buildroot.git
4 years agopackage/genimage: add patch to support vfat volume-label
Dario Binacchi [Sat, 21 Dec 2019 12:29:30 +0000 (13:29 +0100)]
package/genimage: add patch to support vfat volume-label

Import "0001-image-vfat-Add-label-option-to-set-volume-name.patch" from
the upstream repository. The changes made to the README.rst file had to
be removed from the patch so that the package can be compiled in
buildroot. The patch has been accepted upstream, but no releases have
been made yet which includes the feature.

Signed-off-by: Dario Binacchi <dariobin@libero.it>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/libvdpau: bump to version 1.3
Fabrice Fontaine [Sat, 21 Dec 2019 16:17:18 +0000 (17:17 +0100)]
package/libvdpau: bump to version 1.3

- Switch to meson-package
- Drop second patch (not needed anymore)
- Drop third patch (after feedback from upstream:
  https://gitlab.freedesktop.org/vdpau/libvdpau/merge_requests/5)
- Disable documentation

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/openrc: install sysv-rcs file
Adam Duskett [Thu, 19 Dec 2019 19:01:35 +0000 (11:01 -0800)]
package/openrc: install sysv-rcs file

package/openrc has the file sysv-rcs which starts sysvinit services
not written for openrc. However, currently it is not installed to
the target.

Install this file to $(TARGET_DIR)/etc/init.d during the
target_install step.

Signed-off-by: Adam Duskett <aduskett@greenlots.com>
[yann.morin.1998@free.fr: use full-path for destination, not just dir]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/xenomai: bump version to 3.0.10
Jan Kiszka [Thu, 19 Dec 2019 08:24:32 +0000 (09:24 +0100)]
package/xenomai: bump version to 3.0.10

Signed-off-by: Jan Kiszka <jan.kiszka@siemens.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/xenomai: clean up wrappers cleanup
Jan Kiszka [Thu, 19 Dec 2019 08:24:34 +0000 (09:24 +0100)]
package/xenomai: clean up wrappers cleanup

There is no posix.wrappers anymore, but cobalt and modechk. Those only
play a role when building in combination with wrap-link.sh.

Signed-off-by: Jan Kiszka <jan.kiszka@siemens.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/xenomai: smokey's not a skin
Jan Kiszka [Thu, 19 Dec 2019 08:24:31 +0000 (09:24 +0100)]
package/xenomai: smokey's not a skin

That's a testsuite tool.

Rename XENOMAI_REMOVE_SKIN_LIST at this chance as it's cleaning
libraries, not only skins. Ditto, rename the hook accordingly.

Signed-off-by: Jan Kiszka <jan.kiszka@siemens.com>
[yann.morin.1998@free.fr: also rename the hook]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/tcllib: update the upstream URL in Config.in
Mark Corbin [Wed, 18 Dec 2019 13:14:41 +0000 (13:14 +0000)]
package/tcllib: update the upstream URL in Config.in

Update the upstream URL in the help text in Config.in. This
addresses the 'Invalid(Err)' URL status in the package stats
web page output.

Signed-off-by: Mark Corbin <mark@dibsco.co.uk>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/libssh: security bump to version 0.9.3
Peter Korsgaard [Thu, 19 Dec 2019 08:01:50 +0000 (09:01 +0100)]
package/libssh: security bump to version 0.9.3

Fixes the following security vulnerabilities:

- CVE-2019-14889: Unsanitized location in scp could lead to unwanted command
  execution.

And adds various hardening improvements.  For details, see the announcement:

https://www.libssh.org/2019/12/10/libssh-0-9-3-and-libssh-0-8-8-security-release/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years ago{linux, linux-headers}: bump 4.{14, 19}.x / 5.{3, 4}.x series
Peter Korsgaard [Thu, 19 Dec 2019 08:13:24 +0000 (09:13 +0100)]
{linux, linux-headers}: bump 4.{14, 19}.x / 5.{3, 4}.x series

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/glibc: hide "glibc utils" if glibc is not selected
Arthur Courtel [Thu, 19 Dec 2019 11:10:24 +0000 (12:10 +0100)]
package/glibc: hide "glibc utils" if glibc is not selected

BR2_PACKAGE_GLIBC_UTILS config must not exist if we use other libc than glibc

Signed-off-by: Arthur Courtel <arthur.courtel@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/tcping: bump to version 1.3.6
Mark Corbin [Thu, 19 Dec 2019 15:20:12 +0000 (15:20 +0000)]
package/tcping: bump to version 1.3.6

Switched to latest version on GitHub as linuxco.de is no longer
active. The appropriate entry for tcping on release-monitoring.org
has been updated and a new mapping has been added for the Buildroot
project.

Signed-off-by: Mark Corbin <mark@dibsco.co.uk>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/systemd: bump to 244.1
Jérémy Rosen [Thu, 19 Dec 2019 15:21:34 +0000 (16:21 +0100)]
package/systemd: bump to 244.1

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/nodejs: security bump to version 12.14.0
Peter Korsgaard [Wed, 18 Dec 2019 12:57:07 +0000 (13:57 +0100)]
package/nodejs: security bump to version 12.14.0

Fixes the following security vulnerabilities (in npm):

- CVE-2019-16775: Versions of the npm CLI prior to 6.13.3 are vulnerable to
  an Arbitrary File Write.  It is possible for packages to create symlinks
  to files outside of thenode_modules folder through the bin field upon
  installation
  https://www.npmjs.com/advisories/1436

- CVE-2019-16776: Versions of the npm CLI prior to 6.13.3 are vulnerable to
  an Arbitrary File Write.  It fails to prevent access to folders outside of
  the intended node_modules folder through the bin field
  https://www.npmjs.com/advisories/1434

- CVE-2019-16777: Versions of the npm CLI prior to 6.13.4 are vulnerable to
  an Arbitrary File Overwrite.  It fails to prevent existing
  globally-installed binaries to be overwritten by other package
  installations
  https://www.npmjs.com/advisories/1437

For further details, see the upstream announcements:

https://blog.npmjs.org/post/189618601100/binary-planting-with-the-npm-cli
https://nodejs.org/en/blog/vulnerability/december-2019-security-releases/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/wavpack: add openssl optional dependency
Fabrice Fontaine [Wed, 18 Dec 2019 22:23:19 +0000 (23:23 +0100)]
package/wavpack: add openssl optional dependency

wavpack optionally depends on libcrypto since version 5.2.0 and
https://github.com/dbry/WavPack/commit/e158df5353b57ac7002d5cac4b3a040eba4c0c9f

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/wavpack: security bump to version 5.2.0
Fabrice Fontaine [Wed, 18 Dec 2019 22:23:18 +0000 (23:23 +0100)]
package/wavpack: security bump to version 5.2.0

- Switch to github to get latest version
- Drop patches (already in version)
- Fix CVE-2018-19840: The function WavpackPackInit in pack_utils.c in
  libwavpack.a in WavPack through 5.1.0 allows attackers to cause a
  denial-of-service (resource exhaustion caused by an infinite loop) via
  a crafted wav audio file because WavpackSetConfiguration64 mishandles
  a sample rate of zero.
- Fix CVE-2018-19841: The function WavpackVerifySingleBlock in
  open_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers
  to cause a denial-of-service (out-of-bounds read and application
  crash) via a crafted WavPack Lossless Audio file, as demonstrated by
  wvunpack.
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/pipewire: use "config" instead of "menuconfig"
Thomas Petazzoni [Wed, 18 Dec 2019 22:33:54 +0000 (23:33 +0100)]
package/pipewire: use "config" instead of "menuconfig"

pipewire doesn't have enough sub-options to warrant having its own
menuconfig.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/pipewire: add missing dependencies/plugins
James Hilliard [Wed, 18 Dec 2019 13:04:59 +0000 (06:04 -0700)]
package/pipewire: add missing dependencies/plugins

Added missing required and optional dependencies.
Provide option to enable gstreamer plugin.

Fixes:

  http://autobuild.buildroot.net/results/9671ad63b1ae147a6f660337cb4b3dc38209067c/
  http://autobuild.buildroot.net/results/0e80841fe9937d7a5142035c2a41158166bcf8df/

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
[Thomas:
 - enclose new option in if ... endif block
 - add missing Config.in comment
 - add dependency on gstreamer1 in .mk file]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agoconfigs/imx6-sabresd: bump kernel version
Fabio Estevam [Wed, 18 Dec 2019 20:03:20 +0000 (17:03 -0300)]
configs/imx6-sabresd: bump kernel version

Bump the kernel version to 5.4.2.

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/meson: bump to version 0.52.1
James Hilliard [Wed, 18 Dec 2019 13:31:33 +0000 (06:31 -0700)]
package/meson: bump to version 0.52.1

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/kf5/kf5-kcoreaddons: don't treat ld warnings as errors
Giulio Benetti [Wed, 18 Dec 2019 16:19:57 +0000 (17:19 +0100)]
package/kf5/kf5-kcoreaddons: don't treat ld warnings as errors

Microblaze ld emits warnings like:
'
FDE encoding in
CMakeFiles/KF5CoreAddons.dir/KF5CoreAddons_autogen/mocs_compilation.cpp.o(.eh_frame)
prevents .eh_frame_hdr table being created
'
Since '-Wl,--fatal-warnings' is passed by default, build fails, so don't
treat warnings as errors by appending "-Wl,--no-fatal-warnings" to
CMAKE_SHARED_LINKER_FLAGS that is previously defined in package
dependency kf5-extra-cmake-modules.

Fixes:
http://autobuild.buildroot.net/results/f19/f198c86930535c50393e17fc7a70fb4f27b096ee/

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/polkit: add polkitd user and appropriate permissions
Adam Duskett [Wed, 18 Dec 2019 22:09:35 +0000 (14:09 -0800)]
package/polkit: add polkitd user and appropriate permissions

The polkit daemon requires a polkitd user with permission to access the
following directories:
  - /etc/polkit-1
  - /usr/share/polkit-1

The /usr/bin/pkexec file must be owned by owned by root with the
permissions 4755 or else the error "pkexec must be setuid root" is
thrown when it's ran.

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-yieldfrom: bump to version 1.0.5
Asaf Kahlon [Wed, 18 Dec 2019 17:42:59 +0000 (19:42 +0200)]
package/python-yieldfrom: bump to version 1.0.5

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/lua-msgpack-native: fix build with moonjit
Francois Perrad [Tue, 10 Dec 2019 17:40:04 +0000 (18:40 +0100)]
package/lua-msgpack-native: fix build with moonjit

compatibility with Lua 5.0 was removed in LuaJIT/moonjit 2.1.x
(Lua 5.1.x and LuaJIT 2.0.x have this compatibility)

Fixes:

  http://autobuild.buildroot.org/results/4e428df01def186cb034a1774f6c00e2e7c9468c/

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
[Thomas: add comment on .mk file]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/tftpd: add an upstream URL to Config.in
Mark Corbin [Wed, 18 Dec 2019 13:37:17 +0000 (13:37 +0000)]
package/tftpd: add an upstream URL to Config.in

Add an upstream URL to the help text in Config.in. This
addresses the 'Missing' URL status in the package stats
web page output.

Signed-off-by: Mark Corbin <mark@dibsco.co.uk>
[yann.morin.1998@free.fr:
  - use the git tree instead of the 8-year old freshmeat webpage
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/usbmount: update the upstream URL in Config.in
Mark Corbin [Wed, 18 Dec 2019 14:02:55 +0000 (14:02 +0000)]
package/usbmount: update the upstream URL in Config.in

Update the upstream URL in the help text in Config.in. This
addresses the 'Invalid(Err)' URL status in the package stats
web page output.

Signed-off-by: Mark Corbin <mark@dibsco.co.uk>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/w_scan: update the upstream URL in Config.in
Mark Corbin [Wed, 18 Dec 2019 14:24:16 +0000 (14:24 +0000)]
package/w_scan: update the upstream URL in Config.in

Update the upstream URL in the help text in Config.in. This
addresses the 'Invalid(Err)' URL status in the package stats
web page output.

Signed-off-by: Mark Corbin <mark@dibsco.co.uk>
[yann.morin.1998@free.fr: use offical (de) homepage]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/freescale-imx/firmware-imx: fix license hashes
Julien Olivain [Wed, 18 Dec 2019 18:56:33 +0000 (19:56 +0100)]
package/freescale-imx/firmware-imx: fix license hashes

License files were updated since the previous version.
This patch update to the new license hashes. It also fixes the
"make legal-info" command failure due to the hash mismatch.

Fixes:
  - http://autobuild.buildroot.org/results/d9d/d9d82dd6727b82a643cbb75ca33b88a4636bd5fe

Signed-off-by: Julien Olivain <juju@cotds.org>
[yann.morin.1998@free.fr: add autobuilder reference]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agosupport/testing: fix python-gitdb2 test
Yann E. MORIN [Wed, 18 Dec 2019 20:12:22 +0000 (21:12 +0100)]
support/testing: fix python-gitdb2 test

Cthe test-case for python-gitdb2 consists solely in verifying that the
module can indeed be imported.

However, flake8 errors out on unused imports. Furthermore, it also
errors about wildcard imports, as it can detect unused symbols.

Squelch those errors.

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/alsa-utils: add a WantedBy section to the systemd unit file
Jérémy Rosen [Mon, 16 Dec 2019 10:30:52 +0000 (11:30 +0100)]
package/alsa-utils: add a WantedBy section to the systemd unit file

This allows the user to enable/disable manually the unit.
It is enabled by default

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - split logn lines
  - no need for continued line (no use for ';\' )
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/rauc: add a WantedBy section to the systemd unit file
Jérémy Rosen [Mon, 16 Dec 2019 10:30:51 +0000 (11:30 +0100)]
package/rauc: add a WantedBy section to the systemd unit file

upstream-provided service has no WantedBy, which means that rauc won't
be enabled by default

Add a WantedBy instead of manually creating the symlink so the user can
enable/disable the unit properly

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - split long line
  - no need for continued line (no use for ';\' )
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/syslog-ng: implement systemd enablement using DefaultInstance
Jérémy Rosen [Mon, 16 Dec 2019 10:30:50 +0000 (11:30 +0100)]
package/syslog-ng: implement systemd enablement using DefaultInstance

Instead of using a manual symlink we use add a DefaultInstance= to the
config file

This is how upstream wants us to do it and allows systemctl preset to
correctly restore it if needed

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - split long line
  - no need for continued line (no use for ';\' )
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/wpa_supplicant: adapt to systemctl preset-all
Jérémy Rosen [Mon, 16 Dec 2019 10:30:48 +0000 (11:30 +0100)]
package/wpa_supplicant: adapt to systemctl preset-all

All services were installed but not enabled.

This change enables the non-templated service but disables the
templated ones.

Enabling the templates creates weird links which are probably an
upstream bug.

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/network-manager: adapt to systemctl preset-all
Jérémy Rosen [Mon, 16 Dec 2019 10:30:47 +0000 (11:30 +0100)]
package/network-manager: adapt to systemctl preset-all

NM has three services
* NetworkManger.service : the main daemon
* NetworkManger-dispatcher.service : a daemon handling network callbacks
* NetworkManager-wait-online.service : sync of other services with network-online

Only the first two were activated. We now also enable
wait-online. Not enabling it was probably a bug.

Note that buildroot adds an alias dbus-org.freedesktop.NetworkManager
Adding an alias that is not known upstream is not clean,
but I left it for backward compatibility

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/linuxptp adapt to systemctl preset-all
Jérémy Rosen [Mon, 16 Dec 2019 10:30:46 +0000 (11:30 +0100)]
package/linuxptp adapt to systemctl preset-all

linuxptp has two services
* linuxptp.service : the actual daemon
* linuxptp-system-clock.service : sync the linux clock to the phc clock

The first was enabled, the second was not, we now enable both

The second has an incorrect (though harmless) WantedBy : there is an
explicit Wants= in linuxptp.service

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/connman: adapt to systemctl preset-all
Jérémy Rosen [Mon, 16 Dec 2019 10:30:45 +0000 (11:30 +0100)]
package/connman: adapt to systemctl preset-all

connman has two services
* connman.service which is the real daemon
* connman-wait-online.service which is a sync point for network-online.target

Only the first one was enabled. This adaptation enables both.

Not enabling connman-wait-online.service is probably a bug

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr: fix check-package errors]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage: rely on systemctl preset-all for upstream-provided services
Jérémy Rosen [Mon, 16 Dec 2019 10:30:44 +0000 (11:30 +0100)]
package: rely on systemctl preset-all for upstream-provided services

All these packages have an upstream-provided service, but buildroot
enabled manually the services in exactly the same way as the [Install]
section.

This is not needed anymore

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr: fix check-package errors]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage: rely on systemctl preset-all for buildroot-provided services
Jérémy Rosen [Mon, 16 Dec 2019 10:30:43 +0000 (11:30 +0100)]
package: rely on systemctl preset-all for buildroot-provided services

All the packages in this list have the following properties
* units are provided by buildroot in the package directory
* the SYSTEMD_INSTALL_INIT_HOOK is exactly equivalent to what the
  [Install] section of the unit does

The fix removes the soflinking in the .mk file

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/systemd: fix tty handling
Jérémy Rosen [Mon, 16 Dec 2019 10:30:42 +0000 (11:30 +0100)]
package/systemd: fix tty handling

Handling of tty is a bit tricky, we need to aggressively disable what
systemd does with tty1 then update for what buildroot wants to do

Rework the whole tty generation to work with presets

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - fold long lines
  - drop spurious empty lines removals
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/systemd: use host-systemctl preset all to enable units
Jérémy Rosen [Mon, 16 Dec 2019 10:30:41 +0000 (11:30 +0100)]
package/systemd: use host-systemctl preset all to enable units

since v234 upstream recommands using systemctl preset-all to enable units.
* add a buildroot specific preset file
* use that file to disable getty@tty1
* make systemd depend on host-systemd
* remove all link-creating code that systemd does for us.

Most packages will not be affected by this change, but a few packages
were installing units without manually enabling them. Those packages
will now be automatically enabled.

The fact that those packages were not enabled is almost certainly a bug,
but it is a change of behaviour that needs to be reported

host-systemd also builds udevadm for the host. That means we no longer
need to depend on host-eudev to provide udevadm (that would conflict).

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - also remove the hwdb sources on fs generation
  - fix check-package errors
  - few typoes and reformatting in commit log
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/sysrepo: fix install path for systemd units
Yann E. MORIN [Wed, 18 Dec 2019 17:24:06 +0000 (18:24 +0100)]
package/sysrepo: fix install path for systemd units

The relative paths currently used to install the systemd units causes an
incorrect installation, where units are installed in (notice the double
usr in the paths):

    target/usr/usr/lib/systemd/system/sysrepod.service
    staging/usr/usr/lib/systemd/system/sysrepod.service

Fix that by using an absolute path.

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - split into its own commit
  - expand commit log
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/systemd: add host variant
Jérémy Rosen [Mon, 16 Dec 2019 10:30:40 +0000 (11:30 +0100)]
package/systemd: add host variant

Add the infrastructure to build the host version of systemd
* disable all optional features, they can be re-added when needed
* systemd has creative way of dealing with cross compile
  we build a "normal" host systemd, but install it in $HOST_DIR
  we use systemctl --root to correctly act on TARGET_DIR
* we need to adjust RPATH using patchelf because meson can't do it
  correctly by itsel

The first question is: why do we use --prefix=/usr ?

systemd will store its --prefix in all the executables it generates. As
such, systemctl will have a hardcoded 'prefix', where it will manipulate
and create files/symlinks in. When called natively, this is nice and
shinny.

However, for cross-setup, that does not work obviously.

So, systemd has its tools know about the 'root' directory where this
prefix should be related to. We can call systemctl --root=$(TARGET_DIR)
and systemctl wil do the links and such in there.

However, it does so by appending its known prefix to it.

So, if we were to configure host-systemd as we usually do, with
--prefix=$(HOST_DIR), then when we would call host systemctl --root=$(TARGET_DIR)
it would look for files in $(TARGET_DIR)/$(HOST_DIR), which is wrong.

Calling the host systemctl without --root is also wrong, as it would look for
files in $(HOST_DIR)

So, there is no satisfying official support for this case.

The trick then, is to configure systemd with the prefix it would expect
at runtime (on the target!), that is with /usr, but install out-of-tree.

That was it for the first part of the question: why do we use --prefix.

Now, the second question is: why do we need to muck up with the rpath
after installation?

Well, this boils down to meson (and not systemd itself). When it
installs executables, meson will handily insert whatever rpath the
package meson.build would tell it to use. systemd installs libs in
$(prefix)/lib/systemd and has a NEEDED to those libs, so it uses an
RPATH to find those libs, and meson does inject that RPATH into the
installed executables.

However, we Buildroot also want to insert our own RPATH, because systemd
uses util-linux' libs and libcap, installed in $(HOST_DIR), so it needs
our RPATH.

However, meson can not extend the RPATH from the LDFLAGS in the
environment; meson can only set the RPATH from what it knows about from
the package's meson.build.

That, in addition to the --prefix=/usr issue above, means that the
executables installed by host-systemd have an RPATH set to
/usr/lib/systemd. when we would want it to be set to
$(HOST_DIR)/lib:$(HOST_DIR)/lib/systemd

That's what is done in the post-install hook: set the RPATH to the
appropriate values.

Signed-off-by: Jérémy Rosen <jeremy.rosen@smile.fr>
[yann.morin.1998@free.fr:
  - reformatting in commit log
  - declare host variant after target variant
  - simplify comments
  - slight reordering of variable (HOST_SYSTEMD_NINJA_ENV moved)
  - reformatting for mutli-line variable (HOST_SYSTEMD_HOST_TOOLS)
  - don't split HOST_SYSTEMD_CONF_OPTS in two sets
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agolinux: bump CIP RT kernel to version 4.19.82-cip14-rt5
Angelo Compagnucci [Tue, 17 Dec 2019 07:19:59 +0000 (08:19 +0100)]
linux: bump CIP RT kernel to version 4.19.82-cip14-rt5

This patch bumps Linux CIP RT version to 4.19.82-cip14-rt5.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agolinux: bump CIP kernel to version 4.19.88-cip16
Angelo Compagnucci [Tue, 17 Dec 2019 07:19:58 +0000 (08:19 +0100)]
linux: bump CIP kernel to version 4.19.88-cip16

This patch bumps Linux CIP version to 4.19.88-cip16.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/iozone: bump to version 3_488
Gilles Talis [Tue, 17 Dec 2019 06:30:17 +0000 (07:30 +0100)]
package/iozone: bump to version 3_488

Signed-off-by: Gilles Talis <gilles.talis@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/lrzip: needs C++
Peter Korsgaard [Mon, 16 Dec 2019 08:59:19 +0000 (09:59 +0100)]
package/lrzip: needs C++

Fixes:
http://autobuild.buildroot.net/results/e40/e40653aa895bb47d20ad237c8a5ae3f6b76f3f67/

libzpaq is written in C++ (and unconditionally built), so depend on C++
support.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/wireguard: bump version to 0.0.20191212
Peter Korsgaard [Sun, 15 Dec 2019 19:25:51 +0000 (20:25 +0100)]
package/wireguard: bump version to 0.0.20191212

For details of the changes, see the announcement:
https://lists.zx2c4.com/pipermail/wireguard/2019-December/004764.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/pkg-generic.mk: also apply extractor-pkg-dependency to <pkg>_EXTRA_DOWNLOADS
Thomas Petazzoni [Mon, 16 Dec 2019 15:31:17 +0000 (16:31 +0100)]
package/pkg-generic.mk: also apply extractor-pkg-dependency to <pkg>_EXTRA_DOWNLOADS

For now, the extractor dependencies were only calculated for
<pkg>_SOURCE, so if the package manually downloads another file using
<pkg>_EXTRA_DOWNLOADS and then extracts it with $(call
suitable-extractor), we are missing the corresponding dependency on
the appropriate extracting tool.

Since the vast majority of <pkg>_EXTRA_DOWNLOADS are compressed files
that will be uncompressed at build time, it makes sense to derive the
corresponding extractor dependencies directly in the common package
infrastructure, rather than having each and every package using
<pkg>_EXTRA_DOWNLOADS making this effort.

On a system without xzcat, before this patch:

$ make printvars VARS=HOST_GETTEXT_TINY_EXTRACT_DEPENDENCIES
HOST_GETTEXT_TINY_EXTRACT_DEPENDENCIES=host-tar

After this patch:

$ make printvars VARS=HOST_GETTEXT_TINY_EXTRACT_DEPENDENCIES
HOST_GETTEXT_TINY_EXTRACT_DEPENDENCIES=host-tar    host-xz

This commit most notably fixes the build of host-gettext-tiny on
systems without xzcat, and with per-package support enabled. Indeed,
the main _SOURCE for gettext-tiny is a .gz file, but it has a .xz file
in its _EXTRA_DOWNLOADS, which is then extracted. Except that xzcat
being missing from the dependencies, it is not built.

Fixes:

  http://autobuild.buildroot.net/results/83c6d47c06334bef27791a59bdd491b1de124c49/

Suggested-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/pkg-generic.mk: use extractor-pkg-dependency macro
Thomas Petazzoni [Mon, 16 Dec 2019 15:31:16 +0000 (16:31 +0100)]
package/pkg-generic.mk: use extractor-pkg-dependency macro

Instead of manually calculating the EXTRACT_DEPENDENCIES value based
on the archive extension, let's use the newly introduced
extractor-pkg-dependency macro.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Reviewed-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/pkg-utils.mk: rework implementation of extractor-system-dependency
Thomas Petazzoni [Mon, 16 Dec 2019 15:31:15 +0000 (16:31 +0100)]
package/pkg-utils.mk: rework implementation of extractor-system-dependency

Now that we have the EXTRACTOR_PKG_DEPENDENCY.* variables available,
we can use them to implement extractor-system-dependency: if for a
given archive type, the corresponding EXTRACTOR_PKG_DEPENDENCY.<type>
variable is empty, then it means we need the corresponding extractor
tool to be provided by the system.

Following this, EXTRACTOR_DEPENDENCY_PRECHECKED_EXTENSIONS is no
longer used, so we can drop it from support/dependencies/.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/pkg-utils.mk: add extractor-pkg-dependency macro
Thomas Petazzoni [Mon, 16 Dec 2019 15:31:14 +0000 (16:31 +0100)]
package/pkg-utils.mk: add extractor-pkg-dependency macro

To extract some archive types, if the extracting tool is not available
on the system where Buildroot runs on, we build it using a Buildroot
host package.

Such dependencies are currently explicitly handled by the
inner-generic-package macro, but in fact we also need to handle them
in all places where the "suitable-extractor" macro is invoked, and
some packages invoke it directly. Otherwise, such packages may be
missing a dependency to the appropriate host Buildroot package
building the extracting tool they need. An example is gettext-tiny,
whose source code is a gzip-compressed tarball, but in addition
manually extracts a xz-compressed tarball.

This extractor-pkg-dependency macro will be used in follow-up commits
to ensure all the packages that use suitable-extractor properly add
the correct dependencies.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agosupport/testing: add gitdb2 test
Adam Duskett [Fri, 29 Nov 2019 21:29:08 +0000 (13:29 -0800)]
support/testing: add gitdb2 test

Add a simple test case that imports the module.

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-gitdb2: new package
Adam Duskett [Fri, 29 Nov 2019 21:29:07 +0000 (13:29 -0800)]
package/python-gitdb2: new package

GitDB allows you to access bare git repositories for reading and
writing.  It aims at allowing full access to loose objects as well as
packs with performance and scalability in mind. It operates
exclusively on streams, allowing to handle large objects with a small
memory footprint.

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
[Thomas: fix license]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agosupport/testing: add smmap2 test
Adam Duskett [Fri, 29 Nov 2019 20:38:41 +0000 (12:38 -0800)]
support/testing: add smmap2 test

Add a simple test case that imports the module and instantiates a new
SlidingWindowMapManager class.

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-smmap2: new package
Adam Duskett [Fri, 29 Nov 2019 20:38:40 +0000 (12:38 -0800)]
package/python-smmap2: new package

Smmap wraps an interface around mmap and tracks the mapped files as
well as the amount of clients who use it. If the system runs out of
resources, or if a memory limit is reached, it will automatically
unload unused maps to allow continued operation.

Signed-off-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/pkg-utils.mk: rename extractor-dependency to extractor-system-dependency
Thomas Petazzoni [Mon, 16 Dec 2019 15:31:13 +0000 (16:31 +0100)]
package/pkg-utils.mk: rename extractor-dependency to extractor-system-dependency

The extractor-dependency macro returns which system-provided tools are
needed to be able to extract the archive passed as argument. The
result of this macro is added to DL_TOOLS_DEPENDENCIES so that the
logic in support/dependencies/ verifies that the necessary tools are
provided by the system.

However, we are going to add another macro, extractor-pkg-dependency,
which says which Buildroot packages are needed to extract the archive
passed as argument. Indeed, for those archive types, if the extractor
is not provided system-wide, we build it as a host Buildroot package.

To clarify the distinction between the upcoming
extractor-pkg-dependency and existing extractor-dependency, we rename
the latter to extractor-system-dependency.

We take this opportunity to extend the documentation of this macro.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Reviewed-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
4 years agopackage/freescale-imx/firmware-imx: bump version to 8.1.1
Julien Olivain [Mon, 2 Dec 2019 20:06:01 +0000 (21:06 +0100)]
package/freescale-imx/firmware-imx: bump version to 8.1.1

This version is aligned with i.MX NXP BSP components version
rel_imx_4.14.98_2.0.0_ga

Signed-off-by: Julien Olivain <juju@cotds.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/freescale-imx: update SITE to use NXP url
Julien Olivain [Mon, 2 Dec 2019 20:05:00 +0000 (21:05 +0100)]
package/freescale-imx: update SITE to use NXP url

NXP BSPs has been using the nxp.com URL for a while:
http://git.yoctoproject.org/cgit/cgit.cgi/meta-freescale/commit/conf/layer.conf?id=d6abbbc1ce0882bdc82e03b1868eeba1a50a7bd3

It's  unclear for how long the freescale.com redirect will be
maintained. This patch update the FREESCALE_IMX_SITE variable
to point directly to the NXP site.

Signed-off-by: Julien Olivain <juju@cotds.org>
Reviewed-by: Gary Bisson <bisson.gary@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agoconfigs/imx8mpico: bump BSP components to 4.14.98_2.0.0
Julien Olivain [Mon, 2 Dec 2019 20:03:00 +0000 (21:03 +0100)]
configs/imx8mpico: bump BSP components to 4.14.98_2.0.0

Update Kernel, U-Boot and ATF to TechNexion BSP, based on NXP
4.14.98_2.0.0 release.

This patch also remove BR2_TARGET_UBOOT_FORMAT_IMX in defconfig which
is not needed for this platform.

Signed-off-by: Julien Olivain <juju@cotds.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agoconfigs/imx8mmpico: bump BSP components to 4.14.98_2.0.0
Julien Olivain [Mon, 2 Dec 2019 19:54:23 +0000 (20:54 +0100)]
configs/imx8mmpico: bump BSP components to 4.14.98_2.0.0

Update Kernel, U-Boot and ATF to TechNexion BSP, based on NXP
4.14.98_2.0.0 release.

This patch also remove BR2_TARGET_UBOOT_FORMAT_IMX in defconfig which
is not needed for this platform.

Signed-off-by: Julien Olivain <juju@cotds.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/solarus: disable tests
Fabrice Fontaine [Sun, 15 Dec 2019 13:13:58 +0000 (14:13 +0100)]
package/solarus: disable tests

Set -DSOLARUS_TESTS=OFF to disable tests (option added in version 1.6.1
with:
https://gitlab.com/solarus-games/solarus/commit/1829189c6050e36086b12c3806932e8657265467)

Reviewed-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/solarus: allow building with lua 5.1
Fabrice Fontaine [Sun, 15 Dec 2019 13:13:57 +0000 (14:13 +0100)]
package/solarus: allow building with lua 5.1

Build with lua 5.1 has been fixed since version 1.6.1 and
https://gitlab.com/solarus-games/solarus/commit/611f81a90d42692e986c78c67090541ffd1c5973

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[Thomas: keep a select BR2_PACKAGE_LUAJIT, but make it "if
!BR2_PACKAGE_LUA_5_1"]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/solarus: bump to version 1.6.2
Fabrice Fontaine [Sun, 15 Dec 2019 13:13:56 +0000 (14:13 +0100)]
package/solarus: bump to version 1.6.2

Switch to gitlab to retrieve latest version

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/apitrace: needs wchar
Fabrice Fontaine [Sat, 14 Dec 2019 11:38:17 +0000 (12:38 +0100)]
package/apitrace: needs wchar

apitrace uses its own version of gtest which depends on wchar since
version 8.0 and
https://github.com/apitrace/apitrace/commit/85cf7c8b86129699246574dfeec846e88a3f88a2

Moreover, apitrace also uses wcslen in trace_writer.cpp since at least
version 8.0 and
https://github.com/apitrace/apitrace/commit/5e9a2b11b248aaa2f6f353bbcf9f600d65bcaf51

Fixes:
 - http://autobuild.buildroot.org/results/5f27556ccc9daec578fe1bf2ed516ca9921ed474

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/apitrace: needs host-python3
Fabrice Fontaine [Sat, 14 Dec 2019 11:38:16 +0000 (12:38 +0100)]
package/apitrace: needs host-python3

apitrace needs host-python3 since version 9.0 and
https://github.com/apitrace/apitrace/commit/0b8b019952f2668a5e8786cc2d331062b958f02e

Fixes:
 - http://autobuild.buildroot.org/results/5f27556ccc9daec578fe1bf2ed516ca9921ed474

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-validators: bump version to 0.14.1
Peter Korsgaard [Mon, 16 Dec 2019 08:25:14 +0000 (09:25 +0100)]
package/python-validators: bump version to 0.14.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/jo: bump version to 1.3
Peter Korsgaard [Mon, 16 Dec 2019 08:11:05 +0000 (09:11 +0100)]
package/jo: bump version to 1.3

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/pipewire: new package
James Hilliard [Mon, 26 Aug 2019 02:34:02 +0000 (20:34 -0600)]
package/pipewire: new package

PipeWire is a server and user space API to deal with multimedia
pipelines.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
[Thomas:
 - further bump to 0.2.7
 - select BR2_PACKAGE_DBUS instead of depending on it]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/jimtcl: bump to version 0.79
Fabrice Fontaine [Sun, 15 Dec 2019 10:29:25 +0000 (11:29 +0100)]
package/jimtcl: bump to version 0.79

- Switch site from debian to github official mirror
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/python-bluezero: Bump to version 0.3.0
Grzegorz Blach [Sun, 15 Dec 2019 15:23:24 +0000 (16:23 +0100)]
package/python-bluezero: Bump to version 0.3.0

Signed-off-by: Grzegorz Blach <grzegorz@blach.pl>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/libgit2: security bump to version 0.28.4
Nicolas Cavallari [Mon, 16 Dec 2019 11:53:59 +0000 (12:53 +0100)]
package/libgit2: security bump to version 0.28.4

Fixes the following CVE:

- CVE-2019-1351: Windows provides the ability to substitute
  drive letters with arbitrary letters, including multi-byte
  Unicode letters. To fix any potential issues arising from
  interpreting such paths as relative paths, we have extended
  detection of DOS drive prefixes to accomodate for such cases.

- CVE-2019-1352: by using NTFS-style alternative file streams for
  the ".git" directory, it is possible to overwrite parts of the
  repository. While this has been fixed in the past for Windows,
  the same vulnerability may also exist on other systems that
  write to NTFS filesystems. We now reject any paths starting
  with ".git:" on all systems.

- CVE-2019-1353: by using NTFS-style 8.3 short names, it was
  possible to write to the ".git" directory and thus overwrite
  parts of the repository, leading to possible remote code
  execution. While this problem was already fixed in the past for
  Windows, other systems accessing NTFS filesystems are
  vulnerable to this issue too. We now enable NTFS protecions by
  default on all systems to fix this attack vector.

- CVE-2019-1354: on Windows, backslashes are not a valid part of
  a filename but are instead interpreted as directory separators.
  As other platforms allowed to use such paths, it was possible
  to write such invalid entries into a Git repository and was
  thus an attack vector to write into the ".git" dierctory. We
  now reject any entries starting with ".git" on all systems.

libgit2 is not affected by these git CVE:

- CVE-2019-1348: the fast-import stream command "feature
  export-marks=path" allows writing to arbitrary file paths.

- CVE-2019-1349: by using NTFS 8.3 short names, backslashes or
  alternate filesystreams, it is possible to cause submodules to
  be written into pre-existing directories during a recursive
  clone using git.

- CVE-2019-1350: recursive clones may lead to arbitrary remote
  code executing due to improper quoting of command line
  arguments.

- CVE-2019-1387: it is possible to let a submodule's git
  directory point into a sibling's submodule directory, which may
  result in overwriting parts of the Git repository and thus lead
  to arbitrary command execution. As libgit2 doesn't provide any
  way to do submodule clones natively, it is not susceptible to
  this vulnerability. Users of libgit2 that have implemented
  recursive submodule clones manually are encouraged to review
  their implementation for this vulnerability.

Signed-off-by: Nicolas Cavallari <nicolas.cavallari@green-communications.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agoconfigs/beaglebone: kernel builds needs host-openssl
Thomas Petazzoni [Mon, 16 Dec 2019 10:05:48 +0000 (11:05 +0100)]
configs/beaglebone: kernel builds needs host-openssl

Fixes:

514 scripts/extract-cert.c:21:25: fatal error: openssl/bio.h: No such file or directory
515  #include <openssl/bio.h>

Seen at:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/378314247

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/libnice: add optional dependency to openssl
Bernd Kuhls [Sat, 31 Aug 2019 13:04:17 +0000 (15:04 +0200)]
package/libnice: add optional dependency to openssl

Support for OpenSSL was added in version 0.1.15:
https://lists.freedesktop.org/archives/nice/2018-December/001443.html

With the option of using OpenSSL as a crypto provider, we can't keep
GnuTLS as the default, because using:

       select BR2_PACKAGE_GNUTLS if !BR2_PACKAGE_OPENSSL

causes a Kconfig circular dependency:

package/openssl/Config.in:4:error: recursive dependency detected!
package/openssl/Config.in:4: symbol BR2_PACKAGE_OPENSSL is selected by BR2_PACKAGE_GNUTLS
package/gnutls/Config.in:1: symbol BR2_PACKAGE_GNUTLS is selected by BR2_PACKAGE_OPENSSL

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
[Thomas: pass --with-crypto-library argument]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/libnice: bump version to 0.1.16
Bernd Kuhls [Sat, 31 Aug 2019 13:04:16 +0000 (15:04 +0200)]
package/libnice: bump version to 0.1.16

Release notes:
https://lists.freedesktop.org/archives/nice/2018-December/001443.html
https://lists.freedesktop.org/archives/nice/2019-May/001444.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/harfbuzz: bump version to 2.6.4
Bernd Kuhls [Sun, 25 Aug 2019 18:16:20 +0000 (20:16 +0200)]
package/harfbuzz: bump version to 2.6.4

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
[Thomas:
 - drop patch 0001-pool-Fix-alignment-assertion.patch, which is in
   upstream commit aade9b70aabd8a97dd8a28cda2cf4d0694dd7350, available
   since version 2.6.0
 - further bump to 2.6.4]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/coreutils: bump version to 8.31
Bernd Kuhls [Sun, 25 Aug 2019 17:24:12 +0000 (19:24 +0200)]
package/coreutils: bump version to 8.31

Added license hash.
Added patch to fix build error with uclibc.

Release notes:
https://lists.gnu.org/archive/html/coreutils/2019-03/msg00042.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agoconfigs/licheepi_zero: U-Boot needs pylibfdt
Thomas Petazzoni [Mon, 16 Dec 2019 09:40:09 +0000 (10:40 +0100)]
configs/licheepi_zero: U-Boot needs pylibfdt

Like all Allwinner platforms, building the licheepi_zero U-Boot
configuration requires pylibfdt.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/378314331

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agoboard/pc/post-build.sh: fix typo in grub boot.img path
Thomas Petazzoni [Mon, 16 Dec 2019 09:31:18 +0000 (10:31 +0100)]
board/pc/post-build.sh: fix typo in grub boot.img path

Commit 3468ef16fa55610bae3bacefaf816231a20cfab0
("configs/pc_x86_64_efi: use genimage GPT partition table support")
had a small typo on the path to grub boot.img file: i387-pc instead of
i386-pc, which causes a build failure.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/378314412

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Alexandre PAYEN <alexandre.payen@smile.fr>
Cc: Carlos Santos <casantos@datacom.com.br>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/xdg-dbus-proxy: add patch to support building with musl
Adrian Perez de Castro [Sun, 15 Dec 2019 18:42:46 +0000 (20:42 +0200)]
package/xdg-dbus-proxy: add patch to support building with musl

Import "0001-Fix-musl-compilation-by-adding-TEMP_FAILURE_RETRY.patch"
from the upstream repository, which allows building against the musl
libc (or any other which does not define the TEMP_FAILURE_RETRY macro).
The patch has been accepted upstream, but no releases have been made yet
which include the fix.

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/wpewebkit: add option to enable sandboxing support
Adrian Perez de Castro [Sat, 14 Dec 2019 14:22:16 +0000 (16:22 +0200)]
package/wpewebkit: add option to enable sandboxing support

Add an option to enable WebKit's sandbox, which uses kernel
namespaces to isolate the processes used for Web content rendering
(WebKitWebProcess) and network/disk access (WebKitNetworkProcess).

The reason to have an option is that it needs additional dependencies
(bubblewrap, xdg-dbus-proxy, libseccomp), and that some users may
choose to deploy alternative solution (for example: putting all
of WebKit inside its own container, using systemd-nspawn or the
like).

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
[Peter: select libseccomp]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/webkitgtk: select libseccomp when sandbox is enabled
Adrian Perez de Castro [Sun, 15 Dec 2019 18:54:01 +0000 (20:54 +0200)]
package/webkitgtk: select libseccomp when sandbox is enabled

Select BR2_PACKAGE_LIBSECCOMP when the sandboxing support is enabled
during configuration.

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/tpm2-tools: bump to version 4.1
Fabrice Fontaine [Sat, 14 Dec 2019 23:26:02 +0000 (00:26 +0100)]
package/tpm2-tools: bump to version 4.1

- Drop patch (already in version)
- Update hash of license file (copyrights retained since version 4.0 and
  https://github.com/tpm2-software/tpm2-tools/commit/e4b469724eaa6eff0a1ce3bce9fd2ab9e010cd3b)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[Peter: disable man pages build]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/tpm2-abrmd: bump to version 2.3.0
Fabrice Fontaine [Sat, 14 Dec 2019 23:26:01 +0000 (00:26 +0100)]
package/tpm2-abrmd: bump to version 2.3.0

Drop dbus dependency as it is not needed since version 2.2.0 and
https://github.com/tpm2-software/tpm2-abrmd/commit/c1d42c9ebefbfe36255603aca065944836c14610

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[Peter: use --disable-defaultflags and explicitly pass -std=c99]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/openal: switch to github mirror
André Hentschel [Sun, 15 Dec 2019 11:58:01 +0000 (12:58 +0100)]
package/openal: switch to github mirror

Signed-off-by: André Hentschel <nerv@dawncrow.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/tpm2-totp: explicitly disable optional configure flags
Peter Korsgaard [Sun, 15 Dec 2019 10:02:33 +0000 (11:02 +0100)]
package/tpm2-totp: explicitly disable optional configure flags

Explicitly disable doxygen, plymouth, initramfstools and mkinitcpio support
as it is not needed / available in Buildroot.

Also use the new --disable-defaultflags option to ensure our compiler flags
are used rather than trying to disable -fstackprotector-all, similar to how
it is done in tpm2-tss.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/tpm2-totp: bump to version 0.2.0
Fabrice Fontaine [Sat, 14 Dec 2019 23:26:00 +0000 (00:26 +0100)]
package/tpm2-totp: bump to version 0.2.0

Add patch to fix build failure with musl

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/tpm2-tss: bump to version 2.3.2
Fabrice Fontaine [Sat, 14 Dec 2019 23:25:59 +0000 (00:25 +0100)]
package/tpm2-tss: bump to version 2.3.2

- Drop patch (already in version)
- Update hash of license file (SPDX ID has been removed with
  https://github.com/tpm2-software/tpm2-tss/commit/0dbc84ee45d0e4cd7eae528f53968f8877455aab)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
[Peter: use --disable-defaultflags and explicitly pass -std=c99]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/libkrb5: needs host-pkgconf for libedit
Fabrice Fontaine [Sat, 14 Dec 2019 22:55:06 +0000 (23:55 +0100)]
package/libkrb5: needs host-pkgconf for libedit

host-pkgconf is needed to find libedit

Fixes:
 - http://autobuild.buildroot.org/results/45eee300788f46975d292b21eead97f9e9a8b5d8

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/libscrypt: add hash for license file
Fabrice Fontaine [Sat, 14 Dec 2019 17:10:59 +0000 (18:10 +0100)]
package/libscrypt: add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
4 years agopackage/libnfc: add sub-options to enable individual drivers
Louis Aussedat [Mon, 9 Dec 2019 21:59:23 +0000 (22:59 +0100)]
package/libnfc: add sub-options to enable individual drivers

Until now, the arygon and pn53x_usb were unconditionally enabled, and
there were no options to choose other drivers. Therefore, we had
sub-options for each individual driver, keeping arygon and pn53x_usb
enabled by default to preserve backward compatibility.

Also, due to this, the BR2_TOOLCHAIN_HAS_THREADS dependency on the
libnfc package is no longer needed, and is only needed for some of the
sub-options.

Signed-off-by: Louis Aussedat <aussedat.louis@gmail.com>
[Thomas:
 - drop the default ""
 - remove the top-level HAS_THREADS dependency, and move it down to
   the sub-options that need it
 - improve commit log]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-aiozipkin: new package
James Hilliard [Wed, 11 Dec 2019 06:29:28 +0000 (23:29 -0700)]
package/python-aiozipkin: new package

Distributed tracing instrumentation for asyncio application
with zipkin.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-aiosignal: new package
James Hilliard [Wed, 11 Dec 2019 06:18:34 +0000 (23:18 -0700)]
package/python-aiosignal: new package

aiosignal: a list of registered asynchronous callbacks.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-frozenlist: new package
James Hilliard [Wed, 11 Dec 2019 06:18:33 +0000 (23:18 -0700)]
package/python-frozenlist: new package

A list-like structure which implements
collections.abc.MutableSequence.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-janus: new package
James Hilliard [Wed, 11 Dec 2019 02:30:50 +0000 (19:30 -0700)]
package/python-janus: new package

Mixed sync-async queue to interoperate between asyncio
tasks and classic threads.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-async-lru: new package
James Hilliard [Wed, 11 Dec 2019 02:24:11 +0000 (19:24 -0700)]
package/python-async-lru: new package

Simple lru_cache for asyncio.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-aiohttp-mako: new package
James Hilliard [Wed, 11 Dec 2019 02:13:14 +0000 (19:13 -0700)]
package/python-aiohttp-mako: new package

mako template renderer for aiohttp.web (http server for
asyncio).

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-aiohttp-debugtoolbar: new package
James Hilliard [Wed, 11 Dec 2019 02:02:52 +0000 (19:02 -0700)]
package/python-aiohttp-debugtoolbar: new package

debugtoolbar for aiohttp.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-sockjs: new package
James Hilliard [Wed, 11 Dec 2019 01:51:43 +0000 (18:51 -0700)]
package/python-sockjs: new package

SockJS server implementation for aiohttp.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/glibc: bump version for post-2.30 security fixes
Peter Korsgaard [Fri, 13 Dec 2019 13:55:52 +0000 (14:55 +0100)]
package/glibc: bump version for post-2.30 security fixes

Fixes the following security vulnerability:

- CVE-2019-19126: ld.so failed to ignore the LD_PREFER_MAP_32BIT_EXEC
  environment variable during program execution after a security
  transition, allowing local attackers to restrict the possible mapping
  addresses for loaded libraries and thus bypass ASLR for a setuid
  program.  Reported by Marcin Kościelnicki.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/python-subprocess32: add PYTHON_SUBPROCESS32_CONFIGURE_CMDS
Fabrice Fontaine [Sat, 14 Dec 2019 17:10:23 +0000 (18:10 +0100)]
package/python-subprocess32: add PYTHON_SUBPROCESS32_CONFIGURE_CMDS

Since commit 1745fcde740057951dcc5429f3bfabd103b764a1,
python-subprocess32 fails to build because it runs configure with
incorrect arguments so add a PYTHON_SUBPROCESS32_CONFIGURE_CMDS

Fixes:
 - http://autobuild.buildroot.org/results/dcf944129392ee6cacc106e096d8d3adfa4447bb

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
4 years agopackage/webrtc-audio-processing: needs host-pkgconf
Fabrice Fontaine [Fri, 13 Dec 2019 22:23:46 +0000 (23:23 +0100)]
package/webrtc-audio-processing: needs host-pkgconf

configure fails if the pkgconfig.m4 macros are not available during
this package autoreconf:

./configure: line 11829: syntax error near unexpected token `GNUSTL,'
./configure: line 11829: `  PKG_CHECK_MODULES(GNUSTL, gnustl)'

Fixes:
 - http://autobuild.buildroot.org/results/9cbdfb76ea38864fce1acca88714c48c41c77255

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>