aboutsummaryrefslogtreecommitdiffstats
path: root/package/libs
Commit message (Collapse)AuthorAgeFilesLines
...
* elfutils: Fix compile with uClibc-ngRosen Penev2019-05-052-1/+39
| | | | | | | | Probably glibc too. argp_help takes a char *. not const char *. Signed-off-by: Rosen Penev <rosenp@gmail.com> Signed-off-by: Petr Štetiar <ynezz@true.cz> [updated with upstream version of the patch]
* kernel: Remove support for kernel 3.18Hauke Mehrtens2019-05-032-2/+2
| | | | | | | | | | No target is using kernel 3.18 anymore, remove all the generic support for kernel 3.18. The removed packages are depending on kernel 3.18 only and are not used on any recent kernel. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* libroxml: bump to the 3.0.1 versionRafał Miłecki2019-05-011-5/+5
| | | | | | | | | | | | Some of changes: * Support for local-name() * General refactoring * Better parsing performance * Fix possible buffer overflow & memleak * Validation checks * More commit functions (file, buffer, fd) Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* openssl: build kmods only if engines are selectedEneas U de Queiroz2019-04-261-4/+4
| | | | | | | | | | Add a conditional to the individual package's for the kmods in DEPENDS. This avoids the need to compile the kernel modules when the crypto engine packages are not selected. The final binares are not affected by this. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com> Tested-by: Rosen Penev <rosenp@gmail.com>
* elfutils: bump to 0.176Jose Olivera2019-04-262-4/+4
| | | | | | | | | | | | | | | | *Fixes: -CVE-2019-7150 -CVE-2019-7149 -CVE-2019-7146 -CVE-2019-7665 -CVE-2019-7664 -CVE-2019-7148 *Refresh 003-libintl-compatibility.patch *Also reset PKG_RELEASE. Signed-off-by: Jose Olivera <oliverajeo@gmail.com>
* openssl: add Eneas U de Queiroz as maintainerEneas U de Queiroz2019-04-221-0/+1
| | | | Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: fix OPENSSL_config bug affecting wgetEneas U de Queiroz2019-04-222-1/+32
| | | | | | | | This applies an upstream patch that fixes a OPENSSL_config() bug that causes SSL initialization to fail when the openssl.cnf file is not found. The config file is not installed by default. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* nghttp2: bump to 1.38.0Hans Dedecker2019-04-221-3/+3
| | | | | | | | | | | | | | | | | | | 4a9d2005 Update manual pages acf6a922 Bump up version number to 1.38.0, LT revision to 31:3:17 4ff45821 Update AUTHORS 42dce01e Merge branch 'nghttpx-fix-backend-selection-on-retry' a35059e3 nghttpx: Fix bug that altered authority and path affect backend selection 5a30fafd Merge branch 'nghttpx-fix-chunked-request-stall' dce91ad3 Merge branch 'nghttpx-dont-log-authorization' 2cff8b43 nghttpx: Fix bug that chunked request stalls be96654d nghttpx: Don't log authorization request header field value with -LINFO ce962c3f Merge branch 'update-http-parser' f931504e Update http-parser to v2.9.1 d978f351 Fix bug that on_header callback is still called after stream is closed ec519f22 Merge pull request #1270 from baitisj/master e8b213e3 Bump up version number to 1.38.0-DEV Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* openssl: change defaults: ENGINE:on, NPN:off, miscEneas U de Queiroz2019-04-172-8/+6
| | | | | | | | | | | | | | | | | | | | | | | | The sender domain has a DMARC Reject/Quarantine policy which disallows sending mailing list messages using the original "From" header. To mitigate this problem, the original message has been wrapped automatically by the mailing list software. Enable engine support by default. Right now, some packages require this, so it is always enabled by the bots. Many packages will compile differently when engine support is detected, needing engine symbols from the libraries. However, being off by default, a user compiling its own image will fail to run some popular packages from the official repo. Note that disabling engines did not work in 1.0.2, so this problem never showed up before. NPN support has been removed in major browsers & servers, and has become a small bloat, so it does not make sense to leave it on by default. Remove deprecated CONFIG_ENGINE_CRYPTO symbol that is no longer needed. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* mbedtls: update to version 2.16.1Josef Schlehofer2019-04-063-28/+28
| | | | | | | Refreshed patches Signed-off-by: Josef Schlehofer <josef.schlehofer@nic.cz> Tested-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* libnftnl: bump to latest versionRosy Song2019-03-211-3/+3
| | | | Signed-off-by: Rosy Song <rosysong@rosinson.com>
* openssl: revert disallowing parallel buildEneas U de Queiroz2019-03-211-1/+1
| | | | | | | Openssl 1.1.0 made wholesale changes to its building system. Apparently, parallel builds are working now. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: disable digests by default, misc fixesEneas U de Queiroz2019-03-124-2/+79
| | | | | | | | | | | | | | | | | | | | | | Openssh uses digest contexts across forks, which is not supported by the /dev/crypto engine. The speed of digests is usually not worth enabling them anyway. This changes the default of the DIGESTS option to NONE, so the user still has the option to enable them. Added another patch related to the use of encryption contexts across forks, that ignores a failure to close a previous open session when reinitializing a context, instead of failing the reinitialization. Added a link to the Cryptographic Hardware Accelerators document to the engine pacakges description, to provide more detailed instructions to configure the engines. Revert the removal of the OPENSSL_ENGINE_CRYPTO symbol, currently used by openssh. There is an open PR to update openssh; when merged, this symbol can be safely removed. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com> Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> [refresh patches]
* nghttp2: bump to 1.37.0Hans Dedecker2019-03-101-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | cfb47d30 Take into account larger frame size for prioritization dbbe4e01 Remove unused field 371bc3a8 clang-format 5e7889c5 Update manual pages b1b2ad50 Bump up version number to 1.37.0, LT revision to 31:2:17 e043ca83 Update AUTHORS c2434dfb Simplify stream_less 816ad210 Reuse name when indexing header by referencing dynamic table f5feb16e Merge pull request #1295 from bratkartoffel/fix-compile-boringssl adf09f21 Merge pull request #1303 from donny-dont/fix-shared-install 2591960e Explicitly set install location when building shared libs d93842db nghttpx: Fix backend stall if header and request body are sent in 2 packets 8dc2b263 nghttpx: Use std::priority_queue 8d842701 Update manual pages de85b0fd Update README 5d6beed5 Merge branch 'nghttpx-backend-weight' 1ff9de4c nghttpx: Backend address selection with weight 34482ed4 Fix compilation with boringssl 9b6ced66 Bump up version number to 1.37.0-DEV Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* wolfssl: fix build in busybox environmentsMoritz Warning2019-03-102-2/+25
| | | | | | The configure script broke when used in alpine-3.9 based docker containers. Fixed in wolfSSL >3.15.7. Signed-off-by: Moritz Warning <moritzwarning@web.de>
* openssl: backport devcrypto changes from masterEneas U de Queiroz2019-03-099-25/+3678
| | | | | | | | | | | | | | | | | | | The patches to the /dev/crypto engine were commited to openssl master, and will be in the next major version (3.0). Changes: - Optimization in computing a digest in one operation, saving an ioctl - Runtime configuration options for the choice of algorithms to use - Command to dump useful information about the algorithms supported by the engine and the system. - Build the devcrypto engine as a dynamic module, like other engines. The devcrypto engine is built as a separate package by default, but options were added to allow building the engines into the main library. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com> [refresh patches] Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* libubox: bump to version 2019-02-27Yousong Zhou2019-03-011-4/+4
| | | | | | | | | | Contains the following change eeef7b5 blobmsg_json: blobmsg_format_string: do not escape '/' Resolves FS#2147 Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
* package/ncurses: change AR options to fix reproducible buildsAlexander Couzens2019-02-282-1/+23
| | | | | | | | | | ar has a deterministic (-D) and non-deterministic (-U) mode. OpenWrt is already using the deterministic mode by default, but ncurses' configure script force this to be non-deterministic. Since autoreconf fails to generate a new configure, the configure script is directly modified. Signed-off-by: Alexander Couzens <lynxis@fe80.eu>
* openssl: bump to release 1.1.1bEneas U de Queiroz2019-02-279-643/+5
| | | | | | | | | | | This is bugfix release that incorporated all of the devcrypto engine patches currently in the tree. The cleaning procedure in Package/Configure was not removing the dependency files, causing linking errors during a rebuild with different options. It was replaced by a simple make clean. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* popt: Use modern toolchain logicDaniel Engberg2019-02-261-6/+1
| | | | | | Replace define Build/Configure with CONFIGURE_ARGS Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* elfutils: fix install .so globMatt Merhar2019-02-261-3/+3
| | | | | | | Only libelf was being packaged correctly - libdw and libasm included just the symlinks. Signed-off-by: Matt Merhar <mattmerhar@protonmail.com>
* elfutils: fix DEPENDS for libelfPeter Wagner2019-02-171-2/+2
| | | | Signed-off-by: Peter Wagner <tripolar@gmx.at>
* openssl: patch to fix devcrypto sessions leakEneas U de Queiroz2019-02-171-0/+115
| | | | | | | | Applies a patch from https://github.com/openssl/openssl/pull/8213 that fixes an error where open /dev/crypto sessions were not closed. Thanks to Ansuel Smith for reporting it. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: add package for openssl.cnf, misc changesEneas U de Queiroz2019-02-122-8/+28
| | | | | | | | | | | | - Add the /etc/ssl/openssl.cnf as a separate package, to avoid breaking the transitional mechanism, allowing libopenssl_1.0* and libopenssl_1.1* to coexist. - Remove the (selecting) dependency on @KERNEL_AIO - Use global SOURCE_DATE_EPOCH Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: optimizations based on ARCH/small flashEneas U de Queiroz2019-02-123-1/+98
| | | | | | | | | | | | | | | | | | | Add a patch to enable the option to change the default ciphersuite list ordering to prefer ChaCha20 over AES-GCM. This is used by default for all platforms, except for x86_64 and aarch64. The assumption is that only the latter have AES-specific CPU instructions and asm code that uses them in openssl. Chacha20Poly1305 is 3x faster than AES-256 in systems without AES instructions, with an equivalent strength. Disable error messages by default except for devices with small flash or RAM, to aid debugging. Disable ASM by default on arm platform with small flash. Size difference on mips and powerpc, the other platforms with small flash devices, are not really relevant (using 100K as a threshold). All of the affected platforms are source-only anyway. Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: update to version 1.1.1aEneas U de Queiroz2019-02-1222-492/+774
| | | | | | | | | | | | | | | | | | | | | | | This version adds the following functionality: * TLS 1.3 * AFALG engine support for hardware accelleration * x25519 ECC curve support * CRIME protection: disable use of compression by default * Support for ChaCha20 and Poly1305 Patches fixing bugs in the /dev/crypto engine were applied, from https://github.com/openssl/openssl/pull/7585 This increses the size of the ipk binray on MIPS32 by about 32%: old: 693.941 bin/packages/mips_24kc/base/libopenssl1.0.0_1.0.2q-2_mips_24kc.ipk 193.827 bin/packages/mips_24kc/base/openssl-util_1.0.2q-2_mips_24kc.ipk new: 912.493 bin/packages/mips_24kc/base/libopenssl1.1_1.1.1a-2_mips_24kc.ipk 239.316 bin/packages/mips_24kc/base/openssl-util_1.1.1a-2_mips_24kc.ipk Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: add configuration options, disable ssl3Eneas U de Queiroz2019-02-1214-476/+376
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Adds the following configuration options: * using optimized assembler code (was always on before) * use of x86 SSE2 instructions * dyanic engine support * include error messages * Camellia, Gost, Idea, MDC2, Seed & Whirlpool algorithms * RFC3779, CMS protocols * VIA padlock hardware acceleration engine Installs openssl.cnf with the library as it is used by engines independent of the openssl util. Fixes DTLS option that was innefective before. Disables insecure SSL3 protocol and SHA0. Adds openwrt-specific targets to Configure script, including asm support for i386, ppc and mips64. Strips building dirs from CFLAGS shown in binary. Skips the fuzz directory during build. Removed include/crypto/devcrypto.h that was included here, to use the cryptodev-linux package, now that it was been moved from the packages feed to the main openwrt repository. This decreses the size of the ipk binray on MIPS32 by about 3.3%: old: 706.957 bin/packages/mips_24kc/base/libopenssl1.0.0_1.0.2q-2_mips_24kc.ipk 199.294 bin/packages/mips_24kc/base/openssl-util_1.0.2q-2_mips_24kc.ipk new: 693.941 bin/packages/mips_24kc/base/libopenssl1.0.0_1.0.2q-2_mips_24kc.ipk 193.827 bin/packages/mips_24kc/base/openssl-util_1.0.2q-2_mips_24kc.ipk Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
* openssl: update list of mirrorsSven Roederer2019-01-311-2/+2
| | | | | | Host "gd.tuwien.ac.at" does not exists anymore, so we replace it by "ftp.pca.dfn.de" from the official list of mirrors. Signed-off-by: Sven Roederer <devel-sven@geroedel.de>
* openssl: bump to 1.0.2qSven Roederer2019-01-301-2/+2
| | | | | | | | | This fixes the following security problems: * CVE-2018-5407: Microarchitecture timing vulnerability in ECC scalar multiplication * CVE-2018-0734: Timing vulnerability in DSA signature generation * Resolve a compatibility issue in EC_GROUP handling with the FIPS Object Module Signed-off-by: Sven Roederer <freifunk@it-solutions.geroedel.de>
* mbedtls: Kconfig option to enable/disable debug functionsMichael Heimpold2019-01-272-10/+28
| | | | | | | | | | | | | | | | | | | | | This introduces a new Kconfig option to switch on/off mbedtls' support for debug functions. The idea behind is to inspect TLS traffic with Wireshark for debug purposes. At the moment, there is no native or 'nice' support for this, but at https://github.com/Lekensteyn/mbedtls/commit/68aea15833e1ac9290b8f52a4223fb4585fb3986 an example implementation can be found which uses the debug functions of the library. However, this requires to have this debug stuff enabled in the library, but at the moment it is staticly patched out. So this patch removes the static part from the configuration patch and introduces a dynamic config file editing during build. When enabled, this heavily increases the library size, so I added a warning in the Kconfig help section. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* mbedtls: update to 2.16.0Deng Qingfang2019-01-272-27/+27
| | | | | | | | Refresh patch https://tls.mbed.org/tech-updates/releases/mbedtls-2.16.0-2.7.9-and-2.1.18-released Signed-off-by: Deng Qingfang <dengqf6@mail2.sysu.edu.cn>
* libelf: fix library packagingJo-Philipp Wich2019-01-251-2/+2
| | | | | | | | | The library has an usual shared object file name, which caused the install glob pattern to miss the actual so. Fixes: #2082 Fixes; 0e70f69a35 ("treewide: revise library packaging") Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* elfutils: rename libelf1 to libelfJo-Philipp Wich2019-01-241-5/+6
| | | | | | | | | | The ABI_VERSION:=1 tag will take care of transforming the binary library package basename. Add a virtual PROVIDES:=libelf1 for packages still having libelf1 in their DEPENDS:=... lists. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* treewide: revise library packagingJo-Philipp Wich2019-01-2431-55/+83
| | | | | | | | | | | - Annotate versionless libraries (such as libubox, libuci etc.) with a fixed ABI_VERSION resembling the source date of the last incompatible change - Annotate packages shipping versioned library objects with ABI_VERSION - Stop shipping unversioned library symlinks for packages with ABI_VERSION Ref: https://openwrt.org/docs/guide-developer/package-policies#shared_libraries Ref: https://github.com/KanjiMonster/maintainer-tools/blob/master/check-abi-versions.pl Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* uclient: set fixed ABI_VERSION on libuclientJo-Philipp Wich2019-01-241-1/+1
| | | | | | | | Last incompatible change appeared to be 4924411 ("http: add proper error handling to uclient_http_redirect()") which changed the return value of uclient_http_redirect() from bool to int. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* librpc: remove packageAndy Walsh2019-01-221-42/+0
| | | | | | | | | * replaced with packages/libtirpc * remove busybox options rarely used/deprecated BUSYBOX_CONFIG_FEATURE_MOUNT_NFS BUSYBOX_CONFIG_FEATURE_INETD_RPC Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
* ncurses: build host libraries with -fPICJo-Philipp Wich2019-01-221-1/+3
| | | | | | | Since readline/host links ncurses/host now, we need to ensure that the libncursesw.so host library is built with -fPIC. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* ncurses: package only versioned shared objectsJo-Philipp Wich2019-01-221-4/+8
| | | | | | | Also fix the libxxxw.so* -> libxxx.so* linking to actually work, the prevsious code failed to properly symlink the versioned .so files. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* readline: Update to 8.0 and various fixesDaniel Engberg2019-01-223-32/+30
| | | | | | | | | | | | | | | | Update (lib)readline to 8.0 Remove autoreconf Remove blankspace at the end of the lines in description Remove --enable-shared and --enable-static as they're enabled by default Remove TARGET_CPPFLAGS Simplify install sections Install readline.pc (pkgconfig) Add patch for linking (lib)ncurses Source: https://git.buildroot.net/buildroot/plain/package/readline/0000-curses-link.patch Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* libnetfilter-conntrack: update to 1.0.7Peter Wagner2019-01-221-3/+3
| | | | | | Signed-off-by: Peter Wagner <tripolar@gmx.at> [split from https://github.com/openwrt/openwrt/pull/1274] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* nghttp2: bump to 1.36.0Hans Dedecker2019-01-201-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | e7e8ee5f Update bash_completion b3b4e335 Update manual pages bd93d90a Don't treat text as option if it matches -[0-9] ea69c84b Bump up version number to 1.36.0 783b649b Update AUTHORS eb21e6f8 Merge branch 'update-http-parser' ab2aa567 Fix test failure ff87a542 Use http-parser 0d0a24e19eb5ba232d2ea8859aba2a7cc6c42bc4 439dbce6 Merge branch 'nghttpx-h1-connection-pool-per-addr' e9c9838c nghttpx: Pool h1 backend connection per address 803d4ba9 Merge branch 'nghttpx-randomize-roundrobin-order' 732245e5 make clang-format 9e8d5433 Use clang-format-7 fdcdb21c nghttpx: Randomize backend address round robin order per thread 11d0533c nghttpx: Ensure that cert serial does not exceed 20 bytes dbb5f00d Merge pull request #1287 from rckclmbr/fix_serial_size 9cc412e2 Merge pull request #1285 from staticinvocation/master 5b2efc0a Fix getting long serial numbers for openssl < 1.1 7e4c48a4 Disable shared library if ENABLE_SHARED_LIB is OFF 082e162f Merge pull request #1282 from alagoutte/travis 7cc7c06c .travis(.yml): no longer need llvm-toolchain-trusty-7 12ebeb30 .travis(.yml): Update to Xenial c78abbe1 Update mruby to 2.0.0 124c7848 nghttpx: Add missing return ce9667c4 Merge branch 'nghttpx-fix-trailing-slash-handling' f3f40840 nghttpx: Fix broken trailing slash handling 302abf1b h2load: Fix compile error with gcc 089a03be h2load: Write log file with write(2) de4fe728 Merge branch 'pyos-master' d1b3a83f h2load: add an option to write per-request logs eb679253 Merge branch 'puscas-port_in_use' 6800d317 added access to the number of the current server port c98362ea Bump up version number to 1.36.0-DEV Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* packages: set more explicit ABI_VERSION valuesJo-Philipp Wich2019-01-196-6/+6
| | | | | | | | | | | | | | | | | | | | | | In the case of upstream libraries, set the ABI_VERSION variable to the soname value of the first version version after the last backwards incompatible change. For custom OpenWrt libraries, set the ABI_VERSION to the date of the last Git commit doing backwards incompatible changes to the source, such as changing function singatures or dropping exported symbols. The soname values have been determined by either checking https://abi-laboratory.pro/index.php?view=tracker or - in the case of OpenWrt libraries - by carefully reviewing the changes made to header files thorough the corresponding Git history. In the future, the ABI_VERSION values must be bumped whenever the library is updated to an incpompatible version but not with every package update, in order to reduce the dependency churn in the binary package repository. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* elfutils: bump to 0.175Kevin Darbyshire-Bryant2019-01-141-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 4ea9a2db164c Update upload-release.sh script and po files. a01938d584b9 libelf: Mark both fsize and msize with const attribute. c338a0541663 libebl: Don't update w, t and len unnecessarily in ebl_object_note_type_name. 422b549007f6 Prepare for 0.175 22ec8efc1dd8 elflint: Allow PT_GNU_EH_FRAME segment to match SHT_X86_64_UNWIND section. cf10453f8252 libelf: Correctly setup alignment of SHF_COMPRESSED section data. d3e6266754b9 strip: Also handle gnu compressed debug sections with --reloc-debug-sections 72e30c2e0cb4 Handle GNU Build Attribute ELF Notes. 7a3f6fe60b85 Recognize NT_VERSION notes. cff53f1784c9 libcpu: Recognize bpf jump variants BPF_JLT, BPF_JLE, BPF_JSLT and BPF_JSLE ecbe3120cddb libdwelf: New function dwelf_elf_begin. 4b0342b85b5b backends: Add x86_64 section_type_name for SHT_X86_64_UNWIND. 825e48c4e942 Also find CFI in sections of type SHT_X86_64_UNWIND 4789e0fb92b0 libelf: Explicitly update section data after (de)compression. 1628254ba215 strip: Add --reloc-debug-sections-only option. f2d59180b90b strip: Extract code to update shdrstrndx into new common function. f6ae0ab9350e strip: Split out debug section relocation into separate helper functions. b15ee95bcee4 strip: Always copy over any phdrs if there are any. e574889d92b1 unstrip: Add ELF_CHECK to make sure gelf_getehdr () doesn't return NULL. 5199e15870e0 Recognize and parse GNU Property notes. b75ff1bbd060 addr2line: Use elf_getshdrstrndx not Ehdr field to print section name. 35197ea4c43e readelf: Use shstrndx to lookup section names. 9a74c190a2b3 backends: ppc use define instead of const for size of dwarf_regs array. 72d023b35f36 readelf: Make sure readp is smaller than cieend in print_debug_frame_section. dce0b3b63ba0 readelf: Make sure readp is smaller than cieend in print_debug_frame_section. 1e7c230b277b Check sh_entsize is not zero. 22d2d082d57a size: Handle recursive ELF ar files. 2b16a9be6993 arlib: Check that sh_entsize isn't zero. 4cdb0fd0d3b4 ar: Assume epoch if ar_date is bogus. 577511f66842 findtextrel: Check that sh_entsize isn't zero. 20f9de9b5f70 libdwfl: Sanity check partial core file data reads. 2f4a040fab52 readelf: Handle multiple .debug_macro sections and decode header flag. eee4269e5315 unstrip: Renumber the group section indexes. c06ab0bbb476 strip, unstrip: Handle SHT_GROUP correctly. 2876b3b648f6 Handle ADD/SUB relocations 69d6e67eee30 tests: backtrace-dwarf.c improve error handling in test framework. Originally-produced--by: Koen Vandeputte <koen.vandeputte@ncentric.com> Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* uclient: add ALTERNATIVES for wgetHans Dedecker2019-01-131-1/+2
| | | | | | | | Don't symlink uclient-fetch anymore to /bin/wget but rather use the ALTERNATIVES support for wget to install it as /usr/bin/wget. Let uclient-fetch provide wget Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* elfutils: fix gcc 8.0+ multistatement macros warning/errorChristian Lamparter2018-12-201-6/+8
| | | | | | | | | | | | | | | | | | | | | | GCC 8.0+ <https://gcc.gnu.org/gcc-8/changes.html> introduces a new warning about unsafe macros expanding to multiple statements used as a body of a statement such as if, else, while, switch, or for. In combination with -Werror this can cause the compilation to fail: |In file included from xmalloc.c:37: |xmalloc.c: In function 'xmalloc': |system.h:39:2: error: macro expands to multiple statements [-Werror=multistatement-macros] | fflush(stdout); \ | ^~~~~~ |xmalloc.c:52:5: note: in expansion of macro 'error' | error (EXIT_FAILURE, 0, _("memory exhausted")); | ^~~~~ |xmalloc.c:51:3: note: some parts of macro expansion are not guarded by this 'if' clause | if (p == NULL) | ^~ Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
* elfutils: produce correct libelf.pc file when building with full nlsJo-Philipp Wich2018-12-202-3/+27
| | | | | | | | | | | When building with full lagnuage support, libelf.so will depend on and link with libintl.so so we need to change the pkg-config template to reflect this library dependency. Also change the Makefile to only pass --disable-nls to configure when the full nls support is actually disabled in the buildroot config. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* elfutils: install library files for pkg-configTony Ambardar2018-12-191-0/+3
| | | | | | | Support other packages using pkg-config to query existence and details of libelf and libdw libraries at build time. Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
* Revert "elfutils: install library files for pkg-config"Kevin Darbyshire-Bryant2018-12-161-3/+0
| | | | | | | | | | | | This reverts commit 216397b8124dafafbd79afdf9f8e716b55775194. Due to: Package ip-tiny is missing dependencies for the following libraries: libelf.so.1 Makefile:187: recipe for target '/var/lib/buildbot/slaves/slave-lede-builds4/mips_24kc/build/sdk/bin/packages/mips_24kc/base/ip-tiny_4.19.0-6_mips_24kc.ipk' failed Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* mbedtls: fix compilation on ARM < 6Hauke Mehrtens2018-12-161-0/+27
| | | | | | | | mbedtls uses some instructions introduced in ARMv6 which are not available in older architectures. Fixes: 3f7dd06fd85 ("mbedtls: Update to 2.14.1") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mbedtls: Update to 2.14.1Daniel Engberg2018-12-162-26/+26
| | | | | | | | | | | Update mbedtls to 2.14.1 This fixes: * CVE-2018-19608: Local timing attack on RSA decryption Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net> [Update to 2.14.1] Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>