Debian Patch Porting System
Description of the project: In 2017, I kick started a small project to automatically port security patches into Debian. Here, you can find the presentation here. Since then, the project has pretty much been abandoned. Let's try to put it back on its feet!
Confirmed Mentor: Luciano Bello (luciano@d.o)
How to contact the mentor: lbello@gmail.com, Hangouts.
Confirmed co-mentors: László Böszörményi (GCS) (gcs@d.o)
Deliverables of the project: In general, the goal is to improve the current situation of the project. Ideally, put it back online! Specifically, it can be one ore more of:
- Improve the patching heuristics
- Design and implement a modular patch finder
- Design and implement a compiling life cycle.
Desirable skills: Debian, Debian packaging, make (debian/rules is a Makefile), Python, webcrawling, some front-end (optional)
What the intern will learn: Python and building automatization. How the Debian Security team works as well as collaboration with other distros and projects.
Application tasks: write a web crawler to download security patches from the security-tracker, the Debian repo, or from wherever you can get them. For example, take a look to the links in the CVE tracking list, and download patches linked there. Not every link is a patch and sometimes you need to get a bit deeper in the website to get it. It can be as simple or complex as you want! Extra points if it is modular.
Related projects: https://security-tracker.debian.org/tracker/ https://github.com/PatchPorting