- 21 Jun, 2017 16 commits
-
-
Adam Duskett authored
Signed-off-by:
Adam Duskett <aduskett@codeblue.com> Signed-off-by:
Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Sergey Matyukevich authored
Add xradio driver to enable on-board SDIO WiFi chip XR819. Signed-off-by:
Sergey Matyukevich <geomatsi@gmail.com> Signed-off-by:
-
Sergey Matyukevich authored
This patch adds xradio wireless driver for SDIO WiFi chip XR819. The out-of-tree driver is sourced from fifteenhex's work on github https://github.com/fifteenhex/xradio Signed-off-by:
-
Marcin Niestroj authored
Signed-off-by:
Marcin Niestroj <m.niestroj@grinn-global.com> [Thomas: "depends on" before "select" in Config.in] Signed-off-by:
-
Vicente Olivert Riera authored
This patch backports two patches that have been sent upstream as a pull request in order to fix sshd for MIPS64 n32. The first patch adds support for detecting the MIPS ABI during the configure phase. The second patch sets the right value to seccomp_audit_arch taking into account the MIPS64 ABI. Currently seccomp_audit_arch is set to AUDIT_ARCH_MIPS64 or AUDIT_ARCH_MIPSEL64 (depending on the endinness) when openssh is built for MIPS64. However, that's only valid for n64 ABI. The right macros for n32 ABI defined in seccomp.h are AUDIT_ARCH_MIPS64N32 and AUDIT_ARCH_MIPSEL64N32, for big and little endian respectively. Because of that an sshd built for MIPS64 n32 rejects connection attempts and the output of strace reveals that the problem is related to seccomp audit: [pid 194] prctl(PR_SET_SECCOMP, SECCOMP_MODE_FILTER, {len=57, filter=0x555d5da0}) = 0 [pid 194] write(7, "\0\0\0]\0\0\0\5\0\0\0Ulist_hostkey_types: "..., 97) = ? [pid 193] <... poll resumed> ) = 2 ([{fd=5, revents=POLLIN|POLLHUP}, {fd=6, revents=POLLHUP}]) [pid 194] +++ killed by SIGSYS +++ Pull request: https://github.com/openssh/openssh-portable/pull/71 Signed-off-by:Vicente Olivert Riera <Vincent.Riera@imgtec.com> Signed-off-by:
-
Marcin Niestroj authored
Add support for specifying multiple image files in BR2_TARGET_BAREBOX_IMAGE_FILE config option. This is useful for boards with several RAM size variants. Signed-off-by:
-
Ludovic Desroches authored
Bump at91sam9x5ek, atmel_sama5d2_xplained, atmel_sama5d3_xplained and atmel_sama5d4_xplained to linux4sam_5.6. Signed-off-by:
Ludovic Desroches <ludovic.desroches@microchip.com> Signed-off-by:
-
Ludovic Desroches authored
Default bootargs have changed in U-Boot for this board. Build U-Boot environment and add it to the SD card image to update bootargs. Signed-off-by:
-
Ludovic Desroches authored
at91sam9x5ek_mmc board was missing in the previous patch adding 1M offset for FAT partition to solve some boot issues with the ROM code. Signed-off-by:
-
Venkateswara Rao Mandela authored
Updating version to latest as on 26 June 2017 to include kmstest utility Signed-off-by:
Venkateswara Rao Mandela <venkat.mandela@ti.com> Signed-off-by:
-
Alexander Dahl authored
Upstream uploaded a new tarball with the same version number 2016-09-08, some time after the update to v2.0.9 in buildroot. Someone noticed, but upstream set the ticket to wontfix, and promised to do better in the future: https://sourceforge.net/p/iperf2/tickets/20/ Signed-off-by:
Alexander Dahl <post@lespocky.de> Signed-off-by:
-
Peter Korsgaard authored
Fixes the following security issues: CVE-2017-1000381: The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. https://c-ares.haxx.se/adv_20170620.html Signed-off-by:
Peter Korsgaard <peter@korsgaard.com> Signed-off-by:
-
- 20 Jun, 2017 24 commits
-
-
Koen Martens authored
remove input-tools, it has been obsoleted by linuxconsoletools linuxconsoletools uses the same name as upstream and carries the latest version of the tools installed by input-tools. Signed-off-by:
Koen Martens <gmc@sonologic.nl> Signed-off-by:
-
Peter Korsgaard authored
Fixes the following security issues: CVE-2017-3167: In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed. CVE-2017-3169: In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port. CVE-2017-7659: A maliciously constructed HTTP/2 request could cause mod_http2 to dereference a NULL pointer and crash the server process. CVE-2017-7668: The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows ap_find_token() to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a segmentation fault, or to force ap_find_token() to return an incorrect value. CVE-2017 -7679: In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_mime can read one byte past the end of a buffer when sending a malicious Content-Type response header. While we're at it, use the upstream sha256 checksum instead of sha1. Signed-off-by:
-
Peter Korsgaard authored
Fixes the following security issues: CVE-2017-3140 is a denial-of-service vulnerability affecting 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, and 9.10.5-S1 when configured with Response Policy Zones (RPZ) utilizing NSIP or NSDNAME rules. https://kb.isc.org/article/AA-01495/74/CVE-2017-3140 CVE-2017-3141 is a Windows privilege escalation vector affecting 9.2.6-P2+, 9.3.2-P1+, 9.4.x, 9.5.x, 9.6.x, 9.7.x, 9.8.x, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.11.0->9.11.1, 9.9.3-S1->9.9.10-S1, and 9.10.5-S1. The BIND Windows installer failed to properly quote the service paths, possibly allowing a local user to achieve privilege escalation, if allowed by file system permissions. https://kb.isc.org/article/AA-01496/74/CVE-2017-3141 Signed-off-by:
-
Alexandre Esse authored
Fixes: http://autobuild.buildroot.net/results/6e1eabd691b8674f61898bc0fe734208d226f965/ Signed-off-by:
Alexandre Esse <alexandre.esse.dev@gmail.com> Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
Signed-off-by:
-
Adam Duskett authored
janus-gateway supports many different transports, and currently there is no implicit way to turn them off or on. Instead, if the dependency happens to be built, then the transport is enabled. Create a transports section in the config file and add BR2_PACKAGE_JANUS_REST as the first transport. Signed-off-by:
-
Thomas Petazzoni authored
Such a construct allows to bail out if the installation of one of the program fails, which the current shell-based for loop doesn't do. Signed-off-by: -
Adam Duskett authored
This revision includes: - Moving from a handwritten makefile to autotools. - Restructuring and cleaning up the source tree. - Fixing the problems that the patches in the package/mtd directory fixed. Changes: - Move from generic-package to autotools-package in mtd.mk. - Remove no longer necessary patches. - Update binary locations in mtd.mk - Update library/header locations in mtd.mk - Remove MTD_ADD_MISSING_LINTL definition from mtd.mk, as it's no longer needed. Tested with toolchains compiled with musl, uclibc, and glibc. Signed-off-by: -
Bernd Kuhls authored
Signed-off-by:
Bernd Kuhls <bernd.kuhls@t-online.de> [Thomas: update hash file.] Signed-off-by:
-
Bernd Kuhls authored
In buildroot ffmpeg uses x264 as optional dependency if BR2_PACKAGE_FFMPEG_GPL is enabled at the same time. If BR2_PACKAGE_FFMPEG_GPL is disabled and ffmpeg is built without x264 support before x264 itself is build, x264 picks up certain ffmpeg libs as optional dependency leading to build errors because x264 does not correctly link statically against ffmpeg. To avoid a circular dependency and to avoid teaching x264 how to correctly link statically with ffmpeg we just disable all ffmpeg- related options. Fixes http://autobuild.buildroot.net/results/36a/36abb5b8f3aab57fb7b63056b216b4a58143ee3e/ Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to check whether librt is required for clock_* system calls. Cc: Rhys Williams <github@wilberforce.co.nz> Signed-off-by:
Baruch Siach <baruch@tkos.co.il> Reviewed-by:
"Yann E. MORIN" <yann.morin.1998@free.fr> Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to check whether librt is required for clock_* system calls. Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to check whether librt is required for clock_* system calls. Cc: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to link with librt for clock_* system calls. Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to link with librt for clock_* system calls. The following patches are not renumbered. The noise is too high. Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to link with librt for clock_* system calls. Cc: Michael Rommel <rommel@layer-7.net> Signed-off-by:
-
Baruch Siach authored
Buildroot no longer supports toolchains with glibc older than 2.17, so there is no need to link with librt for clock_* system calls. Cc: Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by:
-
Baruch Siach authored
The CodeSourcery x86 and sh, the ADI Blackfin, and the Xilinx Mircoblaze external toolchain profiles have all been removed. Update the manual. Signed-off-by:
-
Baruch Siach authored
Remove mention of toolchains the we don't have. Signed-off-by:
-
Baruch Siach authored
The CodeSourcery sh toolchain has been removed. Drop negative dependencies on that toolchain. Signed-off-by:
-
