Parent Directory | Revision Log
Add table version_linear_order, which will enable us to make version comparisons in pure SQL. lib/python/security_db.py (DB): Add verbose flag to constructor. (DB.initSchema): Add table version_linear_order. Add version ID fields to tables package_notes, source_packages, binary_packages. (DB._maybeUpdate): Use self.verbose. (DB.availableReleases): New method to get a least of releases in the database. (DB._updateVersions): Calculate a linear order of versions. This will be used to speed up the vulnerability rating process. (DB.calculateVulnerabilities): Invoke _updateVersions. Use self.verbose. bin/update-vulnerabilities, bin/update-packages: Set database verbose flag.
First step towards calculating sets of vulnerable packages. This is currently directed towards testing (but does not yet process the secure-testing archive). A new table is added, so "make clean" is required. The remaining problem (besides potential bugs in the code) is how to deal with kernel updates, IOW how to detect them and ignore them. bin/update-vulnerabilities: New script, updates the bugs_status table. lib/python/bugs.py (PackageNote.affects): Fix all kinds of errors. The code never ran before, it seems. 8-/ (PackageNote.fixedVersion): Add. (BugBase.hasTODO): Add. (BugReservedCVE, BugRejectedCVE): Mark as not-for-us. (FileBase.rawRecords): Mark all un-annotated bugs after STOP: field as not-for-us. lib/python/security_db.py (DB.initSchema): Add table bugs_status. (DB.finishBugs): Run to completion even if there are conflicting CAN/CVE entries. (DB.getVersion, calculateVulnerabilities): New methods. (test): Update. lib/python/debian_support.py (Version): Add a type check. Makefile: Add stamps/calc-vulns target. bin/update-packages: Fix typo in comment.
This form allows you to request diffs between any two revisions of this file. For each of the two "sides" of the diff, enter a numeric revision.
|Powered by ViewVC 1.1.5|