Command 'guix lint somepackage' fails on new years day

  • Open
  • quality assurance status badge
Details
2 participants
  • Ahmad Draidi
  • Greg Hogan
Owner
unassigned
Submitted by
Ahmad Draidi
Severity
normal

Debbugs page

Ahmad Draidi wrote 1 years ago
(address . bug-guix@gnu.org)
31e1f2c0-a81b-42c3-8129-167fa72e133a@redscript.org
Hello Guix!


Running 'guix lint somepackage' fails on new years day with the below
backtrace. It seems like it's trying to download the CVE database for
2024, which doesn't exist yet.

==== Backtrace ====

user@PC ~/Devel/Scheme/Guix/guix [env]$ ./pre-inst-env guix lint durden
;;; note: source file
/home/user/Devel/Scheme/Guix/guix/gnu/packages/arcan.scm
;;;       newer than compiled
/home/user/Devel/Scheme/Guix/guix/gnu/packages/arcan.go
checking durden@0.6.1-1.a8938b9 [source]...
Backtrace:urden@0.6.1-1.a8938b9 [cve]...
In ice-9/boot-9.scm:
    724:2 19 (call-with-prompt _ _ #<procedure default-prompt-handle?>)
In ice-9/eval.scm:
    619:8 18 (_ #(#(#<directory (guile-user) 7f8f4e5fcc80>)))
In guix/ui.scm:
   2324:7 17 (run-guix . _)
  2287:10 16 (run-guix-command _ . _)
In ice-9/boot-9.scm:
  1752:10 15 (with-exception-handler _ _ #:unwind? _ # _)
  1752:10 14 (with-exception-handler _ _ #:unwind? _ # _)
In guix/store.scm:
   661:37 13 (thunk)
In srfi/srfi-1.scm:
    634:9 12 (for-each #<procedure 7f8f2f135180 at guix/scripts/lin?> ?)
In guix/scripts/lint.scm:
     65:4 11 (run-checkers _ _ #:store _)
In srfi/srfi-1.scm:
    634:9 10 (for-each #<procedure 7f8f2f12e780 at guix/scripts/lin?> ?)
In guix/scripts/lint.scm:
    74:21  9 (_ _)
In guix/lint.scm:
   1547:4  8 (check-vulnerabilities #<package durden@0.6.1-1.a8938b?> ?)
  1536:10  7 (_ _)
In unknown file:
           6 (force #<promise #<procedure 7f8f43960138 at guix/lint.?>)
In guix/lint.scm:
   1519:2  5 (_)
    877:2  4 (call-with-networking-fail-safe _ _ _)
In ice-9/boot-9.scm:
  1752:10  3 (with-exception-handler _ _ #:unwind? _ # _)
  1685:16  2 (raise-exception _ #:continuable? _)
  1683:16  1 (raise-exception _ #:continuable? _)
  1685:16  0 (raise-exception _ #:continuable? _)

ice-9/boot-9.scm:1685:16: In procedure raise-exception:
ERROR:
  1. &http-get-error:
      uri: #<<uri> scheme: https userinfo: #f host: "nvd.nist.gov"
port: #f path: "/feeds/json/cve/1.1/nvdcve-1.1-2024.json.gz" query: #f
fragment: #f>
      code: 404
      reason: "Not Found"
      headers: ((x-frame-options . "SAMEORIGIN")
(content-security-policy . "frame-ancestors 'self'") (date . #<date
nanosecond: 0 second: 2 minute: 10 hour: 6 day: 1 month: 1 year: 2024
zone-offset: 0>) (content-length . 0) (strict-transport-security .
"max-age=31536000") (connection close))
  2. &message:
download failed: 404 (\"Not Found\")"
user@PC ~/Devel/Scheme/Guix/guix [env]$

==== Backtrace End ====
Greg Hogan wrote 5 days ago
Re: bug#76810: guix lint when nvd.nist.gov is down
(name . Nicolas Graves)(address . ngraves@ngraves.fr)
CA+3U0Znfkf+jRtkmtDvjWpmhWiS7uabdmQX4DLJBB1Ci8=bAuw@mail.gmail.com
On Fri, Mar 7, 2025 at 7:58 AM Nicolas Graves <ngraves@ngraves.fr> wrote:
Toggle quote (6 lines)
>
> Looks like for some reason nvd.nist.gov is down.
> Discovery from that is that it makes it impossible to use one's cache
> even in the case it might be pretty up-to-date :/
> A warning would be better than an error here.

Given the similarity, can we merge #68189 and #76810?
?
Your comment

Commenting via the web interface is currently disabled.

To comment on this conversation send an email to 68189@debbugs.gnu.org

To respond to this issue using the mumi CLI, first switch to it
mumi current 68189
Then, you may apply the latest patchset in this issue (with sign off)
mumi am -- -s
Or, compose a reply to this issue
mumi compose
Or, send patches to this issue
mumi send-email *.patch
You may also tag this issue. See list of standard tags. For example, to set the confirmed and easy tags
mumi command -t +confirmed -t +easy
Or, remove the moreinfo tag and set the help tag
mumi command -t -moreinfo -t +help