summaryrefslogtreecommitdiffstats
path: root/package/libzip
Commit message (Collapse)AuthorAgeFilesLines
* libzip: add optional gnutls supportFabrice Fontaine2018-07-081-0/+7
| | | | | | | gnutls support has been added since version 1.5.0 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
* libzip: add optional openssl supportFabrice Fontaine2018-07-081-0/+7
| | | | | | | openssl support has been added since version 1.5.0 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
* libzip: bump to version 1.5.1Fabrice Fontaine2018-07-083-43/+3
| | | | | | | | | | | - Remove patch (already in version) - Update hash of license file: AES section has been removed: https://github.com/nih-at/libzip/commit/303fde909ffb1725f9926bed7be33b3abc87a107 The AES section was BSD-3-Clause as well, so nothing changes in LIBZIP_LICENSE. Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be>
* libzip: update legal hash for 1.4.0Matt Weber2018-01-061-1/+1
| | | | | | | | | | The copyright was updated in the LICENSES file Fixes (one of many): http://autobuild.buildroot.net/results/a64/a64ddf630aa44c7b0353f5a6818beffd20712615/ Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libzip: bump to version 1.4.0Baruch Siach2018-01-053-5/+44
| | | | | | | | | | Upstream switched to cmake. Add upstream patch that removes run of target binary on the host. Cc: Bartosz Golaszewski <brgl@bgdev.pl> Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libzip: security bump to version 1.3.0Peter Korsgaard2017-09-082-2/+10
| | | | | | | | | | | | | | | | | | | | | | | Fixes the following security issues: CVE-2017-12858: Double free vulnerability in the _zip_dirent_read function in zip_dirent.c in libzip allows attackers to have unspecified impact via unknown vectors. CVE-2017-14107: The _zip_read_eocd64 function in zip_open.c in libzip before 1.3.0 mishandles EOCD records, which allows remote attackers to cause a denial of service (memory allocation failure in _zip_cdir_grow in zip_dirent.c) via a crafted ZIP archive. For more details, see https://blogs.gentoo.org/ago/2017/09/01/libzip-use-after-free-in-_zip_buffer_free-zip_buffer-c/ https://blogs.gentoo.org/ago/2017/09/01/libzip-memory-allocation-failure-in-_zip_cdir_grow-zip_dirent-c/ libzip-1.3.0 also adds optional bzip2 support, so handle that. While we're at it, add a hash for the license file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/lib*: fix wrapping of Config.in help textAdam Duskett2017-07-311-2/+3
| | | | | | | | | | | | | | The check-package script when ran gives warnings on text wrapping on all of these Config files. This patch cleans up all warnings related to the text wrapping for the Config files starting with lib in the package directory. The appropriate indentation is: <tab><2 spaces><62 chars> See http://nightly.buildroot.org/#writing-rules-config-in for more information. Signed-off-by: Adam Duskett <aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* libzip: depend on !BR2_STATIC_LIBSBartosz Golaszewski2017-07-051-0/+4
| | | | | | | | | | | | | Since version 1.2.0 libzip requires dynamic library capabilities. Add it to Config.in and propagate this dependency to packages selecting libzip. Fixes: http://autobuild.buildroot.net/results/c50ffa5bf565e75333192edc89e2d39044d07f26/ Signed-off-by: Bartosz Golaszewski <brgl@bgdev.pl> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* libzip: bump version to 1.2.0Bartosz Golaszewski2017-07-022-2/+2
| | | | | | | | | It's a major release, but the API seems to be mostly backwards-compatible. The only package depending on this library in buildroot is libsigrok and it builds fine. Signed-off-by: Bartosz Golaszewski <brgl@bgdev.pl> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* boot, package: use SPDX short identifier for BSD-3cRahul Bedarkar2017-04-011-1/+1
| | | | | | | | | | | We want to use SPDX identifier for license string as much as possible. SPDX short identifier for BSD-3c is BSD-3-Clause. This change is done using following command. find . -name "*.mk" | xargs sed -ri '/LICENSE( )?[\+:]?=/s/BSD-3c/BSD-3-Clause/g' Signed-off-by: Rahul Bedarkar <rahulbedarkar89@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* libzip: add hash fileGustavo Zacarias2015-07-281-0/+2
| | | | | Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
* Remove trailing slash from all package site URLsLuca Ceresoli2015-03-101-1/+1
| | | | | | | | | The recommended form is without the trailing slash. Buildroot will add a slash between FOO_SITE and FOO_SOURCE as appropriate. Reported-by: Arnout Vandecappelle <arnout@mind.be> Signed-off-by: Luca Ceresoli <luca@lucaceresoli.net> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* libzip: new packageBartosz Golaszewski2015-02-012-0/+23
[Peter: license is BSD-3c] Signed-off-by: Bartosz Golaszewski <bgolaszewski@baylibre.com> Acked-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
OpenPOWER on IntegriCloud