aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* package/turbolua: Fix build with gcc72017.08.xGravatar Marcin Niestroj2017-12-121-0/+31
| | | | | | | | | | | | | | | | | | | | gcc7 has -Wimplicit-fallthrough enabled by default. Together with -Werror in turbolua makefile it gives -Werror=implicit-fallthrough= build error. Add upstreamable patch [1], which fixes typo in FALLTHROUGH comment, so it makes the fallthrough explicit for gcc. [1] https://github.com/kernelsauce/turbo/pull/323 Fixes: http://autobuild.buildroot.net/results/6f107b62f105508044185576b071323e5d73dd83 http://autobuild.buildroot.net/results/d303929960c667a21181d0bbdab64ba8a8d56a4f Signed-off-by: Marcin Niestroj <m.niestroj@grinn-global.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit d1839b7f0e7c6be2e90887b27dee58d9a0441771) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* Update for 2017.08.22017.08.2Gravatar Peter Korsgaard2017-11-292-2/+37
| | | | Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 3.2.x seriesGravatar Bernd Kuhls2017-11-271-1/+1
| | | | | | | Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit c8f0a823efdb3f195c475194dc7b3341502819c0) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/dvb-apps: fix build with some perl versionGravatar Yann E. MORIN2017-11-271-0/+2
| | | | | | | | | | | perl can't find a module that is located in the current directory, so help it locate it. Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Francois Perrad <francois.perrad@gadz.org> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit d8234d440024719e4df61f583b26302162dc363f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* google-breakpad: take into account host architecture dependenciesGravatar Thomas Petazzoni2017-11-274-0/+12
| | | | | | | | | | | | | | | | | | | | | Building the target google-breakpad requires building the host variant of google-breakpad. Just like the target google-breakpad only supports a limited number of architectures, it is the same for the host google-breakpad. We therefore introduce a BR2_PACKAGE_HOST_GOOGLE_BREAKPAD_ARCH_SUPPORTS option that is used where necessary to prevent the user from choosing Google Breakpad when building on unsupported host platforms. Fixes: http://autobuild.buildroot.net/results/c7c04483508f9e4d629efa54571afeb1feaa5f73/ (build on a powerpc64le machine) Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit fadc438393841eced94aa6decfd04c5bf448b255) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/dvb-apps: is not parallel-safeGravatar Yann E. MORIN2017-11-271-1/+1
| | | | | | | | | | | | | | | | | | | | | | | This is invisible because the timings make it excessively difficult to hit, but the Makefile is inherently flawed for parallel build, as it contains: $(objects): atsc_psip_section.c atsc_psip_section.h atsc_psip_section.c atsc_psip_section.h: perl section_generate.pl atsc_psip_section.pl and the perl script section_generate.pl will create both the .c and .h files in one go, but given the construct above, there can be two such script that run in parallel, which can clobber the generated .c and/or .h files. So, make dvb-apps a MAKE1 package. Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit ba6796c7ccb856fc34a7983c9ac031168f1e0b65) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* qt5webkit: fix URL for 5.6 downloadGravatar Gaël PORTAY2017-11-271-1/+1
| | | | | | | | | | The Qt community releases are not stored under submodules path component. Signed-off-by: Gaël PORTAY <gael.portay@savoirfairelinux.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 7780cef53540b59816852bfb89aa0c0012a36fbc) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 3.{2, 10}.x and 4.{1, 4, 9, 13}.x seriesGravatar Bernd Kuhls2017-11-271-5/+5
| | | | | | | | [Peter: drop 4.13.x bump] Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 1b7b0053131d42e7f502920eae4283f1f4f6c430) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* Fix makefile include order by using sort/wildcard.Gravatar Peter Seiderer2017-11-274-7/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | The 'include' directive in GNU make supports wildcards, but their expansion has no defined sort order (GLOB_NOSORT is passed to glob()). Usually this doesn't matter. However, there is at least one case where it does make a difference: toolchain/*/*.mk includes both the definitions of the external toolchain packages and pkg-toolchain-external.mk, but pkg-toolchain-external.mk must be included first. For predictability, use ordered 'include $(sort $(wildcard ...))' instead of unordered direct 'include */*.mk' everywhere. Fixes [1] reported by Petr Vorel: make: *** No rule to make target 'toolchain-external-custom', needed by '.../build/toolchain-external/.stamp_configured'. Stop. [1] http://lists.busybox.net/pipermail/buildroot/2017-November/206969.html Signed-off-by: Peter Seiderer <ps.report@gmx.net> Tested-by: Petr Vorel <petr.vorel@gmail.com> [Arnout: also sort the one remaining include, of the external docs] Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit b9d2d4cb4ebc7a2290c4683dd9667b8f0a9e3cdf) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/google-breakpad: replace references to 'struct ucontext' with ↵Gravatar Romain Naour2017-11-271-0/+257
| | | | | | | | | | | | | | | | | | | | | | | | | 'ucontext_t' In glibc, since https://sourceware.org/git/?p=glibc.git;h=251287734e89a52da3db682a8241eb6bccc050c9 the 'struct ucontext' tag has been replaced with 'struct ucontext_t'. The tag itself is anyway not POSIX - only the 'ucontext_t' typedef is specified. And that type has existed since at least 1997 in glibc. Therefore, replace references to 'struct ucontext' with 'ucontext_t', which works in all versions of glibc, uClibc and musl. Fixes: [arm] http://autobuild.buildroot.net/results/6380341dbb6c114e4452c5cda37da6b44b80d178 [aarch64] http://autobuild.buildroot.net/results/4ecf770df7c984a62082d59f8fab632d3efbe06b [mipsel] http://autobuild.buildroot.net/results/e1473a12cf38ccf4dd3ed0f26a8ff9e6b57f0810 Signed-off-by: Romain Naour <romain.naour@gmail.com> [Arnout: improve commit message] Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit ca4009fc24e3a283fc44327dbd20579bde6cc323) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 4.{4, 9, 13}.x seriesGravatar Bernd Kuhls2017-11-271-2/+2
| | | | | | | | [Peter: drop 4.13.x bump] Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit ee6840166fb6ce195547cc1f9a0417ac1d611b19) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* lttng-tools: fix build errors and warnings for musl/uClibc-ngGravatar Philippe Proulx2017-11-274-1/+314
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Add 0001-Fix-detect-dlmopen-and-disable-corresponding-tests-i.patch to detect if dlmopen() exists and disable parts of the build accordingly if not. This fixes a bug when building with musl or uClibc-ng. Add 0002-Fix-src-common-pipe.h-include-sys-types.h-for-ssize_.patch to fix an #include bug when building with musl. Add 0003-Fix-warning-src-bin-lttng-utils.c-cast-incompatible-.patch to remove compilation warnings. All three new patches are in upstream's master branch as of this date and will be part of an eventual release. Fixes: http://autobuild.buildroot.net/results/e37a5c69e2a9f9cd7c0705331e205c1ee20808e7/ (musl) http://autobuild.buildroot.net/results/b2670e6d1928649aefa7fbc748858e6036585f01/ (uclibc) Signed-off-by: Philippe Proulx <eeppeliteloop@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 9dd25fe977867a2e7ef1ba40c3cbd12953ecaf51) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* localedef: fix xlocale.h related compile failureGravatar Peter Seiderer2017-11-271-0/+50
| | | | | | | | | | | | | | | | | | | | Add upstream patch 'Don't include <xlocale.h>'. Fixes Bug-10501 ([1]): In file included from ./include/locale.h:1:0, from /usr/include/libintl.h:103, from ./include/libintl.h:2, from glibc/locale/programs/charmap.c:25: glibc/locale/locale.h:146:11: fatal error: xlocale.h: No such file or directory # include <xlocale.h> [1] https://bugs.busybox.net/show_bug.cgi?id=10501 Signed-off-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit d5cc76c5314f58fa18001e9abce196c1ac4a28d1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* samba4: security bump to version 4.6.11Gravatar Peter Korsgaard2017-11-272-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes the following security issues: - CVE-2017-14746: All versions of Samba from 4.0.0 onwards are vulnerable to a use after free vulnerability, where a malicious SMB1 request can be used to control the contents of heap memory via a deallocated heap pointer. It is possible this may be used to compromise the SMB server. - CVE-2017-15275: All versions of Samba from 3.6.0 onwards are vulnerable to a heap memory information leak, where server allocated heap memory may be returned to the client without being cleared. There is no known vulnerability associated with this error, but uncleared heap memory may contain previously used data that may help an attacker compromise the server via other methods. Uncleared heap memory may potentially contain password hashes or other high-value data. For more details, see the release notes: https://www.samba.org/samba/history/samba-4.6.11.html Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit df75c954bc5633045d5c06a87c53d71dad8ae6e1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* oracle-mysql: fix build with gcc 7.xGravatar Thomas Petazzoni2017-11-271-4/+25
| | | | | | | | | | | | | This adjusts an existing patch to also fix gcc 7.x build issues on the server side of MySQL. Fixes: http://autobuild.buildroot.net/results/9e3a0b5b8f2506fb2ce2fcc3d5d3a494a14439cb Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 317b72f469867bd3e1765418e325515d6065d45f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* qt: add patch to fix build on non-x86 platformsGravatar Thomas Petazzoni2017-11-271-0/+146
| | | | | | | | | | | | | | | | | | | | | | | This commit adds a patch to Qt that adjusts its build system to properly support building on non-x86 platforms. The problem was due to the PLATFORM and XPLATFORM variables having the same value when building on a ppc64le system targetting an uncommon architecture (Xtensa or ARC for example). We fix this problem by making sure PLATFORM and XPLATFORM will always be different. Fixes the following build failures occuring on gcc112 (a ppc64le autobuilder machine): http://autobuild.buildroot.net/results/527747a2fbb31195bb6fdb37cfdaa624e69b7d68/ (qt on xtensa) http://autobuild.buildroot.net/results/7db1265f6f34be3a498881564292517a8fc0e44e/ (qt on ARC) Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit e86b74333e740516b6472dab5fa8f7822ae82840) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libfastjson: indicate explicitly which gcc -std option to useGravatar Thomas Petazzoni2017-11-271-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit fixes the following build issue of libfastjson with old enough compilers (4.8) and wchar disabled: json_object.c: In function 'fjson_object_object_delete': json_object.c:385:3: error: 'for' loop initial declarations are only allowed in C99 mode for (int i = 0 ; i < FJSON_OBJECT_CHLD_PG_SIZE ; ++i) { ^ The code of libfastjson requires C99. If your compiler is recent enough (gcc 5.x), then no problem, it is C99 by default, no additional flags are needed. If your compiler is older (for example gcc 4.8), then -std=c99 or -std=gnu99 is explicitly needed to tell the compiler to accept C99 constructs. Testing the compiler for the availability of such flags is done by libfastjson configure script. However, the test program used by the configure script uses some wchar_t types, and therefore the test checking for C99 availability fails on toolchains with wchar disabled. From config.log: configure:3928: checking for /home/test/buildroot/output/host/usr/bin/i586-buildroot-linux-uclibc-gcc option to accept ISO C99 [...] configure:4077: /home/test/buildroot/output/host/usr/bin/i586-buildroot-linux-uclibc-gcc -std=gnu99 -c -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64 -Os -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64 conftest.c >&5 conftest.c:54:3: error: unknown type name 'wchar_t' const wchar_t *name; ^ So, just like we did in libv4l in commit f01396a158f14c53b781c35f7ff29da0bea8c8d6 ("libv4l: fix uclibc-ng configure/compile"), let's hint directly the configure script that it should use -std=gnu99. This fixes the build of libfastjson with old compilers and wchar disabled. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 90430237ccdcc369d3e206fdd24266c0cad0dcb6) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* qt5webkit: backport upstream icu-59 fix from 5.9 branch to 5.6.3Gravatar Peter Korsgaard2017-11-271-0/+93
| | | | | | | | | | icu-59.x slightly changed the API, breaking qt5webkit builds. For details, see: https://bugreports.qt.io/browse/QTBUG-60532 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit cab0d0a8acc920c6d240e9d503816b9ffb0508d2) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* qt5webkit: correct download URL and hash for 5.6 variantGravatar Peter Korsgaard2017-11-272-2/+7
| | | | | | | | | | | | | | | Commit 06a4975d4bd03 (qt5: bump LTS version to 5.6.3) added an empty hash for the 5.6.3 variant of qt5webkit, causing failures. It also forgot to adjust the download URL as the qt5webkit tarballs are no longer available under official_releases/ like the other submodules, but only under community_releases/. Fix both issues. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit d4a119ccc42f5b93a2e33f99438a86cc5ee1fb00) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libpjsip: fix ssl supportGravatar Adam Duskett2017-11-261-1/+0
| | | | | | | | | | | | | | Currently, ssl support is implicitely disabled in the initial configure options. This overrides the check for openssl below. libpjsip is also currently only compatible with libopenssl. Change the check to LIBOPENSSL instead of openssl, and depend on libopenssl. [Peter: drop libopenssl change] Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 9e479e65dcf1582b20433ca1b120efb66e806a04) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 4.{4, 9, 13}.x seriesGravatar Bernd Kuhls2017-11-261-2/+2
| | | | | | | | [Peter: drop 4.13.x bump] Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 5962717eb46f39214693d1b45c3cac2b330fca12) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/samba4: bump version to 4.6.10Gravatar Bernd Kuhls2017-11-262-2/+2
| | | | | | | | | | | | | | | | | Quoting release notes https://www.samba.org/samba/history/samba-4.6.10.html "This is an additional bugfix release to address a possible data corruption issue. Please update immediately! For details, please see https://bugzilla.samba.org/show_bug.cgi?id=13130 Samba 4.6.0 and newer is affected by this issue." Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 806e6becb76649ecfc1104d0c284bb3f6a9245dd) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/samba4: bump version to 4.6.9Gravatar Bernd Kuhls2017-11-262-2/+3
| | | | | | | | | | | Release notes: https://www.samba.org/samba/history/samba-4.6.9.html Added license hash. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 2be90f4a24a3df487a5c5de9c4708cfa77f172b5) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* mp4v2: add upstream patch fixing build issue with gcc 7+Gravatar Peter Korsgaard2017-11-261-0/+32
| | | | | | | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/fc0/fc0f51f3ee1364f55248e8fe713995bc07f877c6/ http://autobuild.buildroot.net/results/b0e/b0e68ad2aeb7c191cdaa9856a36bd2cae4bcd5f0/ http://autobuild.buildroot.net/results/a66/a66c89e3fb3f1d9802581aaffad87a547c6e67f5/ And many more. Add an upstream patch fixing invalid code that now triggers a build error on gcc7+. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 0b1509107dc1720f7da6149a8791085794b5677f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/x11r7/xapp_xdriinfo: fix libgl dependencyGravatar Bernd Kuhls2017-11-261-1/+1
| | | | | | | | | | | | | Fixes "mesa3d is in the dependency chain of xapp_xdriinfo that has added it to its _DEPENDENCIES variable without selecting it or depending on it from Config.in." http://autobuild.buildroot.net/results/d8a/d8aeed2f64e21a277eb0bc5dc08d2339a14c682e/ Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 6d97e73257ffb9fddb8a57dc8d2933b79b86f4b0) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libpjsip: fix static build failures due to name clashGravatar Luca Ceresoli2017-11-261-0/+26
| | | | | | | | | | | | | | | | | | | | Several packages have a similar md5.c file, and each has a function named byteReverse(). This generates link errors when building statically ("multiple definition of `byteReverse'"). Fix by applying a patch from upstream: https://trac.pjsip.org/repos/changeset/5688 Fixes: http://autobuild.buildroot.org/results/5d7/5d72e0f8517a555399978d5a0e9f7efd0a278189/ http://autobuild.buildroot.org/results/c47/c47ccbb9b40011cf0d79c7040bed061ddefd9629/ http://autobuild.buildroot.org/results/419/419ab2c0e034cc68991281c51caa8271b0fadbab/ Signed-off-by: Luca Ceresoli <luca@lucaceresoli.net> Cc: Adam Duskett <aduskett@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 8d44fb66085723b87efd8d111db50fdba7fa63ea) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* ruby: security bump to version 2.4.2Gravatar Peter Korsgaard2017-11-264-812/+7
| | | | | | | | | | | | | | | | | | | | Fixed the following security issues: CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf CVE-2017-10784: Escape sequence injection vulnerability in the Basic authentication of WEBrick CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode CVE-2017-14064: Heap exposure in generating JSON For more details, see the release notes: https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-4-2-released/ Drop now upstreamed rubygems patches and add hashes for the license files while we're at it. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit f2c353054111b0398399ba1933a47d34441c875e) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/imagemagick: security bump to version 7.0.7-10Gravatar Bernd Kuhls2017-11-262-2/+2
| | | | | | | | | | | | Version 7.0.7-3 fixes CVE-2017-15218: Stop potential leaks in the JNG decoder Changelog: https://www.imagemagick.org/script/changelog.php Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 3c8dc542936484cf94efd06d96161c8a04fb17a5) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* mesa3d: fix build with BR2_SHARED_STATIC_LIBSGravatar Fabrice Fontaine2017-11-261-0/+6
| | | | | | | | | | | | mesa3d does not allow to enable both static and shared libraries so if BR2_SHARED_STATIC_LIBS is set, disable static Fixes https://bugs.busybox.net/show_bug.cgi?id=10326 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit dd09d500aa6972808b2549e4b8c7fa4e396ca91f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* vboot-utils: fix ARCH detectionGravatar Alex Suykov2017-11-261-0/+5
| | | | | | | | | | | | | | | | | | | | The package includes some target-specific code that is irrelevant in a host package but gets built anyway. The target for this code must be one of the supported ChromeOS targets. Supplied Makefile apparently relies on the environment to provide a valid target, with a simple fallback to host arch. This breaks the build if no value is provided and the host arch is not among the supported ones. Should fix http://autobuild.buildroot.net/results/d118a83b6c4f7f910d0d44c279f36251d7ba29e8/ and similar failures. Signed-off-by: Alex Suykov <alex.suykov@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit bbb25c3ad7b66e6882508e49028d1739732bca34) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* snmp++: security bump to v3.3.10Gravatar Adam Duskett2017-11-262-2/+3
| | | | | | | | | | | >From the changelong: Set the FD_CLOEXEC flag on sockets, so they are not "leaked" to spawned processes Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 6be1631bf27cb0d2aa6ddcbad835d614f33698e6) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/collectd: Specify FP layout based on endiannessGravatar Andrey Smirnov2017-11-261-1/+15
| | | | | | | | | | | | | | | | | Big-endian CPUs store floating point as big endian (at lest majority of them do), so, in order for 'network' plugin to work correctly (and potentially any user of htond() in collectd's codebase), --with-fp-layout=endianflip as opposed to --with-fp-layout=nothing needs to be specified during configuration phase. Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: Arnout Vandecappelle <arnout@mind.be> Cc: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Andrey Smirnov <andrew.smirnov@gmail.com> Reviewed-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit bdd8475b90fa46644149d34bf852b213ec60ce71) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: security bump to version 9.6.6Gravatar Peter Korsgaard2017-11-262-3/+5
| | | | | | | | | | | | | | | | | | | | | | Fixes the following security issues: CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. CVE-2017-15098: Memory disclosure in JSON functions. CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges. See the announcement for more details: https://www.postgresql.org/about/news/1801/ While we're at it, also add a hash for the license file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit b97353f2b50add10971e8477ad0b4cede9244578) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* postgresql: security bump to version 9.6.5Gravatar Adam Duskett2017-11-262-3/+3
| | | | | | | | | | | | | | | | Fixes the following security issues (9.6.4): CVE-2017-7546: Empty password accepted in some authentication methods CVE-2017-7547: The "pg_user_mappings" catalog view discloses passwords to users lacking server privileges CVE-2017-7548: lo_put() function ignores ACLs For more info, see https://www.postgresql.org/about/news/1772/ [Peter: extend commit message with security fixes info] Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 95e284bd2732390eb34cb72c798032fd7ac8920c) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* webkitgtk: security bump to version 2.18.3Gravatar Adrian Perez de Castro2017-11-262-5/+5
| | | | | | | | | | | | | | | | This is a maintenance release of the current stable WebKitGTK+ version, which contains a minor rendering fix, another for the WebDriver implementation, and security fixes for CVE-2017-13798, CVE-2017-13788, and CVE-2017-13803. Release notes: https://webkitgtk.org/2017/11/10/webkitgtk2.18.3-released.html Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 5ff18880e9647e446a3d720b7c6c74eed97ef0b4) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libpjsip: security bump to 2.7.1Gravatar Adam Duskett2017-11-262-4/+5
| | | | | | | | | | | | Also add hash for license file See release notes for details: https://trac.pjsip.org/repos/milestone/release-2.7.1 Signed-off-by: Adam Duskett <Adamduskett@outlook.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 4bdc4e492ba75d34d859ca15f0c21ec8078785fc) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libpjsip: bump to 2.7Gravatar Adam Duskett2017-11-262-4/+4
| | | | | | | Signed-off-by: Adam Duskett <Adamduskett@outlook.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 0f6dacb37a4e97c7acea59ea7ccda932512e3ff9) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* go-bootstrap: add BR2_PACKAGE_HOST_GO_BOOTSTRAP_ARCH_SUPPORTSGravatar Thomas Petazzoni2017-11-263-0/+9
| | | | | | | | | | | | | | | | | | | | | | | | go-bootstrap is a host package that builds a first stage Go compiler, later used to build the final Go compiler. However, this first stage compiler only supports building on x86, x86-64 and arm as host architectures, so we need to add the relevant architecture dependencies to avoid having go-bootstrap built on other unsupported platforms. We do this by introducing BR2_PACKAGE_HOST_GO_BOOTSTRAP_ARCH_SUPPORTS in a new package/go-bootstrap/Config.in.host file. This option is then used by BR2_PACKAGE_HOST_GO_ARCH_SUPPORTS to make sure we can't enable Go packages when the host architecture doesn't allow building the Go compiler. Fixes: http://autobuild.buildroot.net/results/cbd419c6ab6fa8a6d18dc137c91f895867e53b8a/ Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit a3fda8e292c4b5b98482b5b75f551476c570a034) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* usb_modeswitch: update config.guess / config.subGravatar Peter Korsgaard2017-11-261-0/+6
| | | | | | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/fbe/fbe21bd173e6566dd93dddd58d4a848de8a3465e/ The build system of the embedded jimtcl copy doesn't use autotools, but does use an old version of gnuconfig which doesn't know all the architectures supported by Buildroot, so update config.guess / config.sub like we do in pkg-autotools.mk Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 90d86994f86fec8578772a8a7465bf912c69e1ca) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* jimtcl: update config.guess / config.subGravatar Peter Korsgaard2017-11-261-0/+6
| | | | | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/284/284876bd649cab26e5ecd696c03c71c077ea7411/ The build system doesn't use autotools, but does use an old version of gnuconfig which doesn't know all the architectures supported by Buildroot, so update config.guess / config.sub like we do in pkg-autotools.mk Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit bca1d4af9bf6b60b37bf5d39e9e3e1b827854f52) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 4.{4, 9, 13}.x seriesGravatar Fabio Estevam2017-11-261-2/+2
| | | | | | | | [Peter: drop 4.13.x bump] Signed-off-by: Fabio Estevam <fabio.estevam@nxp.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 2aa12565d6645b5bf85b0da8f0b736f5482f1333) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* wireshark: bump version to 2.2.10 (security)Gravatar André Hentschel2017-11-262-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Security fixes since 2.2.7: - wnpa-sec-2017-22 Bazaar dissector infinite loop (Bug 13599) CVE-2017-9352 - wnpa-sec-2017-23 DOF dissector read overflow (Bug 13608) CVE-2017-9348 - wnpa-sec-2017-24 DHCP dissector read overflow (Bug 13609, Bug 13628) CVE-2017-9351 - wnpa-sec-2017-25 SoulSeek dissector infinite loop (Bug 13631) CVE-2017-9346 - wnpa-sec-2017-26 DNS dissector infinite loop (Bug 13633) CVE-2017-9345 - wnpa-sec-2017-27 DICOM dissector infinite loop (Bug 13685) CVE-2017-9349 - wnpa-sec-2017-28 openSAFETY dissector memory exhaustion (Bug 13649) CVE-2017-9350 - wnpa-sec-2017-29 BT L2CAP dissector divide by zero (Bug 13701) CVE-2017-9344 - wnpa-sec-2017-30 MSNIP dissector crash (Bug 13725) CVE-2017-9343 - wnpa-sec-2017-31 ROS dissector crash (Bug 13637) CVE-2017-9347 - wnpa-sec-2017-32 RGMP dissector crash (Bug 13646) CVE-2017-9354 - wnpa-sec-2017-33 IPv6 dissector crash (Bug 13675) CVE-2017-9353 - wnpa-sec-2017-13 WBMXL dissector infinite loop (Bug 13477, Bug 13796) CVE-2017-7702, CVE-2017-11410 Note: This is an update for a fix in Wireshark 2.2.6 and 2.0.12. - wnpa-sec-2017-28 openSAFETY dissector memory exhaustion (Bug 13649, Bug 13755) CVE-2017-9350, CVE-2017-11411 Note: This is an update for a fix in Wireshark 2.2.7. - wnpa-sec-2017-34 AMQP dissector crash. (Bug 13780) CVE-2017-11408 - wnpa-sec-2017-35 MQ dissector crash. (Bug 13792) CVE-2017-11407 - wnpa-sec-2017-36 DOCSIS infinite loop. (Bug 13797) CVE-2017-11406 - wnpa-sec-2017-38 MSDP dissector infinite loop (Bug 13933) - wnpa-sec-2017-39 Profinet I/O buffer overrun (Bug 13847) - wnpa-sec-2017-41 IrCOMM dissector buffer overrun (Bug 13929) Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.10.html Signed-off-by: André Hentschel <nerv@dawncrow.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 708316f49fd08170e75d9c9eab61a4b3b1280bc9) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* gstreamer: needs dynamic librariesGravatar Arnout Vandecappelle (Essensium/Mind)2017-11-263-6/+13
| | | | | | | | | | | | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/49d/49dcec0bd2f3bb78c18675a9fa5c9c53cc183fd2/ g_cclosure_marshal_VOID__VOID is defined both in libgobject.a and libgstreamer.a. It is probably possible to fix this, but gstreamer0.10 has been deprecated for a long time now and is anyway unlikely to be used in static-only situations, so let's just require dynamic linking. Propagate to the reverse dependencies. opencv3 already did depend on dynamic libs. [Peter: add autobuild reference] Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 0eee5465e51229c4c17d7930ca2095caace4f8d2) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* suport/download: force svn to be non-interactiveGravatar Yann E. MORIN2017-11-261-1/+1
| | | | | | | | | | | | | Fixes: http://autobuild.buildroot.org/results/2af/2af7412846c576089f8596857ab8c81ac31c1bed/ Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: André Hentschel <nerv@dawncrow.de> Reviewed-by: André Hentschel <nerv@dawncrow.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 4013f11a5b71f238b36f45dcdeb46b7f7a01e600) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libglib2: needs autoreconfGravatar Thomas Petazzoni2017-11-261-0/+2
| | | | | | | | | | | | | | | | | | | | Patch 0002-disable-tests.patch modifies Makefile.am, so we have to autoreconf. It hasn't been seen until now, but becomes very clear since the bump of automake to 1.15.1, as we're seeing build failures such as: configure.ac:66: error: version mismatch. This is Automake 1.15.1, configure.ac:66: but the definition used by this AM_INIT_AUTOMAKE configure.ac:66: comes from Automake 1.15. You should recreate configure.ac:66: aclocal.m4 with aclocal and run automake again. Fixes: http://autobuild.buildroot.net/results/3402357d8e90f1866dfeaee7bb61119d80dc8bcb/ Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> (cherry picked from commit 45fbec12e79dfd8416b20afa4c2590aecd3ddc5d) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* kvm-unit-test: x86-64 variant only available on x86-64 hostsGravatar Peter Korsgaard2017-11-261-0/+1
| | | | | | | | | | We use the host compiler for x86-64 builds, so ensure it is only available on x86-64 hosts. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit a13029996f25c1fb60ee68a67344b963dee374c1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* usb_modeswitch: explicitly set --host / --build for the embedded jimtclGravatar Peter Korsgaard2017-11-262-0/+30
| | | | | | | | | | | | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/106/106af20196089e74c35daabdae46f030981600bd/ Otherwise the (handwritten) configure script uses a config.guess script from 2010 to figure out the build host, breaking builds on ppc64le hosts. The result of --host / --build is only used to detect if we are building for Windows or not, which is why things are working on x86(-64) build hosts without specifying --host even though we are cross compiling - But this may change in the future, so we better pass the correct values. Passing extra jimtcl configure flags is unfortunately not forseen in the usb_modeswitch Makefile, so add a small patch making this possible. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 29cccab4476bc58b2acb50887a67e310045efb24) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* jimtcl: explicitly set --host / --buildGravatar Peter Korsgaard2017-11-261-0/+2
| | | | | | | | | | | | | | | | | Fixes: http://autobuild.buildroot.net/results/d13/d137680bf1c0ebfacef635cb2f0fc14524759143/ Otherwise the (handwritten) configure script uses a config.guess script from 2010 to figure out the build host, breaking builds on ppc64le hosts. The result of --host / --build is only used to detect if we are building for Windows or not, which is why things are working on x86(-64) build hosts without specifying --host even though we are cross compiling - But this may change in the future, so we better pass the correct values. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 962561a57521dc778df99904aff06c6d1bc435ee) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/libplist: needs threadsGravatar Bernd Kuhls2017-11-261-2/+3
| | | | | | | | | | | | | Upstream added a mandatory pthread check: https://github.com/libimobiledevice/libplist/commit/eec2e855b4f192cb1808d1f02b6bc8935a979025 Fixes http://autobuild.buildroot.net/results/863/863bb43db222f8e63d60b1fc4a53299575727de1/ Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit dbd9915caa884073e4a644086a5783fb687d76f0) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/libplist: security bump to version 2.0.0Gravatar Bernd Kuhls2017-11-263-7/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Release notes: https://github.com/libimobiledevice/libplist/blob/master/NEWS This version bump fixes * CVE-2017-6440 * CVE-2017-6439 * CVE-2017-6438 * CVE-2017-6437 * CVE-2017-6436 * CVE-2017-6435 * CVE-2017-5836 * CVE-2017-5835 * CVE-2017-5834 * CVE-2017-5545 * CVE-2017-5209 ... and several others that didn't receive any CVE (yet). The dependency to libxml2 was removed. Autoreconf is not needed anymore, the upstream tarball includes a configure script. [Peter: also drop host-pkgconf dependency, only used for cython] Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 4c3820248761c279e3c8f9839e5b24c8b39891fd) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>