3f2ac45d71
* refactor: logger * refactor: logging * refactor: rename func * refactor: logging * refactor: logging format
108 lines
2.9 KiB
Go
108 lines
2.9 KiB
Go
// +build !scanner
|
|
|
|
package oval
|
|
|
|
import (
|
|
"github.com/future-architect/vuls/config"
|
|
"github.com/future-architect/vuls/constant"
|
|
"github.com/future-architect/vuls/logging"
|
|
"github.com/future-architect/vuls/models"
|
|
"github.com/kotakanbe/goval-dictionary/db"
|
|
ovalmodels "github.com/kotakanbe/goval-dictionary/models"
|
|
)
|
|
|
|
// SUSE is the struct of SUSE Linux
|
|
type SUSE struct {
|
|
Base
|
|
}
|
|
|
|
// NewSUSE creates OVAL client for SUSE
|
|
func NewSUSE() SUSE {
|
|
// TODO implement other family
|
|
return SUSE{
|
|
Base{
|
|
family: constant.SUSEEnterpriseServer,
|
|
},
|
|
}
|
|
}
|
|
|
|
// FillWithOval returns scan result after updating CVE info by OVAL
|
|
func (o SUSE) FillWithOval(driver db.DB, r *models.ScanResult) (nCVEs int, err error) {
|
|
var relatedDefs ovalResult
|
|
if config.Conf.OvalDict.IsFetchViaHTTP() {
|
|
if relatedDefs, err = getDefsByPackNameViaHTTP(r); err != nil {
|
|
return 0, err
|
|
}
|
|
} else {
|
|
if relatedDefs, err = getDefsByPackNameFromOvalDB(driver, r); err != nil {
|
|
return 0, err
|
|
}
|
|
}
|
|
for _, defPacks := range relatedDefs.entries {
|
|
o.update(r, defPacks)
|
|
}
|
|
|
|
for _, vuln := range r.ScannedCves {
|
|
if cont, ok := vuln.CveContents[models.SUSE]; ok {
|
|
cont.SourceLink = "https://security-tracker.debian.org/tracker/" + cont.CveID
|
|
vuln.CveContents[models.SUSE] = cont
|
|
}
|
|
}
|
|
return len(relatedDefs.entries), nil
|
|
}
|
|
|
|
func (o SUSE) update(r *models.ScanResult, defPacks defPacks) {
|
|
ovalContent := *o.convertToModel(&defPacks.def)
|
|
ovalContent.Type = models.NewCveContentType(o.family)
|
|
vinfo, ok := r.ScannedCves[defPacks.def.Title]
|
|
if !ok {
|
|
logging.Log.Debugf("%s is newly detected by OVAL", defPacks.def.Title)
|
|
vinfo = models.VulnInfo{
|
|
CveID: defPacks.def.Title,
|
|
Confidences: models.Confidences{models.OvalMatch},
|
|
CveContents: models.NewCveContents(ovalContent),
|
|
}
|
|
} else {
|
|
cveContents := vinfo.CveContents
|
|
ctype := models.NewCveContentType(o.family)
|
|
if _, ok := vinfo.CveContents[ctype]; ok {
|
|
logging.Log.Debugf("%s OVAL will be overwritten", defPacks.def.Title)
|
|
} else {
|
|
logging.Log.Debugf("%s is also detected by OVAL", defPacks.def.Title)
|
|
cveContents = models.CveContents{}
|
|
}
|
|
vinfo.Confidences.AppendIfMissing(models.OvalMatch)
|
|
cveContents[ctype] = ovalContent
|
|
vinfo.CveContents = cveContents
|
|
}
|
|
|
|
// uniq(vinfo.PackNames + defPacks.actuallyAffectedPackNames)
|
|
for _, pack := range vinfo.AffectedPackages {
|
|
defPacks.binpkgFixstat[pack.Name] = fixStat{
|
|
notFixedYet: pack.NotFixedYet,
|
|
fixedIn: pack.FixedIn,
|
|
}
|
|
}
|
|
vinfo.AffectedPackages = defPacks.toPackStatuses()
|
|
vinfo.AffectedPackages.Sort()
|
|
r.ScannedCves[defPacks.def.Title] = vinfo
|
|
}
|
|
|
|
func (o SUSE) convertToModel(def *ovalmodels.Definition) *models.CveContent {
|
|
refs := []models.Reference{}
|
|
for _, r := range def.References {
|
|
refs = append(refs, models.Reference{
|
|
Link: r.RefURL,
|
|
Source: r.Source,
|
|
RefID: r.RefID,
|
|
})
|
|
}
|
|
|
|
return &models.CveContent{
|
|
CveID: def.Title,
|
|
Title: def.Title,
|
|
Summary: def.Description,
|
|
References: refs,
|
|
}
|
|
}
|