summaryrefslogtreecommitdiffstats
path: root/recipes-core
diff options
context:
space:
mode:
authorHemant Jadhav <hemant.jadhav@emerson.com>2025-11-28 21:51:49 +0200
committerScott Murray <scott.murray@konsulko.com>2025-12-22 06:34:11 +0200
commitdd147f679226f0dee17562eaa545063df5edac2b (patch)
treea7a9c0cce5805a3c5da256e958a727f0a32f174b /recipes-core
parent1a0643fa366f31d439b4300bea5e3a87088e59a2 (diff)
downloadmeta-security-dd147f679226f0dee17562eaa545063df5edac2b.tar.gz
clamav: Add recipe for version 1.4.3
Add modern ClamAV 1.4.3 recipe with comprehensive improvements over the legacy 0.104.4 version. Remove the end-of-life 0.104.4 recipe and associated patches as they are superseded by this version. Major changes in 1.4.3: - Upgraded core engine with improved threat detection capabilities - Added Rust components requiring cross-compilation support - Updated CMake build system replacing legacy autotools - Modernized library dependencies (LLVM, JSON-C, PCre2) - Added comprehensive license compliance for multi-component package - Enhanced cross-compilation support for all target architectures The recipe includes dynamic Cargo configuration using Yocto variables to support cross-compilation to any target architecture supported by the build system. Runtime configuration improvements: - Set APP_CONFIG_DIRECTORY to ${sysconfdir}/clamav for proper config paths - Added volatiles/tmpfiles support for /var/lib/clamav and /var/log/clamav - Added pkg_postinst scripts to ensure correct directory ownership - Implemented CMake cache variables for cross-compilation - Updated all license checksums for compliance - Added Rust toolchain integration with automatic environment setup - Use Cargo vendoring with cargo + cargo-update-recipe-crates classes Security rationale: - ClamAV 0.104.4 reached end-of-life and is no longer maintained - Upstream strongly recommends migration to 1.4.x for security updates Signed-off-by: Hemant Jadhav <hemant.jadhav@emerson.com> (regenerated diff, fixed building with systemd, fixed target Rust configuration, disabled for 32-bit targets) Signed-off-by: Scott Murray <scott.murray@konsulko.com>
Diffstat (limited to 'recipes-core')
-rw-r--r--recipes-core/packagegroup/packagegroup-core-security.bb6
1 files changed, 4 insertions, 2 deletions
diff --git a/recipes-core/packagegroup/packagegroup-core-security.bb b/recipes-core/packagegroup/packagegroup-core-security.bb
index 9c14240..d3d3d7e 100644
--- a/recipes-core/packagegroup/packagegroup-core-security.bb
+++ b/recipes-core/packagegroup/packagegroup-core-security.bb
@@ -57,11 +57,13 @@ RDEPENDS:packagegroup-security-utils:remove:libc-musl = "krill firejail"
57ARPWATCH = "arpwatch" 57ARPWATCH = "arpwatch"
58ARPWATCH:riscv32 = "" 58ARPWATCH:riscv32 = ""
59ARPWATCH:riscv64 = "" 59ARPWATCH:riscv64 = ""
60ARPWATCH:qemuriscv64 = ""
61CLAMAV = "clamav clamav-daemon clamav-freshclam" 60CLAMAV = "clamav clamav-daemon clamav-freshclam"
61CLAMAV:arm = ""
62CLAMAV:mips = ""
63CLAMAV:powerpc = ""
62CLAMAV:riscv32 = "" 64CLAMAV:riscv32 = ""
63CLAMAV:riscv64 = "" 65CLAMAV:riscv64 = ""
64CLAMAV:qemuriscv64 = "" 66CLAMAV:x86 = ""
65 67
66SUMMARY:packagegroup-security-scanners = "Security scanners" 68SUMMARY:packagegroup-security-scanners = "Security scanners"
67RDEPENDS:packagegroup-security-scanners = "\ 69RDEPENDS:packagegroup-security-scanners = "\