buildroot.git
3 years agopackage/libabseil-cpp: bump version to 20200923.3
Bernd Kuhls [Sat, 6 Feb 2021 18:43:45 +0000 (19:43 +0100)]
package/libabseil-cpp: bump version to 20200923.3

Release notes:
https://github.com/abseil/abseil-cpp/releases/tag/20200923.3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/openrc: set OPENRC_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 16:14:15 +0000 (17:14 +0100)]
package/openrc: set OPENRC_CPE_ID_VALID

cpe:2.3:a:openrc_project:openrc is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aopenrc_project%3Aopenrc

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/jsoncpp: set JSONCPP_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 16:54:53 +0000 (17:54 +0100)]
package/jsoncpp: set JSONCPP_CPE_ID_VALID

cpe:2.3:a:jsoncpp_project:jsoncpp is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Ajsoncpp_project%3Ajsoncpp

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/unbound: add UNBOUND_CPE_ID_VENDOR
Fabrice Fontaine [Sat, 6 Feb 2021 15:50:11 +0000 (16:50 +0100)]
package/unbound: add UNBOUND_CPE_ID_VENDOR

cpe:2.3:a:nlnetlabs:unbound is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Anlnetlabs%3Aunbound

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/mariadb: set MARIADB_CPE_ID_VENDOR
Fabrice Fontaine [Sat, 6 Feb 2021 16:04:30 +0000 (17:04 +0100)]
package/mariadb: set MARIADB_CPE_ID_VENDOR

cpe:2.3:a:mariadb:mariadb is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Amariadb%3Amariadb

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/gnuplot: set GNUPLOT_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 15:59:52 +0000 (16:59 +0100)]
package/gnuplot: set GNUPLOT_CPE_ID_VALID

cpe:2.3:a:gnuplot_project:gnuplot is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Agnuplot_project%3Agnuplot

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/pkg-utils: escape \ in generated legal-info
Yann E. MORIN [Sat, 6 Feb 2021 08:51:02 +0000 (09:51 +0100)]
package/pkg-utils: escape \ in generated legal-info

In the output of legal-info, which is JSON-formatted, we include the
CPI_ID (when it is valid).

For xerces, the CPE_ID contains two sequences of \+ (which is exactly
what is present in the NIST DB, [0]).

However, in JSON, like in C, \ escapes the following character; only a
very limited set of characters are valid to escape: " \ / b f n r t u.
Escaping any other character is invalid. Conformant JSON parser will
choke on invalid sequences, and so does not the json python module:

      File "/usr/lib/python2.7/json/decoder.py", line 380, in raw_decode
        obj, end = self.scan_once(s, idx)
    ValueError: Invalid \escape: line 1 column 608554 (char 608553)

We fix that be globally escaping \ in our json output, in the generic
sanitising macro.

[0] https://nvd.nist.gov/products/cpe/detail/645?namingFormat=2.3&orderBy=CPEURI&keyword=xerces&status=FINAL

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/cryptopp: add CPE variables
Fabrice Fontaine [Sat, 6 Feb 2021 15:43:48 +0000 (16:43 +0100)]
package/cryptopp: add CPE variables

cpe:2.3:a:cryptopp:crypto\+\+ is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&orderBy=2.3&keyword=cpe%3A2.3%3Aa%3Acryptopp%3Acrypto%5C%2B%5C%2B

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/slirp: add CPE variables
Fabrice Fontaine [Sat, 6 Feb 2021 16:11:22 +0000 (17:11 +0100)]
package/slirp: add CPE variables

cpe:2.3:a:libslirp_project:libslirp is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Alibslirp_project%3Alibslirp

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/rtty: bump version to 7.3.2
Jianhui Zhao [Sat, 6 Feb 2021 14:33:59 +0000 (22:33 +0800)]
package/rtty: bump version to 7.3.2

Signed-off-by: Jianhui Zhao <zhaojh329@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/redis: add REDIS_CPE_ID_VENDOR
Fabrice Fontaine [Sat, 6 Feb 2021 16:29:37 +0000 (17:29 +0100)]
package/redis: add REDIS_CPE_ID_VENDOR

cpe:2.3:a:redislabs:redis is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aredislabs%3Aredis

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/mosquitto: bump version to 2.0.7
Peter Korsgaard [Sat, 6 Feb 2021 16:31:39 +0000 (17:31 +0100)]
package/mosquitto: bump version to 2.0.7

Includes a number of bugfixes.  For details, see the announcement:
https://mosquitto.org/blog/2021/02/version-2-0-7-released/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/python-flask-cors: bump to version 3.0.10
Fabrice Fontaine [Sat, 6 Feb 2021 09:59:39 +0000 (10:59 +0100)]
package/python-flask-cors: bump to version 3.0.10

https://github.com/corydolphin/flask-cors/releases/tag/3.0.10

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libkrb5: add CPE variables
Fabrice Fontaine [Sat, 6 Feb 2021 16:20:05 +0000 (17:20 +0100)]
package/libkrb5: add CPE variables

cpe:2.3:a:mit:kerberos_5 is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Amit%3Akerberos_5

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/binutils: bump 2.36.x series to 2.36.1
Thomas Petazzoni [Sat, 6 Feb 2021 20:11:19 +0000 (21:11 +0100)]
package/binutils: bump 2.36.x series to 2.36.1

Release notes:

  We are very sorry to have to report that a problem was found with the
  GNU Binutils 2.36 release.  It turns out that it contained a small
  portion of code that was not covered by an FSF copyright assignment.
  So we have created a replacement release - 2.36.1 - with that code
  removed.

  In addition we found that a fix for a theoretical security
  vulnerability[1] was itself broken and could result in the archiver
  program "ar" misbehaving.  So we have chosen to revert the fix from
  the 2.36.1 release whilst the problem is properly resolved.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/oniguruma: set ONIGURUMA_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 16:58:07 +0000 (17:58 +0100)]
package/oniguruma: set ONIGURUMA_CPE_ID_VALID

cpe:2.3:a:oniguruma_project:oniguruma is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aoniguruma_project%3Aoniguruma

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/freetype: add FREETYPE_CPE_ID_VENDOR
Fabrice Fontaine [Sat, 6 Feb 2021 16:51:15 +0000 (17:51 +0100)]
package/freetype: add FREETYPE_CPE_ID_VENDOR

cpe:2.3:a:freetype:freetype is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Afreetype%3Afreetype

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libcoap: bump version
Bernd Kuhls [Sat, 6 Feb 2021 19:19:50 +0000 (20:19 +0100)]
package/libcoap: bump version

Reformatted hashes, updated license hash due to copyright year bump:
https://github.com/obgm/libcoap/commit/12fd8a25f708aa45a20f61e363f127b934633668

Release notes:
https://sourceforge.net/p/libcoap/mailman/message/36801445/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/{apparmor, libapparmor}: bump version to 3.0.1
Bernd Kuhls [Sat, 6 Feb 2021 18:54:09 +0000 (19:54 +0100)]
package/{apparmor, libapparmor}: bump version to 3.0.1

Release notes:
https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.1

Removed patches which were applied upstream, updated _SITE.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libcli: bump version to 1.10.4
Bernd Kuhls [Sat, 6 Feb 2021 19:15:25 +0000 (20:15 +0100)]
package/libcli: bump version to 1.10.4

Removed whitespace and updated project URL in Config.in.
Reformatted hashes.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libcap: bump version to 2.48
Bernd Kuhls [Sat, 6 Feb 2021 19:07:21 +0000 (20:07 +0100)]
package/libcap: bump version to 2.48

Release notes:
https://sites.google.com/site/fullycapable/release-notes-for-libcap

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/rauc: package/rauc: bump version to 1.5.1
Bartosz Bilas [Sat, 6 Feb 2021 18:53:24 +0000 (19:53 +0100)]
package/rauc: package/rauc: bump version to 1.5.1

Removed patch applied upstream.

Signed-off-by: Bartosz Bilas <b.bilas@grinn-global.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years ago{linux, linux-headers}: bump 5.{4, 10}.x 4.{4, 9, 14, 19} series
Bernd Kuhls [Sat, 6 Feb 2021 11:53:19 +0000 (12:53 +0100)]
{linux, linux-headers}: bump 5.{4, 10}.x 4.{4, 9, 14, 19} series

Stick to 4.4.255 / 4.4.255 even though .256 is ready, as the wraparound of
the minor version may cause problems:

https://lkml.org/lkml/2021/2/5/747
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.256

https://lkml.org/lkml/2021/2/5/862
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.256

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
[Peter: stick to 4.{4,9}.255]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/iputils: update path for tftpd
Petr Vorel [Sat, 6 Feb 2021 18:56:40 +0000 (18:56 +0000)]
package/iputils: update path for tftpd

tftpd has been installed into /usr/sbin in 20210202
(in upstream commit 8d1420f tftpd: install into sbindir).

Thus remove hook which expected it in /usr/bin and tried to move it into
/usr/sbin.

Fixes:
 - http://autobuild.buildroot.net/results/3d142a705f07d496b1342e04094cd03ce7d92994
 - http://autobuild.buildroot.net/results/dae643b2d23d74b5f91225d00e85c350861a0e8a
 - http://autobuild.buildroot.net/results/dcfcb082bc188e7f990e280c3fd5d971f32cc048

Fixes: ea422f9950 ("package/iputils: bump version to 20210202")
Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libmdbx: bump version to 0.9.3
Leonid Yuriev [Fri, 5 Feb 2021 21:29:49 +0000 (00:29 +0300)]
package/libmdbx: bump version to 0.9.3

Release notes: https://github.com/erthink/libmdbx/releases/tag/v0.9.3

Signed-off-by: Leonid Yuriev <leo@yuriev.ru>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/htop: add lm-sensors optional dependency
Fabrice Fontaine [Sat, 30 Jan 2021 17:14:55 +0000 (18:14 +0100)]
package/htop: add lm-sensors optional dependency

lm-sensors is an optional dependency (enabled by default) since version
3.0.3 and
https://github.com/htop-dev/htop/commit/1b225cd7a0af03a6349c48326118a287fc36acd0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/tpm2-pkcs11: new package
Yair Ben-Avraham [Sun, 24 Jan 2021 19:29:26 +0000 (19:29 +0000)]
package/tpm2-pkcs11: new package

A PKCS#11 interface for TPM2 hardware

Signed-off-by: Yair Ben-Avraham <yairba@protonmail.com>
[Peter: add openssl dependency, drop tpm2-tools, unconditionally pass -std=gnu99]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/tmux: bump to version 3.1c
Fabrice Fontaine [Sat, 6 Feb 2021 11:07:51 +0000 (12:07 +0100)]
package/tmux: bump to version 3.1c

- Drop patch (already in version)
- Update hash of COPYING (examples directory removed:
  https://github.com/tmux/tmux/commit/e722ba38e3133cb01b4cd17bf5fe7c56e42a4962)
- Update indentation in hash file (two spaces)

https://raw.githubusercontent.com/tmux/tmux/3.1c/CHANGES

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/p11-kit: set P11_KIT_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 11:22:44 +0000 (12:22 +0100)]
package/p11-kit: set P11_KIT_CPE_ID_VALID

cpe:2.3:a:p11-kit_project:p11-kit is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Ap11-kit_project%3Ap11-kit

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/nodejs: add CPE variables
Fabrice Fontaine [Sat, 6 Feb 2021 11:16:14 +0000 (12:16 +0100)]
package/nodejs: add CPE variables

cpe:2.3:a:nodejs:node.js is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Anodejs%3Anode.js

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/tmux: set TMUX_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 11:07:50 +0000 (12:07 +0100)]
package/tmux: set TMUX_CPE_ID_VALID

cpe:2.3:a:tmux_project:tmux is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Atmux_project%3Atmux

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/asterisk: add CPE variables
Fabrice Fontaine [Sat, 6 Feb 2021 11:05:54 +0000 (12:05 +0100)]
package/asterisk: add CPE variables

cpe:2.3:a:asterisk:open_source is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aasterisk%3Aopen_source

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/raptor: add CPE variables
Fabrice Fontaine [Sat, 6 Feb 2021 10:39:27 +0000 (11:39 +0100)]
package/raptor: add CPE variables

cpe:2.3:a:librdf:raptor_rdf_syntax_library is a valid CPE identifier for
this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Alibrdf%3Araptor_rdf_syntax_library

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/atftp: set ATFTP_CPE_ID_VALID
Fabrice Fontaine [Sat, 6 Feb 2021 09:56:50 +0000 (10:56 +0100)]
package/atftp: set ATFTP_CPE_ID_VALID

cpe:2.3:a:atftp_project:atftp is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aatftp_project%3Aatftp

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/atftp: bump to version 0.7.4
Fabrice Fontaine [Sat, 6 Feb 2021 09:56:49 +0000 (10:56 +0100)]
package/atftp: bump to version 0.7.4

- Drop patches (already in version) and so autoreconf
- Update indentation in hash file (two spaces)

https://sourceforge.net/p/atftp/code/ci/v0.7.4/tree/Changelog

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/python3: add upstream security fix for CVE-2021-3177
Peter Korsgaard [Fri, 5 Feb 2021 13:07:56 +0000 (14:07 +0100)]
package/python3: add upstream security fix for CVE-2021-3177

Fixes the following security issue:

- CVE-2021-3177: Python 3.x through 3.9.1 has a buffer overflow in
  PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution
  in certain Python applications that accept floating-point numbers as
  untrusted input, as demonstrated by a 1e300 argument to
  c_double.from_param.  This occurs because sprintf is used unsafely.

For details, see the advisory:
https://python-security.readthedocs.io/vuln/ctypes-buffer-overflow-pycarg_repr.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/netsnmp: bump version to 5.9
Stefan Sørensen [Fri, 5 Feb 2021 10:00:21 +0000 (11:00 +0100)]
package/netsnmp: bump version to 5.9

- Rebased patches 1 and 4
- Dropped upstreamed patches 5 and 6

Signed-off-by: Stefan Sørensen <stefan.sorensen@spectralink.com>
[yann.morin.1998@free.fr:
  - update patches 1-2 with actual backports, as noticed by Stefan
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/python-bottle: add CPE variables
Fabrice Fontaine [Fri, 5 Feb 2021 07:54:04 +0000 (08:54 +0100)]
package/python-bottle: add CPE variables

cpe:2.3:a:bottlepy:bottle is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Abottlepy%3Abottle

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/python-flask-cors: add CPE variables
Fabrice Fontaine [Fri, 5 Feb 2021 18:18:30 +0000 (19:18 +0100)]
package/python-flask-cors: add CPE variables

cpe:2.3:a:flask-cors_project:flask-cors is a valid CPE identifier for
this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aflask-cors_project%3Aflask-cors

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/makedumpfile: fix build on sparc64
Fabrice Fontaine [Thu, 4 Feb 2021 19:31:11 +0000 (20:31 +0100)]
package/makedumpfile: fix build on sparc64

Fix the following build failure on sparc64:

/home/giuliobenetti/autobuild/run/instance-0/output-1/host/opt/ext-toolchain/bin/../lib/gcc/sparc64-buildroot-linux-gnu/9.3.0/../../../../sparc64-buildroot-linux-gnu/bin/ld: /tmp/ccylTux8.o: in function `find_kaslr_offsets':
/home/giuliobenetti/autobuild/run/instance-0/output-1/build/makedumpfile-1.6.8/makedumpfile.c:4017: undefined reference to `get_kaslr_offset'

Even if this build failure is only raised with version 1.6.8,
get_kaslr_offset was also undeclared on sparc64 in version 1.6.7

Fixes:
 - http://autobuild.buildroot.org/results/1421f54f7599bba62c0a4bd5c65ce21c8cc7ee1a

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libfuse3: bump version to 3.10.2
Asaf Kahlon [Fri, 5 Feb 2021 16:36:39 +0000 (18:36 +0200)]
package/libfuse3: bump version to 3.10.2

Remove patch (already on upstream).

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libpwquality: bump version to 1.4.4
Stefan Sørensen [Fri, 5 Feb 2021 10:00:20 +0000 (11:00 +0100)]
package/libpwquality: bump version to 1.4.4

Signed-off-by: Stefan Sørensen <stefan.sorensen@spectralink.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/atftp: add security fix for CVE-2020-6097
Peter Korsgaard [Fri, 5 Feb 2021 09:01:01 +0000 (10:01 +0100)]
package/atftp: add security fix for CVE-2020-6097

Fixed the following security issue:

- CVE-2020-6097: An exploitable denial of service vulnerability exists in
  the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1.  A
  specially crafted sequence of RRQ-Multicast requests trigger an assert()
  call resulting in denial-of-service.  An attacker can send a sequence of
  malicious packets to trigger this vulnerability.

For more details, see the report:
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1029

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/timescaledb: bump version to 2.0.1
Maxim Kochetkov [Fri, 5 Feb 2021 05:57:45 +0000 (08:57 +0300)]
package/timescaledb: bump version to 2.0.1

Release notes: https://github.com/timescale/timescaledb/releases/tag/2.0.1

Signed-off-by: Maxim Kochetkov <fido_max@inbox.ru>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/python-django: add CPE variables
Fabrice Fontaine [Fri, 5 Feb 2021 08:03:31 +0000 (09:03 +0100)]
package/python-django: add CPE variables

cpe:2.3:a:djangoproject:django is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Adjangoproject%3Adjango

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/vala: add VALA_CPE_ID_VENDOR
Fabrice Fontaine [Fri, 5 Feb 2021 07:46:26 +0000 (08:46 +0100)]
package/vala: add VALA_CPE_ID_VENDOR

cpe:2.3:a:gnome:vala is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Agnome%3Avala

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/cryptodev-linux: set CRYPTODEV_LINUX_CPE_ID_VENDOR
Fabrice Fontaine [Fri, 5 Feb 2021 07:45:09 +0000 (08:45 +0100)]
package/cryptodev-linux: set CRYPTODEV_LINUX_CPE_ID_VENDOR

cpe:2.3:a:cryptodev-linux:cryptodev-linux is a valid CPE identifier for
this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Acryptodev-linux%3Acryptodev-linux

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libtirpc: set LIBTIRPC_CPE_ID_VALID
Fabrice Fontaine [Fri, 5 Feb 2021 07:42:17 +0000 (08:42 +0100)]
package/libtirpc: set LIBTIRPC_CPE_ID_VALID

cpe:2.3:a:libtirpc_project:libtirpc is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Alibtirpc_project%3Alibtirpc

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/wpa_supplicant: add upstream 2020-2 security fix
Peter Korsgaard [Fri, 5 Feb 2021 12:13:29 +0000 (13:13 +0100)]
package/wpa_supplicant: add upstream 2020-2 security fix

Fixes the following security issue:

 - wpa_supplicant P2P group information processing vulnerability (no CVE yet)

   A vulnerability was discovered in how wpa_supplicant processing P2P
   (Wi-Fi Direct) group information from active group owners.  The actual
   parsing of that information validates field lengths appropriately, but
   processing of the parsed information misses a length check when storing a
   copy of the secondary device types.  This can result in writing attacker
   controlled data into the peer entry after the area assigned for the
   secondary device type.  The overflow can result in corrupting pointers
   for heap allocations.  This can result in an attacker within radio range
   of the device running P2P discovery being able to cause unexpected
   behavior, including termination of the wpa_supplicant process and
   potentially arbitrary code execution.

For more details, see the advisory:
https://w1.fi/security/2020-2/wpa_supplicant-p2p-group-info-processing-vulnerability.txt

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
[yann.morin.1998@free.fr: keep _PATCH near _VERSION and _SITE]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/xenomai: disable cobalt for armv8
Romain Naour [Tue, 2 Feb 2021 20:56:14 +0000 (21:56 +0100)]
package/xenomai: disable cobalt for armv8

When a armv8 target is used in 32bits mode, xenomai fail to detect the
ARM architecture and abord the build. (__ARM_ARCH_7A__ is not defined
for armv8 cpus).

There are no autobuilder failures for this issue since cobalt is never
selected, but the following defconfig:

BR2_arm=y
BR2_cortex_a53=y
BR2_ARM_FPU_NEON_VFPV4=y
BR2_TOOLCHAIN_EXTERNAL=y
BR2_PACKAGE_XENOMAI=y
BR2_PACKAGE_XENOMAI_COBALT=y

This was initialy reproduced using the raspberrypi3_defconfig with
Xenomai package with cobalt selected.

In order to use Xenomai on raspberrypi3 in 32 bits mode, one has to
select BR2_cortex_a7 instead of BR2_cortex_a53 (see a13a388dd444).

See:
https://gitlab.denx.de/Xenomai/xenomai/-/blob/v3.1/lib/cobalt/arch/arm/include/asm/xenomai/features.h#L52

Signed-off-by: Romain Naour <romain.naour@gmail.com>
[yann.morin.1998@free.fr:
  - switch to independent conditional 'default y'
  - slightly reword the commit log
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/xenomai: smp support needs at least armv6
Romain Naour [Tue, 2 Feb 2021 20:56:13 +0000 (21:56 +0100)]
package/xenomai: smp support needs at least armv6

There are no autobuilder failures for this issue, but the following
defconfig:

BR2_arm=y
BR2_TOOLCHAIN_EXTERNAL=y
BR2_PACKAGE_XENOMAI=y
BR2_PACKAGE_XENOMAI_COBALT=y

See:
https://gitlab.denx.de/Xenomai/xenomai/-/blob/v3.1/lib/cobalt/arch/arm/include/asm/xenomai/features.h#L56

Signed-off-by: Romain Naour <romain.naour@gmail.com>
[yann.morin.1998@free.fr: fix the condition]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for RISC-V 64 musl
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:31 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for RISC-V 64 musl

Instead of using an external toolchain built specifically for the
autobuilders to test RISC-V 64/musl, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for RISC-V 64 glibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:30 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for RISC-V 64 glibc

Instead of using an external toolchain built specifically for the
autobuilders to test RISC-V 64/glibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/sox: remove EOL whitespace
Arnout Vandecappelle (Essensium/Mind) [Fri, 5 Feb 2021 08:01:14 +0000 (09:01 +0100)]
package/sox: remove EOL whitespace

Fixes https://gitlab.com/buildroot.org/buildroot/-/jobs/1010083301

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
3 years agopackage/libksba: set LIBKSBA_CPE_ID_VALID
Fabrice Fontaine [Thu, 4 Feb 2021 19:00:06 +0000 (20:00 +0100)]
package/libksba: set LIBKSBA_CPE_ID_VALID

cpe:2.3:a:libksba_project:libksba is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Alibksba_project%3Alibksba

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/ghostscript: add GHOSTSCRIPT_CPE_ID_VENDOR
Fabrice Fontaine [Thu, 4 Feb 2021 19:46:52 +0000 (20:46 +0100)]
package/ghostscript: add GHOSTSCRIPT_CPE_ID_VENDOR

cpe:2.3:a:artifex:ghostscript is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Aartifex%3Aghostscript

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/autofs: bump to version 5.1.7
Fabrice Fontaine [Thu, 4 Feb 2021 19:42:12 +0000 (20:42 +0100)]
package/autofs: bump to version 5.1.7

- Drop patch (already in version)
- Update hash of license files (correction in FSF address):
  https://git.kernel.org/pub/scm/linux/storage/autofs/autofs.git/commit/?id=b74dcdd3f6b05522388729141c29286829c302fc
- Update indentation in hash file (two spaces)

https://git.kernel.org/pub/scm/linux/storage/autofs/autofs.git/tree/CHANGELOG?h=release_5_1_7

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/libcurl: bump version to 7.75.0
Bernd Kuhls [Thu, 4 Feb 2021 22:25:25 +0000 (23:25 +0100)]
package/libcurl: bump version to 7.75.0

Updated license hash due to copyright year bump:
https://github.com/curl/curl/commit/275c28e6502e1ded6c62b5bf22a409de16b4a04e

Changelog: https://curl.se/changes.html

Release notes:
https://daniel.haxx.se/blog/2021/02/03/curl-7-75-0-is-smaller/
"No new security advisories this time!"

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/tor: bump version to 0.4.4.7
Bernd Kuhls [Thu, 4 Feb 2021 19:50:38 +0000 (20:50 +0100)]
package/tor: bump version to 0.4.4.7

Release notes: https://blog.torproject.org/node/1990

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/php: security bump version to 7.4.15
Bernd Kuhls [Thu, 4 Feb 2021 19:49:57 +0000 (20:49 +0100)]
package/php: security bump version to 7.4.15

Changelog: https://www.php.net/ChangeLog-7.php#7.4.15

Fixes CVE-2021-21702: http://bugs.php.net/80672

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/clamav: bump version to 0.103.1
Bernd Kuhls [Thu, 4 Feb 2021 19:43:20 +0000 (20:43 +0100)]
package/clamav: bump version to 0.103.1

Release notes:
https://blog.clamav.net/2021/02/clamav-01031-patch-release.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/capnproto: add CAPNPROTO_CPE_ID_VENDOR
Fabrice Fontaine [Thu, 4 Feb 2021 19:03:22 +0000 (20:03 +0100)]
package/capnproto: add CAPNPROTO_CPE_ID_VENDOR

cpe:2.3:a:capnproto:capnproto is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Acapnproto%3Acapnproto

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/valijson: set VALIJSON_CPE_ID_VALID
Fabrice Fontaine [Thu, 4 Feb 2021 19:01:34 +0000 (20:01 +0100)]
package/valijson: set VALIJSON_CPE_ID_VALID

cpe:2.3:a:valijson_project:valijson is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Avalijson_project%3Avalijson

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/python-bluezero: bump to version 0.5.0
Grzegorz Blach [Thu, 4 Feb 2021 14:22:25 +0000 (15:22 +0100)]
package/python-bluezero: bump to version 0.5.0

Signed-off-by: Grzegorz Blach <grzegorz@blach.pl>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/sysklogd: replace local syslog.conf sample with upstream
Joachim Wiberg [Mon, 1 Feb 2021 12:52:36 +0000 (13:52 +0100)]
package/sysklogd: replace local syslog.conf sample with upstream

This patch drops the local syslog.conf in favor of the one shipped with
sysklogd.  The upstream syslog.conf sample differs from the Buildroot
one primarily in shifting to /var/log/syslog as the default for log
messages.  It also comes with a dedicated /var/log/kern.log and some
commented-out filtering examples.

Signed-off-by: Joachim Wiberg <troglobit@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/cereal: fix CVE-2020-11105
Fabrice Fontaine [Wed, 3 Feb 2021 20:11:00 +0000 (21:11 +0100)]
package/cereal: fix CVE-2020-11105

Fix CVE-2020-11105: An issue was discovered in USC iLab cereal through
1.3.0. It employs caching of std::shared_ptr values, using the raw
pointer address as a unique identifier. This becomes problematic if an
std::shared_ptr variable goes out of scope and is freed, and a new
std::shared_ptr is allocated at the same address. Serialization fidelity
thereby becomes dependent upon memory layout. In short, serialized
std::shared_ptr variables cannot always be expected to serialize back
into their original values. This can have any number of consequences,
depending on the context within which this manifests.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/sox: security bump to latest git commit
Fabrice Fontaine [Wed, 3 Feb 2021 20:00:49 +0000 (21:00 +0100)]
package/sox: security bump to latest git commit

Bump to the latest git commit as this will fix the following CVEs:

git log|grep CVE
  sox-fmt: validate comments_bytes before use (CVE-2019-13590) [bug #325]
  fix possible null pointer deref in lsx_make_lpf() (CVE-2019-8357)
  fft4g: bail if size too large (CVE-2019-8356)
  fix possible overflow in lsx_(re)valloc() size calculation (CVE-2019-8355)
  fix possible buffer size overflow in lsx_make_lpf() (CVE-2019-8354)
  xa: validate channel count (CVE-2017-18189)
  aiff: fix crash on empty comment chunk (CVE-2017-15642)
  adpcm: fix stack overflow with >4 channels (CVE-2017-15372)
  flac: fix crash on corrupt metadata (CVE-2017-15371)
  wav: ima_adpcm: fix buffer overflow on corrupt input (CVE-2017-15370)
  wav: fix crash writing header when channel count >64k (CVE-2017-11359)
  hcom: fix crash on input with corrupt dictionary (CVE-2017-11358)
  wav: fix crash if channel count is zero (CVE-2017-11332)

- Tweak configuration options due to
  https://sourceforge.net/p/sox/code/ci/6ff0e9322f9891f5a6ac6c9b3bceffbfca16bec3
- libgsm is now an optional dependency since
  https://sourceforge.net/p/sox/code/ci/e548827ffcf4dffa7f21709b8e96b04b481c09b8
- Add patch to put back --disable-stack-protector

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/systemd: bump to version 247.3
Norbert Lange [Wed, 3 Feb 2021 11:14:15 +0000 (12:14 +0100)]
package/systemd: bump to version 247.3

Drop upstream patch.

Use the new mode=release switch, this should automatically
disable features deemed not ready for use.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/squashfs: set SQUASHFS_CPE_ID_VALID
Fabrice Fontaine [Tue, 2 Feb 2021 17:31:23 +0000 (18:31 +0100)]
package/squashfs: set SQUASHFS_CPE_ID_VALID

cpe:2.3:a:squashfs_project:squashfs is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Asquashfs_project%3Asquashfs

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/smartmontools: add SMARTMONTOOLS_CPE_ID_VENDOR
Fabrice Fontaine [Tue, 2 Feb 2021 17:29:15 +0000 (18:29 +0100)]
package/smartmontools: add SMARTMONTOOLS_CPE_ID_VENDOR

cpe:2.3:a:smartmontools:smartmontools is a valid CPE identifier for this
package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Asmartmontools%3Asmartmontools

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/iputils: bump version to 20210202
Petr Vorel [Tue, 2 Feb 2021 18:39:09 +0000 (19:39 +0100)]
package/iputils: bump version to 20210202

Upstream changed version scheme: dropped leading 's', reflect it.

Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/sqlcipher: add SQLCIPHER_CPE_ID_VENDOR
Fabrice Fontaine [Tue, 2 Feb 2021 17:30:43 +0000 (18:30 +0100)]
package/sqlcipher: add SQLCIPHER_CPE_ID_VENDOR

cpe:2.3:a:zetetic:sqlcipher is a valid CPE identifier for this package:

  https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Azetetic%3Asqlcipher

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agopackage/python-bottle: security bump to version 0.12.19
Peter Korsgaard [Tue, 2 Feb 2021 15:33:19 +0000 (16:33 +0100)]
package/python-bottle: security bump to version 0.12.19

Fixes the following security issue:

CVE-2020-28473: The package bottle from 0 and before 0.12.19 are vulnerable
to Web Cache Poisoning by using a vector called parameter cloaking.  When
the attacker can separate query parameters using a semicolon (;), they can
cause a difference in the interpretation of the request between the proxy
(running with default configuration) and the server.  This can result in
malicious requests being cached as completely safe ones, as the proxy would
usually not see the semicolon as a separator, and therefore would not
include it in a cache key of an unkeyed parameter.

In addition, bottle 0.12.18 fixed a compatibility issue with python 3.8+:

https://github.com/bottlepy/bottle/issues/1181

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agoconfigs/nexbox_a95x_defconfig: bump to kernel 5.10.12
Peter Korsgaard [Tue, 2 Feb 2021 10:05:08 +0000 (11:05 +0100)]
configs/nexbox_a95x_defconfig: bump to kernel 5.10.12

The mmc probing order has changed since commit 21b2cec61c04bd1 (mmc: Set
PROBE_PREFER_ASYNCHRONOUS for drivers that existed in v4.4), so get rid of
the hardcoded root=/dev/mmcblk1p2.  The old vendor U-Boot unfortunately does
not have GPT support, so stick to MBR and use the legacy
root=PARTUUID=<disksignature>-<partition> format and set a fixed disk
signature, similar to how it was done for orangepi-r1 in commit 34cce93adb
(configs/orangepi_r1_defconfig: bump kernel to 5.10.10, u-boot to 2020.10).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
3 years agoconfigs/orangepi_r1_defconfig: fix typo in comment
Yann E. MORIN [Wed, 3 Feb 2021 22:16:09 +0000 (23:16 +0100)]
configs/orangepi_r1_defconfig: fix typo in comment

In commit 38d04e6b1341, I did a last-minute change by adding the comment
to explain where the PARTLABEL was coming from, and introduced a typo in
that comment.

Fix it.

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agoboard/orangepi-zero-plus2: switch to GPT for PARTLABEL support
Sergey Matyukevich [Wed, 3 Feb 2021 19:57:19 +0000 (22:57 +0300)]
board/orangepi-zero-plus2: switch to GPT for PARTLABEL support

Patch that pins mmc indexes was not accepted to mainline kernel. Drop that
patch and switch to GPT to use partition labels. For GPT the name of the
partition in genimage.cfg is used as the label for that partition. Note
that the default GPT partition table location conflicts with the SPL
location, so move GPT table after bootloaders.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/grpc: disable unnecessary build plugins
Thomas De Schampheleire [Wed, 3 Feb 2021 12:43:24 +0000 (13:43 +0100)]
package/grpc: disable unnecessary build plugins

grpc has plugins for multiple programming languages, which are needed on
development machines only. Examples are grpc_cpp_plugin, grpc_ruby_plugin,
etc.

Even though before commit fedf3318e3fd3c9ba57389ed2b36472f1a772b9e,
grpc_cpp_plugin was not installed for target, all other plugins still were.
This causes additional build time and rootfs space.

As Buildroot does not support building a development environment for target,
these tools can be disabled.

Signed-off-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/grpc: fix cross-compilation with gRPC_BUILD_GRPC_CPP_PLUGIN=OFF
Thomas De Schampheleire [Wed, 3 Feb 2021 12:43:23 +0000 (13:43 +0100)]
package/grpc: fix cross-compilation with gRPC_BUILD_GRPC_CPP_PLUGIN=OFF

In commit fedf3318e3fd3c9ba57389ed2b36472f1a772b9e, an obsolete patch to
support cross-compilation was removed, in favor of the upstream solution.

However, this caused a small change in behavior: for the target grpc, the
tool 'grpc_cpp_plugin' is now also built, while before it was not.

This tool is only really needed on development machines. Since Buildroot
does not support compilers and such on target itself, the tool is not
needed.

There exists an option gRPC_BUILD_GRPC_CPP_PLUGIN which can be set to 'OFF',
but disabling it in a cross-compilation context yields build failures.

Add a patch to fix that. This patch is intended to be upstreamed to grpc.

Signed-off-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agopackage/collectd: stop passing '--with-libgrpc++'
Thomas De Schampheleire [Wed, 3 Feb 2021 12:43:22 +0000 (13:43 +0100)]
package/collectd: stop passing '--with-libgrpc++'

Commit 903de16f5fd586a32a7aed7a792a43dce16365eb added passing
'--with-libgrpc++' with the explanation:

    "Use --with-libgrpc++ option as otherwise collectd will try to find
    grpc++.pc which is not available."

At the time of above commit, grpc version in Buildroot was 1.23.0.
Since grpc 1.25.0, a grpc++.pc file _is_ generated from cmake builds.
Hence, remove passing --with-libgrpc++.

This change fixes a problem introduced by commit
fedf3318e3fd3c9ba57389ed2b36472f1a772b9e. As a side effect of that change, a
target version of 'grpc_cpp_plugin' was now created. When collectd was built
after grpc, even without grpc support in collectd enabled, the collectd
configure script would find this target grpc_cpp_plugin and try to use it
(which is not possible because it is built for target).
When not passing '--with-libgrpc++', collectd will instead find the host
version of grpc_cpp_plugin, which works fine.

There are still two underlying problems:
1. the target version of grpc_cpp_plugin is not actually needed. This will
   be disabled in a subsequent commit.

2. collectd should not execute any grpc-related action if grpc support for
   collectd is disabled. This problem has been reported upstream:
   https://github.com/collectd/collectd/issues/3836

Signed-off-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agotoolchain/toolchain-external: update Arm AArch64 BE toolchain 10.2-2020.11
Romain Naour [Tue, 2 Feb 2021 23:19:05 +0000 (00:19 +0100)]
toolchain/toolchain-external: update Arm AArch64 BE toolchain 10.2-2020.11

Update to gcc 10.2, gdb 10.1, binutils 2.35.1.

See "Release Note":
https://developer.arm.com/open-source/gnu-toolchain/gnu-a/downloads#

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agotoolchain/toolchain-external: update Arm AArch64 toolchain 10.2-2020.11
Romain Naour [Tue, 2 Feb 2021 23:19:04 +0000 (00:19 +0100)]
toolchain/toolchain-external: update Arm AArch64 toolchain 10.2-2020.11

Update to gcc 10.2, gdb 10.1, binutils 2.35.1.

See "Release Note":
https://developer.arm.com/open-source/gnu-toolchain/gnu-a/downloads#

Tested with qemu_aarch64_virt_defconfig.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agotoolchain/toolchain-external: update Arm ARM toolchain 10.2-2020.11
Romain Naour [Tue, 2 Feb 2021 23:19:03 +0000 (00:19 +0100)]
toolchain/toolchain-external: update Arm ARM toolchain 10.2-2020.11

Update to gcc 10.2, gdb 10.1, binutils 2.35.1.

See "Release Note":
https://developer.arm.com/open-source/gnu-toolchain/gnu-a/downloads#

Tested with qemu_arm_vexpress_defconfig.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: update Buildroot toolchains to 2020.11.2
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:38 +0000 (23:53 +0100)]
support/config-fragments/autobuild: update Buildroot toolchains to 2020.11.2

Most of the toolchains now use gcc 9.x and kernel headers 5.9, instead
of gcc 8.x and kernel headers 5.4.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for Xtensa uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:37 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for Xtensa uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test Xtensa/uclibc, use a pre-built Bootlin toolchain.

To be noted: that fragment was in fact already using a Bootlin
bleeding-edge toolchain, because BR2_TOOLCHAIN_EXTERNAL_CUSTOM=y is
missing from the fragment:

    $ cat support/config-fragments/autobuild/br-xtensa-full.config >.config

    $ make olddefconfig

    $ grep BOOTLIN .config
    BR2_TOOLCHAIN_EXTERNAL_BOOTLIN=y
    BR2_TOOLCHAIN_EXTERNAL_BOOTLIN_ARCH_SUPPORTS=y
    BR2_TOOLCHAIN_EXTERNAL_BOOTLIN_XTENSA_LX60_UCLIBC_BLEEDING_EDGE=y
    # BR2_TOOLCHAIN_EXTERNAL_BOOTLIN_XTENSA_LX60_UCLIBC_STABLE is not set

The original fragment was supposed to use a stable toolchain, so we
switch to explictly use a stable Bootlin toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[yann.morin.1998@free.fr:
  - add blurb about missing BR2_TOOLCHAIN_EXTERNAL_CUSTOM=y
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for x86-64 musl
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:36 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for x86-64 musl

Instead of using an external toolchain built specifically for the
autobuilders to test x86-64/musl, use a pre-built Bootlin toolchain.

The previous configuration was for an Atom platform, but the Bootlin
toolchains only provide a Core i7 configuration. Since this is close
enough, we change to use this Core i7 configuration.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for x86-64 uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:35 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for x86-64 uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test x86-64/uclibc, use a pre-built Bootlin toolchain.

The previous configuration was for Core2 platform, but the Bootlin
toolchains only provide a Core i7 configuration. Since this is close
enough, we change to use this Core i7 configuration.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for SPARC64 glibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:34 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for SPARC64 glibc

Instead of using an external toolchain built specifically for the
autobuilders to test SPARC64/glibc, use a pre-built Bootlin toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for SPARC uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:33 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for SPARC uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test SPARC/uclibc, use a pre-built Bootlin toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for SH4 uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:32 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for SH4 uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test SH4/uclibc, use a pre-built Bootlin toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[yann.morin.1998@free.fr: drop BR2_sh4=y which is the default]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for RISC-V 32 glibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:29 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for RISC-V 32 glibc

Instead of using an external toolchain built specifically for the
autobuilders to test RISC-V 32/glibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for PowerPC e500mc uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:28 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for PowerPC e500mc uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test PowerPC e500mc/uclibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for PowerPC64le Power8...
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:27 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for PowerPC64le Power8 glibc

Instead of using an external toolchain built specifically for the
autobuilders to test PowerPC64le Power8/glibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for OpenRISC uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:26 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for OpenRISC uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test OpenRISC/uclibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for NIOS2 glibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:25 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for NIOS2 glibc

Instead of using an external toolchain built specifically for the
autobuilders to test nios2/glibc, use a pre-built Bootlin toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for mipsel uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:24 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for mipsel uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test mipsel/uclibc, use a pre-built Bootlin toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for mipsel32r6 glibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:23 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for mipsel32r6 glibc

Instead of using an external toolchain built specifically for the
autobuilders to test mipsel32r6/glibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for Microblaze EL uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:22 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for Microblaze EL uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test Microblaze EL/uclibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for m68k 5208 uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:21 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for m68k 5208 uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test m68k 5208/uclibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for m68k 68040 uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:20 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for m68k 68040 uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test m68k 68040/uclibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
3 years agosupport/config-fragments/autobuild: use Bootlin toolchain for ARMv7-M uclibc
Thomas Petazzoni [Tue, 2 Feb 2021 22:53:19 +0000 (23:53 +0100)]
support/config-fragments/autobuild: use Bootlin toolchain for ARMv7-M uclibc

Instead of using an external toolchain built specifically for the
autobuilders to test ARMv7-M/uclibc, use a pre-built Bootlin
toolchain.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>