[bug#74034] [PATCH v6 01/16] cve: Add cpe-vendor and lint-hidden-cpe-ven

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#74034] [PATCH v6 01/16] cve: Add cpe-vendor and lint-hidden-cpe-ven

From:	Ludovic Courtès
Subject:	[bug#74034] [PATCH v6 01/16] cve: Add cpe-vendor and lint-hidden-cpe-vendors properties.
Date:	Fri, 29 Nov 2024 13:51:01 +0100
User-agent:	Gnus/5.13 (Gnus v5.13)

Nicolas Graves <ngraves@ngraves.fr> skribis:

> * guix/cve.scm: Exploit cpe vendors information.
> (cpe->package-name): Rename to...
> (cpe->package-identifier): Renamed from cpe->package-name. Use
> cpe_vendor:cpe_name in place or cpe_name.
> (vulnerabily-matches?): Add helper function.
> (vulnerabilities->lookup-proc): Extract cpe_name for table
> hashes. Add vendor and hidden-vendor arguments. Adapt condition to
> pass vulnerabilities to result in the fold.
> (write-cache, fetch-vulnerabilities): Update the format version.
>
> * guix/lint.scm (package-vulnerabilities): Use additional arguments
> from vulnerabilities->lookup-proc.
>
> * tests/cve.scm (%expected-vulnerabilities): Adapt variable to changes
> in guix/cve.scm.

[...]

>      (match sexp
> -      (('vulnerabilities 1 vulns)
> -       (map sexp->vulnerability vulns)))))
> +      (('vulnerabilities 2 vulns)
> +       (map sexp->vulnerability vulns))
> +      (('vulnerabilities 1 vulns)  ;old format, lacks vendor info
> +       (map sexp-v1->vulnerability vulns)))))

‘sexp-v1->vulnerability’ has yet to be written, if I’m not mistaken.

(Perhaps I wasn’t clear: you need to implement this procedure such that,
when reading v1 data from ~/.cache, you still get valid <vulnerability>
records.)

Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#74034] [PATCH v6 07/16] gnu: cli: Add lint-hidden-cpe-vendors property., (continued)
- [bug#74034] [PATCH v6 07/16] gnu: cli: Add lint-hidden-cpe-vendors property., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 09/16] gnu: xenon: Update to 0.9.3., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 08/16] gnu: h2c: Add lint-hidden-cpe-vendors property., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 11/16] gnu: bwm-ng: Add lint-hidden-cpe-vendors property., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 12/16] gnu: onedrive: Update to 2.5.2., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 13/16] gnu: got: Update to 0.104., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 10/16] gnu: bolt: Update to 0.9.8., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 14/16] gnu: dex: Update to 0.10.1., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 15/16] gnu: immer: Add lint-hidden-cpe-vendors property., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 16/16] gnu: cvs: Add lint-hidden-cpe-vendors property., Nicolas Graves, 2024/11/24
- [bug#74034] [PATCH v6 01/16] cve: Add cpe-vendor and lint-hidden-cpe-vendors properties., Ludovic Courtès <=
  - [bug#74034] [PATCH v6 01/16] cve: Add cpe-vendor and lint-hidden-cpe-vendors properties., Nicolas Graves, 2024/11/30

Prev by Date: [bug#74602] [PATCH] gnu: lftp: Update to 4.9.3.
Next by Date: [bug#74046] [PATCH v2] doc: Add "Contributing to Guix's infrastructure".
Previous by thread: [bug#74034] [PATCH v6 16/16] gnu: cvs: Add lint-hidden-cpe-vendors property.
Next by thread: [bug#74034] [PATCH v6 01/16] cve: Add cpe-vendor and lint-hidden-cpe-vendors properties.
Index(es):
- Date
- Thread