buildroot.git
6 years agopackage/mjpg-streamer: fix typo in opencv3 dependencies
Bernd Kuhls [Sat, 20 Oct 2018 08:03:41 +0000 (10:03 +0200)]
package/mjpg-streamer: fix typo in opencv3 dependencies

mjpg-streamer needs these OpenCV3 modules:
https://github.com/jacksonliam/mjpg-streamer/blob/master/mjpg-streamer-experimental/plugins/input_opencv/CMakeLists.txt#L4

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/luvi: add license hash
Bernd Kuhls [Sat, 13 Oct 2018 08:01:03 +0000 (10:01 +0200)]
package/luvi: add license hash

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoRevert "package/luvi: bump version to 2.8.0"
Bernd Kuhls [Sat, 13 Oct 2018 08:01:02 +0000 (10:01 +0200)]
Revert "package/luvi: bump version to 2.8.0"

This reverts commit ac6fedda6b43996545ff498cd19a781698a96050.

Quoting Jörg Krause:
http://lists.busybox.net/pipermail/buildroot/2018-August/228534.html

"The version bump as version 2.8.0 does only updates the projects
 submodules, which we are not using at all. Instead, we always build
 luvi with dependencies provided as packages in Buildroot."

[Peter: drop autobuilder reference, issue is in luv, not luvi]
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoccache: bump to version 3.5
Asaf Kahlon [Tue, 16 Oct 2018 16:43:08 +0000 (19:43 +0300)]
ccache: bump to version 3.5

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoperl-netaddr-ip: build the XS version
Francois Perrad [Tue, 16 Oct 2018 19:55:05 +0000 (21:55 +0200)]
perl-netaddr-ip: build the XS version

the generated subdirectory Makefiles are now fixed

now, the Pure Perl version is only useful when BR2_STATIC_LIBS

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoperl: fix the generated subdirectory Makefiles
Francois Perrad [Tue, 16 Oct 2018 19:55:04 +0000 (21:55 +0200)]
perl: fix the generated subdirectory Makefiles

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoscancpan: remove optional dependency
Francois Perrad [Tue, 16 Oct 2018 19:55:03 +0000 (21:55 +0200)]
scancpan: remove optional dependency

there are also runtime dependency

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-click: bump to version 7.0
Asaf Kahlon [Fri, 12 Oct 2018 13:32:01 +0000 (16:32 +0300)]
python-click: bump to version 7.0

Add license hash.
License change: LICENSE renamed to LICENSE.rst, and one parahraph
has moved down (no actual content was added/deleted/modified)

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agocargo-bin: bump version to 0.30.0
Eric Le Bihan [Thu, 18 Oct 2018 20:58:35 +0000 (22:58 +0200)]
cargo-bin: bump version to 0.30.0

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agorust: bump version to 1.29.2
Eric Le Bihan [Thu, 18 Oct 2018 20:58:34 +0000 (22:58 +0200)]
rust: bump version to 1.29.2

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agorust-bin: bump version to 1.29.2
Eric Le Bihan [Thu, 18 Oct 2018 20:58:33 +0000 (22:58 +0200)]
rust-bin: bump version to 1.29.2

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoutils/get-developers: make it callable from elsewhere than the toplevel directory
Peter Korsgaard [Sat, 20 Oct 2018 16:02:31 +0000 (18:02 +0200)]
utils/get-developers: make it callable from elsewhere than the toplevel directory

get-developers tries to open DEVELOPERS in the current directory, so it
breaks when calling it from elsewhere than the toplevel Buildroot directory.

Traceback (most recent call last):
  File "../utils/get-developers", line 107, in <module>
    __main__()
  File "../utils/get-developers", line 26, in __main__
    devs = getdeveloperlib.parse_developers(os.path.dirname()
  File "/home/peko/source/buildroot/utils/getdeveloperlib.py", line 161, in parse_developers
    with open(os.path.join(basepath, "DEVELOPERS"), "r") as f:
IOError: [Errno 2] No such file or directory: '/home/peko/source/buildroot/output-foo/DEVELOPERS'

Fix it by instead figuring out where the DEVELOPERS file is relative to the
location of get-developers (E.G. one level up).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
[Arnout:
  - add realpath to support a symlinked get-developers script;
  - pass devs_dir argument to check_developers() to support -c in subdir;
  - convert basepath to absolute path to support -f option.
]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agopackage/mesa3d: add explanation for the AUTORECONF = YES
Thomas Petazzoni [Sat, 20 Oct 2018 15:40:54 +0000 (17:40 +0200)]
package/mesa3d: add explanation for the AUTORECONF = YES

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogvfs: enable gphoto2
Fabrice Fontaine [Fri, 19 Oct 2018 20:13:15 +0000 (22:13 +0200)]
gvfs: enable gphoto2

Enable gphoto2 if libgphoto2 and libgudev are available

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agogvfs: add optional gcr support
Fabrice Fontaine [Fri, 19 Oct 2018 20:13:14 +0000 (22:13 +0200)]
gvfs: add optional gcr support

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agogvfs: enable cdda backend
Fabrice Fontaine [Fri, 19 Oct 2018 20:13:13 +0000 (22:13 +0200)]
gvfs: enable cdda backend

Enable cdda if libcdio-paranoia and libgudev are available

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agogvfs: enable admin backend
Fabrice Fontaine [Fri, 19 Oct 2018 20:13:12 +0000 (22:13 +0200)]
gvfs: enable admin backend

Enable admin backend if libcap and polkit are available

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agogvfs: use explicit --enable-gudev option
Fabrice Fontaine [Fri, 19 Oct 2018 20:13:11 +0000 (22:13 +0200)]
gvfs: use explicit --enable-gudev option

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agogvfs: add optional libusb support
Fabrice Fontaine [Fri, 19 Oct 2018 20:13:10 +0000 (22:13 +0200)]
gvfs: add optional libusb support

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/libclc: new package
Valentin Korenblit [Sat, 20 Oct 2018 14:34:49 +0000 (16:34 +0200)]
package/libclc: new package

This patch provides libclc, an open source implementation of the
library requirements of the OpenCL C programming language, as
specified by the OpenCL 1.1 Specification. It is intended to be used
with Clover (Mesa3D's OpenCL implementation for AMD GPUs.

It needs to be compiled with host-clang, as it generates LLVM IR bitcode
files containing device builtin functions for each target.

Currently, libclc supports AMDGCN, R600 and NVPTX targets.

As OpenCL kernels can be built dynamically on the target using libclang and
libLLVM, it is necessary to have clc headers installed on the target. Buildroot
removes /usr/include in its target-finalize step, so clc headers are installed to
/usr/share/clc.

Signed-off-by: Valentin Korenblit <valentin.korenblit@smile.fr>
Signed-off-by: Valentin Korenblit <valentinkorenblit@gmail.com>
Reviewed-by: Romain Naour <romain.naour@smile.fr>
[Thomas:
 - fix license information as noticed by Romain
 - add comment to explain why --includedir=/usr/share is used]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/mesa3d: disable opencl
Valentin Korenblit [Sat, 20 Oct 2018 14:34:48 +0000 (16:34 +0200)]
package/mesa3d: disable opencl

Preliminary patch to prevent Mesa from building OpenCL lib as
soon as libclc is available.

Signed-off-by: Valentin Korenblit <valentin.korenblit@smile.fr>
Signed-off-by: Valentin Korenblit <valentinkorenblit@gmail.com>
Acked-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agosupport/testing: test_hardening fix flake8 whitespace
Matt Weber [Sat, 20 Oct 2018 15:22:47 +0000 (10:22 -0500)]
support/testing: test_hardening fix flake8 whitespace

Resolves:
support/testing/tests/core/test_hardening.py:25:42: E231 missing whitespace after ','

Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/website/sponsors: credit Smile for the LLVM/Clang internship
Romain Naour [Sat, 20 Oct 2018 14:47:31 +0000 (16:47 +0200)]
docs/website/sponsors: credit Smile for the LLVM/Clang internship

Update Smile url and logo.

Signed-off-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agosupport/config-fragments/autobuild: test the ARM AArch64 toolchain
Thomas Petazzoni [Sat, 20 Oct 2018 14:55:59 +0000 (16:55 +0200)]
support/config-fragments/autobuild: test the ARM AArch64 toolchain

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain-external: add Arm AArch64-BE toolchain 8.2-2018.08
Romain Naour [Tue, 9 Oct 2018 20:07:02 +0000 (22:07 +0200)]
toolchain-external: add Arm AArch64-BE toolchain 8.2-2018.08

This is the same toolchain that was previously distributed by Linaro. [1]

Switch default toolchain as this toolchain supersed the Linaro AArch64-BE toolchain.
Only x86_64 host are supported, so keep Linaro toolchain for x86 host.

[1] https://developer.arm.com/open-source/gnu-toolchain/gnu-a/downloads

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain-external: add Arm AArch64 toolchain 8.2-2018.08
Romain Naour [Tue, 9 Oct 2018 20:07:01 +0000 (22:07 +0200)]
toolchain-external: add Arm AArch64 toolchain 8.2-2018.08

This is the same toolchain that was previously distributed by Linaro. [1]

Switch default toolchain as this toolchain supersed the Linaro AArch64 toolchain.
Only x86_64 host are supported, so keep Linaro toolchain for x86 host.

Tested with qemu_aarch64_virt_defconfig.

[1] https://developer.arm.com/open-source/gnu-toolchain/gnu-a/downloads

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain-external: add Arm ARM toolchain 8.2-2018.08
Romain Naour [Tue, 9 Oct 2018 20:07:00 +0000 (22:07 +0200)]
toolchain-external: add Arm ARM toolchain 8.2-2018.08

This is the same toolchain that was previously distributed by Linaro. [1]

Switch default toolchain as this toolchain supersed the Linaro ARM toolchain.
Only x86_64 host are supported, so keep Linaro toolchain for x86 host.

Tested with qemu_arm_vexpress_defconfig.

[1] https://developer.arm.com/open-source/gnu-toolchain/gnu-a/downloads

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/cubieboard2: Update kernel to 4.18.14 and U-Boot to 2018.09
Alexey Brodkin [Wed, 17 Oct 2018 09:51:51 +0000 (12:51 +0300)]
configs/cubieboard2: Update kernel to 4.18.14 and U-Boot to 2018.09

The board is well supported in upstream projects so let's update kernel
and U-Boot to the latest and greatest versions.

Signed-off-by: Alexey Brodkin <abrodkin@synopsys.com>
Cc: Erico Nunes <nunes.erico@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agospice: security bump to version 0.14.1
Peter Korsgaard [Wed, 17 Oct 2018 09:45:19 +0000 (11:45 +0200)]
spice: security bump to version 0.14.1

Fixes CVE-2018-10873: A vulnerability was discovered in SPICE before version
0.14.1 where the generated code used for demarshalling messages lacked
sufficient bounds checks.  A malicious client or server, after
authentication, could send specially crafted messages to its peer which
would result in a crash or, potentially, other impacts.

Drop patches as they are now upstream.

Add host-pkgconf as the configure script uses pkg-config.  Drop removed
--disable-automated-tests configure flag.

Add optional opus support, as that is now supported and needs to be
explicitly disabled to not use.  Explicitly disable optional gstreamer
support for now as the dependency tree is fairly complicated.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agospice-protocol: bump version to 0.12.14
Peter Korsgaard [Wed, 17 Oct 2018 09:45:18 +0000 (11:45 +0200)]
spice-protocol: bump version to 0.12.14

Needed by spice 0.14.x

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/wandboard: Update kernel to 4.18.14 and U-Boot to 2018.09
Alexey Brodkin [Wed, 17 Oct 2018 08:40:21 +0000 (11:40 +0300)]
configs/wandboard: Update kernel to 4.18.14 and U-Boot to 2018.09

The board is well supported in upstream projects so let's update kernel
and U-Boot to the latest and greatest versions.

Signed-off-by: Alexey Brodkin <abrodkin@synopsys.com>
Cc: Fabio Estevam <festevam@gmail.com>
Reviewed-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agofs/common: allow custom user table to override package-defined users
Matt Weber [Tue, 2 Oct 2018 23:02:20 +0000 (18:02 -0500)]
fs/common: allow custom user table to override package-defined users

Currently, when a custom user table and a package define the same user,
the settings from the package takes precedence over the ones from the
custom user table.

However, it makes sense to allow the settings from the custom user table
take precedence. For example, it would allow redirecting the user's
home directory to an alternate location (e.g. away from tmp and into a
partition that is persistent).

The support/scripts/mkusers script will only retain settings from the
latest definition it finds.

Thus, by passing the custom user table after the package defined users,
it is possible to override the package provided user definitions.

Acked-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agopsmisc: bump to version 23.2
Baruch Siach [Tue, 16 Oct 2018 16:07:14 +0000 (19:07 +0300)]
psmisc: bump to version 23.2

Drop patch #1; applied upstream.

Drop patch #2; not needed since we don't autoreconf, and the issue is
fixed upstream anyway.

Add license hash.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopsmisc: correct license
Baruch Siach [Tue, 16 Oct 2018 16:07:13 +0000 (19:07 +0300)]
psmisc: correct license

The license heading in source files includes the "or any later"
language.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-twisted: bummp to version 18.9.0
Asaf Kahlon [Mon, 15 Oct 2018 17:02:50 +0000 (20:02 +0300)]
python-twisted: bummp to version 18.9.0

Remove patch since the new version supports Python 3.7
Change in LICENSE: addition of a developer to the list (hash updated).

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-autobahn: bump to version 18.10.1
Asaf Kahlon [Sat, 20 Oct 2018 12:24:37 +0000 (15:24 +0300)]
python-autobahn: bump to version 18.10.1

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-requests: bump to version 2.20.0
Asaf Kahlon [Thu, 18 Oct 2018 18:34:54 +0000 (21:34 +0300)]
python-requests: bump to version 2.20.0

LICENSE update: replaced http address with https.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-certifi: bump to version 2018.10.15
Asaf Kahlon [Thu, 18 Oct 2018 18:34:53 +0000 (21:34 +0300)]
python-certifi: bump to version 2018.10.15

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agobarebox: bump to version 2018.10.0
Marcin Niestroj [Fri, 19 Oct 2018 15:36:07 +0000 (17:36 +0200)]
barebox: bump to version 2018.10.0

Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agomdadm: fix mdmon build without threads
Baruch Siach [Fri, 19 Oct 2018 10:18:24 +0000 (13:18 +0300)]
mdadm: fix mdmon build without threads

Commit 45498bbc62d8df (mdadm: also install mdmon) enabled build of hte
mdmon utility. This utility requires USE_PTHREADS make variable
undefined to build when threads are not supported.

Fixes:
http://autobuild.buildroot.net/results/4bd/4bdd03b1d8f30ef32177727aae46d8cf54fbc35e/

Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolibarchive: security bump to version 3.3.3
Baruch Siach [Fri, 19 Oct 2018 05:20:05 +0000 (08:20 +0300)]
libarchive: security bump to version 3.3.3

Fixes CVE-2017-14501: An out-of-bounds read flaw exists in
parse_file_info in archive_read_support_format_iso9660.c in libarchive
3.3.2 when extracting a specially crafted iso9660 iso file, related to
archive_read_format_iso9660_read_header.

Drop upstream patches.

Use upstream provided tarball hash.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosupport/config-fragments: add RISC-V 64-bit to autobuild configs
Mark Corbin [Sat, 20 Oct 2018 11:56:51 +0000 (12:56 +0100)]
support/config-fragments: add RISC-V 64-bit to autobuild configs

Add a minimal RISC-V 64-bit autobuild configuration for the
internal toolchain with glibc.

Signed-off-by: Mark Corbin <mark.corbin@embecosm.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/php: bump version to 7.2.11
Bernd Kuhls [Fri, 19 Oct 2018 20:37:07 +0000 (22:37 +0200)]
package/php: bump version to 7.2.11

Changelog: http://www.php.net/ChangeLog-7.php#7.2.11

Removed patch 0007, applied upstream.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/{mesa3d, mesa3d-headers}: bump version to 18.2.3
Bernd Kuhls [Fri, 19 Oct 2018 20:24:07 +0000 (22:24 +0200)]
package/{mesa3d, mesa3d-headers}: bump version to 18.2.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/dtc: fix include guards for older kernel/u-boot
Lothar Felten [Mon, 8 Oct 2018 11:51:46 +0000 (13:51 +0200)]
package/dtc: fix include guards for older kernel/u-boot

U-Boot has a copy of dtc in-tree. However, it has a bug in its build
system which could result in both one of the in-tree dtc include files
and the same host-installed include file to be #included.

Normally, that wouldn't be a problem, because (a) the two include files
are compatible, so it doesn't matter which one you include, and (b) the
include guards are the same in both, so only one of them really does
get included. However, upstream dtc has changed the include guards,
removing the leading underscore. Therefore, now the header file does
get included twice, which leads to multiple definitions like:

/builds/buildroot.org/buildroot/output/host/include/libfdt.h:1790:19: error: redefinition of 'fdt_appendprop_cell'
 static inline int fdt_appendprop_cell(void *fdt, int nodeoffset,
                   ^~~~~~~~~~~~~~~~~~~
In file included from tools/fdt_host.h:11:0,
                 from tools/imagetool.h:24,
                 from tools/atmelimage.c:8:
tools/../include/libfdt.h:1656:19: note: previous definition of 'fdt_appendprop_cell' was here
 static inline int fdt_appendprop_cell(void *fdt, int nodeoffset,
                   ^~~~~~~~~~~~~~~~~~~

To fix this, patch (host) dtc to accept the old include guard as well,
which restores the old behaviour. This patch is probably not
upstreamable, since it's really a hack to work around an issue in
U-Boot.  Note that it has been fixed upstream, but Buildroot supports
building older versions of U-Boot as well.

Note that the problem may still occur if you have libdtc-dev installed
on the host. However, now there is a simple workaround: enable
BR2_TARGET_UBOOT_NEEDS_DTC.

Note that a similar problem also occurs with the beaglebone fork of the
kernel. It's not clear if it has been fixed there.

Signed-off-by: Lothar Felten <lothar.felten@gmail.com>
[Arnout: rewrite commit message, rewrap patch commit message]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agosupport/testing/tests/core: SSP & hardening flags
Matt Weber [Mon, 17 Sep 2018 21:21:52 +0000 (16:21 -0500)]
support/testing/tests/core: SSP & hardening flags

Catch the commonly used options of SSP, Relro, and fortify.
Using the package targets of busybox and lighttpd.  This
can easily be expanded to a larger list.

Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoBR2_FORTIFY*: toolchain wrapper limitation note
Matt Weber [Mon, 17 Sep 2018 21:21:51 +0000 (16:21 -0500)]
BR2_FORTIFY*: toolchain wrapper limitation note

A note is added to tie off the discussion on why moving _FORTIFY_SOURCE
related flags into the toolchain wrapper doesn't currently work.

 - Currently -D_FORTIFY_SOURCE and optimizations are passed through
   CFLAGS

 - Packages like linux-tools ignore CFLAGS entirely and some
   autotools toolchain testing cases dependent on not using
   CFLAGS.

 - If FORTIFY_SOURCE is passed through the wrapper, then linux-tools
   will no longer be able to ignore it, because it's enforced at a
   lower-level and since the optimization -Os/g/1/2/3 are via CFLAGS,
   there is no optimization flag set.  Therefore linux-tools will do
   all its configuration tests with FORTIFY_SOURCE forcefully enabled
   at the wrapper level, but no optimization enabled, and consequently
   tests will fail.

Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agotoolchain/toolchain-wrapper: add BR2_SSP_* support
Matt Weber [Mon, 17 Sep 2018 21:21:50 +0000 (16:21 -0500)]
toolchain/toolchain-wrapper: add BR2_SSP_* support

Migrate the stack protection flag management into the wrapper.

Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agotoolchain/toolchain-wrapper: add BR2_RELRO_
Matt Weber [Mon, 17 Sep 2018 21:21:49 +0000 (16:21 -0500)]
toolchain/toolchain-wrapper: add BR2_RELRO_

The RELRO/PIE flags are currently passed via CFLAGS/LDFLAGS and this patch
proposes moving them to the toolchain wrapper.

 (1) The flags should _always_ be passed, without leaving the possibility
     for any package to ignore them. I.e, when BR2_RELRO_FULL=y is used
     in a build, all executables should be built PIE. Passing those
     options through the wrapper ensures they are used during the build
     of all packages.

 (2) Some options are incompatible with -fPIE. For example, when
     building object files for a shared libraries, -fPIC is used, and
     -fPIE shouldn't be used in combination with -fPIE. Similarly, -r
     or -static are directly incompatible as they are different link
     time behaviors then the intent of PIE. Passing those options
     through the wrapper allows to add some "smart" logic to only pass
     -fPIE/-pie when relevant.

 (3) Some toolchain, kernel and bootloader packages may want to
     explicitly disable PIE in a build where the rest of the userspace
     has intentionally enabled it. The wrapper provides an option
     to key on the -fno-pie/-no-pie and bypass the appending of RELRO
     flags.
     The current Kernel and U-boot source trees include this option.
     https://github.com/torvalds/linux/commit/8438ee76b004ef66d125ade64c91fc128047d244
     https://github.com/u-boot/u-boot/commit/6ace36e19a8cfdd16ce7c02625edf36864897bf5
     If using PIE with a older Kernel and/or U-boot version, a backport of these
     changes  might be required. However this patchset also uses the
     __KERNEL__ and __UBOOT__ defines as a way to disable PIE.

NOTE: The current implementation via CFLAGS/LDFLAGS has caused some
build time failures as the conditional logic doesn't yet exist in
Buildroot:

https://bugs.busybox.net/show_bug.cgi?id=11206
https://bugs.busybox.net/show_bug.cgi?id=11321

Good summary of the most common build failures related to
enabling pie: https://wiki.ubuntu.com/SecurityTeam/PIE

[Peter: minor cleanups]
Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agonetsnmp: improve linking avoiding useless -lz listing in shared build
Giulio Benetti [Mon, 15 Oct 2018 21:59:55 +0000 (23:59 +0200)]
netsnmp: improve linking avoiding useless -lz listing in shared build

In commit:
https://git.buildroot.net/buildroot/commit/?id=13722d58f77d0e9fea9eefc50bf083d19f835433
Patch "0003-configure-Invert-AC_CHECK_LIB-EVP_md5-.-without-lz-w.patch"
was intended to fix AC_CHECK_FUNCS() failure on openssl functions. This
was due to missing -lz during static linking.
But the patch is wrong and results in explicitly linking against -lz in
both shared and static build.
This makes no sense, since shared linking has transitive dependency so
it doesn't need to list -lz after -lssl, -lssl is enough.
Differently static linking needs -lz to be listed after -lssl.

So the real cause of previous build failure:
http://autobuild.buildroot.net/results/881/881139fb049738b16609d39ad5a49bd77ff6b4aa/
is that when AC_CHECK_FUNCS(), $LIBS variable is overwritten with
$LIBCRYPTO without taking into accout previous $LIBS content(i.e. where
-lz is present). This results in AC_CHEC_FUNCS() to fail while trying to
statically link without listing -lz.

Then:
- Remove current "0003-configure-Invert-AC_CHECK_LIB-EVP_md5-.-without-lz-w.patch"
- Add patch "0003-configure-fix-AC_CHECK_FUNCS-EVP_sha224-EVP_sha384-..patch"
  where add $LIBS content to tail of new $LIBS variable like this:
  LIBS="$LIBCRYPTO $LIBS"
  NOTE: $LIBS is at the end to ensure static linking to work correctly.
- Add patch 0004-configure-fix-AC_CHECK_FUNCS-TLS_method-TLSv1_method.patch
  where add $LIBS content to tail of new $LIBS variable like this:
  LIBS="-lssl $LIBCRYPTO $LIBS"
  NOTE: $LIBS is at the end to ensure static linking to work correctly.

This way AC_CHECK_FUNCS(), when static linking, try to link with -lz too
appending it at the end of linking library list.
And after every AC_CHECK_FUNCS(), previously saved $LIBS variable gets
back to its original value(i.e. containing -lz if present) resulting in
having or not -lz appended to library list according to static or
shared build.

Signed-off-by: Giulio Benetti <giulio.benetti@micronovasrl.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/x11r7/xdriver_xf86-input-libinput: bump version to 0.28.1
Bernd Kuhls [Mon, 15 Oct 2018 16:47:33 +0000 (18:47 +0200)]
package/x11r7/xdriver_xf86-input-libinput: bump version to 0.28.1

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/x11r7/xlib_libSM: bump version to 1.2.3
Bernd Kuhls [Mon, 15 Oct 2018 16:47:32 +0000 (18:47 +0200)]
package/x11r7/xlib_libSM: bump version to 1.2.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/x11r7/xlib_libX11: bump version to 1.6.7
Bernd Kuhls [Mon, 15 Oct 2018 16:47:31 +0000 (18:47 +0200)]
package/x11r7/xlib_libX11: bump version to 1.6.7

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/x11r7/xserver_xorg-server: bump version to 1.20.2
Bernd Kuhls [Mon, 15 Oct 2018 16:47:30 +0000 (18:47 +0200)]
package/x11r7/xserver_xorg-server: bump version to 1.20.2

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agovlc: fix build with libvorbis and tremor
Fabrice Fontaine [Tue, 16 Oct 2018 15:09:09 +0000 (17:09 +0200)]
vlc: fix build with libvorbis and tremor

Commit 550c42509c203891c47d934b058a19c2fa490973 "package/vlc: fix
linking with tremor" fixed build with BR2_PACKAGE_TREMOR and without
BR2_PACKAGE_LIBVORBIS. However, it breaks build if BR2_PACKAGE_TREMOR
and BR2_PACKAGE_LIBVORBIS are both enabled.
Indeed, by overiding VORBIS_LIBS by -lvorbisidec, link of
codec/.libs/libvorbis_plugin_la-vorbis.o with -lvorbis
failed because VORBIS_LIBS is normally used to save "-logg
-lvorbis -lvorbisenc":
PKG_ENABLE_MODULES_VLC([VORBIS], [], [ogg vorbis >= 1.1 vorbisenc >= 1.1], [Vorbis decoder and encoder], [auto])

So replace fourth patch by an upstreamable patch which uses pkg-config
to set TREMOR_LIBS if tremor is found instead of "hacking" VORBIS_LIBS

Fixes:
 - http://autobuild.buildroot.org/results/85a7bb1996b78dee037d5900b124cbdf5b66a6ac

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-urllib3: bump to version 1.24
Asaf Kahlon [Tue, 16 Oct 2018 18:11:31 +0000 (21:11 +0300)]
python-urllib3: bump to version 1.24

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-markdown2: bump to version 2.3.6
Asaf Kahlon [Tue, 16 Oct 2018 18:05:14 +0000 (21:05 +0300)]
python-markdown2: bump to version 2.3.6

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-crossbar: drop Python 2 support
Ricardo Martincoski [Tue, 16 Oct 2018 23:44:57 +0000 (20:44 -0300)]
python-crossbar: drop Python 2 support

Upstream is now Python 3 only.

Quoting the maintainer [1]: "the last version of crossbar with python 2
support: pip install crossbar==18.4.1".

[1] https://github.com/crossbario/crossbar/issues/1332

Signed-off-by: Ricardo Martincoski <ricardo.martincoski@gmail.com>
Cc: Asaf Kahlon <asafka7@gmail.com>
Cc: Mauro Condarelli <mc5686@mclink.it>
Cc: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoqt5location: copy PositioningQuick.so* for QtQuick
Alexander 'z33ky' Hirsch [Tue, 16 Oct 2018 22:58:55 +0000 (00:58 +0200)]
qt5location: copy PositioningQuick.so* for QtQuick

The Location module for QtQuick depends on this library, which was not
being copied in the build rule.

Signed-off-by: Alexander 'z33ky' Hirsch <1zeeky@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libdrm: bump version to 2.4.96
Bernd Kuhls [Wed, 17 Oct 2018 17:51:41 +0000 (19:51 +0200)]
package/libdrm: bump version to 2.4.96

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-py: add dependency on host-python-setuptools-scm
Asaf Kahlon [Wed, 17 Oct 2018 16:27:01 +0000 (19:27 +0300)]
python-py: add dependency on host-python-setuptools-scm

Fixes:
http://autobuild.buildroot.net/results/cde7ea2fc256ff9f1f6b8d887b26543b998d7186

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years ago{linux, linux-headers}: fix linux-4.9.133.tar.xz checksum
Antoine Tenart [Wed, 17 Oct 2018 13:55:19 +0000 (15:55 +0200)]
{linux, linux-headers}: fix linux-4.9.133.tar.xz checksum

The Linux tarball checksum was recently updated, including the one for
version 4.9.133. The checksum for this particular version of Linux
misses one character which lead to a build issue as the checksum does
not match:

ERROR: linux-4.9.133.tar.xz has wrong sha256 hash:
ERROR: expected: 3730fc025ba330a6f4908a6a1e4cb86d821000c84167721680ccf1b37b26563
ERROR: got     : 53730fc025ba330a6f4908a6a1e4cb86d821000c84167721680ccf1b37b26563
ERROR: Incomplete download, or man-in-the-middle (MITM) attack

This patch fixes it.

Fixes: 0064c7b25125 ("{linux, linux-headers}: bump 4.{4, 9, 14, 18}.x series")
Signed-off-by: Antoine Tenart <antoine.tenart@bootlin.com>
Tested-by: Ricardo Martincoski <ricardo.martincoski@datacom.com.br>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/website: add TkOS to the sponsors
Thomas Petazzoni [Wed, 17 Oct 2018 19:27:14 +0000 (21:27 +0200)]
docs/website: add TkOS to the sponsors

Tk Open Systems has sponsored the Buildroot Association to organize
the Buildroot Developers Meeting.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agontp: fix build without libcap and no threads
Baruch Siach [Mon, 15 Oct 2018 18:38:28 +0000 (21:38 +0300)]
ntp: fix build without libcap and no threads

When threads support is missing the ntp build system builds the
work_fork code. This code added call to set_user_group_ids() that is
under HAVE_DROPROOT, which is disabled when libcap is not built.

Add a patch fixing that.

Fixes:
http://autobuild.buildroot.net/results/ab9/ab9ceff1151b8b5e6b9fa77d39c0f9b0cac1a080/

Cc: Artyom Panfilov <apanfilov@spectracom.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-posix-ipc: bump to version 1.0.4
Asaf Kahlon [Mon, 15 Oct 2018 18:19:59 +0000 (21:19 +0300)]
python-posix-ipc: bump to version 1.0.4

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-markdown: bump to version 3.0.1
Asaf Kahlon [Mon, 15 Oct 2018 18:19:58 +0000 (21:19 +0300)]
python-markdown: bump to version 3.0.1

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-babel: bump to version 2.6.0
Asaf Kahlon [Mon, 15 Oct 2018 18:19:57 +0000 (21:19 +0300)]
python-babel: bump to version 2.6.0

Also add license hash.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years ago{linux, linux-headers}: bump 4.{4, 9, 14, 18}.x series
Bernd Kuhls [Mon, 15 Oct 2018 19:49:47 +0000 (21:49 +0200)]
{linux, linux-headers}: bump 4.{4, 9, 14, 18}.x series

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosquid: requires C++11 toolchain
Baruch Siach [Tue, 16 Oct 2018 11:37:36 +0000 (14:37 +0300)]
squid: requires C++11 toolchain

The squid changelog for version 4.0.1 mentions that "C++11 compiler
support is now mandatory". The code uses the std::map::emplace method
that gcc before 4.8 does not support.

Also fixes:
http://autobuild.buildroot.net/results/370/37093f8d3395850b2db5ed645f60d1c2df92768d/
http://autobuild.buildroot.net/results/921/92117726e7b4ede08dcc0e4fd1a85171fd17aeb8/
http://autobuild.buildroot.net/results/e67/e679ef90219c5e8f9c94ddcd7d3f9582f79ef751/

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolibssh: security bump to version 0.8.4
Baruch Siach [Tue, 16 Oct 2018 12:31:08 +0000 (15:31 +0300)]
libssh: security bump to version 0.8.4

Fixes CVE-2018-10933: authentication bypass vulnerability in the server
code. By presenting the server an SSH2_MSG_USERAUTH_SUCCESS message in
place of the SSH2_MSG_USERAUTH_REQUEST message which the server would
expect to initiate authentication, the attacker could successfully
authenticate without any credentials.

  https://www.libssh.org/security/advisories/CVE-2018-10933.txt

Drop an upstream patch.

Cc: Scott Fan <fancp2007@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/glibc: provide an upstream site link
Matt Weber [Mon, 15 Oct 2018 15:14:34 +0000 (10:14 -0500)]
package/glibc: provide an upstream site link

The Config.in for glibc is a blind option and not part of the menu for
a user to select (the pkg is used for the Buildroot toolchain build),
however this patch adds the link for completeness of the pkg-stats
report and for future scripting which will generate xml updates of the
package's Common Product Enumeration (used for vunerability checking).

Signed-off-by: Matt Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-py: new package
Asaf Kahlon [Fri, 12 Oct 2018 12:34:41 +0000 (15:34 +0300)]
python-py: new package

library with cross-python path, ini-parsing, io, code, log
facilities.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/nodejs: use per-build cache directories
Yann E. MORIN [Sat, 13 Oct 2018 15:05:58 +0000 (17:05 +0200)]
package/nodejs: use per-build cache directories

When two Buildroot builds run in parallel, and they both happen to call
npm at roughly the same time, the two npm instances may conflict when
accessing the npm cache, which is by default ~/.npm

Although npm is supposed to lock access to the cache, it seems it does
sometimes fail to do so properly, bailling out in error, when it would
never ever crash at all when not running in parallel. We suspect that
the sequence leading to such failures are something like:

    npm-1                           npm-2
      lock(retry=few, sleep=short)    .
      does-stuff()                    .
      .                               lock(retry=few, sleep=short)
      .                               # can't lock local cache
      .                               download-module()
      .                                 # can't download
      .                                 exit(1)
      unlock()

As per the docs [0], few = 10, short = 10. So if the first npm (npm-1)
takes more than 100s (which can happen behind slow links and/or big
modules that contain native code that is compiled), then the second npm
(npm-2) will bail out (the download would fail if there is no network
access, for example, and only local modules are used).

Point npm to use a per-build cache directory, so they no longer compete
across builds.

That would still need some care when we do top-level parallel builds,
though.

Note also that the conflicts are not totally eliminated: two or more npm
instances may still compete for some other resource that has not yet
been identified.

But, at least, the conflict window has been drastically shortened now,
to the point where it now seldom occurs.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agorpi-wifi-firmware: bump version to 8c1e2bff1d
Peter Seiderer [Fri, 12 Oct 2018 21:09:41 +0000 (23:09 +0200)]
rpi-wifi-firmware: bump version to 8c1e2bff1d

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agorpi-bt-firmware: bump version to 8c1e2bff1d
Peter Seiderer [Fri, 12 Oct 2018 21:09:40 +0000 (23:09 +0200)]
rpi-bt-firmware: bump version to 8c1e2bff1d

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agorpi-userland: bump version to 8f0abfb07b
Peter Seiderer [Fri, 12 Oct 2018 21:09:39 +0000 (23:09 +0200)]
rpi-userland: bump version to 8f0abfb07b

- rebased 0003-Disable-Werror-everywhere.patch

- deleted 0006-host-apps-dtoverlay-don-t-install-script-in-random-l.patch
  (upstream applied [1])

[1] https://github.com/raspberrypi/userland/commit/2fe51001dbd421ac35a55af443ac080b50128266

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agorpi-firmware: bump version to fbad6408c4
Peter Seiderer [Fri, 12 Oct 2018 21:09:38 +0000 (23:09 +0200)]
rpi-firmware: bump version to fbad6408c4

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/raspberrypi*: bump kernel version to 6d27aa156c
Peter Seiderer [Fri, 12 Oct 2018 21:09:37 +0000 (23:09 +0200)]
configs/raspberrypi*: bump kernel version to 6d27aa156c

Now based on 4.14.74 (from 4.14.39).

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agomdadm: also install mdmon
Thomas Petazzoni [Sun, 14 Oct 2018 20:00:56 +0000 (22:00 +0200)]
mdadm: also install mdmon

This commit adjusts the mdadm package to also install the mdmon
utility, which is used to "monitor MD external metadata arrays". It
adds ~250 KB to the installed size:

-rwxr-xr-x 1 thomas thomas 446064 Oct 14 21:55 mdadm
-rwxr-xr-x 1 thomas thomas 244672 Oct 14 21:55 mdmon

Fixes bug #11376.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agomdadm: move from /usr/sbin to /sbin
Thomas Petazzoni [Sun, 14 Oct 2018 20:00:55 +0000 (22:00 +0200)]
mdadm: move from /usr/sbin to /sbin

The upstream Makefile by default installs to /sbin but we override
that to install it in /usr/sbin. Since mdadm is a pretty core utility
for the boot process, it makes sense to comply with upstream's default
behavior, so we change mdadm.mk to install mdadm in /sbin. This also
removes the somewhat non-standard DESTDIR value.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agomdadm: convert to generic-package
Thomas Petazzoni [Sun, 14 Oct 2018 20:00:54 +0000 (22:00 +0200)]
mdadm: convert to generic-package

There is absolutely no reason for mdadm.mk to use autotools-package:
this package does not have any configure script at all, and its
Makefile is not generated using automake.

Therefore, convert it to use the generic-package
infrastructure. Compared to the previous code, we are now using
$(TARGET_CONFIGURE_OPTS), which passes our CPPFLAGS. This overrides
the CPPFLAGS from mdadm's Makefile, so we repeat the only CPPFLAGS
flag passed in the Makefile, -DBINDIR.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoudftools: fix build with glibc 2.28
Fabrice Fontaine [Sun, 14 Oct 2018 18:11:38 +0000 (20:11 +0200)]
udftools: fix build with glibc 2.28

glibc 2.28 no longer includes <sys/sysmacros.h> from <sys/types.h>,
and therefore <sys/sysmacros.h> must be included explicitly when
major()/minor() are used.

Fixes:
 - http://autobuild.buildroot.org/results/33cb370ee80d0603974b6376f0364f914d150463

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-logbook: bump to version 1.4.1
Asaf Kahlon [Sun, 14 Oct 2018 18:27:22 +0000 (21:27 +0300)]
python-logbook: bump to version 1.4.1

logbook also needs zlib (for gzip)

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopython-cython: bump to version 0.29
Asaf Kahlon [Sun, 14 Oct 2018 18:27:21 +0000 (21:27 +0300)]
python-cython: bump to version 0.29

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agofindutils: fix build with glibc 2.28
Fabrice Fontaine [Sun, 14 Oct 2018 19:49:45 +0000 (21:49 +0200)]
findutils: fix build with glibc 2.28

Add two upstream patches to fix build with glibc 2.28, see:
https://savannah.gnu.org/bugs/?54591

Fixes:
 - http://autobuild.buildroot.org/results/0d25efeb09a6afc386eadf1a81d3a4a34eb9a989

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agowireshark: security bump to version 2.2.17
Peter Korsgaard [Sun, 14 Oct 2018 19:55:59 +0000 (21:55 +0200)]
wireshark: security bump to version 2.2.17

Fixes the following security issues:

CVE-2018-16058: Bluetooth AVDTP dissector crash:
https://www.wireshark.org/security/wnpa-sec-2018-44.html

CVE-2018-16056: Bluetooth Attribute Protocol dissector crash:
https://www.wireshark.org/security/wnpa-sec-2018-45.html

CVE-2018-16057: Radiotap dissector crash:
https://www.wireshark.org/security/wnpa-sec-2018-46.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoerlang: always use Buildroot's zlib
Frank Hunleth [Fri, 12 Oct 2018 14:11:49 +0000 (10:11 -0400)]
erlang: always use Buildroot's zlib

While Erlang includes a version of zlib, it's intended for Windows and
there's an expectation that non-Windows platforms provide it. It's also
not as regularly updated as the one in Buildroot. This change makes
Erlang always use a Buildroot-provided zlib.

Fixes this compile error:

 CC /home/buildroot/autobuild/run/instance-0/output/build/erlang-21.0/erts/emulator/zlib/obj/x86_64-buildroot-linux-musl/opt/adler32.o
In file included from zlib/adler32.c:11:0:
zlib/zutil.h:172:39: error: "_LFS64_LARGEFILE" is not defined [-Werror=undef]
     (!defined(_LARGEFILE64_SOURCE) || _LFS64_LARGEFILE-0 == 0)
                                       ^~~~~~~~~~~~~~~~

See http://autobuild.buildroot.net/results/fc633f80c7c36a90e641487f5a888fbb767c2a54/.

Signed-off-by: Frank Hunleth <fhunleth@troodon-software.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoboot/uboot: fix environment image generation on big endian systems
Thomas Petazzoni [Sun, 14 Oct 2018 19:11:58 +0000 (21:11 +0200)]
boot/uboot: fix environment image generation on big endian systems

As reported by Jeff Wittrock in bug #11396, the U-Boot environment
image checksum is invalid for big endian targets, because the test on
the BR2_ENDIAN Config.in option doesn't take into account that it is
double quoted.

The fix was provided by Jeff himself on bugzilla.

Fixes bug #11396.

Reported-by: Jeff Wittrock <jwittrock@faultrecorder.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agosedutil: disable for MIPS Codesourcery toolchain
Peter Korsgaard [Sat, 13 Oct 2018 20:22:24 +0000 (22:22 +0200)]
sedutil: disable for MIPS Codesourcery toolchain

Fixes:
http://autobuild.buildroot.net/results/005/00588d7cd37ba9620f01e970bf328540527558fc/
http://autobuild.buildroot.net/results/2fc/2fc2d0111e467671ee4cec427234a9b2aada1cc9/

Linux 4.4 moved the NVME ioctl definitions from nvme.h to nvme_ioctl.h in
commit 9d99a8dda154 (nvme: move hardware structures out of the uapi version
of nvme.h), but nvme_ioctl.h was only exported to user space in 4.4.4 in
commit 7712c014b16f64d3 (uapi: update install list after nvme.h rename).

sedutil contains the needed logic to look at either nvme.h or nvme_ioctl.h,
but as the ioctl definitions are not exported in 4.4..4.4.3, it fails to
build.

The MIPS Codesourcery toolchain uses 4.4.1 kernel headers, so disable the
sedutil package if this toolchain is used.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosupport/testing: fix TestATFMarvell test case
Thomas Petazzoni [Sun, 14 Oct 2018 13:25:59 +0000 (15:25 +0200)]
support/testing: fix TestATFMarvell test case

This test case uses a too old U-Boot version, which is affected by the
infamous libfdt header conflict issue. We update U-Boot and ATF to
what is used in the current version of
solidrun_macchiatobin_mainline_defconfig, for which the problem no
longer exists.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/107860312

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosupport/testing: fix TestATFAllwinner test case
Thomas Petazzoni [Sun, 14 Oct 2018 13:25:58 +0000 (15:25 +0200)]
support/testing: fix TestATFAllwinner test case

This test case uses a too old U-Boot version, which is affected by the
infamous libfdt header conflict issue. Let's update to U-Boot 2017.11,
which is used by our current bananapi_m64_defconfig that was the
inspiration for this test case.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/107860310

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoxerces: fix static linking with curl
Fabrice Fontaine [Thu, 11 Oct 2018 21:27:11 +0000 (23:27 +0200)]
xerces: fix static linking with curl

When curl is statically built with openssl support, xerces needs to
link with openssl libraries so use pkg_check_modules to get any
needed dependencies

Fixes:
 - http://autobuild.buildroot.org/results/29ca90fff2c8e38f2edf7240eca3aa3fe7397c45

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/bananapi_m2_ultra: new defconfig
Lothar Felten [Tue, 9 Oct 2018 13:25:03 +0000 (15:25 +0200)]
configs/bananapi_m2_ultra: new defconfig

Add intial support for Bananapi M2 Ultra board based on the Allwinner
R40 SoC.

- U-Boot 2018.07
- Linux 4.18.12

Board specifications: http://www.banana-pi.org/m2u.html

Signed-off-by: Lothar Felten <lothar.felten@gmail.com>
Reviewed-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/bananapi_m1: bump kernel and uboot version
Lothar Felten [Wed, 10 Oct 2018 09:10:31 +0000 (11:10 +0200)]
configs/bananapi_m1: bump kernel and uboot version

New Linux kernel version 4.18.12
New u-boot version 2018.07
Config options were reordered by savedefconfig

Signed-off-by: Lothar Felten <lothar.felten@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agohaproxy: put back dependency on __sync_*_4
Fabrice Fontaine [Fri, 5 Oct 2018 19:45:27 +0000 (21:45 +0200)]
haproxy: put back dependency on __sync_*_4

__sync_*_4 intrinsics is used by common/hathreads.h when gcc < 4.7 but
also by contrib/tcploop.c or include/proto/shctx.h so put back a
mandatory dependency on BR2_TOOLCHAIN_HAS_SYNC_4 which has been
wrongly removed by commit f22fca4bf27f884950dd7804020e5d5193b570b9
("haproxy: tweak thread activation").

Fixes:
 - http://autobuild.buildroot.net/results/52c88f2f27e1a3c42cf71554cf680da86d933ef6

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-pycryptodomex: update license info
Asaf Kahlon [Fri, 12 Oct 2018 06:37:22 +0000 (09:37 +0300)]
python-pycryptodomex: update license info

Clarify OCB license details, and add Doc/LEGAL/COPYRIGHT.pycrypto
to the license files list.

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-txtorcon: bump to version 18.3.0
Asaf Kahlon [Fri, 12 Oct 2018 06:36:44 +0000 (09:36 +0300)]
python-txtorcon: bump to version 18.3.0

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopython-psycopg2: add patch to avoid installing tests
Asaf Kahlon [Fri, 12 Oct 2018 06:36:55 +0000 (09:36 +0300)]
python-psycopg2: add patch to avoid installing tests

It's already on upstream, and will be removed on the next bump.

Fixes:
http://autobuild.buildroot.org/results/31c/31c942a43064fc012286724e545773cba6e57cc3/

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogvfs: bump to version 1.31.4
Fabrice Fontaine [Sat, 13 Oct 2018 13:28:43 +0000 (15:28 +0200)]
gvfs: bump to version 1.31.4

Bump to version 1.31.4 which is the first version including the fix for
glibc 2.28 issue with major/minor:
https://gitlab.gnome.org/GNOME/gvfs/commit/3424bef7ef71dc3a8c2c71310671cd6d39e7b3e7

Do not bump to latest version of gvfs as:
- this is a major rework: autotools has been dropped in favor of meson
- it requires libglib in version 2.57.1 and we have currently 2.56.1

Also:
- add hash for license file
- Remove --disable-bash-completion, no more option since 1.31.1:
  https://gitlab.gnome.org/GNOME/gvfs/commit/2f28fa49cfeb1c82927a1c7c0021b15e2742149f
- Remove --disable-hal, dropped since 1.31.1:
  https://gitlab.gnome.org/GNOME/gvfs/commit/ec9c45d7c7671266193a93500c7477990e390fc7

Fixes:
 - http://autobuild.buildroot.net/results/07fa7b0ad9ae0fa9c2e59d54e4d4c76ae4f26166

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogvfs: remove --disable-gconf
Fabrice Fontaine [Sat, 13 Oct 2018 13:28:42 +0000 (15:28 +0200)]
gvfs: remove --disable-gconf

gconf support has been dropped since 1.7.0:
https://gitlab.gnome.org/GNOME/gvfs/commit/e22dbb2aeadd3d45a93e702046bc9dc247368f4b

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>