Commit Graph

70291 Commits

Author SHA1 Message Date
Peter Korsgaard
0c6f3d7f2e Merge branch 'next' 2023-12-04 21:11:12 +01:00
Peter Korsgaard
8d2526701b Kickoff 2024.02 cycle
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 15:25:25 +01:00
Peter Korsgaard
0c68824f25 docs/website: Update for 2023.02.8
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 15:05:34 +01:00
Peter Korsgaard
49d2965482 Update for 2023.02.8
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit e6252e5b6d)
[Peter: drop Makefile/Vagrantfile changes]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 15:03:23 +01:00
Peter Korsgaard
46e2e2549b docs/website: Update for 2023.08.4
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 14:41:23 +01:00
Peter Korsgaard
955fd5a155 Update for 2023.08.4
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 5abe7bd726)
[Peter: drop Makefile/Vagrantfile changes]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 14:38:40 +01:00
Peter Korsgaard
1ed291ae97 docs/website/news.html: add 2023.11 announcement link
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 09:39:10 +01:00
Peter Korsgaard
954aeb7c72 Update for 2023.11
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 09:08:32 +01:00
Fabrice Fontaine
6517a7f4bc package/lttng-modules: bump to version 2.13.10
This bump will fix the following build failures with kernel >= 6.3.0
thanks to
f3559e5b06
and
939200ef16:

In file included from /home/buildroot/autobuild/instance-1/output-1/build/lttng-modules-2.13.7/./src/lttng-ring-buffer-client.h:16,
                 from /home/buildroot/autobuild/instance-1/output-1/build/lttng-modules-2.13.7/./src/lttng-ring-buffer-client-discard.c:16:
/home/buildroot/autobuild/instance-1/output-1/build/lttng-modules-2.13.7/./src/../include/lttng/events-internal.h:292:9: error: unknown type name ‘uuid_le’
  292 |         uuid_le uuid;                   /* Trace session unique ID (copy) */
      |         ^~~~~~~

[...]

/home/thomas/autobuild/instance-3/output-1/build/lttng-modules-2.13.7/./src/lib/ringbuffer/ring_buffer_mmap.c: In function ‘lib_ring_buffer_mmap_buf’:
/home/thomas/autobuild/instance-3/output-1/build/lttng-modules-2.13.7/./src/lib/ringbuffer/ring_buffer_mmap.c:116:23: error: assignment of read-only member ‘vm_flags’
  116 |         vma->vm_flags |= VM_DONTEXPAND;
      |                       ^~

https://github.com/lttng/lttng-modules/blob/v2.13.10/ChangeLog

Fixes:
 - http://autobuild.buildroot.org/results/7b8f57262a02cd9aaa953a9d8666646bae1cc655

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 08:30:34 +01:00
Fabrice Fontaine
df812ace32 package/wireshark: security bump to version 4.0.11
Fix CVE-2023-6174: SSH dissector crash in Wireshark 4.0.0 to 4.0.10
allows denial of service via packet injection or crafted capture file

https://www.wireshark.org/security/wnpa-sec-2023-28
https://www.wireshark.org/security/wnpa-sec-2023-29
https://www.wireshark.org/docs/relnotes/wireshark-4.0.11.html

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-04 08:29:58 +01:00
Romain Naour
3503d48897 support/misc/gitlab-ci.yml.in: print error log if the runtime test fail
When an error occurs, the gitlab-ci job log doesn't contain any useful
information than the name of the failing test:

  FAIL: test_run (tests.package.test_python_paho_mqtt.TestPythonPahoMQTT)

In order to encourage contributors to investigate issues reported by
gitlab-ci, we want to print the last lines of the log file (build or
runtime).

Unfortunately, gitlab-ci job log completely strips lines ending with
CRCRLF [1][2]. We have to take a look at the gitlab-ci raw log to see
the complete log [3].

To workaround this issue, remove crlf from qemu serial stdio log
while printing in the gitlab-ci job log (we don't want to change
the log file generated by support/testing/run-tests and saved as
artefacts).

[1] https://gitlab.com/gitlab-org/gitlab/-/issues/218771
[2] https://gitlab.com/kubu93/buildroot/-/jobs/5492937691
[3] https://gitlab.com/kubu93/buildroot/-/jobs/5492937691/raw

Cc: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Romain Naour <romain.naour@smile.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 20:20:53 +01:00
Julien Olivain
8e871ac18b package/rdma-core: bump to version v49.0
For change log, see:
https://github.com/linux-rdma/rdma-core/releases/tag/v49.0

Signed-off-by: Julien Olivain <ju.o@free.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 20:18:56 +01:00
Fabrice Fontaine
d20329ed76 package/mariadb: security bump to version 10.11.6
This bump will fix the following build failure raised since bump of fmt
to version 10.1.0 in commit 619b5585d9
thanks to
f4cec369a3:

-- Performing Test HAVE_SYSTEM_LIBFMT
-- Performing Test HAVE_SYSTEM_LIBFMT - Failed

[...]

-- Downloading...
   dst='/home/buildroot/autobuild/instance-3/output-1/build/mariadb-10.11.4/extra/libfmt/src/8.0.1.zip'
   timeout='none'
   inactivity timeout='none'
-- Using src='https://github.com/fmtlib/fmt/archive/refs/tags/8.0.1.zip'
CMake Error at libfmt-stamp/download-libfmt.cmake:170 (message):
  Each download failed!

    error: downloading 'https://github.com/fmtlib/fmt/archive/refs/tags/8.0.1.zip' failed
          status_code: 1
          status_string: "Unsupported protocol"
          log:
          --- LOG BEGIN ---
          Protocol "https" not supported or disabled in libcurl

This bump will also fix CVE-2023-22084

https://mariadb.com/kb/en/mariadb-10-11-5-release-notes/
https://mariadb.com/kb/en/mariadb-10-11-6-release-notes/

Fixes:
 - http://autobuild.buildroot.org/results/9cb577195aa939289102116df5a2eac03f0d5017

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 20:14:10 +01:00
Neal Frager
790d554474 configs/zynq_qmtech_defconfig: deprecate board
The zynq_qmtech_defconfig has not been maintained for 3 years, and is now
using a very out of date u-boot and Linux kernel.  Since there are 4 other
zynq7000 defconfigs available in buildroot and Julien no longer has a
functional board, drop the defconfig.

Signed-off-by: Neal Frager <neal.frager@amd.com>
Acked-by: Julien Olivain <ju.o@free.fr>
[Peter: reword commit message]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:28:33 +01:00
Neal Frager
eadde4d23c configs/versal_vck190_defconfig: bump to xilinx-v2023.2
This patch bumps the versal_vck190_defconfig to xilinx-v2023.2 which includes
the following updates:

- Linux v6.1.30 with additional bug fixes
- U-Boot v2023.01 with additional bug fixes
- ATF v2.8 with additional bug fixes
- PLM xilinx_v2023.2
- PSMFW xilinx_v2023.2

Signed-off-by: Neal Frager <neal.frager@amd.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:27:01 +01:00
Neal Frager
43a9d03a7b configs/zynqmp_kria_kv260_defconfig: bump to xilinx-v2023.2
This patch bumps the zynqmp_kria_kv260_defconfig to xilinx-v2023.2 which includes
the following updates:

- Linux v6.1.30 with additional bug fixes
- U-Boot v2023.01 with additional bug fixes
- ATF v2.8 with additional bug fixes
- PMUFW xilinx_v2023.2

Signed-off-by: Neal Frager <neal.frager@amd.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:26:06 +01:00
Neal Frager
2d194122d1 configs/zynqmp_zcu106_defconfig: bump to xilinx-v2023.2
This patch bumps the zynqmp_zcu106_defconfig to xilinx-v2023.2 which includes
the following updates:

- Linux v6.1.30 with additional bug fixes
- U-Boot v2023.01 with additional bug fixes
- ATF v2.8 with additional bug fixes
- PMUFW xilinx_v2023.2

Signed-off-by: Neal Frager <neal.frager@amd.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:25:49 +01:00
Neal Frager
075a65a4e1 configs/zynqmp_zcu102_defconfig: bump to xilinx-v2023.2
This patch bumps the zynqmp_zcu102_defconfig to xilinx-v2023.2 which includes
the following updates:

- Linux v6.1.30 with additional bug fixes
- U-Boot v2023.01 with additional bug fixes
- ATF v2.8 with additional bug fixes
- PMUFW xilinx_v2023.2

Signed-off-by: Neal Frager <neal.frager@amd.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:25:40 +01:00
Neal Frager
b7ff789e0e configs/zynqmp_kria_kr260_defconfig: new defconfig
This patch adds support for Xilinx Kria KR260 starter kit.

KR260 features can be found here:
https://www.xilinx.com/products/som/kria/kr260-robotics-starter-kit.html

While the Kria SOM is based on a ZynqMP SoC, there are some key
boot config differences from the other ZynqMP evaluation boards.

1. There are no boot switches on Kria SOMs. The boot mode is thus
hard configured for QSPI flash. A pre-programmed boot.bin comes
with every Starter Kit. U-Boot can then find the Linux kernel and
file system on the SD card.

Optional instructions for updating the boot.bin in the QSPI flash
can be found in the readme.txt file and the link below.

https://xilinx-wiki.atlassian.net/wiki/spaces/A/pages/1641152513/Kria+K26+SOM

2. Kria SOMs use UART1 for the console instead of UART0. For this
reason, Kria Starter Kits will use a separate extlinux.conf file
from other ZynqMP evaluation boards.

3. The KR260 has a USB to SD card bridge, so the Linux kernel
and file system are found on /dev/sda1 and /dev/sda2.

Signed-off-by: Neal Frager <neal.frager@amd.com>
[Peter: fix kr260.sh shellcheck warnings, similar to kv260.sh]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:22:55 +01:00
Fabrice Fontaine
029099025f package/libblockdev: drop unrecognized options
The following options were wrongly kept when bumping to version 3.0.3 in
commit 18420d9b6b:
 - dmraid (dropped since
   d174944a85)
 - bcache and kbd (dropped since
   c1ff1c87e3)
 - python2 (dropped since
   8fc33b8345)
 - vdo (dropped since
   e51faac2a9)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Reviewed-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:15:01 +01:00
Fabrice Fontaine
b47b2065b2 package/libmemcached: fix static build
Fix the following static build failure raised since bump to version
1.1.4 in commit 7205df8a4f:

CMake Error at /home/autobuild/autobuild/instance-13/output-1/build/libmemcached-1.1.4/src/bin/cmake_install.cmake:60 (file):
  file RPATH_CHANGE could not write new RPATH:

    $ORIGIN/../lib

  to the file:

    /home/autobuild/autobuild/instance-13/output-1/host/arc-buildroot-linux-uclibc/sysroot/usr/bin/memcapable

  No valid ELF RPATH or RUNPATH entry exists in the file;
Call Stack (most recent call first):
  /home/autobuild/autobuild/instance-13/output-1/build/libmemcached-1.1.4/src/cmake_install.cmake:52 (include)
  /home/autobuild/autobuild/instance-13/output-1/build/libmemcached-1.1.4/cmake_install.cmake:52 (include)

Fixes:
 - http://autobuild.buildroot.org/results/778ff517d465896f54a3cd5316a66c54f66fd4cb

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:11:29 +01:00
Francis Laniel
c8a5a97e67 package/tbb: bump to version 2021.11.0.
Signed-off-by: Francis Laniel <flaniel@linux.microsoft.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:07:31 +01:00
Jan Čermák
3021999577 package/linux-firmware: add RTL8851/RTL8852 firmware
Add firmware files for RTL8851 and RTL8852 cards used by the rtlbt driver.

Signed-off-by: Jan Čermák <sairon@sairon.cz>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 19:02:54 +01:00
Gaël PORTAY
a9d03feed6 board/raspberrypi/readme.txt: add pi0w hint
Signed-off-by: Gaël PORTAY <gael.portay@rtone.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 18:15:23 +01:00
Gaël PORTAY
f1de35e2a0 Revert "Fix rasberry Pi 64bit firmware overlay inclusion"
This reverts commit 51d6d6c580.

That change is no more relevant since the genimage.cfg files are
generated by the commit e37ee5acdc (board/raspberrypi/post-image.sh:
generate genimage config from template if not present), and since the
variant-specific files were dropped off by the commit fc5cdeed72
(board/raspberrypi: drop variant-specific genimage files).

This removes the very last alive piece of change of the commit
51d6d6c580 (Fix rasberry Pi 64bit firmware overlay inclusion); the
commit is fully reverted now.

Signed-off-by: Gaël PORTAY <gael.portay@rtone.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 18:12:33 +01:00
Gaël PORTAY
56fd785434 Revert "board/raspberrypi: handle dtb overlays for all variants"
This reverts commit 6021f3678b.

That change is no more relevant since the genimage.cfg files are
generated by the commit e37ee5acdc (board/raspberrypi/post-image.sh:
generate genimage config from template if not present), and since the
variant-specific files were dropped off by the commit fc5cdeed72
(board/raspberrypi: drop variant-specific genimage files).

This removes the very last alive piece of change of the commit
6021f3678b (board/raspberrypi: handle dtb overlays for all variants);
the commit is fully reverted now.

Signed-off-by: Gaël PORTAY <gael.portay@rtone.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 18:12:25 +01:00
Baruch Siach
ad21d833e0 package/socat: drop patch 2
As upstream developer mentioned in private communication, the code using
NETDB_INTERNAL is now disabled. Remove the patch.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 18:08:58 +01:00
Sergey Matyukevich
026c8f80ff configs/orangepi_zero_plus2: update BSP versions
Switch to the new Linux LTS release 6.6.3. Switch to the latest
U-Boot 2023.10 and ATF 2.9. Increase ext2 partition size to fit
new versions.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:58:29 +01:00
Sergey Matyukevich
8e9681c52e configs/orangepi_zero: bump BSP versions
Switch to the new Linux LTS release 6.6.3. Switch to the
latest U-Boot 2023.10.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:56:03 +01:00
Sergey Matyukevich
593c259cde configs/orangepi_one_defconfig: bump BSP versions
Switch to the new Linux LTS release 6.6.3. Switch to the
latest U-Boot 2023.10.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:55:42 +01:00
Sergey Matyukevich
9fb563b491 configs/orangepi_pc_plus: bump BSP versions
Switch to the new Linux LTS release 6.6.3. Switch to the
latest U-Boot 2023.10.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:55:26 +01:00
Sergey Matyukevich
748a217c25 configs/linksprite_pcduino_defconfig: bump BSP versions
Switch to the new Linux LTS release 6.6.3. Switch to the
latest U-Boot 2023.10.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:54:35 +01:00
Giulio Benetti
c9e5c1e80e package/libnss: bump version to 3.95
Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:48:15 +01:00
Fabrice Fontaine
a4e713558d package/leptonica: bump to version 1.83.1
https://github.com/DanBloomberg/leptonica/compare/1.82.0...1.83.1

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:45:42 +01:00
Giulio Benetti
a7898055d3 package/freescale-imx: append /imx6ulz to BR2_PACKAGE_FREESCALE_IMX_PLATFORM_IMX6UL
imx6ulz supports freescale-imx too so let's add it to the bool name for
completeness.

Signed-off-by: Giulio Benetti <giulio.benetti@benettiengineering.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:45:13 +01:00
Fabrice Fontaine
af2cd694e3 package/duma: bump to version 2.5.21
- Switch site to get latest release
- Drop all patches (already in version)
- Update hash of COPYING-LGPL, empty lines removed with
  cceb1b2d80
- Pass $(TARGET_CONFIGURE_OPTS) to install targets to avoid using wrong
  values since
  abdf4074c3

https://github.com/johnsonjh/duma/blob/VERSION_2_5_21/CHANGELOG

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:44:16 +01:00
Fabrice Fontaine
51cf6a8aa6 package/monit: fix openssl static build
--with-ssl-dir will exclusively search for dynamic library so use
--with-ssl-static to fix the following openssl static build failure
raised since bump to version 5.33.0 in commit
8cedb39764:

checking for static SSL support... disabled
checking for SSL support... enabled
checking for SSL include directory... /home/buildroot/autobuild/instance-2/output-1/host/mipsel-buildroot-linux-uclibc/sysroot/usr/include
checking for SSL library directory... /lib64

[...]

mipsel-buildroot-linux-uclibc-gcc: ERROR: unsafe header/library path used in cross-compilation: '-L/lib64'

Fixes:
 - http://autobuild.buildroot.org/results/4189decbafb5d28c11d89ddac792b4610abeaff1

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:43:44 +01:00
Fabrice Fontaine
7ceebff5b9 package/elfutils: drop -lfts
As spotted by Yann E. Morin in
https://patchwork.ozlabs.org/project/buildroot/patch/20231022154133.1619344-1-bernd@kuhls.net,
-lfts is not needed since bump to version 0.183 in commit
ef92e86e84 and
https://sourceware.org/git/?p=elfutils.git;a=commitdiff;h=da855fc9cd415c288bfcb9de1f3d5eb329de0557

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:40:27 +01:00
Peter Korsgaard
cdc9b8a3a7 toradx_apalis_imx6_defconfig: add download hashes for linux/uboot
The defconfig fetches Linux and U-Boot from a git repo using the
unauthenticated git:// protocol, so add download hashes for them to ensure
we get the right sources by adding a global patch dir and running
utils/add-custom-hashes.

The defconfig uses the Linux sources for the kernel headers, so make
linux-headers/linux-headers.hash a symlink to linux/linux.hash so the same
hash file is used.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:38:22 +01:00
Fabrice Fontaine
a3db1dd1b7 package/xenomai: fix build with gcc >= 12
Fix the following build failure with gcc >= 12:

task.c: In function 't_start':
task.c:398:16: error: 'ret' may be used uninitialized [-Werror=maybe-uninitialized]
  398 |         return ret;
      |                ^~~
task.c:364:13: note: 'ret' was declared here
  364 |         int ret;
      |             ^~~
task.c: In function 't_resume':
task.c:444:16: error: 'ret' may be used uninitialized [-Werror=maybe-uninitialized]
  444 |         return ret;
      |                ^~~
task.c:428:13: note: 'ret' was declared here
  428 |         int ret;
      |             ^~~

Fixes:
 - http://autobuild.buildroot.org/results/bc1b40de22e563b704ad7f20b6bf4d1f73a6ed8a

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:27:11 +01:00
Fabrice Fontaine
f6a7050d71 package/speechd: fix NLS build
Fix the following NLS build failure raised since the addition of the
package in commit 9f4f8c5f89:

/home/buildroot/autobuild/run/instance-2/output-1/host/lib/gcc/arm-buildroot-linux-musleabihf/12.3.0/../../../../arm-buildroot-linux-musleabihf/bin/ld: ../../src/common/.libs/libcommon.a(libcommon_la-i18n.o): undefined reference to symbol 'libintl_bindtextdomain'

Fixes:
 - http://autobuild.buildroot.org/results/8ab13cf474d732c95a1da65592d950b24b3d474b

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:26:37 +01:00
Fabrice Fontaine
5eb79ff3b9 package/libmemcached: fix build with gcc 4.8
Fix the following build failure with gcc 4.8 raised since bump to
version 1.1.4 in commit 7205df8a4f:

/home/buildroot/autobuild/run/instance-0/output-1/build/libmemcached-1.1.4/src/libmemcachedprotocol/ascii_handler.c: In function 'ascii_get_response_handler':
/home/buildroot/autobuild/run/instance-0/output-1/build/libmemcached-1.1.4/src/libmemcachedprotocol/ascii_handler.c:249:3: error: 'for' loop initial declarations are only allowed in C99 mode
   for (int x = 0; x < keylen; ++x) {
   ^

Fixes:
 - http://autobuild.buildroot.org/results/202aeec4dda822ac341d8882f84f968a303697c3

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:23:07 +01:00
Fabrice Fontaine
4cf5d91d8b package/libde265: security bump to version 1.0.14
Fix CVE-2023-43887: Libde265 v1.0.12 was discovered to contain multiple
buffer overflows via the num_tile_columns and num_tile_row parameters in
the function pic_parameter_set::dump.

Fix CVE-2023-47471: Buffer Overflow vulnerability in strukturag libde265
v1.10.12 allows a local attacker to cause a denial of service via the
slice_segment_header function in the slice.cc component.

https://github.com/strukturag/libde265/releases/tag/v1.0.14
https://github.com/strukturag/libde265/releases/tag/v1.0.13

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:21:50 +01:00
Sergey Matyukevich
35059ebc37 DEVELOPERS: remove Synopsys email address for S.Matyukevich
I am no longer work at Synopsys, so remove this email address.

Signed-off-by: Sergey Matyukevich <geomatsi@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:21:07 +01:00
Fabrice Fontaine
a73cbe68b2 package/libmemcached: link with -latomic when needed
Fix the following build failure raised since bump to version 1.1.4 in
commit 7205df8a4f:

/home/buildroot/autobuild/instance-2/output-1/host/opt/ext-toolchain/bin/../lib/gcc/sparc-buildroot-linux-uclibc/11.3.0/../../../../sparc-buildroot-linux-uclibc/bin/ld: CMakeFiles/aslap.dir/ms_conn.c.o: undefined reference to symbol '__atomic_fetch_add_4@@LIBATOMIC_1.0'

Fixes:
 - http://autobuild.buildroot.org/results/c8e4e1f9609d1339fe070afe440c63660892600e

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 17:20:24 +01:00
Fabrice Fontaine
b957a02143 package/linux-tools: fix selftests with kernel >= 6.5
Fix the following selftests build failure raised since kernel >= 6.5 and
9fc96c7c19:

make[1]: Entering directory '/home/autobuild/autobuild/instance-4/output-1/build/linux-6.6.3/tools/testing/selftests'

error: missing kernel header files.
Please run this and try again:

    cd ../../..
    make headers

make[1]: *** [Makefile:186: kernel_header_files] Error 1

Fixes:
 - http://autobuild.buildroot.org/results/7674abb454b46ca768e44b6838a0d8724c772dd6

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 15:51:13 +01:00
Fabrice Fontaine
499b4d6d22 package/putty: disable gssapi
PUTTY_GSSAPI is enabled by default resulting in the following build
failure since bump to version 0.78 in commit
5673ea3ce4:

 /home/fabrice/buildroot/output/build/putty-0.79/unix/gss.c:133:10: fatal error: gssapi/gssapi.h: No such file or directory
  133 | #include <gssapi/gssapi.h>
      |          ^~~~~~~~~~~~~~~~~

Fixes:
 - http://autobuild.buildroot.org/results/d6d06b5aa0df070c3880399e044fb3cd3a830aec

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 15:47:01 +01:00
Francois Perrad
bc7b0e1002 package/perl: security bump to version 5.36.3
fix CVE-2023-47038 - Write past buffer end via illegal user-defined Unicode property

note: 5.36.2 was a broken release
Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-03 15:38:29 +01:00
Fabrice Fontaine
38c4aa2826 package/libpjsip: security bump to version 2.14
Fix CVE-2023-38703: PJSIP is a free and open source multimedia
communication library written in C with high level API in C, C++, Java,
C#, and Python languages. SRTP is a higher level media transport which
is stacked upon a lower level media transport such as UDP and ICE.
Currently a higher level transport is not synchronized with its lower
level transport that may introduce use-after-free issue. This
vulnerability affects applications that have SRTP capability
(`PJMEDIA_HAS_SRTP` is set) and use underlying media transport other
than UDP. This vulnerability’s impact may range from unexpected
application termination to control flow hijack/memory corruption. The
patch is available as a commit in the master branch.

https://github.com/pjsip/pjproject/security/advisories/GHSA-f76w-fh7c-pc66
https://github.com/pjsip/pjproject/releases/tag/2.14

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-02 09:40:33 +01:00
Peter Korsgaard
e6e16a6d18 DEVELOPERS: add Flávio Tapajós for rsyslog
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2023-12-02 09:37:38 +01:00