[PATCH 0/4] import libcap from packages feed
Stijn Tintel
stijn at linux-ipv6.be
Thu Mar 11 23:25:24 GMT 2021
Having libcap in OpenWrt base allows us to enable libcap support in
other packages in base.
In lldpd, this would allow the monitor process to drop its privileges
instead of running as root, improving security. It will also allow us to
drop our patch to disable libcap.
I suspect some people might counter this by saying lldpd belongs in the
packages feed; I strongly disagree as imo LLDP is an essential service
for any network device, and especially switches. Even the cheapest
managed switches support LLDP for more than 5 years already.
Also see: https://github.com/openwrt/openwrt/pull/3823#issuecomment-795174537
I'll bump lldpd to the latest version after this series is merged, and
debug the problem reported by John on the realtek target.
Stijn Tintel (4):
libcap: import from packages feed
libcap: drop invalid copyright header
libcap: bump to 2.48
lldpd: add libcap dependency
package/libs/libcap/Makefile | 114 ++++++++++++++++++
.../libcap/patches/300-disable-tests.patch | 10 ++
package/network/services/lldpd/Makefile | 4 +-
.../lldpd/patches/001-disable_libcap.patch | 17 ---
4 files changed, 126 insertions(+), 19 deletions(-)
create mode 100644 package/libs/libcap/Makefile
create mode 100644 package/libs/libcap/patches/300-disable-tests.patch
delete mode 100644 package/network/services/lldpd/patches/001-disable_libcap.patch
--
2.26.2
More information about the openwrt-devel
mailing list