Changeset 14218

Timestamp:

06/30/12 16:30:57 (11 months ago)

Author:

p_lindheimer

Message:

remove some of the security auditing code that got checked in error and not used or ready

Files:

• freepbx/branches/2.10/amp_conf/htdocs/admin/libraries/module.functions.php (modified) (3 diffs)

freepbx/branches/2.10/amp_conf/htdocs/admin/libraries/module.functions.php

@@ -91 +91 @@
-  }
-
-  $exposures = module_get_security($xmlarray, $base_version);
-
-  //dbug("done here is exposure analysis", $exposures);
-  foreach($exposures as $m => $vinfo) {
-    dbug("module $m has these vulnerabilities and version " . $vinfo['minver'] . " is needed you have " . $vinfo['curver'], $vinfo['vul']);
-  }
-  // module_update_security_notifications($exposures);
-
-  if (isset($xmlarray['xml']['module'])) {
-  
@@ -112 +104 @@
-      foreach ($xmlarray['xml']['module'] as $mod) {
-        $modules[$mod['rawname']] = $mod;
-        if (isset($exposures[$mod['rawname']])) {
-          $modules[$mod['rawname']]['vulnerabilities'] = $exposures[$mod['rawname']];
-        }
-      }
-      return $modules;
@@ -121 +110 @@
-  return null;
-}
-
-function module_get_security($xmlarray, $base_version=null) {
-
-  if ($base_version === null) {
-    $version = getversion();
-    // we need to know the freepbx major version we have running (ie: 2.1.2 is 2.1)
-    preg_match('/(\d+\.\d+)/',$version,$matches);
-    $base_version = $matches[1];
-  }
-
-  if (!empty($xmlarray['xml']['security'])) {
-    $exposures = array();
-    $modinfo = module_getinfo();
-
-    //foreach ($xmlarray['xml']['security'] as $vul => $sinfo) {
-    foreach ($xmlarray['xml']['security']['issue'] as $sinfo) {
-      $vul = $sinfo['id'];
-      if (!empty($sinfo['versions']['v' . $base_version])) {
-        //dbug("vulnerability info for $base_version: ", $sinfo['versions']['v' . $base_version]);
-        //dbug("is vulnerable?:: " . $sinfo['versions']['v' . $base_version]['vulnerable']);
-        // TODO: if vulnerable or maybe, and no fixes listed need to post something, mostly around the unknown
-        if (strtolower($sinfo['versions']['v' . $base_version]['vulnerable']) == 'yes' && !empty($sinfo['versions']['v' . $base_version]['fixes'])) foreach ($sinfo['versions']['v' . $base_version]['fixes'] as $rmod => $mver) {
-          dbug("checking $rmod");
-          $rmod = trim($rmod);
-          $mver = trim($mver);
-          if (!empty($modinfo[trim($rmod)])) {
-            //dbug("Vulnerability: $vul, module: " . $rmod . ", version: " . $mver);
-            if (!isset($modinfo[$rmod]['dbversion'])) {
-              //dbug("dbversion isn't set for $rmod so Locally Available but NOT installed, report on it");
-            } else {
-              if (version_compare_freepbx($modinfo[$rmod]['dbversion'], $mver, 'lt')) {
-                if (!isset($exposures[$rmod])) {
-                  //dbug("$rmod not set so setting min ver to $mver");
-                  $exposures[$rmod] = array('vul' => array($vul), 'minver' => $mver, 'curver' => $modinfo[$rmod]['dbversion']);
-                } else {
-                  $exposures[$rmod]['vul'][] = $vul;
-                  //dbug("$rmod IS set so setting so check $mver against current minver: " . $exposures[$rmod]['minver']);
-                  if (version_compare_freepbx($mver, $exposures[$rmod]['minver'], 'gt')) {
-                    //dbug("since the new $mver is greater, we are setting $rmod up to it because of $vul");
-                    $exposures[$rmod]['minver'] = $mver;
-                  }
-                }
-              } else {
-                //dbug($modinfo[$rmod]['dbversion'] . " is at least $mver");
-              }
-            }
-          } else {
-            //dbug("module $rmod not there or");
-          }
-        }
-      }
-    }
-    return $exposures;
-  }
-}
-
-
-/**  Determines if there are updates we don't already know about and posts to notification