mirror of
https://github.com/anchore/syft.git
synced 2026-04-05 22:30:35 +02:00
5d156b8241
* add location annotations + deb evidence annotations Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * rename LocationData struct and Annotation helper function Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * add failing integration test for evidence coverage Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * add evidence to aplm cataloger locations Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * change location annotation helper to return a location copy Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * add evidence to binary cataloger locations Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * updated remaining catalogers with location annotations Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * fix unit tests Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * fix linting Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * bump json schema Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * partial addressing of review comments Signed-off-by: Alex Goodman <alex.goodman@anchore.com> * rename location.WithAnnotation Signed-off-by: Alex Goodman <alex.goodman@anchore.com> --------- Signed-off-by: Alex Goodman <alex.goodman@anchore.com>
102 lines
2.7 KiB
Go
102 lines
2.7 KiB
Go
package nix
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/bmatcuk/doublestar/v4"
|
|
|
|
"github.com/anchore/syft/internal/log"
|
|
"github.com/anchore/syft/syft/artifact"
|
|
"github.com/anchore/syft/syft/pkg"
|
|
"github.com/anchore/syft/syft/source"
|
|
)
|
|
|
|
const (
|
|
catalogerName = "nix-store-cataloger"
|
|
nixStoreGlob = "**/nix/store/*"
|
|
)
|
|
|
|
// StoreCataloger finds package outputs installed in the Nix store location (/nix/store/*).
|
|
type StoreCataloger struct{}
|
|
|
|
func NewStoreCataloger() *StoreCataloger {
|
|
return &StoreCataloger{}
|
|
}
|
|
|
|
func (c *StoreCataloger) Name() string {
|
|
return catalogerName
|
|
}
|
|
|
|
func (c *StoreCataloger) Catalog(resolver source.FileResolver) ([]pkg.Package, []artifact.Relationship, error) {
|
|
// we want to search for only directories, which isn't possible via the stereoscope API, so we need to apply the glob manually on all returned paths
|
|
var pkgs []pkg.Package
|
|
var filesByPath = make(map[string]*source.LocationSet)
|
|
for location := range resolver.AllLocations() {
|
|
matchesStorePath, err := doublestar.Match(nixStoreGlob, location.RealPath)
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("failed to match nix store path: %w", err)
|
|
}
|
|
|
|
parentStorePath := findParentNixStorePath(location.RealPath)
|
|
if parentStorePath != "" {
|
|
if _, ok := filesByPath[parentStorePath]; !ok {
|
|
s := source.NewLocationSet()
|
|
filesByPath[parentStorePath] = &s
|
|
}
|
|
filesByPath[parentStorePath].Add(location)
|
|
}
|
|
|
|
if !matchesStorePath {
|
|
continue
|
|
}
|
|
|
|
storePath := parseNixStorePath(location.RealPath)
|
|
|
|
if storePath == nil || !storePath.isValidPackage() {
|
|
continue
|
|
}
|
|
|
|
p := newNixStorePackage(*storePath, location.WithAnnotation(pkg.EvidenceAnnotationKey, pkg.PrimaryEvidenceAnnotation))
|
|
pkgs = append(pkgs, p)
|
|
}
|
|
|
|
// add file sets to packages
|
|
for i := range pkgs {
|
|
p := &pkgs[i]
|
|
locations := p.Locations.ToSlice()
|
|
if len(locations) == 0 {
|
|
log.WithFields("package", p.Name).Warn("nix package has no evidence locations associated")
|
|
continue
|
|
}
|
|
parentStorePath := locations[0].RealPath
|
|
files, ok := filesByPath[parentStorePath]
|
|
if !ok {
|
|
log.WithFields("path", parentStorePath, "nix-store-path", parentStorePath).Warn("found a nix store file for a non-existent package")
|
|
continue
|
|
}
|
|
appendFiles(p, files.ToSlice()...)
|
|
}
|
|
|
|
return pkgs, nil, nil
|
|
}
|
|
|
|
func appendFiles(p *pkg.Package, location ...source.Location) {
|
|
metadata, ok := p.Metadata.(pkg.NixStoreMetadata)
|
|
if !ok {
|
|
log.WithFields("package", p.Name).Warn("nix package metadata missing")
|
|
return
|
|
}
|
|
|
|
for _, l := range location {
|
|
metadata.Files = append(metadata.Files, l.RealPath)
|
|
}
|
|
|
|
if metadata.Files == nil {
|
|
// note: we always have an allocated collection for output
|
|
metadata.Files = []string{}
|
|
}
|
|
|
|
p.Metadata = metadata
|
|
p.SetID()
|
|
}
|