability_page is empty, it implies the first page.", "description": "The current page of previous vulnerabilities for the ancestry.\nThis will be empty when it is the first page.",
"in": "query", "in": "query",
"required": false, "required": false,
"type": "string" "type": "string"
}, },
{ {
"name": "new_vulnerability_page", "name": "new_vulnerability_page",
"description": "The current page of vulnerabilities for the ancestry.\nThis will be empty when it is the first page.",
"in": "query", "in": "query",
"required": false, "required": false,
"type": "string" "type": "string"
}, },
{ {
"name": "limit", "name": "limit",
"description": "The requested maximum number of results per page.",
"in": "query", "in": "query",
"required": false, "required": false,
"type": "integer", "type": "integer",
@ -123,12 +130,13 @@
] ]
}, },
"delete": { "delete": {
"summary": "The RPC used to mark a Notification as read after it has been processed.",
"operationId": "MarkNotificationAsRead", "operationId": "MarkNotificationAsRead",
"responses": { "responses": {
"200": { "200": {
"description": "", "description": "",
"schema": { "schema": {
"$ref": "#/definitions/protobufEmpty" "$ref": "#/definitions/clairMarkNotificationAsReadResponse"
} }
} }
}, },
@ -147,57 +155,107 @@
} }
}, },
"definitions": { "definitions": {
"PostAncestryRequestPostLayer": { "GetAncestryResponseAncestry": {
"type": "object",
"properties": {
"hash": {
"type": "string"
},
"path": {
"type": "string"
},
"headers": {
"type": "object",
"additionalProperties": {
"type": "string"
}
}
}
},
"clairpbAncestry": {
"type": "object", "type": "object",
"properties": { "properties": {
"name": { "name": {
"type": "string" "type": "string",
"description": "The name of the desired ancestry."
}, },
"features": { "features": {
"type": "array", "type": "array",
"items": { "items": {
"$ref": "#/definitions/clairpbFeature" "$ref": "#/definitions/clairFeature"
} },
"description": "The list of features present in the ancestry.\nThis will only be provided if requested."
}, },
"layers": { "layers": {
"type": "array", "type": "array",
"items": { "items": {
"$ref": "#/definitions/clairpbLayer" "$ref": "#/definitions/clairLayer"
} },
"description": "The layers present in the ancestry."
}, },
"scanned_listers": { "scanned_listers": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string" "type": "string"
}, },
"description": "scanned_listers and scanned_detectors are used to scan this ancestry, it\nmay be different from listers and detectors in ClairStatus since the\nancestry could be scanned by previous version of Clair." "description": "The configured list of feature listers used to scan this ancestry."
}, },
"scanned_detectors": { "scanned_detectors": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string" "type": "string"
} },
"description": "The configured list of namespace detectors used to scan an ancestry."
} }
} }
}, },
"clairpbClairStatus": { "GetNotificationResponseNotification": {
"type": "object",
"properties": {
"name": {
"type": "string",
"description": "The name of the requested notification."
},
"created": {
"type": "string",
"description": "The time at which the notification was created."
},
"notified": {
"type": "string",
"description": "The time at which the notification was last sent out."
},
"deleted": {
"type": "string",
"description": "The time at which a notification has been deleted."
},
"old": {
"$ref": "#/definitions/clairPagedVulnerableAncestries",
"description": "The previous vulnerability and a paginated view of the ancestries it affects."
},
"new": {
"$ref": "#/definitions/clairPagedVulnerableAncestries",
"description": "The newly updated vulnerability and a paginated view of the ancestries it affects."
}
}
},
"PagedVulnerableAncestriesIndexedAncestryName": {
"type": "object",
"properties": {
"index": {
"type": "integer",
"format": "int32",
"description": "The index is an ever increasing number associated with the particular ancestry.\nThis is useful if you're processing notifications, and need to keep track of the progress of paginating the results."
},
"name": {
"type": "string",
"description": "The name of the ancestry."
}
}
},
"PostAncestryRequestPostLayer": {
"type": "object",
"properties": {
"hash": {
"type": "string",
"description": "The hash of the layer."
},
"path": {
"type": "string",
"description": "The location of the layer (URL or filepath)."
},
"headers": {
"type": "object",
"additionalProperties": {
"type": "string"
},
"description": "Any HTTP Headers that need to be used if requesting a layer over HTTP(S)."
}
}
},
"clairClairStatus": {
"type": "object", "type": "object",
"properties": { "properties": {
"listers": { "listers": {
@ -205,195 +263,181 @@
"items": { "items": {
"type": "string" "type": "string"
}, },
"title": "listers and detectors are processors implemented in this Clair and used to\nscan ancestries" "description": "The configured list of feature listers used to scan an ancestry."
}, },
"detectors": { "detectors": {
"type": "array", "type": "array",
"items": { "items": {
"type": "string" "type": "string"
} },
"description": "The configured list of namespace detectors used to scan an ancestry."
}, },
"last_update_time": { "last_update_time": {
"type": "string", "type": "string",
"format": "date-time" "format": "date-time",
"description": "The time at which the updater last ran."
} }
} }
}, },
"clairpbFeature": { "clairFeature": {
"type": "object", "type": "object",
"properties": { "properties": {
"name": { "name": {
"type": "string" "type": "string",
"description": "The name of the feature."
}, },
"namespace_name": { "namespace_name": {
"type": "string" "type": "string",
"description": "The name of the namespace in which the feature is detected."
}, },
"version": { "version": {
"type": "string" "type": "string",
"description": "The specific version of this feature."
}, },
"version_format": { "version_format": {
"type": "string", "type": "string",
"description": "version_format is the format used by installer package manager to store\npackage versions." "description": "The format used to parse version numbers for the feature."
}, },
"vulnerabilities": { "vulnerabilities": {
"type": "array", "type": "array",
"items": { "items": {
"$ref": "#/definitions/clairpbVulnerability" "$ref": "#/definitions/clairVulnerability"
} },
"description": "The list of vulnerabilities that affect the feature."
} }
} }
}, },
"clairpbGetAncestryResponse": { "clairGetAncestryResponse": {
"type": "object", "type": "object",
"properties": { "properties": {
"ancestry": { "ancestry": {
"$ref": "#/definitions/clairpbAncestry" "$ref": "#/definitions/GetAncestryResponseAncestry",
"description": "The ancestry requested."
}, },
"status": { "status": {
"$ref": "#/definitions/clairpbClairStatus" "$ref": "#/definitions/clairClairStatus",
"description": "The status of Clair at the time of the request."
} }
} }
}, },
"clairpbGetNotificationResponse": { "clairGetNotificationResponse": {
"type": "object", "type": "object",
"properties": { "properties": {
"notification": { "notification": {
"$ref": "#/definitions/clairpbNotification" "$ref": "#/definitions/GetNotificationResponseNotification",
"description": "The notification as requested."
} }
} }
}, },
"clairpbIndexedAncestryName": { "clairLayer": {
"type": "object",
"properties": {
"index": {
"type": "integer",
"format": "int32",
"description": "index is unique to name in all streams simultaneously streamed, increasing\nand larger than all indexes in previous page in same stream."
},
"name": {
"type": "string"
}
}
},
"clairpbLayer": {
"type": "object", "type": "object",
"properties": { "properties": {
"hash": { "hash": {
"type": "string" "type": "string",
"description": "The sha256 tarsum for the layer."
} }
} }
}, },
"clairpbNotification": { "clairMarkNotificationAsReadResponse": {
"type": "object", "type": "object"
"properties": {
"name": {
"type": "string"
}, },
"created": { "clairPagedVulnerableAncestries": {
"type": "string"
},
"notified": {
"type": "string"
},
"deleted": {
"type": "string"
},
"old": {
"$ref": "#/definitions/clairpbPagedVulnerableAncestries"
},
"new": {
"$ref": "#/definitions/clairpbPagedVulnerableAncestries"
}
}
},
"clairpbPagedVulnerableAncestries": {
"type": "object", "type": "object",
"properties": { "properties": {
"current_page": { "current_page": {
"type": "string" "type": "string",
"description": "The identifier for the current page."
}, },
"next_page": { "next_page": {
"type": "string", "type": "string",
"description": "if next_page is empty, it signals the end of all pages." "description": "The token used to request the next page.\nThis will be empty when there are no more pages."
}, },
"limit": { "limit": {
"type": "integer", "type": "integer",
"format": "int32" "format": "int32",
"description": "The requested maximum number of results per page."
}, },
"vulnerability": { "vulnerability": {
"$ref": "#/definitions/clairpbVulnerability" "$ref": "#/definitions/clairVulnerability",
"description": "The vulnerability that affects a given set of ancestries."
}, },
"ancestries": { "ancestries": {
"type": "array", "type": "array",
"items": { "items": {
"$ref": "#/definitions/clairpbIndexedAncestryName" "$ref": "#/definitions/PagedVulnerableAncestriesIndexedAncestryName"
} },
"description": "The ancestries affected by a vulnerability."
} }
} }
}, },
"clairpbPostAncestryRequest": { "clairPostAncestryRequest": {
"type": "object", "type": "object",
"properties": { "properties": {
"ancestry_name": { "ancestry_name": {
"type": "string" "type": "string",
"description": "The name of the ancestry being scanned.\nIf scanning OCI images, this should be the hash of the manifest."
}, },
"format": { "format": {
"type": "string" "type": "string",
"description": "The format of the image being uploaded."
}, },
"layers": { "layers": {
"type": "array", "type": "array",
"items": { "items": {
"$ref": "#/definitions/PostAncestryRequestPostLayer" "$ref": "#/definitions/PostAncestryRequestPostLayer"
} },
"description": "The layers to be scanned for this particular ancestry."
} }
} }
}, },
"clairpbPostAncestryResponse": { "clairPostAncestryResponse": {
"type": "object", "type": "object",
"properties": { "properties": {
"status": { "status": {
"$ref": "#/definitions/clairpbClairStatus" "$ref": "#/definitions/clairClairStatus",
"description": "The status of Clair at the time of the request."
} }
} }
}, },
"clairpbVulnerability": { "clairVulnerability": {
"type": "object", "type": "object",
"properties": { "properties": {
"name": { "name": {
"type": "string" "type": "string",
"description": "The name of the vulnerability."
}, },
"namespace_name": { "namespace_name": {
"type": "string" "type": "string",
"description": "The name of the namespace in which the vulnerability was detected."
}, },
"description": { "description": {
"type": "string" "type": "string",
"description": "A description of the vulnerability according to the source for the namespace."
}, },
"link": { "link": {
"type": "string" "type": "string",
"description": "A link to the vulnerability according to the source for the namespace."
}, },
"severity": { "severity": {
"type": "string" "type": "string",
"description": "How dangerous the vulnerability is."
}, },
"metadata": { "metadata": {
"type": "string" "type": "string",
"description": "Namespace agnostic metadata about the vulnerability."
}, },
"fixed_by": { "fixed_by": {
"type": "string", "type": "string",
"description": "fixed_by exists when vulnerability is under feature." "description": "The feature that fixes this vulnerability.\nThis field only exists when a vulnerability is a part of a Feature."
}, },
"affected_versions": { "affected_versions": {
"type": "array", "type": "array",
"items": { "items": {
"$ref": "#/definitions/clairpbFeature" "$ref": "#/definitions/clairFeature"
}, },
"description": "affected_versions exists when vulnerability is under notification." "description": "The Features that are affected by the vulnerability.\nThis field only exists when a vulnerability is a part of a Notification."
} }
} }
},
"protobufEmpty": {
"type": "object",
"description": "service Foo {\n rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty);\n }\n\nThe JSON representation for `Empty` is empty JSON object `{}`.",
"title": "A generic empty message that you can re-use to avoid defining duplicated\nempty messages in your APIs. A typical example is to use it as the request\nor the response type of an API method. For instance:"
} }
} }
} }

View File

@ -48,7 +48,7 @@ func PagedVulnerableAncestriesFromDatabaseModel(dbVuln *database.PagedVulnerable
} }
for index, ancestryName := range dbVuln.Affected { for index, ancestryName := range dbVuln.Affected {
indexedAncestry := IndexedAncestryName{ indexedAncestry := PagedVulnerableAncestries_IndexedAncestryName{
Name: ancestryName, Name: ancestryName,
Index: int32(index), Index: int32(index),
} }
@ -60,9 +60,9 @@ func PagedVulnerableAncestriesFromDatabaseModel(dbVuln *database.PagedVulnerable
// NotificationFromDatabaseModel converts database notification, old and new // NotificationFromDatabaseModel converts database notification, old and new
// vulnerabilities' paged vulnerable ancestries to be api notification. // vulnerabilities' paged vulnerable ancestries to be api notification.
func NotificationFromDatabaseModel(dbNotification database.VulnerabilityNotificationWithVulnerable) (*Notification, error) { func NotificationFromDatabaseModel(dbNotification database.VulnerabilityNotificationWithVulnerable) (*GetNotificationResponse_Notification, error) {
var ( var (
noti Notification noti GetNotificationResponse_Notification
err error err error
) )
@ -123,8 +123,8 @@ func VulnerabilityWithFixedInFromDatabaseModel(dbVuln database.VulnerabilityWith
} }
// AncestryFromDatabaseModel converts database ancestry to api ancestry. // AncestryFromDatabaseModel converts database ancestry to api ancestry.
func AncestryFromDatabaseModel(dbAncestry database.Ancestry) *Ancestry { func AncestryFromDatabaseModel(dbAncestry database.Ancestry) *GetAncestryResponse_Ancestry {
ancestry := &Ancestry{ ancestry := &GetAncestryResponse_Ancestry{
Name: dbAncestry.Name, Name: dbAncestry.Name,
} }
for _, layer := range dbAncestry.Layers { for _, layer := range dbAncestry.Layers {

View File

@ -0,0 +1,3 @@
protoc_version: 3.5.1
protoc_includes:
- ../../../vendor/github.com/grpc-ecosystem/grpc-gateway/third_party/googleapis

View File

@ -18,7 +18,6 @@ import (
"fmt" "fmt"
"github.com/golang/protobuf/ptypes" "github.com/golang/protobuf/ptypes"
google_protobuf1 "github.com/golang/protobuf/ptypes/empty"
"golang.org/x/net/context" "golang.org/x/net/context"
"google.golang.org/grpc/codes" "google.golang.org/grpc/codes"
"google.golang.org/grpc/status" "google.golang.org/grpc/status"
@ -227,7 +226,7 @@ func (s *NotificationServer) GetNotification(ctx context.Context, req *pb.GetNot
// MarkNotificationAsRead implements deleting a notification via the Clair gRPC // MarkNotificationAsRead implements deleting a notification via the Clair gRPC
// service. // service.
func (s *NotificationServer) MarkNotificationAsRead(ctx context.Context, req *pb.MarkNotificationAsReadRequest) (*google_protobuf1.Empty, error) { func (s *NotificationServer) MarkNotificationAsRead(ctx context.Context, req *pb.MarkNotificationAsReadRequest) (*pb.MarkNotificationAsReadResponse, error) {
if req.GetName() == "" { if req.GetName() == "" {
return nil, status.Error(codes.InvalidArgument, "notification name should not be empty") return nil, status.Error(codes.InvalidArgument, "notification name should not be empty")
} }
@ -249,5 +248,5 @@ func (s *NotificationServer) MarkNotificationAsRead(ctx context.Context, req *pb
return nil, status.Error(codes.Internal, err.Error()) return nil, status.Error(codes.Internal, err.Error())
} }
return &google_protobuf1.Empty{}, nil return &pb.MarkNotificationAsReadResponse{}, nil
} }