buildroot.git
8 years agopackage/nginx: add debug logging support
Martin Bark [Tue, 3 May 2016 09:36:57 +0000 (10:36 +0100)]
package/nginx: add debug logging support

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/nginx: add thread pool support
Martin Bark [Tue, 3 May 2016 09:36:56 +0000 (10:36 +0100)]
package/nginx: add thread pool support

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/nginx: add support for stream proxy modules
Martin Bark [Tue, 3 May 2016 09:36:55 +0000 (10:36 +0100)]
package/nginx: add support for stream proxy modules

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/nginx: bump version to 1.10.0
Martin Bark [Tue, 3 May 2016 09:36:54 +0000 (10:36 +0100)]
package/nginx: bump version to 1.10.0

The ngx_http_spdy_module has been superseded by the ngx_http_v2_module
so BR2_PACKAGE_NGINX_HTTP_SPDY_MODULE has changed to
BR2_PACKAGE_NGINX_HTTP_V2_MODULE

Signed-off-by: Martin Bark <martin@barkynet.com>
[Thomas: rewrap Config.in.legacy help text.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/nginx: fix error is nginx.service
Martin Bark [Tue, 3 May 2016 09:36:53 +0000 (10:36 +0100)]
package/nginx: fix error is nginx.service

When using systemd nginx fails to start with the error

    /usr/bin/mkdir: invalid option -- 't'

This is due to a missing space before the semicolon in nginx.service.
For systemd to handle multiple commands in ExecStartPre it requires the
semicolon to be a separate word or the use of multiple ExecStartPre.

This commit splits the multiple commands into two ExecStartPre lines
which fixes the error and improves readability.

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/nginx: fix mail modules not building
Martin Bark [Tue, 3 May 2016 09:36:52 +0000 (10:36 +0100)]
package/nginx: fix mail modules not building

Add the missing --with-mail configure option

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolinux: bump defaut to version 4.5.3
Gustavo Zacarias [Thu, 5 May 2016 18:47:19 +0000 (15:47 -0300)]
linux: bump defaut to version 4.5.3

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolinux-headers: bump 3.14.x and 4.{4, 5}.x series
Gustavo Zacarias [Thu, 5 May 2016 18:47:18 +0000 (15:47 -0300)]
linux-headers: bump 3.14.x and 4.{4, 5}.x series

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoconfigs/freescale_mpc8315erdb: bump to kernel 4.5.3
Gustavo Zacarias [Thu, 5 May 2016 15:30:30 +0000 (12:30 -0300)]
configs/freescale_mpc8315erdb: bump to kernel 4.5.3

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoconfigs/freescale_p1010rdb_pa: lock down binutils version
Gustavo Zacarias [Thu, 5 May 2016 15:30:29 +0000 (12:30 -0300)]
configs/freescale_p1010rdb_pa: lock down binutils version

The used U-Boot version (2014.01) isn't too happy with newer (>= 2.25)
binutils versions, so keep it locked down until the config is updated
for a newer version.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoconfigs/freescale_mpc8315erdb: lock down binutils version
Gustavo Zacarias [Thu, 5 May 2016 15:30:28 +0000 (12:30 -0300)]
configs/freescale_mpc8315erdb: lock down binutils version

The used U-Boot version (2014.04) isn't too happy with newer (>= 2.25)
binutils versions, so keep it locked down until the config is updated
for a newer version.
U-Boot 2016.03 in fact does work for mpc8315erdb - however it doesn't
yet support SPL which is necessary for NAND boot and would be a massive
defconfig revamp switching to NOR.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/ca-certificates: depend on host-python or host-python3
Martin Bark [Wed, 4 May 2016 14:17:54 +0000 (15:17 +0100)]
package/ca-certificates: depend on host-python or host-python3

The ca-certificates build process runs a Python script that needs at
least Python 2.7. While Buildroot requires Python as a hard dependency
on the build system, we don't require Python >= 2.7.

So in order to ensure that a Python >= 2.7 is installed, this commit
makes the ca-certificates package depend either on host-python or
host-python3.

Fixes:

 http://autobuild.buildroot.net/results/a2a4fed293c836b9cf63ff2aaa463b0704dec07e/
 http://autobuild.buildroot.net/results/bbed4afa8e30382b8892062f31ba64cbb0ea14e4/
 http://autobuild.buildroot.net/results/1af5562be3c0d233cea81834a898f7ac6ae48271/

Cc: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Martin Bark <martin@barkynet.com>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
[Thomas: rewrite commit log.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoconfigs/qemu: bump to the latest version
Gustavo Zacarias [Thu, 5 May 2016 11:30:57 +0000 (08:30 -0300)]
configs/qemu: bump to the latest version

Results table:

Defconfig               Kernel          Qemu        Network Status
------------------------------------------------------------------
aarch64_virt            4.5.3           2.5.0         YES     OK
arm_versatile           4.5.3           2.5.0         YES     OK
arm_vexpress            4.5.3           2.5.0         YES     OK
m68k_mcf5208            4.5.3           2.5.0         NO      SO-SO (3)
m68k_q800               4.5.3           q800-v2.4.0   NO (4)  OK
microblazebe            4.5.3           2.5.0         YES     OK
microblazeel            4.5.3           2.5.0         YES     OK
mips64el_malta          4.5.3           2.5.0         YES     OK
mips64_malta            4.5.3           2.5.0         YES     OK
mipsel_malta            4.5.3           2.5.0         YES     OK
mips_malta              4.5.3           2.5.0         YES     OK
ppc_g3beige             4.5.3           2.5.0         YES     OK
ppc_mpc8544ds           4.5.3           2.5.0         YES     OK
ppc_virtex_ml507        4.5.3           2.5.0         NO      OK
ppc64_pseries           4.5.3           2.5.0         YES     OK
sh4                     4.5.3           2.5.0         YES     OK
sh4eb                   4.5.3           2.5.0         NO (1)  OK
sparc_ss10              4.5.3           2.5.0         YES     OK
sparc64_sun4u           4.5.3           2.5.0         YES     OK
sparc_sun4u             4.5.3           2.5.0         YES     OK
x86                     4.5.3           2.5.0         YES     OK
x86_64                  4.5.3           2.5.0         YES     OK
xtensa_lx60             4.4.9           2.5.0         YES (2) OK
xtensa_lx60_nommu       4.4.9           2.5.0         YES (2) OK

(1) - Probably an endian issue with 8139 emulation/driver
(2) - xtensa ethernet broken in 4.5
(3) - It boots, you can login, but apps exit/crash often
(4) - There's a network interface, but enabling it in qemu fails

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoconfigs/qemu: use zImage for sh4/sh4eb samples
Gustavo Zacarias [Thu, 5 May 2016 11:30:56 +0000 (08:30 -0300)]
configs/qemu: use zImage for sh4/sh4eb samples

The default for ARM was changed to zImage in 5c67cb1d, however the
sh4/sh4eb sample configs were updated to switch to uImage in error,
hence end up building uImage which doesn't work with Qemu.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
[Thomas: fix commit log.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agouboot: ensure u-boot-dtb.img gets built if enabled
Peter Korsgaard [Mon, 2 May 2016 21:26:52 +0000 (23:26 +0200)]
uboot: ensure u-boot-dtb.img gets built if enabled

u-boot-dtb.img only gets built by default (all target) if
CONFIG_OF_SEPARATE _AND_ CONFIG_SPL_FRAMEWORK are enabled.

Certain SoCs (E.G. Action Semi S500) use a proprietary first level
bootloader instead of u-boot SPL, but still use u-boot-dtb.img as the first
level bootloader parses the uImage header for size/loadaddr.

Ensure u-boot-dtb.img gets built if enabled by explicitly listing it as a
u-boot make target (next to all) to support such setups.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogst1-plugins-bad: add rtmp support
Gustavo Zacarias [Tue, 3 May 2016 19:56:51 +0000 (16:56 -0300)]
gst1-plugins-bad: add rtmp support

As pointed by sonnex on the mailing list.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogst1-plugins-bad: remove rtp plugin option
Gustavo Zacarias [Tue, 3 May 2016 19:44:15 +0000 (16:44 -0300)]
gst1-plugins-bad: remove rtp plugin option

The plugin was moved from -bad to -good so remove the option.
Support in -good was added via 301e8ffb.
Add legacy entry to notify users of this, however we can't automatically
select the good variant since good might be disabled.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogst1-plugins-bad: remove mpg123 plugin option
Gustavo Zacarias [Tue, 3 May 2016 19:44:14 +0000 (16:44 -0300)]
gst1-plugins-bad: remove mpg123 plugin option

The plugin was moved from -bad to -ugly so remove the option.
Support in -ugly was added via 30cde9a3.
Add legacy entry to notify users of this, however we can't automatically
select the ugly variant since ugly might be disabled.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agocore/pkg-kconfig: Use olddefconfig when available
Romain Izard [Mon, 2 May 2016 08:36:39 +0000 (10:36 +0200)]
core/pkg-kconfig: Use olddefconfig when available

Using 'yes "" | make oldconfig' to regenerate a .config file from an
existing defconfig does not work reliably in all cases. Specifically, it
does not work well with tristate choice entries.

The correct way to do it is to use 'make olddefconfig', but this target
is not supported in projects that use an old version of kconfig. As
most projects do not use tristate entries, there is no need for them to
upgrade.

'oldnoconfig' is an alias for 'olddefconfig', but it also is the only
name for this target between Linux versions 2.6.36 and 3.6.

Check which targets are supported by the current project, and use the
appropriate method to regenerate the .config file.

Signed-off-by: Romain Izard <romain.izard.pro@gmail.com>
Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Tested-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agotiff: update homepage link
Baruch Siach [Tue, 3 May 2016 12:00:15 +0000 (15:00 +0300)]
tiff: update homepage link

The current linked website is not up to date, since the libtiff.org domain was
apparently hijacked years ago. See
http://www.asmail.be/msg0055472296.html. Correct this.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agowireless-regdb: bump to version 2016.05.02
Gustavo Zacarias [Tue, 3 May 2016 19:49:13 +0000 (16:49 -0300)]
wireless-regdb: bump to version 2016.05.02

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agobind: security bump to version 9.10.4
Gustavo Zacarias [Tue, 3 May 2016 15:42:04 +0000 (12:42 -0300)]
bind: security bump to version 9.10.4

Fixes:
CVE-2016-2088 - Duplicate EDNS COOKIE options in a response could
trigger an assertion failure.

Drop libressl support patch since it's upstream now.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agovlc: bump version to 2.2.3
Vicente Olivert Riera [Tue, 3 May 2016 13:08:42 +0000 (14:08 +0100)]
vlc: bump version to 2.2.3

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agomutt: bump version to 1.6.1
Vicente Olivert Riera [Tue, 3 May 2016 13:08:41 +0000 (14:08 +0100)]
mutt: bump version to 1.6.1

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolvm2: bump version to 2.02.152
Vicente Olivert Riera [Tue, 3 May 2016 13:08:40 +0000 (14:08 +0100)]
lvm2: bump version to 2.02.152

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogit: bump version to 2.8.2
Vicente Olivert Riera [Tue, 3 May 2016 13:08:39 +0000 (14:08 +0100)]
git: bump version to 2.8.2

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoopenssl: security bump to version 1.0.2h
Gustavo Zacarias [Tue, 3 May 2016 14:39:33 +0000 (11:39 -0300)]
openssl: security bump to version 1.0.2h

Fixes:
CVE-2016-2105 - Fix EVP_EncodeUpdate overflow
CVE-2016-2106 - Fix EVP_EncryptUpdate overflow
CVE-2016-2107 - Prevent padding oracle in AES-NI CBC MAC check
CVE-2016-2109 - Prevent ASN.1 BIO excessive memory allocation
CVE-2016-2176 - EBCDIC overread

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agowpa_supplicant: add security fixes
Baruch Siach [Tue, 3 May 2016 06:40:19 +0000 (09:40 +0300)]
wpa_supplicant: add security fixes

Add upstream patching fixing CVE-2016-2447: psk configuration parameter update
allowing arbitrary data to be written.

See http://w1.fi/security/2016-1/psk-parameter-config-update.txt for details.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agohostapd: add security fix
Baruch Siach [Tue, 3 May 2016 06:40:18 +0000 (09:40 +0300)]
hostapd: add security fix

Add upstream patch fixing CVE-2016-2447: psk configuration parameter update
allowing arbitrary data to be written.

See http://w1.fi/security/2016-1/psk-parameter-config-update.txt for details.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agox264: needs madvise(), disable for bfin external toolchain
Gustavo Zacarias [Mon, 2 May 2016 12:44:47 +0000 (09:44 -0300)]
x264: needs madvise(), disable for bfin external toolchain

x264 uses madvise() which is not available in the bfin external toolchain.

Fixes:
http://autobuild.buildroot.net/results/837/837fd5a63d59b5c65818ec005a565cb7741a1cdd/

[Peter: Issue is specific to bfin toolchain, so only disable for that one]
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoharfbuzz: bump to version 1.2.7
Gustavo Zacarias [Mon, 2 May 2016 15:21:31 +0000 (12:21 -0300)]
harfbuzz: bump to version 1.2.7

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agontp: security bump to version 4.2.8p7
Gustavo Zacarias [Mon, 2 May 2016 12:21:22 +0000 (09:21 -0300)]
ntp: security bump to version 4.2.8p7

Fixes:

CVE-2016-1551 - Refclock impersonation vulnerability, AKA:
refclock-peering

CVE-2016-1549 - Sybil vulnerability: ephemeral association attack, AKA:
ntp-sybil - MITIGATION ONLY

CVE-2016-2516 - Duplicate IPs on unconfig directives will cause an
assertion botch

CVE-2016-2517 - Remote configuration trustedkey/requestkey values are not
properly validated

CVE-2016-2518 - Crafted addpeer with hmode > 7 causes array wraparound
with MATCH_ASSOC

CVE-2016-2519 - ctl_getitem() return value not always checked

CVE-2016-1547 - Validate crypto-NAKs, AKA: nak-dos

CVE-2016-1548 - Interleave-pivot - MITIGATION ONLY

CVE-2015-7704 - KoD fix: peer associations were broken by the fix for
NtpBug2901, AKA: Symmetric active/passive mode is broken

CVE-2015-8138 - Zero Origin Timestamp Bypass, AKA: Additional KoD Checks

CVE-2016-1550 - Improve NTP security against buffer comparison timing
attacks, authdecrypt-timing, AKA: authdecrypt-timing

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosamba4: bump to version 4.4.3
Gustavo Zacarias [Mon, 2 May 2016 12:21:08 +0000 (09:21 -0300)]
samba4: bump to version 4.4.3

Fixes a few regressions from the previous security bump.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoopencv: fix compile issues
Waldemar Brodkorb [Tue, 5 Apr 2016 11:16:17 +0000 (13:16 +0200)]
opencv: fix compile issues

The first patch from Debian fixes following autobuild failure:
http://autobuild.buildroot.net/results/eda5c6c43da40a342e0f545a348d2f865eb5ccf2/

Tested with ARM build without a regression.

The second patch fixes musl arm autobuild failure:
http://autobuild.buildroot.net/results/6a397de789c809984b851a304078e26b2ac58974/

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Tested-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolinux-headers: bump 3.2.x series
Gustavo Zacarias [Sun, 1 May 2016 21:47:30 +0000 (18:47 -0300)]
linux-headers: bump 3.2.x series

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoluajit: fix host installation
Romain Naour [Sun, 1 May 2016 21:22:08 +0000 (23:22 +0200)]
luajit: fix host installation

Packages installed for the host should have their prefix set to
$(HOST_DIR)/usr, and therefore not use DESTDIR at installation time.

Using PREFIX=/usr DESTDIR=$(HOST_DIR) is wrong, and leads for example to
luajit.pc containing prefix=/usr, which means pkg-config returns
incorrect results for host-luajit.

This patch fixes the luajit package to conform to this rule.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Gustavo Zacarias <gustavo@zacarias.com.ar>
[Thomas: rewrite commit log.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agophp-zmq: bump version to 1.1.3
Vicente Olivert Riera [Mon, 18 Apr 2016 11:53:06 +0000 (12:53 +0100)]
php-zmq: bump version to 1.1.3

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agophp-imagick: bump version to 3.4.1
Vicente Olivert Riera [Mon, 18 Apr 2016 11:53:05 +0000 (12:53 +0100)]
php-imagick: bump version to 3.4.1

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agophp-geoip: bump version to HEAD of master on GitHub
Vicente Olivert Riera [Mon, 18 Apr 2016 11:53:04 +0000 (12:53 +0100)]
php-geoip: bump version to HEAD of master on GitHub

Related: https://bugs.php.net/bug.php?id=71083

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agomtd: install header files to staging directory
Jörg Krause [Fri, 29 Apr 2016 07:56:58 +0000 (09:56 +0200)]
mtd: install header files to staging directory

These header files are required by swupdate.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agocrda: fix build with GCC 6
Jörg Krause [Sun, 1 May 2016 09:28:03 +0000 (11:28 +0200)]
crda: fix build with GCC 6

Building crda with GCC 6 fails because of all compiler warnings are treated as
errors. Disable the compiler option '-Werror':

keys-gcrypt.c:94:32: error: ‘keys’ defined but not used [-Werror=unused-const-variable=]
 static const struct key_params keys[] = {
                                ^~~~
cc1: all warnings being treated as errors

Add a patch to drop '-Werror' from CFLAGS.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agofdk-aac: fix build with GCC 6
Jörg Krause [Sun, 1 May 2016 09:18:08 +0000 (11:18 +0200)]
fdk-aac: fix build with GCC 6

GCC 6 defaults to -std=gnu++14 instead of -std=gnu++98. The C++11 standard does
not allow "narrowing conversions" which is why building fdk-aac with GCC 6
fails:

libAACenc/src/aacEnc_rom.cpp:661:1: error: narrowing conversion of '2180108801u' from 'unsigned int' to 'FIXP_DBL {aka long int}' inside { } [-Wnarrowing]

Use '-std=gnu++98' as suggested by "Porting to GCC 6" [1].

[1] https://gcc.gnu.org/gcc-6/porting_to.html

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoimlib2: security bump to version 1.4.9
Gustavo Zacarias [Sun, 1 May 2016 13:34:47 +0000 (10:34 -0300)]
imlib2: security bump to version 1.4.9

It already includes the fixes for CVE-2016-3994 and CVE-2011-5326 so
drop the patches, and additionally fixes:
CVE-2016-4024 - integer overflow in imlib2, which result in insufficient
heap allocation.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agosyslinux: fix boot hang when host-gcc is 5.3
Frank Hunleth [Sun, 1 May 2016 15:58:07 +0000 (11:58 -0400)]
syslinux: fix boot hang when host-gcc is 5.3

Syslinux uses the host version of gcc to build to bootloader. On systems
with gcc 5.3, this results in a bootloader that hangs. This issue has
been addressed in upstream syslinux, but an official release has not
been made yet. This commit adds the upstream patch to fix the issue.

Most likely fixes bug #8866.

Signed-off-by: Frank Hunleth <fhunleth@troodon-software.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agopackage/mpd: bump to version 0.19.15
Jörg Krause [Sun, 1 May 2016 17:19:49 +0000 (19:19 +0200)]
package/mpd: bump to version 0.19.15

Drop patches applied upstream:
 - 0001: notify: Don't use constexpr on Haiku
 - 0002: notify: use "constexpr" only with glibc

Renumber remaining patches.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: remove Sourcery PowerPC toolchains
Gustavo Zacarias [Fri, 29 Apr 2016 13:18:56 +0000 (10:18 -0300)]
toolchain-external: remove Sourcery PowerPC toolchains

These are running long on the teeth - the bundled (e)glibc versions
are very old with several security bugs, they don't work reliably with
-Os and have several build failures related to internal compiler
errors such as:

http://autobuild.buildroot.net/results/fe7/fe7bdba5faf199275aedea2918705b5d19d228bf/
http://autobuild.buildroot.net/results/935/935ac42c30ed893939c06c077534f060aed80e9a/
http://autobuild.buildroot.net/results/a47/a476af82c8fe4a279117314b278b08af9a08fe54/
http://autobuild.buildroot.net/results/cae/cae720b5096be2672b4dc1311ae3fc4ed06a3b53/

The situation will not provide, and will in fact get worse with older kernel
headers precluding modern package versions and the old gcc version doing as
well so remove them.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
[Thomas:
 - remove no longer needed comment in liquid-dsp Config.in file, as
   noticed by Romain Naour.
 - add Config.in.legacy options, as noticed by Romain Naour.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump CodeSourcery MIPS to 2016.06-8
Romain Naour [Sat, 30 Apr 2016 21:10:25 +0000 (23:10 +0200)]
toolchain-external: bump CodeSourcery MIPS to 2016.06-8

Add hash for the toolchain sources.

Runtime tested with Qemu with qemu_mips_malta_defconfig

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump CodeSourcery AMD64 to 2015.11-139
Romain Naour [Sat, 30 Apr 2016 21:10:24 +0000 (23:10 +0200)]
toolchain-external: bump CodeSourcery AMD64 to 2015.11-139

>From getting-started.pdf:
- Linker bug fix.
- Fix CVE 2015-7547 getaddrinfo.
- Breakpoint in non-existent file bug fix.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump CodeSourcery NiosII to 2015.11-130
Romain Naour [Sat, 30 Apr 2016 19:41:32 +0000 (21:41 +0200)]
toolchain-external: bump CodeSourcery NiosII to 2015.11-130

>From getting-started.pdf:
- DWARF signed LEB128 encoding fix
- Fix CVE 2015-7547 getaddrinfo
- Breakpoint in non-existent file bug fix

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agortl8821au: bump to 4c298b
Christian Stewart [Sun, 1 May 2016 07:39:10 +0000 (03:39 -0400)]
rtl8821au: bump to 4c298b

Includes numerous stablity and cleanup passes by ulli-kroll.

A hash file is also added, as it was missing before.

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: add GCC 6.x option
Jörg Krause [Sun, 1 May 2016 07:29:35 +0000 (09:29 +0200)]
toolchain-external: add GCC 6.x option

Commit 519d83bfa0442439026db4e71e605a5c1347e566 adds support for GCC
6. Add an GCC 6.x option for external toolchains, too.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agobarebox: support auxiliary config build
Pieter Smith [Sun, 24 Apr 2016 21:15:24 +0000 (23:15 +0200)]
barebox: support auxiliary config build

Adds support to build barebox with an auxiliary config.

This is useful for building an SPL (Secondary Program Loader) in
addition to the traditional TPL (Tertiary Program Loader). The
Beaglebone Black for example has two barebox configurations:

- am335x_defconfig builds the full barebox bootloader with device
  tree

- am335x_mlo_defconfig builds the smaller MLO bootloader that loads
  the full barebox bootloader from the eMMC or SD card.

Tested with the following defconfig:

  # architecture
  BR2_arm=y
  BR2_cortex_a8=y
  BR2_ARM_EABIHF=y

  # system
  BR2_TARGET_GENERIC_HOSTNAME="beaglebone"
  BR2_ROOTFS_DEVICE_CREATION_DYNAMIC_DEVTMPFS=y
  BR2_TARGET_GENERIC_REMOUNT_ROOTFS_RW=y

  # filesystem
  BR2_PACKAGE_AM33X_CM3=y
  BR2_TARGET_ROOTFS_EXT2=y
  BR2_TARGET_ROOTFS_EXT2_4=y

  # bootloader
  BR2_TARGET_BAREBOX=y
  BR2_TARGET_BAREBOX_BOARD_DEFCONFIG="am335x"
  BR2_TARGET_BAREBOX_IMAGE_FILE="images/barebox-am33xx-beaglebone.img"
  BR2_TARGET_BAREBOX_CUSTOM_ENV=y
  BR2_TARGET_BAREBOX_CUSTOM_ENV_PATH="board/beaglebone/barebox/barebox.env"
  BR2_TARGET_BAREBOX_AUX=y
  BR2_TARGET_BAREBOX_AUX_BOARD_DEFCONFIG="am335x_mlo"
  BR2_TARGET_BAREBOX_AUX_IMAGE_FILE="images/barebox-am33xx-beaglebone-mlo.img"

  # kernel
  BR2_LINUX_KERNEL=y
  BR2_LINUX_KERNEL_USE_DEFCONFIG=y
  BR2_LINUX_KERNEL_DEFCONFIG="omap2plus"
  BR2_LINUX_KERNEL_ZIMAGE=y

  # use the barebox built-in dtb
  # BR2_LINUX_KERNEL_DTS_SUPPORT is not set

Signed-off-by: Pieter Smith <pieter@boesman.nl>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agobarebox: prepare for auxiliarry build
Pieter Smith [Sun, 24 Apr 2016 21:15:23 +0000 (23:15 +0200)]
barebox: prepare for auxiliarry build

No functional changes. In preparation for the auxiliary barebox build,
boot/barebox is split into two parts:
1. boot/barebox:
   - The source and patch specification which are to be shared between the
     barebox and barebox-aux packages.
   - The barebox-package function and build logic.
2. boot/barebox/barebox:
   - The package configuration, fragments, barebox env, etc.
   - The actual barebox package make instantiation.

Signed-off-by: Pieter Smith <pieter@boesman.nl>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump version of Linaro AArch64 toolchain
Thomas Petazzoni [Sat, 30 Apr 2016 12:43:04 +0000 (14:43 +0200)]
toolchain-external: bump version of Linaro AArch64 toolchain

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
Tested-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump version of Linaro ARMeb toolchain
Thomas Petazzoni [Sat, 30 Apr 2016 12:43:03 +0000 (14:43 +0200)]
toolchain-external: bump version of Linaro ARMeb toolchain

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump version of Linaro ARM toolchain
Thomas Petazzoni [Sat, 30 Apr 2016 12:43:02 +0000 (14:43 +0200)]
toolchain-external: bump version of Linaro ARM toolchain

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Reviewed-by: Romain Naour <romain.naour@gmail.com>
Tested-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agowebkitgtk24: mark as deprecated
Gustavo Zacarias [Fri, 29 Apr 2016 13:46:10 +0000 (10:46 -0300)]
webkitgtk24: mark as deprecated

It's affected by 40+ security bugs, and upstream will only care to fix
the latest stable branch, which is 2.12.x
Some effort was made with the 2.4.10 release to address some security
bugs but it's incomplete.

See:
https://blogs.gnome.org/mcatanzaro/2016/02/01/on-webkit-security-updates/
https://blogs.gnome.org/mcatanzaro/2016/02/19/webkitgtk-gets-security-updates/

Also:
http://webkitgtk.org/security/WSA-2016-0002.html
http://webkitgtk.org/security/WSA-2016-0001.html
http://webkitgtk.org/security/WSA-2015-0002.html

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agomidori: bump to version 0.5.11
Gustavo Zacarias [Fri, 29 Apr 2016 13:46:09 +0000 (10:46 -0300)]
midori: bump to version 0.5.11

Also drop BR2_PACKAGE_MIDORI_HTTPS option since it's now handled in the
webkitgtk package to satisfy MiniBrowser.

This version can't work with the older webkitgtk24 engine so it switches
to the new version.

Also make gcr support conditional on x11 support for libgtk3, it doesn't
work otherwise.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agowebkitgtk: new package
Gustavo Zacarias [Fri, 29 Apr 2016 13:46:08 +0000 (10:46 -0300)]
webkitgtk: new package

Add the latest 2.12.x upstream stable branch.

Both 2.4.x and 2.12.x can live side-by-side, however only the latest
stable branch/releases are security-maintained, so add it unslotted.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoandroid-tools: add new package
Thomas Petazzoni [Mon, 23 Nov 2015 16:27:12 +0000 (17:27 +0100)]
android-tools: add new package

This package allows to build the fastboot and adb host utilities,
which can be used to interact with target devices implementing one of
these protocols.

The work behind the host utilities was funded by ECA Group
<http://www.ecagroup.com>. ECA Group is the copyright owner of the
contributed code.

The package also allows to build fastboot, adb and adbd daemon for the
target.

Regarding adbd, the target is required to have the FunctionFS USB Gadget
configuration. Then the following commands enable the use of adb:
 # modprobe g_ffs idVendor=0x18d1 idProduct=0x4e42 \
   iSerialNumber="buildroot"
 # mkdir -p /dev/usb-ffs/adb
 # mount -t functionfs adb /dev/usb-ffs/adb -o uid=2000,gid=2000
 # adbd &

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Antoine Tenart <antoine.tenart@free-electrons.com>
Signed-off-by: Gary Bisson <gary.bisson@boundarydevices.com>
Tested-by: Julien Corjon <corjon.j@ecagroup.com>
[Thomas:
 - update on top of master.
 - fix Config.in.host prompt, it should have been "host android-tools"
   and not just "android-tools".]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoboard: add qemu coldfire support
Waldemar Brodkorb [Fri, 29 Apr 2016 17:53:08 +0000 (19:53 +0200)]
board: add qemu coldfire support

Add kernel config and defconfig for Qemu Coldfire.

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain: add coldfire support
Waldemar Brodkorb [Fri, 29 Apr 2016 17:51:23 +0000 (19:51 +0200)]
toolchain: add coldfire support

Add support for m68k/coldfire. A gcc patch is required
to avoid gcc ICE.

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: bump CodeSourcery aarch64 to 2014.11
Romain Naour [Wed, 30 Dec 2015 14:30:16 +0000 (15:30 +0100)]
toolchain-external: bump CodeSourcery aarch64 to 2014.11

Runtime tested using qemu_aarch64_virt_defconfig.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Cc: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
[Thomas: updated to the latest master branch.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agotoolchain-external: fix installation for CodeSourcery AArch64 toolchain
Romain Naour [Mon, 4 May 2015 22:01:48 +0000 (00:01 +0200)]
toolchain-external: fix installation for CodeSourcery AArch64 toolchain

The extracted toolchain sources contains a single symlink in the
aarch64-linux-gnu/libc/lib directory wich is lost during Buildroot's
staging install.

aarch64-linux-gnu/libc/lib/ld-linux-aarch64.so.1 -> ../lib64/ld-2.18.so

Add a custom post install staging and target hooks to create it
manually.

Signed-off-by: Romain Naour <romain.naour@openwide.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
[Thomas: also make the same tweak in the target.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agomove busybox-minimal.config to be used by other noMMU targets
Waldemar Brodkorb [Fri, 29 Apr 2016 17:48:40 +0000 (19:48 +0200)]
move busybox-minimal.config to be used by other noMMU targets

Config can be used by other noMMU targets as qemu-system-m68k
with coldfire emulation.

Signed-off-by: Waldemar Brodkorb <wbx@openadk.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoqemu/x86*: update instructions to use virtio
Gustavo Zacarias [Fri, 29 Apr 2016 17:38:26 +0000 (14:38 -0300)]
qemu/x86*: update instructions to use virtio

Switch the invocation command to use virtio-blk and virtio-net for
better performance.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoqemu/x86*: enable virtio for kernel config
Gustavo Zacarias [Fri, 29 Apr 2016 17:38:25 +0000 (14:38 -0300)]
qemu/x86*: enable virtio for kernel config

It has better performance for block and net.
Enable virgl (DRM_VIRTIO_GPU) support for 3D acceleration.
And also DRM_BOCHS for better stdvga acceleration.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoqemu/x86: use symlinked kernel config
Gustavo Zacarias [Fri, 29 Apr 2016 17:38:24 +0000 (14:38 -0300)]
qemu/x86: use symlinked kernel config

It's exactly the same as the x86_64 variant so just create a symlink.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoopkg: add missing dependency on libarchive
Thomas De Schampheleire [Fri, 29 Apr 2016 17:59:38 +0000 (19:59 +0200)]
opkg: add missing dependency on libarchive

opkg requires libarchive. This was expressed in the Config.in file with a
select, but not in the .mk file.

Signed-off-by: Thomas De Schampheleire <thomas.de.schampheleire@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolibtommath: build with -fPIC
Francois Perrad [Sat, 30 Apr 2016 08:33:07 +0000 (10:33 +0200)]
libtommath: build with -fPIC

This fixes the build on x86_64, see:

  http://autobuild.buildroot.net/results/212/212469db5dc8399070390603c0fdf7f12b130cda/

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoperl: bump to version 5.22.2
Francois Perrad [Sat, 30 Apr 2016 10:00:46 +0000 (12:00 +0200)]
perl: bump to version 5.22.2

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolinux-headers: bump 4.1.x series
Gustavo Zacarias [Fri, 29 Apr 2016 12:16:48 +0000 (09:16 -0300)]
linux-headers: bump 4.1.x series

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoshairport-sync: bump to version 2.8.3
Jörg Krause [Fri, 29 Apr 2016 06:24:46 +0000 (08:24 +0200)]
shairport-sync: bump to version 2.8.3

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agophp: security bump to version 5.6.21
Gustavo Zacarias [Fri, 29 Apr 2016 00:19:56 +0000 (21:19 -0300)]
php: security bump to version 5.6.21

Fixes (CVEs not assigned yet):
bug #72094 - Out of bounds heap read access in exif header processing
bug #71912 - libgd: signedness vulnerability
bug #72061 - Out-of-bounds reads in zif_grapheme_stripos with negative offset
bug #71843 - null ptr deref ZEND_RETURN_SPEC_CONST_HANDLER
bug #71952 - Corruption inside imageaffinematrixget

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopurge-locales: Handle empty locale directories better
Trent Piepho [Tue, 8 Mar 2016 21:02:15 +0000 (21:02 +0000)]
purge-locales: Handle empty locale directories better

If a locale directory is empty, shell code like "for langdir in
$$dir/*;" will loop once with langdir set to "path/to/dir/*", rather
than not looping at all, which would obviously be the desired
behavior.

Then "grep -qx $${langdir##*/}" ungoes two shell expansions (how?)
that transform the expression from "${langdir##*/}" to "*" to "list of
all files in buildroot root dir".  Which is most certainly not what
this command was supposed to do.

If one of those files happens to be an 8GB flash image, grep consumes
all available memory and crashes trying to search it.

Signed-off-by: Trent Piepho <tpiepho@kymetacorp.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoconfigs/sheevaplug_defconfig: use 4.5.2 kernel, configure eth0
Peter Korsgaard [Thu, 28 Apr 2016 21:29:13 +0000 (23:29 +0200)]
configs/sheevaplug_defconfig: use 4.5.2 kernel, configure eth0

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agomoarvm: use libtommath
Francois Perrad [Thu, 28 Apr 2016 19:59:31 +0000 (21:59 +0200)]
moarvm: use libtommath

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoxf86-input-libinput: bump to version 0.18.0
Gustavo Zacarias [Thu, 28 Apr 2016 20:30:55 +0000 (17:30 -0300)]
xf86-input-libinput: bump to version 0.18.0

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoxterm: bump to version 324
Gustavo Zacarias [Thu, 28 Apr 2016 20:30:34 +0000 (17:30 -0300)]
xterm: bump to version 324

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibxkbcommon: bump to version 0.6.1
Gustavo Zacarias [Thu, 28 Apr 2016 20:30:06 +0000 (17:30 -0300)]
libxkbcommon: bump to version 0.6.1

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosshfs: bump to version 2.7
Gustavo Zacarias [Thu, 28 Apr 2016 20:29:43 +0000 (17:29 -0300)]
sshfs: bump to version 2.7

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agosubversion: security bump to version 1.9.4
Gustavo Zacarias [Thu, 28 Apr 2016 18:28:43 +0000 (15:28 -0300)]
subversion: security bump to version 1.9.4

Fixes:
CVE-2016-2167 - svnserve/sasl may authenticate users using the wrong
realm.
CVE-2016-2168 - Remotely triggerable DoS vulnerability in mod_authz_svn
during COPY/MOVE authorization check.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/nodejs: bump version to 6.0.0
Martin Bark [Thu, 28 Apr 2016 15:39:55 +0000 (16:39 +0100)]
package/nodejs: bump version to 6.0.0

See https://nodejs.org/en/blog/release/v6.0.0/

The patches from 5.11.0 have been copied to 6.0.0 with the following
changes:

 - Removed 0001-Remove-dependency-on-Python-bz2-module.patch,
   0003-Fix-va_list-not-declared.patch and
   0004-Fix-support-for-uClibc-ng.patch as all 3 have been fixed upstream
 - Renamed 0002-gyp-force-link-command-to-use-CXX.patch to
   0001-gyp-force-link-command-to-use-CXX.patch

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agompv: va-api requires egl-drm, wayland and/or x11
Gustavo Zacarias [Thu, 28 Apr 2016 14:33:07 +0000 (11:33 -0300)]
mpv: va-api requires egl-drm, wayland and/or x11

The VA-API acceleration requires one or more of the egl-drm, wayland
and/or x11 backends.
Since the egl-drm backend means LIBGL (X11) + EGL + DRM we'll handle it
later once the mesa3d libgl hidden knob is applied.
So for now we'll support wayland and x11 until that happens. Fixes:
http://autobuild.buildroot.net/results/4b9/4b98d0c2c0617715e77fb47b3d97037c6b7562ec/

[Peter: pass --disable-vaapi if libva isn't enabled,
 invert wayland/X11 test as suggested by Thomas]
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/libdrm: bump version to 2.4.68
Bernd Kuhls [Thu, 28 Apr 2016 14:26:23 +0000 (16:26 +0200)]
package/libdrm: bump version to 2.4.68

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibtomcrypt: new package
Francois Perrad [Sun, 10 Apr 2016 14:55:25 +0000 (16:55 +0200)]
libtomcrypt: new package

[Peter: fix building without wchar]
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agolibtommath: new package
Francois Perrad [Sun, 10 Apr 2016 14:55:24 +0000 (16:55 +0200)]
libtommath: new package

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agompv: fix typo in xkbcommon comment
Peter Korsgaard [Thu, 28 Apr 2016 12:14:33 +0000 (14:14 +0200)]
mpv: fix typo in xkbcommon comment

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agochrony: bump version
Peter Korsgaard [Thu, 28 Apr 2016 12:11:41 +0000 (14:11 +0200)]
chrony: bump version

From the release notes:

Enhancements
------------
* Add support for NTP and command response rate limiting
* Add support for dropping root privileges on Mac OS X, FreeBSD, Solaris
* Add require and trust options for source selection
* Enable logchange by default (1 second threshold)
* Set RTC on Mac OS X with rtcsync directive
* Allow binding to NTP port after dropping root privileges on NetBSD
* Drop CAP_NET_BIND_SERVICE capability on Linux when NTP port is disabled
* Resolve names in separate process when seccomp filter is enabled
* Replace old records in client log when memory limit is reached
* Don't reveal local time and synchronisation state in client packets
* Don't keep client sockets open for longer than necessary
* Ignore poll in KoD RATE packets as ntpd doesn't always set it correctly
* Warn when using keys shorter than 80 bits
* Add keygen command to generate random keys easily
* Add serverstats command to report NTP and command packet statistics

Bug fixes
---------
* Fix clock correction after making step on Mac OS X
* Fix building on Solaris

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agopackage/cryptopp: Backport gcc compatibility patch
Julian Scheel [Mon, 25 Apr 2016 08:09:29 +0000 (10:09 +0200)]
package/cryptopp: Backport gcc compatibility patch

Import patch from cryptopp upstream which fixes the gcc version checks
for using attribute deprecated with messages. Fixes build with host
gcc versions < 4.5.

Signed-off-by: Julian Scheel <julian@jusst.de>
[Thomas:
 - directly use the patch from upstream through <pkg>_PATCH rather
   than storing it in package/cryptopp/, as it helps avoiding
   line-endings problems: upstream has the source code with DOS line
   endings.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agompv: fix wayland deps
Gustavo Zacarias [Thu, 28 Apr 2016 11:20:45 +0000 (08:20 -0300)]
mpv: fix wayland deps

The wayland backend requires libxkbcommon, so when wayland is available
select it to avoid build failure and obscure dependencies. Fixes:
http://autobuild.buildroot.net/results/ed2/ed2660361c9720e48dd5959f2711fd7f14031b0d/

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agoraspberrypi3_defconfig: bump to kernel version 4.4.8
Benoît Mauduit [Wed, 27 Apr 2016 21:21:00 +0000 (23:21 +0200)]
raspberrypi3_defconfig: bump to kernel version 4.4.8

Signed-off-by: Benoît Mauduit <bmauduit@beneth.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoraspberrypi2_defconfig: bump to kernel version 4.4.8
Benoît Mauduit [Wed, 27 Apr 2016 21:20:59 +0000 (23:20 +0200)]
raspberrypi2_defconfig: bump to kernel version 4.4.8

Signed-off-by: Benoît Mauduit <bmauduit@beneth.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoraspberrypi_defconfig: bump to kernel version 4.4.8
Benoît Mauduit [Wed, 27 Apr 2016 21:20:58 +0000 (23:20 +0200)]
raspberrypi_defconfig: bump to kernel version 4.4.8

Signed-off-by: Benoît Mauduit <bmauduit@beneth.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agorpi-firmware: change overlay file suffix from dtb to dtbo
Peter Seiderer [Mon, 25 Apr 2016 21:48:34 +0000 (23:48 +0200)]
rpi-firmware: change overlay file suffix from dtb to dtbo

Commit dc7b1c0 (rpi-firmware: bump version) bumped rpi-firmware to a version
based on kernel 4.4.x, but didn't update the overlay logic to handle the
.dtbo files from dynamic device tree support.

For details, see:
https://www.raspberrypi.org/forums/viewtopic.php?f=107&t=139732

[Peter: extend description]
Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agompv: new package
Gustavo Zacarias [Wed, 27 Apr 2016 13:12:02 +0000 (10:12 -0300)]
mpv: new package

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agogcc: add support for gcc 6
Thomas Petazzoni [Wed, 27 Apr 2016 13:54:03 +0000 (15:54 +0200)]
gcc: add support for gcc 6

This commit adds the support for gcc 6. This release allows to remove
a large number of our gcc patches, mainly thanks to the Xtensa and
musl related patches being merged upstream.

Patches kept with no changes:

 100-uclibc-conf.patch
 301-missing-execinfo_h.patch
 810-arm-softfloat-libgcc.patch
 830-arm_unbreak_armv4t.patch
 840-microblaze-enable-dwarf-eh-support.patch
 860-cilk-wchar.patch
 890-fix-m68k-compile.patch

Patches dropped because they have been merged upstream, or were
already upstream backports:

 120-gcc-config.gcc-fix-typo-for-powerpc-e6500-cpu_is_64b.patch (merged)
 850-libstdcxx-uclibc-c99.patch (merged in a different form, see
 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=58393)
 870-xtensa-add-mauto-litpools-option.patch (upstream backport)
 871-xtensa-reimplement-register-spilling.patch (upstream backport)
 872-xtensa-use-unwind-dw2-fde-dip-instead-of-unwind-dw2-.patch (upstream backport)
 873-xtensa-fix-_Unwind_GetCFA.patch (upstream backport)
 874-xtensa-add-uclinux-support.patch (upstream backport)
 900-libitm-fixes-for-musl-support.patch (upstream backport)
 901-fixincludes-update-for-musl-support.patch (upstream backport)
 902-unwind-fix-for-musl.patch (upstream backport)
 903-libstdc++-libgfortran-gthr-workaround-for-musl.patch (upstream backport)
 904-musl-libc-config.patch (upstream backport)
 905-add-musl-support-to-gcc.patch (upstream backport)
 905-add-musl-support-to-gcc.patch (upstream backport)
 906-mips-musl-support.patch (upstream backport)
 907-x86-musl-support.patch (upstream backport)
 908-arm-musl-support.patch (upstream backport)
 909-aarch64-musl-support.patch (upstream backport)

Successfully build-time and run-time tested with
qemu_arm_vexpress_defconfig, using gcc 6.x, both in uClibc and musl
configurations.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
8 years agoyajl: remove obsolete patch
Jörg Krause [Mon, 25 Apr 2016 19:54:43 +0000 (21:54 +0200)]
yajl: remove obsolete patch

Commit 302563539dacb284576a443401cdfd061eb2e1e8 fixes link with libm for all
targets linking against libyajl{,_s}. This makes patch "0001-cmake-uClibc-Fix
-missing-libm-for-tests" obsolete so it is safe to remove it.

Instead of renumbering all remaining patches the patch defined in YAJL_PATCH
is fetched and put intto the packages directory. Having all the patches in one
places makes the number and order of the patches applied to the package more
clear.

Align patch "0003-Link-with-shared-libyajl-in-a-shared-build" with commit
302563539dacb284576a443401cdfd061eb2e1e8 and remove linking with libm from
test/api/CMakeLists.txt.

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agolibusbgx: new package
Gwenhael Goavec-Merou [Wed, 27 Apr 2016 10:18:48 +0000 (12:18 +0200)]
libusbgx: new package

libusbgx is a C library encapsulating the kernel USB gadget-configfs
userspace API functionality.

Signed-off-by: Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com>
[Thomas: adjust license information, there are included examples that
are installed by default, licensed under GPLv2+.]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
8 years agogzip: bump version to 1.8
Vicente Olivert Riera [Wed, 27 Apr 2016 10:25:09 +0000 (11:25 +0100)]
gzip: bump version to 1.8

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>