Subject: Review wanted: bulk builds & vulnerabilities list [patch]
To: None <tech-pkg@NetBSD.org>
From: Hubert Feyrer <hubert@feyrer.de>
List: pkgsrc-bulk
Date: 03/20/2005 16:52:00
I found out that the bulk builds still do _not_ automatically update the
vulerabilities list. The patch below fixes this, it's mostly inspired by
code from pkgsrc/mk/bulk/upload. It seems to work but I'd prefer review
before I commit it. Please let me know if I missed anything.
- Hubert
Index: build
===================================================================
RCS file: /cvsroot/pkgsrc/mk/bulk/build,v
retrieving revision 1.48
diff -u -r1.48 build
--- build 14 Jan 2005 15:32:34 -0000 1.48
+++ build 20 Mar 2005 15:48:43 -0000
@@ -172,6 +172,22 @@
cd ${USR_PKGSRC}/pkgtools/pkg_install && ${BMAKE} clean && \
${BMAKE} install && ${BMAKE} clean )
+# Make sure the pkg-vulnerabilities file is up to date
+echo "Making sure vulnerability-list is upto date:"
+if [ -z "$UPDATE_VULNERABILITY_LIST" -o "$UPDATE_VULNERABILITY_LIST" = "yes" ]
+then
+ distdir=`cd pkgtools/pkglint ; ${BMAKE} show-var VARNAME=DISTDIR`
+ (cd ${USR_PKGSRC}/security/audit-packages \
+ && ${BMAKE} clean \
+ && ${BMAKE} deinstall \
+ && ${BMAKE} install \
+ && ${BMAKE} clean \
+ && env PKGVULNDIR=${distdir} download-vulnerability-list )
+ echo 'done.'
+else
+ echo '(skipped)'
+fi
+
cd ${USR_PKGSRC}
--
NetBSD - Free AND Open! (And of course secure, portable, yadda yadda)