github-personal/sysadm
1
0
Fork 0
mirror of https://github.com/outbackdingo/sysadm.git synced 2026-01-27 10:20:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add a new API call: sysadm/pkg, "action" = "pkg_audit".

Browse Source 
This will perform an audit of all installed packages and report any vulnerable packages and which other packages these impact. NOTE: The actual information will be returned as a Dispatcher event - this API call just queues up the pkg operation (limitation of pkg - only one process call at a time)

REST Request:
-------------------------------
PUT /sysadm/pkg
{
   "action" : "pkg_audit"
}

WebSocket Request:
-------------------------------
{
   "args" : {
      "action" : "pkg_audit"
   },
   "name" : "pkg",
   "id" : "fooid",
   "namespace" : "sysadm"
}

Response:
-------------------------------
{
  "args": {
    "pkg_audit": {
      "proc_cmd": "pkg audit -qr",
      "proc_id": "sysadm_pkg_audit-{257cc46b-9178-4990-810a-12416ddfad79}",
      "status": "pending"
    }
  },
  "id": "fooid",
  "name": "response",
  "namespace": "sysadm"
}
This commit is contained in:
Ken Moore
2016-03-28 10:37:05 -04:00
parent a5a34512c9
commit 203c18752f
2 changed files with 32 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
src/server/DispatcherParsing.cpp
View File

@@ -50,13 +50,28 @@ QJsonObject Dispatcher::CreateDispatcherEventNotification(QString ID, QJsonObjec
namesp = "sysadm"; name="pkg";
//most pkg commands have no special parsing the pkg output should be available as-is
args.insert("pkg_log",cLog);
args.insert("action", ID.section("-",0,0).section("_pkg_",-1) ); //so the client/user can tell which type of pkg action this is for
args.insert("action", ID.section("-",0,0).section("_",1,-1) ); //so the client/user can tell which type of pkg action this is for
if(ID.section("-",0,0)=="sysadm_pkg_check_upgrade"){
if(isFinished){
bool hasupdates = !cLog.section("\n",-1,QString::SectionSkipEmpty).contains("packages are up to date");
args.insert("updates_available", hasupdates ? "true" : "false");
}
}else if(ID.section("-",0,0)=="sysadm_pkg_audit" && isFinished){
QStringList info = cLog.split("\n");
QStringList vuln, effects;
for(int i=0; i<info.length(); i++){
if(info[i].startsWith("Packages that depend on ")){
vuln << info[i].section(":",0,0).section(" on ",1,1);
effects << info[i].section(": ",1,-1).split(", ");
}
}
vuln.removeDuplicates(); vuln.removeAll("");
effects.removeDuplicates(); effects.removeAll("");
args.insert("vulnerable_pkgs",QJsonArray::fromStringList(vuln));
args.insert("impacts_pkgs",QJsonArray::fromStringList(effects));
}
}
//Now assemble the output as needed

16
src/server/WebBackend.cpp
View File

@@ -743,6 +743,22 @@ RestOutputStruct::ExitCode WebSocket::EvaluateSysadmPkgRequest(const QJsonValue
if(!repos.isEmpty()){ out->insert("list_repos", repos); }
else{ return RestOutputStruct::NOCONTENT; }
}else if(act=="pkg_install"){
}else if(act=="pkg_remove"){
}else if(act=="pkg_lock"){
}else if(act=="pkg_unlock"){
}else if(act=="pkg_update"){
}else if(act=="pkg_check_upgrade"){
}else if(act=="pkg_upgrade"){
}else if(act=="pkg_audit"){
out->insert("pkg_audit", sysadm::PKG::pkg_audit());
}else{
//unknown action
return RestOutputStruct::BADREQUEST;