| 1 |
Dnia 2014-05-12, o godz. 12:07:11 |
| 2 |
"Rick \"Zero_Chaos\" Farina" <zerochaos@g.o> napisał(a): |
| 3 |
|
| 4 |
> What about talking to local network resources? In my metasploit ebuild |
| 5 |
> it has tests available which talk to a local database and are perfectly |
| 6 |
> safe, however, if postgresql is started on the system the tests don't |
| 7 |
> work, the ebuild needs to start it's own postgresql to run the tests. |
| 8 |
|
| 9 |
How can you assume that the tests are perfectly safe? What do the tests |
| 10 |
do exactly? |
| 11 |
|
| 12 |
> This seems a bit needless in my package, but likely saves others from |
| 13 |
> poorly written tests. Do we want to allow access to system network |
| 14 |
> services or block them? Right now they are blocked, and that's going to |
| 15 |
> make the src_test function on my ebuild expand into near insanity to fix. |
| 16 |
|
| 17 |
I'd rather not get into allowing exceptions for the rule without |
| 18 |
knowing a good use case first. I can expand on that once the previous |
| 19 |
question is answered. |
| 20 |
|
| 21 |
I wouldn't call spawning a daemon that close to insanity. For those who |
| 22 |
haven't seen such a thing yet -- dev-python/pymongo is an example where |
| 23 |
I fixed a similar issue (writing into production database). Though it's |
| 24 |
bit hacky since I needed a way to bind to a random free port -- with |
| 25 |
network namespaces it'd be easier as Rich noted, since the ebuild would |
| 26 |
have all ports free. |
| 27 |
|
| 28 |
-- |
| 29 |
Best regards, |
| 30 |
Michał Górny |
Archives