buildroot.git
8 years agoDEVELOPERS: remove perl-db-file
Bernd Kuhls [Tue, 27 Dec 2016 20:57:12 +0000 (21:57 +0100)]
DEVELOPERS: remove perl-db-file

Package perl-db-file was removed today:
https://git.buildroot.net/buildroot/commit/?id=8546ff31c58b2501a69e49bc0f27a4ffa1d2ae08

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agotoolchain-external: bump CodeSourcery NIOSII to 2016.11
Romain Naour [Tue, 27 Dec 2016 21:03:56 +0000 (22:03 +0100)]
toolchain-external: bump CodeSourcery NIOSII to 2016.11

Keep BR2_TOOLCHAIN_HAS_BINUTILS_BUG_19405 since it's not fixed in
Binutils 2.26.

Runtime tested with an experimental version of Qemu 2.7 for Nios2.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/znc: bump version to 1.6.4
Bernd Kuhls [Tue, 27 Dec 2016 21:05:14 +0000 (22:05 +0100)]
package/znc: bump version to 1.6.4

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolinux-headers: bump 3.18.x and 4.1.x series
Gustavo Zacarias [Tue, 27 Dec 2016 18:18:29 +0000 (15:18 -0300)]
linux-headers: bump 3.18.x and 4.1.x series

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosupport/dependencies: ensure we have 'file' on the host
Yann E. MORIN [Mon, 26 Dec 2016 17:58:30 +0000 (18:58 +0100)]
support/dependencies: ensure we have 'file' on the host

Recently, the autoconf macros for libtool started using '/usr/bin/file'
to determine the type of library that is generated by the toolchain.
Packages that use this recent version of the libtool autoconf macros
will fail in a rather dramatic way when /usr/bin/file is not present
on the host: the package will still build but no shared library is
generated, which in turn may cause build failures in other packages
that link with it.

For example, libpng's configure determines that it is not possible to
build a shared library on MIPS64 because the expected output from 'file'
is not present. Therefore, only a static libpng.a is built. Later,
bandwithd links with -lpng but it doesn't use the pkg-config's
Private-Libs (because it's not linking statically) and it doesn't have
access to the NEEDED reference from the shared library. Therefore, it
doesn't link with zlib and fails with

    pngrutil.c:(.text+0x55c): undefined reference to `inflate'

We cant use host-file because it is itself an autotools package and is
itself using libtool, so this would be a chicken-n-egg problem. Besides,
the libtool script really wants to call /usr/bin/file, so it would not
even find our host-file anyway.

So, just require that '/usr/bin/file' is present on the host.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Arnout Vandecappelle <arnout@mind.be>
Cc: Baruch Siach <baruch@tkos.co.il>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/vdr: bump version to 2.3.2
Bernd Kuhls [Sun, 25 Dec 2016 17:56:37 +0000 (18:56 +0100)]
package/vdr: bump version to 2.3.2

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoperl-db-file: remove this package
Francois Perrad [Mon, 26 Dec 2016 14:50:35 +0000 (15:50 +0100)]
perl-db-file: remove this package

The module DB_File (Berkeley DB wrapper) is a Perl core module.
Long time ago, its build as a core module was broken.
Since perl-cross-1.0.2, this issue is fixed.
So, this package which build DB_File as CPAN module, becomes useless.

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/sdl2: fix build with gcc6
Bernd Kuhls [Sun, 25 Dec 2016 18:49:52 +0000 (19:49 +0100)]
package/sdl2: fix build with gcc6

Fixes
http://autobuild.buildroot.net/results/b99/b997c2b6307deb48a42e9b317715a00b65f90149/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Tested-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/sdl2: fix build error on powerpc/powerpc64
Bernd Kuhls [Sun, 25 Dec 2016 18:13:27 +0000 (19:13 +0100)]
package/sdl2: fix build error on powerpc/powerpc64

Fixes
http://autobuild.buildroot.net/results/ffd/ffd689f1ba34ad43f52c38fe37da393a9d8b9d5e/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Tested-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agostunnel: fix static link
Baruch Siach [Sat, 24 Dec 2016 19:10:42 +0000 (21:10 +0200)]
stunnel: fix static link

zlib is a dependency of OpenSSL. Take that into account when linking
statically.

Fixes:
http://autobuild.buildroot.net/results/dfe/dfe7c82c7976912378e33e03ea4c677bee6a778d/
http://autobuild.buildroot.net/results/48c/48cb55428613e91abfe8e71456182082d9eabb75/
http://autobuild.buildroot.net/results/810/81029efad8b9e2f48c26a7b20f62c90844fc86df/

and many more.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agouclibc: update to 1.0.21
Waldemar Brodkorb [Mon, 26 Dec 2016 19:29:48 +0000 (20:29 +0100)]
uclibc: update to 1.0.21

Remove all patches as they are upstream.
Remove MALLOC_GLIBC_COMPAT and UCLIBC_HAS_OBSTACK as they got removed.

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agobusybox: fix modutils compile
Waldemar Brodkorb [Mon, 26 Dec 2016 19:28:23 +0000 (20:28 +0100)]
busybox: fix modutils compile

Do not use syscall wrappers from uClibc.

Patch submitted upstream:
http://lists.busybox.net/pipermail/busybox/2016-December/085031.html

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolighttpd: bump to version 1.4.44
Gustavo Zacarias [Mon, 26 Dec 2016 16:21:22 +0000 (13:21 -0300)]
lighttpd: bump to version 1.4.44

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoexim: security bump to 4.87.1
Peter Korsgaard [Sun, 25 Dec 2016 22:38:15 +0000 (23:38 +0100)]
exim: security bump to 4.87.1

No features are added or removed. This release contains
just a fix for CVE-2016-9963

    - Fix CVE-2016-9963 - Info leak from DKIM.  When signing DKIM, if
      either LMTP or PRDR was used for delivery, the key could appear in
      logs.  Additionally, if the experimental feature "DSN_INFO" was used,
      it could appear in DSN messages (and be sent offsite).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: fix option passed to the snmp dependency
Jack Kao [Sun, 25 Dec 2016 13:54:34 +0000 (21:54 +0800)]
collectd: fix option passed to the snmp dependency

--with-libnetsnmp doesn't take a path to the netsnmp config script,
but to the sysroot where netsnmp can be found.

Fixes:

  http://autobuild.buildroot.org/results/358e2f02f42e08fe362ecd46e636c0048e77c21f/

Signed-off-by: Jack Kao <jackzzjack@gmail.com>
[Thomas: path is $(STAGING_DIR)/usr, not $(STAGING_DIR)/usr/include.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoputty: don't treat warnings as errors
Baruch Siach [Sat, 24 Dec 2016 18:40:49 +0000 (20:40 +0200)]
putty: don't treat warnings as errors

Fixes:
http://autobuild.buildroot.net/results/652/65246fe6357cd3cd8490bc54baa2394730dcef79/
http://autobuild.buildroot.net/results/853/85320f3b8e770bbfbec306685ad75b66e91bd6ee/
http://autobuild.buildroot.net/results/492/492a7055408ed6b388982cece41e98d956ef85f8/

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/bullet: bump to version 2.85.1
Romain Naour [Sat, 24 Dec 2016 11:37:39 +0000 (12:37 +0100)]
package/bullet: bump to version 2.85.1

http://bulletphysics.org/wordpress/?p=456

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agodocker-engine: fix docker version output
Christian Stewart [Sat, 24 Dec 2016 06:02:46 +0000 (22:02 -0800)]
docker-engine: fix docker version output

At compile-time the docker build scripts generate a version file used
to build the output of the docker version command. This file is
generated somewhat properly by the Buildroot build system, however the
version number and commit ID are incorrectly formatted. This patch fixes
the output to the correct format.

This is important as some tools like WeaveWorks won't even start unless
they can parse the Docker Version output correctly.

[Peter: strip v from version using patsusbt]
Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add write_prometheus plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:21 +0000 (22:59 -0300)]
collectd: add write_prometheus plugin support

Add explicit support for the write_prometheus plugin, it requires the
libmicrohttpd and protobuf-c libraries.

[Peter: add note about where dependencies come from]
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add gps plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:20 +0000 (22:59 -0300)]
collectd: add gps plugin support

Add explicit support for the gps plugin that uses libgps from the gpsd
package.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: explicitly disable intel_rdt plugin
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:19 +0000 (22:59 -0300)]
collectd: explicitly disable intel_rdt plugin

It requires the libpqos library which buildroot doesn't provide yet.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: explicitly disable dpdkstat plugin
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:18 +0000 (22:59 -0300)]
collectd: explicitly disable dpdkstat plugin

It requires the libdpdk library which buildroot doesn't provide yet.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add hugepages plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:17 +0000 (22:59 -0300)]
collectd: add hugepages plugin support

Add explicit support for the new hugepages dependency-less plugin.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: explicitly disable grpc plugin
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:16 +0000 (22:59 -0300)]
collectd: explicitly disable grpc plugin

It requires the libgrpc++ library which buildroot doesn't provide yet.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add mqtt plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:15 +0000 (22:59 -0300)]
collectd: add mqtt plugin support

Add explicit support for the mqtt (mosquitto) plugin.
Place it under the write category even though it can read as well, since
it will normally be used to write (publish) rather than read
(subscribe).

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add cpusleep plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:14 +0000 (22:59 -0300)]
collectd: add cpusleep plugin support

Add explicit support for the new cpusleep dependency-less plugin.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add chrony plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:13 +0000 (22:59 -0300)]
collectd: add chrony plugin support

Add explicit support for the new chrony dependency-less plugin.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: explicitly disable xencpu plugin
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:12 +0000 (22:59 -0300)]
collectd: explicitly disable xencpu plugin

It requires the libxenctrl library which buildroot doesn't provide yet.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: explicitly disable zone plugin
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:11 +0000 (22:59 -0300)]
collectd: explicitly disable zone plugin

It's intended for solaris so no usage case for buildroot.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: drop notify_email global disable
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:10 +0000 (22:59 -0300)]
collectd: drop notify_email global disable

It's a no-op since it's disabled/enabled by the config knob.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: add notify_nagios plugin support
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:09 +0000 (22:59 -0300)]
collectd: add notify_nagios plugin support

Add explicit support for the new notify_nagios dependency-less plugin.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocollectd: bump to version 5.7.0
Gustavo Zacarias [Thu, 22 Dec 2016 01:59:08 +0000 (22:59 -0300)]
collectd: bump to version 5.7.0

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibcurl: security bump to 7.52.1
Peter Korsgaard [Fri, 23 Dec 2016 10:16:05 +0000 (11:16 +0100)]
libcurl: security bump to 7.52.1

Fixes CVE-2016-9594 - Unitilized random

Libcurl's (new) internal function that returns a good 32bit random value was
implemented poorly and overwrote the pointer instead of writing the value
into the buffer the pointer pointed to.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoarmadeus_apf9328_defconfig: bump kernel to 3.18.29
Peter Korsgaard [Wed, 21 Dec 2016 20:46:11 +0000 (21:46 +0100)]
armadeus_apf9328_defconfig: bump kernel to 3.18.29

Which includes the gcc5+ fix for ftrace:

commit aeea3592a13bf12861943e44fc48f1f270941f8d
Author: Behan Webster <behanw@converseincode.com>
Date:   Wed Sep 24 01:06:46 2014 +0100

    ARM: 8158/1: LLVMLinux: use static inline in ARM ftrace.h

    With compilers which follow the C99 standard (like modern versions of gcc and
    clang), "extern inline" does the wrong thing (emits code for an externally
    linkable version of the inline function). In this case using static inline
    and removing the NULL version of return_address in return_address.c does
    the right thing.

Signed-off-by: Behan Webster <behanw@converseincode.com>
Reviewed-by: Mark Charlebois <charlebm@gmail.com>
Acked-by: Steven Rostedt <rostedt@goodmis.org>
Signed-off-by: Russell King <rmk+kernel@arm.linux.org.uk>
Otherwise, the build dies with:

arch/arm/kernel/return_address.c:66:7: error: redefinition of ‘return_address’
 void *return_address(unsigned int level)
       ^
In file included from include/linux/ftrace.h:20:0,
                 from arch/arm/kernel/return_address.c:12:
./arch/arm/include/asm/ftrace.h:48:21: note: previous definition of ‘return_address’ was here
 extern inline void *return_address(unsigned int level)
                     ^

For more details, see:
https://travis-ci.org/buildroot/buildroot-defconfig-testing/jobs/185616889

notice: Only build tested as I don't have the hw, which is also why the
kernel is only bumped to 3.18 to make it as safe as possible.

CC: Julien Boibessot <julien.boibessot@armadeus.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoutil-linux: fix ncurses/wchar handling
Thomas Petazzoni [Fri, 23 Dec 2016 13:33:30 +0000 (14:33 +0100)]
util-linux: fix ncurses/wchar handling

Since commit 006a328ad6bed214ec3c4d92120510ea37329dd1 ("util-linux: fix
build with ncurses"), we have a build failure that occurs with musl
toolchains when wide-char support is not enabled in ncurses.

The problem comes from the fact that musl provides wchar support (so it
defines wchar_t). But when ncursesw is not available, we currently pass
--disable-widechar which tells util-linux that wchar support is not
available at all (not only in ncurses). When this gets passed to
util-linux configure script, then it defines its own wchar_t, which
conflicts with the musl definition.

So, we should not pass --disable-widechar when BR2_USE_WCHAR=y, which is
what this commit does: it moves the BR2_USE_WCHAR logic outside of the
ncurses logic, and passes --enable-widechar/--disable-widechar as
appropriate.

However, there's a gotcha: util-linux really wants the ncursesw variant
of ncurses when the system has wchar support enabled. We take this into
account by:

 - Enabling ncursesw when BR2_PACKAGE_NCURSES_WCHAR=y. In this case, we
   have ncurses and we have BR2_USE_WCHAR=y, so everything is fine.

 - Otherwise, enabling ncurses when BR2_PACKAGE_NCURSES=y but
   BR2_USE_WCHAR is disabled.

To make sure that the existing util-linux programs that need ncurses
support still build fine, we adjust the Config.in to select
BR2_PACKAGE_NCURSES_WCHAR on BR2_USE_WCHAR=y configurations.

Fixes:

  http://autobuild.buildroot.net/results/19de2a0b12380ddc86dbba0dae3a3877b25f83ff/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agokexec: bump to 2.0.14
Marcin Nowakowski [Fri, 23 Dec 2016 11:19:25 +0000 (12:19 +0100)]
kexec: bump to 2.0.14

Patch 0002-arm-add-phys_to_virt.h-and-iomem.patch is now obsolete as
it's been properly fixed upstream now.

Signed-off-by: Marcin Nowakowski <marcin.nowakowski@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopython-lxml: bump to version 3.7.0
Yegor Yefremov [Fri, 23 Dec 2016 11:10:06 +0000 (12:10 +0100)]
python-lxml: bump to version 3.7.0

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoxfsprogs: disable on musl
Thomas Petazzoni [Fri, 23 Dec 2016 13:36:38 +0000 (14:36 +0100)]
xfsprogs: disable on musl

Despite a recent bump, xfsprogs still doesn't build on musl. It's been
failing for a long long time, so let's disable it in this configuration.

Fixes:

  http://autobuild.buildroot.net/results/c6cd42da1abe2936872da1f9db093ffc72be3c15/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoutil-linux: attempt to fix host-util-linux build
Thomas Petazzoni [Fri, 23 Dec 2016 10:26:05 +0000 (11:26 +0100)]
util-linux: attempt to fix host-util-linux build

Should fix:

  http://autobuild.buildroot.net/results/65595aa787498087a9a85c9cd19135396b246afb/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoDEVELOPERS: add Eric Le Bihan for package/skalibs/
Thomas Petazzoni [Fri, 23 Dec 2016 10:20:29 +0000 (11:20 +0100)]
DEVELOPERS: add Eric Le Bihan for package/skalibs/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoskalibs: new package
Eric Le Bihan [Mon, 19 Dec 2016 21:29:07 +0000 (22:29 +0100)]
skalibs: new package

This new package provides skalibs, a collection of free software / open
source C development files used for building all softwares from
skarnet.org.

Note that, though skalibs (and all skarnet softwares) follows the
"./configure; make; make install" convention, it does not behave like a
traditional autotools project:

 - static libraries are installed in $prefix/usr/lib/skalibs.
 - pkg-config and libtool are not used: instead a custom system called
   "sysdeps" is used and locations to libraries and headers are to be
   passed explicitly via options of the './configure' script.

The host variant is provided to allow building the host variants of the
other skarnet softwares.

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
[Thomas: remove post install target hook, do it directly in the target
installation commands.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoutil-linux: fix build with ncurses
Rahul Bedarkar [Thu, 22 Dec 2016 16:27:07 +0000 (21:57 +0530)]
util-linux: fix build with ncurses

util-linux version 2.29 changed ncurses handling a lot. pkg-config
support to detect ncurses is removed from configure.ac and
ncurses-config is used to detect it. But it even didn't allow to
change config file for cross compilation. However, it is fixed in
upstream later and pkg-config support is added back.

This commit adds two patches from upstream that adds pkg-config support
and allows specifying ncurses-config file as well. However preference is
first given to pkg-config and later ncurses-config file. It also first checks
for version 6 and later 5.

Config option that changed are, ncursesw is enabled by default and ncurses
is disabled by default. So we need to explicilty specify with/without wide
char support now. This new version also allows disabling widechar support.
But it can't be enabled if ncurses without widechar support is enabled.

While building ncurses package, we explicitly enable pkg-config support,
so we don't need to specify ncurses-config file, but it is specified for
completeness.

Fixes:
  http://autobuild.buildroot.net/results/4a2/4a25fb0d4546391d5dbbaa6cde17c45aeddb3549

Signed-off-by: Rahul Bedarkar <rahul.bedarkar@imgtec.com>
Cc: Carlos Santos <casantos@datacom.ind.br>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agodocker-engine: bump version to v1.12.5
Christian Stewart [Fri, 23 Dec 2016 07:37:02 +0000 (23:37 -0800)]
docker-engine: bump version to v1.12.5

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agodocker-containerd: bump version to v0.2.5
Christian Stewart [Fri, 23 Dec 2016 07:37:01 +0000 (23:37 -0800)]
docker-containerd: bump version to v0.2.5

Version bump as a dependency of Docker-Engine v1.12.5.

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoolimex_a20_olinuxino_lime2_defconfig: correct u-boot configuration
Peter Korsgaard [Wed, 21 Dec 2016 21:16:21 +0000 (22:16 +0100)]
olimex_a20_olinuxino_lime2_defconfig: correct u-boot configuration

This defconfig currently doesn't build:
https://travis-ci.org/buildroot/buildroot-defconfig-testing/jobs/185616951

As u-boot needs dtc, so add that and change to kconfig mode like on our
other allwinner defconfigs as that is in fact what is used.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoiproute2: bump to version 4.9.0
Baruch Siach [Thu, 22 Dec 2016 21:17:58 +0000 (23:17 +0200)]
iproute2: bump to version 4.9.0

Add the libc-compat.h musl workaround patch to the copy of the kernel header.

Add a patch adding missing limits.h for musl.

Drop 0001-Avoid-in6_addr-redefinition.patch; not needed after the
libc-compat.h patch.

Drop upstream 0003-iproute2-tc_bpf.c-fix-building-with-musl-libc..patch.

Drop 0004-iproute-no-iptables.patch; should be fixed by upstream commit
4710e46ec3 (tc, ipt: don't enforce iproute2 dependency on iptables-devel).

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoiperf3: bump to version 3.1.4
Baruch Siach [Thu, 22 Dec 2016 11:32:02 +0000 (13:32 +0200)]
iperf3: bump to version 3.1.4

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agonodejs: bump to version 6.9.2
Peter Korsgaard [Wed, 21 Dec 2016 18:44:32 +0000 (19:44 +0100)]
nodejs: bump to version 6.9.2

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoalsa-utils: bump to version 1.1.3
Gustavo Zacarias [Wed, 21 Dec 2016 22:59:13 +0000 (19:59 -0300)]
alsa-utils: bump to version 1.1.3

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoalsa-lib: bump to version 1.1.3
Gustavo Zacarias [Wed, 21 Dec 2016 22:59:12 +0000 (19:59 -0300)]
alsa-lib: bump to version 1.1.3

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/google-breakpad: really fix the C++11 dependency
Romain Naour [Wed, 21 Dec 2016 22:07:07 +0000 (23:07 +0100)]
package/google-breakpad: really fix the C++11 dependency

The C++11 build issue is still here since the C++11 is not complete in
gcc 4.7 [1]. So disable Google-breakpad for toolchains based on
gcc <= 4.7.

[1] https://gcc.gnu.org/gcc-4.7/cxx0x_status.html

Fixes:
http://autobuild.buildroot.net/results/c5e/c5e629f26bf6da369dff1e4588c16d2773173e9f

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibupnp: bump to version 1.6.21
Fabrice Fontaine [Thu, 22 Dec 2016 08:02:32 +0000 (09:02 +0100)]
libupnp: bump to version 1.6.21

Signed-off-by: Fabrice Fontaine <fabrice.fontaine@orange.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/sdl2: bump version to 2.0.5
Bernd Kuhls [Thu, 22 Dec 2016 06:51:07 +0000 (07:51 +0100)]
package/sdl2: bump version to 2.0.5

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/python: security bump version to 2.7.13
Bernd Kuhls [Thu, 22 Dec 2016 06:46:00 +0000 (07:46 +0100)]
package/python: security bump version to 2.7.13

Rebased patches 004 & 010.

Changelog:
https://hg.python.org/cpython/raw-file/v2.7.13/Misc/NEWS

Fixes CVE-2016-2183 & CVE-2016-1000110.

This bump also fixes the host build with openssl 1.1.0,
http://patchwork.ozlabs.org/patch/696139/ is not needed anymore.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/util-linux: bump version to 2.29
Bernd Kuhls [Thu, 22 Dec 2016 06:03:49 +0000 (07:03 +0100)]
package/util-linux: bump version to 2.29

Removed patch applied upstream:
http://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/?id=7f0d4d56a2f1ed34c3da4501e65fb79497b3dda1

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/libcdio: bump version to 0.94
Bernd Kuhls [Thu, 22 Dec 2016 06:07:09 +0000 (07:07 +0100)]
package/libcdio: bump version to 0.94

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/apache: security bump version to 2.4.25
Bernd Kuhls [Thu, 22 Dec 2016 06:02:59 +0000 (07:02 +0100)]
package/apache: security bump version to 2.4.25

Changelog:
http://www.apache.org/dist/httpd/CHANGES_2.4.25

Fixes CVE-2016-8740, CVE-2016-5387, CVE-2016-2161, CVE-2016-0736,
CVE-2016-8743.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agowine: Bump to version 1.8.6
André Hentschel [Wed, 21 Dec 2016 17:00:39 +0000 (18:00 +0100)]
wine: Bump to version 1.8.6

Signed-off-by: André Hentschel <nerv@dawncrow.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolzlib: depends on lua
Gustavo Zacarias [Wed, 21 Dec 2016 20:22:44 +0000 (17:22 -0300)]
lzlib: depends on lua

It's missing the dependency on lua, hence when using the upcoming PPS
support its staging directory isn't populated with the required
dependencies resulting in build failure.

Signed-off-by: Gustavo Zacarias <gustavo.zacarias@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agorunc: pass -extldflags '-static' in correct variable
Fabrice Fontaine [Wed, 21 Dec 2016 18:50:46 +0000 (19:50 +0100)]
runc: pass -extldflags '-static' in correct variable

commit 9101ce5800 (runc: pass -extldflags '-static' on when
BR2_STATIC_LIBS=y) contained a small copy/paste error, FLANNEL_GLDFLAGS was
used instead of RUNC_GLDFLAGS.

[Peter: refer to exact commit]
Signed-off-by: Fabrice Fontaine <fabrice.fontaine@orange.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibcurl: security bump to 7.52.0
Peter Korsgaard [Wed, 21 Dec 2016 07:48:49 +0000 (08:48 +0100)]
libcurl: security bump to 7.52.0

Fixes CVE-2016-9586 - printf floating point buffer overflow

For details, see:
https://curl.haxx.se/docs/adv_20161221A.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogcc: bump 6.x series to version 6.3.0
Gustavo Zacarias [Wed, 21 Dec 2016 15:29:53 +0000 (12:29 -0300)]
gcc: bump 6.x series to version 6.3.0

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/monit: security bump to version 5.20.0
Jörg Krause [Wed, 21 Dec 2016 16:01:34 +0000 (17:01 +0100)]
package/monit: security bump to version 5.20.0

Fixes CVE-2016-7067.

Note that since version 5.20.0 monit optionally depends on zlib.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agonftables: bump to version 0.7
Gustavo Zacarias [Wed, 21 Dec 2016 14:47:11 +0000 (11:47 -0300)]
nftables: bump to version 0.7

And fix small CONF_OPTS assignment snafu.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibnftnl: bump to version 1.0.7
Gustavo Zacarias [Wed, 21 Dec 2016 14:47:10 +0000 (11:47 -0300)]
libnftnl: bump to version 1.0.7

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agonmap: bump to version 7.40
Gustavo Zacarias [Wed, 21 Dec 2016 13:25:27 +0000 (10:25 -0300)]
nmap: bump to version 7.40

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosudo: bump to version 1.8.19p1
Gustavo Zacarias [Wed, 21 Dec 2016 13:10:25 +0000 (10:10 -0300)]
sudo: bump to version 1.8.19p1

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agouclibc: add patch to fix <stdlib.h>
Thomas Petazzoni [Mon, 19 Dec 2016 22:26:31 +0000 (23:26 +0100)]
uclibc: add patch to fix <stdlib.h>

This commit adds a patch to <stdlib.h>, to fix a bug introduced in
uClibc-ng 1.0.20, and which was causing build failures for at least one
package in Buildroot: freeswitch.

Fixes:

  http://autobuild.buildroot.net/results/12c246b058224f68494b84355a29dc4efb85df6d/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopython-bottle: security bump to 0.12.11
Peter Korsgaard [Tue, 20 Dec 2016 21:02:24 +0000 (22:02 +0100)]
python-bottle: security bump to 0.12.11

"\r\n" sequences were not properly filtered when handling redirections.
This allowed an attacker to perform CRLF attacks such as HTTP header
injection:

https://github.com/bottlepy/bottle/issues/913

Python-bottle now uses setuptools instead of distutils.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/mimic: indentation cleanup
Jerzy Grzegorek [Wed, 21 Dec 2016 09:50:13 +0000 (10:50 +0100)]
package/mimic: indentation cleanup

Signed-off-by: Jerzy Grzegorek <jerzy.grzegorek@trzebnica.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agomimic: needs wchar support
Peter Korsgaard [Tue, 20 Dec 2016 22:02:07 +0000 (23:02 +0100)]
mimic: needs wchar support

Fixes:
http://autobuild.buildroot.net/results/9f7/9f7c1af4b9fd8331672c9096821db91d5f7f3aa1/
http://autobuild.buildroot.net/results/47f/47f5ec3fabefd85e62b675142bd6728904acd5d8/

At the same time fixup space/tabs for 'help' option.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agotor: security bump to 0.2.8.12
Peter Korsgaard [Tue, 20 Dec 2016 13:02:37 +0000 (14:02 +0100)]
tor: security bump to 0.2.8.12

Fixes CVE-2016-1254 - One byte past an allocated buffer read while parsing
hidden service descriptors:

https://blog.torproject.org/blog/tor-02812-released

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agobusybox: adjust nommu swaponoff handling for busybox 1.26.0+
Peter Korsgaard [Tue, 20 Dec 2016 21:53:47 +0000 (22:53 +0100)]
busybox: adjust nommu swaponoff handling for busybox 1.26.0+

Fixes:
http://autobuild.buildroot.net/results/dfe/dfec2c0626ab087325fd869bcbe0b9dc354d788c/

Busybox 1.26.0 gained separate config options for swapon / swapoff:

commit f417ffd88f194bbfd18605882ee242190c1bab34
Author: Denys Vlasenko <vda.linux@googlemail.com>
Date:   Mon Nov 14 17:30:50 2016 +0100

    Make swapon and swapoff individually selectable.

    For example, without swapoff, code shrinks by 277 bytes.

Signed-off-by: Denys Vlasenko <vda.linux@googlemail.com>
So adjust busybox.config and the logic to disable these applets for nommu
builds for the new names.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopure-ftpd: Added pure-ftpwho config option
Bryce Ferguson [Mon, 19 Dec 2016 21:17:29 +0000 (15:17 -0600)]
pure-ftpd: Added pure-ftpwho config option

Added the pure-ftpwho config option. When selected, the --with-ftpwho
compiler option is passed which enabled the pure-ftpwho command.

Signed-off-by: Bryce Ferguson <bryce.ferguson@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogdk-pixbuf: security bump to version 2.36.2
Gustavo Zacarias [Tue, 20 Dec 2016 19:45:48 +0000 (16:45 -0300)]
gdk-pixbuf: security bump to version 2.36.2

Fixes:
* Fix a NULL pointer dereference (#776026)
* Fix a memory leak (#776020)
* Avoid a buffer overrun in the qtif loader ($#775648)
* Fix a crash in the bmp loader (#775242)
* Fix crash opening pnm images with large dimensions (#775232)
* Prevent buffer overflow in the pixdata loader (#775693)

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolinux-headers: kill 3.14.x and 4.{5, 6, 7}.x series
Gustavo Zacarias [Tue, 20 Dec 2016 14:48:26 +0000 (11:48 -0300)]
linux-headers: kill 3.14.x and 4.{5, 6, 7}.x series

These aren't supported upstream any more so remove the options and add
them to legacy.
Also switch the older deprecations that used 3.14.x to 3.12.x

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocan-utils: bump version
Rahul Bedarkar [Tue, 20 Dec 2016 17:10:48 +0000 (22:40 +0530)]
can-utils: bump version

This version bump also fixes:
http://autobuild.buildroot.net/results/0e5/0e5242376ff6aa82e89ed1172350e05009d48156

Signed-off-by: Rahul Bedarkar <rahul.bedarkar@imgtec.com>
Cc: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopython-paramiko: bump to version 2.1.1
Yegor Yefremov [Tue, 20 Dec 2016 14:28:52 +0000 (15:28 +0100)]
python-paramiko: bump to version 2.1.1

Replace wrong runtime dependencies with python-pyasn and
python-cryptography.

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopython-cryptography: bump to version 1.7.1
Yegor Yefremov [Tue, 20 Dec 2016 14:28:51 +0000 (15:28 +0100)]
python-cryptography: bump to version 1.7.1

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosudo: bump to version 1.8.19
Gustavo Zacarias [Tue, 20 Dec 2016 13:39:14 +0000 (10:39 -0300)]
sudo: bump to version 1.8.19

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agobusybox: bump to version 1.26.0
Gustavo Zacarias [Tue, 20 Dec 2016 13:02:52 +0000 (10:02 -0300)]
busybox: bump to version 1.26.0

Drop upstream patch.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolinux-headers: cleanup dead custom-local option
James Knight [Tue, 20 Dec 2016 00:03:51 +0000 (19:03 -0500)]
linux-headers: cleanup dead custom-local option

The option `BR2_LINUX_KERNEL_CUSTOM_LOCAL` no longer exists (see commit
e782cd5b1bc231dda527d5d0a04e6a338669b92c [1]); removing the option. Note
that this legacy option has already been handled (Config.in.legacy) in
the mentioned commit.

Signed-off-by: James Knight <james.knight@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolinux: cleanup dead custom-local option
James Knight [Tue, 20 Dec 2016 00:03:50 +0000 (19:03 -0500)]
linux: cleanup dead custom-local option

The option `BR2_LINUX_KERNEL_CUSTOM_LOCAL` no longer exists (see commit
e782cd5b1bc231dda527d5d0a04e6a338669b92c [1]); removing the option. Note
that this legacy option has already been handled (Config.in.legacy) in
the mentioned commit.

Signed-off-by: James Knight <james.knight@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agorsyslog: enable journal plugins when using systemd
James Knight [Tue, 20 Dec 2016 00:05:15 +0000 (19:05 -0500)]
rsyslog: enable journal plugins when using systemd

The rsyslog package provides input and output plugins for journald which
are disabled by default. The following adds the option to include
`imjournal` and `omjournal` modules when building for a systemd target.

Signed-off-by: James Knight <james.knight@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agorsyslog: remove non-existent enable/disable systemd options
James Knight [Tue, 20 Dec 2016 00:05:14 +0000 (19:05 -0500)]
rsyslog: remove non-existent enable/disable systemd options

The configuration flags `--enable-systemd` and `--disable-systemd` do
not exist in rsyslog (and may have never existed; most likely copy-paste
from other packages which have said options); removing the options.

Signed-off-by: James Knight <james.knight@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoDEVELOPERS: add entry for rpm
James Knight [Tue, 20 Dec 2016 00:09:17 +0000 (19:09 -0500)]
DEVELOPERS: add entry for rpm

Signed-off-by: James Knight <james.knight@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agouboot: fix custom patch dir legacy handling
Danomi Manchego [Tue, 20 Dec 2016 03:10:12 +0000 (22:10 -0500)]
uboot: fix custom patch dir legacy handling

Commit 3e3fef39e71ed0426130b36aa00e4630ebb537ae added new and improved
patch handling, with BR2_TARGET_UBOOT_PATCH.  This was in addition to
the existing BR2_TARGET_UBOOT_CUSTOM_PATCH_DIR option, that only
handled directories.

Later, commit 21b25d28fc7af3bb1b2c55e4a46e0d067ebc0081 moved the old
BR2_TARGET_UBOOT_CUSTOM_PATCH_DIR to legacy options.  But on the way,
bad things happened:

* The original option was a string, while the one added to Config.in.legacy
is a bool.  This results in a warning from defconfigs that actually define
the old BR2_TARGET_UBOOT_CUSTOM_PATCH_DIR (because a string is not a valid
value for a bool), but it does not result in the legacy option being
selected.  Consequently, BR2_LEGACY is not selected either.

* The advice at the top of Config.in.legacy to add a hidden WRAP option
to select BR2_LEGACY was not heeded.

* The advice at the top of Config.in.legacy to use the old string
option as the default for the new string option was not heeded.  In
this case, the variable was not just renamed, as the old option
supported directories only, while the new one supports files too.
But since the old option is a subset of the new option, it can still
be used to set a useful default.

So, this mod turns the legacy option back to a string, adds a hidden
bool WRAP option to set BR2_LEGACY when the string is non emoty, and
uses the legacy option to set the default for the new option.

Signed-off-by: Danomi Manchego <danomimanchego123@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolegacy/sqlite: add "sqlite" to legacy option name
Danomi Manchego [Tue, 20 Dec 2016 03:12:32 +0000 (22:12 -0500)]
legacy/sqlite: add "sqlite" to legacy option name

The "command-line editing support was updated" does not indicate
the package name, unlike the other legacy options.  This commit
adds "sqlite", to be nicer.

Signed-off-by: Danomi Manchego <danomimanchego123@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agomkusers: fix spelling in intro comment
Danomi Manchego [Tue, 20 Dec 2016 03:13:16 +0000 (22:13 -0500)]
mkusers: fix spelling in intro comment

Signed-off-by: Danomi Manchego <danomimanchego123@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agodocs/website/news.html: add 2016.11 announcement link
Peter Korsgaard [Mon, 19 Dec 2016 22:48:12 +0000 (23:48 +0100)]
docs/website/news.html: add 2016.11 announcement link

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibupnp: add upstream security fix for CVE-2016-8863
Peter Korsgaard [Mon, 19 Dec 2016 13:13:24 +0000 (14:13 +0100)]
libupnp: add upstream security fix for CVE-2016-8863

Fix out-of-bound access in create_url_list()

If there is an invalid URL in URLS->buf after a valid one, uri_parse is
called with out pointing after the allocated memory. As uri_parse writes
to *out before returning an error the loop in create_url_list must be
stopped early to prevent an out-of-bound access.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolibupnp: add upstream security fix for CVE-2016-6255
Peter Korsgaard [Mon, 19 Dec 2016 13:13:23 +0000 (14:13 +0100)]
libupnp: add upstream security fix for CVE-2016-6255

If there's no registered handler for a POST request, the default behaviour
is to write it to the filesystem. Several million deployed devices appear
to have this behaviour, making it possible to (at least) store arbitrary
data on them. Add a configure option that enables this behaviour, and change
the default to just drop POSTs that aren't directly handled.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopython-twisted: bump to version 16.6.0
Yegor Yefremov [Mon, 19 Dec 2016 08:22:36 +0000 (09:22 +0100)]
python-twisted: bump to version 16.6.0

Add two new dependencies:

python-contstantly: runtime only
python-incremental: both runtime and build-time dependency

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopython-zope-interface: bump to version 4.3.3
Yegor Yefremov [Mon, 19 Dec 2016 08:22:35 +0000 (09:22 +0100)]
python-zope-interface: bump to version 4.3.3

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopython-constantly: new package
Yegor Yefremov [Mon, 19 Dec 2016 08:22:34 +0000 (09:22 +0100)]
python-constantly: new package

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/google-breakpad: add C++11 dependency on the host variant
Romain Naour [Mon, 19 Dec 2016 20:25:25 +0000 (21:25 +0100)]
package/google-breakpad: add C++11 dependency on the host variant

When google-breakpad has been updated to the latest version, the C++11
dependency has been added for the target variant only.
The C++11 dependency is also required for the host variant.

Fixes:
http://autobuild.buildroot.org/results/dce/dcecb17116c0cf400c98f0052c9bf71f15d0d398

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/weston: fix build on ancient glibc
Yann E. MORIN [Mon, 19 Dec 2016 17:22:00 +0000 (18:22 +0100)]
package/weston: fix build on ancient glibc

Fix build with ancient glibces.

Fixes:
    http://autobuild.buildroot.net/results/bce/bcecdbbce4a99eb1e9bfbf519857bf94d8952037/

[Peter: patches configure.ac, so add WESTON_AUTORECONF = YES]
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosamba4: security bump to version 4.4.8
Gustavo Zacarias [Mon, 19 Dec 2016 19:50:38 +0000 (16:50 -0300)]
samba4: security bump to version 4.4.8

Fixes:
CVE-2016-2123 - Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer
Overflow Remote Code Execution Vulnerability.
CVE-2016-2125 - Unconditional privilege delegation to Kerberos servers
in trusted realms.
CVE-2016-2126 - Flaws in Kerberos PAC validation can trigger privilege
elevation.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoopenssh: security bump to version 7.4p1
Gustavo Zacarias [Mon, 19 Dec 2016 16:27:51 +0000 (13:27 -0300)]
openssh: security bump to version 7.4p1

Fixes:
CVE-2016-10009 - ssh-agent(1): Will now refuse to load PKCS#11 modules
from paths outside a trusted whitelist
CVE-2016-10010 - sshd(8): When privilege separation is disabled,
forwarded Unix-domain sockets would be created by sshd(8) with the
privileges of 'root'
CVE-2016-10011 - sshd(8): Avoid theoretical leak of host private key
material to privilege-separated child processes via realloc()
CVE-2016-10012 - sshd(8): The shared memory manager used by
pre-authentication compression support had a bounds checks that could be
elided by some optimising compilers

http://seclists.org/oss-sec/2016/q4/708

Drop upstream patch.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopython-pathvalidate: bump to version 0.9.4
Yegor Yefremov [Mon, 19 Dec 2016 12:22:49 +0000 (13:22 +0100)]
python-pathvalidate: bump to version 0.9.4

Add new runtime dependency: BR2_PACKAGE_PYTHON_MBSTRDECODER.

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>