From 4ff0ca3d71de5fc07f3203e6b7b5cbb6a8ecda7e Mon Sep 17 00:00:00 2001
From: Fabrice Fontaine <fabrice.fontaine@orange.com>
Date: Wed, 10 May 2023 11:02:52 +0200
Subject: [PATCH] fix: improve lua checker

Improve lua checker to avoid false positives with haproxy, nmap, vim and
wireshark binaries which link dynamically with lua library (and save
the associated version number)

While at it, add an OpenWRT test package

Signed-off-by: Fabrice Fontaine <fabrice.fontaine@orange.com>
---
 cve_bin_tool/checkers/lua.py                     |   2 +-
 .../liblua5.1.5_5.1.5-3_x86_64.ipk.tar.gz        | Bin 0 -> 9664 bytes
 test/test_data/haproxy.py                        |   3 +--
 test/test_data/lua.py                            |   6 ++++++
 test/test_data/nmap.py                           |   1 -
 test/test_data/vim.py                            |   1 -
 test/test_data/wireshark.py                      |   1 -
 7 files changed, 8 insertions(+), 6 deletions(-)
 create mode 100644 test/condensed-downloads/liblua5.1.5_5.1.5-3_x86_64.ipk.tar.gz

diff --git a/cve_bin_tool/checkers/lua.py b/cve_bin_tool/checkers/lua.py
index 612bd3cdcb..ceef700c17 100644
--- a/cve_bin_tool/checkers/lua.py
+++ b/cve_bin_tool/checkers/lua.py
@@ -17,5 +17,5 @@ class LuaChecker(Checker):
         r"-o name  output to file `name' \(default is \"luac.out\"\)",
     ]
     FILENAME_PATTERNS = [r"lua"]
-    VERSION_PATTERNS = [r"Lua ([0-9]+\.[0-9]+\.[0-9]+)"]
+    VERSION_PATTERNS = [r"Lua ([0-9]+\.[0-9]+\.[0-9]+) "]
     VENDOR_PRODUCT = [("lua", "lua")]
diff --git a/test/condensed-downloads/liblua5.1.5_5.1.5-3_x86_64.ipk.tar.gz b/test/condensed-downloads/liblua5.1.5_5.1.5-3_x86_64.ipk.tar.gz
new file mode 100644
index 0000000000000000000000000000000000000000..8ab7d49191ad3244402e57245098823ebf39bf57
GIT binary patch
literal 9664
zcmds(RZkoafW&ckcW7}h?o!;{i@Qtl#oeJev`BHb=;H3~?yif&;(q_!H@MeJCi5`K
z?`bm0P{tu4K|?`7!F)Q}nLB!#@vw2Q@tFLtvvQgE@bjARa<kdFI<R?|{e-&k|Dn4+
z(sa3IBgPRFA*W;^A#v`pkq{=o4kEYw8mb!{?kpiBk&!^U{<9b-62t8C{&rHoZM9%n
z57Q>+*0ngK@}Gv$aX>~nF~Y~~4LJ15&DI5eOUJ6BL;HF8bF?D-EHjh+Fvj8J8L~W9
z(>-9-)?xT@I9T(^sqp#I?HUnM7l8Iz^C?#IY4^kBb2;dJIS4n;vRkY?)l6x$Wvfhf
zb6Shj+3po`haceYp;U48`C+{E_slmFut<n|dT&522&y<_P3?MLE$Vz>diT0V?5yIy
zgJ6a=g*7wF-rZhNZmEIWbOSg)jEng8YZ}_$xyYY%T^>#j54b#kE3XCF3wn4zUI`h9
z_*+wI6t#IOPv;wJx^R;-o}yp(_)H~C%KHhwtV=gty<EEDF)Ux9`}^$`LV6^hB}=F-
z^W0Aab;X<A2Um4mz<#$h>+RV-%hkm&x(S;O-YmpFCeKeslJ6FBD-^dIUsFii6nyJj
zq;u{zi}Po>T?6pbr-qt};%v-ZeVvjdb2Xdmxj6>?J?DFf!!>0SI_%Q&BU4eAlQ@fj
zKcnQ?)IMwl<2k<!ov)8A^{=@<I@q427Xv|YyqQgx2EN(V>6sS>zJz&vUa7JB6LMRF
zCKh~wAb$NrRwW5v;=j;JoZ<Pw=7J<;CmwV;lT#75**8f<#5t<Q)<<+$6fF2G$K*EW
z@CEsMH0?UXPTU<@sLZ=_v@o^oL(VzG@f&VpkwTE{136r(-%Q>GlW?npDjO%B5}KoN
zrocz43z29)%nUzN&Q5^`ei-+ZpK}K*aTyDk^b$k#^8XMqpz-eRxJg^OuAZ?aH^9F9
zTMHoV4g?R>l<4DMqtG^}P|};O84!uuEM=k+8^lhQ_s31(*Te0H^S~fH+OX@dDk^<$
zIp;~$sT%A+q1z)j&Kwnf0U|#=oUwghL%^1{@ZjOy00sdhkx(VIu?z;Dm_^vUmFkaK
zsA&OQtOr|w9E%;?v&SOoiYa3CdnUpsv{V#SZJGPnEt`xa%uuOh_1;#zIWlf|@^woB
z;~^`o|B>GqHBuT7GVHTv5u9Sl$u{Gq-0Oibqz0QewUE6z)=-G(I+kS0yXZnqR`i1o
zRfOy|SrONJ&s5ZK9abA&J^y#;8{ux2$#+guPbG29nqf_>>@VyuZ!>B5402xi2<n8`
zP_{emZ0LqAJ&ejVIxc}H_5@8Dbq#<fvG{ffIl7!8oTCA}qTUXHVnx)qQe_8uBdKRS
zLs@-4z@Jg8gVe=aYx^(kJZePpqvcez4tB|tW3TZ@X(*`Aa)C4{y*RwbUvtB%&us|6
z-+Oze=Ck$WPdCs|PQQ|&?Fkb(m_bHt>L;?5TrJW&R92Qw-DC@!?`e9o<D=wsZbx8q
zk;>##;Ac$3V_+VO7}0(H#asJEYO>%xEw7N;0u+B+l}$dM3*!n(Hyb1I=0|K`2TK2S
zyXr(G?L^OVPc7{7!^W^HMI@Pc#|99g4e4=9!A&E*`6jr@D_e6qAjb9+{zfPBLxDjz
zy`B+oHRw_(qfQbxm{+VT=(;)c0kb`!z<#;Du*;{)heC51@otsc@ABiaz`ADNO5T^?
zbj5_+O0*>#r(n}HwH52lwCs>_(ARS6!1S`#iWGd<ep4$#R$YZPQ>||Ch%Cdypojdz
zpn*3%J-s2y-sQFmDY4mM79QRrn^ym3@dIl5&xb8P&ND~*b&Zs`;fwqklCn=U+IbRu
z?K?<@v;2x6m7KmMgO}^NP{gp<dcwwo!z0JIXG$^K9YdqxU}na+e)ZM2LTWSLnX!Wd
z=;mKse)F935PLLb%vXG^nrd)ZDBnEvuDaOj+pOTXPM1rTy}+Xch<m*|&$*<`w$ypF
zy`rm}A&bbL8Tif`H8H8`@!3~wom^o!M_FENd=r--(zab|do>;`S};oC>~5_yNlKaU
z0JbK#GP*Mu;Lbb6&{^nyJ_b$Qj3n%*BIM@siQ;ajX!6wmi=zOnev^NXe8`?HMqsxy
z=CcayXn3~Bb<W{V6!KZu&)Q*Zwi~&QV^8TyM5Rrw>}!&)lGv0O)9Rj+shBB2uegrj
zO+>AakZ(YVe75jD8uH$xMX7jOTUed9wMLI$^l`N=olpOG#)z{nW!1>aFPK-Sv@Ruw
zx})$WeME3Rp-vP0GWO`gZKx6~(R-r8CnMFaBuik?p?{^;yWy`}MhyhjAoB8ILhoco
z*mBY`<`CO1NtL}A7kTq-+$y2`n_M+a8Y=cMF)B@=Mxk^NT!~|dcFD7EGQPnS5!3Lq
zj{S=dPgq6tXvAm$AkHVDv`G6SF}7X#OTA^j0enf1%iI9YwbB^=UNGtseA;%|?6&n(
zKTGXgr6YvhFl#0RYjgiKq_H~3^adBnx@+^VSMwUnEcwVMDSN2{G`+0PvZ#yzA(!Cc
zB1rne{H|`LuxO4F8|U$%qIk<~S=iE$MC4z-!k5J`rhsihfx@v;`OIEmB&^XQ{~*Jj
z&;UUBSR~^0&7awOB-m3FW#`#WP}pUDmHFblv*VLNGRVXTw^G`pw?<XN*3#5%_OCS%
z1ck}wvc#<+5D@zD73J@B@=(^D1mo|%ZW8XOVnHW-FxTa_+b8j6PBlKl23v%{8l|Oc
zU9gZ6pRn1Br?^p#a&EMhTpxEXd@1%Uj<a3#^*JsRF4oR)@%{EQA3_|<XXj_u(XzNP
zs{vtsH$bTDdMj;Lr>{QTj`U!OhB%ZtB;u4T)D5%tvxjKaU(z#>V7viw;c|l2_Y~;m
zB}y1;)+(7f1P$fvOh@C^ZLfpb4(-HCv?+c<hLahZKat>(zGIs;dW7%0Nu&iRmDRYE
zYaJ>7n?sd_{4(P*yS0pPZ@ri&pO1=g-{z#j%!*}G&@*@A>tJKZ@aqL!vrw)k(#Y`E
z*$Y`MSieWes*p?XG_j3Zhr!fxD&TG29V>hErei0${lf#UzBW`$Lrbi(#71Y?EDXDl
zHY`$zGH3IB7o-_)Rm&=HbCvFQj_PBlgJ;RN5Bp`GQAn~tjk>@aMxr#Gv+O^b-jfV|
z!<eri?b*GAZfu^M<h9SR(>dSK7ZK?)agrKTgsZ7m0z^IB82%+A66UKERvCYKme2*$
zbU>v94x_t9Qd-?`<9_j2;|rSFk-;^G5>OB0E>+mK`}#r+FxR={_auI=t~$A^Ry*j5
z?MO^fxelkA>wF>Sda*-HA>KEFR-fXvE!NldfIGJ+W}1YK|B8ZJx-)1CY1v!KS5`-y
zbdJm6cN$8MxJVG(vfuo;sK3ekZE_iua$bs8uk%6Hy|*;TwI)<$?>qhMWb9bk;F$y@
z;5Rjeu9W4QKtzvxoHLv?<v-&>avtM^8t>Vc0M&<ll?D*VjmnW)UfRDe;h}A?nD0a{
zWVZ^`D2ky}AgMV}c9MlSv@ViLjtrYw{Xi!uDI#E7I?^^uI#}=p%?O!pRscF?P+27K
zVcLG|ZjojIryZ~H8$bYYp<jM{dN1f1i3UWDf9^|=8>OpGji6;#L#9qvJ$*`rl)2K9
z6K88id)BLL#zLOkWK<&q1yJ8y5R5d(dqrF)w=&Q25!!=4gSP_o>k=D8s55d6cK?;@
zJ^N|Lku)JZvSl^ITK{`~WJA#QkWW9ZAnA@tGn@Fq?LDYN<5^K=>uhc$LBHJvMn){3
zWdY^34FDX|t^pBu=rm}P$yxedX@W>^LN6~EFHaauFBso~9^GK;*t9&5QmM{)|Js}C
zhp!9vJ|1Yr#bM3=EU2X?vV~#lin6!Mq@vUF-OtOS8;_(lS}1VaWt?_wuVj@X2(D$y
zUiqb^rOJ(C8AP9a#z8Kft8R(#SJ8>$ekT3D`U4=k-;;hNY~nl3Ih?2kFgLxE%CRRC
zOIBk7_k$Kp0e4=~Ox$1Tsb;-F|03T`AXl@%j6^woh#$*BA0yNktodCeMa<f}&S@+2
z$ZclrcA}-iBa~M(<q*XOXJd(7NA}YdI8BOi8`FW>e_5v}+rM%wG;`44&zv|NkOgvj
zc7(G}o)OtHhigqVC^l@uP;yTNd@`jK2o1dClW1@dnb+2JikG%W?$%4$g!sPPu@0|_
zQXwkv`(ya+s>8;)IG?>(lxO=*T;eW0#<ZgC_zj!i|8u@D{7%dF^?Nz;hFu`RjxqAL
z6?$9_EzinVRwR`AiMK@iE0qGLtHH?aOr1j_@Ng-v2Uj!)t|Z4Uy3A25lSMDH8OjO#
zK59LM#BOhm8T$6SY;7f*S`%OvYa={KXaP}xhgcyvlp(X4AWK$>M@Uz%2KnAjfK8ka
z8k{zZ72PLd$~OGF$7<1fSH%yj<l5U5BN9fB_!rQmA4?Zrt$@i8BCJ|spc6=JFqyq~
zfP7ChDUDcTV<^uYOnFymT!+KqZHMv3YXf|28P)&qd5u5m#pe7fEbZX)=`xyq{F3ow
zJCKpvxq9GSb63TbCWCs%IF>2&WgC{K-m_P2&!+g2ovTf89VDXF^3ikZ=hw?CVn55L
zWXBht`&^Z`tHZyiaV_gu?k>~ldL?_pBf?VeHqT;XAR2|;3}nt7Ds@n$(*^Xj8#k@A
zuC}(N&~Mi@yrkF+Ea0{d%sO;Q(pP=tZ*?&xYp5aLKP>k7FfYGahL_;6^nG-?cBwHl
zOK<1(O>_@Sh*_6TVP(}bn&yl)2m#iVl#ajcX|#U5T1jEeDap;CjtFEr_p)SLg|-&c
zfNIl0X8;PEQZK^b6MvmK^De}-caY}fqIy&1{i2ss7PjcsFBP+JTDi!nRazmX*90b8
zGn=4pD1lq6X*Ja(&ll%U6a0lL%|#ogQd;pnMt_bww_;jbK3b@STta*wUGf=RFI~y_
zn>HHcq_ZHLwmS0j+wH(sU`B`Vgfj!=>hC~ZRYmHr^38TBWROWf50Y?~V(|{NZMWSf
zZ7ixN?AhT`@b5D3n7Pp4Tz!@`+{MK=VLS<2ix(L*D9^b<zLF`74JTez;<98x?ci6V
z*Uc%F=%~h9boe8lB_4+!N3N^9+7XGG?JxQu(;*5L6w{>o^>2OZ^El8io2I`ez&++6
zf{Kh6=#{jrM19jUC>#Xcv;;$;{(lATW&_?UL0~Y&#Y7`!;;Y}Nl2@(<6=A)o>{qgm
zLf#S5*L6H7vt||?dtx5+C5G>Gj4p&s<3(X>2)WCJB8-y^$y-m688r(W_={+Zs$M57
z=YLMhV}2jCEpIC+C#uLxQQfYBwu%@*vKI1R{ShoKBH*Elf*oL*S{@OfdL2<36CeDg
z5_e_m`e>Yh^+R5|QIAHJKm98tBz3(l(Wo!k{sCAn9B$;=<(Kyy&8*wOCA55{NoCTy
zKFiCZdfXm4?6jWV3%MoBq*X~0Vd$|Ir8y6xT>HTj?24Q``w)r9+qc!)@VMG0=4qjg
z+W_OFX~-V)(n3L51VMn9)71vP!Q)xS&7wJQF2xDy3lNt-9MK#c%HJ4kpAHm-ovzM2
zxqKtnKhC&U9SVVXqeD#Pza_L1)dV+?^tSufEB*^T9&UQ#TJ}?l%2JGZx9x1BO^s-e
z=DmmGiz{r1nhG;`l3JgGcCC9Cf3@bITlC7-uxHg*3E%vRS2lPFL2WTO|4LB&>ru6f
zxE&%>8Dhb)^vrfTLGI$WQIMpea579E3PEfd?sHeXuE!BAe926R-lDowtU_OFshl;Q
zG~8G=XS0Now>f{H@d_#o8XU8`^v*Ij&^V5wNJKR{N>Ze=eox)KSo!XfCyI-ETb^~f
z*b9#G?^yciLQ<=mD?&Hn@La1cTC0y>^#&2-u;rTOU_GdivieR}vhb|AQFl1?#f$wO
z6pi#)n*dNcy26_aJ0Oadej^NRfSn4K-7b8!p<{UArk2!zVGJAV3QM4<H`zGXD#O#+
z5vhbw_=Q#LHmLqgXkP)&X=WW8y4zhnl5d1*dg1C60y$tJTF~$p3H6-Dmq=i5>|eR-
z9eVv_jvWQ@R0%f(u=Y?$Ey;asawkW~H%c9NV^KF&MKXLp>tF#~oJ&gK_fpq!l?T(v
zfb-nW3-K#*9UDm6<jpm4?jR-2URBXl9qTfd`EO_4!Kk)w#9I@m<`Zk&trUaBS9<zE
zt~iY+%NTTHI;gtnVDU<Z7H5p$6~uA=IuPuax^?TM^h?UdRn@AxN@(LMO0uJYFV@J9
zvEJk3L?@{QM;@JPW52mF;`w79Z*}4qY^`zjSvl#-`$xWGb#ChG<eyWpvV~}0kp<`K
zQCSs9v!!}8!1k=)IbG+DS3CE^)b|0g?IJl>mL26mT8hhf!O@j7Dt6CW6W<rA7SppF
zSW<)C;&|X3;AXkI)9l){efl?EWw>XKLq}C4y}A<~%T`WYX4W<ODhw`5{wkg8#Et(I
zGWjr_u0wkL?p~j#!}Bd>XU9$=fZ1Mr_bNGgeaavYK9W7-X1e{!X=5pLB*PBECbIN^
zGgNaEoE?Mm5Sj<oGX`P(qM1QAE~W=WGu1}8jS$o1pA~9EYjg%l8c|(2ZKefKgGie)
zOHN`9df!Q^3b3C@zqjFzBYRr1jRmsGi4o3#ZGvCZ83BTCsF8B_b|H3)p-=$C^8yuz
zA~jp5J5)@dj)?Cd9g?+I56q`H(Ob)mnD}hVl$d?VRMQOfADmb#5yF%@YOeCQ*@xcm
zjwTEs@g~h8i#OE>G!DiY6{<4W4?9zJv19|0ne38$qFFoSbwW3lv-6b-sqg81ilE>D
z-kmZ8&x8^}c0<*2b$p0sGPIu4tu7pj?tr)5Xyorots~}Y1)Jj*EY=deg+m=f2U_6}
zIaF4fhn}k1o;c<&A_5##8<-xO`1eSU2r>r-Nz%EEMVp-ugg`vAaBp(Ha`jD%_L(ON
zr>RhVKC9Qhl>uQNnRq)HvhCgpyhC#x^>X8WjaQ>PabZBm@i;G1P%PN-p?u1(kM%;>
zHJ^lsIHi?P9kZsWVl$}XWksRU{`z*W?0SLT@NdJlRhV<%@!d-@K<13kp?3W#Y;Fvb
z*I-STMN)S{OOf@7c9hIg)%blPiy?Ls`=aHuEPqXtT^CT7@o*+|Vsk%83@M{tgw_fK
z)xBuC_;PcSuA$Nbe`?k2RrRsV2x12LPtbhw_DNN<C8W7N6r>ZdjCPI$3tNNQXdlC1
zB&tk3{ZOYoDv8XXtMwO=pP7$B=dQh<V9gqY^3qf6`wQ_(liw6Gv!GQRCxkJ~xVpu#
zo~(bwZuW2|OG{^5a@q<Bki<rA2a?f+;vb;Klm{wHSIGd5s1y99l&dbH+^8x513Bs$
zCoCgQ%D+m9Q#DZTpPf0?oq!pKz7A>gn5*6P>lueyR_}>SuiF}qQL|(FKPtk<&UJ!|
z^DMn~1I2_scm3o_aAw}45VSwCinax~0<xL96+)Skj$<%2|AgQDTMEZ6knptw)lU>g
zT~Vry2GH;Pm>N>}#Ncy}BX_eJ#00}_7!bp~Y|}9D(o>l;y@q_8Y6$GZEpzZgpGn6w
zTUy3QNLGw~%3{f2$d(|~+~;PmK2N`B#kURL44r0VO7QJ%y}(wh->o_w+nHe=DaI}2
zv;O0b1doKaz$?`aolzzO@tp1>WX!`@vLp_pzz>vTsX$hwVGpPKg|nEd%rrS1#Y(93
zx*p|mR2DrU6qIWV#fR@r`N2>!|5Ph@{@7da0F@=xyxd|inNqupWoO>@A#>e)G@QqQ
zS_I;jkBU49yohNj$`4|7U|~o;&AcKfw!$h|xqs}JwCK69QA!S$a>(=cjsI9O)bezh
zo)sF!j9>O>0(3pOi|*My7+Lf)JW;f6$YiCw0$(Rvf@2Kh@(3B|>%<zqfEIKj&dsJE
z{ObV3o#DHQ`9u5Vqxe3U+Uqg#6MoOh0r?Z;Vai||{E_^QqHgEOn2`@S+1{OGD+H*k
z(?FETn<_jWH68TZv;k2kl@q5e;>)yglq~lSs)YP%LgK2EPxmml-gP|8ueqNs%dPo~
zO+k@o<sgDSFq&q>pHt=v17^!%l?;v2$-~brdnr;E2&HXpy4MoR^D(n?_mGJM|LmUK
z1&PzzYG}z4(_51@X!n7%1B-_a(Q80XdsLI1QA-spQ`K92I#%@*w@iMOMpjSEm<t+^
zOk^sdn<yt)qzGvijZ$u@e+%RSKv)w@wS<;8Mq!y@eqNGlu#D7H6;yEH>5$%?;|CeD
zSxCF`O=%Am@c)bSn9|1$bdM72aF(&>h;EkW<YfNxXDtJuC8UY=%(5pQd6l}E5MC>!
zm_qATjM~Wa4}a0#DU8JiW_PZ@U2;2D`C-X{(7uFMZTm083wSfeWE$`O8-(s}p_j7j
zr>TFZ6q2e!7+-X)>tF-9?!J;T-WtRF+?<!ogpJ_Diw#a%#WpD<X_uC<fu%!q@x2k7
z!24Lp8_IGT1wD{7rM?@~2Cqi)A#v(k;JyuiGK|R?Q28<>N>!-MI3GOZn-vEQYG)>u
zdcGe@e&k{W$}BQPvrptReYY&k{{B_6s-9z#<gH+PX@OK(j%A`bfKhnqwg%NLJc;EW
znfAzMLYbX$_u}H!K@iylB@$b<z_gzsmPfGNn`*|^m46I8dlsyLYn>6qy?BO6)g+d&
zG%#dM81P)wgqsT76E8Fo*01Y{*y77CQxHgTBS}mba9qj##S|n4O<ep!`{5Wz!Z*Eh
z2p!RFKwO}o@oAp0QpB>&Y$4s-{BOuaG*yJHXX5ZvfLQ}l;I8O^+f|m=YlAE^U$CoE
zBiqH7dtE?^cNTQVu2=9r)|2$*)7Xi-bG2$3u{7S?y`Mq1f<3>JA>G6^fpwZvl&6h;
z(uPtdPyO6)cW{MAM)UqQ4!uY`LZ+NeM9jy^e}z-9niAo`hZ{L(e7!8P(JJeQ%r?(f
zVq}33WV6fW&C-93^Y`Tnddtly;#oRJ{&e#YfGSO3OY3=S1u2bEkm=4y(l@Uc(fUdI
z?>Uh3AZQu=YV97;!X@!%Ja+uY6y6~H8rn49#-Hpf1nA=y=HWjRLzn3I`PZLQeq9&a
z&NHs(Mk^L`HXL;R-;gl<xFbUNN#>oCDPiW&*F+rh<_)gxt3Jo{P)Bq&(2owj3<sS#
z^tP!t2r%|+>HSOT`Vw$CmJ1<{BDTJK#_fNQJ;mW75{TrR<URCVM@wwYyu%XKf@VJk
zhtc!h<018+Mr95S<obNDj*5X{10q!n*XBi2k$KPsm{Xzui5xDyn5J;tmrjR%%W9qP
zS|66{BK$YIFp0r_oPoA}(@FL12`>&||MrM0@{ikY#Js4f@>IzM;qnWXVhD$)lL?ee
z&j`{zni@i?ee7L~h;@tU0@x$Lomi#j+l~0C()meM2tE|vZrXGeTxR(gYXUgF?<Yr3
zads~{9#=Hqx2dV7rlzUs1a&BTc+fYE7w+FMLq!o&*CY!fdtrRp&P5>`Js=w@sYeH}
zN^Z3CGYjqwG`2Tc3xtbgrsoJPV-V@<c5Z9aSI?8s4gX)#{MuA)&$Ri<z!U9m85pR5
z$?ZAcZ#0H3!P{V|S%<kNo`c$SvWYpOKr6#*b?j_3N)cuiNxHpyTahI2`0_scX3ak5
zV&bs(&wyvhAq4xq-Ou$2q`YKSbgvS)P1cuiJn)(*?RT-CdN~|P^HAB(C+NB1W6^lR
zz$h5&Kt6c2)hsrcUfH~0+Xx09pp)l_`*@4a^_s=CMdgFxx*lHpE$Y^;fWA*%$dfHW
zQ1J7jf*F(^vcn09i;j8(0X<ZdTl4Gvn46eRS`vMN!sn1I9YplsOS|en0#!vDPAv8%
z_xmXn`#{H&S<dYK%Uw9ud^o_~1$bAOC{rwps_Bljj)rtBGD0ye_7VlrC|J>ZS(a)T
zoL(ri13@LDS@qGKF8~bZvav3X1EO0Ep`wwTsbl+wzw-330$k9MlI&=E7_p-{5%4ZO
zF7A?vS{#UumKg__l58lPw}0p)5t>s`U6ckx<Py95>I>%kP}Bw0E?E>XHi2jBW4Ecg
zMBfx-=K{i(yqEQPYm!Qdv*0d$#IqEo&NZNOvVqw0CBHJ+U8tf$u?M;*gJtI7qH3cy
z<$F@5c%|HG1$Vh3NVs4AYJ`#j5y?3gVmYnfnIALcEpt`Js#A4@V4w-`{qKB%;Li6v
zfXL_`vhDC_L0CTW9bSI^TP$V!_Hk;_E_~)VXzT-Qu-wZ|X?1aPqVon3aC&2shj0J_
z^qR{s;fIIwQo~wjk!=E;wW8zG@tNUSlC4M^;NVch`R9!YCVyRcm_16TDtr~KVt7f9
zslRID^2K%7V+gbA)%Y7Xiw7f05cPJ7qq#dDFkw$5D)N&YpQfys+AX{hqo5UsHXK2I
zHF)X!_cMfiWin)okbro3B8L6Y8%iLek-Xe(zA<Oj$CI;D#oJFJ+^q7Svsar#uPV3c
z*eb+@*niE*nGE4yOeO!#UJwm7no{$kTfTFc5GQ>hJ#cc&K)wyVh1;R>dw+=HRq{7i
z1?S<)_}HUaWi*sGdWxWDhufH&FO}&wwq1azT$-bw<3R#MNn}>vqC%niK?H0K71QoZ
z94a1Jsk*=A5-h`|Tu(GhSVoCV{U3Dd5n9sjD_vBhlni#ZB5+)BZriL&i*>(A{v6<w
zKy^f1K%COBv`mDqZ&A7)BN$&Gm%uk}2Qp>$U}1fnkZ9cMW#kh9zUr3@H;PutM%^qY
z48~agu;7u5hflrTV^>O8N-qNfjHXAu%_i%(V{LQQnQe-fHUFDcD9>QMMJ*R>$$UUL
z{T}tYu=$)a(-eoCM}z-t9xP*t%!VX5?#E!dM#DM5bIzp<i!YH|&(Ne3f!oboBRCsd
zs^V-M<|({m-K1pX@$c5~LsZe!uHTp-0oC*)JtFt-RccC^%AC;dUFwT1G_2iU?6G&C
z0Bb8zZlU@wPy)U1EUKQh2$230ElREQZ%FRjdC8)t`FizKh?FvP_xg^fF+*77Yaj6W
zdKZ2_ReZoBt)Ki8{pN2`Pe>j|SoH(CSa_N^W7M&%*zh4x$6R}RYM7`TR4F4Ae1db5
zk9^2CJyCy5NcZTV@l)_q33!iWXwcJKgf8JVYHZ;ZQW8rGVUf&Z;w!VMm8NLT-)$pm
z)e7kP&OHYVP=$qvRFfnCxjgYJG{0g$sQ?Vu65G(fcfS2I-Vx$%f*m|k+$O(f7bv(2
zb8d|;-DSag=I#z}t0%X%bOPT7!>zP^-~q(<guq<eeI37r7!u#GWF6%81gHvBr~3&<
zrD~&#WM~Q~ICoiag69s`6Bh$hqNzdsdboY{(CeHZTol+p7@Ml`I?ttd3HUAW?*Ak(
zH1p!VomBVaYoPp*SOx^Q+MzFLpqV`+LzT89i&&4kk@6uJ?n~aO`yd411VY&a-_806
z+*0JnFGn58&J&aT#TMJ^hv0m`TR<2(W`1Z{Bg*44&&vva7nlnq4mEg^{pwj8U||CH
z0&W+DtC{Y<{ST+v_Ks2)#|-c{rYuQHT=YA~+M0p8I2h=}%sae&+@b-P5(fmZnNZFq
zC7zAXzS~q;7#IQP-760TxaNU|wINbBP!`E2W45Se)K6}q@B-27KVS`rRb^`NK$flw
z`OLC(@n<u%NMyKw%vYOTo$T<$31&K6w&z$sYYojn2Xa&>T5!!_XwX8-lmfHBz)LQX
zldG*3m2yLJCYo3TENRAA3Akbo*jhHmRr}h$P%CsYUqa{uZowy6?ijkc*~BGWz#K2!
zAKXf$MgkLy)NgZhmCVbHjK6syZ}3*MLt=WlR$u0-FARsKvDvN0TEYveVOekDV=5%q
zW8XGNe!|6jT3{^8v1_kO-uzI@bZ_Oh05sVNv$48Gs4uYby6>(~^hp>5ic#LL4%`ij
zQ_%j9K7V$ZIo1H)6=63v9aWBdcu<}ZGwtmNCA0qWp+4aqil>EJ@Wx)FUju%3IU~i?
zj$w3q_ZP`+u$Z<qQF<lF4u}RzGcgs0Qt{Tn>iK5BH?;Kow6p~9ch(L+EXdnPj7m-I
z{KQZjaHpt@Q^nSPuD`atZLZo|U8}ckIlkG;XD9Z$X;If>1?7DO>`#Kw=gMh&#f&yM
z`wc_?(3B^`(aiQT%~0?unaF984@vwuston5Bi39ZdfJkT)0&dtkZ_A3EKCj*F>ijR
z{1c}$%-=u(4_b*uS>g%|CxBi3t}lz`vwemybJpoX)&N{~;@;+YSZk<eK2@mP$rkiY
zX-ej)GZSmU*=8gbV0v;pz;AMpR$$c@*&ofJcjI5;9M}7y_uaA?oVZs~UuNpL)l;O8
z>O-uamqV=RUH!+1^9QE9CNec{)cXqHgVg2rQWz8V(-+FWjV0`};97uBd0Q^Ne{f7*
zT_e3R6`{w^aZD|wdBdYM{5x!mdkePnYFg<zYC<H*_B&EGRb9>Q$Z`{T)J{l>S={+&
zz+3mXq|dD3pox94qZ`WGrzGFEVc`!8icgOJf3eAP`u|<`JNMnte<hUhphlpe{s$|z
B8CU=S

literal 0
HcmV?d00001

diff --git a/test/test_data/haproxy.py b/test/test_data/haproxy.py
index 37f1565848..79fa920b79 100644
--- a/test/test_data/haproxy.py
+++ b/test/test_data/haproxy.py
@@ -19,7 +19,7 @@
         "package_name": "haproxy-1.8.4-2.fc28.x86_64.rpm",
         "product": "haproxy",
         "version": "1.8.4",
-        "other_products": ["gcc", "lua"],
+        "other_products": ["gcc"],
     },
     {
         "url": "https://mirrors.edge.kernel.org/centos/7/os/x86_64/Packages/",
@@ -33,7 +33,6 @@
         "package_name": "haproxy_2.6.6-1_arm64.deb",
         "product": "haproxy",
         "version": "2.6.6",
-        "other_products": ["lua"],
     },
     {
         "url": "https://downloads.openwrt.org/releases/packages-19.07/x86_64/packages/",
diff --git a/test/test_data/lua.py b/test/test_data/lua.py
index 9a17c5c247..235b9ff830 100644
--- a/test/test_data/lua.py
+++ b/test/test_data/lua.py
@@ -34,4 +34,10 @@
         "product": "lua",
         "version": "5.0.3",
     },
+    {
+        "url": "https://downloads.openwrt.org/releases/packages-19.07/x86_64/base/",
+        "package_name": "liblua5.1.5_5.1.5-3_x86_64.ipk",
+        "product": "lua",
+        "version": "5.1.5",
+    },
 ]
diff --git a/test/test_data/nmap.py b/test/test_data/nmap.py
index e65237a847..8423fe1411 100644
--- a/test/test_data/nmap.py
+++ b/test/test_data/nmap.py
@@ -24,7 +24,6 @@
         "package_name": "nmap_7.40-1_amd64.deb",
         "product": "nmap",
         "version": "7.40",
-        "other_products": ["lua"],
     },
     {
         "url": "https://downloads.openwrt.org/releases/packages-19.07/x86_64/packages/",
diff --git a/test/test_data/vim.py b/test/test_data/vim.py
index 4af0f1ce81..c72116105f 100644
--- a/test/test_data/vim.py
+++ b/test/test_data/vim.py
@@ -27,7 +27,6 @@
         "package_name": "vim-enhanced-9.0.1429-1.fc38.aarch64.rpm",
         "product": "vim",
         "version": "9.0.1429",
-        "other_products": ["lua"],
     },
     {
         "url": "http://ftp.de.debian.org/debian/pool/main/v/vim/",
diff --git a/test/test_data/wireshark.py b/test/test_data/wireshark.py
index a5cb5e3ae0..f1820584e7 100644
--- a/test/test_data/wireshark.py
+++ b/test/test_data/wireshark.py
@@ -40,6 +40,5 @@
         "package_name": "libwireshark16_4.0.3-1_amd64.deb",
         "product": "wireshark",
         "version": "4.0.3",
-        "other_products": ["lua"],
     },
 ]