fix: linter issue

Signed-off-by: pohanhuang <pohan.huang@suse.com>

Author: pohanhuang

common/db.go

@@ -358,10 +358,10 @@ func readAppDbMeta(path string, fullDb map[string]*share.ScanVulnerability, outp
 
 					e.Packages = append(e.Packages, &OutputPackage{Package: v.ModuleName})
 					for _, fv := range v.FixedVer {
-						op := strings.Replace(fv.OpCode, "or", "||", -1)
-						op = strings.Replace(op, "gt", ">", -1)
-						op = strings.Replace(op, "lt", "<", -1)
-						op = strings.Replace(op, "eq", "=", -1)
+						op := strings.ReplaceAll(fv.OpCode, "or", "||")
+						op = strings.ReplaceAll(op, "gt", ">")
+						op = strings.ReplaceAll(op, "lt", "<")
+						op = strings.ReplaceAll(op, "eq", "=")
 						e.Packages[0].FixedVersion = fmt.Sprintf("%s%s;%s", op, fv.Version, e.Packages[0].FixedVersion)
 					}
 					ov.Entries = append(ov.Entries, e)
@@ -575,7 +575,7 @@ func LoadCveDb(path, desPath string, encryptKey []byte) (string, string, error)
 		newVer, update, err = CheckExpandedDb(desPath, true)
 		if err != nil {
 			log.WithFields(log.Fields{"error": err}).Error("CVE database format error")
-			return "", "", errors.New("Invalid database format")
+			return "", "", errors.New("invalid database format")
 		}
 		latestVer = fmt.Sprintf("%.3f", newVer)
 	} else if oldErr == nil && err == nil && newVer > oldVer {
@@ -620,40 +620,40 @@ func LoadCveDb(path, desPath string, encryptKey []byte) (string, string, error)
 func GetDbVersion(path string) (float64, string, error) {
 	f, err := os.Open(path + share.DefaultCVEDBName)
 	if err != nil {
-		return 0, "", fmt.Errorf("Read db file fail: %v", err)
+		return 0, "", fmt.Errorf("read db file fail: %v", err)
 	}
 	defer f.Close()
 
 	bhead := make([]byte, 4)
 	nlen, err := f.Read(bhead)
 	if err != nil || nlen != 4 {
-		return 0, "", fmt.Errorf("Read db file error: %v", err)
+		return 0, "", fmt.Errorf("read db file error: %v", err)
 	}
 	var headLen int32
 	err = binary.Read(bytes.NewReader(bhead), binary.BigEndian, &headLen)
 	if err != nil {
-		return 0, "", fmt.Errorf("Read header len error: %v", err)
+		return 0, "", fmt.Errorf("read header len error: %v", err)
 	}
 
 	if headLen > maxVersionHeader {
-		return 0, "", fmt.Errorf("Version Header too big: %v", headLen)
+		return 0, "", fmt.Errorf("version header too big: %v", headLen)
 	}
 
 	bhead = make([]byte, headLen)
 	nlen, err = f.Read(bhead)
 	if err != nil || nlen != int(headLen) {
-		return 0, "", fmt.Errorf("Read db file version error:%v", err)
+		return 0, "", fmt.Errorf("read db file version error: %v", err)
 	}
 
 	var keyVer KeyVersion
 
 	err = json.Unmarshal(bhead, &keyVer)
 	if err != nil {
-		return 0, "", fmt.Errorf("Unmarshal keys error:%v", err)
+		return 0, "", fmt.Errorf("unmarshal keys error: %v", err)
 	}
 	verFl, err := strconv.ParseFloat(keyVer.Version, 64)
 	if err != nil {
-		return 0, "", fmt.Errorf("Invalid version value:%v", err)
+		return 0, "", fmt.Errorf("invalid version value: %v", err)
 	}
 
 	return verFl, keyVer.UpdateTime, nil

common/db_test.go

@@ -175,7 +175,7 @@ func TestLoadCveDB(t *testing.T) {
 			setupFunc: func(t *testing.T) (string, string) {
 				return "not_exist/", t.TempDir()
 			},
-			expectErr: errors.New("Read db file fail: open not_exist/cvedb: no such file or directory"),
+			expectErr: errors.New("read db file fail: open not_exist/cvedb: no such file or directory"),
 		},
 		{
 			name: "db file exist, expand path not exist (first load)",

cvetools/apps.go

@@ -145,11 +145,11 @@ func appVul2FullVul(app detectors.AppFeatureVersion, mv common.AppModuleVul) vul
 func moduleVer2FixVer(app detectors.AppFeatureVersion, mv common.AppModuleVul) common.FeaFull {
 	ft := common.FeaFull{Name: mv.ModuleName}
 	for i, v := range mv.FixedVer {
-		s := strings.Replace(v.OpCode, "or", "||", -1)
-		s = strings.Replace(s, "andlt", "<", -1)
-		s = strings.Replace(s, "gt", ">", -1)
-		s = strings.Replace(s, "lt", "<", -1)
-		s = strings.Replace(s, "eq", "=", -1)
+		s := strings.ReplaceAll(v.OpCode, "or", "||")
+		s = strings.ReplaceAll(s, "andlt", "<")
+		s = strings.ReplaceAll(s, "gt", ">")
+		s = strings.ReplaceAll(s, "lt", "<")
+		s = strings.ReplaceAll(s, "eq", "=")
 		ft.Version += s + v.Version
 		if i < (len(mv.FixedVer) - 1) {
 			ft.Version += ";"

cvetools/cvesearch.go

@@ -299,8 +299,8 @@ func (cv *ScanTools) ScanImage(ctx context.Context, req *share.ScanImageRequest,
 	}
 
 	var info *scan.ImageInfo
-	var baseLayers utils.Set = utils.NewSet()
-	var secret *share.ScanSecretResult = &share.ScanSecretResult{
+	baseLayers := utils.NewSet()
+	secret := &share.ScanSecretResult{
 		Error: share.ScanErrorCode_ScanErrNone,
 		Logs:  make([]*share.ScanSecretLog, 0),
 	}
@@ -1131,10 +1131,7 @@ func searchAffectedFeature(mv map[string][]common.VulShort, namespace string, ft
 	}
 	featName := fmt.Sprintf("%s:%s", namespace, name)
 	vs := mv[featName]
-	skipEpoch := false
-	if strings.HasPrefix(namespace, "amzn") {
-		skipEpoch = true
-	}
+	skipEpoch := strings.HasPrefix(namespace, "amzn")
 
 	matchMap := make(map[string]share.ScanVulStatus)
 	moduleVuls := make([]detectors.ModuleVul, 0)
@@ -1182,11 +1179,12 @@ func searchAffectedFeature(mv map[string][]common.VulShort, namespace string, ft
 						log.WithFields(log.Fields{"error": err, "version": window.max}).Error()
 						continue
 					}
-					if maxVer == utils.MaxVersion {
+					switch maxVer {
+					case utils.MaxVersion:
 						afStatus = share.ScanVulStatus_Unpatched
-					} else if maxVer == utils.MinVersion {
+					case utils.MinVersion:
 						afStatus = share.ScanVulStatus_Unaffected
-					} else {
+					default:
 						afStatus = share.ScanVulStatus_FixExists
 					}
 					//check if module is within version window.
@@ -1261,11 +1259,12 @@ func searchAffectedFeature(mv map[string][]common.VulShort, namespace string, ft
 				log.WithFields(log.Fields{"error": err, "version": fixVer}).Error()
 				continue
 			}
-			if ver == utils.MaxVersion {
+			switch ver {
+			case utils.MaxVersion:
 				afStatus = share.ScanVulStatus_Unpatched
-			} else if ver == utils.MinVersion {
+			case utils.MinVersion:
 				afStatus = share.ScanVulStatus_Unaffected
-			} else {
+			default:
 				afStatus = share.ScanVulStatus_FixExists
 			}
 			if skipEpoch {
@@ -1492,7 +1491,7 @@ func getVulItemList(vuls []vulFullReport, dbPrefix string) []*share.ScanVulnerab
 			PackageNameDeprecated: featver.Package,
 			PackageName:           featver.Package,
 			PackageVersion:        packVer,
-			FixedVersion:          strings.Replace(fixedInVer, "||", " OR ", -1),
+			FixedVersion:          strings.ReplaceAll(fixedInVer, "||", " OR "),
 			PublishedDate:         fmt.Sprintf("%d", v.IssuedDate.Unix()),
 			LastModifiedDate:      fmt.Sprintf("%d", v.LastModDate.Unix()),
 			CPEs:                  cpes,

cvetools/scan_cache.go

@@ -214,7 +214,7 @@ func (lc *ImageLayerCacher) RecordName(id string, record interface{}) string {
 func (lc *ImageLayerCacher) ReadRecordCache(id string, record interface{}) (string, error) {
 	name := lc.RecordName(id, record)
 	if name == "" {
-		return "", errors.New("Invalid type")
+		return "", errors.New("invalid type")
 	}
 
 	// log.WithFields(log.Fields{"name": name}).Debug()
@@ -253,7 +253,7 @@ func (lc *ImageLayerCacher) ReadRecordCache(id string, record interface{}) (stri
 func (lc *ImageLayerCacher) WriteRecordCache(id string, record interface{}, keeper utils.Set) error {
 	name := lc.RecordName(id, record)
 	if name == "" {
-		return errors.New("Invalid type")
+		return errors.New("invalid type")
 	}
 
 	// log.WithFields(log.Fields{"name": name}).Debug()

cvetools/tools.go

@@ -40,7 +40,7 @@ func collectImageFileMap(rootPath string, fmap map[string]string) (int, []string
 	}
 	//
 	var opqDirs []string
-	var curfmap map[string]string = make(map[string]string)
+	curfmap := make(map[string]string)
 
 	rootLen := len(filepath.Clean(rootPath))
 	errorCnt := 0

detectors/features.go

@@ -378,7 +378,7 @@ func detectRPM(namespace string, files map[string]*FeatureFile, path string) ([]
 			}
 
 			// Parse version
-			version, err := utils.NewVersion(strings.Replace(line[1], "(none):", "", -1))
+			version, err := utils.NewVersion(strings.ReplaceAll(line[1], "(none):", ""))
 			if err != nil {
 				log.Warningf("could not parse package version '%s': %s. skipping", line[1], err.Error())
 				continue

detectors/namespace.go

@@ -49,22 +49,22 @@ func detectOSRelease(data map[string]*FeatureFile) *Namespace {
 
 			r := osReleaseOSRegexp.FindStringSubmatch(line)
 			if len(r) == 2 {
-				OS = strings.Replace(strings.ToLower(r[1]), "\"", "", -1)
+				OS = strings.ReplaceAll(strings.ToLower(r[1]), "\"", "")
 			}
 
 			r = osReleaseVersionRegexp.FindStringSubmatch(line)
 			if len(r) == 2 {
-				version = strings.Replace(strings.ToLower(r[1]), "\"", "", -1)
+				version = strings.ReplaceAll(strings.ToLower(r[1]), "\"", "")
 			}
 
 			r = osReleaseCodenameRegexp.FindStringSubmatch(line)
 			if len(r) == 2 {
-				codename = strings.Replace(strings.ToLower(r[1]), "\"", "", -1)
+				codename = strings.ReplaceAll(strings.ToLower(r[1]), "\"", "")
 			}
 
 			r = osReleaseRHELVersionRegexp.FindStringSubmatch(line)
 			if len(r) == 2 {
-				rhelVer = strings.Replace(strings.ToLower(r[1]), "\"", "", -1)
+				rhelVer = strings.ReplaceAll(strings.ToLower(r[1]), "\"", "")
 			}
 
 			if OS == "rhel" {
@@ -106,12 +106,12 @@ func detectLSBRelease(data map[string]*FeatureFile) *Namespace {
 
 		r := lsbReleaseOSRegexp.FindStringSubmatch(line)
 		if len(r) == 2 {
-			OS = strings.Replace(strings.ToLower(r[1]), "\"", "", -1)
+			OS = strings.ReplaceAll(strings.ToLower(r[1]), "\"", "")
 		}
 
 		r = lsbReleaseVersionRegexp.FindStringSubmatch(line)
 		if len(r) == 2 {
-			version = strings.Replace(strings.ToLower(r[1]), "\"", "", -1)
+			version = strings.ReplaceAll(strings.ToLower(r[1]), "\"", "")
 
 			// We care about the .04 for Ubuntu but not for Debian / CentOS
 			if OS == "centos" || OS == "debian" {

server.go

@@ -282,7 +282,7 @@ func scannerRegisterStream(ctx context.Context, client share.ControllerScanServi
 	stream, err := client.ScannerRegisterStream(ctx)
 	if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to get stream")
-		return errors.New("Failed to  to controller")
+		return errors.New("failed to connect to controller")
 	}
 
 	// send a block without data to test if stream API is supported
@@ -295,7 +295,7 @@ func scannerRegisterStream(ctx context.Context, client share.ControllerScanServi
 	err = stream.Send(data)
 	if err == io.EOF {
 		log.Info("Stream register API is not supported")
-		return errors.New("Stream register API is not supported")
+		return errors.New("stream register API is not supported")
 	} else if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to send")
 		return err
@@ -334,7 +334,7 @@ func scannerRegisterStream(ctx context.Context, client share.ControllerScanServi
 		err = stream.Send(data)
 		if err == io.EOF {
 			log.Info("Stream register API is not supported")
-			return errors.New("Stream register API is not supported")
+			return errors.New("stream register API is not supported")
 		} else if err != nil {
 			log.WithFields(log.Fields{"error": err}).Error("Failed to send")
 			return err
@@ -417,7 +417,7 @@ func scannerRegister(joinIP string, joinPort uint16, data *share.ScannerRegister
 	client, err := getControllerServiceClient(joinIP, joinPort, cb)
 	if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to find ctrl client")
-		return errors.New("Failed to connect to controller")
+		return errors.New("failed to connect to controller")
 	}
 
 	ctx, cancel := context.WithTimeout(context.Background(), time.Second*180)
@@ -475,7 +475,7 @@ func scannerRegister(joinIP string, joinPort uint16, data *share.ScannerRegister
 	_, err = client.ScannerRegister(ctx, data)
 	if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to register")
-		return errors.New("Failed to send register request")
+		return errors.New("failed to send register request")
 	}
 	return nil
 }
@@ -486,7 +486,7 @@ func scannerDeregister(joinIP string, joinPort uint16, id string) error {
 	client, err := getControllerServiceClient(joinIP, joinPort, nil)
 	if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to find ctrl client")
-		return errors.New("Failed to connect to controller")
+		return errors.New("failed to connect to controller")
 	}
 
 	ctx, cancel := context.WithTimeout(context.Background(), time.Second*5)
@@ -495,7 +495,7 @@ func scannerDeregister(joinIP string, joinPort uint16, id string) error {
 	_, err = client.ScannerDeregister(ctx, &share.ScannerDeregisterData{ID: id})
 	if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to deregister")
-		return errors.New("Failed to send deregister request")
+		return errors.New("failed to send deregister request")
 	}
 	return nil
 }
@@ -504,7 +504,7 @@ func getScannerAvailable(joinIP string, joinPort uint16, data *share.ScannerRegi
 	client, err := getControllerServiceClient(joinIP, joinPort, cb)
 	if err != nil {
 		log.WithFields(log.Fields{"error": err}).Error("Failed to find ctrl client")
-		return &share.ScannerAvailable{Visible: false}, errors.New("Failed to connect to controller")
+		return &share.ScannerAvailable{Visible: false}, errors.New("failed to connect to controller")
 	}
 
 	ctx, cancel := context.WithTimeout(context.Background(), time.Second*60)

standalone.go

@@ -19,7 +19,6 @@ import (
 
 	"github.com/neuvector/neuvector/controller/api"
 	"github.com/neuvector/neuvector/share"
-	"github.com/neuvector/neuvector/share/scan"
 	scanUtils "github.com/neuvector/neuvector/share/scan"
 	"github.com/neuvector/neuvector/share/system"
 	"github.com/neuvector/neuvector/share/utils"
@@ -269,7 +268,7 @@ func scanRunning(pid int, cvedb map[string]*share.ScanVulnerability, showOptions
 
 	sys := system.NewSystemTools()
 	sysInfo := sys.GetSystemInfo()
-	scanUtil := scan.NewScanUtil(sys)
+	scanUtil := scanUtils.NewScanUtil(sys)
 	cveTools := cvetools.NewScanTools("", sys, nil, "")
 
 	var data share.ScanData
@@ -465,7 +464,7 @@ func apiLogin(c *apiClient, myIP string, user, pass string) error {
 	defer resp.Body.Close()
 
 	if resp.StatusCode/100 != 2 {
-		return fmt.Errorf("Login failed with status code %d", resp.StatusCode)
+		return fmt.Errorf("login failed with status code %d", resp.StatusCode)
 	}
 
 	body, err = io.ReadAll(resp.Body)
@@ -499,7 +498,7 @@ func apiLogout(c *apiClient) error {
 	defer resp.Body.Close()
 
 	if resp.StatusCode/100 != 2 {
-		return fmt.Errorf("Logout failed with status code %d", resp.StatusCode)
+		return fmt.Errorf("logout failed with status code %d", resp.StatusCode)
 	}
 
 	c.token = ""
@@ -526,7 +525,7 @@ func apiSubmitResult(c *apiClient, result *share.ScanResult) error {
 	defer resp.Body.Close()
 
 	if resp.StatusCode/100 != 2 {
-		return fmt.Errorf("Submit scan result failed with status code %d", resp.StatusCode)
+		return fmt.Errorf("submit scan result failed with status code %d", resp.StatusCode)
 	}
 
 	return nil