Commit Graph

39076 Commits

Author SHA1 Message Date
Adrian Perez de Castro
fbf6a483e0 webkitgtk: security bimp to version 2.18.4
This is a maintenance release of the current stable WebKitGTK+ version,
which contains fixes for CVE-2017-13866, CVE-2017-13870, CVE-2017-7156, and
CVE-2017-13856.  Additionally, this release brings improvements in the
WebDriver spec-compliance, plugs several memory leaks in its GStreamer based
multimedia backend, and fixes a bug when handling cookie removal.

Release notes can be found in the announcement:

  https://webkitgtk.org/2017/12/19/webkitgtk2.18.4-released.html

More details about the security fixes are provided in the following
WebKitGTK+ Security Advisory report:

  https://webkitgtk.org/security/WSA-2017-0010.html

Last but not least, this new release includes the fix for honoring the
CMAKE_BUILD_TYPE value from CMake toolchain files and the corresponding
patch is removed.

Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-21 16:28:22 +01:00
Baruch Siach
5b85c6a038 pulseaudio: fix libsamplerate dependency
The (deprecated) libsamplerate support is not enabled unless
--enable-samplerate is passed to configure. Fix this.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 21:37:18 +01:00
Baruch Siach
8a560563f9 pulseaudio: normalize alsa-lib optional dependency
Put together alsa-lib dependency and configure option code. As a side
effect we now avoid alsa-lib dependency when the required support in
alsa is missing.

Use positive logic.

Explicitly enable alsa support when available.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 21:37:16 +01:00
Peter Korsgaard
388a4bda6b nasm: bump to version 2.13.02
And add a hash for the license file.

Release notes:
http://www.nasm.us/doc/nasmdocc.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 21:22:38 +01:00
Peter Korsgaard
eb2b3df626 qemu: security bump to version 2.10.2
Fixes the following security issues:

CVE-2017-13672: QEMU (aka Quick Emulator), when built with the VGA display
emulator support, allows local guest OS privileged users to cause a denial
of service (out-of-bounds read and QEMU process crash) via vectors involving
display update.

CVE-2017-15118: Stack buffer overflow in NBD server triggered via long
export name

CVE-2017-15119: DoS via large option request

CVE-2017-15268: Qemu through 2.10.0 allows remote attackers to cause a
memory leak by triggering slow data-channel read operations, related to
io/channel-websock.c.

For more details, see the release announcement:
https://lists.nongnu.org/archive/html/qemu-devel/2017-12/msg03618.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 21:22:33 +01:00
Marcus Folkesson
35f8333eb4 libostree: bump to version 2017.15
Signed-off-by: Marcus Folkesson <marcus.folkesson@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 21:22:23 +01:00
Jagan Teki
4e3ac4749a board: Add Orangepi PC2 support
Add initial support for Orangepi PC2
board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:57:39 +01:00
Jagan Teki
dc21f8957d board: Add Orangepi Zero Plus2 support
Add initial support for Orangepi Zero Plus2
board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: zhaoyifan <zhao_steven@263.net>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:56:19 +01:00
Jagan Teki
f093b478e1 board: Add Orangepi Prime support
Add initial support for Orangepi Prime
board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: zhaoyifan <zhao_steven@263.net>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:55:22 +01:00
Jagan Teki
10e76af159 board: Add Orangepi Win/Win Plus support
Add initial support for Orangepi Win/Win Plus
board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: zhaoyifan <zhao_steven@263.net>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:54:49 +01:00
Jagan Teki
d644b145ef board: Add Olimex A64-OLinuXino support
Add initial support for Olimex A64-OLinuXino
board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: Tsvetan Usunov <usunov@olimex.com>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:52:28 +01:00
Jagan Teki
c7160a76c6 board: Add FriendlyARM Nanopi NEO2 support
Add initial support for FriendlyARM Nanopi NEO2 board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: Yuefei <yftan@friendlyarm.com>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:51:39 +01:00
Jagan Teki
43b1dd944d board: Add FriendlyARM Nanopi A64 support
Add initial support for FriendlyARM Nanopi A64
board with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: Yuefei <yftan@friendlyarm.com>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:46:23 +01:00
Jagan Teki
83d7a37be1 board: Add SoPine support
Add initial support for SoPine board
with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: TL Lim <tllim@pine64.org>
Cc: Andre Przywara <andre.przywara@arm.com>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:43:17 +01:00
Jagan Teki
5baefdcf85 board: Add Pine64 support
Add initial support for Pine64 board
with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: TL Lim <tllim@pine64.org>
Cc: Andre Przywara <andre.przywara@arm.com>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 18:39:24 +01:00
Jagan Teki
5b9ac80fef board: Add Bananapi M64 support
Add initial support for bananapi M64 board
with below features:
- U-Boot 2017.11
- Linux 4.14
- Default packages from buildroot

Cc: Jason <manager@sinovoip.com.cn>
Cc: hailymei@banana-pi.com <hailymei@banana-pi.com>
Signed-off-by: Jagan Teki <jagan@amarulasolutions.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 17:48:07 +01:00
Baruch Siach
5099c90939 libsoxr: remove unicode dash from help text
This would make the unicode challenged menuconfig show something
sensible.

Split the sentence for the text to make sense.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Reviewed-by: "Yann E. MORIN" <yann.morin.1998@free.fr>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 17:46:36 +01:00
Fabio Estevam
8447f04c1c linux-headers: bump 4.{4, 9, 14}.x series
Signed-off-by: Fabio Estevam <fabio.estevam@nxp.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 17:45:47 +01:00
Fabio Estevam
c337e17737 linux: bump default to version 4.14.8
Signed-off-by: Fabio Estevam <fabio.estevam@nxp.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-20 17:45:43 +01:00
Fabrice Fontaine
f21cbabb2f webp: bump to version 0.6.1
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-19 21:51:00 +01:00
Peter Korsgaard
7f33f1d848 rsync: add upstream security fix for CVE-2017-16548
The receive_xattr function in xattrs.c in rsync 3.1.2 and 3.1.3-development
does not check for a trailing '\0' character in an xattr name, which allows
remote attackers to cause a denial of service (heap-based buffer over-read
and application crash) or possibly have unspecified other impact by sending
crafted data to the daemon.

For more details, see:
https://bugzilla.samba.org/show_bug.cgi?id=13112

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-19 21:50:52 +01:00
Sam Voss
d4e3441a1c package/linux-firmware: Add Atheros 10k (QCA998X)
Add drivers for Atheros 10k (QCA998X) chipset.

Both firmware versions are imported, and unused should be pruned as
required.

[Peter: use upper case 'K' in symbol name]
Signed-off-by: Sam Voss <sam.voss@rockwellcollins.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-19 21:49:29 +01:00
Baruch Siach
64dab3c672 pulseaudio: remove the ConsoleKit module
The ConsoleKit module is loaded by default from the default.pa
configuration file, but its initialization fails because Buildroot has
no ConsoleKit package yet. This breaks per-user pulseaudio daemon.
The default.pa configuration load module-console-kit only when it
exists. Remove module-console-kit to fix pulseaudio per-user startup.

Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-19 21:46:10 +01:00
Damien Riegel
18c9cda6e4 lldpd: remove check on CXX compiler
lldpd currently depends on a C++ compiler to configure properly, but
the package doesn't select that option, so builds fail if
BR2_TOOLCHAIN_BUILDROOT_CXX is not selected with following errors:

  checking how to run the C++ preprocessor... /lib/cpp
  configure: error: in `/home/dkc/src/buildroot/build-zii/build/lldpd-0.9.4':
  configure: error: C++ preprocessor "/lib/cpp" fails sanity check

This package actually builds fine without C++, so drop this check in
configure.ac. Attached patch has already been accepted upstream [1].

[1] https://github.com/vincentbernat/lldpd/pull/261

[Peter: adjust autoreconf comment]
Signed-off-by: Damien Riegel <damien.riegel@savoirfairelinux.com>
Reviewed-by: Julien Floret <julien.floret@6wind.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-19 11:01:30 +01:00
Fabrice Fontaine
95d19955dd vlc: set back upnp support
Commit cb7aa25df8 has disabled upnp support
as --disable-upnp and --enable-upnp are both set if libupnp or libupnp18
is enabled

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-19 09:53:34 +01:00
Thomas Petazzoni
a957d9a90a boot/arm-trusted-firmware: build fiptool separately with dependency on host-openssl
ATF >= 1.3 builds a host program called fiptool which uses
OpenSSL, so we need to build host-openssl. We could have made it an
optional dependency like U-Boot does, but since most ATF versions are
going to be >= 1.3 in the near future, we simply make host-openssl a
mandatory dependency.

However, the ATF build system is not very good, and you can't easily
pass flags that will affect the build of host programs. Therefore, we
take the approach of building fiptool separately before triggering the
real build process.

It would obviously be better to fix ATF itself, but as usual with
those bootloader packages, we fetch different versions depending on
the platform/configuration, making it difficult to use patches.

Fixes:

  https://gitlab.com/buildroot.org/buildroot/-/jobs/44868961

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-18 23:09:39 +01:00
Martin Bark
380c3d5e40 package/nodejs: security bump to version 8.9.3
See https://nodejs.org/en/blog/release/v8.9.3/

[Peter: mention that this fixes security issues]
Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-12-18 21:39:46 +01:00
Mario Lang
e9de1bde60 package/brltty: disable features and add optional dependencies
* --without-midi-package should fix a number of autobuild failures.
* Disable a number of speech drivers to avoid build failures
  if they are installed on the host.
* Optional dependency on espeak and flite fixes builds where
  espeak or flite are installed on the host.

Fixes:

  http://autobuild.buildroot.net/results/0c4f557c2ad276b1ed065119532af37c0af5f014
  http://autobuild.buildroot.net/results/ea82b7c7732821368746ddddb5d529e97c9b6c16

Signed-off-by: Mario Lang <mlang@blind.guru>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 15:55:21 +01:00
Alexey Roslyakov
5d2c69dad5 utils/scanpypi: increase error message verbosity
When package installation fails it is good to know what happened.

Signed-off-by: Alexey Roslyakov <alexey.roslyakov@gmail.com>
Reviewed-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 15:18:40 +01:00
Mario Lang
cfbcc7c2fd DEVELOPERS: merge duplicated entry for Mario Lang
Signed-off-by: Mario Lang <mlang@blind.guru>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 11:33:29 +01:00
Baruch Siach
c060dd51dc libgpgme: fix build on MIPS with older kernel headers
MIPS N64 ABI has been missing getdents64 wire up until kernel version
3.10. Disable use of getdents on older kernels.

Fixes:
http://autobuild.buildroot.net/results/961/9619062ce6642ae4121d7debb3b4c632c88723d5/

Cc: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Cc: Philipp Claves <claves@budelmann-elektronik.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 11:01:45 +01:00
Yegor Yefremov
540e51d06b python-keyring: bump to version 10.5.0
Fix licence information and add licence checksum.

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:47:30 +01:00
Yegor Yefremov
a24153a73f python-cffi: add missing runtime dependency
python-pycparser is mentioned in setup.py as install_requires, so
select it in Config.in.

As python-cffi will be installed with python-crossbar's dependencies,
remove it from python-crossbar's Config.in.

Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:47:12 +01:00
Bernd Kuhls
cd42a19a04 package/live555: bump version to 2017.10.28
Added license hash.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:47:06 +01:00
Bernd Kuhls
427225d993 package/libdrm: bump version to 2.4.89
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:46:59 +01:00
Bernd Kuhls
ee4d8c6d66 package/ffmpeg: add optional support for openjpeg
Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:43:19 +01:00
Bernd Kuhls
f6695c41d3 package/ffmpeg: bump version to 3.4.1
Configure options for libnut & libschroedinger were removed:
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=a3deeaade32db5a1b736b8d3365e52254f3fa6ac
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=220b24c7c97dc033ceab1510549f66d0e7b52ef1

Upstream now prefers NASM assembler over YASM:
http://git.videolan.org/?p=ffmpeg.git;a=commit;h=4f9297ac3b39098547863d28fbc8d2a906d5be49

Added configure options for alsa support:
http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=b447629093d75f18d0a8fc44ec768022322b2182

Added configure options for libiconv:
http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=fe9c85e4e2650dc9537b54b1eabb4f9be7b628ed

Added license hashes.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:28:12 +01:00
Baruch Siach
f822cd793b iproute2: fix configure output file name
iproute2 renamed the configure script output file to config.mk. Update
the config tweaking code accordingly.

The configure script now detects xtables correctly, drop this part.

Add a comment to explain the TC_CONFIG_XT disable tweak.

Cc: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Acked-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:01:53 +01:00
Baruch Siach
a8a9c33d10 iproute2: fix build with threads support disabled
iproute2 renamed the configure script generated file to config.mk.
Update the berkeleydb disable code.

Fixes:
http://autobuild.buildroot.net/results/46d/46da1142806fb524326994585cec6de9f7f3f480/
http://autobuild.buildroot.net/results/3aa/3aa028fe9e730335d2af00d5969b674a3d9f640b/

Cc: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Baruch Siach <baruch@tkos.co.il>
Acked-by: Petr Vorel <petr.vorel@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 10:01:50 +01:00
Bernd Kuhls
7470c21c86 package/linphone: remove ffmpeg-related patches
The linphone package never provided video support.

While this commit
https://git.buildroot.net/buildroot/commit/package/linphone?id=dec04466549cd40e2696ae7725e90d6559bee640

added support for ffmpeg 3.0+ the next commit, which fixed the build of
the bundled mediastreamer2 library, added --disable-video:
https://git.buildroot.net/buildroot/commit/package/linphone?id=f3492b28d89c1f2448c9662a6f755cb48e8c0f0b

At this point the ffmpeg 3.0 patches could have been removed because
ffmpeg is only used if video support is enabled:

6c2a608800/acinclude.m4 (L80)
6c2a608800/acinclude.m4 (L107)

This patch catches up on that to avoid changing the upstream URL for
the patches which is broken.

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:59:29 +01:00
Fabio Estevam
b08dfc7cdb linux-headers: bump 4.14.x series
Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:57:36 +01:00
Fabio Estevam
ad927272df linux: bump default to version 4.14.7
Signed-off-by: Fabio Estevam <festevam@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:57:29 +01:00
Bernd Kuhls
cb7aa25df8 package/vlc: add optional dependency to libupnp18
Upstream added support for libupnp-1.8:
http://git.videolan.org/?p=vlc/vlc-2.2.git;a=commit;h=825dca78be3a81e2a1c5d04137aa01b1cb32dfd3

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:54:40 +01:00
Fabrice Fontaine
c13d4be21e vlc: fix build with libupnp above 1.6.23
Backport patch already available upstream

Fixes:
 - http://autobuild.buildroot.net/results/d98bdcc745a2480d4664db2427f0ae1c9c5ea71e

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:54:38 +01:00
Thomas Petazzoni
85d6721e56 shapelib: fix legal information
Following the bump of shapelib in commit
333f560595, the licensing information
got broken, as the LICENSE.LGPL file is now named COPYING.

While at it, let's add the hashes for the license files.

Fixes:

  http://autobuild.buildroot.net/results/978db9ea9f04ad465252316e2f31085516a123bb/

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:52:41 +01:00
Thomas Petazzoni
1b51fa44d0 package/*/Config.in: fix consecutive lines check-package warnings
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:25:24 +01:00
Thomas Petazzoni
1610200e78 package/*/Config.in: fix property order warning of check-package
This commit fixes the ordering of the Config.in option properties, as
reported by check-package.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:24:38 +01:00
Thomas Petazzoni
2277fdeca8 package/*/Config.in: fix help text check-package warnings
This commit fixes the warnings reported by check-package on the help
text of all package Config.in files, related to the formatting of the
help text: should start with a tab, then 2 spaces, then at most 62
characters.

The vast majority of warnings fixed were caused by too long lines. A
few warnings were related to spaces being used instead of a tab to
indent the help text.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-18 09:22:54 +01:00
Jerzy Grzegorek
20cdd43314 package: remove the default value of the $(PKG)_SOURCE variable
Signed-off-by: Jerzy Grzegorek <jerzy.m.grzegorek@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-17 12:03:13 +01:00
Jerzy Grzegorek
5c7680b89f package: remove the empty trailing whitespaces
Signed-off-by: Jerzy Grzegorek <jerzy.m.grzegorek@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
2017-12-17 12:03:12 +01:00