Commit a391ba05 authored by Eric Chiang's avatar Eric Chiang

*: don't build with Go versions with known security vulnerabilities

parent 4a830ddc
GOVERSION=$( go version | grep -o 'go1\.[0-9]') MAJOR_GOVERSION=$( go version | grep -o 'go1\.[0-9]')
FULL_GOVERSION=$( go version| grep -o 'go1\.[0-9|\.]*' )
# The list of unsupported major go versions.
UNSUPPORTED=( "go1.0" "go1.1" "go1.2" "go1.3" "go1.4" ) UNSUPPORTED=( "go1.0" "go1.1" "go1.2" "go1.3" "go1.4" )
# Minor go verisons which have known security vulnerabilities. Refuse to build with these.
KNOWN_INSECURE=( "go1.5" "go1.5.1" "go1.5.2" )
for V in "${UNSUPPORTED[@]}"; do for V in "${UNSUPPORTED[@]}"; do
if [ "$V" = "$GOVERSION" ]; then if [ "$V" = "$MAJOR_GOVERSION" ]; then
echo "dex requires go version 1.5+. Please update your go version." echo "dex requires Go version 1.5.3+. Please update your Go version."
exit 2
fi
done
for V in "${KNOWN_INSECURE[@]}"; do
if [ "$V" = "$FULL_GOVERSION" ]; then
echo "Go version ${V} has known security vulnerabilities which impact dex. Plesae update your Go verison."
exit 2 exit 2
fi fi
done done
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment