buildroot/package/tinc, branch 2019.02-op-build

tinc: security bump to version 1.0.35

2018-10-09T12:48:11+00:00

Fixes the following security issues: CVE-2018-16758: Michael Yonli discovered that tinc 1.0.34 and earlier allow a man-in-the-middle attack that, even if the MITM cannot decrypt the traffic sent between the two endpoints, when the MITM can correctly predict when an ephemeral key exchange message is sent in a TCP connection between two nodes, allows the MITM to force one node to send UDP packets in plaintext. The tinc 1.1pre versions are not affected by this. CVE-2018-16738: Michael Yonli discoverd that tinc versions 1.0.30 to 1.0.34 allow an oracle attack, similar to CVE-2018-16737, but due to the mitigations put in place for the Sweet32 attack in tinc 1.0.30, it now requires a timing attack that has only a limited time to complete. Tinc 1.1pre16 and earlier are also affected if there are nodes on the same VPN that still use the legacy protocol from tinc version 1.0.x. Signed-off-by: Peter Korsgaard Signed-off-by: Thomas Petazzoni

package/tinc: bump version to 1.0.34

2018-08-05T10:56:15+00:00

Updated license hash after upstream commit: http://www.tinc-vpn.org/git/browse?p=tinc;a=commitdiff;h=54b18a85f68652f94ac5ecffbd9d100879ed06ea Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni

package/tinc: upgrade to 1.0.33, install upstream's systemd files

2018-01-27T18:12:27+00:00

Signed-off-by: Zoltan Gyarmati Signed-off-by: Peter Korsgaard

package/t*/Config.in: fix ordering of statements

2017-05-02T12:42:05+00:00

The check-package script when ran gives warnings on ordering issues on all of these Config files. This patch cleans up all warnings related to the ordering in the Config files for packages starting with the letter t in the package directory. The appropriate ordering is: type, default, depends on, select, help See http://nightly.buildroot.org/#_config_files for more information. Signed-off-by: Adam Duskett Signed-off-by: Thomas Petazzoni

boot, linux, package: use SPDX short identifier for GPLv2/GPLv2+

2017-04-01T13:16:38+00:00

We want to use SPDX identifier for license strings as much as possible. SPDX short identifier for GPLv2/GPLv2+ is GPL-2.0/GPL-2.0+. This change is done by using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/\/GPL-2.0/g' Signed-off-by: Rahul Bedarkar Signed-off-by: Thomas Petazzoni

package/tinc: upgrade to upstream version 1.0.30

2016-12-02T22:59:48+00:00

Signed-off-by: Zoltan Gyarmati Signed-off-by: Thomas Petazzoni

toolchain: add hidden symbol for PIE support

2016-07-24T19:44:22+00:00

uClibc-ng does not support PIE for some architectures as arc and m68k. It isn't implemented in the static linking case, too. With musl toolchains you might have static PIE support with little patching of gcc. Static linking for GNU libc isn't enabled in buildroot. Fixup any package using special treatment of PIE. (grep -ir pie package/*/*.mk) Signed-off-by: Waldemar Brodkorb [Thomas: use positive logic.] Signed-off-by: Thomas Petazzoni

package/tinc: bump version to 1.0.28

2016-06-01T21:39:11+00:00

This patch can be applied after the release of buildroot 2016.05. Removed 0001-musl.patch, applied upstream. Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni

package/tinc: optionally include linux/if_tun.h to fix musl build

2016-05-25T21:27:18+00:00

Fixes http://autobuild.buildroot.net/results/5b1/5b1d0c8c1bd75f7e228c313cb21b1638301568ae/ Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni

package/tinc: needs libdl for OpenSSL support

2016-05-25T21:27:18+00:00

Fixes http://autobuild.buildroot.net/results/d5b/d5b2f905d8da79cebda1408ffceac6d4c99f9e7b/ Signed-off-by: Bernd Kuhls Signed-off-by: Thomas Petazzoni