141fbe21ca
Solves #160 * Implements check on whether index.txt/changes.csv and directory listings exist. Also fixes minor grammatical mistakes * Adds missing else to prevent defaulting to missing-error handling even if another error was found * Removes comment * test whether changes.csv or index.txt is empty * Fixed type mismatching, undeclared variable * Fixes typo in variable * Fixes another typo in variable * Fixes formatting error * Removed reminder comments * Fixes formatting errors * Added check for missing directories * Moved empty dirlistcheck to the right position * fixes typo * fixes typo * Add info if files are found * Cleans up code * simplified check for empty changes.csv and index.txt Co-authored-by: Jan Höfelmeyer <Jan Höfelmeyer jhoefelmeyer@intevation.de> Co-authored-by: Sascha L. Teichmann <sascha.teichmann@intevation.de> |
||
|---|---|---|
| .github/workflows | ||
| cmd | ||
| csaf | ||
| docs | ||
| LICENSES | ||
| util | ||
| 3rdpartylicenses.md | ||
| go.mod | ||
| go.sum | ||
| Makefile | ||
| README.md | ||
csaf_distribution
An implementation of a CSAF 2.0 trusted provider, checker, aggregator and downloader. Includes an uploader command line tool for the trusted provider.
Status: Beta (ready for more testing, but known shortcomings see issues)
csaf_provider
is an implementation of the role CSAF Trusted Provider, also offering a simple HTTPS based management service.
csaf_uploader
is a command line tool that uploads CSAF documents to the csaf_provider.
csaf_aggregator
is an implementation of the role CSAF Aggregator.
csaf_checker
is a tool for testing a CSAF Trusted Provider according to Section 7 of the CSAF standard. Does check requirements without considering the indicated role yet.
csaf_downloader
is a tool for downloading advisories from a provider.
Setup
Note that binaries for the server side are only available and tested for GNU/Linux-Systems, e.g. Ubuntu LTS. They are likely to run on similar systems when build from sources.
The windows binary package only includes
csaf_downloader, csaf_checker and csaf_uploader.
Prebuild binaries
Download the binaries from the most recent release assets on Github.
Build from sources
-
A recent version of Go (1.17+) should be installed. Go installation
-
Clone the repository
git clone https://github.com/csaf-poc/csaf_distribution.git -
Build Go components Makefile supplies the following targets:
- Build For GNU/Linux System:
make build_linux - Build For Windows System (cross build):
make build_win - Build For both linux and windows:
make build - Build from a specific github tag by passing the intended tag to the
BUILDTAGvariable. E.g.make BUILDTAG=v1.0.0 buildormake BUILDTAG=1 build_linux. The special value1means checking out the highest github tag for the build. - Remove the generated binaries und their directories:
make mostlyclean
- Build For GNU/Linux System:
Binaries will be placed in directories named like bin-linux-amd64/ and bin-windows-amd64/.
Setup (Trusted Provider)
- Install nginx
- To install a TLS server certificate on nginx see docs/install-server-certificate.md
- To configure nginx see docs/provider-setup.md
- To configure nginx for client certificate authentication see docs/client-certificate-setup.md
License
-
csaf_distribution is licensed as Free Software under MIT License.
-
See the specific source files for details, the license itself can be found in the directory
LICENSES/. -
Contains third party Free Software components under licenses that to our best knowledge are compatible at time of adding the dependency, 3rdpartylicenses.md has the details.
-
Check the source file of each schema under
/csaf/schema/to see the source and license of each one.