kumquat-buildroot/package/libyang/libyang.mk

################################################################################
#
# libyang
#
################################################################################

LIBYANG_VERSION = 1.0.240
LIBYANG_SITE = $(call github,CESNET,libyang,v$(LIBYANG_VERSION))
LIBYANG_LICENSE = BSD-3-Clause
LIBYANG_LICENSE_FILES = LICENSE
LIBYANG_INSTALL_STAGING = YES
LIBYANG_CPE_ID_VENDOR = cesnet
LIBYANG_SUPPORTS_IN_SOURCE_BUILD = NO
LIBYANG_DEPENDENCIES = pcre
HOST_LIBYANG_DEPENDENCIES = host-pcre

LIBYANG_CONF_OPTS = \
	-DENABLE_VALGRIND_TESTS=OFF \
	-DGEN_PYTHON_BINDINGS=OFF \
	-DENABLE_LYD_PRIV=ON

HOST_LIBYANG_CONF_OPTS = \
	-DENABLE_VALGRIND_TESTS=OFF \
	-DGEN_PYTHON_BINDINGS=OFF

$(eval $(cmake-package))
$(eval $(host-cmake-package))
package/libyang: new package LibYANG processes YIN and YANG files. It's a dependency of sysrepo which is a dependency of Netopeer, a NETCONF/YANG server. Signed-off-by: Heiko Thiery <heiko.thiery@kontron.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2019-10-11 14:40:42 +02:00			`################################################################################`
			`#`
			`# libyang`
			`#`
			`################################################################################`

package/libyang: security bump to version 1.0.240 Fixes the following security issues: - CVE-2021-28902: In function read_yin_container() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash. - CVE-2021-28903: A stack overflow in libyang <= v1.0.225 can cause a denial of service through function lyxml_parse_mem(). lyxml_parse_elem() function will be called recursively, which will consume stack space and lead to crash. - CVE-2021-28904: In function ext_get_plugin() in libyang <= v1.0.225, it doesn't check whether the value of revision is NULL. If revision is NULL, the operation of strcmp(revision, ext_plugins[u].revision) will lead to a crash. - CVE-2021-28905: In function lys_node_free() in libyang <= v1.0.225, it asserts that the value of node->module can't be NULL. But in some cases, node->module can be null, which triggers a reachable assertion (CWE-617). - CVE-2021-28906: In function read_yin_leaf() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr> 2021-09-18 20:58:14 +02:00			`LIBYANG_VERSION = 1.0.240`
package/libyang: fix up the 'v' prefix in the version In order for the libyang version to match what is given by release-monitoring.org, the 'v' prefix should be encoded in LIBYANG_SITE and not LIBYANG_VERSION. Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2019-10-24 20:11:55 +02:00			`LIBYANG_SITE = $(call github,CESNET,libyang,v$(LIBYANG_VERSION))`
package/libyang: new package LibYANG processes YIN and YANG files. It's a dependency of sysrepo which is a dependency of Netopeer, a NETCONF/YANG server. Signed-off-by: Heiko Thiery <heiko.thiery@kontron.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2019-10-11 14:40:42 +02:00			`LIBYANG_LICENSE = BSD-3-Clause`
			`LIBYANG_LICENSE_FILES = LICENSE`
			`LIBYANG_INSTALL_STAGING = YES`
package/libyang: add LIBYANG_CPE_ID_VENDOR cpe:2.3:a:cesnet:libyang is a valid CPE identifier for this package: https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=libyang Signed-off-by: Heiko Thiery <heiko.thiery@gmail.com> Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr> 2021-01-17 15:33:27 +01:00			`LIBYANG_CPE_ID_VENDOR = cesnet`
package/libyang: new package LibYANG processes YIN and YANG files. It's a dependency of sysrepo which is a dependency of Netopeer, a NETCONF/YANG server. Signed-off-by: Heiko Thiery <heiko.thiery@kontron.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2019-10-11 14:40:42 +02:00			`LIBYANG_SUPPORTS_IN_SOURCE_BUILD = NO`
			`LIBYANG_DEPENDENCIES = pcre`
			`HOST_LIBYANG_DEPENDENCIES = host-pcre`

			`LIBYANG_CONF_OPTS = \`
			`-DENABLE_VALGRIND_TESTS=OFF \`
package/libyang: enable LYD_PRIV option for frr package This option is required by frr package, so enable it by default as there is no size difference with or without this option enabled. Signed-off-by: Vadim Kochan <vadim4j@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2020-02-25 16:53:21 +01:00			`-DGEN_PYTHON_BINDINGS=OFF \`
			`-DENABLE_LYD_PRIV=ON`
package/libyang: new package LibYANG processes YIN and YANG files. It's a dependency of sysrepo which is a dependency of Netopeer, a NETCONF/YANG server. Signed-off-by: Heiko Thiery <heiko.thiery@kontron.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2019-10-11 14:40:42 +02:00
			`HOST_LIBYANG_CONF_OPTS = \`
			`-DENABLE_VALGRIND_TESTS=OFF \`
			`-DGEN_PYTHON_BINDINGS=OFF`

			`$(eval $(cmake-package))`
			`$(eval $(host-cmake-package))`