Problem
The current claircore support for disconnected environments is evolved and has a few downsides:
- Far-side metadata (which updater, the configuration of the updaters, the resulting fingerprint) is not preserved.
- The claircore API needs explicit surface to feed this data in.
- Indexer support files are not considered at all.
Solution
Ultimately, the updater process needs to move out of the shadow of the matcher process.
To that end, there's a prototype in the updater and updater/driver directories.
This includes a new offline import+export that addresses the first two problem points.
There is design work to be done around the last point (indexer support).
There's implementation work to be done to implement the new database interface(s) (see updater/interfaces.go).
- is related to
-
CLAIRDEV-99 Indexer Additional Data API
-
- Refinement
-
- relates to
-
OCPSTRAT-1407 Simplified disconnected experience for Clair-based products
-
- New
-
-
-
- Refinement
-
