summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* linux-firmware: add hashes for license filesCarlos Santos2018-01-291-0/+24
| | | | | | | Locally calculated, to fix legal-info generation. Signed-off-by: Carlos Santos <casantos@datacom.ind.br> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* configs/imx6-sabresd: Bump to kernel 4.15Fabio Estevam2018-01-281-3/+3
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux: bump default to version 4.15Fabio Estevam2018-01-281-2/+2
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump to 4.15 kernel versionFabio Estevam2018-01-281-1/+10
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* toolchain: add 4.15.x choice for headersFabio Estevam2018-01-282-0/+9
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* nftables: bump to version 0.8.1Baruch Siach2018-01-282-3/+7
| | | | | | | Add SHA256 and license hashes. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libnftnl: bump to version 1.0.9Baruch Siach2018-01-284-134/+129
| | | | | | | | | | | | Add SHA256 hash, and a license hash. Drop mxml dependency since XML support has been removed upstream. Refresh the patch. Cc: Yegor Yefremov <yegorslists@googlemail.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* wireshark: security bump to version 2.2.12Peter Korsgaard2018-01-282-3/+5
| | | | | | | | | | | | | | | | | | | | | | | Fixes the following security issues: CVE-2017-17997: MRDISC dissector crash https://www.wireshark.org/security/wnpa-sec-2018-02.html CVE-2018-5334: IxVeriWave file parser crash https://www.wireshark.org/security/wnpa-sec-2018-03.html CVE-2018-5335: WCP dissector crash https://www.wireshark.org/security/wnpa-sec-2018-04.html CVE-2018-5336: Multiple dissectors could crash https://www.wireshark.org/security/wnpa-sec-2018-01.html For more information, see the release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html While we are at it, also add as hash for license file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/systemd: Set fallback hostnameChris Lesiak2018-01-281-0/+5
| | | | | | | | | | When BR2_TARGET_GENERIC_HOSTNAME is set, use the config option --with-fallback-hostname to specify the fallback hostname to use if none is configured in /etc/hostname. This is useful in a pristine installation with an empty /etc. Signed-off-by: Chris Lesiak <chris.lesiak@licor.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* Makefile: Store OS release in /usr/lib/os-releaseChris Lesiak2018-01-281-1/+2
| | | | | | | | | | | | | | It is recommended that vendor trees store OS release information in /usr/lib/os-release and that /etc/os-release should be a relative symlink to /usr/lib/os-release. For more details, see: http://0pointer.de/public/systemd-man/os-release.html [Peter: don't hide command, simplify ln invocation] Signed-off-by: Chris Lesiak <chris.lesiak@licor.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/transmission: security bump version to 2.93Bernd Kuhls2018-01-282-2/+3
| | | | | | | | | | Fixes CVE-2018-5702: https://github.com/transmission/transmission/pull/468 Added license hash. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/gcc: bump 7.x series to 7.3.0Romain Naour2018-01-2810-85/+3
| | | | | | | | | | | Remove upstream patches: 0870-xtensa-fix-PR-target-82181.patch 0893-ARC-Configure-script-to-allow-non-uclibc-based-tripl.patch See: https://www.mail-archive.com/gcc@gcc.gnu.org/msg84336.html Signed-off-by: Romain Naour <romain.naour@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/pure-ftpd: Add uploadscript optionSam Voss2018-01-282-0/+10
| | | | | | | | | Enable option to compile with '--with-uploadscript' to allow running script after successful uploads. Signed-off-by: Sam Voss <sam.voss@rockwellcollins.com> Acked-by: Bryce Ferguson <bryce.ferguson@rockwellcollins.com Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* security hardening: add RELFO, FORTIFY optionsMatt Weber2018-01-282-15/+97
| | | | | | | | | | | | | | | | | This enables a user to build a complete system using these options. It is important to note that not all packages will build correctly to start with. Modeled after OpenWRT approach https://github.com/openwrt/openwrt/blob/master/config/Config-build.in#L176 A good testing tool to check a target's elf files for compliance to an array of hardening techniques can be found here: https://github.com/slimm609/checksec.sh [Peter: reword fortify help texts, glibc comment] Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* stack protector: moved option out of adv menuMatt Weber2018-01-281-55/+57
| | | | | Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/git: bump version to 2.16.1Bernd Kuhls2018-01-282-2/+2
| | | | | Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* imx-m4fwloader: new packageGary Bisson2018-01-284-0/+34
| | | | | | | | | | | | | | | This package provides a tool to load a firmware to the Cortex-M4 core available in some i.MX processors such as i.MX6SX or i.MX7. This package was tested on a i.MX7D Nitrogen7 platform: # imx-m4fwloader hello_world.bin 0x007F8000 Upstream repository: https://github.com/codeauroraforum/imx-m4fwloader [Peter: add license hash, install in /usr/sbin, tweak help text] Signed-off-by: Gary Bisson <gary.bisson@boundarydevices.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/tinc: upgrade to 1.0.33, install upstream's systemd filesZoltan Gyarmati2018-01-272-2/+9
| | | | | Signed-off-by: Zoltan Gyarmati <mr.zoltan.gyarmati@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/freeswitch: bump version to 1.6.20Bernd Kuhls2018-01-272-7/+18
| | | | | | | Added license hashes. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/clamav: security bump to version 0.99.3Bernd Kuhls2018-01-272-2/+14
| | | | | | | | | | | | | Fixes CVE-2017-12374, CVE-2017-12375, CVE-2017-12376, CVE-2017-12377, CVE-2017-12378, CVE-2017-12379, CVE-2017-12380. For details see upstream announcement: http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html Added license hashes. Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* nilfs-utils: fix build with static toolchainsKurt Van Dijck2018-01-272-1/+142
| | | | | | | | | | | | | This commit adds a patch to respect the dependency libmount->libblkid->libuuid properly in autoconf. This becomes necessary for static builds. Fixes: http://autobuild.buildroot.net/results/acaac513eaaa39d4000268428407a9fa6989ef03 http://autobuild.buildroot.net/results/41af95b9ed7bbbe319565e1c20d1f6e2665d445f [Peter: add host-pkgconf to dependencies] Signed-off-by: Kurt Van Dijck <dev.kurt@vandijck-laurijssen.be> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/physfs: needs threads supportRomain Naour2018-01-271-2/+3
| | | | | | | | | | | | | | | When physfs is built for a Linux system the PHYSFS_PLATFORM_POSIX (which enable code that use pthread_*()) symbol must be defined, so threads support is required. The physfs build system used by the previous version didn't correctly set PHYSFS_PLATFORM_POSIX for system without pthread support. Add pthread dependency. Fixes: http://autobuild.buildroot.org/results/75d/75d68ff9da42d61f47d80b463445c12bc51ed1a4 Signed-off-by: Romain Naour <romain.naour@smile.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* ltp-testsuite: disable numa testsBaruch Siach2018-01-271-1/+2
| | | | | | | | | | | | | | | | The LTP_CHECK_SYSCALL_NUMA autoconf macro uses AC_RUN_IFELSE when it detects the numaif.h header. This is incompatible with cross compilation. Fixes: http://autobuild.buildroot.net/results/21a/21a6eeddbf5ccffc34c38527d0807305a5eb3917/ http://autobuild.buildroot.net/results/fc0/fc01921e8e8e1ea100461b29137c4219e6686c58/ http://autobuild.buildroot.net/results/962/96285d154abd65838ff5c66e96db309d9ac26c80/ Cc: Petr Vorel <petr.vorel@gmail.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Acked-by: Petr Vorel <petr.vorel@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* ltp-testsuite: drop redundant arch dependency entriesBaruch Siach2018-01-271-5/+0
| | | | | | | | | | | BR2_TOOLCHAIN_HAS_SYNC_4 is enabled for all these architectures except arc. There is no need to list them explicitly. Cc: Romain Naour <romain.naour@gmail.com> Cc: Petr Vorel <petr.vorel@gmail.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Acked-by: Petr Vorel <petr.vorel@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* hwdata: bump to version 0.308Carlos Santos2018-01-273-13/+53
| | | | | | | | | | | | | | | | | | | | The hwdata collection is hosted at GitHub now and provides additional databases, besides pci.ids and usb.ids: - Individual Address Block (IAB) and Organizationally Unique Identifier (OUI) databases, from IEEE Registration Authority - PNP ID database (from Microsoft) Install only pci.ids and usb.ids by default, to keep compatibility with previous versions. In the future we can make other packages (pciutils, lshw) use the common files instead of installing their own copies, thus saving some storage space. [Peter: drop BR2_PACKAGE_HWDATA_ANY and build time error, rework install step] Signed-off-by: Carlos Santos <casantos@datacom.ind.br> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* swupdate: add upstream patch to fix build errorJörg Krause2018-01-271-0/+107
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | When building SWUpdate with the following defconfig: ``` CONFIG_DOWNLOAD=y ``` .. the build process breaks with: ``` corelib/channel_curl.c:27:10: fatal error: json-c/json.h: No such file or directory #include <json-c/json.h> ``` Looking at the SWUpdate Kconfig based build system shows that `CONFIG_DOWNLOAD` depends on `HAVE_LIBCURL`, which selects CURL, which eventually enables the (unnecessary) build of channel_curl.o. The upstream fixes the condition for building channel_curl.o by adding a new hidden config option `CHANNEL_CURL`, which is only selected by the dependent options. Backported from: https://github.com/sbabic/swupdate/commit/37a6666a532e9cbc42b56301f27919ae7c00d2eb Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/wf111: bump to version 5.2.2-r3Julien Corjon2018-01-271-4/+4
| | | | | Signed-off-by: Julien Corjon <corjon.j@ecagroup.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* ccache: bump to version 3.3.5Mark Hirota2018-01-272-1/+2
| | | | | | | | | (Likely) fixes #10536 https://bugs.buildroot.org/show_bug.cgi?id=10536 Signed-off-by: Mark Hirota <markhirota@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* scanpypi: ignore empty elements in package requirementsYegor Yefremov2018-01-261-1/+2
| | | | | | | | | | Depending on how setup.py reads requirements files empty elements can occur. This patch takes care, that such elements will be ignored and don't crash the scanpypi script. Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com> Tested-by: Matt Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* netsniff-ng: bump to version 0.6.4Tobias Klauser2018-01-266-182/+2
| | | | | | | | | Drop patches merged upstream. Cc: Joris Lijssens <joris.lijssens@gmail.com> Cc: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Tobias Klauser <tklauser@distanz.ch> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* netcat-openbsd: bump to version 1.187-1Baruch Siach2018-01-262-2/+2
| | | | | | Cc: Maxime Hadjinlian <maxime.hadjinlian@gmail.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libbsd: bump to version 0.8.7Baruch Siach2018-01-262-4/+5
| | | | | | | | | | Change download site; the latest version is not on the official site. Add license hash. Cc: Yann E. MORIN <yann.morin.1998@free.fr> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* zbar: enable static buildBaruch Siach2018-01-261-3/+2
| | | | | | | | | libv4l supports static build since commit f837251785e9 (package/libv4l: allow build of v4l2 utilities on noMMU platforms). Cc: Volkov Viacheslav <sv99@inbox.ru> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libv4l: bump to version 1.14.1Baruch Siach2018-01-2611-837/+3
| | | | | | | Drop upstream patches. autoreconf is no longer needed. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 4.{4, 9, 14}.x seriesFabio Estevam2018-01-261-3/+3
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux: bump default to version 4.14.15Fabio Estevam2018-01-261-1/+1
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libcurl: security bump to version 7.58.0Baruch Siach2018-01-262-4/+4
| | | | | | | | | | | | | | | | | | Fixes CVE-2018-1000007: libcurl might leak authentication data to third parties. https://curl.haxx.se/docs/adv_2018-b3bf.html Fixes CVE-2018-1000005: libcurl contains an out bounds read in code handling HTTP/2 trailers. https://curl.haxx.se/docs/adv_2018-824a.html Update license hash due to copyright year change. [Peter: also add CVE-2018-1000005 reference] Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* util-linux: disable useless programs in the host packageCarlos Santos2018-01-261-2/+31
| | | | | | | | | | | | | Disable all programs that depend on ncurses, as well as utilities that are useless on the host: agetty, chfn-chsh, chmem, login, lslogins, mesg, more, newgrp, nologin, nsenter, pg, rfkill, schedutils, setpriv, setterm, su, sulogin, tunelp, ul, unshare, uuidd, vipw, wall, wdctl, write, zramctl. Also add dependency on host-zlib if host cramfs utils are to be built. Signed-off-by: Carlos Santos <casantos@datacom.ind.br> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* gnutls: bump to version 3.5.17Peter Korsgaard2018-01-262-3/+3
| | | | Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* webkitgtk: security bump to version 2.18.6Adrian Perez de Castro2018-01-262-5/+5
| | | | | | | | | | | | | | | | This is a maintenance release of the current stable WebKitGTK+ version, which contains security fixes for CVE-2018-4088, CVE-2017-13885, CVE-2017-7165, CVE-2017-13884, CVE-2017-7160, CVE-2017-7153, CVE-2017-7153, CVE-2017-7161, and CVE-2018-4096. Additionally, it solves a GStreamer deadlock when stopping video playback, and contains fixes and improvements for the WebDriver implementation. Release notes can be found in the announcement: https://webkitgtk.org/2018/01/24/webkitgtk2.18.6-released.html Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* webkitgtk: Add missing libtasn1 dependencyAdrian Perez de Castro2018-01-262-1/+2
| | | | | | | | Nowadays libtasn1 is always required and if not present the CMake configuration step would fail. Signed-off-by: Adrian Perez de Castro <aperez@igalia.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* lighttpd: add hash for the license filePeter Korsgaard2018-01-251-0/+2
| | | | Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package: lighttpd: bump to version 1.4.48Petr Kulhavy2018-01-252-2/+2
| | | | | Signed-off-by: Petr Kulhavy <brain@jikos.cz> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* fis: fix typo in build commandGary Bisson2018-01-251-1/+1
| | | | | Signed-off-by: Gary Bisson <gary.bisson@boundarydevices.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* dos2unix: bump to version 7.4.0Baruch Siach2018-01-232-2/+4
| | | | | | | | | | Add license hash. Add reference to upstream tarball signature. Cc: David Bachelart <david.bachelart@bbright.com> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* linux-headers: bump 4.1.x seriesFabio Estevam2018-01-231-1/+1
| | | | | Signed-off-by: Fabio Estevam <festevam@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* lua-resty-http: bump to version 0.12Francois Perrad2018-01-232-2/+2
| | | | | Signed-off-by: Francois Perrad <francois.perrad@gadz.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* luaossl: bumpp to version 20171028Francois Perrad2018-01-232-2/+2
| | | | | Signed-off-by: Francois Perrad <francois.perrad@gadz.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* ljlinenoise: bump to version 0.1.3Francois Perrad2018-01-232-2/+2
| | | | | Signed-off-by: Francois Perrad <francois.perrad@gadz.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* lua-testmore: bump to version 0.3.3Francois Perrad2018-01-232-2/+2
| | | | | Signed-off-by: Francois Perrad <francois.perrad@gadz.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
OpenPOWER on IntegriCloud