Commit Graph

919 Commits

Author SHA1 Message Date
Dominik Csapak
e08fe792ef add disco to namespace mappings for ubuntu
otherwise those vulnerabilities do not reach the database
2019-04-26 08:23:47 +02:00
Jimmy Zelinskie
5fef44dd04
Merge pull request #671 from ericysim/amazon
Add updaters for Amazon Linux 2018.03 and Amazon Linux 2
2019-04-24 14:11:10 -04:00
Eric Sim
32cd4f1ec3 Add Amazon Linux to drivers and data sources doc 2019-04-23 10:38:48 -07:00
Eric Sim
6617f560cc database: Rename affected type to feature type (for Amazon Linux updater) 2019-04-11 13:26:14 -07:00
Eric Sim
adde75975f Fix style issues 2019-04-11 13:26:14 -07:00
Eric Sim
684ae2be1d Refactoring (minor) 2019-04-11 13:26:14 -07:00
Eric Sim
8e98ee878a Add 2xx checks for mirror.list and repomd.xml 2019-04-11 13:26:13 -07:00
Eric Sim
803cf4a29e gofmt 2019-04-11 13:26:13 -07:00
Eric Sim
8fb9097dbd Add updaters for Amazon Linux 2018.03 and Amazon Linux 2
We get vulnerabilities from ALAS (Amazon Linux Security Advisories) data, which can be found in updateinfo.xml from the repos.
2019-04-11 13:26:13 -07:00
Jimmy Zelinskie
d79827690c
Merge pull request #766 from Allda/lock_timeout
Fix: lock updater - return correct bool value
2019-04-11 13:44:10 -04:00
Ales Raszka
4e49aaf346 Fix: lock updater - return correct bool value
The function which extend lock duration in DB returns incorrect bool
value (return default false value). This cause that context is canceled
when extending lock duration and whole update process fails.

This commit fixes the bug and return correct bool value.
2019-04-09 14:41:40 +02:00
Jimmy Zelinskie
3316e7e1ef
Merge pull request #742 from bluelabsio/path-templating
set / as default path but allow for individual configuration in values.yml
2019-03-26 14:28:44 -04:00
Jimmy Zelinskie
e8bd0c4f78
Merge pull request #739 from joelee2012/master
Add claircli tool to interact with clair
2019-03-26 14:25:19 -04:00
Jimmy Zelinskie
4af5afe305
Merge pull request #749 from cnorthwood/tarutil-glob
tarutil: allow file names to be specified by regexp
2019-03-22 13:15:57 -04:00
Chris Northwood
a3a37072b5 tarutil: convert all filename specs to regexps
This removes the previous behaviour from tarutil to do simple prefix matching.
All places where the previous prefix-based matches were specified have been
updated to use a regexp instead, maintaining previous behaviour.
2019-03-22 11:02:21 +00:00
Chris Northwood
afd7fe2554 tarutil: allow file names to be specified by regexp
Some features do not exist in set locations, but can be anywhere in the layer.
This allows those featurefmt to specify the filenames to be scanned by
regexp, as opposed to purely by path prefix.
If any current users of this express paths which use regexp special characters
this could be a breaking change for them (with the exception of . which will
continue to work as it matches against the literal character .), however
none of the code in this repo does that.

fixes #456
2019-03-21 17:24:34 +00:00
Sida Chen
1234a8d2f0
Merge pull request #741 from KeyboardNerd/parallel_download
v3: Analyze layer content in parallel
2019-03-20 12:50:15 -04:00
Sida Chen
098cb2ef2c
Merge pull request #738 from Allda/potentialNamespaceAncestry
Use PotentialNamespace in ancestry
2019-03-20 12:47:34 -04:00
Kate Hill
710c65530f helm: allow for ingress path configuration in values.yml 2019-03-20 12:42:17 -04:00
Sida Chen
88f506918b v3: Analyze layer content in parallel 2019-03-20 12:04:14 -04:00
Ales Raszka
f2ce8325b9 Convert: return nil when detector is empty
When PotentialNamespace is used detector is empty and
DetectorFromDatabaseModel() should return nil instead of empty object.
2019-03-20 16:00:46 +01:00
Li Joe
3f13184ad6 Add claircli tool to interact with clair 2019-03-20 03:19:23 +00:00
Ales Raszka
f326b6f664 Use PotentialNamespace in ancestry
If PotentialNamespace is available for given feature it is used instead
of detector namespace. Detector is empty in such a case.
2019-03-14 17:29:41 +01:00
Sida Chen
2c7838eac7
Merge pull request #721 from KeyboardNerd/cache
Restructure database folder
2019-03-13 16:56:28 -04:00
Sida Chen
2d1ac2c4d5 update 2019-03-12 22:23:30 -04:00
Sida Chen
0731df972c pgsql: Remove unused test code
- Tests in complex_test.go are now in corresponding test files.
- Pgsql_test is partially moved to testutil/testdb.go
2019-03-12 22:23:30 -04:00
Sida Chen
dfa07f6d86 pgsql: Move notification to its module 2019-03-12 22:23:30 -04:00
Sida Chen
921acb26fe pgsql: Split vulnerability.go to files in vulnerability module 2019-03-12 22:23:30 -04:00
Sida Chen
7cc83ccbc5 pgsql: Split ancestry.go to files in ancestry module 2019-03-12 22:23:30 -04:00
Sida Chen
497b79a293 pgsql: Add test for migrations 2019-03-12 22:23:30 -04:00
Sida Chen
ea418cffd4 pgsql: Split layer.go to files in layer module 2019-03-12 22:23:30 -04:00
Sida Chen
176c69e59d pgsql: Move namespace to its module 2019-03-12 22:23:30 -04:00
Sida Chen
98e81ff5f1 pgsql: Move keyvalue to keyvalue module 2019-03-12 22:23:30 -04:00
Sida Chen
ba50d7c626 pgsql: Move lock to lock module 2019-03-12 22:23:30 -04:00
Sida Chen
0b32b36cf7 pgsql: Move detector to pgsql/detector module 2019-03-12 22:23:30 -04:00
Sida Chen
c50a2339b7 pgsql: Split feature.go to table based files in feature module 2019-03-12 22:23:30 -04:00
Sida Chen
43f3ea87d8 pgsql: Move batch queries to corresponding modules 2019-03-12 22:23:30 -04:00
Sida Chen
a33050637b pgsql: Move extra logic in pgsql.go to util folder
- pgsql/util/error.go contains error handling logic
- pgsql/page/page.go contains the page struct
- pgsql/monitoring contains the prometheus logic
- pgsql/pgsession contains the pgsession struct
2019-03-12 22:23:30 -04:00
Sida Chen
8bebea3643 pgsql: Split testutil.go into multiple files
- assertion.go assertions used in pgsql tests
- data.go contains go representation of data.sql
- testdb.go contains test db/tx creation logic
- testutil.go contains misc other things
2019-03-12 22:23:30 -04:00
Sida Chen
3fafb73c4f database: Split models.go into different files each contains one model 2019-03-12 21:55:26 -04:00
Jimmy Zelinskie
a2d6508730
Merge pull request #735 from jzelinskie/fix-sweet32
pkg/grpcutil: use cockroachdb cipher suite
2019-03-08 14:49:56 -05:00
Jimmy Zelinskie
c4a32543e8 pkg/grpcutil: use cockroachdb cipher suite 2019-03-08 14:37:43 -05:00
Sida Chen
a689f1f1dc
Merge pull request #722 from Allda/feature_ns
featuturefmt: Extract PotentialNamespace
2019-03-08 13:10:00 -05:00
Ales Raszka
d77dc0f0ae Use struct as a map key instead of string
String was used when Feature contains PotentialNamespace. Since it was
moved to LayerFeature we can use struct as map key instead of string.
2019-03-08 09:51:40 +01:00
Ales Raszka
a8a91379d9 Add test for potential namespace
Test verifies that potential namespace is stored in database and it can
be loaded back to structure.

The commit also fixes few typos and bugs.
2019-03-08 09:51:19 +01:00
Ales Raszka
60b0bd27fa Add namespace_id as constraints to layer_feature
If layer contains more than one potential namespace, features will be
created for each namespace. Layer_feature table now has to contains one
more constrains (namespace_id).
2019-03-07 11:22:54 +01:00
Ales Raszka
60ef726677 Move PotentialNamespace to LayerFeature
PotentialNamespace should be in LayerFeature instead of Feature struct.
Feature extractors were updated to return LayerFeature instead of
Feature.
2019-03-07 11:22:54 +01:00
Ales Raszka
44c4a6f3ce Store PotentialNamespace in database
PotentialNamespace is part of layer_feature table and it is also stored
in namespace table.
2019-03-07 11:22:32 +01:00
Ales Raszka
34c2d96b36 featurefmt: Extract PotentialNamespace
PotentialNamespace is feature namespace extracted while detecting
features in layer. It will server for special feature detector. The
current detectors return empty namespace.
2019-03-07 11:22:32 +01:00
Sida Chen
b3fe95e152
Merge pull request #724 from KeyboardNerd/ref
database: move db logic to dbutil
2019-03-06 15:25:04 -05:00