aboutsummaryrefslogtreecommitdiff
path: root/package/libs
Commit message (Collapse)AuthorAge
* libxml2: update to 2.12.5Nick Hainke2024-02-13
| | | | | | | | Release Notes: https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.5 Fixes: CVE-2024-25062 Signed-off-by: Nick Hainke <vincent@systemli.org>
* zlib: update to 1.3.1Nick Hainke2024-02-02
| | | | | | | | | | Release Notes: https://github.com/madler/zlib/releases/tag/v1.3.1 Refresh patch: - 004-attach-sourcefiles-in-patch-002-to-buildsystem.patch Signed-off-by: Nick Hainke <vincent@systemli.org>
* openssl: update to 3.0.13Ivan Pavlov2024-02-02
| | | | | | | | | | | | | | | | Major changes between OpenSSL 3.0.12 and OpenSSL 3.0.13 [30 Jan 2024] * Fixed PKCS12 Decoding crashes ([CVE-2024-0727]) * Fixed Excessive time spent checking invalid RSA public keys ([CVE-2023-6237]) * Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129]) * Fix excessive time spent in DH check / generation with large Q parameter value ([CVE-2023-5678]) Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
* libbsd: update to 0.11.8Nick Hainke2024-01-30
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: edddd80 Release libbsd 0.11.8 dd0bdb5 test: Close all descriptors before initializing them for closefrom() 0813f37 build: Check out-of-tree builds in CI df116b5 Adjust strlcpy() and strlcat() per glibc adoption ecb44e1 Do not add a pointer to the NULL constant 459b7f7 Do not confuse code analyzers with out-of-bounds array access look alike a44f885 test: Fix short-lived memory leak 3f5ca0a build: Add a coverage regex to the CI job 9d3e59a man: Use VARIANTS instead of ALTERNATIVES in libbsd(7) f02562d man: Markup function references with Xr instead of Fn b7367c9 build: Add missing dash to macro title bar 6777eb6 pwcache: Do not declare uidtb and gidtb when not used d4e0cdc fgetln: Include <stdio.h> after <sys/*> f41d6c1 build: Refactor GNU .init_array support check into a new m4 function 30b48ed build: Refactor linker script detection into a new m4 function d0d8d01 build: Do not provide prototypes for arc4random() on Solaris cf61ebb build: Do not build the progname module if it is not needed 73b25a8 build: Sort entries alphabetically 5434ba1 build: Conditionalize wcslcpy() and wcslcat() functions on macOS dc1bd1a build: Conditionalize only id-from-name functions not the entire pwcache edc746e build: Conditionalize getprogname()/setprogname on macOS 8f998d1 progname: Include <procinfo.h> if available d08163b build: Check whether we need libperfstat on AIX 1186cf8 build: Annotate droppable functions for musl on next SOVERSION bump 6385ccc build: Conditionalize bsd_getopt() on macOS c120681 Move the version script comments before the symbols 9fa0676 Port getprogname() to AIX 92337b1 Make getprogname() porting mandatory 90b7f3a test: Do not use /dev/null as compiler output file 426bf45 build: Add generated *.sym files to .gitignore 21d12b0 build: On macOS do not build functions provided by the system bc65806 build: Select whether to include funopen() in the build system 8b7a4d9 build: Move Windows OS detection to the OS features section ccbfd1c build: Remove __MUSL__ definition from configure e0976d7 build: Add a new libbsd_strong_alias() macro and switch users to it 49c7dd1 build: Only emit link warnings for ELF objects 8622767 build: Use an export symbols file if there is no version script support 8f61036 build: Add -no-undefined libtool flag ae7942b build: Do not override the default DEPENDENCIES for libbsd a5faf17 Only use <stdio_ext.h> if present 06e8a1b Define _NSIG if it is not defined by the system 44824ac Declare environ if the system does not do so 1fb6c3f Use lockf() when flock() is not available fe16f38 test: Use open_memstream() only if available 7c652a9 test: Do not hardcode root:root user and group names ed2eb31 test: Fix closefrom() test on macOS 0f8bcdf test: Fix closefrom() test to handle open file descriptor limits 07192b3 test: Disable blank_stack_side_effects() on non-Hurd systems ca3db5e build: Do not enable ASAN for musl CI pipelines ff46386 man: Add HISTORY section to arc4random(3bsd) 4c6da57 man: Switch arc4random(3bsd) man page from OpenBSD to NetBSD 830dd88 doc: Remove written-by attribution 257800a build: Add support for sanitizer compiler flags 536a7d4 test: Exempt blank_stack_side_effects() from sanitizer checks 7ed5de0 test: Import explicit_bzero() sanitizer support changes from OpenBSD 05a802a test: Fix memory leaks in fpurge test 5962e03 man: Fix BSD and glibc versions 59a21c7 man: Update STANDARDS and HISTORY sections 7b4ebd6 include: Adjust closefrom() per glibc adoption 0dfbe76 build: Switch to debian:latest Docker image dec783d build: Fix version script linker support detection fe21244 include: Use __has_builtin to detect __builtin_offsetof support ec88b7b funopen: Replace off64_t with off_t in funopen_seek() 2337719 man: Prune unneeded <sys/types.h> include in setproctitle(3) 5dea9da build: Improve C99 compatibility of __progname configure check b9bf42d build: Enable -Wall for automake e57c078 build: Add missing AM_PROG_AR macro call to configure.ac 80f1927 build: Fix configure.ac indentation b7a8bc2 build: Require automake 1.11 e508962 build: Do not require funopen() to be ported 00b538f build: Terminate lists in variables with «# EOL» 5cfa39e build: Use «yes» instead of «true» for AC_CHECK_FUNCS cache value Signed-off-by: Nick Hainke <vincent@systemli.org>
* mbedtls: security bump to version 2.28.7orangepizza2024-01-29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | This release of Mbed TLS provides bug fixes and minor enhancements. This release includes fixes for following security issues: * Timing side channel in private key RSA operations (CVE-2024-23170) Mbed TLS is vulnerable to a timing side channel in private key RSA operations. This side channel could be sufficient for an attacker to recover the plaintext. A local attacker or a remote attacker who is close to the victim on the network might have precise enough timing measurements to exploit this. It requires the attacker to send a large number of messages for decryption. * Buffer overflow in mbedtls_x509_set_extension() (CVE-2024-23775) When writing x509 extensions we failed to validate inputs passed in to mbedtls_x509_set_extension(), which could result in an integer overflow, causing a zero-length buffer to be allocated to hold the extension. The extension would then be copied into the buffer, causing a heap buffer overflow. Fixes: CVE-2024-23170, CVE-2024-23775 References: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-01-1/ References: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-01-2/ Signed-off-by: orangepizza <tjtncks@gmail.com> Signed-off-by: Petr Štetiar <ynezz@true.cz> [formal fixes]
* libubox: update to Git HEAD (2024-01-26)Felix Fietkau2024-01-26
| | | | | | | 6339204c212b CMakeLists.txt: bump minimum cmake version c1be505732e6 udebug: fix crash in udebug_entry_vprintf with longer strings Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libtracefs: update to 1.8Nick Hainke2024-01-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes: 67f3b2a libtracefs: version 1.8 8a1322f libtracefs utest: Add tests to use mapping if supported 0a65b79 libtracefs: Add tracefs_mapped_is_supported() API 805f650 libtracefs: Call mmap ioctl if a refresh happens cf7e2a5 libtracefs: Fix tracefs_mmap() kbuf usage 3a26b26 libtracefs: Have nonblock tracefs_cpu reads set errno EAGAIN 2b5bb09 libtracefs: Have tracefs_mmap_read() include subbuf meta data dee0448 libtracefs: Have mapping work with the other tracefs_cpu* functions 28eebc1 libtracefs: Have tracefs_cpu_flush(_buf)() use mapping 065d914 libtracefs: Use mmapping for iterating raw events 1124e0e libtracefs: Use tracefs_cpu_*_buf() calls for iterator f43b293 libtracefs: Unmap mmap mapping on tracefs_cpu close 0d24516 libtracefs Documentation: Fix tracefs_cpu_snapshot_open() man pages 5ff31c0 libtracefs Documentation: Add tracefs_follow_events_clear() to main man page 0c7d9f7 libtracefs: Add man pages for tracefs_snapshot_*() functions b2dc3e0 libtracefs sql: Rename TIMESTAMP_USECS_DELTA to TIMESTAMP_DELTA_USECS 585ec77 libtracefs: Force off trace mmapping 2ed14b5 libtracefs: Add ring buffer memory mapping APIs 173ffc0 libtracefs meson: Add option to disable samples a55e2e8 libtracefs meson: Add option to disable documentation 93e20af libtracefs: Fix tracefs_instance_reset to clear synthetic events a1ecbff libtracefs utest: Add more tests to test tracefs_sql() 975c37c libtracefs utest: Add matches to trace_sql() tests 0567e2d libtracefs synthetic: Handle hashed name variables fcb3a83 libtracefs synthetic: Remove multiple adding of action in tracefs_synth_save() a9dae65 libtracefs: Fix sqlhist used uninitialized error fe7a467 libtracefs: Add updating and reading snapshot buffers 1ad57ab libtracefs: Add PID filtering API d8726bf libtracefs: Also clear max_graph_depth on reset eb4dd60 libtracefs: Add TIMESTAMP_USECS_DELTA to simplify SQL timestamp compares 8c57eb4 libtracefs: Add tracefs_instance_set/get_subbuf_size() 9bafb21 libtracefs: Add API to extract ring buffer statistics 141d25e libtracefs: Add tracefs_load_headers() API ef3fae7 libtracefs: Add kerneldoc comments to tracefs_instance_set_buffer_size() 31acfe1 libtracefs utest: Add test to test tracefs_instance_set/get_buffer_percent() 3e6d975 libtracefs: Add tracefs_instance_clear() API c4efaaf libtracefs: Add tracefs_instance_get/set_buffer_percent() 1e1cc54 libtracefs: Add API to read tracefs_cpu and return a kbuffer 7d395b1 libtracefs: Add tracefs_instance_file_write_number() e34cbd8 libtracefs: Increase splice to use pipe max size 1f50965 libtracefs: Add API to remove followers from an instance or toplevel 576ee0b libtracefs: Reset tracing before and after unit tests 118b694 libtracefs: Free dynamic event list in utest 5159973 libtracefs: Free tracing_dir in case of remount df563eb libtracefs: Free buf in clear_func_filter() 3cbac37 libtracefs: Free "missed_followers" of instance 0cbe56e libtracefs testing: Use one tep handle for most tests adac30f libtracefs Documentation: Fix tracefs_event_file_exists() issues 07ab199 libtracefs: Pass enum value where expected instead of int bb299b4 libtracefs: fix cscope makefile rule 420d677 libtracefs: Free "followers" when freeing instance 3f436fc libtracefs: Fix documentation of tracefs_trace_pipe_stream() flags 1fde9df libtracefs: Add explicit pthread dependency to meson d1989ae tracefs-perf: Add missing headers for syscall() and SYS_* defines Signed-off-by: Nick Hainke <vincent@systemli.org>
* libtraceevent: update to 1.8.2Nick Hainke2024-01-25
| | | | | | | | | | | | | | | | | | | | | | | | | Changelog: 6f6d580 libtraceevent: 1.8.2 b29b192 kbuffer: Update kbuf->next in kbuffer_refresh 4b2286c kbuffer: Always walk the events to calculate timestamp in kbuffer_read_buffer() ce0acec libtraceevent meson: Add libdl dependency to meson 15a0121 libtraceevent Documentation: Fix tep_kbuffer() prototype 85a2078 libtraceevent: 1.8.1 6b21b4c libtraceevent: Add tep_get_sub_buffer_data_size() 8cf5315 libtraceevent: 1.8 7a4d5b2 kbuffer: Add kbuffer_refresh() API 33bad32 kbuffer: Add kbuffer_subbuffer() API f6bdff7 kbuffer: Add kbuffer_dup() 0582118 kbuffer: Add kbuffer_read_buffer() 014ca24 libtraceevent: Fix tep_kbuffer() to have kbuf assign long_size afead9a libtraceevent: Add tep_get_sub_buffer_commit_offset() 3152506 libtraceevent plugins: Parse sched_switch "prev_state" field for state info 4be92aa libtraceevent: Bump meson version to >=0.58.0 9b2e543 libtraceevent: sync state char array with the kernel 5b89385 libtraceevent: Add option to disable documentation a496a39 libtraceevent: Add tep_record_is_event() API Signed-off-by: Nick Hainke <vincent@systemli.org>
* libxml2: update to 2.12.4Nick Hainke2024-01-24
| | | | | | | Release Notes: - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.4 Signed-off-by: Nick Hainke <vincent@systemli.org>
* gettext-full: use autoreconf host fixupAlexander Egorenkov2024-01-15
| | | | | | | | | | To prevent use of host's library path on Void Linux: /usr/lib/libacl.so: file not recognized: file format not recognized collect2: error: ld returned 1 exit status libtool: error: error: relink 'libgettextlib.la' with the above command before installing it Signed-off-by: Alexander Egorenkov <egorenar-dev@posteo.net>
* libubox: work around recent macOS linker changeFelix Fietkau2024-01-09
| | | | | | | | | rpath handling seems to be more restrictive now. To deal with this, link the libubox library from STAGING_DIR_HOST to STAGING_DIR_HOSTPKG, so that packages installed to STAGING_DIR_HOSTPKG can pick it up. This mainly affects ucode, but possibly other host builds as well Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mpfr: import from packages feedHannu Nyman2024-01-04
| | | | | | | Import mpfr from the packages feed to the main OpenWrt repo, as gdb 14 requires mpfr. Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
* libnl: update to 3.9.0Nick Hainke2024-01-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes: bdf83151 libnl-3.9.0 release aa7353fd include/linux-private: import 'seg6 local' headers from kernel tree 9466f680 lib: remove unused assignment in nl_addr_parse() acd05d6e route/tc: avoid integer overflow in rtnl_tc_calc_cell_log() daa8efcb xfrm: return -NLE_MISSING_ATTR from xfrmnl_sa_get_auth_params() d8a1ff30 xfrm: fix leaking usertemplate in xfrmnl_sp_parse() 4fcb0757 socket: workaround coverity warning about time_t handling f743c62f github: update Fedora image and version for clang-format f33e8cd6 clang-format: rework container script aea3f9f2 lib: fix signed overflow warning in nl_object_diff() 57e01706 socket: explicitly cast time() to uint32_t 46e8739e src: fix leak in "nl-cls-add" a06c8f76 route/cls: add get/take wrappers for rtnl_act_append() 7912b4f9 route/cls: fix leak in error handling of rtnl_flower_append_action() efd65feb route: fix just introduced use-after-free in rtnl_act_parse() 105a6be1 route: use cleanup macro in rtnl_act_parse() 78246da7 nl-aux-route: add cleanup macro for rtnl_act_put_all() 72762b20 base: add _NL_AUTO_DEFINE_FCN_INDIRECT0() macro a70f789a route: fix memleak in rtnl_act_parse() 65ab16f2 base: don't use static array indices for buffer argument of _nl_inet_ntop() 444e2c04 route/can: implement can_device_stats a4718e67 github: build with "-fexceptions" CFLAGS 2f485cc7 xfrm: refactor error handling in XFRM parsing 01bd8fb0 include: add "nl-aux-xfrm" helpers 49c20efa xfrm: fix crashes in case of ENOMEM 9e7b5c86 xfrm: refactor nl_addr_build() calls in XFRM code dbfd87b1 xfrm: use cleanup attribute for nl_addr in XFRM parsing db424835 xfrm: fix error code for NLE_ENOMEM in xfrmnl_ae_parse() 9c97deff xfrm: fix parsing address in xfrmnl_ae_parse() 8b6dc834 nl-aux-core: add _nl_addr_build() helper 057aac13 nl-base-utils: add _nl_addr_family_to_size() helper 664f8f1b xfrm: clear XFRM_SP_ATTR_TMPL when removing the last template from a policy c4c22d26 xfrm/sp: fix reference counters of sa selector/tmpl addresses 5979fcb0 route/link: add bonding interface options set rtnl apis a735989c build: fix declaring special targets as ".PHONY" 052a97cb Makefile.am: avoid use of non-portable echo arguments 9aab12df python: Use correct decorator syntax in HTBQdisc Signed-off-by: Nick Hainke <vincent@systemli.org>
* libxml2: update to 2.12.3Nick Hainke2024-01-04
| | | | | | | | Release Notes: - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.2 - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.3 Signed-off-by: Nick Hainke <vincent@systemli.org>
* wolfssl: update to 5.6.6Nick Hainke2024-01-02
| | | | | | | | | | | Release Notes: https://github.com/wolfSSL/wolfssl/releases/tag/v5.6.6-stable Refresh patches: - 100-disable-hardening-check.patch Fixes: CVE-2023-6935 CVE-2023-6936 CVE-2023-6937 Signed-off-by: Nick Hainke <vincent@systemli.org>
* libxml2: update to 2.12.1Nick Hainke2023-12-07
| | | | | | | | | | | Release Notes: - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.0 - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.1 Remove patch: - 010-iconv.patch Signed-off-by: Nick Hainke <vincent@systemli.org>
* udebug: update to Git HEAD (2023-12-06)Felix Fietkau2023-12-06
| | | | | | 6d3f51f9fda7 ucode: check for errors in ftruncate() Signed-off-by: Felix Fietkau <nbd@nbd.name>
* netifd: update to Git HEAD (2023-12-05)Felix Fietkau2023-12-05
| | | | | | | | | | 02bc2e14d1d3 udebug: use helper code for ubus config handling 1b967334189b netifd: add netlink udebug ring 061e308f9f7d debug: remove newline from debug messages f1763852dfba bridge: fix reload on bridge vlan changes cc9e928f0a12 bridge: rework config change pvid handling Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libnl-tiny: update to Git HEAD (2023-12-05)Felix Fietkau2023-12-05
| | | | | | | | af57bb123f93 socket: add debug callbacks for rx/tx 785e11aee7dd socket: call rx debug callback once per packet instead of per batch 965c4bf49658 socket: change debug callbacks to pass struct nl_msg Signed-off-by: Felix Fietkau <nbd@nbd.name>
* udebug: update to Git HEAD (2023-12-05)Felix Fietkau2023-12-05
| | | | | | | | | dc24a1010d7b lib: fix handling global enable flag c7ef98d3d3f7 lib-ucode: retry partial writes e259bbd49cf7 lib-ucode: truncate pcap files a296f1bac430 lib: add netlink handler function Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libxml2: update to 2.11.6Nick Hainke2023-12-04
| | | | | | | | Release Notes: - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.5 - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.6 Signed-off-by: Nick Hainke <vincent@systemli.org>
* libubox: update to Git HEAD (2023-12-04.1)Felix Fietkau2023-12-04
| | | | | | ca3f6d0cdb1e udebug: fix file descriptor initialization for __udebug_buf_map Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libubox: update to Git HEAD (2023-12-04)Felix Fietkau2023-12-04
| | | | | | | d27acfe416d6 udebug: add more checks for uninitialized buffers df5b7147f47a udebug: add mips specific quirk Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libbpf: Update to v1.3.0Tony Ambardar2023-11-30
| | | | | | | | Update to the latest upstream release to include recent improvements and bugfixes. Also refresh local patches. Link: https://github.com/libbpf/libbpf/releases/tag/v1.3.0 Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
* hostapd: use new udebug ubus api to make debug rings configurableFelix Fietkau2023-11-30
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* udebug: add more entries for the default configFelix Fietkau2023-11-30
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libubox: update to Git HEAD (2023-11-30)Felix Fietkau2023-11-30
| | | | | | | | 325fea5c57cf udebug: add functions for manipulating entry length e84c000c4756 udebug: add inline helper function to test if a buffer is allocated 40acbe34632b udebug: wait for response after buffer add/remove Signed-off-by: Felix Fietkau <nbd@nbd.name>
* udebug: update to Git HEAD (2023-11-30)Felix Fietkau2023-11-30
| | | | | | | | | | d49aadabb7a1 lib: fix dealing with udebugd restarts 9ec5fbb6aaad ubus: report ring size and data size via ubus api 86b4396baa44 ring: add debug messages for ring alloc errors e02306af7c50 lib: add helper function for applying ring config b613879cb049 client: send confirmation messages for ring add/remove Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libubox: update to Git HEAD (2023-11-28)Felix Fietkau2023-11-28
| | | | | | | | b77f2a4ce903 uloop: fix build using C++ compilers 260ad5bd1566 udebug: add ulog support e80dc00ee90c link librt if needed for shm_open Signed-off-by: Felix Fietkau <nbd@nbd.name>
* udebug: move ubus dependency to libudebugFelix Fietkau2023-11-27
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* udebug: update to Git HEAD (2023-11-27)Felix Fietkau2023-11-27
| | | | | | | | | | a2301fa3b0c6 README: add wireshark info cfd83ccc1e4e server: properly handle unclaimed file descriptors cb71f64de0ec lib: remove leftover debug code a92101631c0d lib: fix avl tree lookup d4b99820afd0 lib: move library code to libubox, add ubus config handling code Signed-off-by: Felix Fietkau <nbd@nbd.name>
* libubox: update to Git HEAD (2023-11-27)Felix Fietkau2023-11-27
| | | | | | | | | | | 82fa6480de7a uloop: add support for interval timers 13d9b04fb09d uloop: add support for user defined signal handlers f7d156911311 uloop: properly initialize signal handler mask 8a5a4319a85c uloop: fix typo in signal handling rework b3fa3d92e3eb uloop: reset flags after __uloop_fd_delete call d4c3066e7c5e udebug: add udebug library code Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ustream-ssl: update to Git HEAD (2023-11-26)Hauke Mehrtens2023-11-26
| | | | | | | 91666a3 ustream-mbedtls: Add compatibility with Mbed TLS 3.0.0 263b9a9 cmake: Fail if undefined symbols are used Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* udebug: update to Git HEAD (2023-11-20)Felix Fietkau2023-11-20
| | | | | | 759d9404034b ring: add missing fread return code check Signed-off-by: Felix Fietkau <nbd@nbd.name>
* netifd: update to Git HEAD (2023-11-20), adds udebug supportFelix Fietkau2023-11-20
| | | | | | | | | 9dcc37a77cb2 add udebug support 525fa911e8ab replace DPRINTF calls with D(...) 7642eaba3838 system-linux: fix bogus debug error messages on adding bridge members f3e06e81b347 wireless: add bridge_isolate option Signed-off-by: Felix Fietkau <nbd@nbd.name>
* udebug: add new packageFelix Fietkau2023-11-20
| | | | | | | This will help with debugging by providing system wide access to per-process ring buffers with debug data. Signed-off-by: Felix Fietkau <nbd@nbd.name>
* wolfssl: update to 5.6.4Nick Hainke2023-11-10
| | | | | | | | | | Releae Notes: https://github.com/wolfSSL/wolfssl/releases/tag/v5.6.4-stable Remove upstreamed patch: - 001-fix-detection-of-cut-tool-in-configure.ac.patch Signed-off-by: Nick Hainke <vincent@systemli.org>
* mbedtls: Activate secp521r1 curve by defaultHauke Mehrtens2023-11-06
| | | | | | | | | | | | | | | | | Activate the secp521r1 ecliptic curve by default. This curve is allowed by the CA/Browser forum, see https://cabforum.org/wp-content/uploads/CA-Browser-Forum-BR-v2.0.1-redlined.pdf#page=110 This increases the size of libmbedtls12_2.28.5-1_aarch64_generic.ipk by about 400 bytes: Without: 252,696 libmbedtls12_2.28.5-1_aarch64_generic.ipk With: 253,088 libmbedtls12_2.28.5-2_aarch64_generic.ipk Fixes: #13774 Acked-by: Koen Vandeputte <koen.vandeputte@citymesh.com> Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* libsepol: opt-out of lto usageAnari Jalakas2023-10-29
| | | | | | | | | | | This fixes building with USE_LTO enabled. <artificial>:(.text+0x4194): relocation R_MIPS16_26 against `cil_printf.lto_priv.0' cannot be used when making a shared object; recompile with -fPIC ./openwrt/staging_dir/toolchain-mips_24kc_gcc-12.3.0_musl/lib/gcc/mips-openwrt-linux-musl/12.3.0/../../../../mips-openwrt-linux-musl/bin/ld.bfd: non-dynamic relocations refer to dynamic symbol memcmp ./openwrt/staging_dir/toolchain-mips_24kc_gcc-12.3.0_musl/lib/gcc/mips-openwrt-linux-musl/12.3.0/../../../../mips-openwrt-linux-musl/bin/ld.bfd: failed to set dynamic section sizes: bad value collect2: error: ld returned 1 exit status Signed-off-by: Anari Jalakas <anari.jalakas@gmail.com>
* libselinux: opt-out of lto usageAnari Jalakas2023-10-29
| | | | | | | | | | | This fixes building with USE_LTO enabled: <artificial>:(.text.exit+0x6e): relocation R_MIPS16_26 against `pthread_key_delete' cannot be used when making a shared object; recompile with -fPIC ./openwrt/staging_dir/toolchain-mips_24kc_gcc-12.3.0_musl/lib/gcc/mips-openwrt-linux-musl/12.3.0/../../../../mips-openwrt-linux-musl/bin/ld.bfd: non-dynamic relocations refer to dynamic symbol stpcpy ./openwrt/staging_dir/toolchain-mips_24kc_gcc-12.3.0_musl/lib/gcc/mips-openwrt-linux-musl/12.3.0/../../../../mips-openwrt-linux-musl/bin/ld.bfd: failed to set dynamic section sizes: bad value collect2: error: ld returned 1 exit status Signed-off-by: Anari Jalakas <anari.jalakas@gmail.com>
* openssl: update to 3.0.12Hauke Mehrtens2023-10-26
| | | | | | | Major changes between OpenSSL 3.0.11 and OpenSSL 3.0.12 [24 Oct 2023] * Mitigate incorrect resize handling for symmetric cipher keys and IVs. (CVE-2023-5363) Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* libnl: add support for cliKoen Vandeputte2023-10-22
| | | | | | | | | | Some packages (like wavemon >= 0.9.4) depend on libnl-cli. Add support for this part of the lib. libnl-cli itself depends on libnl-genl and libnl-nf. On MIPS, this component adds 81kB. Signed-off-by: Koen Vandeputte <koen.vandeputte@citymesh.com> (punctuation correction and reorganisation of commit message) Signed-off-by: Nick Hainke <vincent@systemli.org>
* toolchain: link ldd when using external toolchainArien Judge2023-10-20
| | | | | | | | When using an external toolchain, ldd is not linked into the rootfs. This causes subsequent upgrades to fail with 'Failed to exec upgraded'. This patch adds the symlink when using an external toolchain and musl. Signed-off-by: Arien Judge <arienjudge@outlook.com>
* treewide: disable QUILT refresh for unsupported packagesChristian Marangi2023-10-20
| | | | | | | | | Some packages won't ever have something to patch as they normally install files or are meta-packages. For these special packages, disable QUILT refresh. Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* gmp: update to 6.3Nick Hainke2023-10-17
| | | | | | | Release Notes: https://gmplib.org/gmp6.3 Signed-off-by: Nick Hainke <vincent@systemli.org>
* zlib: update to 1.3Nick Hainke2023-10-17
| | | | | | | | | | | | | | | | | | | | | | Changes in 1.3 (18 Aug 2023) - Remove K&R function definitions and zlib2ansi - Fix bug in deflateBound() for level 0 and memLevel 9 - Fix bug when gzungetc() is used immediately after gzopen() - Fix bug when using gzflush() with a very small buffer - Fix crash when gzsetparams() attempted for transparent write - Fix test/example.c to work with FORCE_STORED - Rewrite of zran in examples (see zran.c version history) - Fix minizip to allow it to open an empty zip file - Fix reading disk number start on zip64 files in minizip - Fix logic error in minizip argument processing - Add minizip testing to Makefile - Read multiple bytes instead of byte-by-byte in minizip unzip.c - Add memory sanitizer to configure (--memory) - Various portability improvements - Various documentation improvements - Various spelling and typo corrections Signed-off-by: Nick Hainke <vincent@systemli.org>
* mbedtls: Update to version 2.28.5Hauke Mehrtens2023-10-14
| | | | | | | This fixes some minor security problems. Changelog: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-2.28.5 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* libnl: update to 3.8.0Nick Hainke2023-10-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes: 6b2533c0 libnl-3.8.0 release 1558bd62 build: replace old "NOTE" in configure output and add summary f66383a4 build: avoid aclocal warning about missing "m4" directory e4402a4c build: run `autoupdate` for AM_PROG_LIBTOOL 5761b6af build: add "-Wno-portability" to AC_INIT_AUTOMAKE() 661f10a1 license: fix/adjust license for "src/nl-cls-add.c" c8fcb412 license: fix/adjust license for "src/nl-addr-{add,delete,list}.c" e3e6fd6d tests: use thread-safe localtime_r() instead of localtime() f520471c lib/xfrm: use thread-safe gmtime_r() instead of gmtime() be5add72 tests: avoid srandom()/random() in favor of _nltst_rand_u32() 40578a62 lib: use getprotobyname_r(), getprotobynumber_r() if available 8ee8b05f lib: fix error handling in nl_str2ip_proto() 09f03f29 tests: check nl_str2ip_proto() 74bffbf6 route: fix documentation comment for nl_nh_group_info 59f8db0d clang-format: add "-l" alias for option in "tools/clang-format.sh" 935cc90a clang-format: ignore reformatting commit in ".git-blame-ignore-revs" 53da4712 clang-format: reformat files with new format 65c43bfe clang-format: update ".clang-format" from linux kernel 4c39a2ce include: use <linux/$file> instead of <linux-private/linux/$file> a1e9fb3d include/linux: add all linux headers that we use d37ffe15 include/linux: update all linux headers 1af767a8 include: add missing "extern "C"" specifier to public headers e0a5d12b all: drop "extern "C"" from internal code d9a1e0ce build: add "check-local-build-headers" test target to build public headers 02b87012 build: add a "check-local" build target f9413915 include: fix headers "include/netlink/route/{netconf.h,route/qdisc/red.h}" to be self-contained 680df173 idiag: "fix" license for "idiag-socket-details" tool 2f210d9a github: test build on alpine:latest for musl dcc4c0a5 Revert "gitignore: ignore patch files" 39106309 github: add test for linking with mold and fail on unknown versions f475c3b2 route/nh: drop not implemented "nh" API from headers 4c681e77 build: fix exporting symbol rtnl_link_info_ops_get 260c9575 include: don't explicitly include headers from "nl-default.h" 98c1e696 tests: cleanup include of netlink headers 42bec462 build: cleanup default include list in Makefile.am 4c1a119a include: include private linux headers with explicit path ca063725 python: add make target for python build 25c90193 python: drop unused "python/netlink/fixes.h" 3f3da7fd gitignore: ignore python build artifacts 61ef5609 gitignore: ignore generated doc files 298c5dc6 include: drop "netlink-private/netlink.h" and move declarations 862eed54 all: cleanup includes and use "nm-default.h" 2b3cd741 include: add "nl-default.h" header 8952ce6f build: move "lib/defs.h" to "include/config.h" 1010776d include: split and drop "netlink-private/types.h" d1d57846 include: rename "nl-shared-core" to "nl-priv-dynamic-core" fc91c4f8 include: rename "nl-hidden-route" to "nl-priv-dynamic-route" 9bb6f770 include: rename "nl-intern-route" to "nl-priv-static-route" b5195db9 genl: rename private header "nl-priv-genl.h" to "nl-genl.h" 0eacf658 include: make "netlink/route/link/{inet,inet6}.h" self-contained ad014ad1 route/tc: avoid unalinged access in rtnl_tc_msg_parse() 05bd6366 add support for TC action statistics 776fc5a6 lib: move "include/netlink-private/object-api" to include/nl-shared-core fad34560 lib: move "include/netlink-private/cache-api" to include/nl-shared-core ed2be537 route: move "include/netlink-private/route/link/sriov.h" to lib/route/link-sriov.h 97f61eda lib: move "include/netlink-private/socket.h" to lib/nl-core.h 96e1cc5b route: move "include/netlink-private/route/nexthop-encap.h" to lib/route 391e03d3 route: merge "include/netlink-private/tc.h" to lib/route/tc-api.h 7fc4f5b3 route: move rtnl_tc_build_rate_table() to "tc-api.h" cf41e14d route: move "include/netlink-private/route/tc-api.h" to lib/route db810cfb route: move hidden symbols from "include/netlink-private/route/tc-api.h" ff08e618 build: don't add lib/route to include directory for all libs eb8da16d include: move "include/netlink-private/route/link/api.h" to lib/route 8b2074aa include: move "include/netlink-private/route/utils.h" to nl-intern-route fd470c06 include: move "include/netlink-private/route/mpls.h" to "lib/mpls.h" 78056ad2 genl: add comment about wrongly exported symbol genl_resolve_id() befc4ab4 include: move "include/netlink-private/genl.h" to "lib/genl/nl-priv-genl.h" f6c26127 nl-aux: add "include/nl-aux-{core,route}" headers 2da8481b base: move "netlink-private/utils.h" to "base/nl-base-utils.h" d3e9b513 include/utils: move nl-auto base defines to "utils.h" 543b9f8f clang-format: reformat "include/netlink-private/nl-auto.h" aa565460 route: cleanup ATTR_DIFF() macros beba5a18 cli: add nl-nh-list utility 780d06ae route: add nh type 1b6433d9 neigh: add support of NHID attribute e0140c5f include: import kernel headers "linux/{neighbour,nexthop,rtnetlink}.h" eef06744 utils: add static-assert for signedness of arguments of _NL_CMP_DIRECT() macro 679c4c51 cli: use <netlink-private/utils.h> in cli and _nl_{init,exit} a9c5de52 lib: use _nl_{init,exit} instead of __{init,exit} 102f9bd2 include/private: add _nl_init/_nl_exit macros 6782678e include/private: drop unused __deprecated macro a0535a58 all: use "_nl_packed" macro instead of "__attribute__((packed))" 8c9f98cf all: rework ATTR_DIFF() macros to not generate attribute names ca34ad52 lib: handle negative and zero size in nla_memcpy() 859b89dc include: drop now unused min()/max()/min_t()/max_t() macros 2e0ae977 all: use _NL_{MIN,MAX}() macros 57c451fa utils: add various helpers to "include/netlink-private/utils.h" a9a9dcea style: format "include/netlink-private/utils.h" with clang-format 590e8a61 tools: improve failure message with "tools/clang-format.sh -n" 06dc5ae0 github: fix format checking with clang-format 7738f239 route/trivial: sort entries in "libnl-route-3.sym" asciibetically fc805c56 route/bond: Add support for link_info for bond 6af26981 lib: accept NULL argument in nla_nest_cancel() for robustness e9662091 macsec: Drop offload capability validation check 35a68109 github: update flake8 linter to not explicitly select checks 9a266405 python: add ".flake8" file for configuring "flake8" e6b934a5 python: fix flake8 warnings E712 2cea738b python: fix flake8 warnings E711 d561096c python: fix flake8 warnings E302 29b06d0f python: fix flake8 warnings E741 4dc1f498 python: fix flake8 warnings F841 f4875c69 python: fix flake8 warnings W605 9a3d91df python: fix flake8 warnings F401 6baf2339 clang-format: add "tools/clang-format-container.sh" script ee2876e3 github: add test for checking clang-format style 45c7aae3 clang-format: add "tools/clang-format.sh" script 02e0fd3f github: check python-black code formatting in github actions 2dd53895 build: add ".git-blame-ignore-revs" file for "blame.ignoreRevsFile" git config 3c753e3c python: reformat all Python files with python-black 298ee58e python add "pyproject.toml" for configuring black a0e4b7f9 github: skip Python flake8 test with clang build c4240c0b github: run "Build Release" test also with clang 143cee1d bridge: fix bridge info parsing 96bbe55c test-cache-mngr: Flush output after object dumps cf5dcbcd test-cache-mngr: Add option to print timestamps bd570952 test-cache-mngr: Add an option to iterate over all supported address families bf80da90 test-cache-mngr: Add dump interval options 80febeea test-cache-mngr: Add an option to control which oo_dump function is used 6519a917 route/link: prevent segfault in af_request_type() a68260f8 github: fix installing python dependencies via pip 39c04bc7 build: drop redundant "autogen.sh" call from "tools/build_release.sh" d411b88d build: change proper working directory in "doc/autogen.sh" 2fa73ce0 build: ensure "autogen.sh" scripts fail on error fc786296 gitignore: ignore "*~" files 4c4e614b docs: rtnl_link_put() 'releases' instead of 'returns' 336b15dc include/linux: update copy of kernel header "linux/ipv6.h" e2cacc26 route/link: improve handling of IFLA_INET6_CONF ec8c493c route/link: remove rtnl_link_inet6_set_conf() API e790f8ad route/link: various fixes for rtnl_link_inet6_get_conf() API d83c6d54 route/link: add accessor API for IPv6 DEVCONF 9167504d bridge: drop unnecessary goto in bridge_info_parse() 984d6e93 bridge: don't normalize the u8 argument in rtnl_link_bridge_set_vlan_filtering() to boolean 3662a5da bridge: expose rtnl_link_bridge_get_vlan_protocol() in host byte order 5a1ef219 bridge: fix parsing vlan-protocol in bridge_info_parse() ad1c2927 bridge: minor cleanups in "bridge_info.c" 1c74725a bridge: use SPDX license identifiers in bridge_info files 26ca549d bridge: reformat bridge_info file with clang-format 08dc5d9c bridge: extend libnl with options needed for VLAN aware forwarding 7391a38e bridge: Add support for link_info of a bridge 1f1e8385 route/vlan: drop unnecessary "else" in vlan_put_attrs() 2bc30e57 route/vlan: fix error handling in 'lib/route/link/vlan.c' 8273d6ce build: add comments to linker version scripts about the version tags 6ac7a812 doc: fix typo 07d274ab doc: fix typo 0461a425 attr: reject zero length addresses 8d40d9eb route: construct all-zero addresses for default route destination 25d42a4f addr: allow constructing all-zero addresses 0c0aee82 addr: create an all-zero addresses when parsing "any" or "default" Signed-off-by: Nick Hainke <vincent@systemli.org>
* libmd: update to 1.1.0Nick Hainke2023-10-12
| | | | | | | | | | | | | | | | | | | | | | | | | | Changes: 16d68ab Release libmd 1.1.0 054bca1 build: Terminate lists in variables with «# EOL» 84d269e test: Add cases for SHA224 and SHA512-256 a677e68 test: Add a new test_eq() helper function 4c5931f Sync SHA2 changes from OpenBSD 9934d94 Sync SHA1 changes from OpenBSD 457e30a Sync RMD160 changes from OpenBSD b2e54bc Sync MD5 changes from OpenBSD ee56a52 Sync MD4 changes from OpenBSD b9496ac Sync MD2 changes from NetBSD 09d5824 Remove unused <assert.h> 08b2c5d build: Rename libmd_alias() to libmd_strong_alias() ed69599 On Darwin use assembler to support symbol aliases b74b777 build: Do not use strong aliases on macOS 94838ec build: Require automake 1.11 39cbc7b build: Fix configure.ac indentation 4620a04 build: Switch to debian:latest Docker image e408786 build: Fix version script linker support detection 0ef1e4d doc: Move mailing list reference to the end a3f1671 man: Add new libmd(7) man page Signed-off-by: Nick Hainke <vincent@systemli.org>
* libjson-c: update to 0.17Nick Hainke2023-10-12
| | | | | | | | | | | | | Release Notes: https://github.com/json-c/json-c/blob/ad8b8afa7d567053b87f2d37ee4a534e13c210c7/ChangeLog#L2 Refresh patch: - 001-dont-build-docs.patch Delete upstreamed patch: - 010-fix-build-with-clang-15.patch Signed-off-by: Nick Hainke <vincent@systemli.org>