2 * Copyright (c) 2007, Novell Inc.
4 * This program is licensed under the BSD license, read LICENSE.BSD
5 * for further information
9 #define _XOPEN_SOURCE /* glibc2 needs this */
10 #include <sys/types.h>
21 #include "repo_updateinfoxml.h"
23 #include "tools_util.h"
27 * <update from="rel-eng@fedoraproject.org" status="stable" type="security" version="1.4">
28 * <id>FEDORA-2007-4594</id>
29 * <title>imlib-1.9.15-6.fc8</title>
30 * <severity>Important</severity>
31 * <release>Fedora 8</release>
32 * <rights>Copyright 2007 Company Inc</rights>
33 * <issued date="2007-12-28 16:42:30"/>
34 * <updated date="2008-03-14 12:00:00"/>
36 * <reference href="https://bugzilla.redhat.com/show_bug.cgi?id=426091" id="426091" title="CVE-2007-3568 imlib: infinite loop DoS using crafted BMP image" type="bugzilla"/>
38 * <description>This update includes a fix for a denial-of-service issue (CVE-2007-3568) whereby an attacker who could get an imlib-using user to view a specially-crafted BMP image could cause the user's CPU to go into an infinite loop.</description>
40 * <collection short="F8">
41 * <name>Fedora 8</name>
42 * <package arch="ppc64" name="imlib-debuginfo" release="6.fc8" src="http://download.fedoraproject.org/pub/fedora/linux/updates/8/ppc64/imlib-debuginfo-1.9.15-6.fc8.ppc64.rpm" version="1.9.15">
43 * <filename>imlib-debuginfo-1.9.15-6.fc8.ppc64.rpm</filename>
44 * <reboot_suggested>True</reboot_suggested>
86 /* !! must be sorted by first column !! */
87 static struct stateswitch stateswitches[] = {
88 { STATE_START, "updates", STATE_UPDATES, 0 },
89 { STATE_START, "update", STATE_UPDATE, 0 },
90 { STATE_UPDATES, "update", STATE_UPDATE, 0 },
91 { STATE_UPDATE, "id", STATE_ID, 1 },
92 { STATE_UPDATE, "title", STATE_TITLE, 1 },
93 { STATE_UPDATE, "severity", STATE_SEVERITY, 1 },
94 { STATE_UPDATE, "rights", STATE_RIGHTS, 1 },
95 { STATE_UPDATE, "release", STATE_RELEASE, 1 },
96 { STATE_UPDATE, "issued", STATE_ISSUED, 0 },
97 { STATE_UPDATE, "updated", STATE_UPDATED, 0 },
98 { STATE_UPDATE, "description", STATE_DESCRIPTION, 1 },
99 { STATE_UPDATE, "message", STATE_MESSAGE , 1 },
100 { STATE_UPDATE, "references", STATE_REFERENCES, 0 },
101 { STATE_UPDATE, "pkglist", STATE_PKGLIST, 0 },
102 { STATE_REFERENCES, "reference", STATE_REFERENCE, 0 },
103 { STATE_PKGLIST, "collection", STATE_COLLECTION, 0 },
104 { STATE_COLLECTION, "name", STATE_NAME, 1 },
105 { STATE_COLLECTION, "package", STATE_PACKAGE, 0 },
106 { STATE_PACKAGE, "filename", STATE_FILENAME, 1 },
107 { STATE_PACKAGE, "reboot_suggested",STATE_REBOOT, 1 },
108 { STATE_PACKAGE, "restart_suggested",STATE_RESTART, 1 },
109 { STATE_PACKAGE, "relogin_suggested",STATE_RELOGIN, 1 },
125 unsigned int datanum;
131 struct stateswitch *swtab[NUMSTATES];
132 enum state sbtab[NUMSTATES];
136 * Convert date strings ("1287746075" or "2010-10-22 13:14:35")
140 datestr2timestamp(const char *date)
147 for (p = date; *p >= '0' && *p <= '9'; p++)
151 memset(&tm, 0, sizeof(tm));
152 if (!strptime(date, "%F%T", &tm))
158 * if we have seen a <filename>...
159 * inside of <package>...
162 * If not, we must insert an empty filename to UPDATE_COLLECTION_FILENAME
163 * at </package> in order to keep all UPDATE_COLLECTION_* arrays in sync
167 * create evr (as Id) from 'epoch', 'version' and 'release' attributes
171 makeevr_atts(Pool *pool, struct parsedata *pd, const char **atts)
173 const char *e, *v, *r, *v2;
178 for (; *atts; atts += 2)
180 if (!strcmp(*atts, "epoch"))
182 else if (!strcmp(*atts, "version"))
184 else if (!strcmp(*atts, "release"))
187 if (e && !strcmp(e, "0"))
191 for (v2 = v; *v2 >= '0' && *v2 <= '9'; v2++)
193 if (v2 > v && *v2 == ':')
203 if (l > pd->acontent)
205 pd->content = realloc(pd->content, l + 256);
206 pd->acontent = l + 256;
230 fprintf(stderr, "evr: %s\n", pd->content);
232 return pool_str2id(pool, pd->content, 1);
238 startElement(void *userData, const char *name, const char **atts)
240 struct parsedata *pd = userData;
241 Pool *pool = pd->pool;
242 Solvable *solvable = pd->solvable;
243 struct stateswitch *sw;
244 /*const char *str; */
247 fprintf(stderr, "start: [%d]%s\n", pd->state, name);
249 if (pd->depth != pd->statedepth)
256 if (!pd->swtab[pd->state])
258 for (sw = pd->swtab[pd->state]; sw->from == pd->state; sw++) /* find name in statetable */
259 if (!strcmp(sw->ename, name))
262 if (sw->from != pd->state)
265 fprintf(stderr, "into unknown: %s (from: %d)\n", name, pd->state);
270 pd->docontent = sw->docontent;
271 pd->statedepth = pd->depth;
282 * <update from="rel-eng@fedoraproject.org"
284 * type="bugfix" (enhancement, security)
289 const char *from = 0, *type = 0, *version = 0;
290 for (; *atts; atts += 2)
292 if (!strcmp(*atts, "from"))
294 else if (!strcmp(*atts, "type"))
296 else if (!strcmp(*atts, "version"))
301 solvable = pd->solvable = pool_id2solvable(pool, repo_add_solvable(pd->repo));
302 pd->datanum = pd->solvable - pool->solvables;
304 solvable->vendor = pool_str2id(pool, from, 1);
305 solvable->evr = pool_str2id(pool, version, 1);
306 solvable->arch = ARCH_NOARCH;
308 repodata_set_str(pd->data, pd->datanum, SOLVABLE_PATCHCATEGORY, type);
309 pd->buildtime = (time_t)0;
312 /* <id>FEDORA-2007-4594</id> */
315 /* <title>imlib-1.9.15-6.fc8</title> */
318 /* <release>Fedora 8</release> */
321 /* <issued date="2008-03-21 21:36:55"/>
326 const char *date = 0;
327 for (; *atts; atts += 2)
329 if (!strcmp(*atts, "date"))
334 time_t t = datestr2timestamp(date);
335 if (t && t > pd->buildtime)
340 case STATE_REFERENCES:
342 /* <reference href="https://bugzilla.redhat.com/show_bug.cgi?id=330471"
344 * title="LDAP schema file missing for dhcpd"
347 case STATE_REFERENCE:
349 const char *href = 0, *id = 0, *title = 0, *type = 0;
351 for (; *atts; atts += 2)
353 if (!strcmp(*atts, "href"))
355 else if (!strcmp(*atts, "id"))
357 else if (!strcmp(*atts, "title"))
359 else if (!strcmp(*atts, "type"))
362 handle = repodata_new_handle(pd->data);
364 repodata_set_str(pd->data, handle, UPDATE_REFERENCE_HREF, href);
366 repodata_set_str(pd->data, handle, UPDATE_REFERENCE_ID, id);
368 repodata_set_str(pd->data, handle, UPDATE_REFERENCE_TITLE, title);
370 repodata_set_poolstr(pd->data, handle, UPDATE_REFERENCE_TYPE, type);
371 repodata_add_flexarray(pd->data, pd->datanum, UPDATE_REFERENCE, handle);
374 /* <description>This update ...</description> */
375 case STATE_DESCRIPTION:
377 /* <message type="confirm">This update ...</message> */
382 /* <collection short="F8" */
383 case STATE_COLLECTION:
385 /* <name>Fedora 8</name> */
388 /* <package arch="ppc64" name="imlib-debuginfo" release="6.fc8"
389 * src="http://download.fedoraproject.org/pub/fedora/linux/updates/8/ppc64/imlib-debuginfo-1.9.15-6.fc8.ppc64.rpm"
393 * -> patch.conflicts: {name} < {version}.{release}
397 const char *arch = 0, *name = 0;
398 Id evr = makeevr_atts(pool, pd, atts); /* parse "epoch", "version", "release" */
402 for (; *atts; atts += 2)
404 if (!strcmp(*atts, "arch"))
406 else if (!strcmp(*atts, "name"))
409 /* generated Id for name */
410 n = pool_str2id(pool, name, 1);
414 /* generate Id for arch and combine with name */
415 a = pool_str2id(pool, arch, 1);
416 rel_id = pool_rel2id(pool, n, a, REL_ARCH, 1);
418 rel_id = pool_rel2id(pool, rel_id, evr, REL_LT, 1);
420 solvable->conflicts = repo_addid_dep(pd->repo, solvable->conflicts, rel_id, 0);
422 /* who needs the collection anyway? */
423 pd->collhandle = repodata_new_handle(pd->data);
424 repodata_set_id(pd->data, pd->collhandle, UPDATE_COLLECTION_NAME, n);
425 repodata_set_id(pd->data, pd->collhandle, UPDATE_COLLECTION_EVR, evr);
426 repodata_set_id(pd->data, pd->collhandle, UPDATE_COLLECTION_ARCH, a);
429 /* <filename>libntlm-0.4.2-1.fc8.x86_64.rpm</filename> */
430 /* <filename>libntlm-0.4.2-1.fc8.x86_64.rpm</filename> */
433 /* <reboot_suggested>True</reboot_suggested> */
436 /* <restart_suggested>True</restart_suggested> */
439 /* <relogin_suggested>True</relogin_suggested> */
450 endElement(void *userData, const char *name)
452 struct parsedata *pd = userData;
453 Pool *pool = pd->pool;
454 Solvable *s = pd->solvable;
455 Repo *repo = pd->repo;
458 fprintf(stderr, "end: %s\n", name);
460 if (pd->depth != pd->statedepth)
464 fprintf(stderr, "back from unknown %d %d %d\n", pd->state, pd->depth, pd->statedepth);
478 s->provides = repo_addid_dep(repo, s->provides, pool_rel2id(pool, s->name, s->evr, REL_EQ, 1), 0);
481 repodata_set_num(pd->data, pd->datanum, SOLVABLE_BUILDTIME, pd->buildtime);
482 pd->buildtime = (time_t)0;
486 s->name = pool_str2id(pool, join2(&pd->jd, "patch", ":", pd->content), 1);
488 /* <title>imlib-1.9.15-6.fc8</title> */
490 while (pd->lcontent > 0 && pd->content[pd->lcontent - 1] == '\n')
491 pd->content[--pd->lcontent] = 0;
492 repodata_set_str(pd->data, pd->datanum, SOLVABLE_SUMMARY, pd->content);
495 repodata_set_poolstr(pd->data, pd->datanum, UPDATE_SEVERITY, pd->content);
498 repodata_set_poolstr(pd->data, pd->datanum, UPDATE_RIGHTS, pd->content);
501 * <release>Fedora 8</release>
507 case STATE_REFERENCES:
509 case STATE_REFERENCE:
512 * <description>This update ...</description>
514 case STATE_DESCRIPTION:
515 repodata_set_str(pd->data, pd->datanum, SOLVABLE_DESCRIPTION, pd->content);
518 * <message>Warning! ...</message>
521 repodata_set_str(pd->data, pd->datanum, UPDATE_MESSAGE, pd->content);
525 case STATE_COLLECTION:
530 repodata_add_flexarray(pd->data, pd->datanum, UPDATE_COLLECTION, pd->collhandle);
533 /* <filename>libntlm-0.4.2-1.fc8.x86_64.rpm</filename> */
534 /* <filename>libntlm-0.4.2-1.fc8.x86_64.rpm</filename> */
536 repodata_set_str(pd->data, pd->collhandle, UPDATE_COLLECTION_FILENAME, pd->content);
538 /* <reboot_suggested>True</reboot_suggested> */
540 if (pd->content[0] == 'T' || pd->content[0] == 't'|| pd->content[0] == '1')
542 /* FIXME: this is per-package, the global flag should be computed at runtime */
543 repodata_set_void(pd->data, pd->datanum, UPDATE_REBOOT);
544 repodata_set_void(pd->data, pd->collhandle, UPDATE_REBOOT);
547 /* <restart_suggested>True</restart_suggested> */
549 if (pd->content[0] == 'T' || pd->content[0] == 't'|| pd->content[0] == '1')
551 /* FIXME: this is per-package, the global flag should be computed at runtime */
552 repodata_set_void(pd->data, pd->datanum, UPDATE_RESTART);
553 repodata_set_void(pd->data, pd->collhandle, UPDATE_RESTART);
556 /* <relogin_suggested>True</relogin_suggested> */
558 if (pd->content[0] == 'T' || pd->content[0] == 't'|| pd->content[0] == '1')
560 /* FIXME: this is per-package, the global flag should be computed at runtime */
561 repodata_set_void(pd->data, pd->datanum, UPDATE_RELOGIN);
562 repodata_set_void(pd->data, pd->collhandle, UPDATE_RELOGIN);
569 pd->state = pd->sbtab[pd->state];
575 characterData(void *userData, const XML_Char *s, int len)
577 struct parsedata *pd = userData;
584 fprintf(stderr, "Content: [%d]'%.*s'\n", pd->state, len, s);
588 l = pd->lcontent + len + 1;
589 if (l > pd->acontent)
591 pd->content = realloc(pd->content, l + 256);
592 pd->acontent = l + 256;
594 c = pd->content + pd->lcontent;
602 #define BUFF_SIZE 8192
605 repo_add_updateinfoxml(Repo *repo, FILE *fp, int flags)
607 Pool *pool = repo->pool;
611 struct stateswitch *sw;
615 data = repo_add_repodata(repo, flags);
617 memset(&pd, 0, sizeof(pd));
618 for (i = 0, sw = stateswitches; sw->from != NUMSTATES; i++, sw++)
620 if (!pd.swtab[sw->from])
621 pd.swtab[sw->from] = sw;
622 pd.sbtab[sw->to] = sw->from;
628 pd.content = malloc(256);
631 parser = XML_ParserCreate(NULL);
632 XML_SetUserData(parser, &pd);
633 XML_SetElementHandler(parser, startElement, endElement);
634 XML_SetCharacterDataHandler(parser, characterData);
637 l = fread(buf, 1, sizeof(buf), fp);
638 if (XML_Parse(parser, buf, l, l == 0) == XML_STATUS_ERROR)
640 pd.ret = pool_error(pool, -1, "repo_updateinfoxml: %s at line %u:%u", XML_ErrorString(XML_GetErrorCode(parser)), (unsigned int)XML_GetCurrentLineNumber(parser), (unsigned int)XML_GetCurrentColumnNumber(parser));
646 XML_ParserFree(parser);
648 join_freemem(&pd.jd);
650 if (!(flags & REPO_NO_INTERNALIZE))
651 repodata_internalize(data);