buildroot.git
6 years agolibgit2: fix build with LibreSSL 2.7
Nicolas Cavallari [Fri, 1 Jun 2018 15:42:00 +0000 (17:42 +0200)]
libgit2: fix build with LibreSSL 2.7

By using a patch from upstream's master branch.

Signed-off-by: Nicolas Cavallari <nicolas.cavallari@green-communications.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibgit2: bump version to 0.27.1
Nicolas Cavallari [Fri, 1 Jun 2018 15:41:59 +0000 (17:41 +0200)]
libgit2: bump version to 0.27.1

Fixes a security vulnerability similar to git's CVE-2018-11235

This release changes some configuration options, so tweak them
accordingly.

Signed-off-by: Nicolas Cavallari <nicolas.cavallari@green-communications.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibgit2: do not use a bundled zlib
Nicolas Cavallari [Fri, 1 Jun 2018 15:41:58 +0000 (17:41 +0200)]
libgit2: do not use a bundled zlib

libgit2 depends on zlib. If libgit2's build system does not find a
system zlib, then it compiles a bundled version of it, which is not
really great. So instead, add zlib as a mandatory dependency.

Signed-off-by: Nicolas Cavallari <nicolas.cavallari@green-communications.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/mx53loco: Bump to 4.17 kernel
Fabio Estevam [Mon, 4 Jun 2018 12:48:28 +0000 (09:48 -0300)]
configs/mx53loco: Bump to 4.17 kernel

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolinux: bump default to version 4.17
Fabio Estevam [Mon, 4 Jun 2018 12:48:27 +0000 (09:48 -0300)]
linux: bump default to version 4.17

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolinux-headers: bump to 4.17 kernel version
Fabio Estevam [Mon, 4 Jun 2018 12:48:26 +0000 (09:48 -0300)]
linux-headers: bump to 4.17 kernel version

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain: add 4.17.x choice for headers
Fabio Estevam [Mon, 4 Jun 2018 12:48:25 +0000 (09:48 -0300)]
toolchain: add 4.17.x choice for headers

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoshadowsocks-libev: new package
Min Xu [Mon, 4 Jun 2018 07:16:26 +0000 (00:16 -0700)]
shadowsocks-libev: new package

Shadowsocks-libev is a lightweight secured SOCKS5 proxy for
embedded devices and low-end boxes.

https://github.com/shadowsocks/shadowsocks-libev

Signed-off-by: Min Xu <xuminready@gmail.com>
[Thomas:
 - drop patch adding license file for libipset
 - drop --disable-documentation, it's passed by autotools-package
 - add entry in DEVELOPERS file
 - pass --disable-ssp because the SSP check uses AC_COMPILE_IFELSE()
   so with some toolchains, it think SSP support is available, while
   it's not. And anyway we want SSP to be controlled by Buildroot
   global options, not on a per-package basis.
 - add depends on BR2_USE_MMU, because the code uses fork().]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodl-wrapper: Fix support for URIs containing '+'
Robert Beckett [Mon, 4 Jun 2018 13:32:30 +0000 (14:32 +0100)]
dl-wrapper: Fix support for URIs containing '+'

'+' is a valid character in a url. The current dl-wrapper gets the
URI scheme by dropping everything after the last '+' character, with
the intension of finding 'git' from e.g. 'git+https://uri'.

If a uri has a '+' anywhere in it, it ends up using too much of the
string as a scheme, and fails to match the handler properly.

An example of where this form of URI is used is when using deploy tokens
in gitlab. It uses a form like https://<username>:<password>@gitlab.com/<group>/<repo.git>
where username for deploy token is of the form 'gitlab+deploy-token-<number>'.

Use the %% operator to search backwards until the last '+' character when
dropping the rest of the string as we know that the first '+'
in the string should be the scheme.

Signed-off-by: Robert Beckett <bbeckett@netvu.org.uk>
Acked-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agowireshark: security bump to version 2.2.15
Peter Korsgaard [Sun, 3 Jun 2018 21:31:00 +0000 (23:31 +0200)]
wireshark: security bump to version 2.2.15

Fixes the following security issues:

CVE-2018-11362: LDSS dissector crash
https://www.wireshark.org/security/wnpa-sec-2018-25.html

CVE-2018-11357: Multiple dissectors could consume excessive memory
https://www.wireshark.org/security/wnpa-sec-2018-28.html

CVE-2018-11356: DNS dissector crash
https://www.wireshark.org/security/wnpa-sec-2018-29.html

CVE-2018-11360: GSM A DTAP dissector crash
https://www.wireshark.org/security/wnpa-sec-2018-30.html

CVE-2018-11358: Q.931 dissector crash
https://www.wireshark.org/security/wnpa-sec-2018-31.html

CVE-2018-11359: Multiple dissectors could crash
https://www.wireshark.org/security/wnpa-sec-2018-33.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add myself to some packages
Fabrice Fontaine [Sun, 3 Jun 2018 19:19:31 +0000 (21:19 +0200)]
DEVELOPERS: add myself to some packages

Add my entry to cairo, liboping, libpfm4, libraw, libraw1394, libroxml,
librsvg, librsync, mbedtls and oprofile

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibnss: fix build without int128
Fabrice Fontaine [Mon, 4 Jun 2018 17:09:26 +0000 (19:09 +0200)]
libnss: fix build without int128

Patch retrieved from upstream, more info here:
https://bugzilla.mozilla.org/show_bug.cgi?format=default&id=1459739

Fixes:
 - http://autobuild.buildroot.net/results/093113829d7ce19d578a920e76caa10822774139

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agophp-amqp: needs openssl support in rabbitmq-c
Fabrice Fontaine [Mon, 4 Jun 2018 17:03:29 +0000 (19:03 +0200)]
php-amqp: needs openssl support in rabbitmq-c

Since version 1.8.0, php-amqp needs a rabbitmq-c with openssl support:
https://github.com/pdezwart/php-amqp/issues/310

SSL support is disabled in rabbitmq-c if BR2_STATIC_LIBS is set however
don't add an unneeded !BR2_STATIC_LIBS dependency in Config.in as all
PHP External Extensions depends on !BR2_STATIC_LIBS
(see package/Config.in)

Fixes:
 - http://autobuild.buildroot.net/results/b7c89bbbd0ca1df08dd7cbfc90c7b45dcf1fad05

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibroxml: bump to version 3.0.1
Fabrice Fontaine [Wed, 30 May 2018 21:42:24 +0000 (23:42 +0200)]
libroxml: bump to version 3.0.1

Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibraw1394: bump to version 2.1.2
Fabrice Fontaine [Wed, 30 May 2018 20:22:11 +0000 (22:22 +0200)]
libraw1394: bump to version 2.1.2

- Remove patches (already in version)
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibraw: bump to version 0.18.11
Fabrice Fontaine [Wed, 30 May 2018 20:05:19 +0000 (22:05 +0200)]
libraw: bump to version 0.18.11

- Remove all patches (already in version)
- Since version 0.18 (2016-12-07), there is no
  'LibRaw Software License 27032010' licensing anymore (and all signed
  agreements have expired). LibRaw is now dual-licensed: LGPL 2.1 or
  CDDL 1.0
- Add hash for license files

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agosupport/docker: run apt-get update and apt-get install in two RUNs
Yann E. MORIN [Sun, 3 Jun 2018 09:08:18 +0000 (11:08 +0200)]
support/docker: run apt-get update and apt-get install in two RUNs

In commit 7517aef4d (support/docker: limit the number of layers),
we reduced the number of layers by coalescing multiple RUN commands
into less commands.

In doing so, we especially coalesced "apt-get update" with "apt-get
install".

However, the distribution we used is a pinned version of stretch, so
we know that running apt-get update will always yield the same apt
database.

If we split the two apt-get commands, then we can re-use any local
intermediate image when we need to update the list of packages to
install; this helps quite a bit when testing the docker files over
and over again, with just slight variants in the packages list.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Ricardo Martincoski <ricardo.martincoski@gmail.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Reviewed-by: Ricardo Martincoski <ricardo.martincoski@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibrtas: bump to version 2.0.1
Fabrice Fontaine [Sat, 2 Jun 2018 14:43:15 +0000 (16:43 +0200)]
librtas: bump to version 2.0.1

- Switch site to github
- Move to autotools infrastructure
- Remove patch (not needed anymore)
- Since version 1.4 (January 2016), license is now LGPL-2.1+
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: update my e-mail address
Zoltan Gyarmati [Sat, 2 Jun 2018 21:11:13 +0000 (23:11 +0200)]
DEVELOPERS: update my e-mail address

Signed-off-by: Zoltan Gyarmati <zgyarmati@zgyarmati.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agozmqpp: depends on exception_ptr
Fabrice Fontaine [Sun, 3 Jun 2018 10:11:14 +0000 (12:11 +0200)]
zmqpp: depends on exception_ptr

Fixes:
 - http://autobuild.buildroot.net/results/20475346bfcb0cff019ad2e98a0e0ab432a6e5bf

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/mesa3d: update patents.txt file hash
Romain Naour [Sun, 3 Jun 2018 15:00:25 +0000 (17:00 +0200)]
package/mesa3d: update patents.txt file hash

Google patent url has been updated with 18.1 mesa3d release [1].

Fixes:
http://autobuild.buildroot.net/results/00f/00fd8fbc1e89a29b60ed9c6906035dbe4f0a3eb8

[1] https://cgit.freedesktop.org/mesa/mesa/commit/?id=ac731531a1e43e4fa3e10099380a3bba68d65bfd

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agocifs-utils: disable man page generation
Baruch Siach [Sun, 3 Jun 2018 17:28:24 +0000 (20:28 +0300)]
cifs-utils: disable man page generation

Buildroot does not generate documentation for target.

This fixes the build on hosts where the rst2man command does not support
the --syntax-highlight parameter.

Fixes:
http://autobuild.buildroot.net/results/265/2655c0e1fa3ad0a10b4aed39a17feead94e47bfb/
http://autobuild.buildroot.net/results/92d/92d7c608f717bbfe01ecfb9bc9604cb303d8594c/
http://autobuild.buildroot.net/results/4b9/4b95404a89a595ca9c1e3df912169e9d36ff2bd7/

Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibrtlsdr: fix static build
Fabrice Fontaine [Sun, 3 Jun 2018 14:17:51 +0000 (16:17 +0200)]
librtlsdr: fix static build

When bumping to version 0.5.4, first patch was wrongly removed.
Put back an enhanced version of this patch (sent upstream)

Fixes:
 - http://autobuild.buildroot.net/results/bea78bf580be6fe109b827b72af9587c5324daad

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agomonit: bump to version 5.25.2
Asaf Kahlon [Sat, 2 Jun 2018 18:16:59 +0000 (21:16 +0300)]
monit: bump to version 5.25.2

Bump the version and add hash for COPYING

Signed-off-by: Asaf Kahlon <asafka7@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolxc: bump to version 3.0.1
Fabrice Fontaine [Sat, 2 Jun 2018 18:16:31 +0000 (20:16 +0200)]
lxc: bump to version 3.0.1

Remove both patches (already in version)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoaircrack-ng: fix build on powerpc64 with libgcrypt
Fabrice Fontaine [Sat, 2 Jun 2018 19:30:08 +0000 (21:30 +0200)]
aircrack-ng: fix build on powerpc64 with libgcrypt

Retrieved patch from upstream:
https://github.com/aircrack-ng/aircrack-ng/issues/1874

Fixes:
 - http://autobuild.buildroot.net/results/3d92343342b51e710765866d6dd9383d26ba98e7

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/{mesa3d, mesa3d-headers}: bump version to 18.1.1
Romain Naour [Sat, 2 Jun 2018 16:15:04 +0000 (18:15 +0200)]
package/{mesa3d, mesa3d-headers}: bump version to 18.1.1

Rebase the two patches on 18.1.1.
Convert 0001-musl.patch to git patch.

See:
https://lists.freedesktop.org/archives/mesa-dev/2018-June/196523.html

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/mesa3d: fix typo in file hash
Romain Naour [Sat, 2 Jun 2018 16:15:03 +0000 (18:15 +0200)]
package/mesa3d: fix typo in file hash

Fix typo introduced with the bump to 18.0.4.

Commit f18ca0e7bb0e522846296139cdf0f8039d7dca1c

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoqemu: update defconfigs to Linux 4.16.7
Waldemar Brodkorb [Sat, 2 Jun 2018 20:07:20 +0000 (22:07 +0200)]
qemu: update defconfigs to Linux 4.16.7

All linux configs are renamed to a version neutral filename
to avoid further renaming on kernel bumps.

Defconfig               Kernel  Qemu            Network Status
--------------------------------------------------------------
aarch64_virt            4.16.7   2.12.0           YES     OK
arm_versatile           4.16.7   2.12.0           YES     OK
arm_versatile_nommu     4.16.7   2.12.0           YES     OK (3)
arm_vexpress            4.16.7   2.12.0           YES     OK
m68k_mcf5208            4.16.7   2.12.0           YES     OK
m68k_q800               4.16.7   q800-v2.11.0     NO (2)  OK
microblazebe            4.16.7   2.12.0           YES     OK
microblazeel            4.16.7   2.12.0           YES     OK
mips32r2el_malta        4.16.7   2.12.0           YES     OK
mips32r2_malta          4.16.7   2.12.0           YES     OK
mips32r6el_malta        4.16.7   2.12.0           YES     OK
mips32r6_malta          4.16.7   2.12.0           YES     OK
mips64el_malta          4.16.7   2.12.0           YES     OK
mips64_malta            4.16.7   2.12.0           YES     OK
mips64r6el_malta        4.16.7   2.12.0           YES     OK
mips64r6_malta          4.16.7   2.12.0           YES     OK
nios2-10m50             4.16.7   2.12.0           NO      OK
or1k                    4.16.7   2.12.0           NO      OK
ppc_g3beige             4.16.7   2.12.0           YES     OK
ppc_mpc8544ds           4.16.7   2.12.0           YES     OK
ppc_virtex_ml507        4.16.7   2.12.0           NO      OK
ppc64_pseries           4.16.7   2.12.0           YES     OK
ppc64le_pseries         4.16.7   2.12.0           YES     OK
ppc64_e5500             4.16.7   2.12.0           YES     OK
sh4                     4.16.7   2.12.0           YES     OK
sh4eb                   4.16.7   2.12.0           NO (1)  OK
sparc_ss10              4.16.7   2.12.0           YES     OK
sparc64_sun4u           4.16.7   2.12.0           YES     OK
x86                     4.16.7   2.12.0           YES     OK
x86_64                  4.16.7   2.12.0           YES     OK
xtensa_lx60             4.16.7   2.12.0           YES     OK
xtensa_lx60_nommu       4.16.7   2.12.0           YES     OK

(1) - Probably an endian issue with 8139 emulation/driver
(2) - There's a network interface, but enabling it in qemu fails
(3) - Kernel patch required, switched to devicetree usage

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibnss: remove upstream patch
Baruch Siach [Sat, 2 Jun 2018 19:52:20 +0000 (22:52 +0300)]
libnss: remove upstream patch

The merge of the next branch failed to remove an upstream applied patch.

Fixes:
http://autobuild.buildroot.net/results/31f/31fe428584ada680f30d11e5d1abfbc533c0a70e/
http://autobuild.buildroot.net/results/bb2/bb25363497dfd7fd5f8a81c28110fab87d5c2dc8/
http://autobuild.buildroot.net/results/70a/70adacf85154d2a663808cf0db69849b6a490457/

Cc: Joseph Kogut <joseph.kogut@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibrsync: bump to version 2.0.2
Fabrice Fontaine [Sat, 2 Jun 2018 10:34:01 +0000 (12:34 +0200)]
librsync: bump to version 2.0.2

- Remove patch (already in version)
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agodash: bump to version 0.5.10.2
Baruch Siach [Fri, 1 Jun 2018 12:03:48 +0000 (15:03 +0300)]
dash: bump to version 0.5.10.2

Drop upstream patch.

Add license file hash.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoipset: bump to version 6.38
Baruch Siach [Fri, 1 Jun 2018 11:44:38 +0000 (14:44 +0300)]
ipset: bump to version 6.38

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agosysstat: bump to version 11.6.3
Baruch Siach [Fri, 1 Jun 2018 08:06:44 +0000 (11:06 +0300)]
sysstat: bump to version 11.6.3

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agocairo: bump to version 1.15.12
Fabrice Fontaine [Fri, 1 Jun 2018 20:29:51 +0000 (22:29 +0200)]
cairo: bump to version 1.15.12

- Remove second patch (LTO support removed since 1.14.0 in August 2014:
  https://cgit.freedesktop.org/cairo/commit/?id=c7ff9bb32e20679d6da4e8a2856be716e5bd9e12
- Add hash for license files

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoperl-libwww-perl: fix SITE
Francois Perrad [Fri, 1 Jun 2018 16:24:38 +0000 (18:24 +0200)]
perl-libwww-perl: fix SITE

Fixes:
http://autobuild.buildroot.net/results/6f7745010ca589876a24d522bc0cb4a0dca26768/

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoMerge branch 'next'
Peter Korsgaard [Sat, 2 Jun 2018 09:21:20 +0000 (11:21 +0200)]
Merge branch 'next'

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoKickoff 2018.08 cycle
Peter Korsgaard [Sat, 2 Jun 2018 09:11:56 +0000 (11:11 +0200)]
Kickoff 2018.08 cycle

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agodocs/website/news.html: add 2018.05 announcement link
Peter Korsgaard [Fri, 1 Jun 2018 20:53:36 +0000 (22:53 +0200)]
docs/website/news.html: add 2018.05 announcement link

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoUpdate for 2018.05
Peter Korsgaard [Fri, 1 Jun 2018 20:22:57 +0000 (22:22 +0200)]
Update for 2018.05

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolinux: reword binutils 2.29+ comment
Peter Korsgaard [Fri, 1 Jun 2018 19:43:06 +0000 (21:43 +0200)]
linux: reword binutils 2.29+ comment

This issue only applies to kernels built with CONFIG_THUMB2=y, so reword the
comment to make that more clear.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolinux: may fail to boot for binutils 2.29+ even without armv7m
Yann E. MORIN [Fri, 1 Jun 2018 18:01:57 +0000 (20:01 +0200)]
linux: may fail to boot for binutils 2.29+ even without armv7m

Commit f13477b (linux: config.in: add comment for Arm Cortex-M) added a
comment so that the user that the linux kernel may miscompile with
binutils 2.29+, when the target is an armv7m CPU.

However, the real trigger is a compilation in thumb2 mode, which happens
to be the only option for armv7m CPUs.

We can't know whether the kernel will be built in arm or thumb2 mode,
though, because we do not have that information: it is only available in
the Linux' .config file, which we don;t have access to at the time we
run our menuconfig.

So, relax the conditions under which the comment is made, so that it
appears as soon as binutils are >= 2.29 (i.e. not 2.28, which is the
oldest we support) for ARM CPUs.

[Peter: reword comment]
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Christophe Priouzeau <christophe.priouzeau@st.com>
Cc: Laurent GONZALEZ <br22@gezedo.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Arnout Vandecappelle <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/binutils: extend the 2.28 default to thumb mode
Yann E. MORIN [Fri, 1 Jun 2018 17:26:29 +0000 (19:26 +0200)]
package/binutils: extend the 2.28 default to thumb mode

Commit 17f352ac (package/binutils: default to 2.29 for Cortex-M targets)
made the default version 2.28 (and not 2.29!) when the target is an
arm-v7m CPU.

However, the real trigger is compilation in Thumb mode, not the fact
that the target is v7m.

The fact that it was noticed on a v7m target is because Thumb is the
only mode valid on those CPUs.

Tighten the defaults to 2.28 for Thumb and Thumb2 modes.

Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Laurent GONZALEZ <br22@gezedo.com>
Cc: Christophe Priouzeau <christophe.priouzeau@st.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Arnout Vandecappelle <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/clang: fix host-clang binaries
Valentin Korenblit [Wed, 30 May 2018 11:46:51 +0000 (13:46 +0200)]
package/clang: fix host-clang binaries

This patch fixes the following error when trying to execute clang compiler
(host-variant):

CommandLine Error: Option 'x86-use-base-pointer' registered more than once!
LLVM ERROR: inconsistency in registered CommandLine options

The same happens for the other binaries, such as clang-format:

./clang-format
: CommandLine Error: Option 'help-list' registered more than once!
LLVM ERROR: inconsistency in registered CommandLine options

Clang binaries are tools, and given that DLLVM_LINK_LLVM_DYLIB is set,
they are linked against libLLVM.so. The problem is that binaries are
also linking against some LLVM static libraries, resulting in the error
shown above. However, it is not the same case for libclang, which is also
a tool but links only against libLLVM.so.

To fix this problem, add LLVM_DYLIB_COMPONENTS=all.

Signed-off-by: Valentin Korenblit <valentin.korenblit@smile.fr>
Tested-by: Joseph Kogut <joseph.kogut@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/socrates_cyclone5: change over to current upstream releases
Florian La Roche [Tue, 8 May 2018 20:28:47 +0000 (22:28 +0200)]
configs/socrates_cyclone5: change over to current upstream releases

Since all cyclone5 development changes are upstream, change over to an
upstream release of the Linux kernel and u-boot for buildroot.

Signed-off-by: Florian La Roche <Florian.LaRoche@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit ef94c736ec460e56b82a5a45819f7adce787d488)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoRevert "configs/stm32f469: force usage of binutils 2.28.x"
Christophe PRIOUZEAU [Thu, 31 May 2018 13:21:33 +0000 (13:21 +0000)]
Revert "configs/stm32f469: force usage of binutils 2.28.x"

This reverts commit 12049cc8b8972a9d0f1e27f1382cc5752d45312f.

Now that the binutils default has been changed for ARMv7M, this is no longer
needed.

Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoRevert "configs/stm32f429: force usage of binutils 2.28.x"
Christophe PRIOUZEAU [Thu, 31 May 2018 13:21:32 +0000 (13:21 +0000)]
Revert "configs/stm32f429: force usage of binutils 2.28.x"

This reverts commit cbe43fd417d77f846f1ca47cdacd51a73be1aaec.

Now that the binutils default has been changed for ARMv7M, this is no longer
needed.

Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolinux: config.in: add comment for Arm Cortex-M
Christophe PRIOUZEAU [Thu, 31 May 2018 13:21:34 +0000 (13:21 +0000)]
linux: config.in: add comment for Arm Cortex-M

When binutils > 2.28 are selected on Arm Cortex-M cpu,
linux kernel does not boot due to a new implementation
of 'adr pseudo instruction' on binutils.

Bugzilla thread: https://bugs.busybox.net/show_bug.cgi?id=11051

Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/binutils: default to 2.29 for Cortex-M targets
Laurent GONZALEZ [Thu, 31 May 2018 13:21:33 +0000 (13:21 +0000)]
package/binutils: default to 2.29 for Cortex-M targets

binutils 2.29 changed the implementation of adr pseudo instruction
it breaks linux kernel and impacts Cortex-M targets (eg. stm32)

[Peter: simplify Config.in logic, adjust message to make it clear this is
just a default]
Signed-off-by: Laurent GONZALEZ <br22@gezedo.com>
Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agojpeg-turbo: add license details
Fabrice Fontaine [Thu, 31 May 2018 17:08:19 +0000 (19:08 +0200)]
jpeg-turbo: add license details

- jpeg-turbo is covered by 3 licenses: IJG (libjpeg),
  BSD-3-Clause (TurboJPEG) and Zlib (SIMD)
- Add README.ijg
- Add hash for license files

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolibjpeg: use SPDX short identifier
Fabrice Fontaine [Thu, 31 May 2018 17:02:12 +0000 (19:02 +0200)]
libjpeg: use SPDX short identifier

Use IJG instead of jpeg-license

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/expect: download tarball instead of cvs
Arnout Vandecappelle (Essensium/Mind) [Thu, 31 May 2018 07:05:20 +0000 (09:05 +0200)]
package/expect: download tarball instead of cvs

More than 3 years after the 5.45.3 release, a tarball for that release
was uploaded to sourceforge.net. The differences between this tarball
and the CVS checkout are minimal:

- There are no CVS directories, of course, but we don't need them.
- File timestamps are different.
- expect.tests is missing, but we don't execute tests anyway.
- configure script is different, but we AUTORECONF anyway.
- 'fixcat' script is missing, but it is not called anywhere.

Since sourceforge.net has broken CVS downloads, now is a good time to
switch away from it.

While we're at it, add a hash file including license.

Fixes:
http://autobuild.buildroot.net/results/db3/db33d4fa507fb3b4132423cd0a7e25a1fe6e4105
http://autobuild.buildroot.net/results/b6d/b6d927dcc73ac8d754422577dacefff4ff918a5c
http://autobuild.buildroot.net/results/23d/23d1034b33d0354de15de2ec4a8ccd0603e8db78
http://autobuild.buildroot.net/results/127/1272a3aa3077e434c9805ec3034f35e6fcc330d4

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Cc: Fabio Porcedda <fabio.porcedda@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agodownload/cvs: add a 10 minute timeout
Arnout Vandecappelle (Essensium/Mind) [Thu, 31 May 2018 07:05:19 +0000 (09:05 +0200)]
download/cvs: add a 10 minute timeout

Apparently, CVS servers can be deadlocked and in that case clients will
retry connecting to them indefinitely. Cfr.
http://autobuild.buildroot.net/results/23d/23d1034b33d0354de15de2ec4a8ccd0603e8db78/build-end.log
Apparently, the sf.net CVS server got in such a deadlock on 2018-05-18,
and almost 2 weeks later it is still not fixed.

Instead of just hanging, we should fall back on BR2_SECONDARY_SITE. To
achieve this, it's sufficient to add a timeout to the CVS command.

The timeout value is of course arbitrary. However, we can assume that
nobody will be putting large projects under CVS any more. So if the
download takes more than 5 minutes, it's probably broken. Let's put the
timeout at 10 minutes then.

Fixes:
http://autobuild.buildroot.net/results/db3/db33d4fa507fb3b4132423cd0a7e25a1fe6e4105
http://autobuild.buildroot.net/results/b6d/b6d927dcc73ac8d754422577dacefff4ff918a5c
http://autobuild.buildroot.net/results/23d/23d1034b33d0354de15de2ec4a8ccd0603e8db78
http://autobuild.buildroot.net/results/127/1272a3aa3077e434c9805ec3034f35e6fcc330d4

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolinux-headers: bump 4.{1, 4, 9, 14, 16}.x series
Fabio Estevam [Wed, 30 May 2018 18:31:58 +0000 (15:31 -0300)]
linux-headers: bump 4.{1, 4, 9, 14, 16}.x series

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoxen: security bump to version 4.10.1
Peter Korsgaard [Wed, 30 May 2018 22:17:13 +0000 (00:17 +0200)]
xen: security bump to version 4.10.1

The 4.10.1 version brings a large number of fixes:

https://www.xenproject.org/downloads/xen-archives/xen-project-410-series/xen-4101.html

Including a number of security fixes:

XSA-252: DoS via non-preemptable L3/L4 pagetable freeing (CVE-2018-7540)
XSA-253: x86: memory leak with MSR emulation (CVE-2018-5244)
XSA-254: Information leak via side effects of speculative execution
 (CVE-2017-5753 CVE-2017-5715 CVE-2017-5754)
XSA-255: grant table v2 -> v1 transition may crash Xen (CVE-2018-7541)
XSA-256: x86 PVH guest without LAPIC may DoS the host (CVE-2018-7542)
XSA-258: Information leak via crafted user-supplied CDROM (CVE-2018-10472)
XSA-259: x86: PV guest may crash Xen with XPTI (CVE-2018-10471)

Also add a hash for the license file while we are at it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/openvmtools: depend on host-nfs-utils
Romain Naour [Wed, 30 May 2018 21:27:02 +0000 (23:27 +0200)]
package/openvmtools: depend on host-nfs-utils

host-nfs-utils provides the host rpcgen utility. This fixes the build on
recent Fedora systems that removed rpcgen from the glibc package.

Fixes:
http://autobuild.buildroot.net/results/e21/e219b8bacb52bb661eb6663b82f549ed941f26fe

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolinux: bump default to version 4.16.13
Fabio Estevam [Wed, 30 May 2018 18:31:57 +0000 (15:31 -0300)]
linux: bump default to version 4.16.13

Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/python-pillow: bump to version 5.1.0
Angelo Compagnucci [Mon, 28 May 2018 18:18:05 +0000 (20:18 +0200)]
package/python-pillow: bump to version 5.1.0

This patch bumps python-pillow to version 5.1.0.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/python-can: bump to version 2.1.0
Angelo Compagnucci [Mon, 28 May 2018 18:10:00 +0000 (20:10 +0200)]
package/python-can: bump to version 2.1.0

This patch bumps python-can to version 2.1.0.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain: allow disabling packages affected by gcc bug 85180
Matt Weber [Mon, 28 May 2018 15:35:10 +0000 (10:35 -0500)]
toolchain: allow disabling packages affected by gcc bug 85180

Works around https://gcc.gnu.org/bugzilla/show_bug.cgi?id=85180 which
is an issue where the Microblaze architecture had code that caused a
infinite recursion while optimizing in versions of GCC earlier than
8.x. More BR discussion can be found on this thread.
http://buildroot-busybox.2317881.n4.nabble.com/autobuild-buildroot-net-Build-results-for-2018-04-25-td192721.html

Resolves:
http://autobuild.buildroot.net/results/b42d68c66d8ea035845a28c5530ef0682fd95713 (boost)
http://autobuild.buildroot.net/results/af976a4805fb8b3f0c17a8e3a1f901b2255caa0b (flare-engine)
http://autobuild.buildroot.net/results/d20/d20700bd538ba1e9d45ab8a61ecbbba1a320ef38 (gst-ffmpeg)

CC: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain-external: bump CodeSourcery NIOSII to 2018.05
Romain Naour [Wed, 30 May 2018 20:29:58 +0000 (22:29 +0200)]
toolchain-external: bump CodeSourcery NIOSII to 2018.05

Re-add BR2_TOOLCHAIN_HAS_SSP since the toolchain support SSP.

Tested with qemu_nios2_10m50_defconfig and Qemu 2.10.1-3.fc27 release.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoenlightenment: convert to pkg-meson infra
Eric Le Bihan [Tue, 15 May 2018 19:51:59 +0000 (21:51 +0200)]
enlightenment: convert to pkg-meson infra

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agompd-mpc: convert to pkg-meson infra
Eric Le Bihan [Tue, 15 May 2018 19:51:58 +0000 (21:51 +0200)]
mpd-mpc: convert to pkg-meson infra

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoncmpc: convert to pkg-meson infra
Eric Le Bihan [Tue, 15 May 2018 19:51:57 +0000 (21:51 +0200)]
ncmpc: convert to pkg-meson infra

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agosystemd: convert to pkg-meson infra
Eric Le Bihan [Tue, 15 May 2018 19:51:56 +0000 (21:51 +0200)]
systemd: convert to pkg-meson infra

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolibmpdclient: convert to pkg-meson infra
Eric Le Bihan [Tue, 15 May 2018 19:51:55 +0000 (21:51 +0200)]
libmpdclient: convert to pkg-meson infra

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agomeson: prevent RPATH stripping
Eric Le Bihan [Tue, 15 May 2018 19:51:54 +0000 (21:51 +0200)]
meson: prevent RPATH stripping

By default, Meson strips RPATH from the executable it builds [1,2],
unless explicitly set via install_rpath.

This will make support/scripts/check-host-rpath fail when building the
host variant of a Meson-based package.

So add a patch to prevent RPATH from being stripped if install_rpath is
not set and notify user about it.

[1] https://github.com/mesonbuild/meson/issues/2567
[2] https://github.com/mesonbuild/meson/issues/314#issuecomment-157658562

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/manual: document pkg-meson infra
Eric Le Bihan [Tue, 15 May 2018 19:51:53 +0000 (21:51 +0200)]
docs/manual: document pkg-meson infra

Update documentation about adding meson-based packages with instructions for
using pkg-meson infrastructure.

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopkg-meson: new infrastructure
Eric Le Bihan [Tue, 15 May 2018 19:51:52 +0000 (21:51 +0200)]
pkg-meson: new infrastructure

Add a new infrastructure to ease the development of packages that use Meson as
their build system.

Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr>
[Thomas:
 - move global variables definition outside of the inner-meson-package
   macro
 - for consistency, remove double quote around value passed to meson
   in the host configure step.
 - minor formatting fixes.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/gcc: switch to gcc 6.x as the default
Romain Naour [Tue, 29 May 2018 21:52:57 +0000 (23:52 +0200)]
package/gcc: switch to gcc 6.x as the default

Even if gcc 6 is still maintained for some time (gcc 6.5 is pending),
switch to gcc 7.x since it has been released since 2017-05-02 and
gcc 8.x is available since 2018-05-02.

We have been having toolchains in the autobuilders with gcc
7.x for a while, so the vast majority of the problems should have
already been solved.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain-external: add gcc 8 entry
Romain Naour [Tue, 29 May 2018 21:52:56 +0000 (23:52 +0200)]
toolchain-external: add gcc 8 entry

This patch allows to use an external toolchain based on gcc 8.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/gcc: add support for gcc 8.1.0
Romain Naour [Tue, 29 May 2018 21:52:55 +0000 (23:52 +0200)]
package/gcc: add support for gcc 8.1.0

Remove 0860-cilk-fix-build-without-wchar.patch since cilk has
been removed from gcc.

Rebase 0900-remove-selftests.patch on gcc 8.1.0

Remove upstream patches 0001-m68k-coldfire-pr68467.patch and
0892-microblaze-Revert.patch.

Use bz2 release tarball only for gcc 4.9 since all other version
now use xz tarball.

Runtime tested on x86_64 with binutils 2.30, gcc 8.1.0,
kernel headers 4.14 and glibc 2.27.

Buildtime tested with glibc with all supported architectures.

Buildtime tested on x86_64 with musl and uClibc-ng

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agotoolchain: add gcc 8 entry
Romain Naour [Tue, 29 May 2018 21:52:54 +0000 (23:52 +0200)]
toolchain: add gcc 8 entry

In order to add gcc 8 support for internal and external toolchain in
follow-up commits, introduce BR2_TOOLCHAIN_GCC_AT_LEAST_8 symbol.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoarch: add BR2_ARCH_NEEDS_GCC_AT_LEAST_8
Romain Naour [Tue, 29 May 2018 21:52:53 +0000 (23:52 +0200)]
arch: add BR2_ARCH_NEEDS_GCC_AT_LEAST_8

This new symbol will be used by architectures introduced with gcc 8 and
by external toolchains based on gcc 8.

[1] https://gcc.gnu.org/gcc-8/changes.html

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoaircrack-ng: bump to version 1.2
Fabrice Fontaine [Tue, 29 May 2018 21:56:47 +0000 (23:56 +0200)]
aircrack-ng: bump to version 1.2

- Remove patch (already in version)
- Add three patches (first one sent and merged upstream, second and
  third patchs retrieved upstream)
- Move to autotools-package
- Remove workaround for static handling of pthread as it isn't needed
  anymore
- Remove deactivation of libnl in static build as it isn't needed
  anymore
- Set libnl and zlib dependencies as optional and not mandatory
- Add duma and libgcrypt optional dependencies
- Update workaround for static handling of libpcap
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agokexec: bump to version v2.0.17
Carlos Santos [Wed, 30 May 2018 17:10:48 +0000 (14:10 -0300)]
kexec: bump to version v2.0.17

Also add license hash for "make legal-info".

Signed-off-by: Carlos Santos <casantos@datacom.ind.br>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/website/news.html: fix s/2018.05/2018.02/ typos
Peter Korsgaard [Wed, 30 May 2018 15:55:28 +0000 (17:55 +0200)]
docs/website/news.html: fix s/2018.05/2018.02/ typos

Reported-by: Andreas Naumann <dev@andin.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/mono: bump to version 5.12.0.226
Angelo Compagnucci [Tue, 29 May 2018 20:50:03 +0000 (22:50 +0200)]
package/mono: bump to version 5.12.0.226

This patch bumps mono to version 5.12.0.226 and it's monolite dependency
to version 1051200002, doing so it removes also a couple of upstreamed
patches.
This new mono version requires also a different option for
managing aot, so this patch refactors also the configure options.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agogit: security bump to version 2.16.4
Baruch Siach [Tue, 29 May 2018 17:38:39 +0000 (20:38 +0300)]
git: security bump to version 2.16.4

Forward port of security fixes from the 2.13.7 release. The 2.13.7
release notes say this:

 * Submodule "names" come from the untrusted .gitmodules file, but we
   blindly append them to $GIT_DIR/modules to create our on-disk repo
   paths. This means you can do bad things by putting "../" into the
   name. We now enforce some rules for submodule names which will cause
   Git to ignore these malicious names (CVE-2018-11235).

   Credit for finding this vulnerability and the proof of concept from
   which the test script was adapted goes to Etienne Stalmans.

 * It was possible to trick the code that sanity-checks paths on NTFS
   into reading random piece of memory (CVE-2018-11233).

Cc: Matt Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/dash: don't build in paralle
Yann E. MORIN [Tue, 29 May 2018 17:42:37 +0000 (19:42 +0200)]
package/dash: don't build in paralle

dash has races in its Makefile, but upstream is not too keen in fixing
those, and just suggests that dash not be built in parallel:

    https://www.mail-archive.com/dash@vger.kernel.org/msg01675.html

Fixes:
    http://autobuild.buildroot.org/results/793/7934c815a3009af688c2f1183e67dfe542c9a009/
    http://autobuild.buildroot.org/results/fc4/fc4e4ab47455ac47dd4a3a60083cec2848e74dbb/
    http://autobuild.buildroot.org/results/6bf/6bfdd44ea5d55a6ca3ef92254eab18c7c0416b7b/
    [...]

Reported-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolog4cplus: needs gcc >= 4.8
Fabrice Fontaine [Tue, 29 May 2018 17:19:29 +0000 (19:19 +0200)]
log4cplus: needs gcc >= 4.8

log4cplus needs std::map::emplace

Fixes:
 - http://autobuild.buildroot.net/results/ef0d8d7fae835ff555202f6de320945226ec00bf

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconntrack-tools: bump to version 1.4.5
Baruch Siach [Tue, 29 May 2018 18:32:00 +0000 (21:32 +0300)]
conntrack-tools: bump to version 1.4.5

Drop the musl workaround. musl can handle the suppression of conflicting
kernel headers definitions.

Add license file hash.

This bump fixes compatibility with newer versions of
libnetfilter_conntrack.

Fixes:
http://autobuild.buildroot.net/results/0ae/0aee137c9977e0fb33e7e557b75481780b90edcc/
http://autobuild.buildroot.net/results/9c1/9c178ec5ad84224a385c3184f09ea9b65867a302/
http://autobuild.buildroot.net/results/5e1/5e1ea89e01a9cc13bd384c97903e1726df6d2228/

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolibqrencode: bump to version 4.0.0
Fabrice Fontaine [Tue, 29 May 2018 17:22:37 +0000 (19:22 +0200)]
libqrencode: bump to version 4.0.0

- Use new --with[out]-png option
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolibpwquality: bump to version 1.4.0
Fabrice Fontaine [Tue, 29 May 2018 17:20:55 +0000 (19:20 +0200)]
libpwquality: bump to version 1.4.0

- Remove both patches (already in version)
- Add hash for license file

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agousbutils: lsusb.py is for python 3.x only
Baruch Siach [Tue, 29 May 2018 16:12:14 +0000 (19:12 +0300)]
usbutils: lsusb.py is for python 3.x only

usbutils version 010 converted the lsusb.py script to Python 3. Keep the
lsusb.py script on target only when Python 3.x is enabled.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agousbutils: bump to version 010
Baruch Siach [Tue, 29 May 2018 12:35:07 +0000 (15:35 +0300)]
usbutils: bump to version 010

Add GPL-3.0 license for the lsusb.py script.

Update license file location.

The tar archive does not contain the license files from the git tree.
Add a patch adding the license files. This patch is not git formatted
because it only applies to the tar archive.

Upstream fixed tar archive generation for the next release.

Add license files hash.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/stm32f469: force usage of binutils 2.28.x
Christophe PRIOUZEAU [Tue, 29 May 2018 12:09:27 +0000 (12:09 +0000)]
configs/stm32f469: force usage of binutils 2.28.x

Fixes #11051

Due to runtime issue with the usage of binutils 2.29.x, we need to use the
version 2.28.x

Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Acked-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/stm32f429: force usage of binutils 2.28.x
Christophe PRIOUZEAU [Tue, 29 May 2018 12:09:27 +0000 (12:09 +0000)]
configs/stm32f429: force usage of binutils 2.28.x

Fixes #11051

Due to runtime issue with the usage of binutils 2.29.x, we need to use the
version 2.28.x

Signed-off-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Acked-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoglibc: security bump to latest 2.27 branch
Baruch Siach [Tue, 29 May 2018 14:37:54 +0000 (17:37 +0300)]
glibc: security bump to latest 2.27 branch

Fixed issues are listed in the 2.27 branch NEWS file:

  CVE-2017-18269: An SSE2-based memmove implementation for the i386
  architecture could corrupt memory.  Reported by Max Horn.

  CVE-2018-11236: Very long pathname arguments to realpath function could
  result in an integer overflow and buffer overflow.  Reported by Alexey
  Izbyshev.

  CVE-2018-11237: The mempcpy implementation for the Intel Xeon Phi
  architecture could write beyond the target buffer, resulting in a buffer
  overflow.  Reported by Andreas Schwab.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoethtool: bump to version 4.16
Baruch Siach [Tue, 29 May 2018 11:47:10 +0000 (14:47 +0300)]
ethtool: bump to version 4.16

Cc: Matt Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/ca-certificates: bump version to 20180409
Martin Bark [Sun, 6 May 2018 16:19:44 +0000 (17:19 +0100)]
package/ca-certificates: bump version to 20180409

Update Mozilla certificate authority bundle to version 2.22.

The following certificate authorities were added (+):
  + "GDCA TrustAUTH R5 ROOT"
  + "SSL.com EV Root Certification Authority ECC"
  + "SSL.com EV Root Certification Authority RSA R2"
  + "SSL.com Root Certification Authority ECC"
  + "SSL.com Root Certification Authority RSA"
  + "TrustCor ECA-1"
  + "TrustCor RootCert CA-1"
  + "TrustCor RootCert CA-2"

The following certificate authorities were removed (-):
  - "ACEDICOM Root"
  - "AddTrust Low-Value Services Root"
  - "AddTrust Public Services Root"
  - "AddTrust Qualified Certificates Root"
  - "CA Disig Root R1"
  - "CNNIC ROOT"
  - "Camerfirma Chambers of Commerce Root"
  - "Camerfirma Global Chambersign Root"
  - "Certinomis - Autorité Racine"
  - "Certum Root CA"
  - "China Internet Network Information Center EV Certificates Root"
  - "Comodo Secure Services root"
  - "Comodo Trusted Services root"
  - "DST ACES CA X6"
  - "GeoTrust Global CA 2"
  - "PSCProcert"
  - "Security Communication EV RootCA1"
  - "Swisscom Root CA 1"
  - "Swisscom Root CA 2"
  - "Swisscom Root EV CA 2"
  - "TURKTRUST Certificate Services Provider Root 2007"
  - "TUBITAK UEKAE Kok Sertifika Hizmet Saglayicisi - Surum 3"
  - "UTN USERFirst Hardware Root CA"

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/corkscrew: new package
Angelo Compagnucci [Thu, 26 Apr 2018 14:10:37 +0000 (16:10 +0200)]
package/corkscrew: new package

Corkscrew is a tool for tunneling SSH through HTTP proxies

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
[Thomas: add hash for license file, add entry in DEVELOPERS file.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoUpdate for 2018.05-rc3
Peter Korsgaard [Mon, 28 May 2018 21:02:21 +0000 (23:02 +0200)]
Update for 2018.05-rc3

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agolibnice: add gstreamer support
Fabrice Fontaine [Sun, 6 May 2018 09:42:29 +0000 (11:42 +0200)]
libnice: add gstreamer support

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoarm-trusted-firmware: generate atf-uboot.ub image of bl31.bin
Luca Ceresoli [Thu, 3 May 2018 16:23:34 +0000 (18:23 +0200)]
arm-trusted-firmware: generate atf-uboot.ub image of bl31.bin

U-Boot SPL for the Xilinx ZynqMP SoCs needs ATF in this format to load
it.

Signed-off-by: Luca Ceresoli <luca@lucaceresoli.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/elf2flt: replace hard-links with copies to fix rpath
Yann E. MORIN [Mon, 28 May 2018 19:45:18 +0000 (21:45 +0200)]
package/elf2flt: replace hard-links with copies to fix rpath

Do for elf2flt what we did for binutils: replace the hardlinks (which
break rpath handling) with copies of the individaul tools.

See previous commit (package/binutils: switch from symlinks to copies
and commit f9cffb6af4 (binutils: replace hard-links with soft-links to
fix rpath) for the complete story.

Fixes: #11031.
Reported-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Christophe Priouzeau <christophe.priouzeau@st.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Arnout Vandecappelle <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoarm-trusted-firmware: simplify release dir path
Luca Ceresoli [Thu, 3 May 2018 16:23:33 +0000 (18:23 +0200)]
arm-trusted-firmware: simplify release dir path

The path to the binary images is very long. Since we are about to make
a larger use of it, let's use a variable to make it somewhat shorter.

Signed-off-by: Luca Ceresoli <luca@lucaceresoli.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/binutils: switch from symlinks to copies to fix rpath
Yann E. MORIN [Mon, 28 May 2018 19:45:17 +0000 (21:45 +0200)]
package/binutils: switch from symlinks to copies to fix rpath

Commit f9cffb6af464 (binutils: replace hard-links with soft-links to fix
rpath) has a side effect that when we build for a noMMU target, elf2flt
will in turn replace some of the programs installed by binutils, with
its own wrappers.

For example, it will rename host/TUPLE/bin/ld to ld.real, and add its
own wrapper in place of the original. It does the same for
host/bin/TUPLE-ld and host/bin/TUPLE-ld.real.

However, we had already made ld a symlink to ../../bin/TUPLE-ld, so
host/TUPLE/bin/ld.real will still point to host/bin/TUPLE-ld when we
want it to point to ld.real instead...

This ultimately confuses gcc later on.

Of course, the culprit is also elf2flt, which also installs similar
hardlinks that would ultimately exhibit the same rpath issue as the
one fixed by f9cffb6af464. Note: we haven't had an issue so far with
that, because those tools installed by elf2flt only link with libz,
which is most often present on the host system. So, all seem well,
but is nonetheless broken; this will be fixed in a subsequent commit.

But back on topic. If we were to fix elf2flt with similar symlinks,
gcc still gets confused. The underlying reason for this confusion is
not entirely clear, though... It looks like something is trying to
dereference symlinks and gets confused by the result somehow...

So, in an attempt to restore some sanity in all this mess, we try to
restore the previous behaviour, we no longer use symlinks but just copy
the individual tools.

Fixes: #11031.
Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Cc: Christophe Priouzeau <christophe.priouzeau@st.com>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Cc: Arnout Vandecappelle <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/socrates_cyclone5: change over to current upstream releases
Florian La Roche [Tue, 8 May 2018 20:28:47 +0000 (22:28 +0200)]
configs/socrates_cyclone5: change over to current upstream releases

Since all cyclone5 development changes are upstream, change over to an
upstream release of the Linux kernel and u-boot for buildroot.

Signed-off-by: Florian La Roche <Florian.LaRoche@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopoppler: link with libatomic when needed
Waldemar Brodkorb [Mon, 28 May 2018 18:19:53 +0000 (20:19 +0200)]
poppler: link with libatomic when needed

Following errors might occur on architectures required to use gcc libatomics:
sparc-buildroot-linux-uclibc/sysroot/lib/libatomic.so.1: error adding symbols: DSO missing from command line

This is often the case for sparcv8 32 bit toolchains.

See 55a9d6d55888b04ec6c476399e5b98a2412995f5 and 03f6e005e6a9617767b24a9026da9477848020cc.

Fixes:
  http://autobuild.buildroot.net/results/64a96663a48ab644bc03c9a3ec2d6a644119dee6
  http://autobuild.buildroot.net/results/82e85e12478fc1972b70ad728ed7c1554920c9e3

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>