Bug#926392: licensecheck chokes on long lines
Jonas Smedegaard
jonas at jones.dk
Wed Jun 5 22:17:36 BST 2019
Quoting gregor herrmann (2019-06-05 21:46:36)
> On Wed, 17 Apr 2019 07:08:00 +0000, Niels Thykier wrote:
>
> > On Thu, 04 Apr 2019 18:13:43 +0200 Jonas Smedegaard <jonas at jones.dk> wrote:
> > > Quoting Sandro Mani (2019-04-04 13:36:28)
> > > > $ wget https://files.pythonhosted.org/packages/source/x/xonsh/xonsh-0.8.12.tar.gz
> > > > $ tar xf xonsh-0.8.12.tar.gz
> > > > $ licensecheck xonsh-0.8.12/xonsh/parser_table.py
> > > >
> > > > => Licensecheck hangs eating cpu cycles (the file has lines with
> > > > 33k and 71k characters).
> > >
> > > Indeed. Thanks for reporting!
>
> > I have been digging in the code (admittedly using the master branch
> > of the libregexp-pattern-license-perl and licensecheck rather than
> > the packages) and basically, it is a DOS from suboptimal regex.
>
> Thanks for your investigation, Niels!
Agreed, thanks a lot for your investigation, Niels: I was _very_ happy
when you posted it, but then got distracted by other business before
getting around to replying back then - sorry!
> AFAICS this is the only buster-relevant RC bug we have.
>
>
> Jonas, my hope is that you have a chance to look into this issue, as
> you are also the upstream maintainer of this module :)
Yes, I will sure look into this.
It was not high on my list, however - I was under the impression that
this does not affect Buster.
I will prioritize at least verifying that detail.
- Jonas
--
* Jonas Smedegaard - idealist & Internet-arkitekt
* Tlf.: +45 40843136 Website: http://dr.jones.dk/
[x] quote me freely [ ] ask before reusing [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-perl-maintainers/attachments/20190605/56943432/attachment.sig>
More information about the pkg-perl-maintainers
mailing list