[OE-core] [PATCH] cve-update-db: Use std library instead of urllib3

richard.purdie at linuxfoundation.org richard.purdie at linuxfoundation.org
Tue Jul 2 09:15:51 UTC 2019


On Tue, 2019-07-02 at 11:10 +0200, Pierre Le Magourou wrote:
> Hi,
> 
> > > On 07/02/2019 03:39 PM, ChenQi wrote:
> > > > A recent do_populate_cve_db failure:
> > > > https://autobuilder.yoctoproject.org/typhoon/#/builders/23/builds/1005/steps/7/logs/errors
> > > > 
> > > > 
> > > > Could you please help look at what's going on?
> > On Tue, 2019-07-02 at 16:08 +0800, ChenQi wrote:
> > > I just tired to open the web but failed. The web seems down.
> > > 
> > 
> > We were making some changes to the autobuilder to speed it up
> > (changing
> > database backends), its back now.
> > 
> 
> The NVD website is down, cve-update-db should not fail in that case.
> I
> need to update it, so it prints a warning instead.
> I am also wondering if we should mirror NVD json data feeds, to avoid
> too many requests from Yocto users. (but I don't know how to do that)

raising a SkipRecipe() if the class isn't configured (inherited) might
be one way to at least reduce the load to the cases where its actually
configured and being used?

Cheers,

Richard



More information about the Openembedded-core mailing list