[dunfell,04/11] cve-check: add lockfile to task

Message ID	3c69e4eb08701516150c78cf8b48f3e90d197b2b.1642083419.git.steve@sakoman.com
State	Accepted, archived
Commit	3c69e4eb08701516150c78cf8b48f3e90d197b2b
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.214.177, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][dunfell 04/11] cve-check: add lockfile to task Date: Thu, 13 Jan 2022 04:37:08 -1000 Message-Id: <3c69e4eb08701516150c78cf8b48f3e90d197b2b.1642083419.git.steve@sakoman.com> In-Reply-To: <cover.1642083419.git.steve@sakoman.com> References: <cover.1642083419.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo) \| expand [dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo) [dunfell,02/11] oeqa/selftest/cases/tinfoil.py: increase timeout 60->120s test_wait_event [dunfell,03/11] cve-update-db-native: use fetch task [dunfell,04/11] cve-check: add lockfile to task [dunfell,05/11] xserver-xorg: update CVE_PRODUCT [dunfell,06/11] wic: misc: Do not find for executables in ASSUME_PROVIDED [dunfell,07/11] wic: use shutil.which [dunfell,08/11] expat: Update HOMEPAGE to current url [dunfell,09/11] xserver-xorg: whitelist two CVEs [dunfell,10/11] parselogs: add a couple systemd false positives [dunfell,11/11] glibc: Add fix for data races in pthread_create and TLS access

Message ID

3c69e4eb08701516150c78cf8b48f3e90d197b2b.1642083419.git.steve@sakoman.com

State

Accepted, archived

Commit

3c69e4eb08701516150c78cf8b48f3e90d197b2b

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][dunfell 04/11] cve-check: add lockfile to task
Date: Thu, 13 Jan 2022 04:37:08 -1000
Message-Id: 
 <3c69e4eb08701516150c78cf8b48f3e90d197b2b.1642083419.git.steve@sakoman.com>
In-Reply-To: <cover.1642083419.git.steve@sakoman.com>
References: <cover.1642083419.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[dunfell,01/11] valgrind: skip flakey ptest (gdbserver_tests/hginfo) | expand

Commit Message

Steve Sakoman Jan. 13, 2022, 2:37 p.m. UTC

From: Konrad Weihmann <kweihmann@outlook.com>

this should prevent running into the very rare error
sqlite3.OperationalError: attempt to write a readonly database

As highlighted by https://www.sqlite.org/faq.html#q5
it is likely that the adapter won't allow use multiple exec calls
at the same time.

So it's best to prevent multiple accesses at a time, by reusing
the already in place CVE_CHECK_DB_FILE_LOCK

YOCTO #14110

Signed-off-by: Konrad Weihmann <kweihmann@outlook.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 677f5741bd265be49d4a5bb933b3e8d8c4eec653)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/classes/cve-check.bbclass | 1 +
 1 file changed, 1 insertion(+)

diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass
index 97cbc63d1d..6eecbdbf13 100644
--- a/meta/classes/cve-check.bbclass
+++ b/meta/classes/cve-check.bbclass
@@ -110,6 +110,7 @@  python do_cve_check () {
 }
 
 addtask cve_check before do_build after do_fetch
+do_cve_check[lockfiles] += "${CVE_CHECK_DB_FILE_LOCK}"
 do_cve_check[depends] = "cve-update-db-native:do_fetch"
 do_cve_check[nostamp] = "1"

[dunfell,04/11] cve-check: add lockfile to task

Commit Message

Patch