- Oct 22, 2017
-
-
Julien Floret authored
Cc: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by:
Julien Floret <julien.floret@6wind.com> Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
-
Baruch Siach authored
CVE-2017-13685: The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file. CVE-2017-15286: SQLite 3.20.1 has a NULL pointer dereference in tableColumnList in shell.c because it fails to consider certain cases where `sqlite3_step(pStmt)==SQLITE_ROW` is false and a data structure is never initialized. Signed-off-by:
Baruch Siach <baruch@tkos.co.il> Signed-off-by:
-
Peter Korsgaard authored
Fixes: http://autobuild.buildroot.net/results/57d/57d9f0ea27e5c8ba73002bd1d0b33027f27a3779/ http://autobuild.buildroot.net/results/7c3/7c3133e822c997879fe00923ba0ad7903656c2e1/ bootstrap by default runs ./tools/build/src/engine/build.sh --guess-toolset to detect what toolchain (compiler variant). On x86 this returns gcc, but on the ppc64le gcc112 autobuilder this returns xlcpp causing bootstrap.sh to get confused and bail out: ./bootstrap.sh .. Building Boost.Build engine with toolset ... tools/build/src/engine/### \### No toolset specified. Please use --toolset option. \### \### Known toolsets are: acc, borland, cc, como, clang, darwin, gcc, gcc-nocygwin, intel-darwin, intel-linux, intel-win32, kcc, kylix, metrowerks, mipspro, msvc, qcc, pathscale, pgi, sun, sunpro, tru64cxx, vacpp, xlcpp, vc7, vc8, vc9, vc10, vc11, vc12, vc14, vc141, vmsdecc \###/b2 Fix it by explicitly specifying the gcc toolset mode to bootstrap, similar to how it was already done for the bjam invocations. Signed-off-by:
Peter Korsgaard <peter@korsgaard.com> Signed-off-by:
-
Erico Nunes authored
I've been using this packages to test changes in the grub package, so I can maintain them. Signed-off-by:
Erico Nunes <nunes.erico@gmail.com> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Signed-off-by:
-
Erico Nunes authored
Add some documentation about running the pc defconfigs in qemu. In particular, document the use of the -bios parameter to use the OVMF firmware to test the UEFI image. Signed-off-by:
-
Erico Nunes authored
This simplifies the pc configs and respective post image scripts to use the shared genimage script and separate grub config files. Separate grub files are cleaner to maintain and easier to copy and modify, for example to support booting the pc defconfigs in qemu. Signed-off-by:
-
Yann E. MORIN authored
Starting with version 7, gcc automatically recognises and enforces the environment variable SOURCE_DATE_EPOCH, and fakes __DATE__ and __TIME__ accordingly, to produce reproducible builds (at least in regards to date and time). However, older gcc versions do not offer this feature. So, we use our toolchain wrapper to force-feed __DATE__ and __TIME__ as macros, which will take precedence over those that gcc may compute itself. We compute them according to the specs: https://reproducible-builds.org/specs/source-date-epoch/ https://gcc.gnu.org/onlinedocs/cpp/Standard-Predefined-Macros.html Since we define macros otherwise internal to gcc, we have to tell it not to warn about that. The -Wno-builtin-macro-redefined flag was introduced in gcc-4.4.0. Therefore, we make BR2_REPRODUCIBLE depend on GCC >= 4.4. gcc-7 will ignore SOURCE_DATE_EPOCH when __DATE__ and __TIME__ are user-defined. Anyway, this is of no consequence: whether __DATE__ and __TIME__ or SOURCE_DATE_EPOCH takes precedence, it would yield the exact same end result since we use the same logic to compute it. Note that we didn't copy the code for it from gcc so using the same logic doesn't imply that we're inheriting GPL-3.0. Signed-off-by:"Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Jérôme Pouiller <jezz@sysmic.org> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: Arnout Vandecappelle <arnout@mind.be> Cc: Peter Korsgaard <peter@korsgaard.com> [Arnout: rewrite commit message] Signed-off-by:
Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Reviewed-by:
-
Mauro Condarelli authored
Building Python 3.x on MIPS with musl fails because the libffi code uses a "#ifdef linux" test to decide if we're building on Linux or not. When building with -std=c99, "linux" is not defined, so instead of including <asm/sgidefs.h>, libffi's code tries to include <sgidefs.h>, which doesn't exist on musl. The right fix is to use __linux__, which is POSIX compliant, and therefore defined even when -std=c99 is used. Note that glibc and uClibc were not affected because they do provide a <sgidefs.h> header in addition to the <asm/sgidefs.h> one. Signed-off-by:
Mauro Condarelli <mc5686@mclink.it> [Thomas: reformat patch with Git, add a better commit log and description.] Signed-off-by:
-
Alfredo Alvarez Fernandez authored
That way packages included in that list like ccache will also be regarded as a normal packages for targets like external-deps, show-targets or legal-info Signed-off-by:
Alfredo Alvarez Fernandez <alfredo.alvarez_fernandez@nokia.com> Signed-off-by:
-
Alfredo Alvarez Fernandez authored
Currently, HOSTCC and HOSTCXX are set to their _NOCACHE variants in the 'dependencies' target. This is needed because at that time, ccache is not built yet - host-ccache is one of the dependencies. However, because this override is only specified for the 'dependencies' target (and thereby gets inherited by its dependencies), the override is only applied when the package is reached through the 'dependencies' target. This is not the case when one of DEPENDENCIES_HOST_PREREQ is built directly from the command line, e.g. when doing 'make host-ccache'. So in that case, ccache will be built with ccache... which fails of course. To fix this, directly apply the override to the DEPENCIES_HOST_PREREQ targets. Note that this only fixes the issue for 'make host-ccache', NOT for e.g. 'make host-ccache-configure'. Signed-off-by:
-
Peter Korsgaard authored
Fixes XA-245: ARM: Some memory not scrubbed at boot https://xenbits.xenproject.org/xsa/advisory-245.html Notice: Not applying XSA-237..244 as they are x86 only and have patch file name conflicts between 2017.02.x and master. Signed-off-by:
-
Baruch Siach authored
GCC defines wchar_t even when wchar support is disabled in uClibc. The LTC_NO_WCHAR macro triggers a local definition of wchar_t that conflicts with the GCC defined one. Remove LTC_NO_WCHAR to avoid that. See also https://github.com/libtom/libtomcrypt/issues/313 for more discussion about this. Fixes: http://autobuild.buildroot.net/results/4ff/4ffb593185f7520d2d9a9cc988aa9c510f253930/ Cc: Francois Perrad <francois.perrad@gadz.org> Signed-off-by:
-
Peter Korsgaard authored
Fixes: http://autobuild.buildroot.net/results/207/207d0ca1fe5328e675246c851fcb0d5685f8c0bd/ http://autobuild.buildroot.net/results/546/546a56d6dd39e5e9ecfe25fd36a00510e6c0c45b/ host-openssl may be used without openssl being enabled for the target, so move BR2_PACKAGE_PROVIDES_HOST_OPENSSL outside the BR2_PACKAGE_OPENSSL conditional. While we're at it, add a comment explaining what this magic config symbol does. Signed-off-by:
-
Peter Korsgaard authored
Fixes the following security issues: CVE-2017-9410: fill_buffer_resample function in libmp3lame/util.c heap-based buffer over-read and ap CVE-2017-9411: fill_buffer_resample function in libmp3lame/util.c invalid memory read and application crash CVE-2017-9412: unpack_read_samples function in frontend/get_audio.c invalid memory read and application crash Drop patches now upstream or no longer needed: 0001-configure.patch: Upstream as mentioned in patch description 0002-gtk1-ac-directives.patch: Upstream as mentioned in patch description/release notes: Resurrect Owen Taylor's code dated from 97-11-3 to properly deal with GTK1. This was transplanted back from aclocal.m4 with a patch provided by Andres Mejia. This change makes it easy to regenerate autotools' files with a simple invocation of autoconf -vfi. 0003-msse.patch: Not needed as -march <x86-variant-with-msse-support> nowadays implies -msse. With these removed, autoreconf is no longer needed. Also add a hash for the license file while we're at it. Signed-off-by:
-
Francois Perrad authored
that allows optional dependencies Signed-off-by:
Francois Perrad <francois.perrad@gadz.org> [Thomas: - use "luainterpreter" instead of "lua" in the dependencies - replace with a Git formatted patch that doesn't comment code but removes it.] Signed-off-by:
-
Erico Nunes authored
Bump the kernel version to 4.13.8. Tested with qemu 2.9.1 on bios and UEFI virtual machines. Signed-off-by:
-
Romain Naour authored
https://www.enlightenment.org/news/efl-1.20.5 Signed-off-by:
Romain Naour <romain.naour@gmail.com> Signed-off-by:
-
Christian Stewart authored
This is a dependency of docker-engine v2017.07.0-ce. Signed-off-by:
Christian Stewart <christian@paral.in> Signed-off-by:
-
Christian Stewart authored
Go 1.9 is required for docker-engine and other Go packages in Buildroot. Signed-off-by:
-
- Oct 21, 2017
-
-
Peter Korsgaard authored
Fixes: http://autobuild.buildroot.net/results/ffc/ffc9c10c55c2838ab7002c5ec35244e9bfe46189/ Commit dfa1817d (openldap: supports only the real OpenSSL, not LibreSSL) tried to ensure openldap would only use openssl, but changed the wrong variable. OPENLDAP_TLS is passed to configure, so it shouldn't be changed: ./configure --target=aarch64-buildroot-linux-gnu .. --with-tls=libopenssl .. Configuring OpenLDAP 2.4.45-Release ... checking build system type... x86_64-pc-linux-gnu checking host system type... aarch64-buildroot-linux-gnu checking target system type... aarch64-buildroot-linux-gnu checking for a BSD-compatible install... /usr/bin/install -c checking whether build environment is sane... yes checking for gawk... gawk checking whether make sets $(MAKE)... yes checking for aarch64-buildroot-linux-gnu-strip... /usr/lfs/v0/rc-buildroot-test/scripts/instance-0/output/host/bin/aarch64-linux-gnu-strip checking configure arguments... configure: error: bad value libopenssl for --with-tls Signed-off-by:
-
Peter Korsgaard authored
Signed-off-by: -
Alexey Brodkin authored
Vivante GPU could be a part of SoC along with any CPU architecture thus get rid of nonsense dependency. Signed-off-by:
Alexey Brodkin <abrodkin@synopsys.com> Signed-off-by:
-
Alexey Brodkin authored
Vivante GPU could be a part of SoC along with any CPU architecture thus get rid of nonsense dependency. Signed-off-by:
-
Peter Korsgaard authored
>From the upstream announcement: http://www.openwall.com/lists/oss-security/2017/10/19/5 Felix Wilhelm has discovered a flaw in the dns response parsing for musl libc 1.1.16 that leads to overflow of a stack-based buffer. Earlier versions are also affected. When an application makes a request via getaddrinfo for both IPv4 and IPv6 results (AF_UNSPEC), an attacker who controls or can spoof the nameservers configured in resolv.conf can reply to both the A and AAAA queries with A results. Since A records are smaller than AAAA records, it's possible to fit more addresses than the precomputed bound, and a buffer overflow occurs. Signed-off-by:
-
Jagan Teki authored
Add initial support for bananapi M1 board with below features: - U-Boot 2017.09 - Linux 4.13.7 - Default packages from buildroot Cc: Jason <manager@sinovoip.com.cn> Cc: hailymei@banana-pi.com <hailymei@banana-pi.com> Signed-off-by:
Jagan Teki <jagan@amarulasolutions.com> Signed-off-by:
-
Peter Seiderer authored
The previous version was by mistake mixed up with the patch 'gst-plugins-bad: openjpeg: Remove compatibility with openjpeg 2.0' Signed-off-by:
Peter Seiderer <ps.report@gmx.net> Signed-off-by:
-
Alexey Brodkin authored
glibc is now supported for ARC so let's kick-start autobuilders with glibc toolchain for ARC HS. Signed-off-by:
-
Angelo Compagnucci authored
This patch fixes a bug with the BR2_TOOLCHAIN_HAS_THREADS variable handling which causes CGO_ENABLED to be always 0. Furthermore, it fixes the cross compilation options for the go compiler: setting CGO_ENABLED should be done only for the target compiler not the host one. Signed-off-by:
Angelo Compagnucci <angelo.compagnucci@gmail.com> Signed-off-by:
-
Peter Seiderer authored
If selected use: - system/buildroot harfbuzz in case __sync for 4 bytes is supported - qt harfbuzz otherwise (using QAtomic instead) Signed-off-by:
-
Gaël PORTAY authored
The gpu_mem option is not using the proper option argument which causes sed to fail. + case "${arg}" in + gpu_mem=ome/gportay/output-rpi3-qtwe/images + sed -e '/^ome/gportay/output-rpi3-qtwe/images=/s,=.*,=ome/gportay/output-rpi3-qtwe/images,' -i /home/gportay/output-rpi3-qtwe/images/rpi-firmware/config.txt sed: -e expression #1, char 8: extra characters after command + case "${arg}" in + gpu_mem=ome/gportay/output-rpi3-qtwe/images + sed -e '/^ome/gportay/output-rpi3-qtwe/images=/s,=.*,=ome/gportay/output-rpi3-qtwe/images,' -i /home/gportay/output-rpi3-qtwe/images/rpi-firmware/config.txt sed: -e expression #1, char 8: extra characters after command The issue comes from the use of $1 instead of $arg to extract the gpu_mem value. $1 is the $(BINARIES_DIR) which leads to a sed expression error. Also, it adds the error flag to the shell script to prevent from such situation and terminate the build in error. Signed-off-by:Gaël PORTAY <gael.portay@savoirfairelinux.com> Acked-by:
-
André Hentschel authored
Signed-off-by:
André Hentschel <nerv@dawncrow.de> Signed-off-by:
-
Alexey Brodkin authored
This enables support for ARC cores in numpy. Cherry-picked from https://github.com/numpy/numpy/commit/8edd610ffa3499eea3580f98f296ec80578fba73 Hopefully becomes a part of the next major release (like 1.14). Signed-off-by:
-
Alexey Brodkin authored
This is just a bug-fix release. Removing 0003-BUG-Ensure-_npy_scaled_cexp-f-l-is-defined-when-need.patch as it is a part of the release. Signed-off-by:
-
Adam Duskett authored
At this point, libressl can be added to the openssl virtual package. - Remove the entry package/libressl/Config.in from package/Config.in - Remove the file: package/libressl/Config.in - Add libressl entry to package/openssl/Config.in Signed-off-by:
Adam Duskett <Adamduskett@outlook.com> Signed-off-by:
-
Thomas Petazzoni authored
wpa_supplicant will not build with LibreSSL without patches, so let's support only OpenSSL. Signed-off-by: -
Thomas Petazzoni authored
libevent will not build with LibreSSL without patches, so let's support only OpenSSL. Signed-off-by: -
Thomas Petazzoni authored
openldap will not build with LibreSSL without patches, so let's support only OpenSSL. Signed-off-by: -
Thomas Petazzoni authored
opusfile will not build with LibreSSL without patches, so let's support only OpenSSL. Signed-off-by: -
Thomas Petazzoni authored
mosquitto will not build with LibreSSL without patches, so let's support only OpenSSL. Signed-off-by: -
Thomas Petazzoni authored
ffmpeg will not build with LibreSSL without patches, so let's support only OpenSSL. Signed-off-by:
-
