1*4882a593Smuzhiyun# SPDX-FileCopyrightText: Huawei Inc. 2*4882a593Smuzhiyun# 3*4882a593Smuzhiyun# SPDX-License-Identifier: Apache-2.0 4*4882a593SmuzhiyunSUMMARY = "wpantund, Userspace WPAN Network Daemon" 5*4882a593SmuzhiyunSECTION = "net" 6*4882a593SmuzhiyunLICENSE = "Apache-2.0 & MIT & BSL-1.0 & BSD-3-Clause" 7*4882a593SmuzhiyunLIC_FILES_CHKSUM = "file://LICENSE;md5=e7820bc7f7d1638a6b54fc2e8d7fb103 \ 8*4882a593Smuzhiyun file://third_party/assert-macros/LICENSE;md5=cbf35ecdc8161026afe4da2906fab204 \ 9*4882a593Smuzhiyun file://third_party/boost/LICENSE;md5=e4224ccaecb14d942c71d31bef20d78c \ 10*4882a593Smuzhiyun file://third_party/fgetln/LICENSE;md5=389e03d2254ecad45d0d9bbdefef7129 \ 11*4882a593Smuzhiyun file://third_party/openthread/LICENSE;md5=543b6fe90ec5901a683320a36390c65f \ 12*4882a593Smuzhiyun file://third_party/pt/LICENSE;md5=dcd598b69cad786beea33da7b1ae14b7 \ 13*4882a593Smuzhiyun " 14*4882a593SmuzhiyunDEPENDS = "autoconf-archive dbus readline boost" 15*4882a593SmuzhiyunSRCREV = "0fb1f57e4224e2df3e630e146702bfcf63fbf07a" 16*4882a593SmuzhiyunPV = "0.07.01+git${SRCPV}" 17*4882a593Smuzhiyun 18*4882a593SmuzhiyunSRC_URI = "gitsm://github.com/openthread/wpantund.git;protocol=https;branch=master \ 19*4882a593Smuzhiyun " 20*4882a593Smuzhiyun 21*4882a593SmuzhiyunS = "${WORKDIR}/git" 22*4882a593Smuzhiyun 23*4882a593Smuzhiyuninherit pkgconfig perlnative autotools 24*4882a593Smuzhiyun 25*4882a593Smuzhiyun# CVE-2020-8916 has been fixed in commit 26*4882a593Smuzhiyun# 3f108441e23e033b936e85be5b6877dd0a1fbf1c which is included in the SRCREV 27*4882a593Smuzhiyun# CVE-2021-33889 has been fixed in commit 28*4882a593Smuzhiyun# a8f3f761f6753b567d1e5ad22cbe6b0ceb6f2649 which is included in the SRCREV 29*4882a593Smuzhiyun# There has not been a wpantund release as of yet that includes these fixes. 30*4882a593Smuzhiyun# That means cve-check can not match them. Once a new release comes we can 31*4882a593Smuzhiyun# remove the ignore statement. 32*4882a593SmuzhiyunCVE_CHECK_IGNORE = "CVE-2020-8916 CVE-2021-33889" 33