From patchwork Wed May 11 14:36:11 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Akash Hadke X-Patchwork-Id: 7902 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 047CDC433EF for ; Wed, 11 May 2022 14:37:18 +0000 (UTC) Received: from IND01-BMX-obe.outbound.protection.outlook.com (IND01-BMX-obe.outbound.protection.outlook.com [40.107.239.48]) by mx.groups.io with SMTP id smtpd.web11.159.1652279830937914898 for ; Wed, 11 May 2022 07:37:11 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@kpit.com header.s=selector1 header.b=FtDIoPhR; spf=pass (domain: kpit.com, ip: 40.107.239.48, mailfrom: akash.hadke@kpit.com) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EtZdmAu1+iJ7l2ttsckdoMj/ty6RWVNBIFg/+y1BP3f3pe93Y5vgIeauAAHtOAcIcsu7xt/ibul9oH2ZKaEJY37zLAFHffkmtQoXPxA5NvABUjYJ3VjLYODuvzJ+KPvvZTyjwLkSGlrmkBBjLtehrOueIlemFaSwAIjDdHnzCpYEr+FUw0ED9zSbDx9L7gGUcOkpXOWyB8WK50bE1ubR7qPaI8wFccTBIjgWpdZO0WGHIVmz0+fUTr0fJC5bya5BD1s3qoQeIA1RPOgk5sYvPro9lN3C5V+9lw4JAHNmYkzU18+4qYKGywiy5wgXCXcteuQRetH8Nb9wHuKCBZ2XTg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=t2tFildmIZgWjoYfhLwddSuHQpPChNHb9MFnUcIN0ug=; b=mpTyyf/REFIb04/7S4suI39IOSng8mbLjMfofVL3uyN+64wdjwEsA2gpd1phz5gyaVqrxv1bkCIJO2nJn9JJp1I0e3m4Ny/g1auf6fDlBlFm+hxDEPRYfMVHp7dw+API56yyb76LFXa1yR8o5LSkdcmMqZ2+cNWO/42coq0Z6AFO2WVG+V/VFYkSTB5XGyBlfM0GiU4AHJDULCc0o0/JEDiqGhQuwE5vIZPyTz7gVr00WLS3c6RFIPm2ENtM7jjFxVcbVKa9GJB+Who7SsJImnOA+1XufEuBGjS+Piykamln20WQ9b9BRn3h4zicEazZKa2GSl3JsyAtWWXlKDRl2w== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=kpit.com; dmarc=pass action=none header.from=kpit.com; dkim=pass header.d=kpit.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kpit.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=t2tFildmIZgWjoYfhLwddSuHQpPChNHb9MFnUcIN0ug=; b=FtDIoPhRCj8bHghxR03eX0x1AO/OYwnssQs+mKYCDrFJ5+8+HXtxoqLRw97Z/UcRsYa68gGYjfrR+GsgiM9OSve33nzVqK0gH52GY9sOgfhQ0ZlKo6g1ak2pcIxPhoJXK7/dBdCeDpNFM+5XfY+aAXvjLQ/xGGOsBxiLh3RUG/s= Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=kpit.com; Received: from PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:89::13) by MA0PR01MB5642.INDPRD01.PROD.OUTLOOK.COM (2603:1096:a01:6b::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5227.20; Wed, 11 May 2022 14:37:04 +0000 Received: from PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM ([fe80::8119:8287:2cf2:7125]) by PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM ([fe80::8119:8287:2cf2:7125%6]) with mapi id 15.20.5227.023; Wed, 11 May 2022 14:37:04 +0000 From: Akash Hadke To: openembedded-core@lists.openembedded.org Cc: ranjitsinh.rathod@kpit.com, Akash Hadke Subject: [poky][master][PATCH 1/3] cve_check.py: Add new method get_ignored_cves Date: Wed, 11 May 2022 16:36:11 +0200 Message-Id: <20220511143613.25002-1-akash.hadke@kpit.com> X-Mailer: git-send-email 2.17.1 X-ClientProxiedBy: AM6P193CA0073.EURP193.PROD.OUTLOOK.COM (2603:10a6:209:88::14) To PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:89::13) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 2ba022d0-81a9-4d46-89aa-08da335bb763 X-MS-TrafficTypeDiagnostic: MA0PR01MB5642:EE_ X-Microsoft-Antispam-PRVS: X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230001)(4636009)(366004)(52116002)(86362001)(36756003)(6486002)(6916009)(1076003)(38350700002)(38100700002)(6506007)(4326008)(8676002)(66476007)(66556008)(66946007)(44832011)(5660300002)(2616005)(2906002)(186003)(26005)(6666004)(6512007)(8936002)(498600001);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: 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 X-OriginatorOrg: kpit.com X-MS-Exchange-CrossTenant-Network-Message-Id: 2ba022d0-81a9-4d46-89aa-08da335bb763 X-MS-Exchange-CrossTenant-AuthSource: PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 May 2022 14:37:04.0484 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 3539451e-b46e-4a26-a242-ff61502855c7 X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: 9gIT3O1tgaEgVqm/d85uOnVBIxKn6KiJVmvuUKnQvC6LyZ+EGC6TssVgzm39eiFxOY/wbnFdg0EgjpeC8bhzVg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: MA0PR01MB5642 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Wed, 11 May 2022 14:37:18 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/165500 Add new method get_ignored_cves in cve_check.py to get ignored CVEs from recipe by excluding distro-wide ignored CVEs from meta/conf/distro/include/cve-extra-exclusions.inc While calling this method use below code to get argument values paths = d.getVar('PATH').split(':') cves = d.getVar('CVE_CHECK_IGNORE').split() Signed-off-by: Akash Hadke Signed-off-by: Akash Hadke --- meta/lib/oe/cve_check.py | 38 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) diff --git a/meta/lib/oe/cve_check.py b/meta/lib/oe/cve_check.py index dc7d2e2826..d96d47b737 100644 --- a/meta/lib/oe/cve_check.py +++ b/meta/lib/oe/cve_check.py @@ -163,3 +163,41 @@ def cve_check_merge_jsons(output, data): return output["package"].append(data["package"][0]) + +def get_ignored_cves(paths, cves): + """ + Get ignored CVEs from the recipe and exlude the CVEs from + meta/conf/distro/include/cve-extra-exclusions.inc + + While calling this method use below code to get argument values + paths = d.getVar('PATH').split(':') + cves = d.getVar('CVE_CHECK_IGNORE').split() + """ + import os + + cve_extra_exclusion_inc_file = "../meta/conf/distro/include/cve-extra-exclusions.inc" + for path in paths: + check_for_correct_file_path = os.path.join(path, cve_extra_exclusion_inc_file) + if os.path.isfile(check_for_correct_file_path): + inc_file = check_for_correct_file_path + else: + continue + + cve_check_ignored = set() + ignored_cves = set() + with open(inc_file) as f: + lines = f.readlines() + for line in lines: + if line.strip(): + # Ignore the comments from cve-extra-exclusions.inc + if not re.search("^#", line): + cve_match = re.findall(r'CVE\-\d{4}\-\d+', line) + for cve in cve_match: + ignored_cves.add(cve) + + for cve in cves: + if cve not in ignored_cves: + cve_check_ignored.add(cve) + ignored_cves_from_recipe = " ".join(cve_check_ignored) + + return ignored_cves_from_recipe From patchwork Wed May 11 14:36:12 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Akash Hadke X-Patchwork-Id: 7903 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 0D6E9C433F5 for ; Wed, 11 May 2022 14:37:18 +0000 (UTC) Received: from IND01-MA1-obe.outbound.protection.outlook.com (IND01-MA1-obe.outbound.protection.outlook.com [40.107.138.59]) by mx.groups.io with SMTP id smtpd.web09.141.1652279834107446530 for ; Wed, 11 May 2022 07:37:15 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@kpit.com header.s=selector1 header.b=kRcnmvbM; spf=pass (domain: kpit.com, ip: 40.107.138.59, mailfrom: akash.hadke@kpit.com) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YYTXkXbW3KviAO/gOnvUD+tQpZXW1vREIcOPM2RyISQXtTPywPsVxh/WSTG6k2n+MKhNtgZIkTM8mGRWD/l3SY1ESqCIBn3riNpLhxRn/Zvd6UkSH60sDaUL9/F16gOS9sS9zW9lSGHltv6rxvY3A8DwQsYusfoxCvPsTzrRTZjI/FF2vWIKMH9332oWkYy12VUsnrUeF2raXE9dCty5uviycVlgCt0LafZvFZH1WHkMEBzV2MbekgkJd01GM0v4XHJTnCO2LlrS4Cjqm77ApfcD8+GA603Ari3a7OMS1kRtD1VaMiSseBuE7T+gsJ6Elqhv221ModMSv8M/vN11JA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=NbA2KQHsG2qJrLmwOfLyi/JWZYBulV9VQ8dgJuIXPlI=; b=Ju/sUuZ5brm9d3JrF89YtBcr8OetVnrBua5m6M9mP7yn24ZobyJXH01+dJtMyEWKm6ndFCwCGQ9VbgGV01VPfo2JZB31saNlhQGYn61fRj99iqJ8mJfn6ZNo06LL+YM6lCms81ju90xwIve6CY5gNfLXRXeCOYdBtPMRIXL4JIqia7IbGEPCZD+VKpnhFDUMCHH0xJc80aUg7W3ZrmEyC7xl5Ex3n4TRWIWtkAgn9kkBCADbhcS/O/zR1qhXJbGKqpOaHrhRqtma6GtiBJPL5a9UbPIKGbMoeHRGIqN92T5RbWU1bIzC0HyCXa6Tn9CPSC+zxwpWPp8jJTQwyz+wKg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=kpit.com; dmarc=pass action=none header.from=kpit.com; dkim=pass header.d=kpit.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kpit.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NbA2KQHsG2qJrLmwOfLyi/JWZYBulV9VQ8dgJuIXPlI=; b=kRcnmvbMYxLtNPBqXUl7BQeiXrokN5JwNgmxVL2VIgfIKU4gSP3PHQ956yHeHXADG3ZlIAO9o/CYnPWxqrFyS+v40YMeqTDzAndu/4oyLT4tP0ixkkzdit0tE6FjJ2JtExKtMXNtuEtkcWvBlXWTH4CjKMnWC6Hrk7DZCYIJ7s0= Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=kpit.com; Received: from PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:89::13) by MA1PR01MB2187.INDPRD01.PROD.OUTLOOK.COM (2603:1096:a00:37::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5227.18; Wed, 11 May 2022 14:37:05 +0000 Received: from PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM ([fe80::8119:8287:2cf2:7125]) by PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM ([fe80::8119:8287:2cf2:7125%6]) with mapi id 15.20.5227.023; Wed, 11 May 2022 14:37:05 +0000 From: Akash Hadke To: openembedded-core@lists.openembedded.org Cc: ranjitsinh.rathod@kpit.com, Akash Hadke Subject: [poky][master][PATCH 2/3] cve-export.bbclass: Add a new class to get patched and ignored CVEs from the build Date: Wed, 11 May 2022 16:36:12 +0200 Message-Id: <20220511143613.25002-2-akash.hadke@kpit.com> X-Mailer: git-send-email 2.17.1 In-Reply-To: <20220511143613.25002-1-akash.hadke@kpit.com> References: <20220511143613.25002-1-akash.hadke@kpit.com> X-ClientProxiedBy: AM6P193CA0073.EURP193.PROD.OUTLOOK.COM (2603:10a6:209:88::14) To PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:89::13) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: fbee99bc-af30-4c38-1eb9-08da335bb833 X-MS-TrafficTypeDiagnostic: MA1PR01MB2187:EE_ X-Microsoft-Antispam-PRVS: X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230001)(4636009)(366004)(26005)(38100700002)(2616005)(6512007)(4326008)(36756003)(6916009)(8676002)(186003)(1076003)(316002)(66556008)(66476007)(66946007)(6666004)(508600001)(86362001)(6506007)(5660300002)(2906002)(8936002)(6486002)(38350700002)(52116002)(44832011);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: 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 X-OriginatorOrg: kpit.com X-MS-Exchange-CrossTenant-Network-Message-Id: fbee99bc-af30-4c38-1eb9-08da335bb833 X-MS-Exchange-CrossTenant-AuthSource: PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 May 2022 14:37:05.4556 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 3539451e-b46e-4a26-a242-ff61502855c7 X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: F0HsNjFOP73z5aBHqxHwX4Xgkv2qNzuQ/1eNjA7cBXDSMsZ7J2Z8cy+RsFUVUTI1vXMqvKJ8KxMgByxGsN0GPA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: MA1PR01MB2187 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Wed, 11 May 2022 14:37:18 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/165502 This class executes an anonymous function which sets the below variables CVE_IGNORED = CVEs that are ignored in recipes CVE_PATCHED = CVEs that are fixed by applying patches It does not consider CVEs that are ignored in poky/meta/conf/distro/include/cve-extra-exclusions.inc and only provide CVEs that are ignored in the recipe. Default values are set for CVE_PRODUCT and CVE_VERSION to BPN and PV respectively. Considered setting these values so that anyone can get below information about the CVE from the build. CVE_PRODUCT CVE_VERSION CVE_IGNORED CVE_PATCHED Signed-off-by: Akash Hadke Signed-off-by: Akash Hadke --- meta/classes/cve-export.bbclass | 37 +++++++++++++++++++++++++++++++++ 1 file changed, 37 insertions(+) create mode 100644 meta/classes/cve-export.bbclass diff --git a/meta/classes/cve-export.bbclass b/meta/classes/cve-export.bbclass new file mode 100644 index 0000000000..5ed5760970 --- /dev/null +++ b/meta/classes/cve-export.bbclass @@ -0,0 +1,37 @@ +# This class is used to get patched and ignored CVEs from the build +# +# To use this class inherit it in the local.conf file. +# +# It executes an anonymous function which sets below variables +# +# CVE_IGNORED = CVEs those are ignored in recipes +# CVE_PATCHED = CVEs those are fixed by applying patches +# +# It does not consider all the CVEs that are ignored in +# poky/meta/conf/distro/include/cve-extra-exclusions.inc +# and only provide CVEs that are ignored in the recipe. +# +# The product name sets default to BPN and version sets default to +# PV but it can be overriden per recipe, to get the value of +# product and version use d.getVar() + +CVE_PRODUCT ??= "${BPN}" +CVE_VERSION ??= "${PV}" +CVE_CHECK_IGNORE ?= "" + +python __anonymous () { + import re + from oe.cve_check import get_patched_cves + from oe.cve_check import get_ignored_cves + + # Check if cve-extra-exclusions.inc file is included or not + if re.search('cve-extra-exclusions.inc', d.getVar('BBINCLUDED')): + paths = d.getVar('PATH').split(':') + cves = d.getVar('CVE_CHECK_IGNORE').split() + ignored_cves = get_ignored_cves(paths, cves) + else: + ignored_cves = " ".join(d.getVar('CVE_CHECK_IGNORE')) + + d.setVar('CVE_IGNORED', ignored_cves) + d.setVar('CVE_PATCHED', " ".join(get_patched_cves(d))) +} From patchwork Wed May 11 14:36:13 2022 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Akash Hadke X-Patchwork-Id: 7901 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id 1E547C433FE for ; Wed, 11 May 2022 14:37:18 +0000 (UTC) Received: from IND01-MA1-obe.outbound.protection.outlook.com (IND01-MA1-obe.outbound.protection.outlook.com [40.107.138.59]) by mx.groups.io with SMTP id smtpd.web09.141.1652279834107446530 for ; Wed, 11 May 2022 07:37:14 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@kpit.com header.s=selector1 header.b=F/YVDwk3; spf=pass (domain: kpit.com, ip: 40.107.138.59, mailfrom: akash.hadke@kpit.com) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MVCrgo3CIj7wv7Jr0bNetq0mfgIRVOgC/a2b8kBwoiRVlJL48QKuJ8J4Xn4JUS9TM3HLZxRquqZKQMvHyR6UpAQozJJ3RLIlAWbzUT17TaXBmHxFyAX3HNQLKOvmqiJj4/MtgcqXGwXSBHznpcqVy8mi69ltepNwh3GmlZ4OgjzcxPt1gfRFNvrdIybn+mCbkhJ2bbX0NWVGC7DY6gbuudPF7/FaWO6rwFcknl1u++Z/wwAlrFoRJANtCO3LO44FbLcSXNO2yo7oAdnX5BZBGgCIoKvO5mh5zejj6iXLKGS0U0hq/i3aw91SMSnowBNGGT2/yQL5dlB8O4sQcYlKaA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=JBXM3+3dDgd0QFGnom4igGnltCowje91n0/e1Xe1r6o=; b=Mi32goxlp2agepDy65VRZWaLzjk3fKEM10zFGEvdCyjbzuCC8wfB3syifboBgFoyB4AVXVv7B2lg4h7srf3gqjMkNNIkRhWyy7fITOeiEKcPjr7liPv9PNtlqSwXJ/+8vLGbulvwUwfEh0FrKhdIAMRFVgKXpuLQOyxDJxoZrd63iCYOut5CNPjMl2JvNLgSwpJdfzbgMbEMtXxMmbvWcs8NS7oZJCEJ+242nCVC287kXboj0HbCtRaA7P5DdJza+3K77W4enAp9eEqwIOgO8pIkcg0MGj8gdzqyAhVzAubSaRqfaoo6JG/fYc3x0JT5HmLICstYXPRkm/J3d6i8wA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=kpit.com; dmarc=pass action=none header.from=kpit.com; dkim=pass header.d=kpit.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kpit.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JBXM3+3dDgd0QFGnom4igGnltCowje91n0/e1Xe1r6o=; b=F/YVDwk3Dpg2dxwCpAYsGL4fRYupakXVQo5dk++s2iDteTfSwlmObBsGPhbx4vkuNdQex/7XXfwzCf+/bQvb3F7mleWPDqworJMXijC64Y74QX+54B1d5ecCM9jKnopyXbthYHartAkXxYL9Y9C5NIVWw7//6tJMZt1YrUznbqE= Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=kpit.com; Received: from PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:89::13) by MA1PR01MB2187.INDPRD01.PROD.OUTLOOK.COM (2603:1096:a00:37::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5227.18; Wed, 11 May 2022 14:37:07 +0000 Received: from PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM ([fe80::8119:8287:2cf2:7125]) by PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM ([fe80::8119:8287:2cf2:7125%6]) with mapi id 15.20.5227.023; Wed, 11 May 2022 14:37:07 +0000 From: Akash Hadke To: openembedded-core@lists.openembedded.org Cc: ranjitsinh.rathod@kpit.com, Akash Hadke Subject: [poky][master][PATCH 3/3] cve_export.py: Add new selftest for cve-export.bbclass Date: Wed, 11 May 2022 16:36:13 +0200 Message-Id: <20220511143613.25002-3-akash.hadke@kpit.com> X-Mailer: git-send-email 2.17.1 In-Reply-To: <20220511143613.25002-1-akash.hadke@kpit.com> References: <20220511143613.25002-1-akash.hadke@kpit.com> X-ClientProxiedBy: AM6P193CA0073.EURP193.PROD.OUTLOOK.COM (2603:10a6:209:88::14) To PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM (2603:1096:c01:89::13) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: db715d7a-c283-4138-8011-08da335bb909 X-MS-TrafficTypeDiagnostic: MA1PR01MB2187:EE_ X-Microsoft-Antispam-PRVS: X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0; X-Microsoft-Antispam-Message-Info: 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 X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230001)(4636009)(366004)(26005)(38100700002)(2616005)(6512007)(4326008)(36756003)(6916009)(8676002)(186003)(1076003)(316002)(66556008)(66476007)(66946007)(6666004)(508600001)(86362001)(6506007)(5660300002)(2906002)(8936002)(6486002)(38350700002)(52116002)(44832011);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: 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 X-OriginatorOrg: kpit.com X-MS-Exchange-CrossTenant-Network-Message-Id: db715d7a-c283-4138-8011-08da335bb909 X-MS-Exchange-CrossTenant-AuthSource: PN3PR01MB6712.INDPRD01.PROD.OUTLOOK.COM X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 May 2022 14:37:06.8450 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 3539451e-b46e-4a26-a242-ff61502855c7 X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: vGDYZ2XmB/Vz+1PNGO21NFLgkfvfeo7p/7qvdALMKnSAN7/xM8XMVMlIG3xTxhcozeJdtiOo0/SdGYIb+E5wMg== X-MS-Exchange-Transport-CrossTenantHeadersStamped: MA1PR01MB2187 List-Id: X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Wed, 11 May 2022 14:37:18 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/165501 This test compares values of variables CVE_CHECK_IGNORE with CVE_IGNORED that is exported from cve-export.bbclass Signed-off-by: Akash Hadke Signed-off-by: Akash Hadke --- meta/lib/oeqa/selftest/cases/cve_export.py | 24 ++++++++++++++++++++++ 1 file changed, 24 insertions(+) create mode 100644 meta/lib/oeqa/selftest/cases/cve_export.py diff --git a/meta/lib/oeqa/selftest/cases/cve_export.py b/meta/lib/oeqa/selftest/cases/cve_export.py new file mode 100644 index 0000000000..7c7fd07957 --- /dev/null +++ b/meta/lib/oeqa/selftest/cases/cve_export.py @@ -0,0 +1,24 @@ +from oeqa.selftest.case import OESelftestTestCase +from oeqa.utils.commands import bitbake, get_bb_var +from oe.cve_check import get_ignored_cves + +class CveExportTest (OESelftestTestCase): + + def test_ignored_cves(self): + """ + This test compares the values of variables CVE_CHECK_IGNORE with + CVE_IGNORED that is exported from cve-export.bbclass + """ + target = 'unzip' + feature = 'INHERIT += "cve-export"\n' + feature += 'require conf/distro/include/cve-extra-exclusions.inc' + self.write_config(feature) + + res = bitbake("%s -c fetch" % target, ignore_status=True) + self.assertEqual(res.status, 0, "\nCouldn't build.\nbitbake output %s" % res.output) + + paths = get_bb_var('PATH', target).split(':') + cves = get_bb_var('CVE_CHECK_IGNORE', target).split() + final_cve = get_ignored_cves(paths, cves) + ignore_cves_from_exported_variable = get_bb_var('CVE_IGNORED', target) + self.assertEqual(final_cve, ignore_cves_from_exported_variable.strip(), "Ignored CVEs are not matching")