cve_check: skip remote patches that haven't been fetched when searching for CVE tags - linux/poky.git

diff options

author	Ross Burton <ross.burton@arm.com>	2022-04-27 12:43:39 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-05-04 13:07:31 +0100
commit	498bbee789f0b3b3a827e7b6914dfa9de764b1be (patch)
tree	d1a42ae8e9aa7af49ace6130d56a5cef5dcbecb1 /scripts/lib/devtool/deploy.py
parent	ed9500ddb6a39dbb4133494a778e59308acf3857 (diff)
download	poky-498bbee789f0b3b3a827e7b6914dfa9de764b1be.tar.gz

cve_check: skip remote patches that haven't been fetched when searching for CVE tags

If a remote patch is compressed we need to have run the unpack task for the file to exist locally. Currently cve_check only depends on fetch so instead of erroring out, emit a warning that this file won't be scanned for CVE references. Typically, remote compressed patches won't contain our custom tags, so this is unlikely to be an issue. (From OE-Core rev: b52a508bd7693c40e6416db9c9076a8789499501) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit cefc8741438c91f74264da6b59dece2e31f9e5a5) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/devtool/deploy.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: