Clair 4.2.0 not scanning RHEL RPMs

Question

Clair 4.2.0 not scanning RHEL RPMs

jasonbrianhall opened this issue 3 years ago · comments

It doesn't seem like Clair 4.2.0 is scanning RPMs . I scanned some of my images that were several months old and richxsl/rhel7 from docker.io and only received some pypi results and maven findings. I can see that the the database has RHEL based vulnerabilities when I query the "vuln" table but they aren't showing up when I query http://matcher:port/matcher/api/v1/vulnerability_report/imageDigest
richxsl_rhel7.json.gz

Hank Donnay · Answer 1 · Tue Sep 14 2021 02:57:09 GMT+0800 (China Standard Time)

Do you have logs from the server for a run?

jasonbrianhall · Answer 2 · Tue Sep 14 2021 05:07:38 GMT+0800 (China Standard Time)

See attached log.

…

On 9/13/21, Hank Donnay ***@***.***> wrote: Do you have logs from the server for a run? -- You are receiving this because you authored the thread. Reply to this email directly or view it on GitHub: #1361 (comment)

Hank Donnay · Answer 3 · Tue Sep 14 2021 05:40:11 GMT+0800 (China Standard Time)

If you attached something to the email, it didn't make it to the github issue.
If you're referencing the upload on the initial post, that's not a log; it looks like the response to an API call.

jasonbrianhall · Answer 4 · Tue Sep 14 2021 08:10:47 GMT+0800 (China Standard Time)

clair.tar.gz

Attached the logs (HTML and ANSI)

Hank Donnay · Answer 5 · Wed Sep 15 2021 04:17:23 GMT+0800 (China Standard Time)

From the logs and server response, it looks like the image was indexed successfully.

From the server logs, it looks like the server was stopped in the middle of fetching vulnerabilities. Please try using the latest version and letting the server finish fetching vulnerabilities.

jasonbrianhall · Answer 6 · Wed Sep 15 2021 06:12:42 GMT+0800 (China Standard Time)

Ran 4.2.2 all day and it is still doing the same thing.

…

On Tue, Sep 14, 2021, 4:17 PM Hank Donnay ***@***.***> wrote: From the logs and server response, it looks like the image was indexed successfully. From the server logs, it looks like the server was stopped in the middle of fetching vulnerabilities. Please try using the latest version and letting the server finish fetching vulnerabilities. — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub <#1361 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ADEH2T2NSQM6D6WFW2O5HO3UB6UV3ANCNFSM5D2DKEEA> . Triage notifications on the go with GitHub Mobile for iOS <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.

Hank Donnay · Answer 7 · Fri Jun 17 2022 04:48:06 GMT+0800 (China Standard Time)

Is this still happening on the latest release?

Hank Donnay · Answer 8 · Wed Dec 07 2022 04:18:22 GMT+0800 (China Standard Time)

Closing due to age.