cve-update-db-native: Use a local copy of the database during builds

author Peter Marko <peter.marko@siemens.com>

Sun, 24 Aug 2025 14:57:39 +0000 (16:57 +0200)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Thu, 28 Aug 2025 08:49:38 +0000 (09:49 +0100)
author Peter Marko <peter.marko@siemens.com>
Sun, 24 Aug 2025 14:57:39 +0000 (16:57 +0200)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Thu, 28 Aug 2025 08:49:38 +0000 (09:49 +0100)
diff --git a/meta/recipes-core/meta/cve-update-db-native.bb b/meta/recipes-core/meta/cve-update-db-native.bb

index dff5cd1c617d406fc346750f3a6099159e34a503..70bef2179f296c04eb1b298b0b6d847f5df2e90e 100644 (file)
--- a/meta/recipes-core/meta/cve-update-db-native.bb
+++ b/meta/recipes-core/meta/cve-update-db-native.bb
@@ -24,8 +24,7 @@ CVE_SOCKET_TIMEOUT ?= "60"
  
  CVE_CHECK_DB_DLDIR_FILE ?= "${DL_DIR}/CVE_CHECK2/${CVE_CHECK_DB_FILENAME}"
  CVE_CHECK_DB_DLDIR_LOCK ?= "${CVE_CHECK_DB_DLDIR_FILE}.lock"
-
-CVE_DB_TEMP_FILE ?= "${CVE_CHECK_DB_DLDIR_FILE}.tmp"
+CVE_CHECK_DB_TEMP_FILE ?= "${CVE_CHECK_DB_FILE}.tmp"
  
  python () {
      if not bb.data.inherits_class("cve-check", d):
@@ -44,7 +43,7 @@ python do_fetch() {
  
      db_file = d.getVar("CVE_CHECK_DB_DLDIR_FILE")
      db_dir = os.path.dirname(db_file)
-    db_tmp_file = d.getVar("CVE_DB_TEMP_FILE")
+    db_tmp_file = d.getVar("CVE_CHECK_DB_TEMP_FILE")
  
      cleanup_db_download(db_file, db_tmp_file)
  
@@ -64,6 +63,7 @@ python do_fetch() {
          pass
  
      bb.utils.mkdirhier(db_dir)
+    bb.utils.mkdirhier(os.path.dirname(db_tmp_file))
      if os.path.exists(db_file):
          shutil.copy2(db_file, db_tmp_file)
author	Peter Marko <peter.marko@siemens.com>
	Sun, 24 Aug 2025 14:57:39 +0000 (16:57 +0200)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 28 Aug 2025 08:49:38 +0000 (09:49 +0100)