Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Advisory "revision"/"release" date #519

Closed
ctron opened this issue Sep 12, 2023 · 2 comments
Closed

Advisory "revision"/"release" date #519

ctron opened this issue Sep 12, 2023 · 2 comments
Assignees
@lulf

Comments

@ctron
Copy link
Contributor

ctron commented Sep 12, 2023

We have a column "revision" in the advisory result table. We want to sort & filter by this. The idea is to give the user "a set of recently changed documents".

Revision is actually this:

trustification/spog/ui/src/components/advisory/mod.rs

Line 71 in a31c97d

Column::Revision => date(self.summary.date),

Which seems to come from this:

trustification/spog/api/src/advisory.rs

Line 97 in a31c97d

date: item.advisory_date,

Which seems to come from this:

trustification/vexination/index/src/lib.rs

Line 463 in a31c97d

let advisory_date = field2date(&doc, self.fields.advisory_current)?;

Which seems to be the "current release" date:

trustification/vexination/index/src/lib.rs

Lines 150 to 153 in a31c97d

document.add_date(
self.fields.advisory_current,
DateTime::from_timestamp_millis(csaf.document.tracking.current_release_date.timestamp_millis()),
);

However, searching by "release" brings up weird results. I assume this is due to the fact that Release, does a bit more:

trustification/vexination/index/src/lib.rs

Lines 692 to 703 in a31c97d

Vulnerabilities::Release(ordered) => {
let q1 = create_date_query(
self.fields.advisory_current,
self.schema.get_field_name(self.fields.advisory_current),
ordered,
);
let q2 = create_date_query(
self.fields.cve_release,
self.schema.get_field_name(self.fields.cve_release),
ordered,
);
Box::new(BooleanQuery::union(vec![q1, q2]))

Couldn't we have a single "release" date, which carries the "last modified" date? (defaulting to the initial date if that isn't present).
@lulf
Copy link
Contributor

lulf commented Sep 13, 2023

@ctron So what I get from this is that you want the search only to search by the advisory_current rather than both advisory_current and cve_release? Maybe we can split this into two separate qualifiers instead, advisory_current and cve_release? Rather than mixing them. Then if you really want to search both one can use an OR

@ctron
Copy link
Contributor Author

ctron commented Sep 13, 2023

Maybe we can split this into two separate qualifiers instead, advisory_current and cve_release? Rather than mixing them. Then if you really want to search both one can use an OR

Sounds good!

@lulf lulf mentioned this issue Sep 13, 2023
Merged
lulf pushed a commit that referenced this issue Sep 13, 2023
fix: separate advisory and cve dates
f7237f8 
Issue #519
lulf pushed a commit that referenced this issue Sep 13, 2023
feat: allow searching advisory and cve dates separately
bface7d 
Issue #519
lulf pushed a commit that referenced this issue Sep 13, 2023
feat: allow searching advisory and cve dates separately
b15091f 
Issue #519
github-merge-queue bot pushed a commit that referenced this issue Sep 13, 2023
feat: allow searching advisory and cve dates separately
f6bc29f 
Issue #519
@ctron ctron closed this as completed Nov 8, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lulf lulf

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@lulf @ctron