[Buildroot] [PATCH] package/frr: bump to version 10.3
Julien Olivain
ju.o at free.fr
Fri Apr 4 18:37:42 UTC 2025
Hi Maxime,
Thank you for the patch.
In the release note at:
https://frrouting.org/release/10.3/
There is a mention about a "Fixed CVE-2024-55553". Could you
update the patch title to:
"package/frr: security bump to version 10.3"
please?
On 03/04/2025 21:07, Maxime Leroy wrote:
> Update FRR to the latest stable version (10.3).
To make review easier, could you add the link of the release
announce in the commit log? For example:
Release announce:
https://frrouting.org/release/10.3/
https://frrouting.org/release/
> The configure options have been updated accordingly:
> - Versions of FRR before 9.2 used `sysconfdir` and `localstatedir`
> as-is,
> without appending `/frr`. The `/frr` suffix had to be passed
> explicitly
> to `./configure`, which did not align with standard conventions.
> This behavior has since been fixed upstream [1]. As `sysconfdir` and
> `localstatedir` are already set by `pkg-autotools.mk`, they can now
> be removed from `frr.mk`.
> - The `--enable-shell-access` option has been removed as of FRR 10 [2].
When there is a CVE fixed, it is also good to add a link to it. Could
you
add here in the commit log:
Fixes:
- https://www.cve.org/CVERecord?id=CVE-2024-55553
> [1] https://github.com/FRRouting/frr/commit/ff62df2e4484
> [2] https://github.com/FRRouting/frr/commit/afb034b0bb42
>
> Signed-off-by: Maxime Leroy <maxime at leroys.fr>
> ---
> package/frr/frr.hash | 2 +-
> package/frr/frr.mk | 5 +----
> 2 files changed, 2 insertions(+), 5 deletions(-)
[...]
> diff --git a/package/frr/frr.mk b/package/frr/frr.mk
> index 5391bcb265..82a4673ab7 100644
> --- a/package/frr/frr.mk
> +++ b/package/frr/frr.mk
> @@ -4,7 +4,7 @@
> #
>
> ################################################################################
>
> -FRR_VERSION = 9.1.3
> +FRR_VERSION = 10.3
This new 10.3 version seems to introduce new build failures. See:
https://gitlab.com/jolivain/buildroot/-/pipelines/1751371370
For reference, the previous 9.1.3 version builds is:
https://gitlab.com/jolivain/buildroot/-/pipelines/1751537318
There is possibly new toolchain or kernel header requirements. Could
you have a look to those build failures, please?
Best regards,
Julien.
More information about the buildroot
mailing list