44 lines
1.6 KiB
Markdown
44 lines
1.6 KiB
Markdown
# Feedser
|
|
|
|
> Evidence collection library for backport detection and binary fingerprinting.
|
|
|
|
## Purpose
|
|
|
|
Feedser provides deterministic, cryptographic evidence collection for backport detection. It extracts patch signatures from unified diffs and binary fingerprints from compiled code to enable high-confidence vulnerability status determination for packages where upstream fixes have been backported by distro maintainers.
|
|
|
|
## Quick Links
|
|
|
|
- [Architecture](./architecture.md) - Technical design and implementation details
|
|
|
|
## Status
|
|
|
|
| Attribute | Value |
|
|
|-----------|-------|
|
|
| **Maturity** | Production |
|
|
| **Last Reviewed** | 2025-12-29 |
|
|
| **Maintainer** | Concelier Guild |
|
|
|
|
## Key Features
|
|
|
|
- **Patch Signature Extraction**: Parse unified diffs and extract normalized hunk signatures
|
|
- **Binary Fingerprinting**: TLSH fuzzy hashing and instruction sequence hashing
|
|
- **Four-Tier Proof System**: Supporting backport detection at multiple confidence levels
|
|
- **Deterministic Outputs**: Canonical JSON serialization with stable hashing
|
|
|
|
## Dependencies
|
|
|
|
### Upstream (this module depends on)
|
|
- None (library with no external service dependencies)
|
|
|
|
### Downstream (modules that depend on this)
|
|
- **Concelier** - ProofService layer consumes Feedser for backport evidence
|
|
- **Attestor** - Evidence storage for generated proofs
|
|
|
|
## Notes
|
|
|
|
Feedser is a **library**, not a standalone service. It does not expose REST APIs directly and does not make vulnerability decisions. It provides evidence that feeds into VEX statements and Policy Engine evaluation.
|
|
|
|
## Related Documentation
|
|
|
|
- [Concelier Architecture](../concelier/architecture.md)
|