buildroot.git
7 years agogst1-plugins-ugly: bump version to 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:13 +0000 (14:19 +0200)]
gst1-plugins-ugly: bump version to 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agogst1-plugins-good: bump version to 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:12 +0000 (14:19 +0200)]
gst1-plugins-good: bump version to 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agogst1-plugins-base: bump version to 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:11 +0000 (14:19 +0200)]
gst1-plugins-base: bump version to 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agogst1-libav: bump version to 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:10 +0000 (14:19 +0200)]
gst1-libav: bump version to 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agogst-omx: bump version to 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:09 +0000 (14:19 +0200)]
gst-omx: bump version to 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agogst1-vaapi: bump version to 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:08 +0000 (14:19 +0200)]
gst1-vaapi: bump version to 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agogstreamer1: bump to version 1.12.1
Peter Korsgaard [Tue, 4 Jul 2017 12:19:07 +0000 (14:19 +0200)]
gstreamer1: bump to version 1.12.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agolibmad: add security patch from debian
Peter Korsgaard [Tue, 4 Jul 2017 08:42:11 +0000 (10:42 +0200)]
libmad: add security patch from debian

Fixes:

CVE-2017-8372 - The mad_layer_III function in layer3.c in Underbit MAD
libmad 0.15.1b, if NDEBUG is omitted, allows remote attackers to cause a
denial of service (assertion failure and application exit) via a crafted
audio file.

CVE-2017-8373 - The mad_layer_III function in layer3.c in Underbit MAD
libmad 0.15.1b allows remote attackers to cause a denial of service
(heap-based buffer overflow and application crash) or possibly have
unspecified other impact via a crafted audio file.

CVE-2017-8374 - The mad_bit_skip function in bit.c in Underbit MAD libmad
0.15.1b allows remote attackers to cause a denial of service (heap-based
buffer over-read and application crash) via a crafted audio file.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoicu: propagate host gcc dependency to reverse dependencies
Peter Korsgaard [Mon, 3 Jul 2017 21:18:59 +0000 (23:18 +0200)]
icu: propagate host gcc dependency to reverse dependencies

Fixes:
http://autobuild.buildroot.net/results/821/821eae7add252e3711ed069a2d292a04427fa43b/

Commit 87f43c3403 (package/icu: needs host gcc >= 4.8) added a new toolchain
dependency to icu, but didn't propagate it to the reverse dependencies of
icu.

Some of these have been fixed in later commits, but not all.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-rtsp-server: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:07 +0000 (11:18 +0100)]
gst1-rtsp-server: bump version to 1.12.0

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-validate: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:06 +0000 (11:18 +0100)]
gst1-validate: bump version to 1.12.0

Remove non-existant configure options:

  --disable-sphinx-doc:
  Even if it looks like there is some code for that in configure.ac, it
  seems that is not taken into account and that configure option is not
  even recognized.

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: move dtls plugin
Peter Korsgaard [Tue, 4 Jul 2017 11:24:22 +0000 (13:24 +0200)]
gst1-plugins-bad: move dtls plugin

The dtls plugin needs openssl, so move it down to the "plugins with external
dependencies" section to match the rest of the plugins.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: add new Timed Text Markup Language (TTML) plugin
Peter Korsgaard [Tue, 4 Jul 2017 11:21:43 +0000 (13:21 +0200)]
gst1-plugins-bad: add new Timed Text Markup Language (TTML) plugin

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: add new dependency-less audiobuffersplit / audiomixmatrix plugins
Peter Korsgaard [Tue, 4 Jul 2017 10:48:41 +0000 (12:48 +0200)]
gst1-plugins-bad: add new dependency-less audiobuffersplit / audiomixmatrix plugins

These plugins are new in 1.12.x

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: explicitly disable new msdk plugin
Peter Korsgaard [Tue, 4 Jul 2017 10:52:52 +0000 (12:52 +0200)]
gst1-plugins-bad: explicitly disable new msdk plugin

As we do not have the needed dependencies packaged.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: add Image Quality Assessment (IQA) plugin
Vicente Olivert Riera [Fri, 12 May 2017 10:18:02 +0000 (11:18 +0100)]
gst1-plugins-bad: add Image Quality Assessment (IQA) plugin

This plugin replaces the recently removed videomeasure plugin.

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:01 +0000 (11:18 +0100)]
gst1-plugins-bad: bump version to 1.12.0

Remove non-existant configure options:

  --disable-mimic:
    https://github.com/GStreamer/gst-plugins-bad/commit/ad661999ad2c79a5d7721f0eb1e7f1f83a304224

  --enable-dataurisrc:
    https://github.com/GStreamer/gst-plugins-bad/commit/de4bb6e1d4793637fd72d7316d06ebba4148583e

  --enable-videomeasure:
    https://github.com/GStreamer/gst-plugins-bad/commit/ca3020cf46d49d8e3fd54ec323b3a17cd389d780

  --enable-apexsink, --disable-nas, --disable-linsys, --enable-sdl,
  --disable-sdltest, --disable-libvisual, --disable-timidity,
  --disable-sndio, --disable-wininet, --disable-xvid,
  --enable-cdxaparse, --enable-dccp, --enable-hdvparse, --enable-mve,
  --enable-nuvdemux, --enable-patchdetect, --enable-sdi, --enable-tta,
  --disable-pvr:
    https://github.com/GStreamer/gst-plugins-bad/commit/9b5de053995488d5ddc78c1bf4df651101271d70

[Peter: split out webrtc rename to a separate patch, tweak dataurisrc help]
Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-ugly: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:05 +0000 (11:18 +0100)]
gst1-plugins-ugly: bump version to 1.12.0

Remove non-existant configure options:

  --enable-mad:
    https://github.com/GStreamer/gst-plugins-ugly/commit/2f767fb24ac8ee001bde7e1452b46a4f8fe3a719

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-good: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:04 +0000 (11:18 +0100)]
gst1-plugins-good: bump version to 1.12.0

Remove non-existant configure options:

  --disable-esd, --disable-esdtest:
  https://github.com/GStreamer/gst-plugins-good/commit/3d6955d68624c089d7066bfdbf38ef69c1dc07b6

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-base: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:03 +0000 (11:18 +0100)]
gst1-plugins-base: bump version to 1.12.0

Remove non-existant or unnecessary configure options:

  --disable-oggtest, --disable-vorbistest:
    It looks like these options will be taken into account by ogg.m4 and
    vorbis.m4 only when ogg and vobis are enabled. However, according to
    the code on those m4 files these two options are disabled by default.

  --disable-gio_unix_2_0:
    I don't know where this option comes from.

  --disable-freetypetest:
    https://github.com/GStreamer/gst-plugins-base/commit/183610c035dd6955c9b3540b940aec50474af031

[Peter: add rawparse plugin]
Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-libav: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:18:00 +0000 (11:18 +0100)]
gst1-libav: bump version to 1.12.0

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst-omx: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:17:59 +0000 (11:17 +0100)]
gst-omx: bump version to 1.12.0

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-vaapi: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:17:58 +0000 (11:17 +0100)]
gst1-vaapi: bump version to 1.12.0

0001 patch already included in this release:
  https://github.com/GStreamer/gstreamer-vaapi/commit/159e3c3f08ef1c19da4ede8a437337dd8cf7f0b7
0002 patch already included in this release:
  https://github.com/GStreamer/gstreamer-vaapi/commit/152217064f1192bb836620ad7eaadbc031624f4c

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogstreamer1: bump version to 1.12.0
Vicente Olivert Riera [Fri, 12 May 2017 10:17:57 +0000 (11:17 +0100)]
gstreamer1: bump version to 1.12.0

0001 patch already included in this release:
  https://github.com/GStreamer/gstreamer/commit/c893882fd93238ce722096ecf4db87b6a9f87c5d

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agogst1-plugins-bad: fix webrtc option
Thomas Petazzoni [Tue, 4 Jul 2017 08:11:54 +0000 (10:11 +0200)]
gst1-plugins-bad: fix webrtc option

When the WebRTC plugin option was introduced in commit
ee267886bc090335dd94c97dca1c294addccc090 ("gst1-plugins-bad: enable
webrtc plugin"), it was incorrect added as "webrtc", while the actual
name of the plugin and corresponding configure option is "webrtcdsp".

This commit therefore fixes the .mk file to use the correct name. And
also, since we want to keep Buildroot option consistent with the name
of the GStreamer plugins, it renames the Config.in option as well, and
introduces the necessary Config.in.legacy handling.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agopixz: new package
Vincent Stehlé [Mon, 3 Jul 2017 20:09:23 +0000 (22:09 +0200)]
pixz: new package

Add a package for pixz (pronounced pixie), a parallel, indexing version of
xz.

See https://github.com/vasi/pixz

Signed-off-by: Vincent Stehlé <vincent.stehle@laposte.net>
Acked-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Tested-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agosystem: require a timezone to be set
Yann E. MORIN [Tue, 4 Jul 2017 06:56:39 +0000 (08:56 +0200)]
system: require a timezone to be set

Even though no timezone implicitly means UTC, systemd is not all that
happy when it does not have a timezone set. This is all fine on a RW
filesystem because systemd will create a symlink on its own (to
Etc/UTC), but not so much on a RO filesystem, causing all kind of
issues at boot time (up to the point that the system is unusable).

We fix that by requiring that the timezone is actually set. The check is
done by verifying that the timezone file is an actual file; if not set,
the test would find a directory and would thus fail.

Update the help entry accordingly.

Also fix indentation in tzdata.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Richard Braun <rbraun@sceen.net>
Cc: Alexandre Belloni <alexandre.belloni@free-electrons.com>
Cc: Martin Bark <martin@barkynet.com>
Cc: Maxime Hadjinlian <maxime.hadjinlian@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopackage/tz: fix variable name
Yann E. MORIN [Tue, 4 Jul 2017 06:56:38 +0000 (08:56 +0200)]
package/tz: fix variable name

The tz package mixes its own variable with the one from the tzdata
package...

Fix the variable name in tz.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Alexandre BELLONI <alexandre.belloni@free-electrons.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopackage/mke2img: add option to specify block size
Yann E. MORIN [Mon, 3 Jul 2017 22:51:01 +0000 (00:51 +0200)]
package/mke2img: add option to specify block size

ext filesystems can use a block size of 1024, 2048, or 4096 bytes, the
former being interesting to store small files, while the latter being
more intersting to store bigger files.

So far, we were using the default, which was to use a 1024-byte block.
Continue doing so (for now...).

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Samuel Martin <s.martin49@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agofs/ext2: simplify code
Yann E. MORIN [Mon, 3 Jul 2017 22:51:00 +0000 (00:51 +0200)]
fs/ext2: simplify code

No option is conditional anymore, so just collate them into a single
assignment.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Samuel Martin <s.martin49@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agofs/ext2: allow reserving zero block for root
Yann E. MORIN [Mon, 3 Jul 2017 22:50:59 +0000 (00:50 +0200)]
fs/ext2: allow reserving zero block for root

The previous default, zero, just meant "use the default value of the
filesystem generator", which happened to be 5% (the traditional value
for all ext-creating tools we've ever seen).

So, change the new default accordingly to 5%.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Samuel Martin <s.martin49@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agofs/ext2: always pass the label option
Yann E. MORIN [Mon, 3 Jul 2017 22:50:58 +0000 (00:50 +0200)]
fs/ext2: always pass the label option

... since passing an empty string is equivalent to not setting a label.

And fix the syntax highlighting in some editors...

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Samuel Martin <s.martin49@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agofs/ext2: always pass the number of inodes
Yann E. MORIN [Mon, 3 Jul 2017 22:50:57 +0000 (00:50 +0200)]
fs/ext2: always pass the number of inodes

... since zero also means auto for the mke2img script, now.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Samuel Martin <s.martin49@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopackage/mke2img: specifying zero inodes means auto
Yann E. MORIN [Mon, 3 Jul 2017 22:50:56 +0000 (00:50 +0200)]
package/mke2img: specifying zero inodes means auto

Currently, leaving the number of inodes to be autocalculated requires
the user to not specify the -i option at all.

Also accept zero as meaning auto; this will help simplify the ext2.mk
code a little bit.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Samuel Martin <s.martin49@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agolibsepol: rework host installation
Arnout Vandecappelle [Mon, 3 Jul 2017 12:44:56 +0000 (14:44 +0200)]
libsepol: rework host installation

libsepol has a pretty peculiar interpretation of DESTDIR and PREFIX.
PREFIX is not consistently used: some installation paths are forced to
$(DESTDIR)/usr/... . Also, the shared lib symlink is forced to ../../lib
(i.e. assumes it's installed under /usr). For these reasons, the host
build and install commands are a bit unusual: they use DESTDIR instead
of PREFIX, DESTDIR points to $(HOST_DIR) without /usr, and some
additional fixup is needed to correct the installation directory of
libsepol.so.1 and the symlink to it.

This can be simplified quite a lot by passing both DESTDIR and PREFIX,
and including the /usr part in both. The symlink still has to be fixed,
but that's much simpler.

Note that a side effect is that the man pages are now installed under
$(HOST_DIR)/usr/usr/man. While not very nice, we don't really care
about man pages. In addition, this will resolve itself when we later
move $(HOST_DIR)/usr to $(HOST_DIR).

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopkg-rebar: remove redundant / in front of $($(PKG)_ERLANG_LIBDIR)
Arnout Vandecappelle [Mon, 3 Jul 2017 12:44:55 +0000 (14:44 +0200)]
pkg-rebar: remove redundant / in front of $($(PKG)_ERLANG_LIBDIR)

Sometimes $(1)/$($(PKG)_ERLANG_LIBDIR) is used, sometimes
$(1)$($(PKG)_ERLANG_LIBDIR). Make this consistent, with /. Therefore,
remove the leading / from $($(PKG)_ERLANG_LIBDIR).

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopackage/libunwind: fix build failure due to asm()
Romain Naour [Mon, 3 Jul 2017 12:50:38 +0000 (14:50 +0200)]
package/libunwind: fix build failure due to asm()

The gcc documentation [1] suggest to use __asm__ instead of asm.

Fixes:
http://autobuild.buildroot.net/results/3ef/3efe156b6494e4392b6c31de447ee2c72acc1a53

[1] https://gcc.gnu.org/onlinedocs/gcc/Alternate-Keywords.html#Alternate-Keywords

Signed-off-by: Romain Naour <romain.naour@smile.fr>
Cc: Bernd Kuhls <bernd.kuhls@t-online.de>
Tested-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agobusybox: applets as individual binaries
Clayton Shotwell [Mon, 3 Jul 2017 21:00:49 +0000 (23:00 +0200)]
busybox: applets as individual binaries

The individual binaries option of busybox allows for the applets
that would usually be symlinks to be built as individual applications
that link against a shared library.

This feature is needed for SELinux to allow the applications to run
under the correct SELinux context.

The patch being added allows the individual applications to be
installed and will be upstreamed to the busybox developers.

The initial work for this change was done by Thomas Petazzoni
<thomas.petazzoni@free-electrons.com>.

Signed-off-by: Clayton Shotwell <clayton.shotwell@rockwellcollins.com>
Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Niranjan Reddy <niranjan.reddy@rockwellcollins.com>
Signed-off-by: Bryce Ferguson <bryce.ferguson@rockwellcollins.com>
[Thomas:
 - add help text in Config.in option.
 - rename BUSYBOX_CONFIGURE_INDIVIDUAL_BINARIES to
   BUSYBOX_SET_INDIVIDUAL_BINARIES to be consistent with other
   variables.
 - call BUSYBOX_INSTALL_INDIVIDUAL_BINARIES in
   BUSYBOX_INSTALL_TARGET_CMDS, not in BUSYBOX_INSTALL_INIT_SYSV.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
[Arnout:
 - revert to the "optional file" approach in makedevs;
 - reword Config.in comment text to match our usual pattern;
 - abbreviate comment about how suid applets are found a little;
 - all applets are optional (each one may have been unselected from the
   busybox config).]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
[Thomas: remove /usr/share/udhcpc/default.script from BUSYBOX_PERMISSIONS.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agomakedevs: support optional files
Arnout Vandecappelle [Mon, 3 Jul 2017 21:00:48 +0000 (23:00 +0200)]
makedevs: support optional files

Add the 'F' file type to makedevs, that allows a file to be optional.
With this option, the line is just silently skipped if the file doesn't
exist (or is not a regular file).

This is useful for _PERMISSIONS where the file can be configured out
by package-specific configuration that is not directly handled by
Buildroot, like busybox.

Cc: Clayton Shotwell <clayton.shotwell@rockwellcollins.com>
Cc: Matthew Weber <matthew.weber@rockwellcollins.com>
Cc: Niranjan Reddy <niranjan.reddy@rockwellcollins.com>
Cc: Bryce Ferguson <bryce.ferguson@rockwellcollins.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopackage/libva-utils: new package
Bernd Kuhls [Mon, 3 Jul 2017 21:09:53 +0000 (23:09 +0200)]
package/libva-utils: new package

The utils provided by this package were formerly packaged with libva.

Libva contained a patch not to compile mpeg2vldemo to reduce
dependencies by avoiding C++, this patch is not moved to this package.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Reviewed-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopackage/lua-stdlib: new package
Marcin Niestroj [Mon, 26 Jun 2017 15:19:41 +0000 (17:19 +0200)]
package/lua-stdlib: new package

Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Reviewed-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopngquant: doesn't support building with ccache
Arnout Vandecappelle [Mon, 3 Jul 2017 21:43:55 +0000 (23:43 +0200)]
pngquant: doesn't support building with ccache

pngquant's homegrown configure script doesn't understand CC with a
space, so we can't use ccache with it. Only the host variant is
affected: for the target, we call ccache from the toolchain-wrapper so
it's transparent to the configure script.

This wasn't seen in the autobuilders since they never enable
BR2_CCACHE.

To test, use any configuration and do
make BR2_CCACHE=y host-pngquant

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoazure-iot-sdk-c: Package depends on NPTL
André Hentschel [Mon, 3 Jul 2017 21:45:32 +0000 (23:45 +0200)]
azure-iot-sdk-c: Package depends on NPTL

Fixes:
http://autobuild.buildroot.org/results/1ad/1ad1c02eb866dd9a1b586308b11b4242f4321355/
http://autobuild.buildroot.org/results/fd0/fd0a1f71fec062a530bcffe95e501095657c0d50/

Signed-off-by: André Hentschel <nerv@dawncrow.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoeasy-rsa: new package
Julien Viard de Galbert [Mon, 29 May 2017 21:03:39 +0000 (23:03 +0200)]
easy-rsa: new package

[Peter: Mention that openssl is a runtime dependency,
Add license info as noted by Romain, add gpl-2.0.txt,
Add comment explaining the missing build step,
Use install -t for x509-types files]
Signed-off-by: Julien Viard de Galbert <julien@vdg.name>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agopackage/devmem2: fix legal-info
Peter Korsgaard [Mon, 3 Jul 2017 22:04:55 +0000 (00:04 +0200)]
package/devmem2: fix legal-info

Fixes:
http://autobuild.buildroot.net/results/1c6/1c69c77d7b378f6f76790fb5ca0078d0db0c40f8

devmem2 is a single C file that is downloaded as-is, and we patch it.
We also use that file as the license file.

Thus, the file when it is downloaded has a specific hash, but when
saved by legal-info, it has a different hash.

However, we can't store two different hashes for the same _filename_
with different content.

So, we extract the license file as a pre-patch hook, and store it in a
separate file, for which we can now add a hash.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agopackage/cache-calibrator: fix legal-info
Yann E. MORIN [Mon, 3 Jul 2017 21:30:01 +0000 (23:30 +0200)]
package/cache-calibrator: fix legal-info

Fixes:
http://autobuild.buildroot.net/results/e1b/e1b3dee917f5ab3961f3dea006720431444d0ef5/

cache-calibrator is a single C file that is downloaded as-is, and we
patch it. We also use that file as the license file.

Thus, the file when it is downloaded has a specific hash, but when
saved by legal-info, it has a different hash.

However, we can't store two different hashes for the same _filename_
with different content.

So, we extract the license file as a pre-patch hook, and store it in a
separate file, for which we can now add a hash.

[Peter: add autobuilder reference]
Reported-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Stephan Hoffmann <sho@relinux.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agompg123: security bump to version 1.25.1
Peter Korsgaard [Mon, 3 Jul 2017 12:43:37 +0000 (14:43 +0200)]
mpg123: security bump to version 1.25.1

>From the release notes:

- Avoid memset(NULL, 0, 0) to calm down the paranoid.

- Fix bug 252, invalid read of size 1 in ID3v2 parser due to forgotten
  offset from the frame flag bytes (unnoticed in practice for a long time).
  Fuzzers are in the house again.  This one got CVE-2017-10683.

  https://sourceforge.net/p/mpg123/bugs/252/

- Avoid a mostly harmless conditional jump depending on uninitialised
  fr->lay in compute_bpf() (mpg123_position()) when track is not ready yet.

- Fix undefined shifts on signed long mask in layer3.c (worked in practice,
  never right in theory).  Code might be a bit faster now, even.  Thanks to
  Agostino Sarubbo for reporting.

dlopen() is now directly used to load output modules (and the
--with-modules-suffix option has been removed), so adjust the modules logic
to match.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agovlc: add upstream security patches fixing CVE-2017-10699
Peter Korsgaard [Mon, 3 Jul 2017 15:01:40 +0000 (17:01 +0200)]
vlc: add upstream security patches fixing CVE-2017-10699

avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before
2017-06-29, allows out-of-bounds heap memory write due to calling memcpy()
with a wrong size, leading to a denial of service (application crash) or
possibly code execution.

https://trac.videolan.org/vlc/ticket/18467

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agolibpwquality: select cracklib
Peter Korsgaard [Mon, 3 Jul 2017 16:58:27 +0000 (18:58 +0200)]
libpwquality: select cracklib

libpwquality adds cracklib to its _DEPENDENCIES, but forgot to select it in
Config.in, leading to build failures if cracklib isn't explicitly enabled:

Makefile:536: *** cracklib is in the dependency chain of libpwquality that
has added it to its _DEPENDENCIES variable without selecting it or depending
on it from Config.in.  Stop.

No autobuilder references as this error happens before build-time.log is
written, causing the autobuilder to ignore the build result.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Acked-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agodocs/manual: document hashes for license files
Yann E. MORIN [Sun, 25 Jun 2017 22:03:41 +0000 (00:03 +0200)]
docs/manual: document hashes for license files

[Peter: use sha256 in example]
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Luca Ceresoli <luca@lucaceresoli.net>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Rahul Bedarkar <rahulbedarkar89@gmail.com>
Cc: Thomas De Schampheleire <patrickdepinguin@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agocore/pkg-utils: check hashes of license files
Yann E. MORIN [Sun, 25 Jun 2017 22:03:40 +0000 (00:03 +0200)]
core/pkg-utils: check hashes of license files

This will help catch a change of license even if the filename does
not change.

For now, a missing hash for the license files is not a fatal error, to
let people catch up and add them. When we switch to make it mandatory,
we can simplify the code by just removing the case statement.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Luca Ceresoli <luca@lucaceresoli.net>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Rahul Bedarkar <rahulbedarkar89@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agocore/pkg-util: pass package directory and name when saving license files
Yann E. MORIN [Sun, 25 Jun 2017 22:03:39 +0000 (00:03 +0200)]
core/pkg-util: pass package directory and name when saving license files

This will be useful when checking the hashes of the license files.

[Peter: use '.' as buildroot directory so /buildroot.hash isn't checked]
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Luca Ceresoli <luca@lucaceresoli.net>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Rahul Bedarkar <rahulbedarkar89@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agocore/pkg-generic: call MESSAGE when saving package legal-info
Yann E. MORIN [Sun, 25 Jun 2017 22:03:38 +0000 (00:03 +0200)]
core/pkg-generic: call MESSAGE when saving package legal-info

Currently, the per-package legal-info is mostly silent, but we're soon
to add a check for the hashes of the license files.

In that case, and when there is a hash mis-match, we want a user to know
what package had a changed license file.

So, we add a call to MESSAGE to display the package we're currently
saving the legal-info of, like so:

    >>> busybox 1.26.2 Collecting legal info

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Luca Ceresoli <luca@lucaceresoli.net>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Rahul Bedarkar <rahulbedarkar89@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agosupport/check-package: don't check filenames of hashes
Yann E. MORIN [Sun, 25 Jun 2017 22:03:37 +0000 (00:03 +0200)]
support/check-package: don't check filenames of hashes

Currently, we check that the filenames in hash lists do not contain
a slash '/' character, because all we are checking so far are the
downloaded archives, and we explicitly need the filename to not contain
a directory component at all.

However, we're soon to also check the hashes of the license files in
packages sources, and those license files may be at any arbitrary
directory-depth in the packages source tree.

[Peter: Remove reference to files with same basename]
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Luca Ceresoli <luca@lucaceresoli.net>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Rahul Bedarkar <rahulbedarkar89@gmail.com>
Cc: Ricardo Martincoski <ricardo.martincoski@gmail.com>
Acked-by: Ricardo Martincoski <ricardo.martincoski@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agofakedate: simplify logic
Peter Korsgaard [Tue, 7 Feb 2017 22:08:17 +0000 (23:08 +0100)]
fakedate: simplify logic

Using -ef to check for the same file is nicer than relying on a magic
symlink-to-fakedate.

Notice that -ef isn't stricly posix (but supported by bash/dash/zsh), so
I've changed the shebang to /bin/bash.

While we are at it, restructure the logic to do a single exec at the end
instead of handling the epoch/!epoch cases differently for simplicity.

With that out of the way we can directly install it as $HOST/usr/bin/date
instead of the fakedate / date symlink.

[Peter: drop IFS=: change]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoMakefile: generate wrapper makefile when running make without a .config
Peter Korsgaard [Mon, 3 Jul 2017 10:24:05 +0000 (12:24 +0200)]
Makefile: generate wrapper makefile when running make without a .config

The recent change to error out instead of running menuconfig when no .config
is available broke an existing use case:

make O=output-foo; cd output-foo; br-init-conf (or similar to get a sensible .config); make

As there is no wrapper makefile in output-foo.

Fix it by ensuring the wrapper gets created if needed.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agotslib: use SPDX identifiers for licenses in use
Martin Kepplinger [Mon, 3 Jul 2017 07:50:08 +0000 (09:50 +0200)]
tslib: use SPDX identifiers for licenses in use

[Peter: License is GPL-2.0+ / LGPL-2.1+]
Signed-off-by: Martin Kepplinger <martink@posteo.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agosetlocalversion: fix detection of hg revision for untagged versions
Thomas De Schampheleire [Wed, 26 Apr 2017 12:43:11 +0000 (14:43 +0200)]
setlocalversion: fix detection of hg revision for untagged versions

By default, cut prints the entire line if the specified delimiter is not
present at all:

    $ printf "foo bar" | cut -d' ' -f2
    bar
    $ printf "foobar" | cut -d' ' -f2
    foobar

In setlocalversion, cut is presented with the output of 'hg id' which has
the format:

    "<revision> <tags-if-any>"

If the current revision is not tagged, the output of 'hg id' does not
contain the delimiter (space), cut prints the entire string, and
setlocalversion thinks the version is the tag.
As setlocalversion does not print anything for tagged versions, there is no
output overall, and no correct indication of the mercurial revision.

Fix by passing the extra cut option '--only-delimited', which suppresses
output if no delimiter is found.

This problem likely went unnoticed for so long, because the tag 'tip' (i.e.
most recent revision of the branch) is treated specially: in this case the
mercurial revision _is_ printed, i.e. the situation is treated as
'untagged'.
The problem is only seen when you are _not_ at the most recent revision in
your branch.

Signed-off-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoqt5virtualkeyboard: new package
Gaël PORTAY [Sat, 1 Apr 2017 22:36:51 +0000 (18:36 -0400)]
qt5virtualkeyboard: new package

This patch adds the Qt virtualkeyboard package.

Signed-off-by: Gaël PORTAY <gael.portay@savoirfairelinux.com>
Reviewed-by: Peter Seiderer <ps.report@gmx.net>
[Thomas:
 - use SDPX license codes
 - add entry to DEVELOPERS file
 - drop BR2_PACKAGE_QT5BASE_LICENSE_APPROVED logic, since we removed this option
 - select BR2_PACKAGE_QT5DECLARATIVE and
   BR2_PACKAGE_QT5DECLARATIVE_QUICK instead of using a "depends on"
   and propagate the appropriate dependencies]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agolirc-tools: bump to version 0.9.4d
Baruch Siach [Sat, 24 Jun 2017 20:56:01 +0000 (23:56 +0300)]
lirc-tools: bump to version 0.9.4d

Drop 0001-tools-make_rel_symlink.py-can-also-use-python2.patch. Build requires
host-python3 since the previous version bump.

Drop upstream 0002-lircd-Remove-use-of-functions-killed-in-kernel-4.8.0.patch.

Add a patch fixing header guard macro collision with musl libc.

Set HAVE_WORKING_POLL to skip poll(2) run test that is not compatible with
cross compilation.

Add optional dependency on libftdi1.

Cc: Rhys Williams <github@wilberforce.co.nz>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agowavpack: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:42 +0000 (18:53 +0200)]
wavpack: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agotrinity: don't download patches from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:41 +0000 (18:53 +0200)]
trinity: don't download patches from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agotinycbor: on't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:40 +0000 (18:53 +0200)]
tinycbor: on't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agosystemd: don't download patches from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:39 +0000 (18:53 +0200)]
systemd: don't download patches from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agosoftether: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:38 +0000 (18:53 +0200)]
softether: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agosngrep: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:37 +0000 (18:53 +0200)]
sngrep: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

For this package, the patch is not replaced 1:1 with what Github was
providing. Indeed, the URL
https://github.com/irontec/sngrep/pull/191/commits/4740f3341a99eaec105dee202a6fa7828212cdf1.patch
no longer exists. This pull request has been merged, so we instead use
the real upstream commits. However, the upstream developer apparently
messed up, and applied the change in two separate commits, which is
why one patch fetched from Github is replaced by this commit by two
patches in package/sngrep/.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoscrub: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:36 +0000 (18:53 +0200)]
scrub: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agorpm: don't download patches from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:35 +0000 (18:53 +0200)]
rpm: don't download patches from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoqt: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:34 +0000 (18:53 +0200)]
qt: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agopoco: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:33 +0000 (18:53 +0200)]
poco: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoopenzwave: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:32 +0000 (18:53 +0200)]
openzwave: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoopenssh: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:31 +0000 (18:53 +0200)]
openssh: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoopenal: don't download patches from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:30 +0000 (18:53 +0200)]
openal: don't download patches from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agonumactl: don't download patches from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:29 +0000 (18:53 +0200)]
numactl: don't download patches from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agomediastreamer: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:28 +0000 (18:53 +0200)]
mediastreamer: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agolxc: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:27 +0000 (18:53 +0200)]
lxc: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agolibstrophe: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:26 +0000 (18:53 +0200)]
libstrophe: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agojack2: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:25 +0000 (18:53 +0200)]
jack2: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agoefibootmgr: don't download patch from Github
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:24 +0000 (18:53 +0200)]
efibootmgr: don't download patch from Github

Patches downloaded from Github are not stable, so bring them in the
tree.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agodocs/manual: update details about hashes
Thomas Petazzoni [Sun, 2 Jul 2017 16:53:23 +0000 (18:53 +0200)]
docs/manual: update details about hashes

This commit updates the manual about hashes, fixing a number of
issues:

 - Adding the .hash file should no longer be optional: it *must* be
   added. Therefore the wording "You can add ..." is changed to "When
   possible, you must add ...".

 - We are now checking hashes for Git downloaded packages, so fix this
   as well, and indicate more clearly which download methods have hash
   checking.

 - We no longer want to have auto-generated patches be downloaded
   through <pkg>_PATCH because such patches are not stable over time,
   and their hash can change. For example, downloading patches from
   github.com should no longer be done.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agosqlite: add json1 support
Bradford Barr [Mon, 26 Jun 2017 16:17:44 +0000 (09:17 -0700)]
sqlite: add json1 support

Add support for the JSON1 SQLite extensions. This extension allows SQLite to
store and query JSON objects in a database.

Signed-off-by: Bradford Barr <bradford@density.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agobind: security bump to version 9.11.1-P2
Peter Korsgaard [Sun, 2 Jul 2017 15:01:48 +0000 (17:01 +0200)]
bind: security bump to version 9.11.1-P2

Fixes the following security issues:

CVE-2017-3142: An error in TSIG authentication can permit unauthorized zone
transfers

An attacker who is able to send and receive messages to an authoritative DNS
server and who has knowledge of a valid TSIG key name may be able to
circumvent TSIG authentication of AXFR requests via a carefully constructed
request packet. A server that relies solely on TSIG keys for protection with
no other ACL protection could be manipulated into:

* providing an AXFR of a zone to an unauthorized recipient
* accepting bogus NOTIFY packets

https://kb.isc.org/article/AA-01504/74/CVE-2017-3142

CVE-2017-3041: An error in TSIG authentication can permit unauthorized dynamic
updates

An attacker who is able to send and receive messages to an authoritative DNS
server and who has knowledge of a valid TSIG key name for the zone and service
being targeted may be able to manipulate BIND into accepting an unauthorized
dynamic update.

https://kb.isc.org/article/AA-01503/74/CVE-2017-3143

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years ago.gitlab-ci.yml: use the Buildroot CI image published on Docker Hub
Arnout Vandecappelle [Sun, 2 Jul 2017 16:24:59 +0000 (18:24 +0200)]
.gitlab-ci.yml: use the Buildroot CI image published on Docker Hub

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agosupport: add Dockerfile for CI
Arnout Vandecappelle [Sun, 2 Jul 2017 16:13:23 +0000 (18:13 +0200)]
support: add Dockerfile for CI

For Gitlab-CI, we want to avoid re-generating the minimal install to
be able to run tests all the time. So let's create a docker image that
we can post on Docker Hub and then pull.

For the time being, this is just what we need for running our CI. Later
we can produce something that is also useful for users.

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years ago.gitlab-ci.yml: run our runtime tests
Thomas Petazzoni [Sun, 2 Jul 2017 16:13:22 +0000 (18:13 +0200)]
.gitlab-ci.yml: run our runtime tests

This commit improves our .gitlab-ci.yml logic to execute our runtime
tests located in support/testing/. To do so, this commit:

 - Adds more Debian packages to be installed, namely the nose2 and
   pexpect packages needed by the runtime testing infrastructure, as
   well as the necessary Qemu emulators

 - The description of how to run the runtime tests. Each test is
   executed as a separate Gitlab CI job, so that the status of each
   test is easily visible in the Gitlab CI web interface.

 - The Makefile is improved to auto-generate .gitlab-ci.yml from
   .gitlab-ci.yml.in, like we're doing for defconfigs. Since the
   dependencies of .gitlab-ci.yml are no longer correct, we abandon
   them and instead make it a PHONY target.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
[Arnout: simplify .gitlab-ci.in a little, removing redundant stuff;
         make .gitlab-ci.yml a PHONY target]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agopkg-virtual: fix host dependencies handling
Eric Le Bihan [Sun, 25 Jun 2017 20:56:08 +0000 (22:56 +0200)]
pkg-virtual: fix host dependencies handling

If $(BR2_PACKAGE_HAS_HOST_FOO) is defined, then the pkg-virtual
infrastructure will check if $(BR2_PACKAGE_PROVIDES_HOST_FOO) is not
empty.

But later, $(BR2_PACKAGE_HOST_FOO_DEPENDENCIES) will be set from
$(BR2_PACKAGE_PROVIDES_FOO), ignoring $(BR2_PACKAGE_PROVIDES_HOST_FOO).

So fix this discrepancy by setting $(BR2_PACKAGE_HOST_FOO_DEPENDENCIES)
from $(BR2_PACKAGE_PROVIDES_FOO) only if $(BR2_PACKAGE_PROVIDES_HOST_FOO)
is empty.

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
[Thomas: add comments suggested by Arnout.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agolibcurl: LICENSE value changes to SPDX
Naoki Matsumoto [Mon, 26 Jun 2017 01:34:23 +0000 (10:34 +0900)]
libcurl: LICENSE value changes to SPDX

The curl license is a MIT/X derivative license, but
has a distinct identifier in SPDX, so use that:

https://spdx.org/licenses/curl.html

[Peter: reword commit message]
Signed-off-by: Naoki Matsumoto <n-matsumoto@melcoinc.co.jp>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agos6-linux-init: bump version to 0.3.0.0
Eric Le Bihan [Sun, 25 Jun 2017 19:26:21 +0000 (21:26 +0200)]
s6-linux-init: bump version to 0.3.0.0

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agos6-portable-utils: bump version to 2.2.1.0
Eric Le Bihan [Sun, 25 Jun 2017 19:26:20 +0000 (21:26 +0200)]
s6-portable-utils: bump version to 2.2.1.0

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agos6-linux-utils: bump version to 2.4.0.0
Eric Le Bihan [Sun, 25 Jun 2017 19:26:19 +0000 (21:26 +0200)]
s6-linux-utils: bump version to 2.4.0.0

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agos6-rc: bump version to 0.2.0.1
Eric Le Bihan [Sun, 25 Jun 2017 19:26:18 +0000 (21:26 +0200)]
s6-rc: bump version to 0.2.0.1

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agos6: bump version to 2.6.0.0
Eric Le Bihan [Sun, 25 Jun 2017 19:26:17 +0000 (21:26 +0200)]
s6: bump version to 2.6.0.0

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agos6-networking: bump version to 2.3.0.1
Eric Le Bihan [Sun, 25 Jun 2017 19:26:16 +0000 (21:26 +0200)]
s6-networking: bump version to 2.3.0.1

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agos6-dns: bump version to 2.2.0.0
Eric Le Bihan [Sun, 25 Jun 2017 19:26:15 +0000 (21:26 +0200)]
s6-dns: bump version to 2.2.0.0

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agoexecline: bump version to 2.3.0.1
Eric Le Bihan [Sun, 25 Jun 2017 19:26:14 +0000 (21:26 +0200)]
execline: bump version to 2.3.0.1

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agoskalibs: bump version to 2.5.1.1
Eric Le Bihan [Sun, 25 Jun 2017 19:26:13 +0000 (21:26 +0200)]
skalibs: bump version to 2.5.1.1

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agorauc: add missing dependencies for host variant
Thomas Petazzoni [Sun, 2 Jul 2017 21:16:42 +0000 (23:16 +0200)]
rauc: add missing dependencies for host variant

rauc unconditionally needs OpenSSL and libglib2. Those dependencies
were properly accounted for the target variant, but not the host
variant, causing build failures. This commit adds the missing
dependencies.

Fixes:

  http://autobuild.buildroot.net/results/2695202ee3b0734430abc2db03828a45cd5e5ef5
  (host-openssl missing)

  http://autobuild.buildroot.net/results/77a5db1120bf90ccaac00cfc0a8db358cacd894c
  (host-libglib2 missing)

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
7 years agoazure-iot-sdk-c: New package
André Hentschel [Thu, 22 Jun 2017 15:11:30 +0000 (17:11 +0200)]
azure-iot-sdk-c: New package

Despite newer versions being available, this patch creates a package
for version 2017-05-05, because newer version have issues that need to
be addressed.

Still, the projects install target installs the wrong files, so custom
commands are needed for staging_install and target_install.

Signed-off-by: André Hentschel <nerv@dawncrow.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agodoxygen: fix a build issue
Bartosz Golaszewski [Mon, 26 Jun 2017 09:20:14 +0000 (11:20 +0200)]
doxygen: fix a build issue

Add a patch fixing a build issue in doxygen. This patch is currently
under review for upstream inclusion[1].

[1] https://github.com/doxygen/doxygen/pull/574

Fixes: http://autobuild.buildroot.net/results/f55/f55a04e32c83620661d0542e89eb2dba9433e476/
Signed-off-by: Bartosz Golaszewski <brgl@bgdev.pl>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
7 years agopackage/syslog-ng: fix libnet detection
Bernd Kuhls [Sun, 25 Jun 2017 08:37:49 +0000 (10:37 +0200)]
package/syslog-ng: fix libnet detection

Fixes
http://autobuild.buildroot.net/results/e71/e718aab76d41c9c1aa5f9e3e74fb48b63038f254/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>