buildroot.git
5 years agopackage/civetweb: fix link failure due to missing OpenSSL dependency
Giulio Benetti [Tue, 9 Apr 2019 21:10:32 +0000 (23:10 +0200)]
package/civetweb: fix link failure due to missing OpenSSL dependency

During linking one OpenSSL dependecy is missing(-latomic) on linking
library list.

- Substitute explicit library list with `pkg-config libssl` when
  BR2_PACKAGE_OPENSSL is enabled. In such way all needed libraries
  will be included in linking list.

- Add also `host-pkgconf` to CIVETWEB_DEPENDENCIES if
  BR2_PACKAGE_OPENSSL is enabled to make it available for previous
  point.

Fixes:

  http://autobuild.buildroot.net/results/b2e210bdefe84f4ec9cfda79a33d81788fb7e66c/

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tor: fix static build with openssl and atomic
Fabrice Fontaine [Tue, 9 Apr 2019 21:06:52 +0000 (23:06 +0200)]
package/tor: fix static build with openssl and atomic

Update patch so -latomic (provided in LIBS) is added after openssl libs
(provided in $3)

Fixes:
 - http://autobuild.buildroot.org/results/4b90b7d02e354ebf3d8f95023547bf4a18e0165e

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tpm2-totp: new package
Peter Korsgaard [Mon, 8 Apr 2019 11:56:47 +0000 (13:56 +0200)]
package/tpm2-totp: new package

Library and utility for TOTP based attestation using the tpm2-tss software
stack.

Add an upstream patch to fix format string mismatch errors when building for
32bit architectures.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tpm2-tss: add upstream patch to drop hardcoded -lgcrypt from tss2-esys.pc
Peter Korsgaard [Mon, 8 Apr 2019 11:56:46 +0000 (13:56 +0200)]
package/tpm2-tss: add upstream patch to drop hardcoded -lgcrypt from tss2-esys.pc

tss2-esys.pc contains a hardcoded -lgcrypt even though the openssl crypto
backend (as in Buildroot) may be used, leading to linker errors when using
esys.

Given that tpm2-tss doesn't allow static linking, there is no need to
explicitly list the crypto library dependency.

Cherry pick an upstream patch to fix this.  Notice that the upstream patch
also changes the default crypto backend to openssl.  As this isn't stricly
needed (we explicitly configure for openssl) and requires autoreconv, drop
the configure.ac hunk from the patch.

https://github.com/tpm2-software/tpm2-tss/pull/1173

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoboot/barebox: add missing newline at EOF in hash file
Bartosz Bilas [Mon, 8 Apr 2019 19:17:48 +0000 (21:17 +0200)]
boot/barebox: add missing newline at EOF in hash file

Fixes the following check-package warning:

   boot/barebox/barebox.hash:5: missing newline at end of file

Signed-off-by: Bartosz Bilas <b.bilas@grinn-global.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tpm2-tools: license is 3c BSD, not 2c
Peter Korsgaard [Mon, 8 Apr 2019 19:22:57 +0000 (21:22 +0200)]
package/tpm2-tools: license is 3c BSD, not 2c

The license contains the "no endorsement" clause, so it should be listed as
BSD-3-Clause:

  * Neither the name of Intel Corporation nor the names of its contributors
    may be used to endorse or promote products derived from this software
    without specific prior written permission.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/android-tools: fix static linking failure due to OpenSSL dependencies
Giulio Benetti [Mon, 8 Apr 2019 15:43:11 +0000 (17:43 +0200)]
package/android-tools: fix static linking failure due to OpenSSL dependencies

When static linking some dependency library can be missing
(i.e. -latomic for -lcrypto) on linking libraries list. This is
because when static linking libraries dependencies are not
transparently linked into binary.

To avoid moving libraries before/after one another or add new ones
that are not needed at all in the dynamic linking case, we use `pkg-config --libs
LIBRARY` where LIBRARY is the library we "probe" for its existence and
dependency.

In this commit, we:

- Remove 0005-fix-static-link-zlib.patch where -lcrypto and -lz were
  swapped, as it is no longer needed thanks to the following point.

- Replace it with 0005-Use-pkgconf-to-get-libs-deps.patch where
  -lcrypto has been substituted with `pkg-config --libs libcrypto`

- Add host-pkgconf to ANDROID_TOOLS_DEPENDENCIES

Fixes:

  http://autobuild.buildroot.net/results/d3d6679cfc8afe4467368bd3d31483172c1032de/

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/openjdk: fix alsa-lib dependencies
Adam Duskett [Mon, 8 Apr 2019 18:10:35 +0000 (14:10 -0400)]
package/openjdk: fix alsa-lib dependencies

OpenJDK requires the following alsa-lib modules to be build:
  - mixer
  - pcm
  - rawmidi
  - seq

Fixes:

  http://autobuild.buildroot.net/results/c35d64e659960663c935a31f4cb8ed4180728eb1
  http://autobuild.buildroot.net/results/845fe32967c9879b6c1adbf0630f358be215e174

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoDEVELOPERS: monitor pkg-golang.mk
Anisse Astier [Mon, 8 Apr 2019 11:47:31 +0000 (13:47 +0200)]
DEVELOPERS: monitor pkg-golang.mk

Signed-off-by: Anisse Astier <anisse@astier.eu>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoDEVELOPERS: add Christian Stewart for package/pkg-golang
Christian Stewart [Mon, 8 Apr 2019 07:13:36 +0000 (00:13 -0700)]
DEVELOPERS: add Christian Stewart for package/pkg-golang

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/gnutls: security bump to 3.6.7.1
Sørensen, Stefan [Wed, 3 Apr 2019 06:14:32 +0000 (06:14 +0000)]
package/gnutls: security bump to 3.6.7.1

Fixes the following security issues:

 * CVE-2019-3836: It was discovered in gnutls before version 3.6.7 upstream
   that there is an uninitialized pointer access in gnutls versions 3.6.3 or
   later which can be triggered by certain post-handshake messages

 * CVE-2019-3829: A vulnerability was found in gnutls versions from 3.5.8
   before 3.6.7. A memory corruption (double free) vulnerability in the
   certificate verification API. Any client or server application that
   verifies X.509 certificates with GnuTLS 3.5.8 or later is affected.

3.6.7.1 is identical to 3.6.7, but fixes a packaging issue in the release
tarball:

https://lists.gnutls.org/pipermail/gnutls-devel/2019-April/013086.html

HTTP URLs changed to HTTPS in COPYING, so update license hash.

Signed-off-by: Stefan Sørensen <stefan.sorensen@spectralink.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoboot/barebox: bump version to 2019.04.0
Bartosz Bilas [Sun, 7 Apr 2019 19:33:54 +0000 (21:33 +0200)]
boot/barebox: bump version to 2019.04.0

Signed-off-by: Bartosz Bilas <b.bilas@grinn-global.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/nvme: bump to version 1.7
Fabrice Fontaine [Sun, 7 Apr 2019 13:36:43 +0000 (15:36 +0200)]
package/nvme: bump to version 1.7

- Remove patch (already in version)
- Add upstream patch to fix build
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/nvme: add optional util-linux dependency
Fabrice Fontaine [Sun, 7 Apr 2019 13:36:42 +0000 (15:36 +0200)]
package/nvme: add optional util-linux dependency

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/gst1-plugins-good: add option for qmlgl plugin (qt5 plugin)
Iñigo Huguet [Tue, 18 Sep 2018 10:58:27 +0000 (12:58 +0200)]
package/gst1-plugins-good: add option for qmlgl plugin (qt5 plugin)

gst1-plugins-good is built with --disable-qt option, so qmlgl plugin
is disabled. Add an option to enable it, allowing to use the qmlglsrc
and qmlglsink GStreamer elements.

Signed-off-by: Iñigo Huguet <inigohuguet@fanamoel.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/docker-cli: bump to version v18.09.4
Peter Korsgaard [Mon, 1 Apr 2019 18:23:51 +0000 (20:23 +0200)]
package/docker-cli: bump to version v18.09.4

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/docker-engine: bump to version v18.09.4
Peter Korsgaard [Mon, 1 Apr 2019 18:23:50 +0000 (20:23 +0200)]
package/docker-engine: bump to version v18.09.4

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/docker-containerd: refer to official website
Peter Korsgaard [Mon, 1 Apr 2019 18:23:49 +0000 (20:23 +0200)]
package/docker-containerd: refer to official website

Containerd is no longer maintained under the docker github project and now
has an official website, so refer to that in the help text.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/docker-containerd: bump version to v1.2.5
Peter Korsgaard [Mon, 1 Apr 2019 18:23:48 +0000 (20:23 +0200)]
package/docker-containerd: bump version to v1.2.5

Contains a number of bugfixes. For more details, see the announcement:

https://github.com/containerd/containerd/releases/tag/v1.2.5

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoRevert "runc: depend on linux headers >= 3.11 for O_TMPFILE"
Peter Korsgaard [Mon, 1 Apr 2019 18:23:47 +0000 (20:23 +0200)]
Revert "runc: depend on linux headers >= 3.11 for O_TMPFILE"

This reverts commit 905e976a6af224b3ed015c46fcea2d717c155f55.

With the bump to 1.0.0-rc7, runc no longer needs O_TMPFILE.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoRevert "package/runc: blacklist Codesourcery ARM toolchain"
Peter Korsgaard [Mon, 1 Apr 2019 18:23:46 +0000 (20:23 +0200)]
Revert "package/runc: blacklist Codesourcery ARM toolchain"

This reverts commit ce76a989022baa6395b874ed44b9246bba053f8a.

With the bump to 1.0.0-rc7, runc no longer needs O_TMPFILE.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/runc: bump to version 1.0.0-rc7
Peter Korsgaard [Mon, 1 Apr 2019 18:23:45 +0000 (20:23 +0200)]
package/runc: bump to version 1.0.0-rc7

This includes an improved fix for CVE-2019-5736 without the ~10MB memory
overhead per container and with fallback code using mkostemp(3) when
O_TMPFILE isn't available.

For more details, see the announcement:
https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc7

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libmicrohttpd: bump version to 0.9.63
Bernd Kuhls [Sun, 7 Apr 2019 11:50:40 +0000 (13:50 +0200)]
package/libmicrohttpd: bump version to 0.9.63

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/php: security bump to version 7.3.4
Bernd Kuhls [Sun, 7 Apr 2019 11:27:49 +0000 (13:27 +0200)]
package/php: security bump to version 7.3.4

Changelog: https://www.php.net/ChangeLog-7.php#7.3.4

Fixes these bugs, CVE-ID were not assigned yet:

    Fixed bug #77753 (Heap-buffer-overflow in php_ifd_get32s).
    Fixed bug #77831 (Heap-buffer-overflow in exif_iif_add_value).

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/mpc: bump to version 1.1.0
Fabrice Fontaine [Sun, 7 Apr 2019 10:06:55 +0000 (12:06 +0200)]
package/mpc: bump to version 1.1.0

- Add hash for license file
- Fix build with mpfr 4.0.2

Fixes:
 - http://autobuild.buildroot.org/results/56c0e9e7e42320cdb7f8825889ff560b80ac10d4

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/numactl: remove unneeded patches
Fabrice Fontaine [Sun, 7 Apr 2019 09:06:14 +0000 (11:06 +0200)]
package/numactl: remove unneeded patches

Both patches are already included (a bit earlier in the file) in version
2.0.12, so drop the patches.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/v4l2loopback: bump to version v0.12.1
James Hilliard [Sun, 7 Apr 2019 08:51:42 +0000 (02:51 -0600)]
package/v4l2loopback: bump to version v0.12.1

This should fix a kernel 5.x.x compatibility issue.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years ago{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.0.x series
Peter Korsgaard [Sun, 7 Apr 2019 07:31:04 +0000 (09:31 +0200)]
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.0.x series

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/copas: avoid to load module coxpocall with LuaJIT
Francois Perrad [Sun, 7 Apr 2019 08:59:07 +0000 (10:59 +0200)]
package/copas: avoid to load module coxpocall with LuaJIT

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/gettext-tiny: do not install headers
Vadim Kochan [Sun, 7 Apr 2019 08:46:24 +0000 (11:46 +0300)]
package/gettext-tiny: do not install headers

Since:

    https://github.com/sabotage-linux/gettext-tiny/commit/58187329ad9f00eb8c39379e7ee0b608dd14bab8

gettext macrosesss are used by default (if no LIBINTL_NO_MACROS is
included in CPPFLAGS). It causes packages such as libglib2 to fail
building with argument format errors because in case of error the
formatted string is passed as argument.

Fix it by prevent the installation of libintl.h header from
gettext-tiny by passing LIBINTL=NONE, because each kind of toolchain
already provides gettext stubs. Also with this change the following
patch is not needed:

0001-libintl-Fix-format-not-a-string-literal-error-for-gc.patch

Fixes:
http://autobuild.buildroot.net/results/89fcc4e80ea8c031c1abb350362c19c57eb80e7c/
http://autobuild.buildroot.net/results/84f3eb70fc1c58986dfa7c79d45aaabdf4c011cf/

and a lot other autobuild reports.

Signed-off-by: Vadim Kochan <vadim4j@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoboot/syslinux: fix build with binutils note gnu property section
Christian Stewart [Fri, 5 Apr 2019 06:40:55 +0000 (23:40 -0700)]
boot/syslinux: fix build with binutils note gnu property section

Fixes #11756

This fixes the following build error with newer binutils:

  objcopy -O binary mbr.elf mbr.bin
  perl /build/syslinux/src/syslinux/mbr/checksize.pl mbr.bin
  mbr.bin: too big (452 > 440)

Corresponding bug reports:

 - https://bugs.archlinux.org/task/60405
 - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906414

Strip the .note.gnu.property in the linker scripts for the MBRs.

Signed-off-by: Christian Stewart <christian@paral.in>
Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/mpfr: bump to version 4.0.2
Fabrice Fontaine [Sun, 7 Apr 2019 08:11:43 +0000 (10:11 +0200)]
package/mpfr: bump to version 4.0.2

- Remove patch (already in version)
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/vdr-plugin-vnsiserver: bump to version 1.8.0
Fabrice Fontaine [Sun, 7 Apr 2019 08:00:48 +0000 (10:00 +0200)]
package/vdr-plugin-vnsiserver: bump to version 1.8.0

Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/ffmpeg: disable asm on mips r6
Fabrice Fontaine [Sun, 7 Apr 2019 07:58:16 +0000 (09:58 +0200)]
package/ffmpeg: disable asm on mips r6

Fixes:
 - http://autobuild.buildroot.org/results/f5125bde6d3604af3342a205a8445947aff95d5a
 - http://autobuild.buildroot.org/results/beb70bd6c1dd9abf7bc1b53299ba0094a36f4179

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/wsapi: update coxpcall dependency
Francois Perrad [Fri, 5 Apr 2019 16:03:21 +0000 (18:03 +0200)]
package/wsapi: update coxpcall dependency

since version 1.7, coxpcall is only required with Lua 5.1

see, https://github.com/keplerproject/wsapi/pull/41

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: pine64: Bump to u-boot version 2019.01
Shyam Saini [Fri, 5 Apr 2019 07:40:02 +0000 (13:10 +0530)]
configs: pine64: Bump to u-boot version 2019.01

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: pine64: Bump to the linux kernel 5.0
Shyam Saini [Fri, 5 Apr 2019 07:40:01 +0000 (13:10 +0530)]
configs: pine64: Bump to the linux kernel 5.0

This bumps to linux/linux-headers 5.0

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: orangepi_zero_plus2: Bump to u-boot version 2019.01
Shyam Saini [Fri, 5 Apr 2019 07:40:00 +0000 (13:10 +0530)]
configs: orangepi_zero_plus2: Bump to u-boot version 2019.01

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: orangepi_zero_plus2: Bump to the linux kernel 5.0
Shyam Saini [Fri, 5 Apr 2019 07:39:59 +0000 (13:09 +0530)]
configs: orangepi_zero_plus2: Bump to the linux kernel 5.0

This bumps to linux/linux-headers 5.0

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: orangepi_pc2: Bump to u-boot version 2019.01
Shyam Saini [Fri, 5 Apr 2019 07:39:58 +0000 (13:09 +0530)]
configs: orangepi_pc2: Bump to u-boot version 2019.01

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: orangepi_pc2: Bump to the linux kernel 5.0
Shyam Saini [Fri, 5 Apr 2019 07:39:57 +0000 (13:09 +0530)]
configs: orangepi_pc2: Bump to the linux kernel 5.0

This bumps to linux/linux-headers 5.0

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: friendlyarm_nanopi_neo2: Bump to u-boot version 2019.01
Shyam Saini [Fri, 5 Apr 2019 07:39:56 +0000 (13:09 +0530)]
configs: friendlyarm_nanopi_neo2: Bump to u-boot version 2019.01

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: friendlyarm_nanopi_neo2: Bump to the linux kernel 5.0
Shyam Saini [Fri, 5 Apr 2019 07:39:55 +0000 (13:09 +0530)]
configs: friendlyarm_nanopi_neo2: Bump to the linux kernel 5.0

This bumps to linux/linux-headers 5.0

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: friendlyarm_nanopi_a64: Bump to u-boot version 2019.01
Shyam Saini [Fri, 5 Apr 2019 07:39:54 +0000 (13:09 +0530)]
configs: friendlyarm_nanopi_a64: Bump to u-boot version 2019.01

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoconfigs: friendlyarm_nanopi_a64: Bump to the linux kernel 5.0
Shyam Saini [Fri, 5 Apr 2019 07:39:53 +0000 (13:09 +0530)]
configs: friendlyarm_nanopi_a64: Bump to the linux kernel 5.0

This bumps to linux/linux-headers 5.0

Signed-off-by: Shyam Saini <shyam.saini@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agotoolchain/toolchain-external-custom: support Linux 5.1
Clément Leger [Thu, 4 Apr 2019 07:01:42 +0000 (09:01 +0200)]
toolchain/toolchain-external-custom: support Linux 5.1

Signed-off-by: Clement Leger <clement.leger@kalray.eu>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agotoolchain: add BR2_TOOLCHAIN_HEADERS_AT_LEAST_5_1
Clément Leger [Thu, 4 Apr 2019 07:01:11 +0000 (09:01 +0200)]
toolchain: add BR2_TOOLCHAIN_HEADERS_AT_LEAST_5_1

Signed-off-by: Clement Leger <clement.leger@kalray.eu>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/libp11: fix help text
Yann E. MORIN [Sun, 7 Apr 2019 06:39:44 +0000 (08:39 +0200)]
package/libp11: fix help text

Fixes a check-package warning:

package/libp11/Config.in.host:4: help text: <tab><2 spaces><62 chars>
 (http://nightly.buildroot.org/#writing-rules-config-in)

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Trent Piepho <tpiepho@impinj.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/bayer2rgb-neon: bump version
Giulio Benetti [Wed, 3 Apr 2019 21:12:31 +0000 (23:12 +0200)]
package/bayer2rgb-neon: bump version

Actually build fails with musl libc due to missing header inclusion
<unistd.h> (usually included by stdlib.h) in package code which in order
contains type definition of ssize_t.
A Git repository has been setted up for this project as upstream, and
contains a commit which solves build failure removing the use of ssize_t
at all.
No other http tarballs have been released on current site, so
development seems to continue on Git repository.

- Set SITE_METHOD = git
- Switch site to: https://gitlab-ext.sigma-chemnitz.de/ensc/bayer2rgb
- Bump version to latest commit to include commit which fixes build
  failure.

Fixes:
http://autobuild.buildroot.net/results/c84/c84b65642cb1b2d246f3a92ac957af5c5fcb86e8/

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/mrouted: bump to version 3.9.8
Fabrice Fontaine [Sat, 6 Apr 2019 20:51:09 +0000 (22:51 +0200)]
package/mrouted: bump to version 3.9.8

- Remove patch (already in version)
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/mxml: bump to version 3.0
Fabrice Fontaine [Sat, 6 Apr 2019 21:10:10 +0000 (23:10 +0200)]
package/mxml: bump to version 3.0

- Remove patch (already in version)
- Add hash for license files
- Change license to "Apache-2.0 with exceptions", see:
  https://github.com/michaelrsweet/mxml/commit/f166ad1977f2f13295689772a5d9e442f73d46f1

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/gerbera: fix hash
Fabrice Fontaine [Sat, 6 Apr 2019 22:16:53 +0000 (00:16 +0200)]
package/gerbera: fix hash

Fixes:
 - http://autobuild.buildroot.org/results/d4af0a277dc293ab0f9d7b4e1dd801fd6d00f2d7

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/sane-backends: security bump to version 1.0.27
Fabrice Fontaine [Sat, 6 Apr 2019 13:59:04 +0000 (15:59 +0200)]
package/sane-backends: security bump to version 1.0.27

- Switch site to gitlab
- Remove second patch (already in version)
- Use new --{with,without}-usb option
- Add hash for license file
- Fix CVE-2017-6318

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/wget: security bump to version 1.20.3
Peter Korsgaard [Sat, 6 Apr 2019 07:42:12 +0000 (09:42 +0200)]
package/wget: security bump to version 1.20.3

Fixes CVE-2019-5953: Buffer overflow vulnerability

For more details, see the announcement:
https://lists.gnu.org/archive/html/bug-wget/2019-04/msg00015.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/sysklogd: bump to version 1.6
Fabrice Fontaine [Fri, 5 Apr 2019 20:16:37 +0000 (22:16 +0200)]
package/sysklogd: bump to version 1.6

- Switch site to github
- Drop all patches (already in version or not needed anymore)
- Switch to autotools infrastructure
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agofs/common.mk: disable real chown calls in fakeroot
Peter Korsgaard [Wed, 3 Apr 2019 20:13:25 +0000 (22:13 +0200)]
fs/common.mk: disable real chown calls in fakeroot

fakeroot by default forwards {f,l,}chown calls to libc and ignores
permission issues, which may cause issues when building in restricted
environments like user namespaces as set up with bubblewrap where a chown
call with a uid/gid not mapped in the user namespace instead returns EINVAL.
This error is not masked by fakeroot and returned to the caller, causing
failures.

There is no real reason to really perform the *chown calls in the context of
Buildroot (as the calls will likely just fail and files are not accessed
outside the fakeroot environment any way).

This forwarding can be disabled by setting the FAKEROOTDONTTRYCHOWN
environment variable, so set it when fakeroot is executed.

Reported-by: Esben Nielsen <nielsen.esben@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoDEVELOPERS: stop monitoring aer-inject
Carlos Santos [Sat, 6 Apr 2019 00:56:26 +0000 (21:56 -0300)]
DEVELOPERS: stop monitoring aer-inject

I left DATACOM and will unlikely have access to the hardware required to
test the package.

Signed-off-by: Carlos Santos <unixmania@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/make: include patch for gl_lstat support
Samuel Mendoza-Jonas [Thu, 4 Apr 2019 22:54:57 +0000 (09:54 +1100)]
package/make: include patch for gl_lstat support

Include upstream commit 193f1e8 "glob: Do not assume glibc glob
internals". Without this if building glibc with host-make it will fail
with a segfault in make:

>>> glibc glibc-2.28-69-g1e5c5303a522764d7e9d2302a60e4a32cdb902f1 Building
PATH="/scratch/builds/host-make/host/bin:/scratch/builds/host-make/host/sbin:/home/sam/bin:/home/sam/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games"  /scratch/builds/host-make/host/bin/host-make -j25  -C /scratch/builds/host-make/build/glibc-glibc-2.28-69-g1e5c5303a522764d7e9d2302a60e4a32cdb902f1/build
/scratch/builds/host-make/host/bin/host-make -r PARALLELMFLAGS="" -C /scratch/builds/host-make/build/glibc-glibc-2.28-69-g1e5c5303a522764d7e9d2302a60e4a32cdb902f1 objdir=`pwd` all
Segmentation fault (core dumped)

Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/trinity: bump to version 1.9
Fabrice Fontaine [Fri, 5 Apr 2019 18:56:44 +0000 (20:56 +0200)]
package/trinity: bump to version 1.9

Remove all patches (already in version)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/qdecoder: bump to version 12.0.7
Fabrice Fontaine [Fri, 5 Apr 2019 17:10:22 +0000 (19:10 +0200)]
package/qdecoder: bump to version 12.0.7

- Remove all patches (already in version)
- Drop AUTORECONF as configure.ac is not patched anymore
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/gerbera: bump to version 1.3.1
Fabrice Fontaine [Fri, 5 Apr 2019 17:04:22 +0000 (19:04 +0200)]
package/gerbera: bump to version 1.3.1

Remove all patches (already in version)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agoDEVELOPERS: use my personal email address
Carlos Santos [Fri, 5 Apr 2019 13:38:51 +0000 (10:38 -0300)]
DEVELOPERS: use my personal email address

The current address will soon become invalid so drop it before the
messages start bouncing.

Change-Id: If631cedcaaa55d927d99b18ff299324e9d439cb0

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/jq: add oniguruma optional dependency
Fabrice Fontaine [Sun, 31 Mar 2019 15:12:06 +0000 (17:12 +0200)]
package/jq: add oniguruma optional dependency

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/oniguruma: new package
Fabrice Fontaine [Sun, 31 Mar 2019 15:12:05 +0000 (17:12 +0200)]
package/oniguruma: new package

Oniguruma is a modern and flexible regular expressions
library. It encompasses features from different regular
expression implementations that traditionally exist in
different languages.

https://github.com/kkos/oniguruma

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoutils/getdeveloperlib.py: print warnings/errors to stderr
Peter Korsgaard [Thu, 4 Apr 2019 06:58:12 +0000 (08:58 +0200)]
utils/getdeveloperlib.py: print warnings/errors to stderr

Instead of stdout where it gets mixed with the normal output, confusing
software parsing the output (E.G. get-developers -e as git sendemail.ccCmd).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tpm2-tools: drop unused dbus / libglib2 dependencies
Peter Korsgaard [Thu, 4 Apr 2019 19:00:28 +0000 (21:00 +0200)]
package/tpm2-tools: drop unused dbus / libglib2 dependencies

tpm2-tools does not need dbus or libglib2, so remove them and the
corresponding toolchain dependencies.

The confusion may have come from the upstream travis configuration, which
also builds tpm2-abrmd (which uses dbus+libglib2).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/pkg-autotools: disable NLS for host packages by default
Vadim Kochan [Thu, 4 Apr 2019 09:56:12 +0000 (12:56 +0300)]
package/pkg-autotools: disable NLS for host packages by default

There is no need for language translaion feature for the host
packages, anyway some of them disable it explicitly, so lets do it
automatically at least for the host-autotools- kind of packages.

Signed-off-by: Vadim Kochan <vadim4j@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/gettext-tiny: bump version to add --template option
Giulio Benetti [Thu, 4 Apr 2019 14:31:32 +0000 (16:31 +0200)]
package/gettext-tiny: bump version to add --template option

Some packages (i.e. rygel) uses the msgfmt tool with its --template
option. However, the current version of gettext-tiny (0.3.1) doesn't
support --template flag and exits giving: "fopen: No such file or
directory".

In upstream gettext-tiny they have added support for --template after
lots of modifications, so it's hard to produce a patch to be applied
against 0.3.1. Therefore, we bump the version to the latest master
branch commit.

Fixes:

  http://autobuild.buildroot.net/results/77b1854c914915d3205d915a0f01001f6f3555df/

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libp11: new package
Trent Piepho [Fri, 7 Dec 2018 18:13:30 +0000 (18:13 +0000)]
package/libp11: new package

Library for using PKCS#11, which includes an engine for OpenSSL that
lets it use PKCS#11 modules.  Which is really what this package is
about, not that libp11 library itself, which has no users outside the
of OpenSSL engine.

If p11-kit is enabled, configure the engine to use that as the default
PKCS#11 module.  That module is a sort of multiplexer that allows
multiple modules to be used at once, so it makes sense to use it even
if there are other modules present, e.g. softhsm2, nssckbi,
pkcs11-proxy, ykcs11, etc.

A host package is created too, with a host configuration option.
Since this a dynamically loaded module, there is no build time reason
to select it from a host package.  It could be used by host openssl,
to allow host rauc to sign a software update bundle using a key from a
HSM with a PKCS#11 interface.

Signed-off-by: Trent Piepho <tpiepho@impinj.com>
Tested-by: Frank Hunleth <fhunleth@troodon-software.com>
[Thomas:
 - add entry in DEVELOPERS file
 - add missing !BR2_STATIC_LIBS dependency
 - fix license information, as noticed by Frank Hunleth
 - add missing dependency on host-pkgconf, needed by the configure
   script to detect openssl
 - explicitly pass --with-enginesdir as the value returned by
   pkg-config is incorrectly prefixed by the sysroot]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/pkg-generic: simplify dependency tree
Yann E. MORIN [Wed, 3 Apr 2019 20:48:56 +0000 (22:48 +0200)]
package/pkg-generic: simplify dependency tree

Why do things simply, when we can do it complicated?

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libcamera: new package
Kieran Bingham [Wed, 3 Apr 2019 11:29:02 +0000 (18:29 +0700)]
package/libcamera: new package

http://libcamera.org/

Cameras are complex devices that need heavy hardware image processing
operations. Control of the processing is based on advanced algorithms
that must run on a programmable processor. This has traditionally been
implemented in a dedicated MCU in the camera, but in embedded devices
algorithms have been moved to the main CPU to save cost. Blurring the
boundary between camera devices and Linux often left the user with no
other option than a vendor-specific closed-source solution.

To address this problem the Linux media community has very recently
started collaboration with the industry to develop a camera stack that
will be open-source-friendly while still protecting vendor core IP.
libcamera was born out of that collaboration and will offer modern
camera support to Linux-based systems, including traditional Linux
distributions, ChromeOS and Android.

The project has not made an official release as of yet, so we're
using the latest sha1 from master

We utilise C++ 11 but we mandate GCC5+ due to a bug [0] in earlier
versions which result in compile failures on our code base.

[0] Bug 54316 - [C++11] move constructor for stringstream
    https://gcc.gnu.org/bugzilla/show_bug.cgi?id=54316

Documentation and Tests are disabled from the build.

With the following added to libcamera.config:

  BR2_ROOTFS_DEVICE_CREATION_DYNAMIC_EUDEV=y
  BR2_PACKAGE_LIBCAMERA=y

./utils/test-pkg -c libcamera.config -p libcamera
                             br-arm-full [1/6]: SKIPPED
                  br-arm-cortex-a9-glibc [2/6]: OK
                   br-arm-cortex-m4-full [3/6]: SKIPPED
                          br-x86-64-musl [4/6]: OK
                      br-arm-full-static [5/6]: SKIPPED
                            sourcery-arm [6/6]: SKIPPED

Signed-off-by: Kieran Bingham <kieran.bingham@ideasonboard.com>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
[Thomas:
 - add missing Config.in comment
 - remove empty newline at end of hash file
 - adjust indentation of upstream URL in Config.in help text]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/uboot-tools: fix CONFIG_FIT_SIGNATURE_MAX_SIZE build failure
Giulio Benetti [Sun, 31 Mar 2019 20:20:29 +0000 (22:20 +0200)]
package/uboot-tools: fix CONFIG_FIT_SIGNATURE_MAX_SIZE build failure

When CONFIG_FIT_SIGNATURE is enabled for building,
CONFIG_FIT_SIGNATURE_MAX_SIZE must be defined since it's a dependency of
CONFIG_FIT_SIGNATURE. Using uboot Kconfig, CONFIG_GIT_SIGNATURE_MAX_SIZE
is set to its default(0x10000000) according to Kconfig, but Buildroot
doesn't use uboot Kconfig, it passes directly CONFIG_* as make
arguments.

Append CONFIG_FIT_SIGNATURE_MAX_SIZE=0x10000000 after
CONFIG_FIT_SIGNATURE=y to UBOOT_TOOLS_MAKE_OPTS and
HOST_UBOOT_TOOLS_MAKE_OPTS.

Fixes:
http://autobuild.buildroot.net/results/612/6126848e08d9273911e7d5b0151847aa2293ed87/
http://autobuild.buildroot.net/results/b49/b49ae4977b605ed24783161618f383551f1662b8/

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/bats-core: new package
Peter Korsgaard [Tue, 2 Apr 2019 13:21:42 +0000 (15:21 +0200)]
package/bats-core: new package

A bash-based automated testing system.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoDEVELOPERS: drop package/lunit reference
Peter Korsgaard [Wed, 3 Apr 2019 20:14:21 +0000 (22:14 +0200)]
DEVELOPERS: drop package/lunit reference

Now that the package has been removed, get-developers complains:

WARNING: 'package/lunit/' doesn't match any file

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/tpm2-tools: bump version to 3.1.4
Peter Korsgaard [Tue, 2 Apr 2019 14:57:53 +0000 (16:57 +0200)]
package/tpm2-tools: bump version to 3.1.4

Fixes a number of issues discovered post-3.1.3, including a completely
broken -T option handling.  For details, see:
https://github.com/tpm2-software/tpm2-tools/releases/tag/3.1.4

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tpm2-tss: bump version to 2.1.2
Peter Korsgaard [Tue, 2 Apr 2019 14:57:52 +0000 (16:57 +0200)]
package/tpm2-tss: bump version to 2.1.2

Fixes a number of issues discovered post-2.1.1. For details, see:
https://github.com/tpm2-software/tpm2-tss/releases/tag/2.1.2

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/biosdevname: fix configure failure
Giulio Benetti [Wed, 3 Apr 2019 13:45:53 +0000 (15:45 +0200)]
package/biosdevname: fix configure failure

On version bump to 0.7.3 SITE has been modified to use github
instead of http tarball. Github tarball doesn't contain ./configure file
differently from 0.7.2 http tarball, so need to autoreconf and generate
it.

Add BIOSDEVNAME_AUTORECONF = YES to package recipe.

Fixes:
http://autobuild.buildroot.net/results/3fc/3fc31982af87210b66cbe412410d11c85c9cebd6/

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/webkitgtk: bump version to 2.22.7
Peter Korsgaard [Wed, 3 Apr 2019 19:39:43 +0000 (21:39 +0200)]
package/webkitgtk: bump version to 2.22.7

2.22.7 contains a number of bugfixes. From the announcement:

 - Fix rendering of glyphs in Hebrew (and possibly other languages) when
   Unicode NFC normalization is used.

 - Fix several crashes and race conditions.

https://webkitgtk.org/2019/03/01/webkitgtk2.22.7-released.html

Change SITE to https as the webserver uses HSTS.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libfuse: bump version to 2.9.9
Peter Korsgaard [Tue, 2 Apr 2019 20:56:02 +0000 (22:56 +0200)]
package/libfuse: bump version to 2.9.9

Contains a number of fixes for issues discovered post-2.9.8.  From the
release notes:

- Fixed readdir bug when non-zero offsets are given to filler and the
  filesystem client, after reading a whole directory, re-reads it from a
  non-zero offset e.g.  by calling seekdir followed by readdir.

https://github.com/libfuse/libfuse/releases/tag/fuse-2.9.9

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libfuse: only install udev rules if (e)udev is enabled
Peter Korsgaard [Tue, 2 Apr 2019 20:56:01 +0000 (22:56 +0200)]
package/libfuse: only install udev rules if (e)udev is enabled

No point in installing udev rules if nothing will use it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/quota: fix build on m68k
Fabrice Fontaine [Tue, 2 Apr 2019 17:18:35 +0000 (19:18 +0200)]
package/quota: fix build on m68k

PIE breaks the build on m68k, so add an upstream patch to disable PIE.
Obviously, when we start seriously testing the BR2_RELRO_FULL option, we
will realize that it is broken on some architectures, and will probably
disable it on m68k.

Fixes:
 - http://autobuild.buildroot.org/results/25985bbc160e3d62b23c4c613b2a81f3711621e3

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/lunit: remove package
Francois Perrad [Wed, 3 Apr 2019 13:06:09 +0000 (15:06 +0200)]
package/lunit: remove package

it was replaced by its fork lunitx which supports all versions of Lua.

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/lua-lunitx: new package
Francois Perrad [Wed, 3 Apr 2019 13:06:08 +0000 (15:06 +0200)]
package/lua-lunitx: new package

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/wget: security bump to version 1.20.2
Peter Korsgaard [Wed, 3 Apr 2019 15:56:28 +0000 (17:56 +0200)]
package/wget: security bump to version 1.20.2

From NEWS:

* Changes in Wget 1.20.2
** Fixed a buffer overflow vulnerability

For more details, see the announcement:
https://lists.gnu.org/archive/html/info-gnu/2019-04/msg00000.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/upmpdcli: bump to version 1.4.2
Jörg Krause [Wed, 3 Apr 2019 18:42:53 +0000 (20:42 +0200)]
package/upmpdcli: bump to version 1.4.2

Drop upstream patch 0001, which is included in the new version.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libupnpp: bump to version 0.17.1
Jörg Krause [Wed, 3 Apr 2019 18:41:03 +0000 (20:41 +0200)]
package/libupnpp: bump to version 0.17.1

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/apache: security bump to version 2.4.39
Peter Korsgaard [Tue, 2 Apr 2019 18:16:16 +0000 (20:16 +0200)]
package/apache: security bump to version 2.4.39

Fixes the following security vulnerabilities:

  *) SECURITY: CVE-2019-0197 (cve.mitre.org)
     mod_http2: fixes a possible crash when HTTP/2 was enabled for a http:
     host or H2Upgrade was enabled for h2 on a https: host. An Upgrade
     request from http/1.1 to http/2 that was not the first request on a
     connection could lead to a misconfiguration and crash. Servers that
     never enabled the h2 protocol or only enabled it for https: and
     did not set "H2Upgrade on" are unaffected by this issue.
     [Stefan Eissing]

  *) SECURITY: CVE-2019-0196 (cve.mitre.org)
     mod_http2: using fuzzed network input, the http/2 request
     handling could be made to access freed memory in string
     comparision when determining the method of a request and
     thus process the request incorrectly. [Stefan Eissing]

  *) SECURITY: CVE-2019-0211 (cve.mitre.org)
     MPMs unix: Fix a local priviledge escalation vulnerability by not
     maintaining each child's listener bucket number in the scoreboard,
     preventing unprivileged code like scripts run by/on the server (e.g. via
     mod_php) from modifying it persistently to abuse the priviledged main
     process.  [Charles Fol <folcharles gmail.com>, Yann Ylavic]

  *) SECURITY: CVE-2019-0196 (cve.mitre.org)
     mod_http2: using fuzzed network input, the http/2 request
     handling could be made to access freed memory in string
     comparision when determining the method of a request and
     thus process the request incorrectly. [Stefan Eissing]

  *) SECURITY: CVE-2019-0217 (cve.mitre.org)
     mod_auth_digest: Fix a race condition checking user credentials which
     could allow a user with valid credentials to impersonate another,
     under a threaded MPM.  PR 63124.  [Simon Kappel <simon.kappel axis.com>]

  *) SECURITY: CVE-2019-0215 (cve.mitre.org)
     mod_ssl: Fix access control bypass for per-location/per-dir client
     certificate verification in TLSv1.3.

  *) SECURITY: CVE-2019-0220 (cve.mitre.org)
     Merge consecutive slashes in URL's. Opt-out with
     `MergeSlashes OFF`. [Eric Covener]

For more details, see the CHANGES file:
https://www.apache.org/dist/httpd/CHANGES_2.4.39

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/binutils: fix loops relaxation in xtensa gas
Max Filippov [Wed, 3 Apr 2019 02:20:19 +0000 (19:20 -0700)]
package/binutils: fix loops relaxation in xtensa gas

Loop relaxation logic in xtensa gas may produce code in which LEND
register doesn't match actual zero overhead loop end. Fix relaxation
code so that it produces a literal or a pair of const16 instructions
with associated relocation record that works correctly in the presence
of other relaxations. This fixes crash in X11 server caused by window
movement.

Loop relaxation has limited of 32K range, this fix removes this
limitation.

Fixes:
http://autobuild.buildroot.net/results/e05522ce540f4ac23f9a3a8fec724694d9a23101/

Signed-off-by: Max Filippov <jcmvbkbc@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/gerbera: fix static build with openssl
Fabrice Fontaine [Tue, 2 Apr 2019 17:11:56 +0000 (19:11 +0200)]
package/gerbera: fix static build with openssl

Fixes:
 - http://autobuild.buildroot.org/results/10098c8972725d54b717ddc8ea41f4de5e5b066d

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/libxslt: change download site to http
Nityananda Padhan [Sat, 9 Mar 2019 13:20:05 +0000 (18:50 +0530)]
package/libxslt: change download site to http

ftp is blocked on some (corporate) networks.

Signed-off-by: Nityananda Padhan <ntneitin@gmail.com>
Reviewed-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/libxml2: change download site to http
Nityananda Padhan [Sat, 9 Mar 2019 13:06:09 +0000 (18:36 +0530)]
package/libxml2: change download site to http

ftp is blocked on some (corporate) networks.

Signed-off-by: Nityananda Padhan <ntneitin@gmail.com>
Reviewed-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/netsniff-ng: Fix build caused by extra 'install' target
Vadim Kochan [Tue, 2 Apr 2019 14:23:58 +0000 (17:23 +0300)]
package/netsniff-ng: Fix build caused by extra 'install' target

After commit:

b0f98d5 package/netsniff-ng: allow to build with uclibc but w/o mausezahn

the different build and install targets are specified depending if
masuezahn tool is able to be selected or not. It works for the build
case but for the install the old 'install' target was not removed from
the make invocation and it still forces to install the mausezahn, so fix
it by remove this target.

Fixes:
http://autobuild.buildroot.net/results/cc44ed737799c9ac73628c82b86bd526b1c43310/
http://autobuild.buildroot.net/results/72d0753532720604d51c05663af7fbfe37434339/

Signed-off-by: Vadim Kochan <vadim4j@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/wireguard: bump version to 0.0.20190227
Peter Korsgaard [Mon, 1 Apr 2019 20:43:15 +0000 (22:43 +0200)]
package/wireguard: bump version to 0.0.20190227

For details of the changes, see the announcement:
https://lists.zx2c4.com/pipermail/wireguard/2019-February/003923.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/gstreamer1/gst-omx: make variant mutually exclusive
Arnout Vandecappelle (Essensium/Mind) [Mon, 1 Apr 2019 22:02:28 +0000 (00:02 +0200)]
package/gstreamer1/gst-omx: make variant mutually exclusive

Commit cc419509506 added the GST_OMX_VARIANT option which gets a default
value that gets overridden by subsequent conditions. check-package
doesn't like that, so instead make the three cases explicitly mutually
exclusive.

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Cc: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/tiff: security bump to version 4.0.10
Fabrice Fontaine [Mon, 1 Apr 2019 21:14:49 +0000 (23:14 +0200)]
package/tiff: security bump to version 4.0.10

- Drop patch (already in version)
- Add hash for license file
- Fix around 10 CVEs:
  https://www.cvedetails.com/vulnerability-list/vendor_id-2224/product_id-3881/version_id-216413/
- Add an upstream patch for CVE-2019-6128

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/quota: fix syntax error
Fabrice Fontaine [Mon, 1 Apr 2019 20:55:16 +0000 (22:55 +0200)]
package/quota: fix syntax error

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/pkg-generic: depend on host-{xz, lzip} only for fitting archives
Norbert Lange [Sun, 17 Mar 2019 21:20:13 +0000 (22:20 +0100)]
package/pkg-generic: depend on host-{xz, lzip} only for fitting archives

Currently, host-xz and host-lzip are built as soon as the
corresponding tools are not provided by the system, independently of
whether they are really needed by the Buildroot configuration. This is
particularly annoying for host-lzip, which is only needed for very few
packages.

This commit modifies the generic package infrastructure to only add
host-lzip and host-xz as dependencies when really needed.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
[Thomas:
 - improve commit log
 - as suggested by Yann E. Morin, make the lzip case similar to the xz
   case]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/gstreamer1/gst-omx: default to pass --with-omx-target=generic
Peter Korsgaard [Mon, 1 Apr 2019 10:11:56 +0000 (12:11 +0200)]
package/gstreamer1/gst-omx: default to pass --with-omx-target=generic

target defaults to none, which isn't a legal target:

configure: Using none as OpenMAX IL target
configure: error: invalid OpenMAX IL target, you must specify one of --with-omx-target={generic,rpi,bellagio,tizonia,zynqultrascaleplus}

Instead default to 'generic', fixing the build with E.G. nvidia-tegra23.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/quota: add optional openldap dependency
Fabrice Fontaine [Mon, 1 Apr 2019 17:13:11 +0000 (19:13 +0200)]
package/quota: add optional openldap dependency

Don't enable openldap in static build because openldap has too many
optional dependencies (gmp, gnutls, nss, openssl, ...) and openldap
doesn't provide a pkg-config file (and does not want to do it:
http://www.openldap.org/lists/openldap-bugs/201406/msg00020.html)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/rpm: fix nss build on musl
Fabrice Fontaine [Mon, 1 Apr 2019 05:55:43 +0000 (07:55 +0200)]
package/rpm: fix nss build on musl

Fixes:
 - http://autobuild.buildroot.org/results/395fd44a930dfc2ad380bc735c26d9ce62344295

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>