New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: Timeout Error with CVE-Bin-Tool Database Update/Download #4083
Comments
Darn, I was hoping that workaround will work. Fixing this should just involve fixing it so we don't get a stack trace if there's a timeout error, but we might want to also double-check that there's nothing weird with the link we're using for epss data. |
I've tried a couple of things but I can't seem to duplicate this myself easily even with an empty database. As tempting as it is to start messing with my routing table to see if I can make it happen, I think it probably makes more sense to just catch the timeout and hope we can work around it with me going in a bit blind? So I'm going to try to do that instead of bashing my head against it trying to figure out why it's happening. |
So it turns out the reason |
This will make it so that `-d EPSS` will actually disable the EPSS data source, and should make it fail more gracefully when the source is not working for any reason. Note that the EPSS source may not be working correctly even when not disabled; I'll file a separate issue. * fixes intel#4083 Signed-off-by: Terri Oda <terri.oda@intel.com>
I've got a tentative fix in #4125 that may work for you. It should at least allow the EPSS data source to be disabled correctly as a workaround, as well as allow it to fail more gracefully. I haven't run it against the full test suite yet so it may need a bit of work still. |
This will make it so that `-d EPSS` will actually disable the EPSS data source, and should make it fail more gracefully when the source is not working for any reason. Note that the EPSS source may not be working correctly even when not disabled; I'll file a separate issue. * fixes intel#4083 Signed-off-by: Terri Oda <terri.oda@intel.com>
This will make it so that `-d EPSS` will actually disable the EPSS data source, and should make it fail more gracefully when the source is not working for any reason. Note that the EPSS source may not be working correctly even when not disabled; I'll file a separate issue. * fixes intel#4083 Signed-off-by: Terri Oda <terri.oda@intel.com>
This will make it so that `-d EPSS` will actually disable the EPSS data source, and should make it fail more gracefully when the source is not working for any reason. Note that the EPSS source may not be working correctly even when not disabled; I'll file a separate issue. * fixes intel#4083 Signed-off-by: Terri Oda <terri.oda@intel.com>
Description
I'm experiencing a timeout error when updating/downloading the database using
cve-bin-tool --nvd api2
, even with thenvd_key
option and--nvd json-mirror
. This issue persists across different networks and has prevented me from using the tool effectively.Also I tried
--disable-data-source EPSS
option, but still getting the same timed out error.To reproduce
Steps to reproduce the behaviour:
Expected behaviour: No time out error.
Actual behaviour:
Version/platform info
Version of CVE-bin-tool( e.g. output of
cve-bin-tool --version
): 3.3.1dev0Installed from pypi or github? pypi
Operating system: Linux/Windows (other platforms are unsupported but feel free to report issues anyhow)
uname -a
x: ~>uname -a
Linux x 6.9.0-rc1+ SMP PREEMPT_DYNAMIC Fri Mar 29 08:33:41 UTC 2024 x86_64 x86_64 x86_64 GNU/Linux
Python version (e.g.
python3 --version
): Python 3.11.6Running in any particular CI environment we should know about? (e.g. Github Actions) No.
The text was updated successfully, but these errors were encountered: