cve-check: neaten get_cve_info

author Ross Burton <ross.burton@intel.com>

Mon, 18 Nov 2019 16:46:46 +0000 (16:46 +0000)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Thu, 21 Nov 2019 23:06:08 +0000 (23:06 +0000)
author Ross Burton <ross.burton@intel.com>
Mon, 18 Nov 2019 16:46:46 +0000 (16:46 +0000)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Thu, 21 Nov 2019 23:06:08 +0000 (23:06 +0000)
diff --git a/meta/classes/cve-check.bbclass b/meta/classes/cve-check.bbclass

index c1cbdbde7b75ab54ce05a4abc2b8cd841f829ae4..e95716d9ded75ae44cd72c009f0702e640180820 100644 (file)
--- a/meta/classes/cve-check.bbclass
+++ b/meta/classes/cve-check.bbclass
@@ -261,23 +261,15 @@ def check_cves(d, patched_cves):
  def get_cve_info(d, cves):
      """
      Get CVE information from the database.
-
-    Unfortunately the only way to get CVE info is set the output to
-    html (hard to parse) or query directly the database.
      """
  
-    try:
-        import sqlite3
-    except ImportError:
-        from pysqlite2 import dbapi2 as sqlite3
+    import sqlite3
  
      cve_data = {}
-    db_file = d.getVar("CVE_CHECK_DB_FILE")
-    placeholder = ",".join("?" * len(cves))
-    query = "SELECT * FROM NVD WHERE id IN (%s)" % placeholder
-    conn = sqlite3.connect(db_file)
-    cur = conn.cursor()
-    for row in cur.execute(query, tuple(cves)):
+    conn = sqlite3.connect(d.getVar("CVE_CHECK_DB_FILE"))
+    placeholders = ",".join("?" * len(cves))
+    query = "SELECT * FROM NVD WHERE id IN (%s)" % placeholders
+    for row in conn.execute(query, tuple(cves)):
          cve_data[row[0]] = {}
          cve_data[row[0]]["summary"] = row[1]
          cve_data[row[0]]["scorev2"] = row[2]
author	Ross Burton <ross.burton@intel.com>
	Mon, 18 Nov 2019 16:46:46 +0000 (16:46 +0000)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 21 Nov 2019 23:06:08 +0000 (23:06 +0000)