diff options
| author | Leo <thinkabit.ukim@gmail.com> | 2020-03-07 07:34:37 -0300 |
|---|---|---|
| committer | Leo <thinkabit.ukim@gmail.com> | 2020-03-07 07:46:25 -0300 |
| commit | f94bff9e1a79ee759e1f036f8acc02f63fcff6a8 (patch) | |
| tree | 4712c4365b91c19892037321b376f03fa4069c77 | |
| parent | a8f1af38b76e6d5af0a7724833a5b571d7fafefb (diff) | |
main/libseccomp: upgrade to 2.4.3
| -rw-r--r-- | main/libseccomp/APKBUILD | 13 | ||||
| -rw-r--r-- | main/libseccomp/tests-rely-on-__SNR_xxx-instead-of-__NR_xxx-for-syscalls.patch | 36 |
2 files changed, 4 insertions, 45 deletions
diff --git a/main/libseccomp/APKBUILD b/main/libseccomp/APKBUILD index 8bdec46131c..947e145ff38 100644 --- a/main/libseccomp/APKBUILD +++ b/main/libseccomp/APKBUILD @@ -2,19 +2,18 @@ # Contributor: Carlo Landmeter <clandmeter@gmail.com> # Contributor: Dan Williams <dan@ma.ssive.co> pkgname=libseccomp -pkgver=2.4.2 -pkgrel=3 +pkgver=2.4.3 +pkgrel=0 pkgdesc="An interface to the Linux Kernel's syscall filtering mechanism" url="https://github.com/seccomp/libseccomp" arch="all" -license="LGPL-2.1" +license="LGPL-2.1-or-later" depends_dev="linux-headers" makedepends="$depends_dev" checkdepends="bash" subpackages="$pkgname-dev $pkgname-doc" source="https://github.com/seccomp/libseccomp/releases/download/v$pkgver/libseccomp-$pkgver.tar.gz remove-redefinition-prctl.patch - tests-rely-on-__SNR_xxx-instead-of-__NR_xxx-for-syscalls.patch fix-performace-regression.patch " @@ -23,7 +22,6 @@ source="https://github.com/seccomp/libseccomp/releases/download/v$pkgver/libsecc # - CVE-2019-9893 build() { - cd "$builddir" ./configure \ --build=$CBUILD \ --host=$CHOST \ @@ -36,7 +34,6 @@ build() { } check() { - cd "$builddir" # commit be65b26b67099be2b2b4890d736dbd1ad15adf36 adapted to new kernel 5.x syscalls # as long as we are at 4.19 kernel, we need this change case "$CARCH" in @@ -47,11 +44,9 @@ check() { } package() { - cd "$builddir" make DESTDIR="$pkgdir" install } -sha512sums="375a3c7c658be6a08b9bb30963e10bb49e8e066119e0be6d3d97faac3db18b8e2c6938d8b5d3874b2f5331ec8295170112fbae83b5a3b5a5bebc0d6705bdfdbb libseccomp-2.4.2.tar.gz +sha512sums="7b7af2e98493243ffe1934fefff5723b24ae9b9bdc4bf039343ee8456c15acb0ea34e81ec292a41143848272aeca794ef92ad38fc3f42c77465170cb540479ef libseccomp-2.4.3.tar.gz f2c31dcafdc9a1ad78e32e76b75e1c1603071eaa3f979e1f2483b879a34ad07e0a4ef3642196a695415cdf81e1ed2bf325175872fb4e203ef9d0e668c287493f remove-redefinition-prctl.patch -e9c6adbc424c310802851ec486df23aedd8121397a9742f3a5ed4754a5eee7ec1701a6f5e220bb37911b8c48626ba00d70943fad43e489d740d0295e6e9b0dff tests-rely-on-__SNR_xxx-instead-of-__NR_xxx-for-syscalls.patch c9dd939552089b006e03b94a323c9932806b0681b493b3365c291273cff4485b1066a73919a85dff238fc10e33cd4f67c99645049b0696ba0d6f229aac8d8b81 fix-performace-regression.patch" diff --git a/main/libseccomp/tests-rely-on-__SNR_xxx-instead-of-__NR_xxx-for-syscalls.patch b/main/libseccomp/tests-rely-on-__SNR_xxx-instead-of-__NR_xxx-for-syscalls.patch deleted file mode 100644 index 5f688a4a7db..00000000000 --- a/main/libseccomp/tests-rely-on-__SNR_xxx-instead-of-__NR_xxx-for-syscalls.patch +++ /dev/null @@ -1,36 +0,0 @@ -From 35803ceb43c453762a3ab5177c5f8d5dbb813478 Mon Sep 17 00:00:00 2001 -From: Paul Moore <paul@paul-moore.com> -Date: Tue, 5 Nov 2019 15:11:11 -0500 -Subject: [PATCH] tests: rely on __SNR_xxx instead of __NR_xxx for syscalls - -We recently changed how libseccomp handles syscall numbers that are -not defined natively, but we missed test #15. - -Signed-off-by: Paul Moore <paul@paul-moore.com> ---- - tests/15-basic-resolver.c | 6 +++--- - 1 file changed, 3 insertions(+), 3 deletions(-) - -diff --git a/tests/15-basic-resolver.c b/tests/15-basic-resolver.c -index 6badef1..0c1eefe 100644 ---- a/tests/15-basic-resolver.c -+++ b/tests/15-basic-resolver.c -@@ -55,15 +55,15 @@ int main(int argc, char *argv[]) - unsigned int arch; - char *name = NULL; - -- if (seccomp_syscall_resolve_name("open") != __NR_open) -+ if (seccomp_syscall_resolve_name("open") != __SNR_open) - goto fail; -- if (seccomp_syscall_resolve_name("read") != __NR_read) -+ if (seccomp_syscall_resolve_name("read") != __SNR_read) - goto fail; - if (seccomp_syscall_resolve_name("INVALID") != __NR_SCMP_ERROR) - goto fail; - - rc = seccomp_syscall_resolve_name_rewrite(SCMP_ARCH_NATIVE, "openat"); -- if (rc != __NR_openat) -+ if (rc != __SNR_openat) - goto fail; - - while ((arch = arch_list[iter++]) != -1) { |