zhangyiss/spack
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

openssl: exclude more dangerous environment variables (#30208)

Browse Source 
* pkg/openssl: blacklist more dangerous environment variables

* fix style
This commit is contained in:
Tom Scogland 2022-04-22 04:51:18 -07:00 committed by GitHub
parent f961a11187
commit 62553e7521
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
var/spack/repos/builtin/packages/openssl/package.py
View File

@ -119,10 +119,11 @@ def handle_fetch_error(self, error):
"insecure. Consider updating to the latest OpenSSL version.") "insecure. Consider updating to the latest OpenSSL version.")
def install(self, spec, prefix): def install(self, spec, prefix):
# OpenSSL uses a variable APPS in its Makefile. If it happens to be set # OpenSSL uses these variables in its Makefile or config scripts. If any of them
# in the environment, then this will override what is set in the # happen to be set in the environment, then this will override what is set in
# Makefile, leading to build errors. # the script or Makefile, leading to build errors.
env.pop('APPS', None) for v in ('APPS', 'BUILD', 'RELEASE', 'MACHINE', 'SYSTEM'):
env.pop(v, None)
if str(spec.target.family) in ('x86_64', 'ppc64'): if str(spec.target.family) in ('x86_64', 'ppc64'):
# This needs to be done for all 64-bit architectures (except Linux, # This needs to be done for all 64-bit architectures (except Linux,