summaryrefslogtreecommitdiffstats
path: root/meta/recipes-extended/libarchive
Commit message (Collapse)AuthorAgeFilesLines
* libarchive: Set xattrs after setting timesDmitry Rozhkov2016-03-022-0/+60
| | | | | | | | | | | | | With Integrity Measurement Architecture (IMA) enabled in Linux kernel the security.ima extended attribute gets overwritten when setting times on a file with a futimens() call. So it's safer to set xattrs after times. (From OE-Core rev: 9bef9e0a9904beeaea1417f9b66089e7555beb26) Signed-off-by: Dmitry Rozhkov <dmitry.rozhkov@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive-native: Disable libxml2 supportRichard Purdie2016-02-011-1/+2
| | | | | | | | | | For libarchive-native, we don't really need libxml2 support. Adding this means we need libxml2-native which means we need python-native and makes the dependency chains pretty heavy. The target case is unaffected. (From OE-Core rev: 9b3ad50b2239484fddfc918c8c1819e1ffdb634c) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Add bsdtar and bsdcpio packagesDmitry Rozhkov2016-01-181-1/+17
| | | | | | | | | | | | | | | Some products might need to use a tar replacement that 1. supports xattrs and 2. has more permissive license than GNU tar. And the bsdtar binary produced from libarchive meets these requirements. (From OE-Core rev: ebf68926139ae5374c4d2669930d7f3817ad8f5a) Signed-off-by: Dmitry Rozhkov <dmitry.rozhkov@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Add "CVE:" tag to current patches in OE-coreMariano Lopez2016-01-112-0/+2
| | | | | | | | | | | | | | The currnet patches in OE-core doesn't have the "CVE:" tag, now part of the policy of the patches. This is patch add this tag to several patches. There might be patches that I miss; the tag can be added in the future. (From OE-Core rev: 065ebeb3e15311d0d45385e15bf557b1c95b1669) Signed-off-by: Mariano Lopez <mariano.lopez@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: rename patch to reflect CVERoss Burton2015-11-162-1/+1
| | | | | | | | | | This patch is a CVE fix, so rename it to help CVE detection tools identify it as such. (From OE-Core rev: 3fd05ce1f709cbbd8fdeb1dbfdffbd39922eca6e) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: fix out of tree buildsRoss Burton2015-05-072-1/+47
| | | | | | | (From OE-Core rev: 4201e432e4034907efeaebfea6509e821a9ba3c5) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Security Advisory - libarchive - CVE-2015-2304Li Zhou2015-04-282-0/+152
| | | | | | | | | | | | | libarchive: Updated libarchive packages fix security vulnerability Alexander Cherepanov discovered that bsdcpio, an implementation of the "cpio" program part of the libarchive project, is susceptible to a directory traversal vulnerability via absolute paths. (From OE-Core rev: e64a961e9c5e94e643896e4b68b85bd5b4c27470) Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: add PACKAGECONFIG for nettleMartin Jansa2014-08-111-0/+1
| | | | | | | | | | | * fixes following floating dependencies: libarchive/libarchive/latest lost dependency on nettle libarchive/libarchive-bin/latest lost dependency on libxml2 nettle (From OE-Core rev: a4dd641f54f12d454ba9c6db624b94df63f7d220) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: avoid dependency on e2fsprogsPaul Eggleton2014-06-061-0/+11
| | | | | | | | | | | | | | | | | | | libarchive's configure script looks for ext2fs/ext2_fs.h in order to use some defines for file attributes support if present (but doesn't link to any additional libraries.) There is no configure option to disable this, and if e2fsprogs is rebuilding between do_configure and do_compile you can currently get a failure. Because it doesn't need anything else from e2fsprogs, and e2fsprogs isn't currently buildable for nativesdk anyway, copy the headers in from e2fsprogs-native which we're likely to have built already (and add it to DEPENDS just to be sure we have.) Fixes [YOCTO #6268]. (From OE-Core rev: ad754e46ad477acfbe7543187a5c38bc333b8612) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Add missing pkgconfig class inheritsRichard Purdie2014-06-031-1/+1
| | | | | | | | | These recipes all use pkg-config in some way but were missing dependencies on the tool, this patch adds them. (From OE-Core rev: 2543b14dd0ca13005be0df027543431fc8e882ae) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Use pkg-config for libxml2 dependencyRichard Purdie2014-05-282-0/+26
| | | | | | (From OE-Core rev: fe277bf0a61d5d7787dba699ee1ed4d979ba5cff) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Globally replace 'base_contains' calls with 'bb.utils.contains'Otavio Salvador2014-04-251-3/+3
| | | | | | | | | | | The base_contains is kept as a compatibility method and we ought to not use it in OE-Core so we can remove it from base metadata in future. (From OE-Core rev: d83b16dbf0862be387f84228710cb165c6d2b03b) Signed-off-by: Otavio Salvador <otavio@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Add PACKAGECONFIG for lzoPaul Barker2014-04-041-0/+1
| | | | | | | | | | | | | This ensures that the dependency on lzo is deterministic rather than floating. The configure option to libarchive refers to this library as 'lzo2' but it is just called 'lzo' in OpenEmbedded. (From OE-Core rev: 09d729a21a2404095279c717c88ac494e2e716d6) Signed-off-by: Paul Barker <paul@paulbarker.me.uk> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: fix CVE-2013-0211Baogen Shang2014-03-302-0/+39
| | | | | | | | | | | | | | | | | CVE description: Integer signedness error in the archive_write_zip_data function in archive_write_set_format_zip.c in libarchive 3.1.2 and earlier, when running on 64-bit machines, allows context-dependent attackers to cause a denial of service (crash) via unspecified vectors, which triggers an improper conversion between unsigned and signed types, leading to a buffer overflow. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0211 (From OE-Core rev: 355a8086637b859a469e1f2dc717b4ccec00b970) Signed-off-by: Baogen Shang <baogen.shang@windriver.com> Signed-off-by: Jeff Polk <jeff.polk@windriver.com> Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* autotools-brokensep: Mark recipes with broken separate build dir supportRichard Purdie2014-02-281-1/+1
| | | | | | | | | | | | This patch goes through the OE-Core recipes and marks those which use autotools but don't support a separate build directory (${S} != ${B}). A new class, autotools-brokensep is used for this purpose. This doesn't introduce any change in behaviour in its own right. (From OE-Core rev: 006b8a7808a58713af16c326dc37d07765334b12) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Upgrade to v3.1.2Paul Barker2014-01-107-206/+4
| | | | | | | | | | | | All patches against libarchive in oe-core appear to be merged into the latest release. The license checksum has changed because a couple of referenced files have been renamed but there is no change to the license terms themselves. (From OE-Core rev: f3fd24badd189bbb083dba9397598e1566d1e4be) Signed-off-by: Paul Barker <paul@paulbarker.me.uk> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta/*: remove unnecessary patchesChong Lu2013-12-101-63/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following patches are found, but not used by any recipe, so we should remove them. meta/recipes-connectivity/avahi/files/fix_for_automake_1.11.2.patch meta/recipes-connectivity/dhcp/dhcp/fix-client-path.patch meta/recipes-connectivity/libnss-mdns/files/alignment-fix.patch meta/recipes-core/dbus/dbus-1.6.10/test-run-path.patch meta/recipes-core/gettext/gettext-0.16.1/fixchicken.patch meta/recipes-core/gettext/gettext-0.16.1/getline.m4.patch meta/recipes-core/systemd/systemd/use-rootlibdir.patch meta/recipes-core/util-linux/util-linux/remove-lscpu.patch meta/recipes-core/util-linux/util-linux/remove_sigsetmark.patch meta/recipes-core/util-linux/util-linux/uclibc-compile.patch meta/recipes-devtools/autoconf/autoconf/autoconf-x.patch meta/recipes-devtools/btrfs-tools/btrfs-tools/btrfs-progs-fix-parallel-build.patch meta/recipes-devtools/btrfs-tools/btrfs-tools/btrfs-progs-fix-parallel-build2.patch meta/recipes-devtools/cdrtools/cdrtools-native/no_usr_src.patch meta/recipes-devtools/elfutils/elfutils-0.155/elfutils-robustify.patch meta/recipes-devtools/gdb/gdb/libiberty-cross.patch meta/recipes-devtools/perl/perl-5.14.3/asm-pageh-fix.patch meta/recipes-devtools/python/python-native/sys_platform_is_now_always_linux2.patch meta/recipes-devtools/python/python-pygobject/generate-constants.patch meta/recipes-devtools/qemu/files/3f08ffb4a4741d147634761dc053ed386243a0de.patch meta/recipes-devtools/qemu/files/enable-i386-linux-user.patch meta/recipes-devtools/qemu/files/init-info.patch meta/recipes-devtools/rpm/rpm/rpm_fix_for_automake-1.12.patch meta/recipes-devtools/tcf-agent/tcf-agent/fix_tcf-agent.init.patch meta/recipes-extended/iputils/files/arping-break-libsysfs-dependency.patch meta/recipes-extended/libarchive/libarchive/0003-Patch-from-upstream-rev-2516.patch meta/recipes-extended/procps/procps-3.2.8/pagesz-not-constant.patch meta/recipes-gnome/gtk+/gtk+-2.24.22/no-demos.patch meta/recipes-gnome/libglade/libglade-2.6.4/no-deprecation.patch meta/recipes-graphics/mesa/mesa/0005-llvmpipe-remove-the-power-of-two-sizeof-struct-cmd_b.patch meta/recipes-graphics/xorg-lib/libxxf86dga/libxxf86dga-1.1.3_fix_for_x32.patch meta/recipes-kernel/kmod/kmod/fix-undefined-O_CLOEXEC.patch meta/recipes-kernel/linux-libc-headers/linux-libc-headers/connector-msg-size-fix.patch meta/recipes-kernel/linux/linux-yocto/tools-perf-no-scripting.patch meta/recipes-support/gnutls/gnutls/gnutls-texinfo-euro.patch meta/recipes-support/nspr/nspr/fix-build-on-aarch64.patch [YOCTO #5180] (From OE-Core rev: e5d81f757de4bd1bfd37a96300edd50b77b0d21c) Signed-off-by: Chong Lu <Chong.Lu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: add SUMMARY and fix HOMEPAGEPaul Eggleton2013-12-051-1/+2
| | | | | | | (From OE-Core rev: bd0a5a29bf6eeba78496e5d9143bd8806fd5cce1) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Remove PR = r0 from all recipesRichard Purdie2013-10-301-1/+0
| | | | | | | | | | | | | Remove all PR = "r0" from all .bb files in oe-core. This was done with the command sed -e '/^PR.*=.*r0\"/d' recipes*/*/*.bb -i We've switching to the PR server, PR bumps are no longer needed and this saves people either accidentally bumping them or forgetting to remove the lines (r0 is the default anyway). (From OE-Core rev: 58ae94f1b06d0e6234413dbf9869bde85f154c85) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: replace += with _append for appending to OVERRIDES variablesMing Liu2013-10-261-2/+2
| | | | | | | | | | | | In some cases, it's unfit to use "+=" in a conditional appending, we would end up with the variable being set rather than being appended, which is not it mean to. (From OE-Core rev: 15ba35aebd7550e53e9f2f35de6b709937dbb55c) Signed-off-by: Ming Liu <ming.liu@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Add -native version needed for pixzRichard Purdie2013-10-141-1/+1
| | | | | | (From OE-Core rev: 7c4f4231dfeb5d7599f18e4b2fbb5a8a6427c01a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Fix build dependenciesMark Hatle2013-05-301-1/+19
| | | | | | | | | | | | | | | Move to using the PACKAGECONFIG mechanism to select configure options and dependencies. Without this the system will attempt to discover various dependencies, and usually does so incorrectly. We also ensure that the nativesdk version does not inherit any of the DISTRO_FEATURES. We shouldn't need acl or xattr support for nativesdk. (From OE-Core rev: d9f9bfed56ef8562256fc01c3e42e15734230c3a) Signed-off-by: Mark Hatle <mark.hatle@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: Remove obsolete comment and empty line at the endPaul Menzel2011-11-101-3/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | This is a fix up for commit fb19df5b21e551c5dfdfa340438952560c5fa528 Author: Xiaofeng Yan <xiaofeng.yan@windriver.com> Date: Mon Nov 7 20:03:53 2011 +0800 libarchive: update to 2.8.5 Remove patch "0003-Patch-from-upstream-rev-2516.patch" because it has been merged to source codes. (From OE-Core rev: 1df17fb4c22e00e6a180777dd23efb6d5cb1590a) Signed-off-by: Xiaofeng Yan <xiaofeng.yan@windriver.com> removing a now obsolete comment because the undistributable content was removed [1] from upstream’s tarball. Also remove an empty line at the end introduced in the above commit. [1] http://code.google.com/p/libarchive/issues/detail?id=162 Signed-off-by: Paul Menzel <paulepanter@users.sourceforge.net> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: update to 2.8.5Xiaofeng Yan2011-11-081-4/+4
| | | | | | | | | | Remove patch "0003-Patch-from-upstream-rev-2516.patch" because it has been merged to source codes. (From OE-Core rev: fb19df5b21e551c5dfdfa340438952560c5fa528) Signed-off-by: Xiaofeng Yan <xiaofeng.yan@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: remove undistributable copyright content from sourceOtavio Salvador2011-07-121-3/+5
| | | | | | | | | | | | | The original tarball has two undistributable files that we have removed from the repacked tarball. The issue has been reported upstream at: http://code.google.com/p/libarchive/issues/detail?id=162 (From OE-Core rev: bdda8f8b1f3ff21b5f893efcb7c835e69e25852a) Signed-off-by: Otavio Salvador <otavio@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libarchive: add 2.8.4 versionOtavio Salvador2011-07-088-0/+284
This recipe has been imported from OpenEmbedded (rev 6db4b9050e0e8b963e2a6b63790e48e3042ea99e). (From OE-Core rev: 292a45064aa9926868c798341dc72f183c5de076) Signed-off-by: Otavio Salvador <otavio@ossystems.com.br> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>