From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RHIze-0002zf-PU for garchives@archives.gentoo.org; Fri, 21 Oct 2011 17:34:55 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6217E21C032; Fri, 21 Oct 2011 17:34:47 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) by pigeon.gentoo.org (Postfix) with ESMTP id 2FBB921C032 for ; Fri, 21 Oct 2011 17:34:47 +0000 (UTC) Received: from pelican.gentoo.org (unknown [66.219.59.40]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id A8A321B400D for ; Fri, 21 Oct 2011 17:34:46 +0000 (UTC) Received: from localhost.localdomain (localhost [127.0.0.1]) by pelican.gentoo.org (Postfix) with ESMTP id 1E4F18004C for ; Fri, 21 Oct 2011 17:34:46 +0000 (UTC) From: "Fabian Groffen" To: gentoo-commits@lists.gentoo.org Content-type: text/plain; charset=UTF-8 Reply-To: gentoo-dev@lists.gentoo.org, "Fabian Groffen" Message-ID: Subject: [gentoo-commits] proj/portage:prefix commit in: / X-VCS-Repository: proj/portage X-VCS-Committer: grobian X-VCS-Committer-Name: Fabian Groffen X-VCS-Revision: fce6d5010a4bd8c011aafae7ca6be27234b4dcf1 Date: Fri, 21 Oct 2011 17:34:46 +0000 (UTC) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-commits@lists.gentoo.org Content-Transfer-Encoding: quoted-printable X-Archives-Salt: X-Archives-Hash: 5507977fbb09e7fac16f4dfdc1cfb48c commit: fce6d5010a4bd8c011aafae7ca6be27234b4dcf1 Author: Fabian Groffen gentoo org> AuthorDate: Fri Oct 21 17:34:17 2011 +0000 Commit: Fabian Groffen gentoo org> CommitDate: Fri Oct 21 17:34:17 2011 +0000 URL: http://git.overlays.gentoo.org/gitweb/?p=3Dproj/portage.git;a= =3Dcommit;h=3Dfce6d501 Merge remote-tracking branch 'overlays-gentoo-org/master' into prefix bin/misc-functions.sh | 14 +- bin/repoman | 11 +- man/portage.5 | 4 +- pym/portage/tests/repoman/test_simple.py | 25 +++ pym/repoman/utilities.py | 246 +++++++++++++++++++++++-= ----- 5 files changed, 237 insertions(+), 63 deletions(-) diff --cc bin/misc-functions.sh index f31c9e5,55d9663..b093382 mode 100644,100755..100644 --- a/bin/misc-functions.sh +++ b/bin/misc-functions.sh @@@ -168,49 -166,15 +168,49 @@@ install_qa_check()=20 fi =20 # Now we look for all world writable files. - local i=3D - for i in $(find "${D}/" -type f -perm -2); do - vecho "QA Security Notice:" - vecho "- ${i:${#D}:${#i}} will be a world writable file." + local unsafe_files=3D$(find "${D}" -type f -perm -2 | sed -e "s:^${D}:= - :") + if [[ -n ${unsafe_files} ]] ; then + vecho "QA Security Notice: world writable file(s):" + vecho "${unsafe_files}" vecho "- This may or may not be a security problem, most of the time = it is one." vecho "- Please double check that $PF really needs a world writeable = bit and file bugs accordingly." - done - [[ -n ${i} ]] && sleep 1 + sleep 1 + fi =20 + # anything outside the prefix should be caught by the Prefix QA + # check, so if there's nothing in ED, we skip searching for QA + # checks there, the specific QA funcs can hence rely on ED existing + if [[ -d ${ED} ]] ; then + case ${CHOST} in + *-darwin*) + # Mach-O platforms (NeXT, Darwin, OSX) + install_qa_check_macho + ;; + *-interix*|*-winnt*) + # PECOFF platforms (Windows/Interix) + install_qa_check_pecoff + ;; + *-aix*) + # XCOFF platforms (AIX) + install_qa_check_xcoff + ;; + *) + # because this is the majority: ELF platforms (Linux, + # Solaris, *BSD, IRIX, etc.) + install_qa_check_elf + ;; + esac + fi + + # this is basically here such that the diff with trunk remains just + # offsetted and not out of order + install_qa_check_misc + + # Prefix specific checks + [[ -n ${EPREFIX} ]] && install_qa_check_prefix +} + +install_qa_check_elf() { if type -P scanelf > /dev/null && ! has binchecks ${RESTRICT}; then local qa_var insecure_rpath=3D0 tmp_quiet=3D${PORTAGE_QUIET} local x