[OE-core] [PATCH] cve-check: show whitelisted status
Adrian Bunk
bunk at stusta.de
Sun Mar 8 12:22:20 UTC 2020
On Fri, Mar 06, 2020 at 10:27:26AM +0800, chee.yang.lee at intel.com wrote:
> From: Chee Yang Lee <chee.yang.lee at intel.com>
>
> change whitelisted CVE status from "Patched" to "Whitelisted".
>...
Thanks a lot for working on this.
>...
> index 7412436..7f98da6 100644
> --- a/meta/classes/cve-check.bbclass
> +++ b/meta/classes/cve-check.bbclass
> @@ -56,10 +56,10 @@ python do_cve_check () {
> patched_cves = get_patches_cves(d)
> except FileNotFoundError:
> bb.fatal("Failure in searching patches")
> - patched, unpatched = check_cves(d, patched_cves)
> + whitelisted, patched, unpatched = check_cves(d, patched_cves)
>...
Unfortunately this doesn't work:
$ . oe-init-build-env
$ echo 'INHERIT += "cve-check"' >> conf/local.conf
$ bitbake core-image-minimal
...
ERROR: glibc-locale-2.31-r0 do_cve_check: Error executing a python function in exec_python_func() autogenerated:
The stack trace of python calls that resulted in this exception/failure was:
File: 'exec_python_func() autogenerated', lineno: 2, function: <module>
0001:
*** 0002:do_cve_check(d)
0003:
File: '/tmp/poky/meta/classes/cve-check.bbclass', lineno: 59, function: do_cve_check
0055: try:
0056: patched_cves = get_patches_cves(d)
0057: except FileNotFoundError:
0058: bb.fatal("Failure in searching patches")
*** 0059: whitelisted, patched, unpatched = check_cves(d, patched_cves)
0060: if patched or unpatched:
0061: cve_data = get_cve_info(d, patched + unpatched)
0062: cve_write_data(d, patched, unpatched, whitelisted, cve_data)
0063: else:
Exception: ValueError: not enough values to unpack (expected 3, got 2)
ERROR: Logfile of failure stored in: /tmp/poky/build/tmp/work/core2-64-poky-linux/glibc-locale/2.31-r0/temp/log.do_cve_check.3713
ERROR: Task (/tmp/poky/meta/recipes-core/glibc/glibc-locale_2.31.bb:do_cve_check) failed with exit code '1'
cu
Adrian
More information about the Openembedded-core
mailing list