The clamav database is quite large and occupies valuable
space on the root partition that on older systems is only
2GB large. This change moves the virus definition database
to the /var partition which is larger and supposed to hold
data like this anyway.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Update ClamAV to 0.100.0, which brings some new features and bugfixes
(release notes are available here: https://blog.clamav.net/2018/04/clamav-01000-has-been-released.html).
Since the internal LLVM code is now deprecated and disabled by default,
patching clamav/libclamav/c++/llvm/lib/ExecutionEngine/JIT/Intercept.cpp
does not seem to be necessary anymore.
Further, the --disable-zlib-vcheck option has been removed since it
produces warnings during compilation.
Signed-off-by: Peter Müller <peter.mueller@link38.eu>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Excerpt from 'README':
"ClamAV 0.99.3 is a hotfix release to patch a set of vulnerabilities.
- fixes for the following CVE's: CVE-2017-6418, CVE-2017-6420,
CVE-2017-12374, CVE-2017-12375, CVE-2017-12376, CVE-2017-12377,
CVE-2017-12378, CVE-2017-12379, CVE-2017-12380.
- also included are 2 minor fixes to properly detect openssl install
locations on FreeBSD 11, and prevent false warnings about zlib 1.2.1#
version numbers."
For details see:
http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
Best,
Matthias
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Since the new toolchain the flags are not compiled into the
binaries any more which causes paxctl to fail.
On top of that, PaX and grsecurity won't be available freely
any more which requires us to remove it from the distribution.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
The build environment is using a number of variables which
occasionally conflicted with some other build systems.
This patch cleans that up by renaming some variables and
later unexporting them in the lfs files.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Disable using fanotify:
CC fan.o
In file included from fan.c:38:
fan-syscalllib.h:14:3: error: #error "System call numbers not defined for this architecture"
In file included from fan.c:38:
fan-syscalllib.h: In function 'fanotify_init':
fan-syscalllib.h:19: error: '__NR_fanotify_init' undeclared (first use in this function)
fan-syscalllib.h:19: error: (Each undeclared identifier is reported only once
fan-syscalllib.h:19: error: for each function it appears in.)
fan-syscalllib.h: In function 'fanotify_mark':
fan-syscalllib.h:25: error: '__NR_fanotify_mark' undeclared (first use in this function)
make[3]: *** [fan.o] Error 1
make[3]: Leaving directory `/usr/src/clamav-0.98/clamd'
make[2]: *** [all-recursive] Error 1
make[2]: Leaving directory `/usr/src/clamav-0.98'
make[1]: *** [all] Error 2
make[1]: Leaving directory `/usr/src/clamav-0.98'
make: *** [/usr/src/log/clamav-0.98] Error 2
