FormulaAuditor: Add #committed_version_info method

The `#audit_stable_version` check was previously part of `#audit_revision_and_version_scheme` and duplicates some of the logic to identify previous version information. To avoid the duplication, this extracts the logic into a `#committed_version_info` method that can be called in both audits. The method stores the information in instance variables, so we don't repeat the collection process if it has already run.
2023-12-13 17:35:02 -05:00 · 2023-12-13 17:35:02 -05:00 · 4a4f8cb2d2
commit 4a4f8cb2d2
parent ccbde5952d
1 changed files with 67 additions and 82 deletions
--- a/Library/Homebrew/formula_auditor.rb
+++ b/Library/Homebrew/formula_auditor.rb
@ -37,6 +37,8 @@ module Homebrew
      @spdx_license_data = options[:spdx_license_data]
      @spdx_exception_data = options[:spdx_exception_data]
      @tap_audit = options[:tap_audit]
      @previous_committed = {}
      @newest_committed = {}
    end
    def audit_style
@ -785,39 +787,13 @@ module Homebrew
      current_version = formula.stable.version
      current_version_scheme = formula.version_scheme
      current_revision = formula.revision
-      previous_version = T.let(nil, T.nilable(Version))
+      previous_committed, newest_committed = committed_version_info
      previous_version_scheme = T.let(nil, T.nilable(Integer))
      previous_revision = T.let(nil, T.nilable(Integer))
-      newest_committed_version = T.let(nil, T.nilable(Version))
+      if !newest_committed[:version].nil? &&
-
+         current_version < newest_committed[:version] &&
-      fv = FormulaVersions.new(formula)
+         current_version_scheme == previous_committed[:version_scheme]
-      fv.rev_list("origin/HEAD") do |revision, path|
+        problem "stable version should not decrease (from #{newest_committed[:version]} to #{current_version})"
        begin
          fv.formula_at_revision(revision, path) do |f|
            stable = f.stable
            next if stable.blank?
            previous_version = stable.version
            previous_version_scheme = f.version_scheme
            previous_revision = f.revision
            newest_committed_version ||= previous_version
          end
        rescue MacOSVersion::Error
          break
        end
        break if previous_version && current_version != previous_version
        break if previous_revision && current_revision != previous_revision
      end
      if !newest_committed_version.nil? &&
         current_version < newest_committed_version &&
         current_version_scheme == previous_version_scheme
        problem "stable version should not decrease (from #{newest_committed_version} to #{current_version})"
      end
    end
@ -835,44 +811,12 @@ module Homebrew
      current_revision = formula.revision
      current_url = formula.stable.url
-      previous_version = T.let(nil, T.nilable(Version))
+      previous_committed, newest_committed = committed_version_info
      previous_version_scheme = T.let(nil, T.nilable(Integer))
      previous_revision = T.let(nil, T.nilable(Integer))
-      newest_committed_version = T.let(nil, T.nilable(Version))
+      if current_version == newest_committed[:version] &&
-      newest_committed_checksum = T.let(nil, T.nilable(String))
+         current_url == newest_committed[:url] &&
-      newest_committed_revision = T.let(nil, T.nilable(Integer))
+         current_checksum != newest_committed[:checksum] &&
-      newest_committed_url = T.let(nil, T.nilable(String))
+         current_checksum.present? && newest_committed[:checksum].present?
      fv = FormulaVersions.new(formula)
      fv.rev_list("origin/HEAD") do |revision, path|
        begin
          fv.formula_at_revision(revision, path) do |f|
            stable = f.stable
            next if stable.blank?
            previous_version = stable.version
            previous_checksum = stable.checksum
            previous_version_scheme = f.version_scheme
            previous_revision = f.revision
            newest_committed_version ||= previous_version
            newest_committed_checksum ||= previous_checksum
            newest_committed_revision ||= previous_revision
            newest_committed_url ||= stable.url
          end
        rescue MacOSVersion::Error
          break
        end
        break if previous_version && current_version != previous_version
        break if previous_revision && current_revision != previous_revision
      end
      if current_version == newest_committed_version &&
         current_url == newest_committed_url &&
         current_checksum != newest_committed_checksum &&
         current_checksum.present? && newest_committed_checksum.present?
        problem(
          "stable sha256 changed without the url/version also changing; " \
          "please create an issue upstream to rule out malicious " \
@ -880,27 +824,27 @@ module Homebrew
        )
      end
-      unless previous_version_scheme.nil?
+      unless previous_committed[:version_scheme].nil?
-        if current_version_scheme < previous_version_scheme
+        if current_version_scheme < previous_committed[:version_scheme]
-          problem "version_scheme should not decrease (from #{previous_version_scheme} " \
+          problem "version_scheme should not decrease (from #{previous_committed[:version_scheme]} " \
                  "to #{current_version_scheme})"
-        elsif current_version_scheme > (previous_version_scheme + 1)
+        elsif current_version_scheme > (previous_committed[:version_scheme] + 1)
          problem "version_schemes should only increment by 1"
        end
      end
-      if (previous_version != newest_committed_version ||
+      if (previous_committed[:version] != newest_committed[:version] ||
-         current_version != newest_committed_version) &&
+         current_version != newest_committed[:version]) &&
         !current_revision.zero? &&
-         current_revision == newest_committed_revision &&
+         current_revision == newest_committed[:revision] &&
-         current_revision == previous_revision
+         current_revision == previous_committed[:revision]
        problem "'revision #{current_revision}' should be removed"
-      elsif current_version == previous_version &&
+      elsif current_version == previous_committed[:version] &&
-            !previous_revision.nil? &&
+            !previous_committed[:revision].nil? &&
-            current_revision < previous_revision
+            current_revision < previous_committed[:revision]
-        problem "revision should not decrease (from #{previous_revision} to #{current_revision})"
+        problem "revision should not decrease (from #{previous_committed[:revision]} to #{current_revision})"
-      elsif newest_committed_revision &&
+      elsif newest_committed[:revision] &&
-            current_revision > (newest_committed_revision + 1)
+            current_revision > (newest_committed[:revision] + 1)
        problem "revisions should only increment by 1"
      end
    end
@ -1008,5 +952,46 @@ module Homebrew
      true
    end
    def committed_version_info
      return [] unless @git
      return [] unless formula.tap # skip formula not from core or any taps
      return [] unless formula.tap.git? # git log is required
      return [] if formula.stable.blank?
      return [@previous_committed, @newest_committed] if @previous_committed.present? || @newest_committed.present?
      current_version = formula.stable.version
      current_revision = formula.revision
      fv = FormulaVersions.new(formula)
      fv.rev_list("origin/HEAD") do |revision, path|
        begin
          fv.formula_at_revision(revision, path) do |f|
            stable = f.stable
            next if stable.blank?
            @previous_committed[:version] = stable.version
            @previous_committed[:checksum] = stable.checksum
            @previous_committed[:version_scheme] = f.version_scheme
            @previous_committed[:revision] = f.revision
            @newest_committed[:version] ||= @previous_committed[:version]
            @newest_committed[:checksum] ||= @previous_committed[:checksum]
            @newest_committed[:revision] ||= @previous_committed[:revision]
            @newest_committed[:url] ||= stable.url
          end
        rescue MacOSVersion::Error
          break
        end
        break if @previous_committed[:version] && current_version != @previous_committed[:version]
        break if @previous_committed[:revision] && current_revision != @previous_committed[:revision]
      end
      @previous_committed.compact!
      @newest_committed.compact!
      [@previous_committed, @newest_committed]
    end
  end
 end