buildroot.git
5 years agopackage/setools: install for host-python3
Fabrice Fontaine [Tue, 28 Jul 2020 09:26:57 +0000 (11:26 +0200)]
package/setools: install for host-python3

setools needs python3 since version 4.2.0 and
https://github.com/SELinuxProject/setools/commit/e292a77c52ed882707c8d165e77914837367313f

However today in Buildroot, when no target python is selected, or when
BR2_PACKAGE_PYTHON=y, all host python modules are installed for
host-python, i.e Python 2. But this module won't install in Python 2,
so let's force its host variant to be installed with Python 3 on the
host. Of course, for that to work, its dependency must also be built
for host-python3, so we change it to the newly introduced
host-python3-cython package.

Fixes:
 - http://autobuild.buildroot.org/results/c2febcea5fbd8a21709721524ae9e9b5fc0896f9

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Tested-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/python3-cython: new package
Fabrice Fontaine [Tue, 28 Jul 2020 09:26:56 +0000 (11:26 +0200)]
package/python3-cython: new package

The host-setools package needs to be built for the host-python3, even
when the target Python is not necessarily Python 3.x. Since it depends
on host-python-cython, we need a Python 3 variant of it, which this
patch introduces.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Tested-by: Adam Duskett <Aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/php: bump version to 7.4.9
Bernd Kuhls [Fri, 7 Aug 2020 05:52:01 +0000 (07:52 +0200)]
package/php: bump version to 7.4.9

Changelog of this bugfix release:
https://www.php.net/ChangeLog-7.php#7.4.9

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/nitrogen8mn: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 18:03:53 +0000 (20:03 +0200)]
configs/nitrogen8mn: Linux needs host-openssl

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934109

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/nitrogen8mm: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 18:03:03 +0000 (20:03 +0200)]
configs/nitrogen8mm: Linux needs host-openssl

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934107

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/nitrogen8m: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 18:02:19 +0000 (20:02 +0200)]
configs/nitrogen8m: Linux needs host-openssl

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934102

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/nitrogen7: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 18:01:19 +0000 (20:01 +0200)]
configs/nitrogen7: Linux needs host-openssl

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934100

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/nitrogen6x: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 17:59:32 +0000 (19:59 +0200)]
configs/nitrogen6x: Linux needs host-openssl

The kernel configuration used for the nitrogen6x defconfig needs
host-openssl.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934098

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/nitrogen6sx: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 17:57:35 +0000 (19:57 +0200)]
configs/nitrogen6sx: Linux needs host-openssl

The kernel configuration used for the nitrogen6x defconfig needs
host-openssl.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934095

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/globalscale_espressobin: Linux needs host-openssl
Thomas Petazzoni [Sat, 8 Aug 2020 17:51:31 +0000 (19:51 +0200)]
configs/globalscale_espressobin: Linux needs host-openssl

The kernel configuration used for the globalscale_espressobin
defconfig needs host-openssl.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674933954

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/microchip_sama5d27_wlsom1_ek_mmc_dev: use bluez5-utils instead of bluez-utils
Thomas Petazzoni [Sat, 8 Aug 2020 17:49:14 +0000 (19:49 +0200)]
configs/microchip_sama5d27_wlsom1_ek_mmc_dev: use bluez5-utils instead of bluez-utils

bluez-utils has been removed, so use bluez5-utils instead for the
microchip_sama5d27-wlsom1_ek_mmc_dev configuration, to avoid a build
failure due to legacy options being selected.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/674934030

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/libcamera: needs faligned-new
Peter Seiderer [Fri, 31 Jul 2020 22:15:13 +0000 (00:15 +0200)]
package/libcamera: needs faligned-new

Fixes:

  - http://autobuild.buildroot.net/results/2db7292e251ce81d31187c3a9eb36dbc9236bd07

  ../src/libcamera/v4l2_videodevice.cpp: In member function 'int libcamera::V4L2VideoDevice::allocateBuffers(unsigned int, std::vector<std::unique_ptr<libcamera::FrameBuffer> >*)':
  ../src/libcamera/v4l2_videodevice.cpp:1139:39: error: 'new' of type 'libcamera::V4L2BufferCache' with extended alignment 8 [-Werror=aligned-new=]
   1139 |  cache_ = new V4L2BufferCache(*buffers);
        |                                       ^
  ../src/libcamera/v4l2_videodevice.cpp:1139:39: note: uses 'void* operator new(std::size_t)', which does not have an alignment parameter
  ../src/libcamera/v4l2_videodevice.cpp:1139:39: note: use '-faligned-new' to enable C++17 over-aligned new support
  ../src/libcamera/v4l2_videodevice.cpp: In member function 'int libcamera::V4L2VideoDevice::importBuffers(unsigned int)':
  ../src/libcamera/v4l2_videodevice.cpp:1315:36: error: 'new' of type 'libcamera::V4L2BufferCache' with extended alignment 8 [-Werror=aligned-new=]
   1315 |  cache_ = new V4L2BufferCache(count);
        |                                    ^
  ../src/libcamera/v4l2_videodevice.cpp:1315:36: note: uses 'void* operator new(std::size_t)', which does not have an alignment parameter
  ../src/libcamera/v4l2_videodevice.cpp:1315:36: note: use '-faligned-new' to enable C++17 over-aligned new support

Signed-off-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/x11r7/xlib_libX11: bump version to 1.6.11
Bernd Kuhls [Fri, 7 Aug 2020 04:55:29 +0000 (06:55 +0200)]
package/x11r7/xlib_libX11: bump version to 1.6.11

Reformatted license hash.

Quoting release notes:
https://lists.x.org/archives/xorg-announce/2020-August/003053.html
"This release fixes a regression introduced by the security patches in
 1.6.10.
 See https://gitlab.freedesktop.org/xorg/lib/libx11/-/issues/116 for
 details."

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/efl: avoid optimization flags added by meson
Romain Naour [Sat, 8 Aug 2020 09:42:30 +0000 (11:42 +0200)]
package/efl: avoid optimization flags added by meson

Efl's meson build system add some optimization flags related to cpu
architecture [1]. In the context of Buildroot, such optimization flags
are already provided by the toolchain wrapper.

For ppc, efl's meson expect the altivec support is available but this is
not the case for ppc e500 cpus.

Disable native-arch-optimization option to avoid such issue.

[1] https://git.enlightenment.org/core/efl.git/tree/meson.build?h=v1.24.3#n165

Fixes:
http://autobuild.buildroot.net/results/dd2586be32c25d93eebfaa743c1f7d36915bb0d7

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/f2fs-tools: fsck should use correct returncodes
Norbert Lange [Fri, 7 Aug 2020 09:20:01 +0000 (11:20 +0200)]
package/f2fs-tools: fsck should use correct returncodes

fsck.f2fs does not implement the returncodes from the fsck interface.
This is particularly bad if systemd is used with a root f2fs partition,
as it will interpret the rc as order to reboot.

for thread & pending upstream fix see:
https://sourceforge.net/p/linux-f2fs/mailman/message/37079401/

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/python-rpi-gpio: fix build with gcc 10.x
Michael Fischer [Fri, 7 Aug 2020 11:37:00 +0000 (13:37 +0200)]
package/python-rpi-gpio: fix build with gcc 10.x

0001-fix-build-with-gcc-10.x.patch: Add patch to fix build with gcc 10.x

Signed-off-by: Michael Fischer <mf@go-sys.de>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/smstools3: fix build with gcc 10.x
Michael Fischer [Fri, 7 Aug 2020 12:58:52 +0000 (14:58 +0200)]
package/smstools3: fix build with gcc 10.x

0001-fix-build-with-gcc-10.x.patch: Add patch to fix build with gcc 10.x
Fetch from: https://salsa.debian.org/debian-mobcom-team/smstools/-/blob/57a358a9eebbe2ca5639cc526f7027944ed95ea1/debian/patches/gcc10.patch

Signed-off-by: Michael Fischer <mf@go-sys.de>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/apache: security bump version to 2.4.46
Bernd Kuhls [Fri, 7 Aug 2020 17:11:00 +0000 (19:11 +0200)]
package/apache: security bump version to 2.4.46

Changelog: http://archive.apache.org/dist/httpd/CHANGES_2.4.46

Release notes: https://downloads.apache.org/httpd/Announcement2.4.html

Fixes CVE-2020-9490, CVE-2020-11984 & CVE-2020-11993:
https://httpd.apache.org/security/vulnerabilities_24.html

Added sha512 hash provided by upstream.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
[yann.morin.1998@free.fr:
  - don't add md5 and sha1 hashes
  - single comment above hashes
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/boost: fixup Optimization flag in boost build
Michael Nosthoff [Fri, 7 Aug 2020 08:58:12 +0000 (10:58 +0200)]
package/boost: fixup Optimization flag in boost build

When building with Boost Build the CXXFLAGS are extended depending
on the optimization level set. When not defined explicitly the
optimization level depends on the <variant>. For release it's 'speed'
and for debug it's set to 'off'

These flags overwrite the -O flag passed in with TARGET_CXXFLAGS as
it is appended when calling g++.

This commit sets the Optimization flags generated by Boost Build
to the value of TARGET_OPTIMIZATION no matter what level is used.

As Boost Build offers no nice way to alter those values the gcc
toolchain file is altered directly.

Signed-off-by: Michael Nosthoff <buildroot@heine.tech>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/libabseil-cpp: needs dynamic library support
Thomas Petazzoni [Fri, 7 Aug 2020 10:11:38 +0000 (12:11 +0200)]
package/libabseil-cpp: needs dynamic library support

The libabseil-cpp build needs <dlfcn.h>, so let's add a
!BR2_STATIC_LIBS dependency. The only package which is selecting
libabseil-cpp, grpc, already had this dependency anyway.

Fixes:

  http://autobuild.buildroot.net/results/2d796dd4cc43388da235b83f53778d902f477799/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/tftpd: fix build with gcc 10.x
Thomas Petazzoni [Fri, 7 Aug 2020 10:09:01 +0000 (12:09 +0200)]
package/tftpd: fix build with gcc 10.x

Take a patch from Fedora to fix the build of tftpd with gcc 10.x.

Fixes:

  http://autobuild.buildroot.net/results/750ddefd2c31872fd44e9ae70d87048d8512849d/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/feh: update hash of license file
Thomas Petazzoni [Fri, 7 Aug 2020 10:02:34 +0000 (12:02 +0200)]
package/feh: update hash of license file

In commit 8d8caaf0c295e60fadc0dc14039376bfecb379fa ("package/feh: bump
version to 3.4.1"), feh was bumped from 3.4 to 3.4.1.

However, the hash of the license file was not updated, even though the
COPYING file had seen a copyright year update:

-Copyright (C) 2010-2018 Daniel Friesel.
+Copyright (C) 2010-2020 Daniel Friesel.

Let's update the license file hash to fix legal-info.

Fixes:

  http://autobuild.buildroot.net/results/991fb57bc99c2f44a00c846688f1b3e017b87724/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoUpdate for 2020.08-rc1
Thomas Petazzoni [Thu, 6 Aug 2020 20:46:16 +0000 (22:46 +0200)]
Update for 2020.08-rc1

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoboot/uboot: Fix kconfig to use $(BR2_MAKE)
Brandon Maier [Tue, 4 Aug 2020 19:00:05 +0000 (14:00 -0500)]
boot/uboot: Fix kconfig to use $(BR2_MAKE)

U-Boot must use $(BR2_MAKE) as it uses a Make feature from v4.0. We
already use $(BR2_MAKE) in the BUILD_CMDS, but the kconfig commands
still uses $(MAKE). Without this fix, building U-Boot with kconfig will
fail with the following cryptic error.

> Makefile:37: *** missing separator.  Stop.

Signed-off-by: Brandon Maier <brandon.maier@rockwellcollins.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/pkg-kconfig: Support custom $(MAKE)
Brandon Maier [Tue, 4 Aug 2020 19:00:04 +0000 (14:00 -0500)]
package/pkg-kconfig: Support custom $(MAKE)

The U-Boot package requires GNU Make v4.0 or later, and so all U-Boot
"make" commands must use "$(BR2_MAKE)" so they use the host-make
package. Currently pkg-kconfig is hardcoded to uses $(MAKE), so add a
way to support $(BR2_MAKE). The package infra for pkg-automake and
pkg-cmake have a similar problem, and they solved it by defining a
$(PKG)_MAKE variable, and allowing each package to override it.

Signed-off-by: Brandon Maier <brandon.maier@rockwellcollins.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agoCHANGES: update for 2020.08-rc1
Thomas Petazzoni [Thu, 6 Aug 2020 20:36:12 +0000 (22:36 +0200)]
CHANGES: update for 2020.08-rc1

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agosupport/config-fragments/autobuild: update bleeding-edge br-arm-internal-glibc
Thomas Petazzoni [Thu, 6 Aug 2020 20:33:29 +0000 (22:33 +0200)]
support/config-fragments/autobuild: update bleeding-edge br-arm-internal-glibc

Update our bleeding edge br-arm-internal-glibc defconfig to use the
latest version of gcc and binutils, so that we test these in the
autobuilders.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/librtlsdr: bump to last commit
Gwenhael Goavec-Merou [Mon, 27 Jul 2020 16:30:39 +0000 (18:30 +0200)]
package/librtlsdr: bump to last commit

Last official release is 2 years ago.

Current master branch provides fixes and improvements:
- fix crash with usbfs mmap with usb controler has no DMA support and kernel < 5.6 [1].
- better SDR dongle configuration

This patch:
- bump librtlsdr to d794155ba65796a76cd0a436f9709f4601509320 (2020/03/18)
- adapt 0001-disable_shared_library_target_in_build.patch
  (http://lists.osmocom.org/pipermail/osmocom-sdr/2020-May/002075.html)
- add option to enable/disable zerocopy buffer on non arm platform

[1] https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/drivers/usb/core?h=v5.8-rc3&id=a0e710a7def471b8eb779ff551fc27701da49599

Signed-off-by: Gwenhael Goavec-Merou <gwenhael.goavec-merou@trabucayre.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/busybox: enable flags for use as systemd pager
Norbert Lange [Fri, 17 Jul 2020 10:18:36 +0000 (12:18 +0200)]
package/busybox: enable flags for use as systemd pager

If the less package is not enable and systemd is enabled,
then configure the less applet to fully work with systemd.

systemd sets the flags for less in an environment variable
and requires a few options for correct display.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agosupport/testing/tests/boot/test_atf: update U-Boot/ATF use in TestATFVexpress
Thomas Petazzoni [Mon, 20 Jul 2020 20:38:11 +0000 (22:38 +0200)]
support/testing/tests/boot/test_atf: update U-Boot/ATF use in TestATFVexpress

This simply updates to more modern versions of ATF and U-Boot.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/ima-evm-utils: bump version to 1.3
Petr Vorel [Mon, 27 Jul 2020 23:00:50 +0000 (01:00 +0200)]
package/ima-evm-utils: bump version to 1.3

added tpm2-tss as dependency (needed for ima_boot_aggregate cmd for
reading PCR; better to use libtss2-esys and libtss2-rc than require
tsspcrread binary in runtime)

added also sha1 hash from sourceforge

added 2 patches fixing build (both are 1.3 specific)

Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/lxc: fix build when __NR_signalfd is not available
Fabrice Fontaine [Tue, 28 Jul 2020 12:42:38 +0000 (14:42 +0200)]
package/lxc: fix build when __NR_signalfd is not available

Fixes:
 - http://autobuild.buildroot.org/results/75096a48d2dbda57459523db3ed0952e63f93535

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/glibc: fix build on RISC-V with gcc 10.x
Romain Naour [Sat, 25 Jul 2020 22:06:41 +0000 (00:06 +0200)]
package/glibc: fix build on RISC-V with gcc 10.x

Backport upstream commit to use __has_include:
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=28dd3939221ab26c6774097e9596e30d9753f758

Otherwise glibc fails to build with gcc 10:

warning: "__has_include__" is not defined, evaluates to 0 [-Wundef]
../sysdeps/unix/sysv/linux/riscv/flush-icache.c:24:21: error: missing binary operator before token "("
   24 | #if __has_include__ (<asm/syscalls.h>)
      |                     ^

Fixes:
https://gitlab.com/kubu93/buildroot/-/jobs/655618374

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Alistair Francis <Alistair.Francis@wdc.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/qemu_mips64r6: fix Linux kernel build with gcc 10.x
Romain Naour [Sat, 25 Jul 2020 22:06:40 +0000 (00:06 +0200)]
configs/qemu_mips64r6: fix Linux kernel build with gcc 10.x

From [1]

"GCC 10 (PR 91233) won't silently allow registers that are not architecturally
available to be present in the clobber list anymore, resulting in build failure
for mips*r6 targets in form of:
...
.../sysdep.h:146:2: error: the register ‘lo’ cannot be clobbered in ‘asm’ for the current target
  146 |  __asm__ volatile (  \
      |  ^~~~~~~

This is because base R6 ISA doesn't define hi and lo registers w/o DSP extension.
This patch provides the alternative clobber list for r6 targets that won't include
those registers."

Since kernel 5.4 and mips support for generic vDSO [2], the kernel fails to build
for mips r6 cpus with gcc 10 for the same reason as glibc.

[1] https://sourceware.org/git/?p=glibc.git;a=commit;h=020b2a97bb15f807c0482f0faee2184ed05bcad8
[2] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=24640f233b466051ad3a5d2786d2951e43026c9d

Fixes:
https://gitlab.com/kubu93/buildroot/-/jobs/655618363
https://gitlab.com/kubu93/buildroot/-/jobs/655618364

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoconfigs/qemu_mips32r6: fix Linux kernel build with gcc 10.x
Romain Naour [Sat, 25 Jul 2020 22:06:39 +0000 (00:06 +0200)]
configs/qemu_mips32r6: fix Linux kernel build with gcc 10.x

From [1]:

"GCC 10 (PR 91233) won't silently allow registers that are not architecturally
available to be present in the clobber list anymore, resulting in build failure
for mips*r6 targets in form of:
...
.../sysdep.h:146:2: error: the register ‘lo’ cannot be clobbered in ‘asm’ for the current target
  146 |  __asm__ volatile (  \
      |  ^~~~~~~

This is because base R6 ISA doesn't define hi and lo registers w/o DSP extension.
This patch provides the alternative clobber list for r6 targets that won't include
those registers."

Since kernel 5.4 and mips support for generic vDSO [2], the kernel fail to build
for mips r6 cpus with gcc 10 for the same reason as glibc.

[1] https://sourceware.org/git/?p=glibc.git;a=commit;h=020b2a97bb15f807c0482f0faee2184ed05bcad8
[2] https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=24640f233b466051ad3a5d2786d2951e43026c9d

Fixes:
https://gitlab.com/kubu93/buildroot/-/jobs/655618359
https://gitlab.com/kubu93/buildroot/-/jobs/655618360

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/valgrind: bump version to 3.16.1
Michael Nosthoff [Wed, 5 Aug 2020 15:15:10 +0000 (17:15 +0200)]
package/valgrind: bump version to 3.16.1

* 3.16.1 fixes two critical bugs discovered after 3.16.0 was frozen.
  for details see [1].
* changed SITE from ftp to https.

[1] https://www.valgrind.org/docs/manual/dist.news.html

Signed-off-by: Michael Nosthoff <buildroot@heine.tech>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/php: add FFI extension support
Tom Marcuzzi [Tue, 28 Jul 2020 16:31:25 +0000 (18:31 +0200)]
package/php: add FFI extension support

Signed-off-by: Tom Marcuzzi <tom.marcuzzi@orolia.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/nginx: drop gdlib-config
Fabrice Fontaine [Fri, 31 Jul 2020 08:07:15 +0000 (10:07 +0200)]
package/nginx: drop gdlib-config

Drop gdlib-config and use pkg-config to find gd.
Indeed, gdlib.pc is available since version 2.1.0 and
https://github.com/libgd/libgd/commit/071a2a94ee9f9e5ce00ff689dfe67a0fcb885ad6
and gdlib-config has been dropped from version 2.3.0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/meson: update rpath patch to upstream version
James Hilliard [Fri, 31 Jul 2020 07:48:21 +0000 (01:48 -0600)]
package/meson: update rpath patch to upstream version

The version of this patch merged by upstream has some changes to rpath
syntax matching and handling for additional syntax edge cases.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: disable portabled
Norbert Lange [Fri, 31 Jul 2020 21:53:45 +0000 (23:53 +0200)]
package/systemd: disable portabled

portabled is a container-like service, but so far its still a preview
and basically unknown as the portablectl is hidden in
/usr/lib/systemd.

Disable it for now.

See https://systemd.io/PORTABLE_SERVICES/

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: remove util-linux nologin dependency
Norbert Lange [Fri, 31 Jul 2020 21:53:44 +0000 (23:53 +0200)]
package/systemd: remove util-linux nologin dependency

if the tool is not enabled, then configure /bin/false
as fallback.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: remove util-linux binaries dependency
Norbert Lange [Fri, 31 Jul 2020 21:53:43 +0000 (23:53 +0200)]
package/systemd: remove util-linux binaries dependency

None of the tools in this set are necessary.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: remove libblkid dependency
Norbert Lange [Fri, 31 Jul 2020 21:53:42 +0000 (23:53 +0200)]
package/systemd: remove libblkid dependency

this dependency is optional, it is used to
allow udev to add information to blockdevices.
Aslong as MOUNT or FSCK are enabled, it will end up enabled
anyway, but this seems more clear and correct.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: import does not need bzip2 and lz4
Norbert Lange [Fri, 31 Jul 2020 21:53:41 +0000 (23:53 +0200)]
package/systemd: import does not need bzip2 and lz4

Those are optional dependencies.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: support new v246 options
Norbert Lange [Fri, 31 Jul 2020 21:18:46 +0000 (23:18 +0200)]
package/systemd: support new v246 options

This adds switches for new options:

initrd: Installs services if systemd is used on an initramfs,
useless otherwise

kernel-install: helper scripts to update kernel with an
systemd-boot partition

analyze: tool to analyze bootup and dependencies

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/systemd: bump version to 246
Norbert Lange [Fri, 31 Jul 2020 21:18:45 +0000 (23:18 +0200)]
package/systemd: bump version to 246

Add zstd as optional dependency, and
disable new options for host-systemd.

Signed-off-by: Norbert Lange <nolange79@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/efl: keep X11 input 2.2+ enabled
Romain Naour [Sat, 1 Aug 2020 14:20:35 +0000 (16:20 +0200)]
package/efl: keep X11 input 2.2+ enabled

Since efl 1.23, X11 input 2.2+ has been enabled by default [1].

>From [2]:
"It would be a pretty unusual system to have x and no xinput2.2 support."

While at it, enable explicitely X11 input 2 (enabled by default).

[1] https://git.enlightenment.org/core/efl.git/commit/?id=cf005ac54abdea843e5731765e41e5088275249f
[2] https://sourceforge.net/p/enlightenment/mailman/message/37065780/

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/enlightenment: bump to version 0.24.2
Romain Naour [Sat, 1 Aug 2020 14:20:34 +0000 (16:20 +0200)]
package/enlightenment: bump to version 0.24.2

- Disable new dependency on polkit for now.
- Add OFL license for fonts.
- Update COPYING file hash.
- Update indentation in hash file (two spaces)

See:
https://www.enlightenment.org/news/e24.2

enlightenment 0.24 require efl >= 1.24.

https://git.enlightenment.org/core/enlightenment.git/commit/?id=4b6467685e7ac9ae68f08bd524f332a908f5fa74

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/terminology: bump to version 1.8.0
Romain Naour [Sat, 1 Aug 2020 14:20:33 +0000 (16:20 +0200)]
package/terminology: bump to version 1.8.0

See:
https://www.enlightenment.org/news/2020-07-26-terminology-1.8.0

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/efl: bump to version 1.24.3
Romain Naour [Sat, 1 Aug 2020 14:20:32 +0000 (16:20 +0200)]
package/efl: bump to version 1.24.3

- Remove upstream patch [1].
- evas-modules option removed since all evas-modules are now built shared. [2]
- Make sure that mono is disabled [3].
- gstreamer support removed from emotion & evas [4].
- emotion-loaders-disabler & emotion-generic-loaders-disabler removed [5].
- Add openjpeg dependency for jp2k evas loader [6] otherwise the build
  system fail when only libjpeg.so is provided (jpeg-turbo or libjpeg).
- Update COMPLIANCE file hash due to esacpe library removal [7].
- Update COPYING file hash due to new csharp,cxx libraries and esacpe,emotion
  removal [8].
- Remove bullet dependency from recommended option for efl [9].
- Add new patches to fix build with "Unknown variable" issue with meson.
- Fix Evas_Engine_GL_Drm.h include path.

[1] https://git.enlightenment.org/core/efl.git/commit/?id=a2afcfc872c29bd2c4a60fdafbc655c90f938d1e
    https://git.enlightenment.org/core/efl.git/commit/?id=c245b576aad09ac5faeb800de7f7c4fef87c6363
[2] https://git.enlightenment.org/core/efl.git/commit/?id=6d8e39a6425e721eb40e0cb1e67f1cbf5b223cc0
[3] https://git.enlightenment.org/core/efl.git/commit/?id=17a81bee4a53891e44a165a14ca20027f9aa0824
[4] https://git.enlightenment.org/core/efl.git/commit/?id=b8dc80c144fec54a521987535c57b995748ccece
[5] https://git.enlightenment.org/core/efl.git/commit/?id=075bab83c4288b5de20f6acfc6b0459656ea85e0
[6] https://git.enlightenment.org/core/efl.git/commit/?id=8ec6e28b7cc568a8bb636de90b2dd10f19db2be3
[7] https://git.enlightenment.org/core/efl.git/commit/?id=f3d9b8ee703621cfbb52a03d346335148318af7a
[8] https://git.enlightenment.org/core/efl.git/commit/?id=40a980174b7e29e6946f7425bd7a238ae45900f8
    https://git.enlightenment.org/core/efl.git/commit/?id=a3ade15d5a45e7d564b7c1304f561af9c4203991
    https://git.enlightenment.org/core/efl.git/commit/?id=31da42a0503556a59c190efcb0a79331e828bf6c
[9] https://git.enlightenment.org/core/efl.git/commit/?id=523a64d2265c13a82ba73022d10919f0e392bab2

See:
https://www.enlightenment.org/news/efl-1.24.0
https://www.enlightenment.org/news/efl-1.24.1
https://www.enlightenment.org/news/efl-1.24.2
https://www.enlightenment.org/news/efl-1.24.3

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/efl: bump to version 1.23.2
Romain Naour [Sat, 1 Aug 2020 14:20:31 +0000 (16:20 +0200)]
package/efl: bump to version 1.23.2

- Remove upstream patch [1].
- Switch to meson build system.
- The cryptography backend is now mandatory, use openssl for the host
  and use openssl by default for the target if gnutls is not selected.
- Add host-giflib since the dependency can't be disabled anymore.
  (even by adding gif in HOST_EFL_EVAS_LOADERS_DISABLER).
- Disable explicitely meson build options that was not previously handled
  (avahi, emotion, ecore-imf-loarders...)
- Elput support is now enabled through drm meson option [2], remove
  BR2_PACKAGE_EFL_ELPUT.
- Update license file hash (csharp licensing information, cxx bindings
  licensing)
- Add COPYING.images and licenses/COPYING.ASL license file.
- The evas png loader is now mandatory [3] (even by adding png in
  EFL_EVAS_LOADERS_DISABLER).
- Same for the evas gif loader [4].
- Backport an upstream patch to fix the evas build with -Dwl=false.
- Update indentation of hash file (two spaces)

See:
https://www.enlightenment.org/news/efl-1.23.0
https://www.enlightenment.org/news/efl-1.23.1
https://www.enlightenment.org/news/efl-1.23.2

[1] https://git.enlightenment.org/core/efl.git/commit/?id=c46a8143916f0d3f66bbdffc7107c97c88df212d
[2] https://git.enlightenment.org/core/efl.git/tree/meson.build?h=v1.23.3#n297
[3] https://git.enlightenment.org/core/efl.git/tree/src/modules/evas/meson.build?h=v1.23.3#n2
[4] https://git.enlightenment.org/core/efl.git/tree/src/modules/evas/meson.build?h=v1.23.3#n4

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/sam-ba: bump to version 3.3.1
Angelo Compagnucci [Sat, 1 Aug 2020 14:22:43 +0000 (16:22 +0200)]
package/sam-ba: bump to version 3.3.1

sam-ba tool moved to github, changed license to GPLv2 and dropped x86
support.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/fmt: bump to version 7.0.2
Pierre-Jean Texier [Mon, 3 Aug 2020 17:03:50 +0000 (19:03 +0200)]
package/fmt: bump to version 7.0.2

See full changelog: https://github.com/fmtlib/fmt/releases/tag/7.0.2

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agoboot/at91bootstrap3: enable for cortexa7
Eugen Hristev [Fri, 31 Jul 2020 09:02:31 +0000 (12:02 +0300)]
boot/at91bootstrap3: enable for cortexa7

Enable this bootloader for cortex a7 based SoCs: support for the
sama7g5 SoC is now in upstream at91bootstrap3, and it is a Cortex-A7
based SoC.

Signed-off-by: Eugen Hristev <eugen.hristev@microchip.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/ruby: security bump to version 2.4.10
Peter Korsgaard [Tue, 4 Aug 2020 10:08:33 +0000 (12:08 +0200)]
package/ruby: security bump to version 2.4.10

Fixes the following security issues:

- CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional
  fix)
  https://www.ruby-lang.org/en/news/2020/03/19/json-dos-cve-2020-10663/

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/cups: bump to version 2.3.3
Angelo Compagnucci [Wed, 24 Jun 2020 20:43:44 +0000 (22:43 +0200)]
package/cups: bump to version 2.3.3

This patch bumps cups to version 2.3.3.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Michael Trimarchi <michael@amarulasolutions.com>
Tested-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/cups: add proper init script
Angelo Compagnucci [Wed, 24 Jun 2020 20:43:43 +0000 (22:43 +0200)]
package/cups: add proper init script

Cups service for systemv was erroneously installed in /etc/rcX.d and
therefore not working. Also, its init script installed in /etc/init.d
was definitely not a Buildroot-style init script.

This patch adds a Buildroot style init script instead of using the
example provided by the package.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/gd: fix CVE-2018-14553 and CVE-2019-6977
Fabrice Fontaine [Fri, 31 Jul 2020 07:51:36 +0000 (09:51 +0200)]
package/gd: fix CVE-2018-14553 and CVE-2019-6977

- Fix CVE-2018-14553 : gdImageClone in gd.c in libgd 2.1.0-rc2 through
  2.2.5 has a NULL pointer dereference allowing attackers to crash an
  application via a specific function call sequence.

- Fix CVE-2019-6977: gdImageColorMatch in gd_color_match.c in the GD
  Graphics Library (aka LibGD) 2.2.5, as used in the imagecolormatch
  function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14,
  and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be
  exploited by an attacker who is able to trigger imagecolormatch calls
  with crafted image data.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/wayland: fix build with toolchains without c++
Bernd Kuhls [Wed, 29 Jul 2020 18:16:50 +0000 (20:16 +0200)]
package/wayland: fix build with toolchains without c++

Fixes
http://autobuild.buildroot.net/results/fb2/fb205601cac2bbf8e70ec2bf4eaf22264d8edc96/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/jasper: security bump to version 2.0.19
Michael Vetter [Wed, 29 Jul 2020 13:15:56 +0000 (15:15 +0200)]
package/jasper: security bump to version 2.0.19

Fixes the following security issues:
* Fix CVE-2018-9154
  https://github.com/jasper-software/jasper/issues/215
  https://github.com/jasper-software/jasper/issues/166
  https://github.com/jasper-software/jasper/issues/175
  https://github.com/jasper-maint/jasper/issues/8

* Fix CVE-2018-19541
  https://github.com/jasper-software/jasper/pull/199
  https://github.com/jasper-maint/jasper/issues/6

* Fix CVE-2016-9399, CVE-2017-13751
  https://github.com/jasper-maint/jasper/issues/1

* Fix CVE-2018-19540
  https://github.com/jasper-software/jasper/issues/182
  https://github.com/jasper-maint/jasper/issues/22

* Fix CVE-2018-9055
  https://github.com/jasper-maint/jasper/issues/9

* Fix CVE-2017-13748
  https://github.com/jasper-software/jasper/issues/168

* Fix CVE-2017-5503, CVE-2017-5504, CVE-2017-5505
  https://github.com/jasper-maint/jasper/issues/3
  https://github.com/jasper-maint/jasper/issues/4
  https://github.com/jasper-maint/jasper/issues/5
  https://github.com/jasper-software/jasper/issues/88
  https://github.com/jasper-software/jasper/issues/89
  https://github.com/jasper-software/jasper/issues/90

* Fix CVE-2018-9252
  https://github.com/jasper-maint/jasper/issues/16

* Fix CVE-2018-19139
  https://github.com/jasper-maint/jasper/issues/14

* Fix CVE-2018-19543, CVE-2017-9782
  https://github.com/jasper-maint/jasper/issues/13
  https://github.com/jasper-maint/jasper/issues/18
  https://github.com/jasper-software/jasper/issues/140
  https://github.com/jasper-software/jasper/issues/182

* Fix CVE-2018-20570
  https://github.com/jasper-maint/jasper/issues/11
  https://github.com/jasper-software/jasper/issues/191

* Fix CVE-2018-20622
  https://github.com/jasper-maint/jasper/issues/12
  https://github.com/jasper-software/jasper/issues/193

* Fix CVE-2016-9398
  https://github.com/jasper-maint/jasper/issues/10

* Fix CVE-2017-14132
  https://github.com/jasper-maint/jasper/issues/17

* Fix CVE-2017-5499
  https://github.com/jasper-maint/jasper/issues/2
  https://github.com/jasper-software/jasper/issues/63

* Fix CVE-2018-18873
  https://github.com/jasper-maint/jasper/issues/15
  https://github.com/jasper-software/jasper/issues/184

* Fix CVE-2017-13750
  https://github.com/jasper-software/jasper/issues/165
  https://github.com/jasper-software/jasper/issues/174

Furthermore, drop now upstreamed patches and change to the new
jasper-software upstream location.

Signed-off-by: Michael Vetter <jubalh@iodoru.org>
[Peter: reword for security bump]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/cc-tool: bump to version 0.27
Fabrice Fontaine [Sat, 1 Aug 2020 12:29:07 +0000 (14:29 +0200)]
package/cc-tool: bump to version 0.27

- Switch site to get latest version
- Drop patches (already in version)
- Update indentation in hash file (two spaces)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/vdr: fix build with glibc 2.31
Fabrice Fontaine [Sat, 1 Aug 2020 12:26:04 +0000 (14:26 +0200)]
package/vdr: fix build with glibc 2.31

Fixes:
 - http://autobuild.buildroot.org/results/b8475cfddee94d2938be98356e53328b5cd064b5

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/unbound: bump version to 1.11.0
Stefan Ott [Sat, 1 Aug 2020 00:38:51 +0000 (02:38 +0200)]
package/unbound: bump version to 1.11.0

Signed-off-by: Stefan Ott <stefan@ott.net>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/libmbim: bump version to 1.24.2
Petr Vorel [Fri, 31 Jul 2020 23:19:30 +0000 (01:19 +0200)]
package/libmbim: bump version to 1.24.2

Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/waffle: bump version to 1.6.1
Bernd Kuhls [Mon, 3 Aug 2020 06:10:27 +0000 (08:10 +0200)]
package/waffle: bump version to 1.6.1

Release notes for v1.6.1:
https://lists.freedesktop.org/archives/mesa-announce/2020-March/000575.html

Removed patch 0001 which was applied upstream.

Switched _SITE to gitlab according to release notes for v1.6.0:
https://lists.freedesktop.org/archives/mesa-announce/2019-June/000520.html

Added -Dwaffle_has_nacl=OFF to CONF_OPTS to disable nacl support, this
avoids adding a dependency to C++:
https://gitlab.freedesktop.org/mesa/waffle/-/commit/6ca943584e593aec2bd4f9c66d91859e63e02d61#9a2aa4db38d3115ed60da621e012c0efc0172aae_27_26

Added support for mesa3d surfaceless egl:
https://gitlab.freedesktop.org/mesa/waffle/commit/7318f22c4761035c03e99420edf3e92f07e06c9c

Added support for bash-completion:
https://gitlab.freedesktop.org/mesa/waffle/-/blob/maint-1.6/CMakeLists.txt#L189

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/python-cryptography: bump to version 3.0
James Hilliard [Sat, 1 Aug 2020 21:35:32 +0000 (15:35 -0600)]
package/python-cryptography: bump to version 3.0

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/python-cbor2: bump to version 5.1.2
James Hilliard [Sat, 1 Aug 2020 21:30:15 +0000 (15:30 -0600)]
package/python-cbor2: bump to version 5.1.2

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/python-pycryptodomex: bump to version 3.9.8
James Hilliard [Sat, 1 Aug 2020 20:10:27 +0000 (14:10 -0600)]
package/python-pycryptodomex: bump to version 3.9.8

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/python-yarl: bump to version 1.5.1
James Hilliard [Sat, 1 Aug 2020 20:00:55 +0000 (14:00 -0600)]
package/python-yarl: bump to version 1.5.1

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/sysdig: Fix check-package
Stephane Viau [Mon, 3 Aug 2020 07:31:14 +0000 (09:31 +0200)]
package/sysdig: Fix check-package

This patch fixes a couple of 'check-package' errors:

package/sysdig/sysdig.mk:23: remove trailing backslash
package/sysdig/sysdig.mk:25: consecutive empty lines

Signed-off-by: Stephane Viau <stephane.viau@oss.nxp.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agoboot/grub2: Backport Boothole securify fixes
Stefan Sørensen [Mon, 3 Aug 2020 08:00:25 +0000 (10:00 +0200)]
boot/grub2: Backport Boothole securify fixes

Details: https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html

Fixes the following security issues:

 * CVE-2020-10713
   A flaw was found in grub2, prior to version 2.06. An attacker may
   use the GRUB 2 flaw to hijack and tamper the GRUB verification
   process. This flaw also allows the bypass of Secure Boot
   protections. In order to load an untrusted or modified kernel, an
   attacker would first need to establish access to the system such as
   gaining physical access, obtain the ability to alter a pxe-boot
   network, or have remote access to a networked system with root
   access. With this access, an attacker could then craft a string to
   cause a buffer overflow by injecting a malicious payload that leads
   to arbitrary code execution within GRUB. The highest threat from
   this vulnerability is to data confidentiality and integrity as well
   as system availability.

 * CVE-2020-14308
   In grub2 versions before 2.06 the grub memory allocator doesn't
   check for possible arithmetic overflows on the requested allocation
   size. This leads the function to return invalid memory allocations
   which can be further used to cause possible integrity,
   confidentiality and availability impacts during the boot process.

 * CVE-2020-14309
   There's an issue with grub2 in all versions before 2.06 when
   handling squashfs filesystems containing a symbolic link with name
   length of UINT32 bytes in size. The name size leads to an
   arithmetic overflow leading to a zero-size allocation further
   causing a heap-based buffer overflow with attacker controlled data.

 * CVE-2020-14310
   An integer overflow in read_section_from_string may lead to a heap
   based buffer overflow.

 * CVE-2020-14311
   An integer overflow in grub_ext2_read_link may lead to a heap-based
   buffer overflow.

 * CVE-2020-15706
   GRUB2 contains a race condition in grub_script_function_create()
   leading to a use-after-free vulnerability which can be triggered by
   redefining a function whilst the same function is already
   executing, leading to arbitrary code execution and secure boot
   restriction bypass

 * CVE-2020-15707
   Integer overflows were discovered in the functions grub_cmd_initrd
   and grub_initrd_init in the efilinux component of GRUB2, as shipped
   in Debian, Red Hat, and Ubuntu (the functionality is not included
   in GRUB2 upstream), leading to a heap-based buffer overflow. These
   could be triggered by an extremely large number of arguments to the
   initrd command on 32-bit architectures, or a crafted filesystem
   with very large files on any architecture. An attacker could use
   this to execute arbitrary code and bypass UEFI Secure Boot
   restrictions. This issue affects GRUB2 version 2.04 and prior
   versions.

Signed-off-by: Stefan Sørensen <stefan.sorensen@spectralink.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/rauc: bump version to 1.4
Yair Ben-Avraham [Sun, 2 Aug 2020 19:21:41 +0000 (19:21 +0000)]
package/rauc: bump version to 1.4

Signed-off-by: Yair Ben Avraham <yairba@protonmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/x11r7/xlib_libX11: security bump version to 1.6.10
Bernd Kuhls [Sun, 2 Aug 2020 07:34:13 +0000 (09:34 +0200)]
package/x11r7/xlib_libX11: security bump version to 1.6.10

Fixes CVE-2020-14344:
https://lists.x.org/archives/xorg-announce/2020-July/003050.html

Removed md5 & sha1 hashes, upstream does not provide them anymore.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/python-cython: bump to version 0.29.21
James Hilliard [Sat, 1 Aug 2020 22:24:53 +0000 (16:24 -0600)]
package/python-cython: bump to version 0.29.21

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/python-pynacl: bump to version 1.4.0
James Hilliard [Sat, 1 Aug 2020 22:14:13 +0000 (16:14 -0600)]
package/python-pynacl: bump to version 1.4.0

We need to backport a commit to fix a build failure cased by a spurious
wheel dependency.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/python-six: bump to version 1.15.0
James Hilliard [Sat, 1 Aug 2020 21:55:03 +0000 (15:55 -0600)]
package/python-six: bump to version 1.15.0

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/python-txaio: bump to verison 20.4.1
James Hilliard [Sat, 1 Aug 2020 21:51:08 +0000 (15:51 -0600)]
package/python-txaio: bump to verison 20.4.1

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/{protobuf, python-protobuf}: bump to version 3.12.4
James Hilliard [Sat, 1 Aug 2020 21:45:49 +0000 (15:45 -0600)]
package/{protobuf, python-protobuf}: bump to version 3.12.4

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/mesa3d: xvmc needs x11
Bernd Kuhls [Sun, 2 Aug 2020 12:10:37 +0000 (14:10 +0200)]
package/mesa3d: xvmc needs x11

This is a follow-up patch to

https://git.buildroot.net/buildroot/commit/package/mesa3d?id=e79ee3b0f91aa3eb1b20d86701a195e3bd9a26d3

to make sure that MESA3D_PLATFORMS contains x11 needed by xvmc:
https://cgit.freedesktop.org/mesa/mesa/tree/meson.build?h=20.1#n510

Fixes
http://autobuild.buildroot.net/results/dae/dae41e30d2ac69b768ec0a5b795a2e559c35bcd3/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agoRevert "package/pkg-generic.mk: create directories upfront in the configure step"
Yann E. MORIN [Sat, 1 Aug 2020 11:44:16 +0000 (13:44 +0200)]
Revert "package/pkg-generic.mk: create directories upfront in the configure step"

This _partially_ reverts commit 2dbb0660fb4d89f8eac86fcff08e9b3d0a705917.

Indeed, before 2dbb0660fb, the per-package ../host/ directory was
explicitly created right before it was populated. With 2dbb0660fb, it
is now created only at the beginning of the configure step.

However, some packages may have download or extract host dependencies,
and when we are trying to rsync them, the destination .../host/
directory does not yet exist at the download or extract steps, thus the
build fails. E.g., with wget which needs host-lzip if the system does
not have it yet:

    rsync -a --link-dest=/home/ymorin/dev/buildroot/O/per-package/host-lzip/host/ /home/ymorin/dev/buildroot/O/per-package/host-lzip/host/ /home/ymorin/dev/buildroot/O/per-package/wget/host
    rsync: mkdir "/home/ymorin/dev/buildroot/O/per-package/wget/host" failed: No such file or directory (2)
    rsync error: error in file IO (code 11) at main.c(682) [Receiver=3.1.3]
    make[1]: *** [package/pkg-generic.mk:170: /home/ymorin/dev/buildroot/O/build/wget-1.20.3/.stamp_extracted] Error 11

Kudos to Raphael for pin-pointing the culprit commit.

Fixes:
    http://autobuild.buildroot.org/results/4c8/4c895c7ac0a635d38f5015b5df0393581ad7b508/
    and a slew of similar failures

Notes:
An alternative solution would be to move the creation of the directories
from the configure step to the download step *and* to the rsync step,
but this is not so nice in the end... Let's just ensure they are created
where needed: at the configure step, and when populating them.

Reported-by: Raphael Jacob <r.jacob2002@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
5 years agopackage/zbar: bump to version 0.23.1
Fabrice Fontaine [Tue, 28 Jul 2020 10:19:09 +0000 (12:19 +0200)]
package/zbar: bump to version 0.23.1

- Add new NLS dependency as well as a patch to fix a build failure
  without it
- Drop host-gettext (not needed since autoreconf was dropped with
  8729c4ef881b02ff85b7645b0ad309d6ae44fccf)
- Update indentation in hash file (two spaces)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agosupport/testing: drop explicit docker kernel options from docker test
Peter Korsgaard [Mon, 27 Jul 2020 22:21:58 +0000 (00:21 +0200)]
support/testing: drop explicit docker kernel options from docker test

Since commit 0390777bfaff6c6 (package/docker-engine: needs some kernel
options), docker-engine now automatically ensures the needed kernel options
are enabled, so drop the explicit options from the kernel config.

23:19:27 TestDockerCompose                        Starting
23:19:28 TestDockerCompose                        Building
00:14:41 TestDockerCompose                        Building done
00:15:30 TestDockerCompose                        Cleaning up
.
----------------------------------------------------------------------
Ran 1 test in 3362.784s

OK

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agosupport/testing: drop explicit CGROUPFS_MOUNT from docker test
Peter Korsgaard [Mon, 27 Jul 2020 22:21:57 +0000 (00:21 +0200)]
support/testing: drop explicit CGROUPFS_MOUNT from docker test

Since commit 4f8229653 (package/docker-engine: needs more runtime
dependencies), docker-engine now automatically pulls in cgroupfs-mount, so
drop the explicit handling of it in TestDockerCompose.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/feh: bump version to 3.4.1
Petr Vorel [Thu, 30 Jul 2020 04:25:09 +0000 (06:25 +0200)]
package/feh: bump version to 3.4.1

Signed-off-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/webkitgtk: security bump to version 2.28.4
Adrian Perez de Castro [Wed, 29 Jul 2020 15:40:20 +0000 (18:40 +0300)]
package/webkitgtk: security bump to version 2.28.4

This is a minor release which provides fixes for CVE-2020-9862,
CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, and
CVE-2020-9925.

Full release notes can be found at:

  https://webkitgtk.org/2020/07/28/webkitgtk2.28.4-released.html

A detailed security advisory can be found at:

  https://webkitgtk.org/security/WSA-2020-0007.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/wpewebkit: security bump to version 2.28.4
Adrian Perez de Castro [Wed, 29 Jul 2020 14:22:52 +0000 (17:22 +0300)]
package/wpewebkit: security bump to version 2.28.4

This is a minor release which provides fixes for CVE-2020-9862,
CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, and
CVE-2020-9925.

Full release notes can be found at:

  https://wpewebkit.org/release/wpewebkit-2.28.4.html

A detailed security advisory can be found at:

  https://wpewebkit.org/security/WSA-2020-0007.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/kodi: bump version to 18.8-Leia
Bernd Kuhls [Tue, 28 Jul 2020 20:40:50 +0000 (22:40 +0200)]
package/kodi: bump version to 18.8-Leia

Removed patch which was applied upstream:
https://github.com/xbmc/xbmc/commit/920cc74da069216d19f724ecf5246cf997861bc6

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/dbus: disable systemd for host build
John Keeping [Tue, 28 Jul 2020 10:45:19 +0000 (11:45 +0100)]
package/dbus: disable systemd for host build

This fixes an issue if host-dbus happens to be rebuilt after systemd, in
which case it autodetects systemd support but then ignored the prefix
when installing unit files.  That means that is tries to write to the
host system's /usr/lib/ which fails.

There is no reason to build and install systemd support in the host
build, so disable it explicitly.

Signed-off-by: John Keeping <john@metanate.com>
Tested-by: Adam Duskett <aduskett@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/easydbus: bump to version 0.1.0
Fabrice Fontaine [Tue, 28 Jul 2020 10:07:07 +0000 (12:07 +0200)]
package/easydbus: bump to version 0.1.0

Update indentation in hash file (two spaces)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Marcin Niestroj <m.niestroj@grinn-global.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/iprutils: bump to version 2.4.18.1
Fabrice Fontaine [Tue, 28 Jul 2020 08:52:33 +0000 (10:52 +0200)]
package/iprutils: bump to version 2.4.18.1

Update indentation in hash file (two spaces)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years ago{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.{4, 7}.x series
Peter Korsgaard [Tue, 28 Jul 2020 07:17:08 +0000 (09:17 +0200)]
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.{4, 7}.x series

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/linux-headers: drop support for 5.6.x headers
Peter Korsgaard [Tue, 28 Jul 2020 07:17:07 +0000 (09:17 +0200)]
package/linux-headers: drop support for 5.6.x headers

The 5.6.x series is now EOL so remove the option and add legacy
handling for it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/linux-headers: drop support for 5.5.x headers
Peter Korsgaard [Tue, 28 Jul 2020 07:17:06 +0000 (09:17 +0200)]
package/linux-headers: drop support for 5.5.x headers

The 5.5.x series is now EOL so remove the option and add legacy
handling for it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
5 years agopackage/libcurl: fix build against gnutls with proxy disabled
Baruch Siach [Tue, 28 Jul 2020 18:33:29 +0000 (21:33 +0300)]
package/libcurl: fix build against gnutls with proxy disabled

Add upstream patch (#4) fixing build with gnutls when
BR2_PACKAGE_LIBCURL_PROXY_SUPPORT is disabled.

Patch #4 depends on #3 to apply so add this one as well.

Fixes:
http://autobuild.buildroot.net/results/31d7204869ff71319ea055688c919a646bfb200b/
http://autobuild.buildroot.net/results/f8d2fb919475cdff4a36ad93071048ee09193b98/
http://autobuild.buildroot.net/results/2f07a0ac1240a6040a3509d2ebf06906a31fd172/

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/lz4: simplify build/install logic
Peter Korsgaard [Mon, 27 Jul 2020 16:20:07 +0000 (18:20 +0200)]
package/lz4: simplify build/install logic

No functional change.

Rather than tracking both build targets and sub directory to run 'make
install' from, use a make loop for the staging/target install logic, similar
to how we are doing it to for the build step and directly use the Makefile
in the sub directory rather than the helper lib/lz4 targets in the top level
Makefile.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/luaposix: select bit32 based on lua ABI version 5.1
James Hilliard [Mon, 25 May 2020 00:48:41 +0000 (18:48 -0600)]
package/luaposix: select bit32 based on lua ABI version 5.1

Since the bit32 module is needed by all lua ABI 5.1 providers we can
select based on the lua ABI version instead of both lua 5.1 and luajit.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/solarus: depend on lua ABI version 5.1
James Hilliard [Mon, 25 May 2020 00:48:40 +0000 (18:48 -0600)]
package/solarus: depend on lua ABI version 5.1

Since solarus is compatible with lua interpreters that provide the
version 5.1 ABI we should depend on that instead of unconditionally
selecting luajit.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/collectd: depend on luainterpreter for lua support
James Hilliard [Mon, 25 May 2020 00:48:39 +0000 (18:48 -0600)]
package/collectd: depend on luainterpreter for lua support

Since collectd lua support is compatible with any luainterpreter
implementation we should depend on BR2_PACKAGE_HAS_LUAINTERPRETER
instead of unconditionally selecting BR2_PACKAGE_LUA.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
[yann.morin.1998@free.fr: use luainterpreter as dependency]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/sysdig: depend on lua ABI version 5.1
James Hilliard [Mon, 25 May 2020 00:48:38 +0000 (18:48 -0600)]
package/sysdig: depend on lua ABI version 5.1

Since sysdig is compatible with lua interpreters that provide the
version 5.1 ABI we should depend on that instead of unconditionally
selecting luajit.

Use luainterpreter as the dependency, now that either lua or luajit
can be used.

Signed-off-by: James Hilliard <james.hilliard1@gmail.com>
[yann.morin.1998@free.fr:
  - reorder dependencies in Config.in: package deps go after toolchain
    deps
  - keep the toolchain deps together in the comment
  - switch to using luainterpreter as a build dependency
  - split the now-long _DEPENDENCIES list
]
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
5 years agopackage/luainterpreter: gather the ABI version string defaults
Yann E. MORIN [Mon, 27 Jul 2020 15:33:47 +0000 (17:33 +0200)]
package/luainterpreter: gather the ABI version string defaults

Now that we have booleans to represent the Lua ABI version, and that
every Lua providers do select those, there is no longer any reason
for them to also handle the ABI version string anymore.

Move the defaults into the common luainterpreter.

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: James Hilliard <james.hilliard1@gmail.com>
Cc: Francois Perrad <francois.perrad@gadz.org>