23a8d1c Allow user to specify ignored jails. — HardenedBSD-pkg

rad:z3QDZAW2FAfuLvihrhiyDC9fAD8G9

HardenedBSD Package Manager

Allow user to specify ignored jails.

Dan Langille committed 4 years ago

commit 23a8d1c4a7cedce57285040f4dba7b31b9b69b1f
parent 38c0a4a

1 file changed +14 -0

modified scripts/periodic/410.pkg-audit.in

@@ -42,6 +42,7 @@ fi

 : ${security_status_pkgaudit_quiet:=YES}
 : ${security_status_pkgaudit_chroots=$pkg_chroots}
 : ${security_status_pkgaudit_jails=$pkg_jails}
 : ${security_status_pkgaudit_jails_ignore=""}
 : ${security_status_pkgaudit_expiry:=2}
 security_daily_compat_var security_status_pkgaudit_enable

@@ -156,6 +157,19 @@ audit_pkgs_all() {

 	esac
 	for j in $jails ; do
 		# ignore some jails
 		if [ -n "$security_status_pkgaudit_jails_ignore" ]; then
 			# we iterate to get exact matches because we want substring matches
 			# foo should not match foo.bar
 			for ignore in $security_status_pkgaudit_jails_ignore ; do
 				if [ "${j%|*}" == "$ignore" ]; then
 					echo
 					echo "ignoring jail: ${j%|*}"
 					# continue with the main loop
 					continue 2
 				fi
 			done
 		fi
 		echo
 		echo "jail: ${j%|*}"
 		for t in audit expiration deprecation; do