[v4,4/6] cve_check: Update selftest with new status detail

Message ID	20240812040911.13096-4-marta.rybczynska@syslinbit.com
State	Accepted, archived
Commit	ea7681ffc15cac970c395daab56ba264ac406cd6
Headers	show Return-Path: <rybczynska@gmail.com> ip: 209.85.221.54, mailfrom: rybczynska@gmail.com) From: Marta Rybczynska <rybczynska@gmail.com> To: openembedded-core@lists.openembedded.org Cc: Samantha Jalabert <samantha.jalabert@syslinbit.com>, Marta Rybczynska <marta.rybczynska@syslinbit.com> Subject: [PATCH v4][OE-core 4/6] cve_check: Update selftest with new status detail Date: Mon, 12 Aug 2024 06:09:09 +0200 Message-ID: <20240812040911.13096-4-marta.rybczynska@syslinbit.com> In-Reply-To: <20240812040911.13096-1-marta.rybczynska@syslinbit.com> References: <20240812040911.13096-1-marta.rybczynska@syslinbit.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[v4,1/6] cve-check: encode affected product/vendor in CVE_STATUS \| expand [v4,1/6] cve-check: encode affected product/vendor in CVE_STATUS [v4,2/6] cve-extra-inclusions: encode CPEs of affected packages [v4,3/6] cve-check: annotate CVEs during analysis [v4,4/6] cve_check: Update selftest with new status detail [v4,5/6] vex.bbclass: add a new class [v4,6/6] cve-check-map: add new statuses

Message ID

20240812040911.13096-4-marta.rybczynska@syslinbit.com

State

Accepted, archived

Commit

ea7681ffc15cac970c395daab56ba264ac406cd6

Headers

From: Marta Rybczynska <rybczynska@gmail.com>
To: openembedded-core@lists.openembedded.org
Cc: Samantha Jalabert <samantha.jalabert@syslinbit.com>,
	Marta Rybczynska <marta.rybczynska@syslinbit.com>
Subject: [PATCH v4][OE-core 4/6] cve_check: Update selftest with new status
 detail
Date: Mon, 12 Aug 2024 06:09:09 +0200
Message-ID: <20240812040911.13096-4-marta.rybczynska@syslinbit.com>
In-Reply-To: <20240812040911.13096-1-marta.rybczynska@syslinbit.com>
References: <20240812040911.13096-1-marta.rybczynska@syslinbit.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[v4,1/6] cve-check: encode affected product/vendor in CVE_STATUS | expand

Commit Message

Marta Rybczynska Aug. 12, 2024, 4:09 a.m. UTC

From: Samantha Jalabert <samantha.jalabert@syslinbit.com>

Signed-off-by: Samantha Jalabert <samantha.jalabert@syslinbit.com>
Signed-off-by: Marta Rybczynska <marta.rybczynska@syslinbit.com>
---
 meta/lib/oeqa/selftest/cases/cve_check.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/meta/lib/oeqa/selftest/cases/cve_check.py b/meta/lib/oeqa/selftest/cases/cve_check.py
index 60cecd1328..a40272c919 100644
--- a/meta/lib/oeqa/selftest/cases/cve_check.py
+++ b/meta/lib/oeqa/selftest/cases/cve_check.py
@@ -217,9 +217,10 @@  CVE_CHECK_REPORT_PATCHED = "1"
             # m4 CVE should not be in logrotate
             self.assertNotIn("CVE-2008-1687", found_cves)
             # logrotate has both Patched and Ignored CVEs
+            detail = "version-not-in-range"
             self.assertIn("CVE-2011-1098", found_cves)
             self.assertEqual(found_cves["CVE-2011-1098"]["status"], "Patched")
-            self.assertEqual(len(found_cves["CVE-2011-1098"]["detail"]), 0)
+            self.assertEqual(found_cves["CVE-2011-1098"]["detail"], detail)
             self.assertEqual(len(found_cves["CVE-2011-1098"]["description"]), 0)
             detail = "not-applicable-platform"
             description = "CVE is debian, gentoo or SUSE specific on the way logrotate was installed/used"