An error occurred fetching the project authors.
  1. 12 Sep, 2024 1 commit
  2. 02 Sep, 2024 1 commit
  3. 26 May, 2024 1 commit
  4. 16 May, 2024 2 commits
    • Thomas Gambier's avatar
      slapos/testing: add exception for libtermcap · d1da3f2a
      Thomas Gambier authored
      This is needed after slapos@1888c1f2
      
      See merge request !632
      d1da3f2a
    • Thomas Gambier's avatar
      slapos/testing: allow permission execution warnings in ldd · e0bae66f
      Thomas Gambier authored
      Without this, we can have such errors:
      RuntimeError: Unknown ldd line ldd: warning: you do not have execution permission for `/opt/slapgrid/shared/bzip2/449734bcc91bae01810a28d0af447a66/lib/libbz2.so' for /opt/slapgrid/shared/bzip2/449734bcc91bae01810a28d0af447a66/lib/libbz2.so.
      
      Indeed, the permission for the lib itself is:
      [root@fedora-riscv slapos]# ls -l /opt/slapgrid/shared/bzip2/449734bcc91bae01810a28d0af447a66/lib/libbz2.so.1.0.8
      -r--r----- 1 slapsoft slapsoft 260080 May 10 10:32 /opt/slapgrid/shared/bzip2/449734bcc91bae01810a28d0af447a66/lib/libbz2.so.1.0.8
      
      See merge request !632
      e0bae66f
  5. 26 Jul, 2023 2 commits
    • Thomas Gambier's avatar
      slapos/testing: ignore version-use of llvm-lld in check_software · e0ab992f
      Thomas Gambier authored
      	linux-vdso.so.1 (0x00007ffca2156000)
      	foo.so => not found
      e0ab992f
    • Thomas Gambier's avatar
      slapos/testing: ignore ssh-keysign in check_software · e9d3ddd5
      Thomas Gambier authored
      ssh-keysign is not readable by everyone so we cannot do "ldd" on it:
      
      $ ls -al /opt/slapgrid/shared/openssh/f79ee5e4e4573183783541f2ad9133e8/libexec/
      total 1332
      dr-xr-x--- 2 slapsoft slapsoft     90 Jul 12 22:10 .
      dr-xr-x--- 7 slapsoft slapsoft    131 Jul 12 22:10 ..
      -r-xr-xr-x 1 slapsoft slapsoft 145560 Jul 12 22:10 sftp-server
      -r-x--x--x 1 slapsoft slapsoft 506208 Jul 12 22:10 ssh-keysign
      -r-xr-xr-x 1 slapsoft slapsoft 366736 Jul 12 22:10 ssh-pkcs11-helper
      -r-xr-xr-x 1 slapsoft slapsoft 338064 Jul 12 22:10 ssh-sk-helper
      e9d3ddd5
  6. 26 Oct, 2022 1 commit
  7. 09 Mar, 2022 1 commit
  8. 25 Jan, 2022 1 commit
    • Jérome Perrin's avatar
      check_software: fix warning on python2 · e6b637a2
      Jérome Perrin authored
      On python2, warnings.warn expects the message to be passed as a str
      and it will silently output nothing when the message is an unicode
      that can not be converted to str using ascii encoding (cf.
      https://bugs.python.org/issue34752 )
      
      Since october update of pyupio/safety-db there is a new vulnerability
      for pytest-runner, which is described as:
      
          "pytest-runner": [
              {
                  "advisory": "Pytest-runner depends on deprecated features of setuptools and relies on features that break security mechanisms in pip. For example \u2018setup_requires\u2019 and \u2018tests_require\u2019 bypass pip --require-hashes. See also pypa/setuptools#1684.\r\nIt is recommended that you:\r\n- Remove 'pytest-runner' from your setup_requires, preferably removing the setup_requires option.\r\n- Remove 'pytest' and any other testing requirements from tests_require, preferably removing the tests_requires option.\r\n- Select a tool to bootstrap and then run tests such as tox.",
                  "cve": "PVE-2021-43313",
                  "id": "pyup.io-43313",
                  "specs": [
                      ">0"
                  ],
                  "v": ">0"
              }
          ],
      
      notice the quotes:
      
          \u2018setup_requires\u2019 and \u2018tests_require\u2019
      
      this was sent to warnings.warn as unicode and because all our softwares
      have this vulnerability (that BTW do not impact us because we run
      buildout with a patch for setup_requires), we no longer saw any
      warning on python2 software release tests.
      e6b637a2
  9. 24 Jan, 2022 2 commits
    • Jérome Perrin's avatar
      check_software: check egg vulnerabilities for every used python versions · 3cb8a899
      Jérome Perrin authored
      pkg_resources.Environment only scans packages for the current python
      version, but the checked software might be using a different python
      version than the python version used to check software (the slapos
      python). The checked software might also include packages for
      multiples python versions.
      
      Compute the list used python packages from the eggs directory and use
      an Environment for each python version, this way we check all python
      versions and also when slapos python and software python are different.
      3cb8a899
    • Jérome Perrin's avatar
      check_software: fix indentation · f72f61db
      Jérome Perrin authored
      f72f61db
  10. 11 Jan, 2022 3 commits
  11. 06 Jan, 2022 1 commit
  12. 15 Oct, 2021 2 commits
  13. 05 Aug, 2021 1 commit
    • Eric Zheng's avatar
      chromium: add exception to testing library list · 5ff98015
      Eric Zheng authored
      The depot_tools package used to build Chromium (see
      slapos!1014) installs some Python
      libraries (NumPy and PIL) with shared objects that don't have RPATH set.
      These shouldn't actually be used when running Chromium, but they cause
      the testing framework to complain about missing libraries.
      5ff98015
  14. 01 Jul, 2021 3 commits
  15. 16 Apr, 2021 1 commit
  16. 04 Dec, 2020 1 commit