Francois Perrad [Tue, 19 Feb 2019 15:43:02 +0000 (16:43 +0100)]
support/testing: add lpeg test
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Francois Perrad [Tue, 19 Feb 2019 15:43:01 +0000 (16:43 +0100)]
package/luarocks: add generation of test
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Francois Perrad [Wed, 27 Mar 2019 10:30:47 +0000 (11:30 +0100)]
package/lua-gd: new package
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Baruch Siach [Tue, 26 Mar 2019 18:27:20 +0000 (20:27 +0200)]
package/putty: fix build with uClibc
Add patches fixing a number of build issues with uClibc. The issue fixed
in patch #2 has been reported upstream. Patch #3 has been suggested by
upstream but not applied yet.
Drop the _SUBDIR assignment. The configure script moved to top level
directory since upstream commit
a947c49bec3 from 2014. This allows
AUTORECONF to find configure.ac.
Fixes:
http://autobuild.buildroot.net/results/801/
801e2b2909363b5dcd9735362bb921e017569edc/
http://autobuild.buildroot.net/results/398/
3984c6cdd3398645c8ad98bbe23af9090cf4bfcf/
http://autobuild.buildroot.net/results/632/
632f93046f9cceffd9b604911542426c10967e0f/
Cc: Alexander Dahl <post@lespocky.de>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Baruch Siach [Tue, 26 Mar 2019 18:27:19 +0000 (20:27 +0200)]
package/putty: enable static build
Add upstream patch fixing build when NO_GSSAPI is defined which is the
case on static builds.
Cc: Alexander Dahl <post@lespocky.de>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 27 Mar 2019 21:27:53 +0000 (22:27 +0100)]
package/rtptools: bump to version 1.0.22
- Remove patch (already in version) and drop autoreconf
- Replace COPYRIGHT by LICENSE (and add its hash)
- License is now BSD-3-Clause:
https://github.com/cu-irt/rtptools/commit/
ed971d5e2b875294f22c0762d60aa7e409823789
- Disable clang (enabled by default)
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 27 Mar 2019 19:56:45 +0000 (20:56 +0100)]
package/sqlite: bump to version 3.27.2
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 27 Mar 2019 20:37:14 +0000 (21:37 +0100)]
package/rdesktop: security bump to version 1.8.4
- Switch site to github
- Remove second patch (already in version)
- Add hash for license file
- Fix memory corruption in process_bitmap_data - CVE-2018-8794
- Fix remote code execution in process_bitmap_data - CVE-2018-8795
- Fix remote code execution in process_plane - CVE-2018-8797
- Fix Denial of Service in mcs_recv_connect_response - CVE-2018-20175
- Fix Denial of Service in mcs_parse_domain_params - CVE-2018-20175
- Fix Denial of Service in sec_parse_crypt_info - CVE-2018-20176
- Fix Denial of Service in sec_recv - CVE-2018-20176
- Fix minor information leak in rdpdr_process - CVE-2018-8791
- Fix Denial of Service in cssp_read_tsrequest - CVE-2018-8792
- Fix remote code execution in cssp_read_tsrequest - CVE-2018-8793
- Fix Denial of Service in process_bitmap_data - CVE-2018-8796
- Fix minor information leak in rdpsnd_process_ping - CVE-2018-8798
- Fix Denial of Service in process_secondary_order - CVE-2018-8799
- Fix remote code execution in in ui_clip_handle_data - CVE-2018-8800
- Fix major information leak in ui_clip_handle_data - CVE-2018-20174
- Fix memory corruption in rdp_in_unistr - CVE-2018-20177
- Fix Denial of Service in process_demand_active - CVE-2018-20178
- Fix remote code execution in lspci_process - CVE-2018-20179
- Fix remote code execution in rdpsnddbg_process - CVE-2018-20180
- Fix remote code execution in seamless_process - CVE-2018-20181
- Fix remote code execution in seamless_process_line - CVE-2018-20182
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 27 Mar 2019 16:46:44 +0000 (17:46 +0100)]
package/pure-ftpd: add optional openldap dependency
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Peter Korsgaard [Wed, 27 Mar 2019 09:17:42 +0000 (10:17 +0100)]
package/libcurl: bump to version 7.64.1
Contains a number of fixes for issues discovered post-7.64.0. For details,
see the list of changes:
https://curl.haxx.se/changes.html#7_64_1
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Wed, 27 Mar 2019 16:52:36 +0000 (17:52 +0100)]
package/bird: BFD protocol needs threads
Fixes:
- http://autobuild.buildroot.org/results/
e1f879cb34f9cfbbd14b75f63d25897c5bee53cd
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Evgeniy Didin [Wed, 27 Mar 2019 10:55:55 +0000 (13:55 +0300)]
configs/snps_arc*_defconfig: update linux version
With this commit we update for ARC boards Linux kernel
version to 4.19.31 and Linux headers version to 4.19.
Signed-off-by: Evgeniy Didin <Evgeniy.Didin@synopsys.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: arc-buildroot@synopsys.com
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Tue, 26 Mar 2019 21:52:40 +0000 (22:52 +0100)]
package/qjson: drop Qt4 patch
Now that Qt4 has been removed, drop patch
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Wed, 27 Mar 2019 18:12:48 +0000 (19:12 +0100)]
package/keepalived: add optional libnftnl dependency
nftables support has been added since version 2.0.11 and
https://github.com/acassen/keepalived/commit/
aa12175ea638912a7789e832634d7ccf80fdf48d
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Wed, 27 Mar 2019 17:11:03 +0000 (18:11 +0100)]
package/glm: bump to version 0.9.9.4
- Disable tests as they are enabled by default since version 0.9.9.1:
https://github.com/g-truc/glm/commit/
d307d390193f4027faec48ac79d7f74b2bec6e56
- Static and shared libraries are always built since version 0.9.9.1:
https://github.com/g-truc/glm/commit/
a23dd2f800185a5e233534fed82fc5c2840fbe5c
So, disable them as GLM is header-only (it should be noted that
upstream wants to keep those libraries as the commit to disable them
has been reverted:
https://github.com/g-truc/glm/commit/
ca8372490eb8742d402878c9e930b891225982e6
- Add hash for license file (now in manual.md#section0)
Fixes:
- http://autobuild.buildroot.org/results/
3cf1fd3387bd4952470edcfcb93d44f58c9e7ff7
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sat, 16 Feb 2019 18:20:48 +0000 (19:20 +0100)]
package/openvmtools: add resolutionkms option
resolutionkms has been added in version 10.2.5 and
https://github.com/vmware/open-vm-tools/commit/
dc95efcb7d4bb7d865b7d37f9aaafe6fb8009e59
It depends on udev and libdrm's vmwgfx option
Fixes:
- http://autobuild.buildroot.org/results/
92f7c88917066b1d3e15ee0d1baafe01c0cb29c8
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sat, 16 Feb 2019 10:50:27 +0000 (11:50 +0100)]
package/wavemon: remove NPTL dependency
wavemon does not use pthread_mutexattr_setrobust since version 0.8.2 and
https://github.com/uoaerg/wavemon/commit/
d271685e03bc896829d8cc01ca0de28cd7b6ba72
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Asaf Kahlon [Tue, 26 Mar 2019 20:08:44 +0000 (22:08 +0200)]
package/python-uvloop: bump to version 0.12.2
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Asaf Kahlon [Tue, 26 Mar 2019 20:08:43 +0000 (22:08 +0200)]
package/python-lxml: bump to version 4.3.3
Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Artem Senichev [Mon, 18 Feb 2019 12:15:08 +0000 (15:15 +0300)]
package/kexec: enable powerpc64 platform
kexec has fully support of ppc64 platform:
https://www.kernel.org/doc/Documentation/kdump/kdump.txt
Added BR2_powerpc64 platform support.
Signed-off-by: Artem Senichev <artemsen@gmail.com>
Reviewed-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Tue, 26 Mar 2019 22:02:53 +0000 (23:02 +0100)]
package/clamav: security bump to version 0.101.2
Release notes:
https://blog.clamav.net/2019/03/clamav-01012-and-01003-patches-have.html
- Fixes for the following vulnerabilities affecting 0.101.1 and prior:
- CVE-2019-1787:
An out-of-bounds heap read condition may occur when scanning PDF
documents. The defect is a failure to correctly keep track of the number
of bytes remaining in a buffer when indexing file data.
- CVE-2019-1789:
An out-of-bounds heap read condition may occur when scanning PE files
(i.e. Windows EXE and DLL files) that have been packed using Aspack as a
result of inadequate bound-checking.
- CVE-2019-1788:
An out-of-bounds heap write condition may occur when scanning OLE2 files
such as Microsoft Office 97-2003 documents. The invalid write happens when
an invalid pointer is mistakenly used to initialize a 32bit integer to
zero. This is likely to crash the application.
- Fixes for the following vulnerabilities affecting 0.101.1 and 0.101.0 only:
- CVE-2019-1786:
An out-of-bounds heap read condition may occur when scanning malformed PDF
documents as a result of improper bounds-checking.
- CVE-2019-1785:
A path-traversal write condition may occur as a result of improper input
validation when scanning RAR archives. Issue reported by aCaB.
- CVE-2019-1798:
A use-after-free condition may occur as a result of improper error
handling when scanning nested RAR archives. Issue reported by David L.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Grzegorz Blach [Thu, 30 Aug 2018 10:18:48 +0000 (12:18 +0200)]
python-pyjwt: new package
PyJWT is a Python library which allows you to encode and decode
JSON Web Tokens (JWT). JWT is an open, industry-standard (RFC 7519)
for representing claims securely between two parties.
https://github.com/jpadilla/pyjwt
Signed-off-by: Grzegorz Blach <grzegorz@blach.pl>
[Arnout: bump to 1.7.1]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Fabrice Fontaine [Mon, 4 Mar 2019 21:47:20 +0000 (22:47 +0100)]
package/swupdate: fix static build without lua
The lua_swupdate.so library was still built (without any object files)
and linked against swupdate even when HAVE_LUA was not set. This fails
in some static-only configurations.
Fixes:
- http://autobuild.buildroot.org/results/
c11c4d26983e0347d96f3dda62e6d72b031967bb
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
David Lechner [Sat, 23 Feb 2019 01:04:54 +0000 (19:04 -0600)]
configs/lego_ev3_defconfig: enable brickd by default
This enables the brickd package by default on LEGO MINDSTORM EV3. This
program is important because it shuts down the system on low battery.
Without this, rechargeable batteries could be damaged.
Signed-off-by: David Lechner <david@lechnology.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
David Lechner [Sat, 23 Feb 2019 01:04:53 +0000 (19:04 -0600)]
package/brickd: new package
This adds a new package for brickd. Brickd is system management daemon
for the LEGO MINDSTORMS EV3 programmable brick.
Signed-off-by: David Lechner <david@lechnology.com>
[Thomas: add missing BR2_USE_MMU dependency]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Ed Blake [Tue, 26 Mar 2019 12:30:47 +0000 (12:30 +0000)]
package: use BR2_TOOLCHAIN_HAS_OPENMP
Switch from using BR2_GCC_ENABLE_OPENMP to BR2_TOOLCHAIN_HAS_OPENMP to
determine OpenMP support in the following packages:
fftw
flann
opencv3
Signed-off-by: Ed Blake <ed.blake@sondrel.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Ed Blake [Tue, 26 Mar 2019 12:30:46 +0000 (12:30 +0000)]
toolchain-external: enable OpenMP for supported toolchains
Enable OpenMP support in the following external toolchains:
toolchain-external-arm-aarch64-be
toolchain-external-arm-aarch64
toolchain-external-arm-arm
toolchain-external-codescape-img-mips
toolchain-external-codescape-mti-mips
toolchain-external-codesourcery-amd64
toolchain-external-codesourcery-mips
toolchain-external-linaro-aarch64-be
toolchain-external-linaro-aarch64
toolchain-external-linaro-arm
toolchain-external-linaro-armeb
Signed-off-by: Ed Blake <ed.blake@sondrel.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Ed Blake [Tue, 26 Mar 2019 12:30:45 +0000 (12:30 +0000)]
package/gcc: select BR2_TOOLCHAIN_HAS_OPENMP if BR2_GCC_ENABLE_OPENMP
BR2_TOOLCHAIN_HAS_OPENMP is also selected by external toolchains, so
can be used by packages to determine OpenMP support.
Signed-off-by: Ed Blake <ed.blake@sondrel.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Ed Blake [Tue, 26 Mar 2019 12:30:45 +0000 (12:30 +0000)]
toolchain-external: introduce BR2_TOOLCHAIN_HAS_OPENMP
Add new BR2_TOOLCHAIN_HAS_OPENMP option for toolchains with OpenMP
support.
Signed-off-by: Ed Blake <ed.blake@sondrel.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adrien Gallouët [Wed, 20 Mar 2019 21:09:44 +0000 (21:09 +0000)]
package/bird: add optional protocols
Signed-off-by: Adrien Gallouët <adrien@gallouet.fr>
[Thomas:
- use proper variable names in .mk file
- add comment in Config.in]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Joel Stanley [Thu, 21 Mar 2019 00:28:30 +0000 (10:58 +1030)]
toolchain/toolchain-external-custom: support Linux 5.0 kernel headers
Signed-off-by: Joel Stanley <joel@jms.id.au>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Joel Stanley [Thu, 21 Mar 2019 00:28:29 +0000 (10:58 +1030)]
linux: add support for Linux 5.0
This sets 5.0 to be the default, moving from 4.19 which was used instead
of 4.20 for the LTS branch.
Signed-off-by: Joel Stanley <joel@jms.id.au>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Joel Stanley [Thu, 21 Mar 2019 00:28:28 +0000 (10:58 +1030)]
package/linux-headers: add support for Linux 5.0 kernel headers
This sets 5.0 to be the default, moving from 4.19 which was used instead
of 4.20 for the LTS branch.
We need to update linux/linux.hash as part of this commit, because
package/linux-headers/linux-headers.hash is a symlink to
linux/linux.hash.
Signed-off-by: Joel Stanley <joel@jms.id.au>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Joel Stanley [Thu, 21 Mar 2019 00:28:27 +0000 (10:58 +1030)]
toolchain: add BR2_TOOLCHAIN_HEADERS_AT_LEAST_5_0
Signed-off-by: Joel Stanley <joel@jms.id.au>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Esben Haabendal [Tue, 26 Mar 2019 13:07:57 +0000 (14:07 +0100)]
boot/gummiboot: fix linking for non-host compatible targets
Signed-off-by: Esben Haabendal <esben@haabendal.dk>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Etienne Carriere [Tue, 26 Mar 2019 13:19:25 +0000 (14:19 +0100)]
package/optee-client: fix build warnings from 3.4.0
Add two patches over current optee-client 3.4.0 to fix build issues
reported by some toolchains with traces like:
/path/to/build/optee-client-3.4.0/libteec/src/tee_client_api.c: In function 'TEEC_InitializeContext':
/path/to/build/optee-client-3.4.0/libteec/src/tee_client_api.c:149:28: error: 'gen_caps' may be used uninitialized in this function [-Werror=maybe-uninitialized]
ctx->reg_mem = gen_caps & TEE_GEN_CAP_REG_MEM;
^
/path/to/build/optee-client-3.4.0/libteec/src/tee_client_api.c: In function ‘TEEC_OpenSession’:
/path/to/build/optee-client-3.4.0/libteec/src/tee_client_api.c:507:8: error: cast increases required alignment of target type [-Werror=cast-align]
arg = (struct tee_ioctl_open_session_arg *)buf;
^
/path/to/build/optee-client-3.4.0/libteec/src/tee_client_api.c: In function ‘TEEC_InvokeCommand’:
/path/to/build/optee-client-3.4.0/libteec/src/tee_client_api.c:581:8: error: cast increases required alignment of target type [-Werror=cast-align]
arg = (struct tee_ioctl_invoke_arg *)buf;
The optee-client patches have been in the OP-TEE project [1] & [2] and
will be available in the OP-TEE next release planned 3.5.0.
Fixes [3], [4], [5] and other failing builds reported by autobuild tests.
[1] https://github.com/OP-TEE/optee_client/commit/
9dbc61b3767ab1c3dfd0a19af02926b92ae09247
[2] https://github.com/OP-TEE/optee_client/commit/
16c8f548786c70df04d3a1e61bf89abce9b92389
[3] http://autobuild.buildroot.net/results/
80e78cb0bb955e912d6cbe5b30c9b024e7efc802
[4] http://autobuild.buildroot.net/results/
a42c19897d03beb02fde2e7e6da25532be27d5ca
[5] http://autobuild.buildroot.net/results/
827087f91b7481d1c3effd615172bbee86317962
Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Peter Korsgaard [Tue, 26 Mar 2019 17:07:48 +0000 (18:07 +0100)]
package/busybox: busybox.config: enable base64 applet
base64 reuses the uuencode logic, so only adds very little extra overhead,
is enabled by default upstream and is used more often than uuencode - So
enable it in the default busybox config.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Tue, 26 Mar 2019 17:27:04 +0000 (18:27 +0100)]
package/git: use pkg-config to get ssl dependencies
On some architectures, atomic binutils are provided by the libatomic
library from gcc. Linking with libatomic is therefore necessary,
otherwise the build fails with:
/home/test/autobuild/run/instance-2/output/host/sparc-buildroot-linux-uclibc/sysroot/usr/lib/libssl.a(ssl_cert.o): In function `CRYPTO_DOWN_REF':
/home/test/autobuild/run/instance-2/output/build/libopenssl-1.1.1a/include/internal/refcount.h:50: undefined reference to `__atomic_fetch_sub_4'
This is often for example the case on sparcv8 32 bit.
To fix this issue, use pkg-config to retrieve openssl dependencies
including atomic library, these dependencies must be passed to
LIB_4_CRYPTO IN GIT_MAKE_OPTS
Fixes:
- http://autobuild.buildroot.org/results/
3093897d14a854a7252b25b2fa1f8fdcbb26c9b7
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Peter Seiderer [Thu, 21 Mar 2019 19:07:56 +0000 (20:07 +0100)]
package/at-spi2-core: fix build with meson 0.50.0
Add upstream patch [1] to fix build with meson 0.50.0 (as suggested
by Thomas Petazzoni ).
Fixes [2]:
atspi/meson.build:60:0: ERROR: Subdir keyword must not be an absolute path.
[1] https://github.com/GNOME/at-spi2-core/commit/
44a812ea51223d82f21a098a2d45fcc5c329ce7a.patch
[1] http://autobuild.buildroot.net/results/
83250522c79b5749fc8236ba2b0e873a12747413
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Alistair Francis [Wed, 20 Mar 2019 23:05:22 +0000 (23:05 +0000)]
boot/riscv-pk: deprecate riscv-pk and BBL
Signed-off-by: Alistair Francis <alistair.francis@wdc.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Alistair Francis [Wed, 20 Mar 2019 23:05:21 +0000 (23:05 +0000)]
configs/qemu_riscv*_virt: use OpenSBI by default
Use OpenSBI by default instead of riscv-pk (BBL).
Signed-off-by: Alistair Francis <alistair.francis@wdc.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Alistair Francis [Wed, 20 Mar 2019 23:05:21 +0000 (23:05 +0000)]
boot/opensbi: new package
OpenSBI is a much improved alternative to BBL (riscv-pk). Add OpenSBI
support to buildroot.
Signed-off-by: Alistair Francis <alistair.francis@wdc.com>
[Thomas:
- disable target installation, as we install nothing
- enable staging installation
- enable images installation only when needed
- improve the comment about the staging installation]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Alistair Francis [Wed, 20 Mar 2019 23:05:21 +0000 (23:05 +0000)]
board/qemu/riscv32-virt: simplify the linux config
Reduce the config fragment to the bare minimum to enable 32-bit
support. This means we are as close as possible to the arch
defconfig.
Signed-off-by: Alistair Francis <alistair.francis@wdc.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Alistair Francis [Wed, 20 Mar 2019 23:05:21 +0000 (23:05 +0000)]
board/qemu/riscv32-virt: convert Linux defconfig into a fragment
Convert the config to the arch defconfig plus a fragment. When this
fragment is applied we will generate the same config as we previously
did.
Signed-off-by: Alistair Francis <alistair.francis@wdc.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Norbert Lange [Mon, 25 Mar 2019 21:51:02 +0000 (22:51 +0100)]
package/liburcu: bump version to 0.10.2
This includes a fix that might delay application startup
considerably (
11486a15008b9).
Adapted the patch to point to the correct file.
Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Vadim Kochan [Mon, 25 Mar 2019 23:42:37 +0000 (01:42 +0200)]
package/uftp: fix compilation with openssl
Build fails with -lssl but succeeds with -lcrypto, also thats how it is
linked by default in 'makefile'.
Fixes:
http://autobuild.buildroot.net/results/
01a455ddcbc16cd2111352d22bf6603842df4ab2
Signed-off-by: Vadim Kochan <vadim4j@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 25 Mar 2019 21:05:08 +0000 (22:05 +0100)]
package/fetchmail: fix shared build
Update second patch to fix shared build
Fixes:
- http://autobuild.buildroot.org/results/
c27b9c82e68ade29b45dc84ecce5fe6653fbb7da
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Refik TUZAKLI [Fri, 22 Mar 2019 11:10:44 +0000 (11:10 +0000)]
package/paho-mqtt-cpp: new package
Signed-off-by: Refik Tuzakli <refik.tuzakli@savronik.com.tr>
[Thomas:
- add missing dependency on BR2_TOOLCHAIN_HAS_GCC_BUG_64735 and
corresponding Config.in comment
- add missing dependency on BR2_INSTALL_LIBSTDCPP and update
Config.in comment
- add comment to explain why -DTHREADS_PTHREAD_ARG=OFF is passed in
CONF_OPTS]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Fri, 22 Mar 2019 14:19:54 +0000 (10:19 -0400)]
package/{openjdk,openjdk-bin}: bump version to 12+33
Because one package relies on the other, bump both at the same time.
Other changes:
- Drop --with-cpu-port=aarch64 option as it is no longer a valid option.
(See https://openjdk.java.net/jeps/340)
- Add xlib_libXrandr as a dependency.
Tested with:
./support/testing/run-tests -s -o ./output/ -d dl tests.package.test_openjdk.TestOpenJdk
Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Yann E. MORIN [Fri, 22 Mar 2019 21:07:07 +0000 (22:07 +0100)]
support/graph-depends: use the new make-based dependency tree
Now that we can get the whole dependency tree from make, use it to
speed up things considerably.
So far, we had three functions to get the dependencies information:
get_depends(), get_rdepends(), and, somehow unrelated, get_version().
Because of the way %-show-{,r}depends works, getting the dependency tree
was expensive, the three functions all took a set of packages for which
to get the dependencies, in an attempt to limit the time it took to get
that tree, but we still had to call these functions iteratively, until
they returned no new dependency. This was pretty costly.
Now, getting the tree is much, much less costly, and we can get the
whole tree as cheaply as we previously got only the first-level
dependencies.
Furthermore, we can now also get the version information at the same
time, and that also brings in whether the package is virtual or not,
target or host.
So, we drop all three helper functions, and replace them with a single
one that returns all that information in one go: full dependency trees
(direct and reverse), per-package type, and per-package version.
Note: since commit
2d29fd96a (pkg-virtual: remove VERSION/SOURCE),
virtual packages are no longer reported as having a 'virtual' version,
so have since been displayed as regular packages in the graphs. Although
noone complained, this patch incidentally restores the initial
behaviour, and virtual packages are now correctly displayed as such
again.
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Thomas De Schampheleire <patrickdepinguin@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Yann E. MORIN [Fri, 22 Mar 2019 21:07:06 +0000 (22:07 +0100)]
support/graph-depends: don't eliminate mandatory deps for reverse graphs
We we simplify the dependency graph, we try to remove so-called
mandatory dependencies from each package, and for each mandatory that
was thus removed, reattach it to the root-package of the graph.
This was made so that mandatory dependencies (which are dependencies of
all packages, or at least of a lot of packages) do not clutter the
dependency graph, but that they are still shown in the graph, as
dependencies of the root package.
However, these mandatory dependencies are only _direct_ dependencies.
As such, it does not make sense to reattach a mandatory dependency when
doing a reverse graph. Worse, it can actually be incorrect.
For example, 'skeleton' is a mandatory dependency, and as such is
removed from all packages. But when doing a reverse graph, skeleton is
now in the dependency chain of, e.g. skeleton-init-none; it should then
not be removed.
In short: the notion of mandatory dependencies does not make sense in
the case of a reverse graph.
Consequently, skip over the mandatory dependency removal when doing a
reverse graph.
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Yann E. MORIN [Fri, 22 Mar 2019 21:07:05 +0000 (22:07 +0100)]
package/pkg-generic: mark some rule PHONY
The %-graph-rdepends should be marked PHONY, as the %-graph-depends is.
The %-show-dependency-tree should also be a PHONY rule, because it does
not actually create a file. Furthermore, to avoid the "Nothing to be
done for .." message, give that rule an actual recipe that just does
nothing.
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 25 Mar 2019 17:59:33 +0000 (18:59 +0100)]
package/odhcp6c: add optional libubox dependency
libubox dependency has been added in
https://github.com/openwrt/odhcp6c/commit/
33a2ba1c14eb5447326945c120e0b64a587ed151
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 25 Mar 2019 17:59:32 +0000 (18:59 +0100)]
package/odhcp6c: bump to version
d2e247d8d87ecf8c60fcf0acdad05667bd379521
- Remove patch (already in version)
- Add hash for license file
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Jared Bents [Mon, 25 Mar 2019 16:28:19 +0000 (11:28 -0500)]
package/busybox: version bump to 1.30.1
Update from version 1.29.3 to 1.30.1. The new version
includes the removed patches.
Signed-off-by: Jared Bents <jared.bents@rockwellcollins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Louis-Paul Cordier [Sat, 23 Mar 2019 12:28:18 +0000 (13:28 +0100)]
package/ffmpeg: bump to version 4.1.2
FFserver is not supported anymore
Remove patch 0001: fixed upstream in
cae6f806a6367c7760ab6ed059d343d4a8eebd56
Remove patch 0002 to 0004: accepted upstream
Signed-off-by: Louis-Paul Cordier <lpdev@cordier.org>
[Bernd: bump to 4.1.2]
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Sat, 23 Mar 2019 12:28:17 +0000 (13:28 +0100)]
Revert "gst1-libav: switch to unbundled"
This reverts commit
5dcb8aa0ba46e16b929c7c7fc9cea2d6c26201f4.
This patch re-enables the usage of bundled ffmpeg code because
gst1-libav 1.14.x is blocking the bump to ffmpeg 4.x.
A fix to build the bundled ffmpeg code on arm/aarch64 was added.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Fri, 22 Mar 2019 20:34:59 +0000 (21:34 +0100)]
package/fetchmail: use pkg-config to find openssl
openssl can have multiples dependencies such as libatomic on sparcv8
32 bits so drop first patch and add a new patch to use pkg-config
Fixes:
- http://autobuild.buildroot.org/results/
58e5aa7c6ba8fe7474071d7a3cba6ed3a1b4cff4
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bartosz Golaszewski [Mon, 25 Mar 2019 14:29:43 +0000 (15:29 +0100)]
package/libgpiod: bump version to v1.3
This is a new minor release. Changes are summarized in NEWS.
Signed-off-by: Bartosz Golaszewski <bgolaszewski@baylibre.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sun, 24 Mar 2019 22:10:19 +0000 (23:10 +0100)]
package/owfs: add optional libftdi dependency
ftdi support has been added in version 3.1p2 and
https://github.com/owfs/owfs/commit/
2982df8ca648bd9cec4d820151046b044ef504e0
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sun, 24 Mar 2019 22:10:18 +0000 (23:10 +0100)]
package/libftdi1: fix libftdi1-config
Add libftdi1-config to LIBFTDI1_CONFIG_SCRIPTS
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sun, 24 Mar 2019 22:10:17 +0000 (23:10 +0100)]
package/owfs: drop unneeded first patch
Patch is not needed since version 3.1p2 and
https://github.com/owfs/owfs/commit/
2982df8ca648bd9cec4d820151046b044ef504e0
because localtime_r is now correctly checked
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Mon, 25 Mar 2019 15:37:33 +0000 (11:37 -0400)]
package/openjdk: restrict to support architectures
This list is taken from make/autoconf/platform.m4 and fixes
http://autobuild.buildroot.net/results/df7/
df7f393ec62f0e38034837ffa591ac5af424c373
http://autobuild.buildroot.net/results/c57/
c5782d6b52516d07469adf6600d4fc69c4016157
http://autobuild.buildroot.net/results/f36/
f36b96c91604dda021ee05dd0a79c4f7e89e5a5b
Signed-off-by: Adam Duskett <Aduskett@gmail.com>
[Thomas:
- rename option to BR2_PACKAGE_OPENJDK_ARCH_SUPPORTS
- actually use it in the Config.in comments]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sun, 24 Mar 2019 19:29:42 +0000 (20:29 +0100)]
package/gerbera: fix static build with ffmpeg
Fixes:
- http://autobuild.buildroot.org/results/
2b99fabd798db84a0fce26ad696c58e54c6ff626
- http://autobuild.buildroot.org/results/
95e410e5ab34c6d4626a58f97c0d2d5e6829a300
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:42 +0000 (21:14 +0100)]
package/x11r7/xutil_makedepend: bump version to 1.0.6
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:41 +0000 (21:14 +0100)]
package/x11r7/xlib_xtrans: bump version to 1.4.0
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:40 +0000 (21:14 +0100)]
package/x11r7/xlib_libxkbfile: bump version to 1.1.0
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:39 +0000 (21:14 +0100)]
package/x11r7/xlib_libXxf86dga: bump version to 1.1.5
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:38 +0000 (21:14 +0100)]
package/x11r7/xlib_libXvMC: bump version to 1.0.11
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:37 +0000 (21:14 +0100)]
package/x11r7/xlib_libXrandr: bump version to 1.5.2
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:36 +0000 (21:14 +0100)]
package/x11r7/xlib_libXmu: bump version to 1.1.3
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:35 +0000 (21:14 +0100)]
package/x11r7/xlib_libXft: bump version to 2.3.3
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:34 +0000 (21:14 +0100)]
package/x11r7/xlib_libXext: bump version to 1.3.4
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:33 +0000 (21:14 +0100)]
package/x11r7/xdriver_xf86-video-ati: bump version to 19.0.1
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:32 +0000 (21:14 +0100)]
package/x11r7/xdriver_xf86-video-amdgpu: bump version to 19.0.1
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 24 Mar 2019 20:14:31 +0000 (21:14 +0100)]
package/x11r7/xapp_x11perf: bump version to 1.6.1
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Baruch Siach [Sun, 24 Mar 2019 19:21:13 +0000 (21:21 +0200)]
putty: security bump to version 0.71
CVE-2019-9894: A remotely triggerable memory overwrite in RSA key
exchange can occur before host key verification.
CVE-2019-9895: A remotely triggerable buffer overflow exists in any kind
of server-to-client forwarding.
CVE-2019-9897: Multiple denial-of-service attacks that can be triggered
by writing to the terminal.
CVE-2019-9898: Potential recycling of random numbers used in
cryptography.
Disable static build for now. When building statically configure defines
NO_GSSAPI. Build with NO_GSSAPI is currently broken. The issue has been
reported upstream.
Cc: Alexander Dahl <post@lespocky.de>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sun, 24 Mar 2019 14:09:38 +0000 (15:09 +0100)]
package/libcpprestsdk: add optional brotli dependency
Official brotli support has been added in version 2.10.8 and
https://github.com/Microsoft/cpprestsdk/commit/
f3824aa8d01705656e7ee4c0c49ae6980c868b20
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sun, 24 Mar 2019 11:45:54 +0000 (12:45 +0100)]
package/intel-gmmlib: needs dynamic library
Fixes:
- http://autobuild.buildroot.org/results/
0121befb9b4ba6cffc47ce7f861ed81077fc900f
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Sun, 24 Mar 2019 14:29:12 +0000 (15:29 +0100)]
package/dropbear: add upstream patch fixing TTY mode reset regression
2019.77 added a regression related to resetting TTY mode on exit. Add an
upstream patch to fix it.
For more details, see the mailing list:
https://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2019q1/002157.html
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Francois Perrad [Sun, 24 Mar 2019 10:36:56 +0000 (11:36 +0100)]
package/moarvm: bump to version 2019.03
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Sun, 24 Mar 2019 09:20:19 +0000 (10:20 +0100)]
package/radvd: bump to version 2.18
Add hash for license file
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Sat, 23 Mar 2019 23:34:41 +0000 (00:34 +0100)]
package/dropbear: bump version to 2019.77
Drop patches as they are now upstream. Add a hash for the license file.
Verified that runtime test still works:
./support/testing/run-tests -o tests.package.test_dropbear
20:42:44 TestDropbear Starting
20:42:45 TestDropbear Building
20:44:18 TestDropbear Building done
20:44:24 TestDropbear Cleaning up
.
----------------------------------------------------------------------
Ran 1 test in 100.727s
OK
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sat, 23 Mar 2019 20:23:58 +0000 (21:23 +0100)]
package/x11r7/xlib_libXdmcp: security bump version to 1.1.3
Fixes CVE-2017-2625:
https://lists.x.org/archives/xorg-announce/2019-March/002974.html
Added all hashes provided by upstream and license hash.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Sat, 23 Mar 2019 16:54:27 +0000 (17:54 +0100)]
package/asterisk: security bump to version 16.2.1
Fixes the following security issue:
AST-2019-001: Remote crash vulnerability with SDP protocol violation
When Asterisk makes an outgoing call, a very specific SDP protocol violation
by the remote party can cause Asterisk to crash (CVE-2019-7251)
https://downloads.asterisk.org/pub/security/AST-2019-001.html
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabio Estevam [Sat, 23 Mar 2019 04:17:53 +0000 (01:17 -0300)]
configs/freescale_imx8mqevk: bump packages to imx_4.14.78_1.0.0_ga
Bump kernel, U-Boot and ATF packages to the NXP imx_4.14.78_1.0.0_ga
release.
Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Fri, 22 Mar 2019 22:13:14 +0000 (23:13 +0100)]
package/supertux: fix build on powerpc64le
Fixes:
- http://autobuild.buildroot.org/results/
c484079b2736eb3c21adff257f3e3ab1acc67f9a
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Fri, 22 Mar 2019 20:38:31 +0000 (21:38 +0100)]
package/keepalived: fix build with kernel < 4.1
Fixes:
- http://autobuild.buildroot.org/results/
a33433abeb122cfb15f7f21ab777e84040bdcb8b
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Samuel Mendoza-Jonas [Fri, 22 Mar 2019 02:19:21 +0000 (13:19 +1100)]
lvm2: Update to 2.02.183
In particular update to solve an issue where LVM would fail to
initialise LVM devices when asynchronous IO was not available and it
would fail to fall back to synchronous IO. [0][1]
[0] https://bugzilla.redhat.com/show_bug.cgi?id=
1650652
[1] https://github.com/open-power/petitboot/issues/60
Signed-off-by: Samuel Mendoza-Jonas <sam@mendozajonas.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Reed Nightingale [Thu, 21 Mar 2019 23:00:10 +0000 (16:00 -0700)]
package/eigen: bump to 3.3.7
Bumped the version of eigen to 3.3.7, which fixes issues when compiling with GCC7 (notably int-in-bool-context errors, fixed in 3.3.5), in addition to various other issues noted in the eigen change logs: http://eigen.tuxfamily.org/index.php?title=ChangeLog
Legal hashes are unchanged in 3.3.7
Signed-off-by: Reed Nightingale <reed.nightingale@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Seiderer [Thu, 21 Mar 2019 22:00:44 +0000 (23:00 +0100)]
package/qt5base: fix xkbcommon option
- Qt 5.6: according to configure --help the command line option to
enable x11 xkbcommon support is '-system-xkbcommon-x11'
- Qt 5.12: according to configure --help the command line option to
enable xkbcommon support is '-xkbcommon'
Fixes [1]:
ERROR: Invalid value given for boolean command line option 'xkbcommon'.
[1] http://autobuild.buildroot.net/results/
87076d03bb92a9940447ca80fc1f202e35ef39da
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Thu, 21 Mar 2019 20:47:02 +0000 (21:47 +0100)]
package/libopenssl: bump to version 1.1.1b
Drop patches 4..6 as they are now upstream.
Update the hash of the license file as the copyright dates changed.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Thu, 21 Mar 2019 07:40:43 +0000 (08:40 +0100)]
package/libseccomp: security bump to version 2.4.0
>From the advisory:
Jann Horn identified a problem in current versions of
libseccomp where the library did not correctly generate 64-bit syscall
argument comparisons using the arithmetic operators (LT, GT, LE, GE).
Jann has done a search using codesearch.debian.net and it would appear
that only systemd and Tor are using libseccomp in such a way as to
trigger the bad code. In the case of systemd this appears to affect
the socket address family and scheduling class filters. In the case
of Tor it appears that the bad filters could impact the memory
addresses passed to mprotect(2).
The libseccomp v2.4.0 release fixes this problem, and should be a
direct drop-in replacement for previous v2.x releases.
https://www.openwall.com/lists/oss-security/2019/03/15/1
v2.4.0 adds a new scmp_api_level utility, so update 0001-remove-static.patch
to match.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Esben Haabendal [Thu, 21 Mar 2019 05:44:35 +0000 (06:44 +0100)]
gummiboot: Add to DEVELOPERS file
Signed-off-by: Esben Haabendal <esben@haabendal.dk>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Wed, 20 Mar 2019 21:18:59 +0000 (22:18 +0100)]
package/libssh2: security bump to latest git
Bump the version to latest git to fix the following security issues:
CVE-2019-3855
Possible integer overflow in transport read allows out-of-bounds write
URL: https://www.libssh2.org/CVE-2019-3855.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3855.patch
CVE-2019-3856
Possible integer overflow in keyboard interactive handling allows
out-of-bounds write
URL: https://www.libssh2.org/CVE-2019-3856.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3856.patch
CVE-2019-3857
Possible integer overflow leading to zero-byte allocation and out-of-bounds
write
URL: https://www.libssh2.org/CVE-2019-3857.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3857.patch
CVE-2019-3858
Possible zero-byte allocation leading to an out-of-bounds read
URL: https://www.libssh2.org/CVE-2019-3858.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3858.patch
CVE-2019-3859
Out-of-bounds reads with specially crafted payloads due to unchecked use of
`_libssh2_packet_require` and `_libssh2_packet_requirev`
URL: https://www.libssh2.org/CVE-2019-3859.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3859.patch
CVE-2019-3860
Out-of-bounds reads with specially crafted SFTP packets
URL: https://www.libssh2.org/CVE-2019-3860.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3860.patch
CVE-2019-3861
Out-of-bounds reads with specially crafted SSH packets
URL: https://www.libssh2.org/CVE-2019-3861.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3861.patch
CVE-2019-3862
Out-of-bounds memory comparison
URL: https://www.libssh2.org/CVE-2019-3862.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3862.patch
CVE-2019-3863
Integer overflow in user authenicate keyboard interactive allows
out-of-bounds writes
URL: https://www.libssh2.org/CVE-2019-3863.html
Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3863.txt
Drop 0003-openssl-fix-dereferencing-ambiguity-potentially-caus.patch as that
is now upstream.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Norbert Lange [Fri, 15 Mar 2019 13:30:30 +0000 (14:30 +0100)]
package/libfuse: Install udev rules and set permissions
This fixes some omissions from the installation.
Install the udev rules.
Tell buildroot about the fuse device.
Apply setuid permissions on the fusermount tool.
Signed-off-by: Norbert Lange <norbert.lange@andritz.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Fabrice Fontaine [Wed, 20 Mar 2019 21:54:11 +0000 (22:54 +0100)]
Revert "package/meson: bump version to 0.50.0"
This reverts commit
114e9dcd28e1001b74689215ec669b8940dc3ea9.
Indeed, there is major issue with this version because c_std is not
passed anymore when cross-compiling:
https://github.com/mesonbuild/meson/issues/5097
As a result, some meson packages (at least systemd, libmpdclient,
glib-networking) fail to build
Fixes:
- http://autobuild.buildroot.org/results/
9eae2181fb3fcfe12481e5496b7d87c0dcd109eb
- http://autobuild.buildroot.org/results/
e828c7925d9247e14d8a8694febfee8ce6c86e81
- http://autobuild.buildroot.org/results/
031aee7cf12ad882727eb2da5e953fd8813b52e2
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Arnout Vandecappelle (Essensium/Mind) [Mon, 18 Mar 2019 13:10:40 +0000 (14:10 +0100)]
system/skeleton: remove password expiration from shadow
The fields in /etc/shadow were set as follows:
root::10933:0:99999:7:::
This sets the date of last password change to Jan 1, 2000, the minimum
password age to 0 days, the maximum password age to near-infinity, and a
warning period of 7 days. In practice, this means the password never
expires. So all of this is quite useless.
On the other hand, mkusers creates lines without all of these options.
It just sets ::::: which disables password expiration completely.
To make things consistent, do the same for the skeleton entries.
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Etienne Carriere [Mon, 18 Mar 2019 23:21:06 +0000 (00:21 +0100)]
package/optee-test: fix dependency in TAs build
Fix TA build command to build TA libraries before TAs.
Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Etienne Carriere [Mon, 18 Mar 2019 23:21:04 +0000 (00:21 +0100)]
boot/arm-trusted-firmware: support debug mode
When the trusted firmware is built with debug support (DEBUG defined),
the generated images are located in a different path compared to a
build without debug support. The non debug images are located in
generated directory build/<platform>/release/ while the debug images
are located in generated directory build/<platform>/debug/.
This change introduces the boolean option
BR2_TARGET_ARM_TRUSTED_FIRMWARE_DEBUG to define whether the release or
debug configuration is used to build trusted firmware.
Note that enabling trusted firmware debug support using
BR2_TARGET_ARM_TRUSTED_FIRMWARE_ADDITIONAL_VARIABLES="... DEBUG=1 ..."
would not work since Buildroot will try to copy the generated files
from the wrong path.
Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>