diff options
author | Konstantin Shemyak <konstantin.shemyak@ge.com> | 2018-02-19 16:35:54 +0200 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-02-24 10:31:35 +0000 |
commit | 17db210975c740aff12732c511cf4fb32b507365 (patch) | |
tree | 373dc25bbe901fd58150e9cff52d090b1b2a4f53 /meta/recipes-devtools/cve-check-tool | |
parent | bff4ad7d6f62131a9b91a4063600e6f3edb8843c (diff) | |
download | openembedded-core-contrib-17db210975c740aff12732c511cf4fb32b507365.tar.gz |
cve-check-tool: correctly exported web proxies
The binary 'cve-check-update' downloads the CVE database from the Internet.
If the system is behind a web proxy, the download fails, as proxy-related
variables are not exported.
In turn, 'cve-check-tool' does not connect to the network and correspondingly
does not need exported proxies.
Exported all proxy-related environment variables to 'cve-check-update' and
removed the unneeded export from 'cve-check-tool'.
Signed-off-by: Konstantin Shemyak <konstantin.shemyak@ge.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Diffstat (limited to 'meta/recipes-devtools/cve-check-tool')
-rw-r--r-- | meta/recipes-devtools/cve-check-tool/cve-check-tool_5.6.4.bb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-devtools/cve-check-tool/cve-check-tool_5.6.4.bb b/meta/recipes-devtools/cve-check-tool/cve-check-tool_5.6.4.bb index 7b70daa323..1c84fb1cf2 100644 --- a/meta/recipes-devtools/cve-check-tool/cve-check-tool_5.6.4.bb +++ b/meta/recipes-devtools/cve-check-tool/cve-check-tool_5.6.4.bb @@ -41,6 +41,7 @@ do_populate_cve_db() { [ -z "${cve_dir}" ] && cve_dir="${DL_DIR}/CVE_CHECK" [ -z "${cve_file}" ] && cve_file="${TMPDIR}/cve_check" + unused="${@bb.utils.export_proxies(d)}" bbdebug 2 "Updating cve-check-tool database located in $cve_dir" # --cacert works around curl-native not finding the CA bundle if cve-check-update --cacert ${sysconfdir}/ssl/certs/ca-certificates.crt -d "$cve_dir" ; then |