1SUMMARY = "GRUB2 is the next-generation GRand Unified Bootloader"
2
3DESCRIPTION = "GRUB2 is the next generaion of a GPLed bootloader \
4intended to unify bootloading across x86 operating systems. In \
5addition to loading the Linux kernel, it implements the Multiboot \
6standard, which allows for flexible loading of multiple boot images."
7
8HOMEPAGE = "http://www.gnu.org/software/grub/"
9SECTION = "bootloaders"
10
11LICENSE = "GPL-3.0-only"
12LIC_FILES_CHKSUM = "file://COPYING;md5=d32239bcb673463ab874e80d47fae504"
13
14CVE_PRODUCT = "grub2"
15
16SRC_URI = "${GNU_MIRROR}/grub/grub-${PV}.tar.gz \
17           file://0001-Disable-mfpmath-sse-as-well-when-SSE-is-disabled.patch \
18           file://autogen.sh-exclude-pc.patch \
19           file://grub-module-explicitly-keeps-symbole-.module_license.patch \
20           file://0001-grub.d-10_linux.in-add-oe-s-kernel-name.patch \
21           file://determinism.patch \
22           file://0001-RISC-V-Restore-the-typcast-to-long.patch \
23           file://CVE-2021-3981-grub-mkconfig-Restore-umask-for-the-grub.cfg.patch \
24           file://0001-configure.ac-Use-_zicsr_zifencei-extentions-on-riscv.patch \
25           file://video-Remove-trailing-whitespaces.patch \
26           file://CVE-2021-3695-video-readers-png-Drop-greyscale-support-to-fix-heap.patch \
27           file://CVE-2021-3696-video-readers-png-Avoid-heap-OOB-R-W-inserting-huff.patch \
28           file://video-readers-jpeg-Abort-sooner-if-a-read-operation-.patch \
29           file://video-readers-jpeg-Refuse-to-handle-multiple-start-o.patch \
30           file://CVE-2021-3697-video-readers-jpeg-Block-int-underflow-wild-pointer.patch \
31           file://CVE-2022-28733-net-ip-Do-IP-fragment-maths-safely.patch \
32           file://CVE-2022-28734-net-http-Fix-OOB-write-for-split-http-headers.patch \
33           file://CVE-2022-28734-net-http-Error-out-on-headers-with-LF-without-CR.patch \
34           file://CVE-2022-28735-kern-efi-sb-Reject-non-kernel-files-in-the-shim_lock.patch \
35"
36
37SRC_URI[sha256sum] = "23b64b4c741569f9426ed2e3d0e6780796fca081bee4c99f62aa3f53ae803f5f"
38
39# Applies only to RHEL
40CVE_CHECK_IGNORE += "CVE-2019-14865"
41# Applies only to SUSE
42CVE_CHECK_IGNORE += "CVE-2021-46705"
43
44DEPENDS = "flex-native bison-native gettext-native"
45
46COMPATIBLE_HOST = '(x86_64.*|i.86.*|arm.*|aarch64.*|riscv.*)-(linux.*|freebsd.*)'
47COMPATIBLE_HOST:armv7a = 'null'
48COMPATIBLE_HOST:armv7ve = 'null'
49
50# configure.ac has code to set this automagically from the target tuple
51# but the OE freeform one (core2-foo-bar-linux) don't work with that.
52
53GRUBPLATFORM:arm = "efi"
54GRUBPLATFORM:aarch64 = "efi"
55GRUBPLATFORM:riscv32 = "efi"
56GRUBPLATFORM:riscv64 = "efi"
57GRUBPLATFORM ??= "pc"
58
59inherit autotools gettext texinfo pkgconfig
60
61CFLAGS:remove = "-O2"
62
63EXTRA_OECONF = "--with-platform=${GRUBPLATFORM} \
64                --disable-grub-mkfont \
65                --program-prefix="" \
66                --enable-liblzma=no \
67                --enable-libzfs=no \
68                --enable-largefile \
69                --disable-werror \
70"
71
72PACKAGECONFIG ??= ""
73PACKAGECONFIG[grub-mount] = "--enable-grub-mount,--disable-grub-mount,fuse"
74PACKAGECONFIG[device-mapper] = "--enable-device-mapper,--disable-device-mapper,libdevmapper"
75
76# grub2 creates its own set of -nostdinc / -isystem / -ffreestanding CFLAGS and
77# OE's default BUILD_CFLAGS (assigned to CFLAGS for native builds) etc, conflict
78# with that. Note that since BUILD_CFLAGS etc are not used by grub2 target
79# builds, it's safe to clear them unconditionally for both target and native.
80BUILD_CPPFLAGS = ""
81BUILD_CFLAGS = ""
82BUILD_CXXFLAGS = ""
83BUILD_LDFLAGS = ""
84
85export PYTHON = "python3"
86
87do_configure:prepend() {
88	cd ${S}
89	FROM_BOOTSTRAP=1 ${S}/autogen.sh
90	cd ${B}
91}
92