Vuls2Conf instead of Vuls2DictConf

Author: shino

config/config.go

@@ -47,7 +47,7 @@ type Config struct {
 	Metasploit MetasploitConf `json:"metasploit,omitempty"`
 	KEVuln     KEVulnConf     `json:"kevuln,omitempty"`
 	Cti        CtiConf        `json:"cti,omitempty"`
-	Vuls2      Vuls2DictConf  `json:"vuls2Dict,omitempty"`
+	Vuls2      Vuls2Conf      `json:"vuls2,omitempty"`
 
 	Slack      SlackConf      `json:"-"`
 	EMail      SMTPConf       `json:"-"`

config/vulnDictConf.go

@@ -329,7 +329,7 @@ func (cnf *CtiConf) Init() {
 	cnf.DebugSQL = Conf.DebugSQL
 }
 
-type Vuls2DictConf struct {
+type Vuls2Conf struct {
 	Repository string
 	Path       string
 	SkipUpdate bool

detector/detector.go

@@ -318,7 +318,7 @@ func Detect(rs []models.ScanResult, dir string) ([]models.ScanResult, error) {
 
 // DetectPkgCves detects OS pkg cves
 // pass 2 configs
-func DetectPkgCves(r *models.ScanResult, ovalCnf config.GovalDictConf, gostCnf config.GostConf, vuls2Cnf config.Vuls2DictConf, logOpts logging.LogOpts, noProgress bool) error {
+func DetectPkgCves(r *models.ScanResult, ovalCnf config.GovalDictConf, gostCnf config.GostConf, vuls2Conf config.Vuls2Conf, logOpts logging.LogOpts, noProgress bool) error {
 	// Pkg Scan
 	if isPkgCvesDetactable(r) {
 		// OVAL, gost(Debian Security Tracker) does not support Package for Raspbian, so skip it.
@@ -327,7 +327,7 @@ func DetectPkgCves(r *models.ScanResult, ovalCnf config.GovalDictConf, gostCnf c
 		}
 
 		// Vuls2
-		if err := vuls2.Detect(r, vuls2Cnf, noProgress); err != nil {
+		if err := vuls2.Detect(r, vuls2Conf, noProgress); err != nil {
 			return xerrors.Errorf("Failed to detect CVE with Vuls2: %w", err)
 		}
 

detector/vuls2/db.go

@@ -26,22 +26,22 @@ var (
 	}()
 )
 
-func newDBConnection(vuls2Cnf config.Vuls2DictConf, noProgress bool) (db.DB, error) {
-	willDownload, err := shouldDownload(vuls2Cnf, time.Now())
+func newDBConnection(vuls2Conf config.Vuls2Conf, noProgress bool) (db.DB, error) {
+	willDownload, err := shouldDownload(vuls2Conf, time.Now())
 	if err != nil {
 		return nil, xerrors.Errorf("Failed to check whether to download vuls2 db. err: %w", err)
 	}
 
 	if willDownload {
-		logging.Log.Infof("Downloading vuls2 db. repository: %s", vuls2Cnf.Repository)
-		if err := fetch.Fetch(fetch.WithRepository(vuls2Cnf.Repository), fetch.WithDBPath(vuls2Cnf.Path), fetch.WithNoProgress(noProgress)); err != nil {
+		logging.Log.Infof("Downloading vuls2 db. repository: %s", vuls2Conf.Repository)
+		if err := fetch.Fetch(fetch.WithRepository(vuls2Conf.Repository), fetch.WithDBPath(vuls2Conf.Path), fetch.WithNoProgress(noProgress)); err != nil {
 			return nil, xerrors.Errorf("Failed to fetch vuls2 db. err: %w", err)
 		}
 	}
 
 	dbc, err := (&db.Config{
 		Type: "boltdb",
-		Path: vuls2Cnf.Path,
+		Path: vuls2Conf.Path,
 	}).New()
 	if err != nil {
 		return nil, xerrors.Errorf("Failed to new vuls2 db connection. err: %w", err)
@@ -50,40 +50,40 @@ func newDBConnection(vuls2Cnf config.Vuls2DictConf, noProgress bool) (db.DB, err
 	return dbc, nil
 }
 
-func shouldDownload(vuls2Cnf config.Vuls2DictConf, now time.Time) (bool, error) {
-	if _, err := os.Stat(vuls2Cnf.Path); err != nil {
+func shouldDownload(vuls2Conf config.Vuls2Conf, now time.Time) (bool, error) {
+	if _, err := os.Stat(vuls2Conf.Path); err != nil {
 		if errors.Is(err, os.ErrNotExist) {
-			if vuls2Cnf.SkipUpdate {
-				return false, xerrors.Errorf("%s not found, cannot skip update", vuls2Cnf.Path)
+			if vuls2Conf.SkipUpdate {
+				return false, xerrors.Errorf("%s not found, cannot skip update", vuls2Conf.Path)
 			}
 			return true, nil
 		}
 		return false, xerrors.Errorf("Failed to stat vuls2 db file. err: %w", err)
 	}
 
-	if vuls2Cnf.SkipUpdate {
+	if vuls2Conf.SkipUpdate {
 		return false, nil
 	}
 
 	dbc, err := (&db.Config{
 		Type: "boltdb",
-		Path: vuls2Cnf.Path,
+		Path: vuls2Conf.Path,
 	}).New()
 	if err != nil {
-		return false, xerrors.Errorf("Failed to new vuls2 db connection. path: %s, err: %w", vuls2Cnf.Path, err)
+		return false, xerrors.Errorf("Failed to new vuls2 db connection. path: %s, err: %w", vuls2Conf.Path, err)
 	}
 
 	if err := dbc.Open(); err != nil {
-		return false, xerrors.Errorf("Failed to open vuls2 db. path: %s, err: %w", vuls2Cnf.Path, err)
+		return false, xerrors.Errorf("Failed to open vuls2 db. path: %s, err: %w", vuls2Conf.Path, err)
 	}
 	defer dbc.Close()
 
 	metadata, err := dbc.GetMetadata()
 	if err != nil {
-		return false, xerrors.Errorf("Failed to get vuls2 db metadata. path: %s, err: %w", vuls2Cnf.Path, err)
+		return false, xerrors.Errorf("Failed to get vuls2 db metadata. path: %s, err: %w", vuls2Conf.Path, err)
 	}
 	if metadata == nil {
-		return false, xerrors.Errorf("Unexpected Vuls2 db metadata. metadata: nil,. path: %s", vuls2Cnf.Path)
+		return false, xerrors.Errorf("Unexpected Vuls2 db metadata. metadata: nil,. path: %s", vuls2Conf.Path)
 	}
 
 	if metadata.Downloaded != nil && now.Before((*metadata.Downloaded).Add(1*time.Hour)) {

detector/vuls2/db_test.go

@@ -15,8 +15,8 @@ import (
 
 func Test_shouldDownload(t *testing.T) {
 	type args struct {
-		vuls2Cnf config.Vuls2DictConf
-		now      time.Time
+		vuls2Conf config.Vuls2Conf
+		now       time.Time
 	}
 	tests := []struct {
 		name     string
@@ -28,15 +28,15 @@ func Test_shouldDownload(t *testing.T) {
 		{
 			name: "no db file",
 			args: args{
-				vuls2Cnf: config.Vuls2DictConf{},
-				now:      *parse("2024-01-02T00:00:00Z"),
+				vuls2Conf: config.Vuls2Conf{},
+				now:       *parse("2024-01-02T00:00:00Z"),
 			},
 			want: true,
 		},
 		{
 			name: "no db file, but skip update",
 			args: args{
-				vuls2Cnf: config.Vuls2DictConf{
+				vuls2Conf: config.Vuls2Conf{
 					SkipUpdate: true,
 				},
 				now: *parse("2024-01-02T00:00:00Z"),
@@ -46,8 +46,8 @@ func Test_shouldDownload(t *testing.T) {
 		{
 			name: "just created",
 			args: args{
-				vuls2Cnf: config.Vuls2DictConf{},
-				now:      *parse("2024-01-02T00:00:00Z"),
+				vuls2Conf: config.Vuls2Conf{},
+				now:       *parse("2024-01-02T00:00:00Z"),
 			},
 			metadata: &types.Metadata{
 				LastModified:  *parse("2024-01-02T00:00:00Z"),
@@ -59,8 +59,8 @@ func Test_shouldDownload(t *testing.T) {
 		{
 			name: "8 hours old",
 			args: args{
-				vuls2Cnf: config.Vuls2DictConf{},
-				now:      *parse("2024-01-02T08:00:00Z"),
+				vuls2Conf: config.Vuls2Conf{},
+				now:       *parse("2024-01-02T08:00:00Z"),
 			},
 			metadata: &types.Metadata{
 				LastModified:  *parse("2024-01-02T00:00:00Z"),
@@ -72,7 +72,7 @@ func Test_shouldDownload(t *testing.T) {
 		{
 			name: "8 hours old, but skip update",
 			args: args{
-				vuls2Cnf: config.Vuls2DictConf{
+				vuls2Conf: config.Vuls2Conf{
 					SkipUpdate: true,
 				},
 				now: *parse("2024-01-02T08:00:00Z"),
@@ -87,8 +87,8 @@ func Test_shouldDownload(t *testing.T) {
 		{
 			name: "8 hours old, but download recently",
 			args: args{
-				vuls2Cnf: config.Vuls2DictConf{},
-				now:      *parse("2024-01-02T08:00:00Z"),
+				vuls2Conf: config.Vuls2Conf{},
+				now:       *parse("2024-01-02T08:00:00Z"),
 			},
 			metadata: &types.Metadata{
 				LastModified:  *parse("2024-01-02T00:00:00Z"),
@@ -101,14 +101,14 @@ func Test_shouldDownload(t *testing.T) {
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
 			d := t.TempDir()
-			tt.args.vuls2Cnf.Path = filepath.Join(d, "vuls.db")
+			tt.args.vuls2Conf.Path = filepath.Join(d, "vuls.db")
 			if tt.metadata != nil {
-				if err := putMetadata(*tt.metadata, tt.args.vuls2Cnf.Path); err != nil {
+				if err := putMetadata(*tt.metadata, tt.args.vuls2Conf.Path); err != nil {
 					t.Errorf("putMetadata err = %v", err)
 					return
 				}
 			}
-			got, err := shouldDownload(tt.args.vuls2Cnf, tt.args.now)
+			got, err := shouldDownload(tt.args.vuls2Conf, tt.args.now)
 			if (err != nil) != tt.wantErr {
 				t.Errorf("shouldDownload() error = %v, wantErr %v", err, tt.wantErr)
 				return

detector/vuls2/vendor.go

@@ -226,6 +226,7 @@ func affectedPackageName(family string, pkg scanTypes.OSPackage) string {
 		return pkg.SrcName
 	}
 }
+
 func cveContentOptional(family string, rootID dataTypes.RootID, sourceID sourceTypes.SourceID) map[string]string {
 	switch family {
 	case constant.RedHat, constant.CentOS:

detector/vuls2/vuls2.go

@@ -37,21 +37,22 @@ import (
 
 var cveRe = regexp.MustCompile("CVE-[0-9]{4}-[0-9]+")
 
-func Detect(r *models.ScanResult, vuls2Cnf config.Vuls2DictConf, noProgress bool) error {
+// Detect detects vulnerabilities and fills ScanResult
+func Detect(r *models.ScanResult, vuls2Conf config.Vuls2Conf, noProgress bool) error {
 	switch r.Family {
 	case constant.RedHat, constant.CentOS, constant.Alma, constant.Rocky:
 	default:
 		return nil
 	}
 
-	if vuls2Cnf.Repository == "" {
-		vuls2Cnf.Repository = DefaultGHCRRepository
+	if vuls2Conf.Repository == "" {
+		vuls2Conf.Repository = DefaultGHCRRepository
 	}
-	if vuls2Cnf.Path == "" {
-		vuls2Cnf.Path = DefaultPath
+	if vuls2Conf.Path == "" {
+		vuls2Conf.Path = DefaultPath
 	}
 
-	dbc, err := newDBConnection(vuls2Cnf, noProgress)
+	dbc, err := newDBConnection(vuls2Conf, noProgress)
 	if err != nil {
 		return xerrors.Errorf("Failed to get new db connection. err: %w", err)
 	}