Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v0.12.1-beta.rc7 #5052

Merged
merged 4 commits into from
Feb 23, 2021
Merged

v0.12.1-beta.rc7 #5052

merged 4 commits into from
Feb 23, 2021

Conversation

cfromknecht
Copy link
Contributor

No description provided.

@cfromknecht
scripts/verify-install.sh: pass expected version as argument
3ae60cd 
This removes a vulnerability brought up by @Kixunil where both the lnd
and lncli binaries are executed to obtain their version before they have
been verified against the release. A malicious binary could have already
compromised the user's system before any of the checks had been
performed.

This commit it split out from the doc changes so that it can easily be
cherry-picked to master/0.13.0.
@cfromknecht
docs: remove unnecessary docker pull from release verification
a38c82d 
Docker will automatically pull the image if it isn't found locally.
@cfromknecht
docs: update release verification scripts for v0.12.1-beta
923134e
@cfromknecht
build/version: bump to v0.12.1-beta.rc7
51aaf2b
Roasbeef
Roasbeef approved these changes Feb 23, 2021
View reviewed changes
Copy link
Member

@Roasbeef Roasbeef left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 🦊

@cfromknecht cfromknecht merged commit d233f61 into lightningnetwork:v0.12.1-beta.rc7-branch Feb 23, 2021
@cfromknecht cfromknecht deleted the v0.12.1-beta.rc7-branch-commits branch February 23, 2021 00:55
guggero
guggero reviewed Feb 23, 2021
View reviewed changes
scripts/verify-install.sh
else
echo "ERROR: invalid number of parameters!"
echo "Usage: verify-install.sh [lnd-binary lncli-binary]"
exit 1
fi

# Make sure both binaries can be found and are executable.
check_command lnd
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should be check_command "$LND_BIN" now. Otherwise it will check if there's an lnd in your $PATH.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@guggero guggero guggero left review comments

@Roasbeef Roasbeef Roasbeef approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@cfromknecht @Roasbeef @guggero