aboutsummaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Update for 2019.08.32019.08.32019.08.xGravatar Peter Korsgaard2019-12-072-2/+43
| | | | Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* {linux, linux-headers}: bump 4.{4, 9, 14, 19}.x / 5.{3, 4}.x seriesGravatar Bernd Kuhls2019-12-072-8/+8
| | | | | | | | Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit 2135e3da387a938f316557ab87a55a8b4a2acaba) [Peter: drop 5.x bump] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/mosquitto: bump to v1.6.8Gravatar Titouan Christophe2019-12-072-2/+2
| | | | | | | | | | This is a bugfix release, see: https://mosquitto.org/blog/2019/11/version-1-6-8-released/ Signed-off-by: Titouan Christophe <titouan.christophe@railnova.eu> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit b4a848e4f4418918eaa5402ff8403535d439c77f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* DEVELOPERS: remove Daniel NystromGravatar Thomas Petazzoni2019-12-071-3/+0
| | | | | | | | | | | | | <daniel.nystrom@timeterminal.se>: host ASPMX.L.GOOGLE.COM[172.217.218.26] said: 550-5.1.1 The email account that you tried to reach does not exist. Please try 550-5.1.1 double-checking the recipient's email address for typos or 550-5.1.1 unnecessary spaces. Learn more at 550 5.1.1 https://support.google.com/mail/?p=NoSuchUser o14si10209151edi.116 - gsmtp (in reply to RCPT TO command) Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit f9eb59a88ad2d0658069edfaf4c39b48911d8abd) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/rauc: select fw_printenv for uboot based systemsGravatar Titouan Christophe2019-12-071-0/+2
| | | | | | | | | | | | | | | | | When operating on a uboot based system, rauc interacts with the bootloader environment using fw_printenv and fw_setenv [1]. These commands should therefore be present on the target if the system being built uses uboot. [1] See: https://github.com/rauc/rauc/blob/v1.2/src/bootchooser.c#L21-L22 https://github.com/rauc/rauc/blob/v1.2/src/bootchooser.c#L644-L645 Signed-off-by: Titouan Christophe <titouan.christophe@railnova.eu> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit ccf67ebe3b93bf659e64e4e933f2e0bac148a141) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/pkg-kconfig: fix reconfigure for kconfig packagesGravatar Angelo Compagnucci2019-12-071-1/+1
| | | | | | | | | | | | | | | | | | | | | | | Commit 4b81badbcc0b25678ac6627548160702731cf393 Currently, calling foo-reconfigure for a kconfig-based package will not re-trigger the configuration (kconfig-wise) step for the package. was supposed to solve this problem and lately we had Commit 05fea6e4a60a38a797d9bacbf318a2cd7dbd435f infra/pkg-kconfig: do not rely on package's .config as a timestamp that introduced the .stamp_dotconfig file. For this reason, to trigger a kconfig package reconfigure is now necessary to remove the .stamp_dotconfig file. Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit d1f1947af12fc47933c7ea8fa90fc40d423affd2) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/postgresql: fix minor typoGravatar Pascal de Bruijn2019-12-061-1/+1
| | | | | | | | | | pgsql as a tool does not exist, it's called psql Signed-off-by: Pascal de Bruijn <p.debruijn@unilogic.nl> Reviewed-by: Peter Seiderer <ps.report@gmx.net> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit d79bab065e13f5c6def3ce1884d684fdf9f9300c) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* utils/genrandconfig: fix runtime issue with Python 3Gravatar Thomas Petazzoni2019-12-061-9/+1
| | | | | | | | | | | | | | | | With Python 3.7, genrandconfig fails with: 'str' object has no attribute 'decode' We are already working on str objects, and there is no need to decode them, so we drop the call to decode_byte_list() and its definition as it was only used there. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Cc: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> (cherry picked from commit 5cfe5d789796919d815c5707928bd5f4febad3bf) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/cmocka: fix build on riscv64Gravatar Fabrice Fontaine2019-12-061-0/+77
| | | | | | | | | | | | Fixes: - http://autobuild.buildroot.org/results/30922c18150ea62aefe123d1b7cd1444efab963f Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Reviewed-by: Joel Carlson <JoelsonCarl@gmail.com> Tested-by: Joel Carlson <JoelsonCarl@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 5e321ccf07ca0cd1388f1f78e2cf8d7054c4279f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/rabbitmq-c: security bump to version 0.10.0Gravatar Fabrice Fontaine2019-12-062-2/+2
| | | | | | | | | | Add additional input validation to prevent integer overflow when parsing a frame header. This addresses CVE-2019-18609. Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 63d0762ab72a3536ea2e07ac75327c7556ed72c1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/python-django: security bump to version 2.2.8Gravatar Peter Korsgaard2019-12-062-4/+4
| | | | | | | | | | | | | | | | Fixes the following security vulnerabilities: - CVE-2019-19118: Privilege escalation in the Django admin Additionally, 2.2.8 (and 2.2.7) fixes a number of bugs and adds python 3.8 support. For more details, see the release notes: https://docs.djangoproject.com/en/dev/releases/2.2.8/ Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 6340272e88db87a3917b69228997fcba1a9e37dd) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/python-django: bump to version 2.2.6Gravatar Adam Duskett2019-12-062-4/+4
| | | | | | | Signed-off-by: Adam Duskett <Aduskett@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit 27973707f794bcc1e3c2be6728e1fc6a55b40b37) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/jasper: Apply fix for CVE-2018-19540Gravatar Michael Vetter2019-12-061-0/+29
| | | | | | | | | | | | | | | Add 0003-test-asclen-CVE-2018-19540.patch: If txtdesc->asclen is < 1, the array index of txtdesc->ascdata will be negative which causes the heap based overflow. Patch was proposed upstream[1] but upstream is very inactive. Linux distributions use the same fix to patch their packages. 1: https://github.com/mdadams/jasper/pull/198 Signed-off-by: Michael Vetter <jubalh@iodoru.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 332a851a08153887f68c97f49c7fbdc163f24e5b) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/jasper: Apply fix for CVE-2018-19542Gravatar Michael Vetter2019-12-061-0/+24
| | | | | | | | | | | | | Add 0002-check-null-in-jp2_decode.patch: Patch was proposed upstream[1] but upstream is very inactive. Linux distributions use the same fix to patch their packages. 1: https://github.com/mdadams/jasper/pull/200 Signed-off-by: Michael Vetter <jubalh@iodoru.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 61703b82cdcbd32dd27e8a8f2de31dfa45e6a2b1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/jasper: Apply fix for CVE-2018-19541Gravatar Michael Vetter2019-12-061-0/+35
| | | | | | | | | | | | | | | Add 0001-verify-data-range-CVE-2018-19541.patch: We need to verify the data is in the expected range. Otherwise we get problems later. Patch was proposed upstream[1] but upstream is very inactive. Linux distributions use the same fix to patch their packages. 1: https://github.com/mdadams/jasper/pull/211 Signed-off-by: Michael Vetter <jubalh@iodoru.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit fddee3cf7436bd39d08c30a83a15ee9687e88401) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/mp4v2: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(405)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit abd4976515e04ed8d1768dd08ea1d80bcdd4fc51) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-startup-monitor: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 56fff9ef97fe231e2f118a1365ff000f9d77365e) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-panel: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 484b687f79d06945c581cdaf709c2ecd8cbb3774) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-lib: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 45f5c12c4b2b9637f45a6004ba6c0e66edb3d313) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-keyboard: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 381fb14bbd95c68c911065bb20c735cd9cb947ca) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-fakekey: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 680d20cd4749d56cac5e41c844dbde90c32f2e97) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-desktop: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 5fb87bbd3526c23e1c6d4ff7a233c3cd06a8187c) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/matchbox-common: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 99eb6cfb242b4bfaf00f8b5389f902c3167a3eee) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/linux-fusion: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit dcc2a29f410728e485bfce739a63101ead5cce71) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/luasql-sqlite3: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(406)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit b27c5c1c0b0094cd0e5282e9588fa5ddb9632a96) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/luasyslog: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(Err)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 0d9c7347f00fe2676553060f19fd50943728bf93) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/jasper: bump to 2.0.16Gravatar Michael Vetter2019-12-053-2/+5
| | | | | | | | | | | | | | Changes: * Fix assertion failure JPC_NOMINALGAIN (CVE-2016-9396) (#50) * Fix build on Windows 10 (#162) * Improve README * Fix build with CMake 2.x * Add missing dereference operators (#178, #157) * Check data in jas_image (CVE-2018-19539) (#196) Signed-off-by: Michael Vetter <jubalh@iodoru.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 154bbfd53f37726ddf6491d385239910155e7cb6) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/openvmtools: only try to start vmtoolsd on vmwareGravatar Pascal de Bruijn2019-12-051-0/+1
| | | | | | | | | adds ConditionVirtualization=vmware to vmtoolsd.service Signed-off-by: Pascal de Bruijn <p.debruijn@unilogic.nl> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 89ebe8b4a12400435b9473b4ca7ea1240ff5f93e) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/openvmtools: use correct variable in udev rule RUN+=Gravatar Pascal de Bruijn2019-12-051-0/+25
| | | | | | | | | | | | | | | | | | | DEVPATH is not a valid substitution in a RUN+=, devpath is: https://mirrors.edge.kernel.org/pub/linux/utils/kernel/hotplug/udev/udev.html So use that to get rid of the following warning: Invalid value "/bin/sh -c 'echo 180 >/sys$DEVPATH/device/timeout'" for RUN (char 27: invalid substitution type), ignoring, but please fix Source: https://github.com/vmware/open-vm-tools/pull/376 Signed-off-by: Pascal de Bruijn <p.debruijn@unilogic.nl> Acked-by: Jérémy Rosen <jeremy.rosen@smile.fr> [Peter: extend description] Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 164963b80875b8d23062179bf2d92a9896a2a0a7) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/openvmtools: udev rules files should not be executableGravatar Pascal de Bruijn2019-12-051-0/+23
| | | | | | | | | | | | /usr/lib/udev/rules.d/99-vmware-scsi-udev.rules is marked executable, causing systemd to complain. Source: https://github.com/vmware/open-vm-tools/pull/376 Signed-off-by: Pascal de Bruijn <p.debruijn@unilogic.nl> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 7ad22f41b57fb244f2f396533d549f7d9eaa5a06) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/openvmtools: fix build on muslGravatar Fabrice Fontaine2019-12-056-0/+1112
| | | | | | | | | | Fixes: - http://autobuild.buildroot.org/results/9c67acf77fdcebab1e50d6c1b42475efcedec82d Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit b27040cdd141ad9257de3ce5105b1e90cd6e8203) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/prosody: bump to bugfix version 0.11.3Gravatar Michael Vetter2019-12-052-5/+5
| | | | | | | | | | | | | | | | | | | | | | This is a bugfix release for the stable 0.11 branch. It is recommended for all users of 0.11.x to upgrade. Important note for those upgrading: Previous releases did not automatically expire messages from group chat (MUC) archives, so if mod_muc_mam was loaded and enabled for a MUC, archives would grow indefinitely. This is not what most deployments want, therefore automatic expiry is now implemented and enabled with a default 7 day retention. You can configure this with the muc_log_expires_after configuration option, which can be set to "never" to restore the old behaviour and preserve any existing logs older than 7 days. For details see: https://prosody.im/doc/release/0.11.3 Signed-off-by: Michael Vetter <jubalh@iodoru.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 3a508f8564622c5cdaad75ef6afb3f027d24beb6) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/mxsldr: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 3fa37a41d87a20302a53124baeb2feddc94466c6) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/opentyrian-data: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(405)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit f06ae71f64642b5ebdb17f02a57d69cf846543a2) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/netperf: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(Err)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 08f2c31c054e5fa57baef1b476e46b3b8dc9853b) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/oprofile: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit c04dab6f6f5ff726aed5f724ffe82ef70551de89) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/ortp: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(404)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit c3c12bd9a3dec29dfe718e1639365313588001ff) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/opkg: update the upstream URL in Config.inGravatar Mark Corbin2019-12-051-1/+1
| | | | | | | | | | | Update the upstream URL in the help text in Config.in. This addresses the 'Invalid(405)' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 10a67d886052f9bd5bbf7b459aa2e99bbafa78dc) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* {linux, linux-headers}: bump 4.{14, 19}.x seriesGravatar Bernd Kuhls2019-12-052-4/+4
| | | | | | | Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit af712ca7ce9a36f68c64cd9306005dbc86bc1502) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/{pkg-generic, python, python3}: rename .py file exclusion variable ↵Gravatar Peter Korsgaard2019-12-053-3/+3
| | | | | | | | | | | | | | | | | | | | to not conflict Fixes: http://autobuild.buildroot.net/results/3b6/3b6280b0b7a9634b747db2865b21c6266007c725/ The PYTHON_KEEP_PY_FILES global variable conflicts with the per-package <pkg>_KEEP_PY_FILES variable for the python package, causing make to complain: package/zlib/zlib.mk:7: *** Recursive variable 'PYTHON_KEEP_PY_FILES' references itself (eventually). Stop. As a workaround, rename the global variable to KEEP_PYTHON_PY_FILES so it cannot conflict with the per-package variable. Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 0f5ac40374c91e44af8c3806e848f8e62c42b140) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/opencv3: ensure the python module works when BR2_PACKAGE_PYTHON{, ↵Gravatar Thomas Petazzoni2019-12-051-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 3}_PYC_ONLY=y The OpenCV Python module does a fairly strange thing to read a few configuration details: it uses Python's execfile() to execute two .py files and access a few variables. However, execfile() only works with .py files and not .pyc files. When BR2_PACKAGE_PYTHON{,3}_PYC_ONLY=y, the .py files are all removed, causing the OpenCV Python module to not work: File "usr/lib/python3.7/site-packages/cv2/__init__.py", line 89, in <module> File "usr/lib/python3.7/site-packages/cv2/__init__.py", line 58, in bootstrap File "usr/lib/python3.7/site-packages/cv2/__init__.py", line 56, in load_first_config ImportError: OpenCV loader: missing configuration file: ['config.py']. Check OpenCV installation. To fix this problem, this commit uses the newly introduced <pkg>_KEEP_PY_FILES mechanism, to ensure the important config*.py files are kept. Fixes: https://bugs.busybox.net/show_bug.cgi?id=12171 Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit d07c315f0c24903e03169c939b050618a9c3ba8b) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/{pkg-generic, python, python3}: add mechanism to exclude .py files ↵Gravatar Thomas Petazzoni2019-12-053-2/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | from removal When BR2_PACKAGE_PYTHON{,3}_PYC_ONLY=y, we force remove all .py files from the system, as they have all been byte-compiled into their .pyc variants. However, it turns out that some packages (e.g: OpenCV) do some funky things with a few .py files: they pass them through Python's execfile() facility, which only works with .py files and not .pyc files. It is used by OpenCV for example to read two small configuration files. In order to support such use cases, this commit introduces a very simple mechanism by which packages can exclude some path patterns from the .py removal: a per-package <pkg>_KEEP_PY_FILES variable that is collected into a global PYTHON_KEEP_PY_FILES variable, then used by the python/python3 target-finalize hooks. This variable is intentionally not documented, this is really a hack that we ideally would like to see go away, and we'd rather not see its usage spread too much. This is necessary to be able to fix bug #12171. [Peter: check if PYTHON_KEEP_PY_FILES contains non-white space] Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 56f3ed3fc1e1bee560e06b57237bd3d4af0def22) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* {linux, linux-headers}: bump 4.{4, 9}.x / 5.3.x seriesGravatar Bernd Kuhls2019-12-052-4/+4
| | | | | | | | Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> [Peter: drop 5.3.x bump] (cherry picked from commit b20487151af79563da763d0f053deb78ff63172a) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/perl-gdtextutil: add licenseGravatar Fabrice Fontaine2019-12-052-2/+4
| | | | | | | | | | | Dustismo.LICENSE contains the license for the Dustismo_Sans.ttf font file. The rest is licensed under the same terms as Perl as specified in README Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 3ec2bee2355a26bc862894e68020c2475daf040f) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/lzma: add licenseGravatar Fabrice Fontaine2019-12-052-0/+5
| | | | | | | | | | | | | | | | | | - lzma program is licensed under GPL-2.0+ - lzmadec program has no license information in source file - lzmainfo program is licensed under LGPL-2.1+ - LzmaDecode.h is licensed under LGPL-2.1+ (or CPL) as stated in src/sdk/7zip/Compress/LZMA_C/LzmaDecode.{c,h}, other sdk files have no license information - lzmore and lzgrep scripts are licensed under GPL-2.0+ - lzdiff script has no license information - basic and perms tests are licensed under GPL-3.0+ - mkdtemp and test-lib.sh tests have no license information Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit ea107efc97fa7202d8af59e4040937b09e5e2b05) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/tiff: security bump to 4.1.0Gravatar Michael Vetter2019-12-053-55/+2
| | | | | | | | | | | | | | | | | | Fixes the following security vulnerabilities: * CVE-2018-12900 * CVE-2018-17000 * CVE-2019-6128 * CVE-2019-7663 * CVE-2019-14973 * CVE-2018-19210 Remove because contained upstream: 0001-Fix-for-simple-memory-leak-that-was-assigned-CVE-2019-6128.patch Signed-off-by: Michael Vetter <jubalh@iodoru.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 8b93ddb642cd4314306f7b464370d115322e0d1c) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/libglob: add an upstream URL to Config.inGravatar Mark Corbin2019-12-051-0/+2
| | | | | | | | | | | Add an upstream URL to the help text in Config.in. This addresses the 'Missing' URL status in the package stats web page output. Signed-off-by: Mark Corbin <mark@dibsco.co.uk> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 813b9c34cfc3af2f92bc2c4cf3f6ccfc591c5373) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/pkg-generic.mk: make HOST_<pkg>_DL_OPTS inherit from <pkg>_DL_OPTSGravatar Thomas Petazzoni2019-12-051-0/+6
| | | | | | | | | | | | | | | | Just like _SITE, _SOURCE, _SITE_METHOD, it is very likely that if <pkg>_DL_OPTS is defined, the same value should be used for HOST_<pkg>_DL_OPTS, so let's have the same inheritance logic than the one we have for other variables. Fixes: https://bugs.busybox.net/show_bug.cgi?id=12321 Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 085f32c17b408fbac68d92232b42d49e883e1f69) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/python-cchardet: bump to version 2.1.5Gravatar James Hilliard2019-12-052-4/+4
| | | | | | | Signed-off-by: James Hilliard <james.hilliard1@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 2da1130670447e38d94609c076e99f55352c5da1) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
* package/oniguruma: security bump to version 6.9.4Gravatar Fabrice Fontaine2019-12-052-5/+5
| | | | | | | | | | | | | | | - Retrieve official tarball to drop autoreconf - Fixed CVE-2019-19012 - Fixed CVE-2019-19203 (Does not affect UTF-8, UTF-16 and UTF-32 encodings) - Fixed CVE-2019-19204 (Affects only PosixBasic, Emacs and Grep syntaxes) - Fixed CVE-2019-19246 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> (cherry picked from commit 79bcd1770af0866f9953ffbb1493c36400a01aea) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>