OpenPOWER buildroot sources https://git.raptorcs.com/git/buildroot/atom?h=2019.02-op-build 2019-03-25T16:26:52+00:00 2019-03-25T16:26:52+00:00 Fabrice Fontaine fontaine.fabrice@gmail.com 2019-03-09T08:18:32+00:00 urn:sha1:b3399de9e616402fa79a831acb5cbfc91d919c54 Fixes: - http://autobuild.buildroot.org/results/df5abe6ca8b4c8935f3d5c257aef816190771200 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit 9b2bf1b7458891ae652e3493ae87d1f7c4776a8b) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-12-16T11:08:47+00:00 Peter Korsgaard peter@korsgaard.com 2018-12-15T21:00:31+00:00 urn:sha1:a368ae1cee4ff28f505a88e69f7ebc249bd56243 The 4.11.1 release brings a large number of fixes: https://xenproject.org/downloads/xen-archives/xen-project-411-series/xen-4111.html Including a number of security fixes: XSA-268: Use of v2 grant tables may cause crash on ARM (CVE-2018-15469) XSA-269: x86: Incorrect MSR_DEBUGCTL handling lets guests enable BTS (CVE-2018-15468) XSA-272: oxenstored does not apply quota-maxentity (CVE-2018-15470) XSA-273: L1 Terminal Fault speculative side channel (CVE-2018-3620, CVE-2018-3646) XSA-275: insufficient TLB flushing / improper large page mappings with AMD IOMMUs XSA-276: resource accounting issues in x86 IOREQ server handling XSA-277: x86: incorrect error handling for guest p2m page removals XSA-278: x86: Nested VT-x usable even when disabled (CVE-2018-18883) XSA-279: x86: DoS from attempting to use INVPCID with a non-canonical addresses XSA-280: Fix for XSA-240 conflicts with shadow paging XSA-282: guest use of HLE constructs may lock up host Signed-off-by: Peter Korsgaard <peter@korsgaard.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2018-11-18T21:12:33+00:00 Alistair Francis alistair23@gmail.com 2018-11-17T22:17:07+00:00 urn:sha1:906903ce4a87a57d028cce7edf62b58648d8bb72 Bump the Xen package to the latest release and backport a fix from the Xen master brach. This fixes autobuilder issue: http://autobuild.buildroot.net/results/6e0d8e962e861a32f5bf2e5031ef51c25768f1f6/ Signed-off-by: Alistair Francis <alistair@alistair23.me> Tested-by: Matt Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-10-01T12:31:35+00:00 Peter Korsgaard peter@korsgaard.com 2018-09-30T20:43:54+00:00 urn:sha1:059d655f5cfa321ae3e0847599c80acb238d39c1 Drop 0003-memfd-fix-configure-test.patch applied upstream. The 4.10.2 version brings a large number of fixes: https://xenproject.org/downloads/xen-archives/xen-project-410-series/xen-4102.html Including a number of security fixes: XSA-260: x86: mishandling of debug exceptions (CVE-2018-8897) XSA-261: x86 vHPET interrupt injection errors (CVE-2018-10982) XSA-262: qemu may drive Xen into unbounded loop (CVE-2018-10981) XSA-263: Speculative Store Bypass (CVE-2018-3639) XSA-264: preemption checks bypassed in x86 PV MM handling (CVE-2018-12891) XSA-265: x86: #DB exception safety check can be triggered by a guest (CVE-2018-12893) XSA-266: libxl fails to honour readonly flag on HVM emulated SCSI disks (CVE-2018-12892) XSA-267: Speculative register leakage from lazy FPU context switching (CVE-2018-3665) XSA-268: Use of v2 grant tables may cause crash on ARM (CVE-2018-15469) XSA-269: x86: Incorrect MSR_DEBUGCTL handling lets guests enable BTS (CVE-2018-15468) XSA-272: oxenstored does not apply quota-maxentity (CVE-2018-15470) XSA-273: L1 Terminal Fault speculative side channel (CVE-2018-3620, CVE-2018-3646) Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-09-07T11:13:17+00:00 Peter Korsgaard peter@korsgaard.com 2018-09-07T11:08:31+00:00 urn:sha1:721e4cbb529d247c9c1ebef68275e70a3086ae0b Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-09-04T21:03:25+00:00 Matt Weber matthew.weber@rockwellcollins.com 2018-09-04T19:13:47+00:00 urn:sha1:13c6754f3c1d2a14516f641490e9dd6f4c183d7c Resolves: http://autobuild.buildroot.net/results/a7f2bf387458c2f0db6a4b555c51004f321f9320 Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-08-21T09:47:50+00:00 Thomas Petazzoni thomas.petazzoni@bootlin.com 2018-08-14T21:37:55+00:00 urn:sha1:5a3f78c9191595f7ea9fab49360dfc18a743d28b Until now, libaio contained some architecture specific code to do the syscalls. In fact, it contained a generic variant of the code called syscall-generic.h, but it was showing a warning when it was used, as if it was "not safe". Consequently, in Buildroot, we had chosen to support libaio only on a the subset of architectures that were explicitly handled by libaio. However, between 0.3.110 and 0.3.111, libaio upstream entirely dropped the architecture-specific code: https://pagure.io/libaio/c/97fd3fc0195500e616e34047cba4846164c411d9?branch=master Consequently, in this patch, we: - Bump libaio to 0.3.111. - Switch to the new upstream at https://pagure.io/libaio/. - Drop the 0001-arches.patch patch, which was adding support for MIPS, since we no longer need architecture-specific code. - Update the remaining patches, and Git-format one of them which wasn't Git-formatted. - Drop the BR2_PACKAGE_LIBAIO_ARCH_SUPPORTS option and all its uses. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2018-05-31T17:29:24+00:00 Peter Korsgaard peter@korsgaard.com 2018-05-30T22:17:13+00:00 urn:sha1:002348de68617a05b187c995675e5c3b7f829ecc The 4.10.1 version brings a large number of fixes: https://www.xenproject.org/downloads/xen-archives/xen-project-410-series/xen-4101.html Including a number of security fixes: XSA-252: DoS via non-preemptable L3/L4 pagetable freeing (CVE-2018-7540) XSA-253: x86: memory leak with MSR emulation (CVE-2018-5244) XSA-254: Information leak via side effects of speculative execution (CVE-2017-5753 CVE-2017-5715 CVE-2017-5754) XSA-255: grant table v2 -> v1 transition may crash Xen (CVE-2018-7541) XSA-256: x86 PVH guest without LAPIC may DoS the host (CVE-2018-7542) XSA-258: Information leak via crafted user-supplied CDROM (CVE-2018-10472) XSA-259: x86: PV guest may crash Xen with XPTI (CVE-2018-10471) Also add a hash for the license file while we are at it. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2018-05-13T19:39:01+00:00 Yann E. MORIN yann.morin.1998@free.fr 2018-05-13T16:59:23+00:00 urn:sha1:366e42c2cf60ecf9640ad7a57dcbe5d9d287dc02 The Xen configure scripts looks at the build host to decide where to install the Sys-V startup scripts, and that location differs between various distros. Force the location. Fixes: http://autobuild.buildroot.org/results/869/869829ab086e824d164c5c5ec7f087ed83993be6/ http://autobuild.buildroot.org/results/336/3360e5a9e3d007b4ed77345b5fe93b2dacb6ad49/ http://autobuild.buildroot.org/results/29e/29e308ce3cc9c83497ba1c1f98fcda3f48fd03c4/ Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Matt Weber <matthew.weber@rockwellcollins.com> Cc: Alistair Francis <alistair@alistair23.me> Reviewed-by: Alistair Francis <alistair@alistair23.me> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> 2018-04-09T09:22:21+00:00 Alistair Francis alistair23@gmail.com 2018-04-08T18:25:15+00:00 urn:sha1:6d1060d2610cc07f9f2cac61f9ec2276afc102d5 Fix the QEMU memfd compile error: tools/qemu-xen/util/memfd.c:40:12: error: static declaration of 'memfd_create' follows non-static declaration static int memfd_create(const char *name, unsigned int flags) ^~~~~~~~~~~~ that has been introduced since the Glibc 2.27 upgrade. This just involves porting the upstream QEMU patch to the Xen QEMU tree. This fixes: http://autobuild.buildroot.net/results/ec7cda00e07b0c98a9a366244b67611e042e0d4b/ Signed-off-by: Alistair Francis <alistair@alistair23.me> Tested-by: Matt Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>