buildroot.git
6 years agopackage/wpewebkit: security bump to version 2.24.3
Adrian Perez de Castro [Fri, 30 Aug 2019 14:15:28 +0000 (17:15 +0300)]
package/wpewebkit: security bump to version 2.24.3

This is a minor release which includes fixes for CVE-2019-8644,
CVE-2019-8649, CVE-2019-8658, CVE-2019-8666, CVE-2019-8669,
CVE-2019-8673, CVE-2019-8676, CVE-2019-8678, CVE-2019-8680,
CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8687,
CVE-2019-8688, CVE-2019-8689, and CVE-2019-8690.

This release also contains many build fixes, a few media playback
improvements, and a Web compatibility fix. For a complete list,
the full release notes are available at:

  https://wpewebkit.org/release/wpewebkit-2.24.3.html

The detailed security advisory can be found at:

  https://wpewebkit.org/security/WSA-2019-0004.html

Patch "0001-Build-failure-after-r243644-in-GTK-Li.patch" is now unneeded
because it is one of the build fixes included in this release.

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/webkitgtk: security bump to version 2.24.4
Adrian Perez de Castro [Fri, 30 Aug 2019 12:04:32 +0000 (15:04 +0300)]
package/webkitgtk: security bump to version 2.24.4

This is a minor release which includes fixes for CVE-2019-8644,
CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8676,
CVE-2019-8678, CVE-2019-8680, CVE-2019-8683, CVE-2019-8684, and
CVE-2019-8688.

This release also contains many build fixes, a few media playback
improvements, and a Web compatibility fix. For a complete list,
the full release notes at:

  https://webkitgtk.org/2019/08/28/webkitgtk2.24.4-released.html

The detailed security advisory can be found at:

  https://webkitgtk.org/security/WSA-2019-0004.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoconfigs/roseapplepi_defconfig: use gcc 7.x
Peter Korsgaard [Wed, 28 Aug 2019 20:46:35 +0000 (22:46 +0200)]
configs/roseapplepi_defconfig: use gcc 7.x

The old 3.10.x based vendor kernel does not build correctly with gcc 8.x.

While there is basic s500 support in the mainline kernel, there is not yet a
mmc driver so it isn't quite a replacement yet.

Stick to the vender kernel for now and revert back to gcc 7.x, hopefully
mainline support will be more complete once gcc 7.x gets dropped.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/x11r7/xfont_font-util: bump version to 1.3.2
Bernd Kuhls [Wed, 28 Aug 2019 16:18:50 +0000 (18:18 +0200)]
package/x11r7/xfont_font-util: bump version to 1.3.2

Added all hashes provided by upstream and license hash.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/x11r7/libxcb: bump version to 1.13.1
Bernd Kuhls [Wed, 28 Aug 2019 16:35:26 +0000 (18:35 +0200)]
package/x11r7/libxcb: bump version to 1.13.1

Upstream does not provide a sha512 hash anymore.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoUpdate for 2019.08-rc3
Peter Korsgaard [Wed, 28 Aug 2019 21:02:48 +0000 (23:02 +0200)]
Update for 2019.08-rc3

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/dovecot-pigeonhole: security bump version to 0.5.7.2
Bernd Kuhls [Wed, 28 Aug 2019 14:13:15 +0000 (16:13 +0200)]
package/dovecot-pigeonhole: security bump version to 0.5.7.2

Release notes:
https://dovecot.org/pipermail/dovecot/2019-August/116876.html

Fixes
* CVE-2019-11500: ManageSieve protocol parser does not properly handle
  NUL byte when scanning data in quoted strings, leading to out of
  bounds heap memory writes. Found by Nick Roessler and Rafi Rubin.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/dovecot: security bump version to 2.3.7.2
Bernd Kuhls [Wed, 28 Aug 2019 14:13:14 +0000 (16:13 +0200)]
package/dovecot: security bump version to 2.3.7.2

Release notes:
https://dovecot.org/pipermail/dovecot/2019-August/116874.html

Fixes
* CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte
  when scanning data in quoted strings, leading to out of bounds heap
  memory writes. Found by Nick Roessler and Rafi Rubin.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/python: add upstream security fix for CVE-2019-9740
Peter Korsgaard [Wed, 28 Aug 2019 08:49:32 +0000 (10:49 +0200)]
package/python: add upstream security fix for CVE-2019-9740

An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib
in Python 3.x through 3.7.3.  CRLF injection is possible if the attacker
controls a url parameter, as demonstrated by the first argument to
urllib.request.urlopen with \r\n (specifically in the query string after a ?
character) followed by an HTTP header or a Redis command.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/qemu: security bump to version 3.1.1
Peter Korsgaard [Wed, 28 Aug 2019 07:15:50 +0000 (09:15 +0200)]
package/qemu: security bump to version 3.1.1

Fixes the following security issues:

CVE-2018-16872: A flaw was found in qemu Media Transfer Protocol (MTP).  The
code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and
directories in usb_mtp_object_readdir doesn't consider that the underlying
filesystem may have changed since the time lstat(2) was called in
usb_mtp_object_alloc, a classical TOCTTOU problem.  An attacker with write
access to the host filesystem shared with a guest can use this property to
navigate the host filesystem in the context of the QEMU process and read any
file the QEMU process has access to.  Access to the filesystem may be local
or via a network share protocol such as CIFS.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/openldap: security bump to version 2.4.48
Sørensen, Stefan [Tue, 27 Aug 2019 11:00:27 +0000 (11:00 +0000)]
package/openldap: security bump to version 2.4.48

Security fixes:
CVE-2019-13057: Fixed slapd to restrict rootDN proxyauthz to its own databases
CVE-2019-13565: Fixed slapd to initialize SASL SSF per connection

Full changelog:
https://www.openldap.org/lists/openldap-announce/201907/msg00001.html

Signed-off-by: Stefan Sørensen <stefan.sorensen@spectralink.com>
[Peter: fix sha256 hash line]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/intel-microcode: security bump version to 20190618
Bernd Kuhls [Sun, 25 Aug 2019 19:41:24 +0000 (21:41 +0200)]
package/intel-microcode: security bump version to 20190618

Release notes:
https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/blob/master/releasenote

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Reviewed-by: Carlos Santos <unixmania@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/mpg123: security bump to version 1.25.12
Peter Korsgaard [Sun, 25 Aug 2019 06:47:37 +0000 (08:47 +0200)]
package/mpg123: security bump to version 1.25.12

>From the release notes:
- Fix an out-of-bounds read of maximal two bytes for truncated RVA2 frames
  (oss-fuzz-bug 15975). The earlier fix around the same location needed
  one thought more. Actually, another though was needed, oss-fuzz-bug 16009
  documents the incomplete fix.

- Fix an invalid write of one zero byte for empty ID3v2 frames that demand
  de-unsyncing (oss-fuzz-bug 16050).

- Fix dynamic build with gcc -fsanitize=address (check for all dl functions
  before deciding that separate -ldl is not needed).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/vlc: security bump version to 3.0.8
Bernd Kuhls [Wed, 21 Aug 2019 18:07:01 +0000 (20:07 +0200)]
package/vlc: security bump version to 3.0.8

Release notes: https://www.videolan.org/developers/vlc-branch/NEWS

Fixes the following security bugs:
 * Fix a buffer overflow in the MKV demuxer (CVE-2019-14970)
 * Fix a read buffer overflow in the avcodec decoder (CVE-2019-13962)
 * Fix a read buffer overflow in the FAAD decoder
 * Fix a read buffer overflow in the OGG demuxer (CVE-2019-14437, CVE-2019-14438)
 * Fix a read buffer overflow in the ASF demuxer (CVE-2019-14776)
 * Fix a use after free in the MKV demuxer (CVE-2019-14777, CVE-2019-14778)
 * Fix a use after free in the ASF demuxer (CVE-2019-14533)
 * Fix a couple of integer underflows in the MP4 demuxer (CVE-2019-13602)
 * Fix a null dereference in the dvdnav demuxer
 * Fix a null dereference in the ASF demuxer (CVE-2019-14534)
 * Fix a null dereference in the AVI demuxer
 * Fix a division by zero in the CAF demuxer (CVE-2019-14498)
 * Fix a division by zero in the ASF demuxer (CVE-2019-14535)

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/libmodplug: bump version to 0.8.9
Bernd Kuhls [Wed, 21 Aug 2019 18:07:00 +0000 (20:07 +0200)]
package/libmodplug: bump version to 0.8.9

Needed for security bump of vlc to 3.0.8:
http://git.videolan.org/?p=vlc/vlc-3.0.git;a=commitdiff;h=48f014768dc22ecad23d0e9f53c38805a3aff832

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/strace: disable for riscv32
Baruch Siach [Sun, 25 Aug 2019 04:30:32 +0000 (07:30 +0300)]
package/strace: disable for riscv32

strace does not support riscv32 yet.

https://lists.strace.io/pipermail/strace-devel/2019-August/009068.html

Fixes:
http://autobuild.buildroot.net/results/912776cc1da1719806058516a2cc2a47c8dbad9b/

Cc: Mark Corbin <mark.corbin@embecosm.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/samba4: bump version to 4.10.7
Bernd Kuhls [Sat, 24 Aug 2019 08:16:33 +0000 (10:16 +0200)]
package/samba4: bump version to 4.10.7

Release notes of this bugfix release:
https://www.samba.org/samba/history/samba-4.10.7.html

Removed 0005-disable_gnutls_build_fix.patch, applied upstream:
https://git.samba.org/samba.git/?p=samba.git;a=commitdiff;h=8128ceceb8702e596183dd509dd6f952a2f4efc2

Renumbered remaining patches.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/clamav: security bump version to 0.101.4
Bernd Kuhls [Wed, 21 Aug 2019 18:24:34 +0000 (20:24 +0200)]
package/clamav: security bump version to 0.101.4

Fixes CVE-2019-12900 and adds an additional fix for CVE-2019-12625.

Release notes:
https://blog.clamav.net/2019/08/clamav-01014-security-patch-release-has.html

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/nginx: security bump to version 1.16.1
Peter Korsgaard [Fri, 23 Aug 2019 10:21:32 +0000 (12:21 +0200)]
package/nginx: security bump to version 1.16.1

Fixes the following security issues:

       Security: when using HTTP/2 a client might cause excessive memory
       consumption and CPU usage (CVE-2019-9511, CVE-2019-9513,
       CVE-2019-9516).

For details, see the advisory:
https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/gcc: allow uclibc only for gcc or1k (5.x)
Romain Naour [Sat, 17 Aug 2019 11:26:38 +0000 (13:26 +0200)]
package/gcc: allow uclibc only for gcc or1k (5.x)

uClibc doesn't build with the upstream binutils 2.32.x and gcc or1k
port due to the following error:

LD libuClibc-1.0.31.so
/opt/openrisc--uclibc--bleeding-edge-1/lib/gcc/or1k-buildroot-linux-uclibc/9.2.0/../../../../or1k-buildroot-linux-uclibc/bin/ld:
libc/libc_so.a(or1k_clone.os): pc-relative relocation against dynamic symbol
__syscall_error

See:
https://gitlab.com/kubu93/toolchains-builder/-/jobs/270854456

This error message come from a new check in binutils 2.32.x:

https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=commitdiff;h=f2c1801f6255a3f9f483ae2f07c7d7da0ddae4af

This issue has been reported on the uClibc-ng mailing list:
https://mailman.uclibc-ng.org/pipermail/devel/2019-August/001885.html

Since gcc 9.1 needs binutils 2.32.x or later to build successfully for
or1k, there is no binutils version left that can build gcc 9.1 and
uClibc.

For now, disable uClibc if gcc 9.1 is used for or1k.

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Waldemar Brodkorb <mail@waldemar-brodkorb.de>
[Arnout: invert the logic, like in the rest of the file]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agopackage/gcc: gcc 9.x for or1k needs binutils >= 2.32
Romain Naour [Sat, 17 Aug 2019 11:26:37 +0000 (13:26 +0200)]
package/gcc: gcc 9.x for or1k needs binutils >= 2.32

With binutils 2.30.x or 2.31.x, the assembler doesn't
support the code generated by gcc 9.1:

Error: junk at end of line `l.movhi r17,gotoffha(.LC0)'

gotoffha is supported by binutils since version 2.32 [1].
It was added by the ork1 gcc port merged into gcc 9.x [2].

So, for or1k we can select gcc 9.x only if binutils 2.32
(or later) is selected.

Tested using qemu_or1k_defconfig and selecting musl libc,
binutils 2.32 and gcc 9.1.

[1] https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;a=commitdiff;h=1c4f3780f7d939402cfe555007ebff45c8e38951
[2] https://gcc.gnu.org/git/?p=gcc.git;a=commitdiff;h=d61fdfe71cfd42aa6454f2267a48c97820918fe3

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Waldemar Brodkorb <mail@waldemar-brodkorb.de>
[Arnout: invert the logic, like in the rest of the file]
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agopackage/libmicrohttpd: bump to version 0.9.66
Pierre-Jean Texier [Thu, 15 Aug 2019 14:22:40 +0000 (16:22 +0200)]
package/libmicrohttpd: bump to version 0.9.66

See https://lists.gnu.org/archive/html/libmicrohttpd/2019-08/msg00000.html

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit b4da9642c52b4c1fcebdc58970be937f689666cd)
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agopackage/squid: remove trailing whitespace
Arnout Vandecappelle (Essensium/Mind) [Wed, 21 Aug 2019 20:44:42 +0000 (22:44 +0200)]
package/squid: remove trailing whitespace

Commit 7792c4f1bc introduced trailing whitespace. Remove it.

Fixes: https://gitlab.com/buildroot.org/buildroot/-/jobs/276636839
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
6 years agopackage/squid: security bump to version 4.8
Fabrice Fontaine [Tue, 20 Aug 2019 20:16:45 +0000 (22:16 +0200)]
package/squid: security bump to version 4.8

- Add a patch to fix cross-compilation
- Fix the following CVEs:
  - SQUID-2019:6 (CVE-2019-13345), Jul 12, 2019
    Fixed from 4.8
    Multiple Cross-Site Scripting issues in cachemgr.cgi
  - SQUID-2019:5 (CVE-2019-12527), Jul 12, 2019
    Fixed from 4.8
    Heap Overflow issue in HTTP Basic Authentication processing
  - SQUID-2019:3 (CVE-2019-12525), Jul 12, 2019
    Fixed from 4.8
    Denial of Service in HTTP Digest Authentication processing
  - SQUID-2019:2 (CVE-2019-12529), Jul 12, 2019
    Fixed from 4.8
    Denial of Service in HTTP Basic Authentication processing
  - SQUID-2019:1 (CVE-2019-12824), Jul 12, 2019
    Fixed from 4.8
    Denial of Service issue in cachemgr.cgi

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoUpdate for 2019.08-rc2
Peter Korsgaard [Tue, 20 Aug 2019 12:39:52 +0000 (14:39 +0200)]
Update for 2019.08-rc2

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/go: bump version to 1.12.9
Peter Korsgaard [Tue, 20 Aug 2019 05:37:33 +0000 (07:37 +0200)]
package/go: bump version to 1.12.9

For post-1.12.8 fixes. From the release notes:

go1.12.9 (released 2019/08/15) includes fixes to the linker, and the os and
math/big packages.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/musl: add upstream security fixes for CVE-2019-14697
Peter Korsgaard [Tue, 20 Aug 2019 08:21:33 +0000 (10:21 +0200)]
package/musl: add upstream security fixes for CVE-2019-14697

Fixes CVE-2019-14697: musl libc 1.1.23 and earlier x87 float stack imbalance

For more details, see the oss-security discussion:
https://www.openwall.com/lists/oss-security/2019/08/05/6

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/gstreamer1/gst1-plugins-base: fix dispmanx option
Thomas Petazzoni [Sat, 17 Aug 2019 12:24:02 +0000 (14:24 +0200)]
package/gstreamer1/gst1-plugins-base: fix dispmanx option

There is a typo in the handling of the
BR2_PACKAGE_GST1_PLUGINS_BASE_LIB_OPENGL_DISPMANX option: we're adding
dispmax to GST1_PLUGINS_BASE_WINSYS_LIST, which causes the following
build failure:

meson.build:1:0: ERROR: Options "dispmax" are not in allowed choices: "x11, wayland, win32, cocoa, dispmanx, viv-fb, gbm, auto"

We fix this by using the proper option name, "dispmanx" instead of the
slightly incorrect "dispmax".

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/quagga: unconditionally create /etc/quagga
Thomas Petazzoni [Mon, 19 Aug 2019 21:36:58 +0000 (23:36 +0200)]
package/quagga: unconditionally create /etc/quagga

/etc/quagga is listed in QUAGGA_PERMISSIONS, but is only created when
some of the quagga sub-options are enabled. When none of those
sub-options are enabled, /etc/quagga is not created, causing a build
failure when the filesystem images are created:

makedevs: line 1: recursive failed for /home/thomas/projets/outputs/quagga-minimal/build/buildroot-fs/tar/target/etc/quagga: No such file or directory

Since it is too cumbersome to maintain which sub-options exactly lead
to /etc/quagga being created, simply create /etc/quagga
unconditionally. It will simply be empty when the quagga package
doesn't install anything in it.

For the record, here is the list of files installed in /etc/quagga
when all quagga sub-options are enabled:

  bgpd.conf.sample bgpd.conf.sample2 isisd.conf.sample
  ospf6d.conf.sample ospfd.conf.sample pimd.conf.sample
  ripd.conf.sample ripngd.conf.sample vtysh.conf.sample
  zebra.conf.sample

Fixes:

  http://autobuild.buildroot.net/results/cdb66589909fd3996186f7db7d1f19a3b03d58a0/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/giflib: add two upstream security fixes
Fabrice Fontaine [Mon, 19 Aug 2019 21:21:20 +0000 (23:21 +0200)]
package/giflib: add two upstream security fixes

- Fix CVE-2018-11490: The DGifDecompressLine function in dgif_lib.c in
  GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p
  0.49.4, has a heap-based buffer overflow because a certain
  "Private->RunningCode - 2" array index is not checked. This will lead
  to a denial of service or possibly unspecified other impact.

- Fix CVE-2019-15133: In GIFLIB before 2019-02-16, a malformed GIF file
  triggers a divide-by-zero exception in the decoder function DGifSlurp
  in dgif_lib.c if the height field of the ImageSize data structure is
  equal to zero.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/libssh2: switch site to https://www.libssh2.org/download
Fabrice Fontaine [Mon, 19 Aug 2019 20:36:45 +0000 (22:36 +0200)]
package/libssh2: switch site to https://libssh2.org/download

As spotted by Danomi during review of "libssh2: security bump to version
1.9.0" (https://patchwork.ozlabs.org/patch/1148776), it seems that
the tarball from github and libssh2.org/download are not the same. One
of the difference is that LIBSSH2_VERSION in include/libssh2.h is set to
"1.9.0_DEV" in github tarball whereas it is set to "1.9.0" in
libssh2.org/download.

So switch site to https://www.libssh2.org/download to get "official"
release

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agoCHANGES: update with recent changes
Peter Korsgaard [Mon, 19 Aug 2019 21:34:17 +0000 (23:34 +0200)]
CHANGES: update with recent changes

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/mpd: fix build on sparc
Fabrice Fontaine [Sat, 17 Aug 2019 21:19:36 +0000 (23:19 +0200)]
package/mpd: fix build on sparc

Fixes:
 - http://autobuild.buildroot.org/results/8d757c4390facade75dd6cef808ea6ead9798c12

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Tested-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/mesa3d: allow VC4 driver on all ARM platforms
Thomas Petazzoni [Mon, 19 Aug 2019 12:46:00 +0000 (14:46 +0200)]
package/mesa3d: allow VC4 driver on all ARM platforms

In commit 3e5926555b59b50210bb7814d176b384f9d554ab ("package/{mesa3d,
mesa3d-headers}: bump version to 17.1.2"), the dependency of VC4 on
BR2_arm was changed to BR2_ARM_CPU_HAS_NEON, which the reasoning that
upstream commit
https://cgit.freedesktop.org/mesa/mesa/commit/?h=17.1&id=4d30024238efa829cabc72c1601beeee18c3dbf2
made NEON mandatory. However, this commit (including its commit log)
clearly shows that there is compile-time detection on whether you're
using ARMv6 or ARMv7, and simply says there is no runtime detection
for that (which usually isn't very important in the context of
Buildroot). So, the VC4 driver can be used on ARMv6
RaspberryPis. Therefore, this commit reverts to the BR2_arm
dependency.

Note: while there are some ARMv7 without NEONs, all ARMv7 RaspberryPi
platforms do have NEON, so the compile-time checks done in the VC4
driver are good enough.

Fixes:

  https://bugs.busybox.net/show_bug.cgi?id=12126

Cc: Sahaj Sarup <sahajsarup@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/pigpio: install to staging
Thomas Petazzoni [Thu, 15 Aug 2019 13:43:21 +0000 (15:43 +0200)]
package/pigpio: install to staging

The pigpio package installs programs and libraries to target, but does
not install the libraries and its headers to staging, while they may
be used by other packages. Let's install them, as was requested in bug

Fixes:

  https://bugs.busybox.net/show_bug.cgi?id=11741

Cc: vishalbhalani89@gmail.com
Cc: ivan.nazarenko@gmail.com
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years ago{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.2.x series
Peter Korsgaard [Mon, 19 Aug 2019 17:02:04 +0000 (19:02 +0200)]
{linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.2.x series

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/website: move sponsors of past events to "past sponsors"
Thomas Petazzoni [Mon, 19 Aug 2019 20:26:15 +0000 (22:26 +0200)]
docs/website: move sponsors of past events to "past sponsors"

In this commit, we:

 - move the sponsors of the Buildroot Meeting at ELCE 2018 to "Past
   Sponsors"

 - move Scaleway, as a sponsor of Hackathon in Paris in 2018 to "Past
   Sponsors"

 - merge the Free Electrons and Bootlin entries together in "Past
   Sponsors"

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/website: announce Smile as sponsor for the next Buildroot meeting
Thomas Petazzoni [Mon, 19 Aug 2019 14:37:13 +0000 (16:37 +0200)]
docs/website: announce Smile as sponsor for the next Buildroot meeting

Smile is going to provide the meeting room for the 3 days of our
meeting on October 25-27 in Lyon, France, right before the Embedded
Linux Conference Europe.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodehydrated: critical bump to 0.6.5
Arnout Vandecappelle (Essensium/Mind) [Mon, 19 Aug 2019 16:37:49 +0000 (18:37 +0200)]
dehydrated: critical bump to 0.6.5

On July 3, 2019, Let's Encrypt deployed new ACME server software that no
longer returns the 'id' field in the account information JSON.
Dehydrated relied on this field, even though it is not specified by RFC
8555. Because of this, dehydrated can no longer create a new account on
Let's Encrypt.

This was fixed by upstream commits be13dcd and 4f358e2. But the latter
broke ACMEv1 support so was fixed again in commit f60f2f8.

Cherry-picking this correctly is tricky, so instead just bump the
version. There are quite a few non-bugfix changes that are included this
way, but it's more risky to try to cherry-pick.

Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
6 years agopackage/wpebackend-fdo: bump to version 1.2.2
Adrian Perez de Castro [Mon, 19 Aug 2019 12:10:58 +0000 (15:10 +0300)]
package/wpebackend-fdo: bump to version 1.2.2

This is a bugfix release which solves an underlinking issue, which would
prevent building in some situations (for example, when --no-undefined is
passed to the linker). Release notes:

  https://wpewebkit.org/release/wpebackend-fdo-1.2.2.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libwpe: bump to version 1.2.1
Adrian Perez de Castro [Mon, 19 Aug 2019 11:58:05 +0000 (14:58 +0300)]
package/libwpe: bump to version 1.2.1

This is a bugfix release of libwpe, which fixes an issue with memory
allocation for the pasteboard, adds some missing Unicode-to-KeySym
conversions, and fixes a build issue. Full release notes:

  https://wpewebkit.org/release/libwpe-1.2.1.html

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/ts7680: bump Linux to 4.9, to fix build with gcc >= 8.x
Julien Grossholtz [Sun, 18 Aug 2019 20:13:53 +0000 (22:13 +0200)]
configs/ts7680: bump Linux to 4.9, to fix build with gcc >= 8.x

The TS-7680 defconfig does not build with gcc 8.x and 9.x because it
uses an old 3.14 kernel. Technologic Systems, the board manufacturer
recently released an updated 4.9 based kernel on a separate repository
on github.

Bump the kernel release from 3.14.28 to 4.19.186 and update the linux
defconfig name as requested in the TS-7680 documentation [1].

[1] https://wiki.embeddedarm.com/wiki/TS-7680#Linux_4.9.y

Signed-off-by: Julien Grossholtz <julien.grossholtz@openest.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/evtest: fix build with musl libc
Baruch Siach [Sun, 18 Aug 2019 07:23:10 +0000 (10:23 +0300)]
package/evtest: fix build with musl libc

Add a patch adding missing limits.h header include.

Fixes:
http://autobuild.buildroot.net/results/c5f1b95741b37f6d949b3407fff901a960c6b781/
http://autobuild.buildroot.net/results/b09a6b340f0a96081a55764b5dad0c2c31240cef/
http://autobuild.buildroot.net/results/90c7a092a5492699406d3f46e0039d253146b6b7/

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/acmesystems_{aria,arietta}*: Linux kernel needs host-openssl
Thomas Petazzoni [Sun, 18 Aug 2019 19:56:28 +0000 (21:56 +0200)]
configs/acmesystems_{aria,arietta}*: Linux kernel needs host-openssl

Since the bump of the Linux kernel version in the acmesystems
defconfigs in the following commits:

42ea31c114f32a100923e51cb2b6b6d67c38ca3f configs/acmesystems_arietta_g25: bump Linux and AT91Bootstrap versions
ab10b5b3ee6aa1e19aa6264153eeed9054d4c2e7 configs/acmesystems_aria_g25: bump Linux and AT91Bootstrap versions

The Linux kernel configuration in use needs host-openssl to build
successfully. This commit therefore adds the necessary
BR2_LINUX_KERNEL_NEEDS_HOST_OPENSSL=y.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/273673074 (acmesystems_arietta_g25_128mb_defconfig)
  https://gitlab.com/buildroot.org/buildroot/-/jobs/273673072 (acmesystems_aria_g25_128mb_defconfig)
  https://gitlab.com/buildroot.org/buildroot/-/jobs/273673075 (acmesystems_arietta_g25_256mb_defconfig)
  https://gitlab.com/buildroot.org/buildroot/-/jobs/273673073 (acmesystems_aria_g25_256mb_defconfig)

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libssh2: security bump to version 1.9.0
Fabrice Fontaine [Sat, 17 Aug 2019 19:30:50 +0000 (21:30 +0200)]
package/libssh2: security bump to version 1.9.0

Fix CVE-2019-13115: In libssh2 before 1.9.0,
kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c
has an integer overflow that could lead to an out-of-bounds read in the
way packets are read from the server. A remote attacker who compromises
a SSH server may be able to disclose sensitive information or cause a
denial of service condition on the client system when a user connects to
the server. This is related to an _libssh2_check_length mistake, and is
different from the various issues fixed in 1.8.1, such as CVE-2019-3855.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/openblas: fix jaguar openblas target
Romain Naour [Sat, 17 Aug 2019 17:37:49 +0000 (19:37 +0200)]
package/openblas: fix jaguar openblas target

In commit [1] Peter said he will use BOBCAT for
jaguar cpus. But JAGUAR was used instead.

Use BOBCAT as openblas target for JAGUAR cpus since
it is not listed in openblas's target list [2].

[1] 5e6fa93483caac317ab8844feb2ae9c07078a6c8
[2] https://github.com/xianyi/OpenBLAS/blob/release-0.3.0/TargetList.txt

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Cc: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libss7: add -fPIC
Fabrice Fontaine [Wed, 14 Aug 2019 17:55:46 +0000 (19:55 +0200)]
package/libss7: add -fPIC

Fixes:
 - No autobuilder failures

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libpri: add -fPIC
Fabrice Fontaine [Wed, 14 Aug 2019 17:55:45 +0000 (19:55 +0200)]
package/libpri: add -fPIC

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=11961

[Retrieved (and updated to keep line under 80 characters) from:
https://bugs.buildroot.org/show_bug.cgi?id=11961]
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/dahdi-tools: bump to version 3.0.0
Fabrice Fontaine [Wed, 14 Aug 2019 17:55:44 +0000 (19:55 +0200)]
package/dahdi-tools: bump to version 3.0.0

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/dahdi-linux: bump to version 3.0.0
Fabrice Fontaine [Wed, 14 Aug 2019 17:55:43 +0000 (19:55 +0200)]
package/dahdi-linux: bump to version 3.0.0

Fix build with kernel >= 4.13 thanks to
https://github.com/asterisk/dahdi-linux/commit/d4e232a776ee27eb04aed3cbd72a203118dbe9f1

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=11921

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/qt5multimedia: fix build without opengl
Fabrice Fontaine [Thu, 15 Aug 2019 22:34:03 +0000 (00:34 +0200)]
package/qt5multimedia: fix build without opengl

Fixes:
 - http://autobuild.buildroot.org/results/fc7bcc6b3ccf1e075dce43296b36e7e1cac417db

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/gst1-rtsp-server: disable examples and tests
Fabrice Fontaine [Thu, 15 Aug 2019 22:56:52 +0000 (00:56 +0200)]
package/gst1-rtsp-server: disable examples and tests

Fixes:
 - http://autobuild.buildroot.org/results/7a268af00535d0f93e94955a3beea2745cf93422

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/gnutls: make the OpenSSL compatibility library optional
Carlos Santos [Thu, 15 Aug 2019 22:19:33 +0000 (19:19 -0300)]
package/gnutls: make the OpenSSL compatibility library optional

Add a BR2_PACKAGE_GNUTLS_OPENSSL option, disabled by default since it is
not used by any package that depends on gnutls.

The library is licensed under GPLv3, which can be a problem for embedded
systems due to the so-called anti-tivoization clause.

Signed-off-by: Carlos Santos <unixmania@gmail.com>
[Thomas: don't repeat the license details for the gnutls-openssl case,
simply append to them]
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/autofs: fix mount, umount and fsck program paths
Fabrice Fontaine [Fri, 16 Aug 2019 09:09:13 +0000 (11:09 +0200)]
package/autofs: fix mount, umount and fsck program paths

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=11876

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libgit2: security bump to version 0.27.9
Nicolas Cavallari [Fri, 16 Aug 2019 11:16:42 +0000 (13:16 +0200)]
package/libgit2: security bump to version 0.27.9

Signed-off-by: Nicolas Cavallari <nicolas.cavallari@green-communications.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agodocs/manual: fix graph-size documentation
Yann E. MORIN [Fri, 16 Aug 2019 12:34:26 +0000 (14:34 +0200)]
docs/manual: fix graph-size documentation

Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
Cc: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Cc: Thomas De Schampheleire <patrickdepinguin@gmail.com>
Acked-by: Thomas De Schampheleire <thomas.de_schampheleire@nokia.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/qt5serialbus: fix build with kernel >= 5.2
Fabrice Fontaine [Fri, 16 Aug 2019 16:27:39 +0000 (18:27 +0200)]
package/qt5serialbus: fix build with kernel >= 5.2

Fixes:
 - http://autobuild.buildroot.org/results/ddacee1d09f34fc718ef05a6e4f0bbbe26cd56d1
 - http://autobuild.buildroot.org/results/34a4ed20705b581add96fb5d97828909cee9015c

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/gupnp: switch back to autotools
Fabrice Fontaine [Tue, 13 Aug 2019 17:02:08 +0000 (19:02 +0200)]
package/gupnp: switch back to autotools

Switch back to autotools to fix static build with rygel (and so reverts
partially commit 66a3fbb9f6c79e48eaf9e561a4143063e7e9d670
"package/gupnp: bump to version 1.0.4").

Indeed gupnp uses meson's subproject feature for guul which is just
plainly broken on static build with meson, see:
https://github.com/mesonbuild/meson/issues/3934
https://github.com/mesonbuild/meson/issues/3937
https://github.com/mesonbuild/meson/pull/3939

This will fix a build failure with rygel

Fixes:
 - http://autobuild.buildroot.org/results/ebbf96a1be5547e416feb1e96e55986890d0a1de

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/batcl: bump to version 2019.3
Fabrice Fontaine [Thu, 15 Aug 2019 14:01:46 +0000 (16:01 +0200)]
package/batcl: bump to version 2019.3

Add license files and their hash

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/batctl: fix license
Fabrice Fontaine [Thu, 15 Aug 2019 14:01:45 +0000 (16:01 +0200)]
package/batctl: fix license

batman_adv.h and list.h are licensed under MIT

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/batman-adv: bump to version 2019.3
Fabrice Fontaine [Thu, 15 Aug 2019 14:01:44 +0000 (16:01 +0200)]
package/batman-adv: bump to version 2019.3

- Add license files and their hash
- Fix build with latest kernel

This bump should also close
https://bugs.buildroot.org/show_bug.cgi?id=10861

Fixes:
 - No autobuilder failures

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/batman-adv: fix license
Fabrice Fontaine [Thu, 15 Aug 2019 14:01:43 +0000 (16:01 +0200)]
package/batman-adv: fix license

batman_adv.h is licensed under MIT

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/qt5/qt5enginio/Config.in: depends before select
Arnout Vandecappelle (Essensium/Mind) [Thu, 15 Aug 2019 20:43:41 +0000 (22:43 +0200)]
package/qt5/qt5enginio/Config.in: depends before select

In Config.in, we put 'depends' lines before 'select' lines, as reported
by check-package.

Fixes: https://gitlab.com/buildroot.org/buildroot/-/jobs/273215267
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/stellarium: fix build without qt5serialport
Fabrice Fontaine [Thu, 15 Aug 2019 21:11:39 +0000 (23:11 +0200)]
package/stellarium: fix build without qt5serialport

Set USE_PLUGIN_TELESCOPECONTROL depending on qt5serialport availability

Fixes:
 - http://autobuild.buildroot.org/results/01452113e984de0ddf177a513d20287c96ebe0a3

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/samba4: set WAF_NO_PREFORK to fix cross-compilation
Jörg Krause [Tue, 13 Aug 2019 21:43:48 +0000 (23:43 +0200)]
package/samba4: set WAF_NO_PREFORK to fix cross-compilation

Since version 4.10.0 the waf build system does not correctly take the values
from the cross answers file when configuring for the target machine,
resulting in wrong values, e.g.:

```
Checking for rpath library support       : not found
```

Looking into sambas config.log shows that the check for rpath library
support aborts because of in internal exception.

The result is that the shared library libsmbclient.so does not have a
correct rpath section in its ELF header:

```
Library rpath: [/usr/lib]
```

This is incorrect, as libsmbclient links to secondary libraries located
in /usr/lib/samba.

When linking mpd (with libsmbclient feature enabled) against
libsmbclient, the linker does not find the secondary libraries for
libsmbclient and fails with:

```
/usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/opt/ext-toolchain/bin/../lib/gcc/powerpc64le-buildroot-linux-gnu/7.4.0/../../../../powerpc64le-buildroot-linux-gnu/bin/ld: warning: libcli-ldap-common-samba4.so, needed by /usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/usr/bin/../powerpc64le-buildroot-linux-gnu/sysroot/usr/lib/libsmbclient.so, not found (try using -rpath or -rpath-link)
[skip]
/usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/opt/ext-toolchain/bin/../lib/gcc/powerpc64le-buildroot-linux-gnu/7.4.0/../../../../powerpc64le-buildroot-linux-gnu/bin/ld: /usr/lfs/v0/rc-buildroot-test/scripts/instance-2/output/host/usr/bin/../powerpc64le-buildroot-linux-gnu/sysroot/usr/lib/libsamdb.so.0: undefined reference to `sec_privilege_id'
[skip]
```

The bug has been reported upstream [1]. Setting `WAF_NO_PREFORK=1` fixes
the internal exception by disabling the usage of pre-forked processes
which somehow fails in cross-compiling environment.

Now, the configuration takes the correct values from the cross answers file:

```
Checking for rpath library support       : yes
```

And leads to a correct rpath entry in the ELF header:

```
Library rpath: [/usr/lib/samba:/usr/lib]
```

And fixes the build of with libsmbclient feature enabled.

Fixes:
http://autobuild.buildroot.net/results/1678a6c5e5c9ee44b7a90d059d95c5d385d75132/
http://autobuild.buildroot.net/results/ba11b09c0d99b005c71ddd4db7fa4caa5e68af9c/

[1] https://bugzilla.samba.org/show_bug.cgi?id=13846

Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/lftp: fix build with host expat
Fabrice Fontaine [Wed, 14 Aug 2019 17:52:38 +0000 (19:52 +0200)]
package/lftp: fix build with host expat

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=11881

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/daq: fix build with host libdnet
Fabrice Fontaine [Wed, 14 Aug 2019 17:51:35 +0000 (19:51 +0200)]
package/daq: fix build with host libdnet

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=12106

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/go: bump version to 1.12.8
Christian Stewart [Thu, 15 Aug 2019 06:39:33 +0000 (23:39 -0700)]
package/go: bump version to 1.12.8

go1.12.6 (released 2019/06/11) includes fixes to the compiler, the linker, the
go command, and the crypto/x509, net/http, and os packages.

go1.12.7 (released 2019/07/08) includes fixes to cgo, the compiler, and the
linker.

go1.12.8 (released 2019/08/13) includes security fixes to the net/http and
net/url packages.

https://golang.org/doc/devel/release.html

Signed-off-by: Christian Stewart <christian@paral.in>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/apache: security bump to version 2.4.41
Bernd Kuhls [Thu, 15 Aug 2019 05:25:09 +0000 (07:25 +0200)]
package/apache: security bump to version 2.4.41

Release notes:
http://www.apache.org/dist/httpd/Announcement2.4.html
http://www.apache.org/dist/httpd/CHANGES_2.4.41

Fixes
CVE-2019-10081
CVE-2019-9517
CVE-2019-10098
CVE-2019-10092
CVE-2019-10097
CVE-2019-10082

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/piglit: fix build of GLES tests
Fabrice Fontaine [Wed, 14 Aug 2019 21:58:43 +0000 (23:58 +0200)]
package/piglit: fix build of GLES tests

GLES tests needs libegl so:
- check for BR2_PACKAGE_HAS_LIBEGL to enable them
- add libegl to PIGLIT_DEPENDENCIES if needed

Fixes:
 - http://autobuild.buildroot.org/results/3c2b7fb1e54dd52a5fd9c1024b8258e02063bd2c

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/harfbuzz: fix build on m68k
Bernd Kuhls [Wed, 14 Aug 2019 21:20:45 +0000 (23:20 +0200)]
package/harfbuzz: fix build on m68k

Fixes:
http://autobuild.buildroot.net/results/b54/b54cf80fb8f09c6d4837e987657254d902a90ac1/

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/wilink-bt-firmware: bump to version 43fca73c6a98c63fcb98f82af5bf83761778e005
Fabrice Fontaine [Wed, 14 Aug 2019 18:14:37 +0000 (20:14 +0200)]
package/wilink-bt-firmware: bump to version 43fca73c6a98c63fcb98f82af5bf83761778e005

- Switch site to git.ti.com
- Add hash for license file (and change filename to LICENSE, there is
  only a change in the site URL between old and new file)
- Fix path

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=11946

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: remove Andy Kennedy, e-mail is bouncing
Thomas Petazzoni [Thu, 15 Aug 2019 09:10:35 +0000 (11:10 +0200)]
DEVELOPERS: remove Andy Kennedy, e-mail is bouncing

Andy Kennedy (andy.kennedy@adtran.com)<mailto:andy.kennedy@adtran.com>

  The e-mail address you entered couldn't be found. Please check the
  recipient's e-mail address and try to resend the message. If the
  problem continues, please contact your helpdesk.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: remove Steve Thomas, e-mail is bouncing
Thomas Petazzoni [Thu, 15 Aug 2019 09:08:49 +0000 (11:08 +0200)]
DEVELOPERS: remove Steve Thomas, e-mail is bouncing

<scjthm@live.com>: host live-com.olc.protection.outlook.com[104.47.5.33] said:
    550 5.5.0 Requested action not taken: mailbox unavailable.
    [HE1EUR02FT033.eop-EUR02.prod.protection.outlook.com] (in reply to RCPT TO
    command)

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: remove Marcin Nowakowski, e-mail is bouncing
Thomas Petazzoni [Thu, 15 Aug 2019 09:08:15 +0000 (11:08 +0200)]
DEVELOPERS: remove Marcin Nowakowski, e-mail is bouncing

<marcin.nowakowski@imgtec.com>: host
    mxa-00376f01.gslb.pphosted.com[185.132.180.163] said: 550 5.1.1 User
    Unknown (in reply to RCPT TO command)

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: remove Ed Swierk, e-mail is bouncing
Thomas Petazzoni [Thu, 15 Aug 2019 09:07:48 +0000 (11:07 +0200)]
DEVELOPERS: remove Ed Swierk, e-mail is bouncing

<eswierk@skyportsystems.com>: host aspmx.l.google.com[108.177.127.27] said:
    550-5.1.1 The email account that you tried to reach does not exist. Please
    try 550-5.1.1 double-checking the recipient's email address for typos or
    550-5.1.1 unnecessary spaces. Learn more at 550 5.1.1
    https://support.google.com/mail/?p=NoSuchUser 33si1105652eds.275 - gsmtp
    (in reply to RCPT TO command)

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: remove Abhilash Tuse
Thomas Petazzoni [Wed, 14 Aug 2019 12:48:32 +0000 (14:48 +0200)]
DEVELOPERS: remove Abhilash Tuse

His e-mail address @imgtec.com is bouncing:

<abhilash.tuse@imgtec.com>: host
    mxa-00376f01.gslb.pphosted.com[185.132.180.163] said: 550 5.1.1 User
    Unknown (in reply to RCPT TO command)

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libcpprestsdk: install to staging
Fabrice Fontaine [Tue, 13 Aug 2019 20:37:30 +0000 (22:37 +0200)]
package/libcpprestsdk: install to staging

libcpprestsdk is a library so it makes sense to install it in
staging even if no current package is using it for now

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=11936

Signed-off-by: Hein Gustavsen <hein.gustavsen@miros-group.com>
[Retrieved (and slightly update commit message) from:
https://bugs.buildroot.org/show_bug.cgi?id=11936]
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/tcpreplay: add optional libdnet dependency
Fabrice Fontaine [Tue, 13 Aug 2019 19:23:40 +0000 (21:23 +0200)]
package/tcpreplay: add optional libdnet dependency

Fixes:
 - https://bugs.buildroot.org/show_bug.cgi?id=12096

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libdnet: fix dnet-config
Fabrice Fontaine [Tue, 13 Aug 2019 19:23:39 +0000 (21:23 +0200)]
package/libdnet: fix dnet-config

Add dnet-config to LIBDNET_CONFIG_SCRIPTS so this script can be used by
applications such as tcpreplay

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/tcpreplay: security bump to version 4.3.2
Fabrice Fontaine [Tue, 13 Aug 2019 19:23:38 +0000 (21:23 +0200)]
package/tcpreplay: security bump to version 4.3.2

This release contains bug fixes only:

 - CVE-2019-8381 memory access in do_checksum() (#538)
 - CVE-2019-8376 NULL pointer dereference get_layer4_v6() (#537)
 - CVE-2019-8377 NULL pointer dereference get_ipv6_l4proto() (#536)
 - Rename Ethereal to Wireshark (#545)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/dtc: fix build without libyaml
Fabrice Fontaine [Tue, 13 Aug 2019 18:02:25 +0000 (20:02 +0200)]
package/dtc: fix build without libyaml

- Pass NO_YAML=1 to make when libyaml is disabled
- Move BR2_PACKAGE_LIBYAML block outside
  BR2_PACKAGE_DTC_PROGRAMS block to avoid duplicating NO_YAML=1 even if
  libyaml is only used / needed with dtc program

Fixes:
 - http://autobuild.buildroot.org/results/68a1ba8d615951931567bc8a409c1d16624c902b

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agolinux: bump CIP to version v4.19.65-cip8
Angelo Compagnucci [Tue, 13 Aug 2019 09:45:24 +0000 (11:45 +0200)]
linux: bump CIP to version v4.19.65-cip8

This patch bumps Linux CIP to version v4.19.65-cip8.

Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/qt5/qt5enginio: switch to a depends on for SSL support
Thomas Petazzoni [Sun, 4 Aug 2019 15:45:45 +0000 (17:45 +0200)]
package/qt5/qt5enginio: switch to a depends on for SSL support

qt5enginio requires SSL support in qt5base. However, the SSL support
in qt5base is a bit annoying: while it can be provided by either
openssl or libressl for Qt latest, it can only be provided by
libressl for Qt 5.6.

Fabrice Fontaine initially proposed [0] a dependency on
BR2_PACKAGE_QT5BASE_OPENSSL, and a long discussion
followed. Ultimately, we found the dependency to not be nice, as it
required users to know that they need to enable some SSL
implementation to be able to enable qt5enginio.

The current solution enables BR2_PACKAGE_OPENSSL (the virtual
package), which can be either openssl or libressl. This choice was
done under the assumption that we anyway don't test Qt 5.6 in the
autobuilders. However, this is incorrect: Qt latest needs gcc >= 4.8
on host and target, and we have configurations in the autobuilders
that don't meet this requirement, and therefore build Qt 5.6, and face
a build issue due to OpenSSL being used instead of LibreSSL.

After additional thinking, this commit simply gets back to the
original solution proposed by Fabrice: a "depends on". We simply add
Config.in comments to help the user in knowing what is missing to
enable qt5enginio.

An alternate solution would have been to disallow selecting qt5enginio
when Qt 5.6 is used. But fixing the qt5enginio build is also needed
for the LTS branch, and we can't drop qt5enginio on Qt 5.6 in the LTS
branch, as that could bother users.

Fixes:

  http://autobuild.buildroot.net/results/227d4b9e2b48c5b3f2dcf0fad9eefa2816c1eb0c/

[0] https://patchwork.ozlabs.org/patch/1053883/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/musl: fix conflict with riscv kernel headers
Baruch Siach [Thu, 8 Aug 2019 18:38:47 +0000 (21:38 +0300)]
package/musl: fix conflict with riscv kernel headers

Add two upstream patches fixing musl vs kernel headers conflict. This
fixes build of strace for risc64 at it happens to use headers from both
sources.

Modify patch #3 to leave a single newline in user.h. Otherwise 'patch
-E' in apply-patches.sh deletes user.h instead of leaving it empty.

Fixes (strace):
http://autobuild.buildroot.net/results/ac32e83dc5eb5ce2809fc4b9d11f540dbdae9ed6/

Cc: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: make Peter Seiderer the contact for all RPi defconfigs
Thomas Petazzoni [Sun, 11 Aug 2019 12:07:30 +0000 (14:07 +0200)]
DEVELOPERS: make Peter Seiderer the contact for all RPi defconfigs

Peter is already listed in the DEVELOPERS file for board/raspberrypi/
and configs/raspberrypi3_defconfig, and in practice contributes
regularly to all RPi defconfigs. It makes sense to have him listed in
the DEVELOPERS file for all RPi defconfigs.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Peter Seiderer <ps.report@gmx.net>
Acked-by: Peter Seiderer <ps.report@gmx.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Rafal Susz as contact for s6lx9_microboard_defconfig
Thomas Petazzoni [Sun, 11 Aug 2019 12:07:29 +0000 (14:07 +0200)]
DEVELOPERS: add Rafal Susz as contact for s6lx9_microboard_defconfig

Rafal was the last person modifying this defconfig. Let's add him as
the contact for this defconfig, so that he receives build failure
notifications and gets Cc'ed on patches.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Rafal Susz <rafal.susz@gmail.com>
Acked-by: Rafal Susz <rafal.susz@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Sergio Prado as contact for toradex_apalis_imx6_defconfig
Thomas Petazzoni [Sun, 11 Aug 2019 12:07:27 +0000 (14:07 +0200)]
DEVELOPERS: add Sergio Prado as contact for toradex_apalis_imx6_defconfig

Sergio added this defconfig a while ago, and is still active
contributing to Buildroot, so let's add him as the contact for this
defconfig, so that he receives build failure notifications and gets
Cc'ed on patches.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Sergio Prado <sergio.prado@e-labworks.com>
Cc: Scott Fan <fancp2007@gmail.com>
Acked-by: "Sergio Prado" <sergio.prado@e-labworks.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Luca Ceresoli for more Zynq board
Thomas Petazzoni [Sun, 11 Aug 2019 12:07:26 +0000 (14:07 +0200)]
DEVELOPERS: add Luca Ceresoli for more Zynq board

Luca Ceresoli has de-facto been updating/maintaining the
zynq_microzed_defconfig and zynq_zc706_defconfig for the past few
years, so let's add him in the DEVELOPERS for those two defconfigs.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Luca Ceresoli <luca@lucaceresoli.net>
Acked-by: Luca Ceresoli <luca@lucaceresoli.net>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Christophe Priouzeau as contact for STM32 defconfigs
Thomas Petazzoni [Sun, 11 Aug 2019 12:07:22 +0000 (14:07 +0200)]
DEVELOPERS: add Christophe Priouzeau as contact for STM32 defconfigs

Christophe has recently taken care of those defconfigs, so let's add
him as a contact for those defconfigs, so that he receives build
failure notifications and is Cc'ed on patches.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Cc: Christophe PRIOUZEAU <christophe.priouzeau@st.com>
Cc: Lee Jones <lee.jones@linaro.org>
Acked-by: Christophe Priouzeau <christophe.priouzeau@st.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/qemu: fix build with kernel >= 5.2
Fabrice Fontaine [Mon, 12 Aug 2019 20:54:37 +0000 (22:54 +0200)]
package/qemu: fix build with kernel >= 5.2

Fixes:
 - http://autobuild.buildroot.org/results/9bc0ed3ce74ec5e09263f625477393d5149eb872

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/libbsd: security bump to version 0.10.0
Fabrice Fontaine [Mon, 12 Aug 2019 16:37:44 +0000 (18:37 +0200)]
package/libbsd: security bump to version 0.10.0

- Remove patch (already in version)
- Update site to get the latest version
- Update hash of license file (update in year, new file and author)
- Remove !(BR2_TOOLCHAIN_USES_UCLIBC && !BR2_USE_MMU) dependency,
  __register_at_fork availability is correclty checked since
  https://gitlab.freedesktop.org/libbsd/libbsd/commit/b0ebb0d4c26b281facbab7a774510b541637b13b
- Includes Several security related fixes for nlist() reported by Daniel
  Hodson and one by Coverity Scan, see
  https://lists.freedesktop.org/archives/libbsd/2019-August/000229.html

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Acked-by: Yann E. MORIN <yann.morin.1998@free.fr>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackages/devmem2: remove from all board configurations
Carlos Santos [Mon, 12 Aug 2019 18:12:07 +0000 (15:12 -0300)]
packages/devmem2: remove from all board configurations

It is not used by any other application selected by those defconfigs.

Tested building all boards and searching recursively for devmem2 in the
target directory.

Signed-off-by: Carlos Santos <unixmania@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/ti-gfx: do not use devmem2 in script
Carlos Santos [Sun, 11 Aug 2019 23:01:43 +0000 (20:01 -0300)]
package/ti-gfx: do not use devmem2 in script

ti-gfx may install a debug script that uses devmem2 but does not select
BR2_PACKAGE_DEVMEM2. Use devmem, instead, already provided by Busybox.

Signed-off-by: Carlos Santos <unixmania@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Pierre-Jean Texier for genimage, libarchive and libxml2
Pierre-Jean Texier [Mon, 12 Aug 2019 16:09:30 +0000 (18:09 +0200)]
DEVELOPERS: add Pierre-Jean Texier for genimage, libarchive and libxml2

Signed-off-by: Pierre-Jean Texier <pjtexier@koncepto.io>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Francois Perrad for these Lua modules
Francois Perrad [Mon, 12 Aug 2019 15:37:30 +0000 (17:37 +0200)]
DEVELOPERS: add Francois Perrad for these Lua modules

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoconfigs/solidrun_clearfog: bump U-Boot to 2019.07
Baruch Siach [Mon, 12 Aug 2019 05:17:35 +0000 (08:17 +0300)]
configs/solidrun_clearfog: bump U-Boot to 2019.07

Fixes "SPL image too big" error.

Fixes:
https://gitlab.com/buildroot.org/buildroot/-/jobs/269139293

Cc: Jan Kundrát <jan.kundrat@cesnet.cz>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Bernd Kuhls for flac & pulseaudio
Bernd Kuhls [Mon, 12 Aug 2019 03:46:39 +0000 (05:46 +0200)]
DEVELOPERS: add Bernd Kuhls for flac & pulseaudio

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agopackage/micropython: fix build with gcc 9
Fabrice Fontaine [Sun, 11 Aug 2019 21:50:28 +0000 (23:50 +0200)]
package/micropython: fix build with gcc 9

Fixes:
 - http://autobuild.buildroot.org/results/087906ea63875bcea244aa8f1e551aecd8285f65

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Chris Packham <judge.packham@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
6 years agoDEVELOPERS: add Romain Naour for binutils, gcc, glibc
Romain Naour [Sun, 11 Aug 2019 20:55:11 +0000 (22:55 +0200)]
DEVELOPERS: add Romain Naour for binutils, gcc, glibc

Signed-off-by: Romain Naour <romain.naour@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>