diff options
| author |   Khem Raj <raj.khem@gmail.com> | 2020-07-09 00:07:48 +0300 |
|---|---|---|
| committer |   Anuj Mittal <anuj.mittal@intel.com> | 2020-07-17 09:36:48 +0800 |
| commit | 4b65abc70e84187f666e2ea2ab4dcf6bf7216658 (patch) | |
| tree | 746f2a747465ed3f1983954c8c955915c7fefcfc | |
| parent | 693caddd3b62d0bcb76ec6d3d6faa6561b763598 (diff) | |
| download | openembedded-core-contrib-4b65abc70e84187f666e2ea2ab4dcf6bf7216658.tar.gz | |
cve-check: Run it after do_fetch
Certain recipes e.g. bash readline ( from meta-gplv2 ) download patches instead of having them in
metadata, this could fail cve_check
ERROR: readline-5.2-r9 do_cve_check: File Not found: qemuarm/build/../downloads/readline52-001
This patch ensures that download is done before running CVE scan, even
though these will be external patches and may not contain CVE tags as it
expects, but it will fix the run failures as seen above
(From OE-Core rev: dbf143d79476e54e8da93101fc16eaedeec88362)
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit e406fcb6c609a0d2456d7da0d2406d2d9fa52dd2)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Adrian Bunk <bunk@stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
| -rw-r--r-- | meta/classes/cve-check.bbclass | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass index 2a530a0489..556ac6e67f 100644 --- a/meta/classes/cve-check.bbclass +++ b/meta/classes/cve-check.bbclass @@ -65,7 +65,7 @@ python do_cve_check () { } -addtask cve_check before do_build +addtask cve_check before do_build after do_fetch do_cve_check[depends] = "cve-update-db-native:do_populate_cve_db" do_cve_check[nostamp] = "1" |