cve-check: Allow multiple entries in CVE_PRODUCT

There are both "curl" and "libcurl" CPEs in NVD. All "curl" CVEs are currently missing in the reports. Hence, switch "CVE_PRODUCT" to a space separated list. It is useful for recipes generating several packages, that have different product names in NVD. (From OE-Core rev: 404f75e026393ddc55da87f6f04fb1201cff4e11) (From OE-Core rev: 667d5e77e1ce0f0e531ed87f6fc30e1d65b16759) Signed-off-by: Grygorii Tertychnyi <gtertych@cisco.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Grygorii Tertychnyi <gtertych@cisco.com> 2018-10-29 17:13:10 +0200
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2018-11-16 16:33:08 +0000
commit: cd1157b658e5f505432e4a8ec737cb98e4ac3213 (patch)
tree: d974dfbf4a7339b014ed97455869218f5da71065 /meta/classes
parent: 2492836a2b9d624abd27d9d0885b7e7417cf7f1e (diff)
download: poky-cd1157b658e5f505432e4a8ec737cb98e4ac3213.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass
index 12ad3e5c5c..743bc08a4f 100644
--- a/meta/classes/cve-check.bbclass
+++ b/meta/classes/cve-check.bbclass
@@ -190,7 +190,8 @@ def check_cves(d, patched_cves):
        # Write the faux CSV file to be used with cve-check-tool
        fd, faux = tempfile.mkstemp(prefix="cve-faux-")
        with os.fdopen(fd, "w") as f:
-            f.write("%s,%s,%s," % (bpn, pv, cves))
+            for pn in bpn.split():
+                f.write("%s,%s,%s,\n" % (pn, pv, cves))
        cmd.append(faux)
        output = subprocess.check_output(cmd).decode("utf-8")
author	Grygorii Tertychnyi <gtertych@cisco.com>	2018-10-29 17:13:10 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2018-11-16 16:33:08 +0000
commit	cd1157b658e5f505432e4a8ec737cb98e4ac3213 (patch)
tree	d974dfbf4a7339b014ed97455869218f5da71065 /meta/classes
parent	2492836a2b9d624abd27d9d0885b7e7417cf7f1e (diff)
download	poky-cd1157b658e5f505432e4a8ec737cb98e4ac3213.tar.gz

diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass index 12ad3e5c5c..743bc08a4f 100644 --- a/meta/classes/cve-check.bbclass +++ b/meta/classes/cve-check.bbclass
@@ -190,7 +190,8 @@ def check_cves(d, patched_cves):
190	# Write the faux CSV file to be used with cve-check-tool	190	# Write the faux CSV file to be used with cve-check-tool
191	fd, faux = tempfile.mkstemp(prefix="cve-faux-")	191	fd, faux = tempfile.mkstemp(prefix="cve-faux-")
192	with os.fdopen(fd, "w") as f:	192	with os.fdopen(fd, "w") as f:
193	f.write("%s,%s,%s," % (bpn, pv, cves))	193	for pn in bpn.split():
		194	f.write("%s,%s,%s,\n" % (pn, pv, cves))
194	cmd.append(faux)	195	cmd.append(faux)
195		196
196	output = subprocess.check_output(cmd).decode("utf-8")	197	output = subprocess.check_output(cmd).decode("utf-8")