MIRRORS/poky
1
0
Fork 0
mirror of git://git.yoctoproject.org/poky.git synced 2025-08-21 16:31:39 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
scarthgap-5.0.11
poky/meta/lib
History
Daniel Turull 2366605a35 spdx: add option to include only compiled sources 
When SPDX_INCLUDE_COMPILED_SOURCES is enabled, only include the
source code files that are used during compilation.

It uses debugsource information generated during do_package.

This enables an external tool to use the SPDX information to disregard
vulnerabilities that are not compiled.

As example, when used with the default config with linux-yocto, the spdx size is
reduced from 156MB to 61MB.

Tested with bitbake world on oe-core.

(From OE-Core rev: c6a2f1fca76fae4c3ea471a0c63d0b453beea968)
Adapted to existing files for create-spdx-2.2

CC: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
CC: Joshua Watt <JPEWhacker@gmail.com>
(From OE-Core rev: a2866934e58fb377a73e87576c8594988a63ad1b)

Signed-off-by: Daniel Turull <daniel.turull@ericsson.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-07-07 07:42:58 -07:00
..
bblayers bblayers/makesetup.py: Move git utility functions to oe.buildcfg module 2024-03-30 22:25:43 +00:00
oe spdx: add option to include only compiled sources 2025-07-07 07:42:58 -07:00
oeqa sstatetests: Switch to new CDN 2025-06-05 08:41:15 -07:00
patchtest patchtest: test_metadata: fix invalid escape sequences 2024-05-23 08:55:01 -07:00
buildstats.py lib: Add copyright statements to files without one 2022-08-12 12:00:43 +01:00
rootfspostcommands.py rootfspostcommands.py: Cleanup subid backup files generated by shadow-utils 2022-08-25 11:08:06 +01:00