[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

07/07: guix package: Create profiles/per-user/$USER upfront.

From: guix-commits
Subject: 07/07: guix package: Create profiles/per-user/$USER upfront.
Date: Sun, 19 Jan 2020 17:12:13 -0500 (EST)

civodul pushed a commit to branch master
in repository guix.

commit 7842ddcbc118cbc2799e22651732b7cdc06b93ee
Author: Ludovic Court├Ęs <address@hidden>
AuthorDate: Sun Jan 19 22:52:31 2020 +0100

    guix package: Create profiles/per-user/$USER upfront.
    Fixes <>.
    Reported by Matt Wette <address@hidden>.
    * guix/scripts/package.scm (build-and-use-profile): Move
    'ensure-default-profile' call to...
    (process-actions): ... here.
 guix/scripts/package.scm | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/guix/scripts/package.scm b/guix/scripts/package.scm
index f4d92a6..1cb0d38 100644
--- a/guix/scripts/package.scm
+++ b/guix/scripts/package.scm
@@ -137,9 +137,6 @@ denote ranges as interpreted by 'matching-generations'."
 specified in MANIFEST, a manifest object.  When ALLOW-COLLISIONS? is true,
 do not treat collisions in MANIFEST as an error.  HOOKS is a list of \"profile
 hooks\" run when building the profile."
-  (when (equal? profile %current-profile)
-    (ensure-default-profile))
   (let* ((prof-drv (run-with-store store
                      (profile-derivation manifest
                                          #:allow-collisions? allow-collisions?
@@ -865,6 +862,12 @@ processed, #f otherwise."
                      (package-version item)
                      (manifest-entry-version entry))))))
+  (when (equal? profile %current-profile)
+    ;; Normally the daemon created %CURRENT-PROFILE when we connected, unless
+    ;; it's a version that lacks the fix for <>
+    ;; (aka. CVE-2019-18192).  Ensure %CURRENT-PROFILE exists so that
+    ;; 'with-profile-lock' can create its lock file below.
+    (ensure-default-profile))
   ;; First, acquire a lock on the profile, to ensure only one guix process
   ;; is modifying it at a time.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]