[OE-core] [PATCH 0/3] Add initial capability to check CVEs for recipes
Mikko.Rapeli at bmw.de
Mikko.Rapeli at bmw.de
Wed Mar 2 06:32:52 UTC 2016
On Tue, Mar 01, 2016 at 09:15:37AM -0600, Mariano Lopez wrote:
>
>
> On 02/29/2016 08:19 AM, Mikko.Rapeli at bmw.de wrote:
> >On Mon, Feb 29, 2016 at 02:17:26PM +0000, Burton, Ross wrote:
> >>On 26 February 2016 at 08:14, <Mikko.Rapeli at bmw.de> wrote:
> >>
> >>>17:45:37 *** 0013: with open(patch_file, "r") as f:
> >>>17:45:37 0014: patch_text = f.read()
> >>>17:45:37 0015:
> >>>17:45:37 0016: # Search for the "CVE: " line
> >>>17:45:37 0017: match = cve_match.search(patch_text)
> >>>17:45:37 Exception: IOError: [Errno 2] No such file or directory:
> >>>'/home/builder/src/base/build/tmp/work/corei7-64-linux/mailx/12.5-r2/heirloom-mailx_12.5-1.diff'
> >>>17:45:37
> >>>17:45:37 ERROR: Function failed: do_cve_check
> >>>
> >>>So could this be caused by cve-check changes or is this just a side effect
> >>>of some other recipe problems?
> >>>
> >>Do you have rm_work enabled?
> >Yes.
> >
> >-Mikko
>
> I think I have found the problem, when you do devshell it will execute
> do_unpack and the cve_check task must run after that for some recipes. Try
> this:
>
> addtask cve_check after do_unpack before do_build
Thanks, with this change the scan builds pass on dizzy.
-Mikko
More information about the Openembedded-core
mailing list