Fabrice Fontaine [Sun, 13 Jun 2021 21:00:13 +0000 (23:00 +0200)]
package/libtasn1: security bump to version 4.17.0
- Fix some clang issues due to illegal pointers, thanks to Stefan Weil.
- Fix memory leak caught by oss-fuzz, thanks to Dmitry Baryshkov.
- Fix bugs unveiled by Static Analysis, reported by Simo Sorce.
- LICENSE has been renamed to COPYING since
https://gitlab.com/gnutls/libtasn1/-/commit/
a72a8d1ef13436bf8916097f11c3fc90f07ba911
https://gitlab.com/gnutls/libtasn1/-/blob/v4.17.0/NEWS
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Sun, 13 Jun 2021 19:06:42 +0000 (21:06 +0200)]
package/python-typing: bump to version 3.10.0.0
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Baruch Siach [Thu, 1 Jul 2021 14:54:07 +0000 (17:54 +0300)]
package/openocd: require wchar for the xds110 driver
The xds110 driver requires wchar, and is enabled by default. Make sure
to disable xds110 when wchar support is missing.
Fixes:
http://autobuild.buildroot.net/results/
530bfe22ff509cf4ebfdf99a183312a1053f505f/
http://autobuild.buildroot.net/results/
956538a0a6029137db19cce30dc340e2e30dd166/
http://autobuild.buildroot.net/results/
ae7da2ce1389ece44a4ca65108fee02e318df7b3/
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Thu, 1 Jul 2021 17:14:54 +0000 (10:14 -0700)]
package/libressl: bump version to 3.3.3
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Sergey Matyukevich [Thu, 1 Jul 2021 21:00:03 +0000 (00:00 +0300)]
configs/stm32mp157c_dk2: bump TF-A, Linux, U-Boot versions
Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Thu, 1 Jul 2021 20:38:42 +0000 (22:38 +0200)]
package/slirp: security bump to version 4.6.1
mtod()-related buffer overflows (CVE-2021-3592 #44, CVE-2021-3593 #45,
CVE-2021-3594 #47, CVE-2021-3595 #46).
Drop patch (already in version)
https://gitlab.freedesktop.org/slirp/libslirp/-/blob/v4.6.1/CHANGELOG.md
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 05:47:47 +0000 (07:47 +0200)]
package/gnupg2: bump to version 2.2.28
https://dev.gnupg.org/T5153
https://dev.gnupg.org/T5234
https://dev.gnupg.org/T5482
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 05:47:46 +0000 (07:47 +0200)]
package/libassuan: bump to version 2.5.5
https://dev.gnupg.org/T5354
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 05:47:45 +0000 (07:47 +0200)]
package/libksba: bump to version 1.6.0
Update hash of AUTHORS file (update in year:
https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=commitdiff;h=
1015bea2f8a55b965dee29e17118bc73c2deca39)
https://dev.gnupg.org/T5479
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 05:47:44 +0000 (07:47 +0200)]
package/libgcrypt: security bump to version 1.9.3
Fix CVE-2021-33560: Libgcrypt before 1.8.8 and 1.9.x before 1.9.3
mishandles ElGamal encryption because it lacks exponent blinding to
address a side-channel attack against mpi_powm, and the window size is
not chosen appropriately. (There is also an interoperability problem
because the selection of the k integer value does not properly consider
the differences between basic ElGamal encryption and generalized ElGamal
encryption.) This, for example, affects use of ElGamal in OpenPGP.
https://dev.gnupg.org/T5305
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 05:47:43 +0000 (07:47 +0200)]
package/libgpg-error: bump to version 1.42
Drop patch (not needed since
https://dev.gnupg.org/rE1fb90a7da186ee2ee098a666f6f3a35bb1720e59)
https://dev.gnupg.org/T5194
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Wed, 30 Jun 2021 15:24:58 +0000 (17:24 +0200)]
package/intel-mediasdk: bump version to 21.2.2
Removed dependency to X.org following changes in intel-mediadriver.
Reformatted hashes.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Wed, 30 Jun 2021 15:24:57 +0000 (17:24 +0200)]
package/intel-mediadriver: bump version to 21.2.3
Rebased patch 0001 and removed another hardening flag.
Removed patch 0002 which was backported from upstream commit.
Renumbered and rebased patch 0003.
Reformatted hashes.
Reworked X11 support as it is an optional dependency:
https://github.com/intel/media-driver/pull/494
Release notes:
https://github.com/intel/media-driver/releases/tag/intel-media-21.2.3
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Wed, 30 Jun 2021 15:24:56 +0000 (17:24 +0200)]
package/intel-gmmlib: bump version to 21.2.1
Added patch to remove hardening-related flags.
Updated license hash due to upstream commit
https://github.com/intel/gmmlib/commit/
9253eb8b949515d2a5030f99163a35567fe81838
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Maxim Kochetkov [Wed, 23 Jun 2021 04:31:20 +0000 (07:31 +0300)]
package/postgis: bump version to 3.1.2
PostGIS 3.1.2
2021/05/21
* Bug Fixes
- #4871, TopoGeometry::geometry cast returns NULL for empty
TopoGeometry objects (Sandro Santilli)
- #4826, postgis_tiger_geocoder Better answers when no zip is provided
(Regina Obe)
- #4817, handle more complex compound coordinate dystems (Paul Ramsey)
- #4842, Only do axis flips on CRS that have a "Lat" as the first column (Paul Ramsey)
- Support recent Proj versions that have removed pj_get_release (Paul Ramsey)
- #4835, Adjust tolerance for geodetic calculations (Paul Ramsey)
- #4840, Improper conversion of negative geographic azimuth to positive (Paul Ramsey)
- #4853, DBSCAN cluster not formed when recordset length equal to minPoints (Dan Baston)
- #4863, Update bboxes after scale/affine coordinate changes (Paul Ramsey)
- #4876, Fix raster issues related to PostgreSQL 14 tablefunc changes
(Paul Ramsey, Regina Obe)
- #4877, mingw64 PostGIS / PostgreSQL 14 compile (Regina Obe, Tom Lane)
- #4838, Update to support Tiger 2020 (Regina Obe)
- #4890, Change Proj cache lifetime to last as long as connection (Paul Ramsey)
- #4845, Add Pg14 build support (Paul Ramsey)
Signed-off-by: Maxim Kochetkov <fido_max@inbox.ru>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bilal Wasim [Wed, 23 Jun 2021 12:39:04 +0000 (13:39 +0100)]
configs/chromebook_elm: bump to Linux v5.10
Update the chromebook elm configuration to use v5.10 which is an LTS.
With v5.10, none of the patches previously needed to enable the display
are needed anymore. Deleting them and making minor updates to the linux
kernel configuration.
Signed-off-by: Bilal Wasim <bilal.wasim@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Baruch Siach [Fri, 25 Jun 2021 08:05:32 +0000 (11:05 +0300)]
package/openpgm: fix link for 32-bit x86
Add upstream patch fixing link with libpgm on build for x86 32-bit.
Fixes:
http://autobuild.buildroot.net/results/
80254e61dc55bc07b16b3b66710946c71b9d53bb/
http://autobuild.buildroot.net/results/
7bce71db86df8ba204153e0ab5022fb5ace9a6e5/
http://autobuild.buildroot.net/results/
24a0aaff8f46953d015218a60da2c9856152eea3/
Cc: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Cc: Alexander Lukichev <alexander.lukichev@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 20:22:18 +0000 (22:22 +0200)]
package/tpm2-tools: security bump to version 4.3.2
- Fix CVE-2021-3565: A flaw was found in tpm2-tools in versions before
5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner
wrapper, potentially allowing a MITM attacker to unwrap the inner
portion and reveal the key being imported. The highest threat from
this vulnerability is to data confidentiality.
- LICENSE moved in doc directory since
https://github.com/tpm2-software/tpm2-tools/commit/
23aa5dca660f596b2ad89542d5100bd4ef0c871a
and hash updated due to the following line added with
https://github.com/tpm2-software/tpm2-tools/commit/
305011b2a7d091740fa01dbfbd27a48a76f670f7
Copyright 2019 Fraunhofer SIT sponsored by Infineon Technologies AG
- libuuid and wchar (for mbstate_t) are mandatory since version 4.2 and
https://github.com/tpm2-software/tpm2-tools/commit/
eca77c1419617a8e2d6d8008bac716878b0c27ca
https://github.com/tpm2-software/tpm2-tools/blob/4.3.2/doc/CHANGELOG.md
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Mon, 21 Jun 2021 19:01:27 +0000 (21:01 +0200)]
package/libconfig: bump to version 1.7.3
- Drop patch (already in version)
- Use --disable-tests which is available since
https://github.com/hyperrealm/libconfig/commit/
7e2c1e6ac1f7c80a60c77bf1842edd112fe72188
https://github.com/hyperrealm/libconfig/releases/tag/v1.7.3
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Chris Packham [Mon, 21 Jun 2021 08:12:31 +0000 (20:12 +1200)]
package/syslog-ng: bump to 3.32.1
https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-3.32.1
Signed-off-by: Chris Packham <judge.packham@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:54 +0000 (09:50 -0700)]
package/php: bump version to 8.0.7
Other changes:
- Remove BR2_PACKAGE_PHP_EXT_JSON as the json extension is now an
integral part of PHP and is no longer optional. Due to this, it is
not added to Config.in.legacy.
- Move BR2_PACKAGE_PHP_EXT_XMLRPC to Config.in.legacy as the extension has
been removed. See https://wiki.php.net/rfc/unbundle_xmlprc for an
explination.
- Add a new patch that allows for opcache to cross-compile with PHP8.
- Explicitly disable opcache-jit when opcache is enabled, as the JIT fails
to cross-compile.
- --enable-maintainer-zts is now --enable-zts
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:53 +0000 (09:50 -0700)]
package/php-amqp: add add upstream php8 compatibility patches
These patches are necessary for compiling against php8. These patches also
retain the ability to compile against PHP7.2
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:52 +0000 (09:50 -0700)]
package/php-geoip: add php8 build support
Add a patch that allows php-geoip to compile against php8.
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:51 +0000 (09:50 -0700)]
package/php-zmq: add upstream php8 compatibility patches
These patches are necessary for compiling against php8. These patches also
retain the ability to compile against PHP7.2 and should be removed during the
next version bump.
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:50 +0000 (09:50 -0700)]
package/php-yaml: bump version to 2.2.1
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:49 +0000 (09:50 -0700)]
package/php-xdebug: bump version to 3.0.4
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:48 +0000 (09:50 -0700)]
package/php-ssh2: bump version to 1.3.1
Other changes:
- Remove both upstream patches
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:47 +0000 (09:50 -0700)]
package/php-memcached: bump version to 3.1.5
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:46 +0000 (09:50 -0700)]
package/php-imagick: bump version to 3.5.0
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:45 +0000 (09:50 -0700)]
package/php-gnupg: bump version to 1.5.0
Other changes:
- Change --with-gnupg=$(STAGING_DIR)/usr/include to
--with-gnupg=$(STAGING_DIR)/usr as the make system appends /include to the
gnupgp path now.
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Adam Duskett [Tue, 29 Jun 2021 16:50:44 +0000 (09:50 -0700)]
package/php-amqp: bump version to 1.10.2
Signed-off-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Andreas Hilse [Fri, 25 Jun 2021 11:42:51 +0000 (13:42 +0200)]
boot/grub2: workaround breakage with -O2, -O3 build
When grub2 (i386-pc) is built with -O2 or -O3 it is unable to boot
and the system will reboot in a loop.
Tony Battersby has bisected [0] the error down to this security bugfix:
boot/grub2/0132-kern-parser-Fix-a-stack-buffer-overflow.patch
There is also a bug report by Peter Seiderer about this [1].
As discussed on the mailing list [2], this patch introduces a workaround
in the grub2.mk overriding the global optimization settings with -Os
which results in a booting system.
References:
[0] https://savannah.gnu.org/bugs/?60458
[1] https://bugs.busybox.net/show_bug.cgi?id=13586
[2] http://lists.busybox.net/pipermail/buildroot/2021-May/311524.html
Signed-off-by: Andreas Hilse <andreas.hilse@googlemail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Fabrice Fontaine [Thu, 10 Jun 2021 05:46:13 +0000 (07:46 +0200)]
package/libselinux: fix build with gcc 4.8
Fix build failure with gcc 4.8 which is raised since bump to version 3.2
in commit
b7ff47516ea01436c53b4d1e2b7a5b595ef3ed80
Fixes:
- http://autobuild.buildroot.org/results/
37eb0952a763256fbf6ef3c668f6c95fbdf2dd35
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Tested-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Kory Maincent [Wed, 30 Jun 2021 09:02:47 +0000 (11:02 +0200)]
boot/uboot: fix uboot building host tools on x86 architecture
The make all command run the tools/makefile on the process.
This makefile use "pkg-config" command to support static link.
The issue is the use of pkg-config configured for crosscompiling
to build binaries tools for host architecture.
To fix it, I add pkg-config environment variable to configure it for host.
Add a test to avoid future regress on the build of U-boot.
Signed-off-by: Kory Maincent <kory.maincent@bootlin.com>
[yann.morin.1998@free.fr:
- fix mixed space-TAB indentation
- fix check-package
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Gwenhael Goavec-Merou [Wed, 30 Jun 2021 04:27:10 +0000 (06:27 +0200)]
package/matio: Bump version to 1.5.21
Signed-off-by: Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Baruch Siach [Thu, 24 Jun 2021 11:39:40 +0000 (14:39 +0300)]
package/daemon: bump to version 0.8
Drop upstream patch.
Add another patch to fix build with musl.
Update COPYING hash because of date change.
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Bernd Kuhls [Sun, 27 Jun 2021 06:19:35 +0000 (08:19 +0200)]
package/vlc: bump version to 3.0.16
Release notes:
https://www.videolan.org/vlc/releases/3.0.16.html
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Bernd Kuhls [Sun, 27 Jun 2021 06:18:05 +0000 (08:18 +0200)]
package/stellarium: bump version to 0.21.1
Release notes:
http://stellarium.org/release/2021/06/24/stellarium-0.21.1.html
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Gao Xiang [Fri, 25 Jun 2021 22:05:06 +0000 (06:05 +0800)]
package/erofs-utils: bump version to 1.3
- new upstream version (mainly add big pcluster support);
- add 0001-erofs-utils-manpage-only-install-erofsfuse.1-with-th.patch [1].
[1] https://git.kernel.org/pub/scm/linux/kernel/git/xiang/erofs-utils.git/patch/?id=
7ab34000c672adca90388a8fcb1f70a7d391d35c
Signed-off-by: Gao Xiang <hsiangkao@aol.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Ryan Barnett [Thu, 24 Jun 2021 12:47:38 +0000 (07:47 -0500)]
package/opkg-utils: bump to version 0.4.5
Switch URL to HTTPS address for git repository.
Signed-off-by: Ryan Barnett <ryanbarnett3@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Ryan Barnett [Thu, 24 Jun 2021 12:47:37 +0000 (07:47 -0500)]
package/opkg: bump to version 0.4.5
Along with version bump, update hash file to two space format and
switch to HTTPS URL.
Signed-off-by: Ryan Barnett <ryanbarnett3@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Jörg Krause [Mon, 28 Jun 2021 06:01:25 +0000 (06:01 +0000)]
package/flac: enable building of libFLAC++
Besides libFLAC, also build libFLAC++ when C++ support is enabled.
Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Jörg Krause [Mon, 28 Jun 2021 06:22:25 +0000 (06:22 +0000)]
package/portaudio: bump to version v190700_20210406
Note, that the download URL has changed for the new release.
Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
[yann.morin.1998@free.fr: move 'v' out of _VERSION]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Joel Stanley [Mon, 28 Jun 2021 07:16:30 +0000 (16:46 +0930)]
package/pdbg: Bump version to v3.3
Remove patches that now are upstream.
Upstream changes:
- Implement p10 thread controls
- Update p10 sbefifo chip-ops
- For p10 switch default backend to sbefifo
- Separate sbe api into new header libpdbg_sbe.h
Signed-off-by: Joel Stanley <joel@jms.id.au>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Gwenhael Goavec-Merou [Mon, 28 Jun 2021 09:54:45 +0000 (11:54 +0200)]
package/python-cheetah: Bump version to 3.2.6
Signed-off-by: Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Gwenhael Goavec-Merou [Mon, 28 Jun 2021 09:54:30 +0000 (11:54 +0200)]
package/python-remi: Bump version to 2021.3.2
Signed-off-by: Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Gwenhael Goavec-Merou [Mon, 28 Jun 2021 09:53:51 +0000 (11:53 +0200)]
package/python-markdown: Bump version to 3.3.4
Signed-off-by: Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Heiko Thiery [Tue, 29 Jun 2021 10:06:31 +0000 (12:06 +0200)]
configs/kontron_pitx_imx8m: new defconfig
Signed-off-by: Heiko Thiery <heiko.thiery@gmail.com>
[yann.morin.1998@free.fr: drop "exit $?" in post-image.sh]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Michael Walle [Mon, 28 Jun 2021 11:09:43 +0000 (13:09 +0200)]
configs/kontron_smarc_sal28: use kernel 5.13
Signed-off-by: Michael Walle <michael@walle.cc>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Michael Walle [Mon, 28 Jun 2021 11:09:42 +0000 (13:09 +0200)]
{linux, linux-headers}: add version 5.13
Signed-off-by: Michael Walle <michael@walle.cc>
Reviewed-by: Heiko Thiery <heiko.thiery@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Andy Shevchenko [Mon, 28 Jun 2021 16:01:04 +0000 (19:01 +0300)]
package/fb-test-app: Move 'rosetta' prefix from VERSION to SITE
Move 'rosetta' prefix from VERSION to SITE to have version be
in a standard format.
Suggested-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Andy Shevchenko <andriy.shevchenko@linux.intel.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Andy Shevchenko [Thu, 17 Jun 2021 18:36:47 +0000 (21:36 +0300)]
package/fb-test-app: Install fb-test-string
fb-test-app suite provides a simple app to draw text on a given frame buffer.
Install it as well.
Signed-off-by: Andy Shevchenko <andriy.shevchenko@linux.intel.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Kory Maincent [Mon, 28 Jun 2021 15:01:18 +0000 (17:01 +0200)]
package: gcnano-binaries: bump version to 6.4.3
Update to last version of gcnano-binaries compatible with kernel
from StMicroelectronics version 5.10
Signed-off-by: Kory Maincent <kory.maincent@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Erico Nunes [Mon, 21 Jun 2021 05:53:51 +0000 (22:53 -0700)]
python: use system libffi for host-python
python2 contains a bundled copy of libffi which is currently out of sync with
the latest libffi release. There is an option to use a system libffi, buildroot
already uses it for the target python2 build and for python3. In python3, the
bundled copy doesn't exist anymore and the system-provided libffi is required.
The bundled copy currently fails to build on aarch64 host due to a missing
definition of AARCH64_CALL_CONTEXT_SIZE. This define was removed from the
headers in recent libffi releases and the host compiler might be including the
system headers before the bundled headers.
To solve this and since buildroot already relies on system libffi for target
python2 and python3 anyway, switch host python2 to use system libffi.
Signed-off-by: Erico Nunes <nunes.erico@gmail.com>
Reviewed-by: Christian Stewart <christian@paral.in>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Yann E. MORIN [Sun, 27 Jun 2021 06:53:50 +0000 (08:53 +0200)]
support/tests: fix squashfs test
Commit
3cf2782906d5 (support/testing/infra/emulator.py: update pre-built
kernels) bumped the default kernels used by the testing infra.
However, the newer armv7 kernel (at least) no longer has support for
lz4-compressed squashfs filesystems.
This breaks the squashfs test:
Filesystem uses "lz4" compression. This is not supported
List of all partitions:
1f00 131072 mtdblock0
(driver?)
1f01 32768 mtdblock1
(driver?)
b300 2048 mmcblk0
driver: mmcblk
No filesystem could mount root, tried:
squashfs
Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(179,0)
Updating the kernel again is a little bit cumbersome, while fixing the
actual test is relatively trivial, so this is what we do: we switch
over to lzo, which is supported by the new kernel:
# zcat /proc/config.gz |grep SQUA
CONFIG_SQUASHFS=y
CONFIG_SQUASHFS_ZLIB=y
# CONFIG_SQUASHFS_LZ4 is not set
CONFIG_SQUASHFS_LZO=y
# CONFIG_SQUASHFS_XZ is not set
While at it, also drop the superfluous line disabling gzip compression:
it is part of a choice, so enabling one (lzo here) forcibly disables the
others (of which gzip).
Fixes: 3cf2782906d5cc05a3966c25518d2ce01f11afc8
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Reviewed-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Yann E. MORIN [Sat, 26 Jun 2021 20:11:07 +0000 (22:11 +0200)]
boot/arm-trusted-firmware: fix coding-style
Fix coding style issue introduced in
cf176128ec4a (boot/arm-trusted-firmware:
add SSP option)
Fixes: cf176128ec4ad60c29c8828cab1887f69edb9473
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 20:25:46 +0000 (22:25 +0200)]
support/testing/tests/fs/test_ext: add missing "format" option for Qemu
Will avoid the following warning:
WARNING: Image format was not specified for
'/home/thomas/projets/outputs/TestExt3/images/rootfs.ext3' and
probing guessed raw. Automatically detecting the format is
dangerous for raw images, write operations on block 0 will be
restricted. Specify the 'raw' format explicitly to remove the
restrictions.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 20:25:45 +0000 (22:25 +0200)]
support/testing/tests: fix tests to use infra.img_round_power2()
All the tests that are using if=sd as a Qemu options are changed to
use infra.img_round_power2() instead of simply extending the size of
the image to the next MB boundary, which is not longer sufficient with
Qemu >= 5.1.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[yann.morin.1998@free.fr: drop now-useless imports]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 20:25:44 +0000 (22:25 +0200)]
support/testing/infra: add img_round_power2() function
Since Qemu 5.1, SD card images must have a size that are a power of
two. While some filesystem (such as ext2/3/4) allow to specify the
expected size of the filesystem, others such as SquashFS do not have
this capability.
We were already extending the size of such images to the next 1 MB
boundary using "truncate -s %1M", but that is no longer sufficient. So
instead, we introduce a helper function that extends the size of an
image to the next power of two.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[yann.morin.1998@free.fr:
- use f.trunctate() rather than subprocess.call([truncate,...])
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 20:25:43 +0000 (22:25 +0200)]
support/testing/tests/fs/test_ext: specify 16 MB as ext filesystem size
Since Qemu 5.1, the SD card size must be a power of two, so the
default size for ext2/3/4 filesystem images of 60 MB is not
suitable. Since 16 MB is used for the Ext4 test, let's use the same
value for the other tests as well (ext2, ext2r1, ext3). Without this
change, the ext2, ext2r1 and ext3 simply fail to run under Qemu >=
5.1.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Sat, 26 Jun 2021 13:32:38 +0000 (15:32 +0200)]
support/testing: use .assertRunOk() when possible
The BRTest() class implements an assertRunOk() method that does the
very common work of running a command inside the emulator, and
checking that it is successful.
This commit changes all locations where this .assertRunOk() method can
be used, instead of open-coding the same logic.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Sergey Matyukevich [Fri, 25 Jun 2021 19:33:18 +0000 (22:33 +0300)]
configs/orangepi-zero-plus2: bump BSP versions
Bump U-Boot and Linux kernel versions. Updating U-Boot to 2021.04
requires the following two changes.
First, after switching to binman, u-boot.itb is no more generated for
64-bit sunxi boards. Combined u-boot-sunxi-with-spl.bin image should
be used instead. This image contains SPL, U-Boot, and FIT image,
where FIT image contains other binaries such as BL31 and SCP.
Second, new U-Boot enables support for System Control Processor (SCP)
firmware. SCP firmware is included by default into FIT image in the
combined u-boot-sunxi-with-spl.bin binary. When SCP is not available
or not needed, it should be explicitly disabled by pointing to an
empty file. Support for Allwinner SCP firmware is not yet available
neither in Buildroot nor in mainline kernel. So disable it for now
using custom U-Boot build options.
Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Sergey Matyukevich [Fri, 25 Jun 2021 19:33:17 +0000 (22:33 +0300)]
configs/orangepi_zero_plus2_defconfig: switch to mainline TF-A
Switch to mainline TF-A that provides basic support for H5 and A64.
Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Sergey Matyukevich [Fri, 25 Jun 2021 19:33:16 +0000 (22:33 +0300)]
support/testing/tests/boot/test_atf: update U-Boot in TestATFAllwinner
Bump U-Boot version in TestATFAllwinner. Updating U-Boot version to
2021.04 requires the following two changes.
First, after switching to binman, u-boot.itb is no more generated for
64-bit sunxi boards. Combined u-boot-sunxi-with-spl.bin image should
be used instead. This image contains SPL, U-Boot, and FIT image,
where FIT image contains other binaries such as BL31 and SCP.
Second, new U-Boot enables support for System Control Processor (SCP)
firmware. SCP firmware is included by default into FIT image in the
combined u-boot-sunxi-with-spl.bin binary. When SCP is not available
or not needed, it should be explicitly disabled by pointing to an
empty file. Support for Allwinner SCP firmware is not yet available
neither in Buildroot nor in mainline kernel. So disable it for now
using custom U-Boot build options.
Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Sergey Matyukevich [Fri, 25 Jun 2021 19:33:15 +0000 (22:33 +0300)]
support/testing: switch TestATFAllwinner to mainline TF-A
Switch to mainline TF-A that provides basic support for H5 and A64.
Note that Allwinner platform layer in TF-A does not provide support
for GCC stack protection, so make sure to disable this TF-A feature.
Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Sergey Matyukevich [Fri, 25 Jun 2021 19:33:14 +0000 (22:33 +0300)]
boot/arm-trusted-firmware: add SSP option
Buildroot sets appropriate ENABLE_STACK_PROTECTOR build flag value based
on the toolchain global BR2_SSP_* options, and all packages are built
with that setting.
However it might not be always convenient to automatically infer TF-A
stack protection from the toolchain features. For instance, secure
memory constraints may become an issue and all the extra TF-A features
need to be tuned or disabled in order to shrink TF-A firmware image.
Besides, for any value other than "none", TF-A platform specific hook
'plat_get_stack_protector_canary' must be implemented. However this hook
is not implemented by all the platforms supported by TF-A. For instance,
Allwinner currently does not provide such a hook.
Add an new option that a user can toggle to enable or disable SSP in
their ATF build. If enabled, the SSP level is automatically inherited
from the global setting.
Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
[yann.morin.1998@free.fr: simplify logic with a single boolean]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
José Luis Salvador Rufo [Thu, 24 Jun 2021 09:56:35 +0000 (11:56 +0200)]
package/zfs: bump version to 2.0.5
As this version brings support for kernel up to 5.12, we update the
test cases to use the 5.12 kernel.
Signed-off-by: José Luis Salvador Rufo <salvador.joseluis@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Michael Fischer [Thu, 24 Jun 2021 09:17:46 +0000 (11:17 +0200)]
package/modem-manager: bump version to 1.16.6
Signed-off-by: Michael Fischer <mf@go-sys.de>
Reviewed-by: Alexander Dahl <post@lespocky.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Michael Fischer [Thu, 24 Jun 2021 09:12:48 +0000 (11:12 +0200)]
package/libqmi: bump version to 1.28.6
Signed-off-by: Michael Fischer <mf@go-sys.de>
Reviewed-by: Alexander Dahl <post@lespocky.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Michael Fischer [Thu, 24 Jun 2021 09:04:05 +0000 (11:04 +0200)]
package/busybox: bump version to 1.33.1
patch 0003: already applied upstream
patch 0004: already applied upstream
Signed-off-by: Michael Fischer <mf@go-sys.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Wed, 23 Jun 2021 16:59:24 +0000 (18:59 +0200)]
package/usbguard: fix build with libgcrypt
Building with libgcrypt fails since the addition of the package in
commit
fbff7d7289cc95db991184f890f4ca1fcf8a101e:
checking for sparc64-buildroot-linux-gnu-libgcrypt-config... no
checking for libgcrypt-config... no
checking for LIBGCRYPT - version >= 1.5.0... no
configure: error: The selected crypto backend library is not available.
Fix this build failure by helping usbguard to find libgcrypt-config
Fixes:
- http://autobuild.buildroot.org/results/
4c19e50a2a5308cb31a62f1b4b538a30353022bb
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Fabrice Fontaine [Wed, 23 Jun 2021 16:59:23 +0000 (18:59 +0200)]
package/usbguard: improve option handling
Don't pass --disable-seccomp and --disable-systemd unconditionally
While at it, also add a space and a new line when needed, and split
the initial CONF_OPTS assignment to have one option per line.
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Andreas Naumann [Thu, 24 Jun 2021 12:32:37 +0000 (14:32 +0200)]
package/gesftpserver: fix build without Python
The build of gesftserver in an environment without Python fails with:
checking for Python 2.4 or better... configure: error: cannot find Python 2.4 or better
However, it turns out that Python is only needed for tests, which we
don't run/use in Buildroot, so we can safely build gesftpserver
without Python.
Signed-off-by: Andreas Naumann <anaumann@ultratronik.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Baruch Siach [Thu, 24 Jun 2021 10:55:35 +0000 (13:55 +0300)]
package/tcpdump: bump to version 4.99.1
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Baruch Siach [Thu, 24 Jun 2021 10:55:34 +0000 (13:55 +0300)]
package/libpcap: bump to version 1.10.1
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Ryan Barnett [Thu, 24 Jun 2021 14:08:13 +0000 (09:08 -0500)]
package/resiprocate: enable DES in openssl
resiprocate security backend assumes that if openssl is enabled that
it provides DES support. However DES support in openssl has become
optional since commit
a83d418 ("package/libopenssl: add option to
enable some features").
Select openssl DES support in wpa_supplicant Kconfig to avoid build
failures.
Fixes:
http://autobuild.buildroot.net/results/
f7def0d5706f9e6ab97accc4eaa5f512a11bcb4c
Signed-off-by: Ryan Barnett <ryan.barnett@collins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Fri, 25 Jun 2021 06:07:25 +0000 (08:07 +0200)]
package/libva: bump version to 2.12.0
Release notes: https://github.com/intel/libva/blob/master/NEWS
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Bernd Kuhls [Fri, 25 Jun 2021 06:07:24 +0000 (08:07 +0200)]
package/libva-utils: bump version to 2.12.0
Release notes: https://github.com/intel/libva-utils/blob/master/NEWS
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Thomas Petazzoni [Mon, 21 Jun 2021 21:01:10 +0000 (23:01 +0200)]
support/testing/tests/package/test_bmap_tools: add test for host bmap-tools
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[yann.morin.1998@free.fr: check the two files are identical]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Nicolas Carrier [Mon, 21 Jun 2021 21:01:09 +0000 (23:01 +0200)]
support/testing/tests/package/test_bmap_tools: new test
This patch implements a simple test in which a dummy file system image
is created, then `bmaptool create` and `bmaptool copy` are used to copy
it to another file.
Signed-off-by: Nicolas Carrier <nicolas.carrier@orolia.com>
[Thomas: several reworks, add myself to DEVELOPERS]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[yann.morin.1998@free.fr: check the two files are identical]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 21:01:08 +0000 (23:01 +0200)]
support/testing/infra/emulator.py: update pre-built kernels
The pre-built vexpress kernel used by the testing infrastructure is a
4.0.0 kernel, which is getting old to be used with reasonably recent
toolchains.
This commit updates the pre-built kernels for both the versatile and
vexpress machines to 5.10.7 (they have already been put online).
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 21:01:07 +0000 (23:01 +0200)]
package/bmap-tools: enable host package
bmaptool allows to drastically reduce the amount of data to transfer
when writing to an SD card. Example with a 544 MiB sdcard.img:
$ bmaptool create sdcard.img > sdcard.bmap
$ gzip sdcard.img
$ bmaptool copy sdcard.img.gz /dev/sdc
bmaptool: info: discovered bmap file 'sdcard.bmap'
bmaptool: info: block map format version 2.0
bmaptool: info: 139265 blocks of size 4096 (544.0 MiB), mapped 23918 blocks (93.4 MiB or 17.2%)
bmaptool: info: copying image 'sdcard.img.gz' to block device '/dev/sdc' using bmap file 'sdcard.bmap'
bmaptool: info: 100% copied
bmaptool: info: synchronizing '/dev/sdc'
bmaptool: info: copying time: 7.7s, copying speed 12.1 MiB/sec
So it means that instead of writing 544 MiB, only 93.4 MiB had to be
written.
In terms of implementation details, compared to the target bmap-tools
package, there are fewer "selects" that are needed because:
- The dependency on setuptools is not needed, because the package
uses the setuptools SETUP_TYPE, so host-python-setuptools is
already a build dependency.
- host-python and host-python3 are always built with Expat XML
support.
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Nicolas Carrier [Mon, 21 Jun 2021 21:01:06 +0000 (23:01 +0200)]
package/bmap-tools: new package
Signed-off-by: Nicolas Carrier <nicolas.carrier@orolia.com>
[Thomas: numerous reworks, add myself in DEVELOPERS]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 21:08:19 +0000 (23:08 +0200)]
support/config-fragments/autobuild/br-arm-internal-glibc: update to bleeding edge components
The br-arm-internal-glibc.config is generally used as a configuration
to test the bleeding edge versions of components. However, it has been
lagging behind somewhat, so let's bring it up-to-date:
- Binutils 2.36.x
- GCC 11.x
Let the fun begin in the autobuilders!
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 20:34:55 +0000 (22:34 +0200)]
support/testing/tests/package/test_python_augeas: new test
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Thomas Petazzoni [Mon, 21 Jun 2021 20:34:54 +0000 (22:34 +0200)]
package/python-augeas: new package
We backport an upstream patch that fixes the loading of the native
library by the FFI logic. Without this, "import augeas" doesn't work
as it goes into the ctypes.utils.find_library() logic that tries to
use a compiler on the target to find the augeas native library.
Based on initial work from Nicolas Carrier <nicolas.carrier@orolia.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Hubert Lacote [Tue, 15 Jun 2021 14:03:02 +0000 (16:03 +0200)]
package/gawk: create awk symlink for host-gawk
This is to make sure that host packages that depend on `host-gawk` and that use
`awk` end up using `gawk`, instead of the `awk` symlink installed on the host
system.
On recent Debian-based distributions, `awk` is still symlinked to `mawk` [1].
[1] https://bugs.launchpad.net/ubuntu/+source/mawk/+bug/
1841654
Signed-off-by: Hubert Lacote <hubert.lacote@youview.com>
Co-authored-by: Hubert Lacote <hubert.lacote@youview.com>
Co-authored-by: Vicente Olivert Riera <vincent.olivert.riera@youview.com>
[yann.morin.1998@free.fr: move after the target symlink hook]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
James Hilliard [Wed, 16 Jun 2021 20:17:11 +0000 (14:17 -0600)]
package/weston: disable -NDEBUG
Per upstream -NDEBUG should not be set for any builds:
https://gitlab.freedesktop.org/wayland/weston/-/merge_requests/643#note_958356
Fixes:
http://autobuild.buildroot.net/results/f42/
f420890de1b52786f8cf5f2922b69c909162eaa1/
Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Bernd Kuhls [Sun, 20 Jun 2021 09:02:08 +0000 (11:02 +0200)]
package/tor: bump version to 0.4.6.5
Release notes: https://blog.torproject.org/node/2041
Added upstream patch to fix compilation with older compilers.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 20 Jun 2021 09:02:07 +0000 (11:02 +0200)]
package/tor: security bump version to 0.4.5.9
Release notes: https://blog.torproject.org/node/2041
Fixes CVE-2021-34548 (TROVE-2021-003), TROVE-2021-004, CVE-2021-34549
(TROVE-2021-005) & CVE-2021-34550 (TROVE-2021-006).
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 20 Jun 2021 09:30:46 +0000 (11:30 +0200)]
package/php: bump version to 7.4.20
Changelog: https://www.php.net/ChangeLog-7.php#7.4.20
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Sun, 20 Jun 2021 09:14:51 +0000 (11:14 +0200)]
package/openvpn: bump version to 2.5.3
Release note:
https://forums.openvpn.net/viewtopic.php?f=20&t=32497
CVE-2021-3606 fixed by this release is only relevant for Windows.
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Peter Korsgaard [Tue, 22 Jun 2021 08:42:43 +0000 (10:42 +0200)]
configs/stm32f469_disco: add host {dosfs, m}tools
Commit
04a0094f0ef077 (configs/stm32f469_disco: fix kernel bootup) changed
the defconfig to build a vfat image, but forgot to add dosfstools/mtools
host utilities needed for this.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Titouan Christophe [Thu, 17 Jun 2021 21:24:59 +0000 (23:24 +0200)]
package/redis: security bump to v6.2.4
From the release notes:
================================================================================
Redis 6.2.4 Released Tue July 1 12:00:00 IST 2021
================================================================================
Upgrade urgency: SECURITY, Contains fixes to security issues that affect
authenticated client connections. MODERATE otherwise.
Fix integer overflow in STRALGO LCS (CVE-2021-32625)
Read the whole release note on:
https://github.com/redis/redis/blob/6.2.4/00-RELEASENOTES
Signed-off-by: Titouan Christophe <titouanchristophe@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Titouan Christophe [Mon, 21 Jun 2021 08:53:07 +0000 (10:53 +0200)]
package/mosquitto: security bump to v2.0.11
Versions 2.0.11 and 1.6.15 of Mosquitto has been released.
These are a security and bugfix releases.
Read the full announcement on the blog:
https://mosquitto.org/blog/2021/06/version-2-0-11-released/
Signed-off-by: Titouan Christophe <titouanchristophe@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Mon, 21 Jun 2021 19:46:53 +0000 (21:46 +0200)]
package/clamav: bump version to 0.103.3
Release notes:
https://blog.clamav.net/2021/06/clamav-01033-patch-release.html
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Mon, 21 Jun 2021 19:42:31 +0000 (21:42 +0200)]
package/dovecot-pigeonhole: security bump version to 0.5.15
Fixes CVE-2020-28200:
https://dovecot.org/pipermail/dovecot-news/2021-June/000460.html
Release notes:
https://dovecot.org/pipermail/dovecot-news/2021-June/000458.html
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Bernd Kuhls [Mon, 21 Jun 2021 19:42:30 +0000 (21:42 +0200)]
package/dovecot: security bump version to 2.3.15
Fixes several security bugs:
CVE-2021-29157
- https://dovecot.org/pipermail/dovecot-news/2021-June/000461.html
CVE-2021-33515
- https://dovecot.org/pipermail/dovecot-news/2021-June/000462.html
Release notes:
https://dovecot.org/pipermail/dovecot-news/2021-June/000457.html
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Mon, 21 Jun 2021 19:28:00 +0000 (21:28 +0200)]
package/python-django: security bump to version 3.2.4
Django 3.2.4 fixes two security issues and several bugs in 3.2.3.
- CVE-2021-33203: Potential directory traversal via ``admindocs``
- CVE-2021-33571: Possible indeterminate SSRF, RFI, and LFI attacks
since validators accepted leading zeros in IPv4 addresses
https://github.com/django/django/blob/3.2.4/docs/releases/3.2.4.txt
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Fabrice Fontaine [Wed, 16 Jun 2021 05:48:29 +0000 (07:48 +0200)]
package/exiv2: security bump to version 0.27.4
Fix 12 security issues including CVE-2021-3482, CVE-2021-29457,
CVE-2021-29458, CVE-2021-29463, CVE-2021-29464, CVE-2021-29470,
CVE-2021-29473, CVE-2021-29623 and CVE-2021-32617
- Use official tarball
- Drop patch (already in version)
- Update indentation in hash file (two spaces)
https://github.com/Exiv2/exiv2/releases/tag/v0.27.4
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>