[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#27943: tar complains about too-long names (guix release)
|
From: |
Ludovic Courtès |
|
Subject: |
bug#27943: tar complains about too-long names (guix release) |
|
Date: |
Sat, 02 Dec 2017 10:55:05 +0100 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/25.3 (gnu/linux) |
Efraim Flashner <address@hidden> skribis:
> From ad48d84c8659985d706cfe2f8e07314d6017611a Mon Sep 17 00:00:00 2001
> From: Efraim Flashner <address@hidden>
> Date: Thu, 30 Nov 2017 23:41:29 +0200
> Subject: [PATCH 1/2] lint: 'check-vulnerabilities' also checks package
> properties.
>
> * guix/scripts/lint.scm (check-vulnerabilities): Also check for CVEs
> listed as mitigated in the package properties.
> ---
> guix/scripts/lint.scm | 4 +++-
> 1 file changed, 3 insertions(+), 1 deletion(-)
>
> diff --git a/guix/scripts/lint.scm b/guix/scripts/lint.scm
> index 1b43b0a63..8112595c8 100644
> --- a/guix/scripts/lint.scm
> +++ b/guix/scripts/lint.scm
> @@ -7,6 +7,7 @@
> ;;; Copyright © 2016 Hartmut Goebel <address@hidden>
> ;;; Copyright © 2017 Alex Kost <address@hidden>
> ;;; Copyright © 2017 Tobias Geerinckx-Rice <address@hidden>
> +;;; Copyright © 2017 Efraim Flashner <address@hidden>
> ;;;
> ;;; This file is part of GNU Guix.
> ;;;
> @@ -881,10 +882,11 @@ the NIST server non-fatal."
> (or (and=> (package-source package)
> origin-patches)
> '())))
> + (known-safe (assq-ref (package-properties package)
> 'fixed-vulnerabilities))
Can you change that to ‘lint-hidden-cve’ as Leo suggested?
> (unpatched (remove (lambda (vuln)
> (find (cute string-contains
> <> (vulnerability-id vuln))
> - patches))
> + (append patches known-safe)))
> vulnerabilities)))
To be accurate, we’d rather do:
(remove (lambda (vuln)
(let ((id (vulnerability-id vuln)))
(or (find … patches)
(member id known-safe))))
…)
Also could you add a simple test in tests/lint.scm? You can start from
one of the existing CVE tests in there and just add a ‘properties’ field
to the test package.
Thank you!
Ludo’.