mirror of
https://github.com/openwrt/packages.git
synced 2026-05-31 06:51:51 +08:00
Daniel Golle
a9e8063d59
0.11.2 (CVE-2026-41163): * In setuid mode, don't run the low-privileged parts of the setup as dumpable, as that allows it to be ptraced which can lead to problems. * New build option -Dsupport_setuid, which if set to false (the default) disables the support for setuid. 0.11.1: * Reset disposition of SIGCHLD, restoring normal subprocess management if bwrap was run from a process that was ignoring that signal. * Don't ignore --userns 0, --userns2 0 or --pidns 0 if used. * Fix grammar in an error message and a broken link in the documentation. Link: https://github.com/containers/bubblewrap/blob/v0.11.2/NEWS.md Signed-off-by: Daniel Golle <daniel@makrotopia.org>
45 lines
1.1 KiB
Makefile
45 lines
1.1 KiB
Makefile
include $(TOPDIR)/rules.mk
|
|
|
|
PKG_NAME:=bubblewrap
|
|
PKG_VERSION:=0.11.2
|
|
PKG_RELEASE:=1
|
|
|
|
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz
|
|
PKG_SOURCE_URL:=https://github.com/containers/$(PKG_NAME)/releases/download/v$(PKG_VERSION)
|
|
PKG_HASH:=69abc30005d2186baf7737feacd8da35633b93cf5af38838ecff17c5f8e924f6
|
|
|
|
PKG_MAINTAINER:=Daniel Golle <daniel@makrotopia.org>
|
|
PKG_LICENSE:=LGPLv2-or-later
|
|
PKG_CPE_ID:=cpe:/a:projectatomic:bubblewrap
|
|
|
|
PKG_FORTIFY_SOURCE:=0
|
|
|
|
include $(INCLUDE_DIR)/package.mk
|
|
include $(INCLUDE_DIR)/meson.mk
|
|
|
|
MESON_ARGS += \
|
|
-Dbash_completion=disabled \
|
|
-Dman=disabled \
|
|
-Dselinux=disabled \
|
|
-Dtests=false \
|
|
-Dzsh_completion=disabled
|
|
|
|
define Package/bubblewrap
|
|
SECTION:=utils
|
|
CATEGORY:=Utilities
|
|
TITLE:=Bubblewrap sandbox
|
|
URL:=https://github.com/containers/bubblewrap
|
|
DEPENDS:=+libcap
|
|
endef
|
|
|
|
define Package/bubblewrap/description
|
|
Bubblewrap is a container tool for security sandboxes.
|
|
endef
|
|
|
|
define Package/bubblewrap/install
|
|
$(INSTALL_DIR) $(1)/usr/bin
|
|
$(CP) $(PKG_INSTALL_DIR)/usr/bin/bwrap $(1)/usr/bin
|
|
endef
|
|
|
|
$(eval $(call BuildPackage,bubblewrap))
|