[meta-security][PATCH 00/13] Assorted updates 04/29 and wrynose branch plan

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Scott Murray <scott.murray@konsulko.com>
To: yocto-patches@lists.yoctoproject.org
Subject: [meta-security][PATCH 00/13] Assorted updates 04/29 and wrynose branch plan
Date: Wed, 29 Apr 2026 11:39:30 -0400	[thread overview]
Message-ID: <cover.1777476608.git.scott.murray@konsulko.com> (raw)

This patch series rolls up the contributed patches (barring some from the
past few days), plus several recipe upgrades/fixes from myself with the
aim of getting known breakage fixed before cutting the wrynose branch
(see below).  These changes are queued on the master-next branch if you
would like to check them out to test yourself.  I intend to merge these
to master branch tomorrow evening (Eastern Time, April 30) unless there
are objections.

With respect to the wrynose branch, the plan is to push it by the end of
the week, or on the weekend if vetting CI takes a bit longer than expected.
The one remaining known breakage that I am aware of is parsec-service
not building; Anton has triaged it, but so far we have not come up with
a fix.  Once we have one, it will be backported ASAP.

Scott


Changes:

Clayton Casciato (1):
  suricata: update 7.0.13 -> 8.0.4

Marta Rybczynska (1):
  README: update CI links

Scott Murray (10):
  crowdsec: Upgrade to v1.7.7
  aircrack-ng: Upgrade to 1.7
  opendnssec: Upgrade to 2.1.14
  libmspack: Remove
  clamav: Upgrade to 1.4.4
  aide: Upgrade to 0.19.3
  libmhash: Remove
  ncrack: Update
  packagegroup-core-security: Add missing packages
  packagegroup-core-security: remove python3-privacyidea

Wenlin Kang (1):
  krill: fix missing dollar sign in FILES

 README.md                                     |    6 +-
 .../include/maintainers-meta-security.inc     |    2 -
 .../packagegroup-core-security.bbappend       |    1 -
 .../packagegroup-core-security.bb             |    5 +-
 .../aide/aide/0001-Fixes-build-issues.patch   |   37 +
 recipes-ids/aide/aide/m4_allow.patch          |   40 -
 .../aide/{aide_0.18.8.bb => aide_0.19.3.bb}   |   15 +-
 recipes-ids/crowdsec/crowdsec-go-mods.inc     |  523 +++
 recipes-ids/crowdsec/crowdsec-licenses.inc    |  239 ++
 recipes-ids/crowdsec/crowdsec_1.1.1.bb        |   40 -
 recipes-ids/crowdsec/crowdsec_1.7.7.bb        |   29 +
 ...kefile-from-using-its-own-rust-steps.patch |   36 +-
 recipes-ids/suricata/libhtp_0.5.52.bb         |   23 -
 recipes-ids/suricata/suricata-crates.inc      | 3282 +++++++++++++----
 .../{suricata_7.0.13.bb => suricata_8.0.4.bb} |   31 +-
 recipes-scanners/clamav/clamav-crates.inc     |  180 +-
 .../{clamav_1.4.3.bb => clamav_1.4.4.bb}      |    6 +-
 ...001-Remove-build-directory-reference.patch |   79 +
 .../aircrack-ng/aircrack-ng_1.6.bb            |   36 -
 .../aircrack-ng/aircrack-ng_1.7.bb            |   54 +
 recipes-security/krill/krill_0.12.3.bb        |    2 +-
 recipes-security/libmhash/files/Makefile.test |   13 -
 recipes-security/libmhash/files/mhash.c       |   32 -
 recipes-security/libmhash/files/run-ptest     |   12 -
 recipes-security/libmhash/libmhash_0.9.9.9.bb |   47 -
 recipes-security/libmspack/libmspack_1.11.bb  |   16 -
 recipes-security/ncrack/ncrack_0.7.bb         |    8 +-
 ...1-Fix-implicit-function-declarations.patch |   51 +
 .../files/0001-include-utilities.h.patch      |   33 +
 ...rder-header-files-and-include-time.h.patch |   39 +
 ...ndnssec_2.1.10.bb => opendnssec_2.1.14.bb} |   15 +-
 31 files changed, 3941 insertions(+), 991 deletions(-)
 create mode 100644 recipes-ids/aide/aide/0001-Fixes-build-issues.patch
 delete mode 100644 recipes-ids/aide/aide/m4_allow.patch
 rename recipes-ids/aide/{aide_0.18.8.bb => aide_0.19.3.bb} (85%)
 create mode 100644 recipes-ids/crowdsec/crowdsec-go-mods.inc
 create mode 100644 recipes-ids/crowdsec/crowdsec-licenses.inc
 delete mode 100644 recipes-ids/crowdsec/crowdsec_1.1.1.bb
 create mode 100644 recipes-ids/crowdsec/crowdsec_1.7.7.bb
 delete mode 100644 recipes-ids/suricata/libhtp_0.5.52.bb
 rename recipes-ids/suricata/{suricata_7.0.13.bb => suricata_8.0.4.bb} (86%)
 rename recipes-scanners/clamav/{clamav_1.4.3.bb => clamav_1.4.4.bb} (98%)
 create mode 100644 recipes-security/aircrack-ng/aircrack-ng/0001-Remove-build-directory-reference.patch
 delete mode 100644 recipes-security/aircrack-ng/aircrack-ng_1.6.bb
 create mode 100644 recipes-security/aircrack-ng/aircrack-ng_1.7.bb
 delete mode 100644 recipes-security/libmhash/files/Makefile.test
 delete mode 100644 recipes-security/libmhash/files/mhash.c
 delete mode 100644 recipes-security/libmhash/files/run-ptest
 delete mode 100644 recipes-security/libmhash/libmhash_0.9.9.9.bb
 delete mode 100644 recipes-security/libmspack/libmspack_1.11.bb
 create mode 100644 recipes-security/opendnssec/files/0001-Fix-implicit-function-declarations.patch
 create mode 100644 recipes-security/opendnssec/files/0001-include-utilities.h.patch
 create mode 100644 recipes-security/opendnssec/files/0002-reorder-header-files-and-include-time.h.patch
 rename recipes-security/opendnssec/{opendnssec_2.1.10.bb => opendnssec_2.1.14.bb} (70%)

-- 
2.53.0

next             reply	other threads:[~2026-04-29 15:40 UTC|newest]

Thread overview: 15+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2026-04-29 15:39 Scott Murray [this message]
2026-04-29 15:39 ` [meta-security][PATCH 01/13] krill: fix missing dollar sign in FILES Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 02/13] suricata: update 7.0.13 -> 8.0.4 Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 03/13] crowdsec: Upgrade to v1.7.7 Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 04/13] aircrack-ng: Upgrade to 1.7 Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 05/13] opendnssec: Upgrade to 2.1.14 Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 06/13] libmspack: Remove Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 07/13] clamav: Upgrade to 1.4.4 Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 08/13] aide: Upgrade to 0.19.3 Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 09/13] libmhash: Remove Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 10/13] ncrack: Update Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 11/13] packagegroup-core-security: Add missing packages Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 12/13] packagegroup-core-security: remove python3-privacyidea Scott Murray
2026-04-29 15:39 ` [meta-security][PATCH 13/13] README: update CI links Scott Murray
2026-04-30  4:37 ` [yocto-patches] [meta-security][PATCH 00/13] Assorted updates 04/29 and wrynose branch plan Marta Rybczynska

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=cover.1777476608.git.scott.murray@konsulko.com \
    --to=scott.murray@konsulko.com \
    --cc=yocto-patches@lists.yoctoproject.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.