|
| From: | Ben Woodcroft |
| Subject: | Re: [PATCH] gnu: ruby: Replace with 2.3.2 [fixes CVE-2015-3900]. |
| Date: | Sun, 20 Nov 2016 17:00:58 +1000 |
| User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.4.0 |
On 20/11/16 01:28, Leo Famulari wrote:
I can't see any evidence to the contrary. I also ran a compatibility checker and it seemed to work out (while 2.3.2 vs 2.2.6 did not, as a negative control).On Sat, Nov 19, 2016 at 09:32:09AM +1000, Ben Woodcroft wrote:* gnu/packages/ruby.scm (ruby)[replacement]: New field. (ruby-2.3.2): New variable. --- gnu/packages/ruby.scm | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm index e4c1ef0..f2b5de9 100644 --- a/gnu/packages/ruby.scm +++ b/gnu/packages/ruby.scm @@ -47,6 +47,7 @@ (define-public ruby (package (name "ruby") + (replacement ruby-2.3.2)Remember that grafted replacements should have a compatible ABI. This is the first result I found when searching for "Ruby ABI compatible" https://www.ruby-lang.org/en/news/2013/12/21/ruby-version-policy-changes-with-2-1-0/ So, if they've kept that policy, this should be fine.
https://lvc.github.io/abi-compliance-checker/I'm not quite finished packaging it yet up to standard just yet, but I pushed what I have here, in case it is useful in the meantime.
https://github.com/wwood/guix_mine/blob/master/ben/packages/local.scm I pushed the graft to master and updated it directly on staging. ben
| [Prev in Thread] | Current Thread | [Next in Thread] |