From eec77e1ab9e15de0174a6dee2ca2aa6045166b1c Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?St=C3=A9phane=20Lesimple?= Date: Tue, 10 Dec 2019 19:16:58 +0100 Subject: [PATCH] fix: fwdb update: remove Intel extract tempdir on exit --- .github/workflows/check.yml | 19 ++++++++++++++++++- spectre-meltdown-checker.sh | 2 +- 2 files changed, 19 insertions(+), 2 deletions(-) diff --git a/.github/workflows/check.yml b/.github/workflows/check.yml index 1665bb9..d6ce3ff 100644 --- a/.github/workflows/check.yml +++ b/.github/workflows/check.yml @@ -10,7 +10,7 @@ jobs: steps: - uses: actions/checkout@v1 - name: install prerequisites - run: sudo apt-get install -y shellcheck jq + run: sudo apt-get update && sudo apt-get install -y shellcheck jq sqlite3 iucode-tool - name: shellcheck run: shellcheck -s sh spectre-meltdown-checker.sh - name: check indentation @@ -54,3 +54,20 @@ jobs: else echo "OK $nb CVEs reported" fi + - name: check fwdb update + run: | + nbtmp1=$(find /tmp 2>/dev/null | wc -l) + ./spectre-meltdown-checker.sh --update-fwdb; ret=$? + if [ "$ret" != 0 ]; then + echo "Non-zero return value: $ret" + exit 1 + fi + nbtmp2=$(find /tmp 2>/dev/null | wc -l) + if [ "$nbtmp1" != "$nbtmp2" ]; then + echo "Left temporary files!" + exit 1 + fi + if ! [ -e ~/.mcedb ]; then + echo "No .mcedb file found after updating fwdb" + exit 1 + fi diff --git a/spectre-meltdown-checker.sh b/spectre-meltdown-checker.sh index 0a9d125..3c35f2a 100755 --- a/spectre-meltdown-checker.sh +++ b/spectre-meltdown-checker.sh @@ -22,7 +22,7 @@ exit_cleanup() [ -n "$kerneltmp" ] && [ -f "$kerneltmp" ] && rm -f "$kerneltmp" [ -n "$kerneltmp2" ] && [ -f "$kerneltmp2" ] && rm -f "$kerneltmp2" [ -n "$mcedb_tmp" ] && [ -f "$mcedb_tmp" ] && rm -f "$mcedb_tmp" - [ -n "$intel_tmp" ] && [ -f "$intel_tmp" ] && rm -rf "$intel_tmp" + [ -n "$intel_tmp" ] && [ -d "$intel_tmp" ] && rm -rf "$intel_tmp" [ "$mounted_debugfs" = 1 ] && umount /sys/kernel/debug 2>/dev/null [ "$mounted_procfs" = 1 ] && umount "$procfs" 2>/dev/null [ "$insmod_cpuid" = 1 ] && rmmod cpuid 2>/dev/null