[Secure-testing-commits] r54582 - bin lib/python static
Sebastien Delafond
seb at moszumanska.debian.org
Thu Aug 10 21:07:04 UTC 2017
Author: seb
Date: 2017-08-10 21:07:04 +0000 (Thu, 10 Aug 2017)
New Revision: 54582
Modified:
bin/tracker_service.py
lib/python/security_db.py
static/style.css
Log:
Give /tracker/status/release/stable the ability to filter on "ignored" & "postponed" no-dsa substates
Modified: bin/tracker_service.py
===================================================================
--- bin/tracker_service.py 2017-08-10 21:07:00 UTC (rev 54581)
+++ bin/tracker_service.py 2017-08-10 21:07:04 UTC (rev 54582)
@@ -56,10 +56,14 @@
('undetermined_issues', 'include issues to be checked (shown in purple)', 'extra'),]
- def __init__(self, params, nonodsa=False):
+ def __init__(self, params, nonodsa=False, noignored=False, nopostponed=False):
self.action_list = self.default_action_list
if not nonodsa:
- self.action_list = self.default_action_list + [('nodsa', 'include issues tagged <no-dsa>', 'extra')]
+ self.action_list = self.action_list + [('nodsa', 'include issues tagged <no-dsa>', 'nodsa')]
+ if not noignored:
+ self.action_list = self.action_list + [('noignored', 'include issues tagged <ignored>', 'nodsa')]
+ if not nopostponed:
+ self.action_list = self.action_list + [('nopostponed', 'include issues tagged <postponed>', 'nodsa')]
self.params = {}
for (prop, desc, field) in self.action_list:
self.params[prop] = int(params.get(prop, (0,))[0])
@@ -109,6 +113,12 @@
def nodsaFiltered(self, nodsa):
"""Returns True for no DSA issues if filtered."""
return nodsa and not self.params['nodsa']
+ def ignoredFiltered(self, no_dsa_reason):
+ """Returns True for ignored issues if filtered."""
+ return no_dsa_reason == 'ignored' and not self.params['noignored']
+ def postponedFiltered(self, no_dsa_reason):
+ """Returns True for postponedissues if filtered."""
+ return no_dsa_reason == 'postponed' and not self.params['nopostponed']
class TrackerService(webservice_base_class):
head_contents = compose(
@@ -684,9 +694,9 @@
def gen():
old_pkg_name = ''
- for (pkg_name, bug_name, archive, urgency, vulnerable, remote, no_dsa) in \
+ for (pkg_name, bug_name, archive, urgency, vulnerable, remote, no_dsa, no_dsa_reason) in \
self.db.cursor().execute(
- """SELECT package, bug, section, urgency, vulnerable, remote, no_dsa
+ """SELECT package, bug, section, urgency, vulnerable, remote, no_dsa, no_dsa_reason
FROM %s_status
WHERE (bug LIKE 'CVE-%%' OR bug LIKE 'TEMP-%%')""" % release):
if bf.urgencyFiltered(urgency, vulnerable):
@@ -695,6 +705,10 @@
continue
if bf.nodsaFiltered(no_dsa):
continue
+ if bf.ignoredFiltered(no_dsa_reason):
+ continue
+ if bf.postponedFiltered(no_dsa_reason):
+ continue
if pkg_name == old_pkg_name:
pkg_name = ''
@@ -797,7 +811,7 @@
def page_status_release_unstable_like(self, path, params, url,
rel, title, subrel=""):
- bf = BugFilter(params,nonodsa=True)
+ bf = BugFilter(params,nonodsa=True,noignored=True,nopostponed=True)
def gen():
old_pkg_name = ''
@@ -1300,8 +1314,9 @@
status = defaultdict(lambda: defaultdict(dict))
urgency = defaultdict(lambda: defaultdict(dict))
nodsa = defaultdict(lambda: defaultdict(dict))
+ nodsa_reason = defaultdict(lambda: defaultdict(dict))
supported_releases = ('sid', 'buster', 'stretch', 'jessie', 'wheezy')
- for (pkg, issue, desc, debianbug, release, subrelease, db_version, db_fixed_version, db_status, db_urgency, db_remote, db_nodsa) in self.db.cursor().execute(
+ for (pkg, issue, desc, debianbug, release, subrelease, db_version, db_fixed_version, db_status, db_urgency, db_remote, db_nodsa, db_nodsa_reason) in self.db.cursor().execute(
"""SELECT sp.name, st.bug_name,
(SELECT cve_desc FROM nvd_data
WHERE cve_name = st.bug_name),
@@ -1318,7 +1333,10 @@
WHERE cve_name = st.bug_name),
(SELECT comment FROM package_notes_nodsa AS nd
WHERE nd.package = sp.name AND nd.release = sp.release
- AND nd.bug_name = st.bug_name) AS nodsa
+ AND nd.bug_name = st.bug_name) AS nodsa,
+ (SELECT reason FROM package_notes_nodsa AS nd
+ WHERE nd.package = sp.name AND nd.release = sp.release
+ AND nd.bug_name = st.bug_name) AS nodsa_reason
FROM source_package_status AS st, source_packages AS sp, bugs
WHERE sp.rowid = st.package AND st.bug_name = bugs.name
AND ( st.bug_name LIKE 'CVE-%' OR st.bug_name LIKE 'TEMP-%' )
@@ -1351,6 +1369,8 @@
urgency[pkg][issue][repository] = db_urgency
if str(db_nodsa) != 'None':
nodsa[pkg][issue][repository] = db_nodsa
+ if str(db_nodsa_reason) != 'None':
+ nodsa_reason[pkg][issue][repository] = db_nodsa_reason
data = {}
for pkg in packages:
@@ -1376,6 +1396,7 @@
suite_fixed_version = None
suite_urgency = None
suite_nodsa = None
+ suite_nodsa_reason = None
suite_repositories = {}
winner=''
for suffix in ('','-security','-lts'):
@@ -1401,6 +1422,8 @@
suite_urgency = urgency[pkg][issue][repository]
if nodsa[pkg][issue].has_key(repository):
suite_nodsa = nodsa[pkg][issue][repository]
+ if nodsa_reason[pkg][issue].has_key(repository):
+ suite_nodsa_reason = nodsa_reason[pkg][issue][repository]
for repository in repositories[pkg][issue]:
for suffix in ('','-security','-lts'):
subrelease=release+suffix
@@ -1410,7 +1433,8 @@
"repositories": suite_repositories,
"fixed_version" : suite_fixed_version,
"urgency": suite_urgency,
- "nodsa": suite_nodsa }
+ "nodsa": suite_nodsa,
+ "nodsa_reason": suite_nodsa_reason}
clean_dict(suites[release])
pkg_issue = { "description": description,
"debianbug": debianbug,
Modified: lib/python/security_db.py
===================================================================
--- lib/python/security_db.py 2017-08-10 21:07:00 UTC (rev 54581)
+++ lib/python/security_db.py 2017-08-10 21:07:04 UTC (rev 54582)
@@ -500,10 +500,14 @@
st.vulnerable AS vulnerable,
(SELECT range_remote FROM nvd_data
WHERE cve_name = st.bug_name) AS remote,
- (EXISTS (SELECT * FROM package_notes_nodsa AS pnd
+ (SELECT comment FROM package_notes_nodsa AS pnd
WHERE pnd.bug_name = st.bug_name
AND pnd.package = sp.name
- AND pnd.release = '%s')) AS no_dsa
+ AND pnd.release = '%s') AS no_dsa,
+ (SELECT reason FROM package_notes_nodsa AS pnd
+ WHERE pnd.bug_name = st.bug_name
+ AND pnd.package = sp.name
+ AND pnd.release = '%s') AS no_dsa_reason
FROM source_package_status AS st, source_packages AS sp
WHERE st.vulnerable > 0 AND sp.rowid = st.package
AND sp.release = '%s' AND sp.subrelease = ''
@@ -515,7 +519,7 @@
AND secst.bug_name = st.bug_name
AND secst.package = secp.rowid), 0)
ORDER BY sp.name, urgency_to_number(urgency), st.bug_name"""
- % (name, nickname, nickname, nickname))
+ % (name, nickname, nickname, nickname, nickname))
cursor.execute(
"""CREATE TEMPORARY VIEW debian_cve AS
Modified: static/style.css
===================================================================
--- static/style.css 2017-08-10 21:07:00 UTC (rev 54581)
+++ static/style.css 2017-08-10 21:07:04 UTC (rev 54582)
@@ -196,7 +196,15 @@
/*background: #d70a53;*/
}
-label[rel="extra"]:last-child {
+label[rel="nodsa"] {
+ padding: 0.5em 0;
+ color: #fff;
+ background: #5399E4;
+ /*background: #5c3566;*/
+ /*background: #d70a53;*/
+}
+
+label[rel="nodsa"]:last-child {
margin-right: 0.5em;
padding-right: 0.5em;
}
More information about the Secure-testing-commits
mailing list