1require go-common.inc 2 3FILESEXTRAPATHS:prepend := "${FILE_DIRNAME}/go-1.18:" 4 5LIC_FILES_CHKSUM = "file://LICENSE;md5=5d4950ecb7b26d2c5e4e7b4e0dd74707" 6 7SRC_URI += "\ 8 file://0001-allow-CC-and-CXX-to-have-multiple-words.patch \ 9 file://0002-cmd-go-make-content-based-hash-generation-less-pedan.patch \ 10 file://0003-allow-GOTOOLDIR-to-be-overridden-in-the-environment.patch \ 11 file://0004-ld-add-soname-to-shareable-objects.patch \ 12 file://0005-make.bash-override-CC-when-building-dist-and-go_boot.patch \ 13 file://0006-cmd-dist-separate-host-and-target-builds.patch \ 14 file://0007-cmd-go-make-GOROOT-precious-by-default.patch \ 15 file://0008-use-GOBUILDMODE-to-set-buildmode.patch \ 16 file://0009-Revert-cmd-go-make-sure-CC-and-CXX-are-absolute.patch \ 17 file://0001-exec.go-do-not-write-linker-flags-into-buildids.patch \ 18 file://0001-src-cmd-dist-buildgo.go-do-not-hardcode-host-compile.patch \ 19 file://CVE-2022-27664.patch \ 20 file://0001-net-http-httputil-avoid-query-parameter-smuggling.patch \ 21 file://CVE-2022-41715.patch \ 22 file://CVE-2022-41717.patch \ 23 file://CVE-2022-2879.patch \ 24 file://CVE-2022-41720.patch \ 25 file://CVE-2022-41723.patch \ 26" 27SRC_URI[main.sha256sum] = "a1a48b23afb206f95e7bbaa9b898d965f90826f6f1d1fc0c1d784ada0cd300fd" 28 29# Upstream don't believe it is a signifiant real world issue and will only 30# fix in 1.17 onwards where we can drop this. 31# https://github.com/golang/go/issues/30999#issuecomment-910470358 32CVE_CHECK_IGNORE += "CVE-2021-29923" 33