summaryrefslogtreecommitdiffstats
path: root/meta/recipes-extended/shadow
Commit message (Collapse)AuthorAgeFilesLines
* recipes: Update WORKDIR references to UNPACKDIRRichard Purdie11 days1-4/+4
| | | | | | | | | | Since we want to be able to stop unpacking to WORKDIR, correct the WORKDIR references in recipe do_compile/do_install tasks to use UNPACKDIR in the appropraite places instead. (From OE-Core rev: d73595df69667fe9d12ecd407b77a0b8dae2109c) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Update S = WORKDIR recipes to use ${S} correctlyRichard Purdie11 days1-1/+1
| | | | | | | | | | Where recipes use S = ${WORKDIR}, ensure they are referencing ${S} correctly to access files as soon we want to stop doing this in WORKDIR at which point they would break unless corrected. (From OE-Core rev: f25dd633fffe6560f191526d1869e657e129bad9) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: install manpagesDan McGregor2024-04-231-0/+12
| | | | | | | | | | | Install the manpages for shadow, and also make the conflicting manpages alternatives in util-linux. (From OE-Core rev: 4b5a119ab36b2339b5469e5c7d34635090cc70f0) Signed-off-by: Daniel McGregor <daniel.mcgregor@vecima.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: update 4.14.2 -> 4.15.0Alexander Kanavin2024-04-165-48/+68
| | | | | | | | | libcrack support was dropped. (From OE-Core rev: c976d67cc73948eb09700be349d63a5d3840acdc) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: don't install libattr.so.* when xattr not in DISTRO_FEATURESSam Van Den Berge2024-03-231-1/+2
| | | | | | | | | | | | | Fixes the following issue: install: cannot stat '.../recipe-sysroot-native/usr/lib/libattr.so.*': No such file or directory ... ERROR: Task (virtual:native:.../shadow_4.14.2.bb:do_install) failed with exit code '1' (From OE-Core rev: b3afb80d07d97aaa786b6921fb6f61e316201367) Signed-off-by: Sam Van Den Berge <sam.van.den.berge@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: fix copydir operation with 'pseudo'Enrico Scholz2024-03-202-0/+40
| | | | | | | | | | | | | | | | | | | | | | | Calling 'useradd' through pseudo on (at least) Ubuntu 20 creates filesystem objects (.bashrc, .profile) with invalid attributes. It manifests as | tar: ./home/.../.bashrc: Unknown file type; file ignored or | Copying files into the device: __populate_fs: ignoring entry ".bashrc" | .bashrc: File not found by ext2_lookup while looking up ".bashrc" when building the image. This happens due to a bug in shadow which is caused by clobbering fstatat() results. (From OE-Core rev: 991f880e5cb3d30a1197711d44af2fdb1719ce82) Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta: Remove some not needed CVE_STATUSSimone Weiß2024-02-241-1/+0
| | | | | | | | | | CVE_STATUS was set for those components, but meanwhile databases are updated with corrected information, so setting the CVE_STATUS is not needed anymore. (From OE-Core rev: 5ec6057cfa66ceeb33bec013e320f8e3fa7d7ecf) Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: add a packageconfig for logind supportAlexander Kanavin2024-02-091-0/+1
| | | | | | | | | | This was causing host contamination in particular, where libsystemd was installed on the host. (From OE-Core rev: fda06b441655cfa4e5f93e8f5587f27aa3610bb8) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: replace static linking with dynamic libraries in a custom location ↵Alexander Kanavin2024-01-211-10/+14
| | | | | | | | | | | | | | | | | | and bundled with shadow Despite our efforts to make static linking work, there have been new reports of bizarre build failures: https://lists.openembedded.org/g/openembedded-core/message/194006 https://lists.openembedded.org/g/openembedded-core/message/193907 This commit changes back to dynamic linking, but places the libraries in a custom location, per RP's suggestion. (From OE-Core rev: b93562937737e97dbc8cb7c874e9913f6a285a34) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: link executables statically for -native variantAlexander Kanavin2024-01-121-0/+10
| | | | | | | | | | | | shadow 4.14.x adds a number of libraries it dynamically links with (md, bsd, attr). This causes troubles in setscene tasks where shadow executables are used (such as useradd), as pulling in the needed dynamic libraries needs unpleasant special-casing. (From OE-Core rev: 495ff95eae14a91c94187f78a0b30c7957c9b168) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: update 4.13 -> 4.14.2Alexander Kanavin2024-01-128-378/+16
| | | | | | | | | | | | | | | | | | | | | | | License-Update: formatting, spdx conversion Drop: 0001-Disable-use-of-syslog-for-sysroot.patch (issue fixed upstream) 0001-Fix-can-not-print-full-login.patch 0001-Overhaul-valid_field.patch CVE-2023-29383.patch (backports) libbsd is a new native dependency, as otherwise glibc >= 2.38 is needed. A similar fix is added to musl in order to define non-standard __BEGIN_DECLS/__END_DECLS. (From OE-Core rev: e85069acf304fe0b68583cf79fe3ec4f775dca68) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Fix for CVE-2023-4641Xiangyu Chen2023-12-042-0/+148
| | | | | | | | | | | | | | | shadow-utils: possible password leak during passwd(1) change CVE: CVE-2023-4641 Upstream-Status: Backport [https://github.com/shadow-maint/shadow/commit/65c88a43a23c2391dcc90c0abda3e839e9c57904] (From OE-Core rev: 7942df17d9dfcf690106b8b86506d496e6251327) Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Drop remaining PR values from recipesRichard Purdie2023-09-222-2/+0
| | | | | | | | | | | | | | | | We've been removing PR values from recipes at upgrade time for a while. In general anyone maintaining a binary distro would end up having to curate these themselves so the values in OE-Core aren't really that useful anymore. In many ways it makes sense to clear out the remaining ones (which are mostly for 'config' recipes that are unlikely to increase in PV) and leave a clean slate for anyone implementing a binary distro config. References are left in meta-selftest since the tests there do involve them and their removal upon upgrade. (From OE-Core rev: d4c346e8ab8f3cae25d1b01c7331ed9f6d4f96ef) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: fix patch Upstream-StatusMichael Opdenacker2023-09-201-1/+1
| | | | | | | | | | Replace "Accepted" by "Backport" as specified on https://docs.yoctoproject.org/migration-guides/migration-3.2.html#miscellaneous-changes (From OE-Core rev: 945f1106de1fc1b08921e05aa0f871092c2c116d) Signed-off-by: Michael Opdenacker <michael.opdenacker@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* cve_check: convert CVE_CHECK_IGNORE to CVE_STATUSAndrej Valek2023-07-211-5/+2
| | | | | | | | | | | | | - Try to add convert and apply statuses for old CVEs - Drop some obsolete ignores, while they are not relevant for current version (From OE-Core rev: 1634ed4048cf56788cd5c2c1bdc979b70afcdcd7) Signed-off-by: Andrej Valek <andrej.valek@siemens.com> Reviewed-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow-sysroot: add license informationEnrico Scholz2023-07-192-1/+2
| | | | | | | | | | | | | | | | | | | Recipe references 'login.defs' in LIC_FILES_CHKSUM. This causes some problems: - file does not contain a single word which is related with its license - changing this file (here: increasing SYS_UID_MIN) invalidates LIC_FILES_CHKSUM Add 'SPDX-License-Identifier' to the file and limit the checksum to this part. (From OE-Core rev: 8c6f2e3feeb26abefb4136c56db6f3c0349acefb) Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: remove dependency on pam-plugin-lastlogAlexander Kanavin2023-06-272-7/+0
| | | | | | | | | | | | This item has been deprecated in pam 1.5.3 and is no longer built by default: https://github.com/linux-pam/linux-pam/blob/master/NEWS (From OE-Core rev: 04f3c3e335bf5e7c3a12ccc97fda9a8c214135d0) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Revert "python3/ruby/shadow: Revert add libxcrypt-native dependency"Richard Purdie2023-05-291-1/+1
| | | | | | | | | | | | | This reverts commit c6198e1b1c3e3a3413b6ff9f014b40114f1850db. This reverts commit 167c2c9f15c1bfe401c0512e420a76fa1379c012. This reverts commit 65532fc751dc00e5568e256166f7b259d3a3c06c. The dependencies should not be a -native in the target case. Revert these whilst the proper patch is worked out. (From OE-Core rev: 54eccb76eb8ba2086a56a30dfbb8aba06b02865a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: add libxcrypt-native dependencyMarkus Volk2023-05-281-1/+1
| | | | | | | | | crypt.h is otherwise taken from the host machine (From OE-Core rev: 65532fc751dc00e5568e256166f7b259d3a3c06c) Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: backport patch to fix CVE-2023-29383Xiangyu Chen2023-04-203-0/+120
| | | | | | | | | | | | The fix of CVE-2023-29383.patch contains a bug that it rejects all characters that are not control ones, so backup another patch named "0001-Overhaul-valid_field.patch" from upstream to fix it. (From OE-Core rev: c5da9027cc73484936f4f82a37c32348cee1e229) Signed-off-by: Xiangyu Chen <xiangyu.chen@windriver.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Fix can not print full login timeout messageSoumya2023-04-032-0/+42
| | | | | | | | | | | | When we do not enter password during login, it is expected to display message "Login timed out after 60 seconds". But it prints only first few bytes(like "Login t") when write is immediately followed by exit. Fix - Calling exit from new handler provides enough time to display full message. Upstream-Status: Accepted [https://github.com/shadow-maint/shadow/commit/670cae834827a8f794e6f7464fa57790d911b63c] (From OE-Core rev: 644cfe9dcf351bfa6c67f4b4d1e7dec416a59021) Signed-off-by: Soumya <soumya.sambu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: ignore CVE-2016-15024Ross Burton2023-03-071-0/+3
| | | | | | | | | | | This recently got an updated CPE which matches this recipe, but the issue is related to an entirely different shadow project so ignore it. (From OE-Core rev: 2331e98abb09cbcd56625d65c4e5d258dc29dd04) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: update 4.12.3 -> 4.13Alexander Kanavin2022-11-226-140/+7
| | | | | | | | | | | | | | Drop 0001-Drop-nsswitch.conf-message-when-not-in-place-eg.-musl.patch (issue fixed upstream) 0001-shadow-use-relaxed-usernames.patch (merged upstream) (From OE-Core rev: 03917700e4bba2c979e055b5f0939f14ebe09525) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: update 4.12.1 -> 4.12.3Alexander Kanavin2022-10-292-1/+1
| | | | | | | | (From OE-Core rev: 5b9fc88d06f79e8dbd2375172689f2fbf3e2a8a3) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta: fix version checks in all github recipes using the github-releases classAlexander Kanavin2022-09-281-3/+3
| | | | | | | | (From OE-Core rev: b04316bdd28b7945c2c91b4e43c007b650eedc14) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow-securetty: allow ttyS4 for amd-snowyowl-64Chen Qi2022-09-211-0/+1
| | | | | | | | | | ttyS4 is also needed by some BSP such as amd-snowyowl-64. Let's allow it for convenience. (From OE-Core rev: 108f356e8cca5c3dcab05084a12af07a6ce84167) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: correct the pam patch statusAlexander Kanavin2022-09-021-1/+3
| | | | | | | | (From OE-Core rev: 623872e99068968a94635af6fac24b979d82da32) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Avoid nss warning/error with muslAndrei Gherzan2022-08-252-0/+29
| | | | | | | | | | | | | | | | | | | | | | The libnss configuration file is only installed when glibc is used. The inexistence of it on a musl-based rootfs, will make shadow complain about it: Failed opening /etc/nsswitch.conf This is because shadow will try to use nsswich when dealing with subordinate IDs and the message is just a warning as the tool will still generate them correctly in subuid/subgid files. We drop this log message for class native to avoid an error when rootfs logs are checked ('Failed' will match the regex bitbake is using to check for rootfs generation errors). (From OE-Core rev: 3000840a271534fa907ce0684b81a6d278e64a44) Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Enable subid supportAndrei Gherzan2022-08-251-0/+7
| | | | | | | | | | | | shadow utils are used when creating users at image creation time. The useradd/usermod tools will only try to add a default configuration for subid files if they exist. (From OE-Core rev: 364a6f408c9feb5b9472ddabbc352d8b432bfffd) Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: update 4.11.1 -> 4.12.1Alexander Kanavin2022-08-214-59/+23
| | | | | | | | | | Combine two username relaxing patches into one, rebase, and submit upstream. (From OE-Core rev: 6f0042be60582669d317b9ff2e1b8034ab2a01d3) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Disable the use of syslog() for the native toolsPeter Kjellerstedt2022-04-151-7/+37
| | | | | | | | | | | | An attempt to disable the use of syslog() was made in commit 8f181686 (shadow-native: Simplify and fix syslog disable patch). However, because the code checks if USE_SYSLOG is defined rather than checking if it evaluates to TRUE the patch did not work as intended. (From OE-Core rev: e1f21d0d3385f9d9f4316bf0039b287fd4b37fc8) Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow-native: Simplify and fix syslog disable patchRichard Purdie2022-03-151-118/+16
| | | | | | | | | | Shadow is happily spamming the host syslog with messages and shouldn't be which suggests the patch isn't working. Redo it to work at the configure level which is simpler and hopefully more effective. (From OE-Core rev: 8f1816862b884f226c0ce7f5c89fd75b6791c007) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta/scripts: Automated conversion of OE renamed variablesRichard Purdie2022-02-211-1/+1
| | | | | | (From OE-Core rev: aa52af4518604b5bf13f3c5e885113bf868d6c81) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: upgrade 4.10 -> 4.11.1Alexander Kanavin2022-01-204-22/+22
| | | | | | | | | License-Update: license clarified to BSD-3-Clause only (From OE-Core rev: 79201206b5f7867ad7ffd462705f34179b33c0d7) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: upgrade 4.9 -> 4.10zhengruoqin2022-01-055-215/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 0001-Fix-out-of-tree-builds-with-respect-to-libsubid-incl.patch 0001-libmisc-fix-default-value-in-SHA_get_salt_rounds.patch 0001-libsubid-link-to-PAM-libraries.patch removed since they're included in 4.10 License-Update: Delete the space at the end of the sentence. Changelog: ========== * libsubid fixes * Rename the test program list_subid_ranges to getsubids, write a manpage, so distros can ship it. (Iker Pedrosa) * Add libeconf dep for new*idmap * Allow all group types with usermod -G * Avoid useradd generating empty subid range * Handle NULL pw_passwd * Fix default value SHA_get_salt_rounds * Use https where possible in README * Update content and format of README * Translation updates * Switch from xml2po to itstool in 'make dist' * Fix double frees * Add LOG_INIT configurable to useradd * Add CREATE_MAIL_SPOOL documentation * Create a security.md * Fix su never being SIGKILLd when trapping TERM * Fix wrong SELinux labels in several possible cases * Fix missing chmod in chadowtb_move * Handle malformed hushlogins entries * Fix groupdel segv when passwd does not exist * Fix covscan-found newgrp segfault * Remove trailing slash on hoedir * Fix passwd -l message - it does not change expirey * Fix SIGCHLD handling bugs in su and vipw * Remove special case for "" in usermod * Implement usermod -rG to remove a specific group * call pam_end() after fork in child path for su and login * useradd: In absence of /etc/passwd, assume 0 == root * lib: check NULL before freeing data * Fix pwck segfault (From OE-Core rev: b7215993cf00f668d7e33b7fbc98fb4d8636edac) Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow-sysroot: sync license with shadowRoss Burton2021-09-041-1/+1
| | | | | | | | | | | This recipe is just a single data file from shadow, but as we can't easily tell what license that specific file is under just copy the full license statement. (From OE-Core rev: f0e2f3b1f855ea6e184bd1d8d796279fedcbfa33) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Use specific BSD license variantJoshua Watt2021-09-021-1/+1
| | | | | | | | | | | Make the license more accurate by specifying the specific variant of BSD license instead of the generic one. This helps with SPDX license attribution as "BSD" is not a valid SPDX license. (From OE-Core rev: 65e3b23e1b266653fd30c90222e953f7e37fba0c) Signed-off-by: Joshua Watt <JPEWhacker@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: add /etc/default/useraddYi Zhao2021-08-202-0/+11
| | | | | | | | | | | | | | The shadow 4.9 stops shiping /etc/default/useradd[1] and uses built-in settings by default. Some settings are not consistent with previous shadow 4.8.1 in oe-core. e.g. The default shell is /bin/bash rather than /bin/sh. Per shadow 4.8.1 settings, add /etc/default/useradd back. [1] https://github.com/shadow-maint/shadow/commit/bbf4b79bc49fd1826eb41f6629669ef0b647267b (From OE-Core rev: 736d0b29c6246658a925ea9036ccfe6216d12837) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: fix default value in SHA_get_salt_rounds()Mingli Yu2021-08-172-0/+65
| | | | | | | | | | | | | Backport a patch [1] to fix chpasswd, gpasswd and passwd "hang" for several minutes (10-20min) at 100% cpu usage though they finally terminate successfully. [1] https://github.com/shadow-maint/shadow/issues/393 (From OE-Core rev: ad8c62f988017e1e4da1f5ed7fb6f4a5ce44844e) Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: add PACKAGECONFIG for audit and selinuxYi Zhao2021-08-131-3/+3
| | | | | | | | | | | Add PACKAGECONFIG for audit and selinux rather than disable them directly. This is useful for selinux distro feature. (From OE-Core rev: 0a0c6cfc5a17ed442aad9e71e627e0fa39e60ead) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: update 4.8.1 -> 4.9Alexander Kanavin2021-08-027-335/+167
| | | | | | | | | | | | | | | | | Add a couple backports to fix builds. Drop 0002-Allow-for-setting-password-in-clear-text.patch; what it adds is horribly insecure and AB testing didn't reveal any regressions or use cases for it. Drop /etc/default/ tweaks as files are no longer installed there. Drop manpage alternatives as manpages are no longer installed. (From OE-Core rev: 759df7395908f18b3b68f28d043ac9ebd42dd0c8) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Convert to new override syntaxRichard Purdie2021-08-022-20/+20
| | | | | | | | | | | | This is the result of automated script conversion: scripts/contrib/convert-overrides.py <oe-core directory> converting the metadata to use ":" as the override character instead of "_". (From OE-Core rev: 42344347be29f0997cc2f7636d9603b1fe1875ae) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: generate alternative links for chfn and chshRoss Burton2021-07-071-0/+2
| | | | | | | | | These can be provided by util-linux, so add alternative links for them. (From OE-Core rev: 953a91bd258dcb825df3837635ce7561331c049e) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta/recipes-extended: Add HOMEPAGE / DESCRIPTIONDorinda2021-03-061-0/+1
| | | | | | | | | | | Added HOMEPAGE and DESCRIPTION for recipes with missing decriptions or homepage [YOCTO #13471] (From OE-Core rev: cc6c7af900ae0196a62b7fa1375c55bbcd8e68b4) Signed-off-by: Dorinda Bassey <dorindabassey@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: whitelist CVE-2013-4235Purushottam Choudhary2021-03-061-2/+3
| | | | | | | | | | | | | | | This CVE is about TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees which had very low severity problem and marked as closed and won't fix. Therefore whitelisted CVE-2013-4235. Master, gatesgarth and dunfell all have shadow version 4.81. Hence, this is applicable for master, gatesgarth and dunfell. Link: https://bugzilla.redhat.com/show_bug.cgi?id=884658 (From OE-Core rev: b1c6cd87bee6b019619dc5728fd6c36bc87ed696) Signed-off-by: Sana Kazi <Sana.Kazi@kpit.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Remove lastlog pam plugin on musl systemKhem Raj2021-01-031-0/+2
| | | | | | | | | lastlog needs logwtmp which musl does not provide (From OE-Core rev: f2b826fe5384dde4aa52ce862cd3098acb4feea2) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libtools-cross/shadow-sysroot: Use nopackages inheritRichard Purdie2020-10-061-0/+2
| | | | | | | | | When testing pseudo changes I realised these recipes have packaging tasks but don't generate packages. Drop the packages tasks for cleanliness. (From OE-Core rev: ef9c11797b5d626bdb40b4509d8b2b0d461ff9ea) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow-sysroot: drop unused SRC_URI checksumsPaul Eggleton2020-06-231-3/+0
| | | | | | | | | | This recipe only fetches local files, so there's no need for a checksum. These have been present for some time and nobody noticed. (From OE-Core rev: 100bbc264cb54275ed2912d96f1fea9f6fd41fbf) Signed-off-by: Paul Eggleton <paul.eggleton@linux.microsoft.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: upgrade 4.8 -> 4.8.1Wang Mingyu2020-02-214-88/+2
| | | | | | | | | | | 0001-Do-not-check-for-validity-of-shell-executable.patch CVE-2019-19882.patch Removed since they are included in 4.8.1. (From OE-Core rev: de9cceb13e264434eb0b8393c3b0c0217b8d505e) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* shadow: Security Advisory - shadow - CVE-2019-19882Li Zhou2020-01-032-0/+56
| | | | | | | | | | | Backport patch from <https://github.com/shadow-maint/shadow/pull/199/ commits/66b7bc0dcfda12d7f58eba993bd02872cae1d713> to solve CVE-2019-19882. (From OE-Core rev: a0de64cab692562d4bbd64f8bdcaa3fc6bc694bb) Signed-off-by: Li Zhou <li.zhou@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2024-05-13 08:49:22 +0000