Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
15558 commits 8 branches 0 tags 65 MiB
Commit graph

2220 commits

Author SHA1 Message Date
Alexandru Ardelean
03852aa990
django-formtools: update packaging format + add python3 variant 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit e4d8127cae)
 2019-10-23 01:50:29 +02:00
Alexandru Ardelean
8df3e1ae45
django-compressor: update packaging format + add python3 variant 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 35cddd9b6f)
 2019-10-23 01:50:17 +02:00
Alexandru Ardelean
c3710fadac
django-appconf: update packaging format + add python3 variant 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 3392fbc6fc)
 2019-10-23 01:50:05 +02:00
Alexandru Ardelean
dcadf6baac
django-constance: convert to python pkg format + add python3 variant 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 1b2936a2d0)
 2019-10-23 01:49:35 +02:00
Alexandru Ardelean
f8ff5017d2
django: convert to python pkg format + add python3 variant 
This also updates all dependencies to use the new `python-django` package.

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit f026dba26e)
 2019-10-23 01:49:15 +02:00
Alexandru Ardelean
d735b2be96 python-pillow: bump to version 6.2.0 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2019-10-22 10:54:39 +02:00
Josef Schlehofer
3569a3b029 pillow: add Python3 variant and update to 6.1.0 
- Add @commodo as maintainer

Co-Authored-By: Jeffery To <jeffery.to@gmail.com>
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-10-22 10:54:22 +02:00
Jeffery To
18a7c29f55 python: Update to 2.7.17, refresh patches 
Patches already merged and so removed:
* 011-fix-ssl-build-use-have-npn.patch
* 019-bpo-36216-Add-check-for-characters-in-netloc-that-normalize-to-separators-GH-12216.patch
* 020-bpo-36216-Only-print-test-messages-when-verbose-GH-12291.patch
* 021-2.7-bpo-35121-prefix-dot-in-domain-for-proper-subdom.patch
* 022-bpo-30458-Disallow-control-chars-in-http-URLs-GH-13315.patch
* 023-bpo-35907-Avoid-file-reading-as-disallowing-the-unnecessary-URL-scheme-in-urllib-GH-11842.patch
* 027-bpo-38243-Escape-the-server-title-of-DocXMLRPCServer.patch
* 028-bpo-34155-Dont-parse-domains-containing-GH-13079.patch

Patches no longer necessary and so removed:
* 017_lib2to3_fix_pyc_search.patch

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 83b300aa83)
 2019-10-21 23:42:32 +08:00
Josef Schlehofer
0882737b4a
python3: Update to version 3.7.5 
setuptools: Updated to version 41.2.0
pip: Updated to version 19.2.3

Removed patches:
- 017: code was refactored
- 02{5,6,7,8}: those patches were backported from upstream and they are
included in 3.7.5

Refreshed patches

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-10-21 15:19:32 +02:00
Jeffery To
d97f776050 python-ipaddress: Update to 1.0.23 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 21858952976aad8ad92cbe76351c5535c39a3f2f)
 2019-10-21 21:10:59 +08:00
Jeffery To
2dfbcb7b99 python-automat: Update to 0.8.0 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 57b4938babc41aa6e80709e4ba29bc6bec6a9472)
 2019-10-21 21:10:38 +08:00
Jeffery To
5e981bfffe python-attrs: Update to 19.3.0 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 8c3f7dcc36a7b8af2069bbbd67cb745ac4b21dec)
 2019-10-21 21:10:14 +08:00
Jeffery To
b89bf0470d python-cryptography: Update to 2.8 
With this update, the package no longer depends on python-asn1crypto[1].

[1]: https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst#28---2019-10-16

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 23f308123c39236c6ceeaa7ffa8ecf18fda29e4d)
 2019-10-21 13:44:25 +02:00
Jeffery To
bf66776f93
python-cffi: Update to 1.13.0 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 141ead6bd7)
 2019-10-21 13:43:25 +02:00
Josef Schlehofer
a1a665c7e2
golang: Update to version 1.13.3 
Fixes CVE-2019-17596

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 10d55f6)
 2019-10-21 03:31:56 +02:00
Jeffery To
a0c1c2da6a python-pyasn1-modules: Update to 0.2.7 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from 5848f67e41)
 2019-10-16 02:15:00 +08:00
Rosen Penev
c6f2699f96
Merge pull request #10183 from jefferyto/python-attrs-19.2.0-openwrt-19.07 
[openwrt-19.07] python-attrs: Update to 19.2.0
 2019-10-09 12:50:28 -07:00
Alexander Ryzhov
3d98d7fd05 perl-www-curl: curl 7.66.0 compatibility 
Signed-off-by: Alexander Ryzhov <github@ryzhov-al.ru>
(cherry-picked from 7910715d86)
 2019-10-08 14:57:26 -07:00
Jeffery To
863c1a41b4 python-attrs: Update to 19.2.0 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-10-09 05:21:03 +08:00
Jeffery To
18add705fa python,python3: Fix CVE-2019-16056, CVE-2019-16935 
These patches address issues:
CVE-2019-16056: email.utils.parseaddr mistakenly parse an email
CVE-2019-16935: A reflected XSS in python/Lib/DocXMLRPCServer.py (for
Python 2.7)

CVE-2019-16935 was fixed for python3 in #10109

Links to Python issues:
https://bugs.python.org/issue34155
https://bugs.python.org/issue38243

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-10-05 00:04:39 +08:00
Jeffery To
1d6436623a python-simplejson: Fix python[3]-decimal dependency 
simplejson depends on the decimal module[1][2]. This adds
python[3]-decimal to the package's DEPENDS.

[1]: https://github.com/simplejson/simplejson/blob/v3.16.0/simplejson/__init__.py#L110
[2]: https://github.com/simplejson/simplejson/blob/v3.16.0/simplejson/encoder.py#L7

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-10-04 22:46:39 +08:00
Eneas U de Queiroz
4bbeb730a5
python-certifi: bump to 2019.9.11 
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit acf7c540ca)
 2019-09-30 16:42:59 -03:00
Josef Schlehofer
faf6ec5800
python3: backport three security patches 
Fixes: CVE-2019-16935

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 80def9e)
 2019-09-30 10:02:40 +02:00
Rosen Penev
33ee8d1ec3 django: Update to 1.11.24 
Fixes a whole bunchs of CVEs:

CVE-2019-3498
CVE-2019-6975
CVE-2019-12308
CVE-2019-12781
CVE-2019-14232
CVE-2019-14233
CVE-2019-14234
CVE-2019-14235

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 64a02079da)
 2019-09-30 10:27:06 +03:00
Josef Schlehofer
f2a06eb9dc
golang: Update to version 1.13.1 
Fixes CVE-2019-16276

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 65b7bd6cc0)
 2019-09-29 20:42:52 +02:00
Jeffery To
2c829c973b
golang: Use new -trimpath option when compiling Go packages 
Go 1.13 added a new -trimpath option to the "go build" command[1] that
removes system paths from compiled executables. This replaces the
previous -trimpath flags.

There are still system paths in the compiled executable (for crti.o and
crtn.o, when cross-compiling); these appear to be stripped during the
packaging process.

[1]: https://golang.org/doc/go1.13#trimpath

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry-picked from commit 22ee6e86a0)
 2019-09-29 00:42:22 +02:00
Xingwang Liao
c7f1bdc592
golang: Update to 1.13 
Signed-off-by: Xingwang Liao <kuoruan@gmail.com>
(cherry-picked from commit 0849e32659)
 2019-09-29 00:42:09 +02:00
Hirokazu MORIKAWA
d97123b729
node: fix http/2 DoS 
This is a security release.

Node.js, as well as many other implementations of HTTP/2,
have been found
vulnerable to Denial of Service attacks.
See https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
for more information.

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from 81bccf9068)
 2019-09-27 12:44:16 -07:00
Hirokazu MORIKAWA
976fd4e9c1
node: fix host build error on macOS 
fix host build error on macOS
reference: https://github.com/openwrt/packages/issues/9616

Related: https://github.com/openwrt/packages/issues/7171
(This correspondence is necessary to build with macOS.)

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry-picked from c69d5a0241)
 2019-09-27 12:43:43 -07:00
Rosen Penev
5b903f68eb
Merge pull request #10084 from BKPepe/sentrysdk-1907 
[OpenWrt 19.07] python-sentry-sdk: Update to version 0.12.2
 2019-09-27 12:09:37 -07:00
Rosen Penev
884c89b5e9
jamvm: Don't compile on ARM64 
Not supported.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from ccd2b767d)
 2019-09-27 10:10:33 -07:00
Jan Pavlinec
a0d4cc9170
treewide: add PKG_CPE_ID for cvescanner 
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from ceadbcbb64)
 2019-09-26 19:36:27 -07:00
Jan Pavlinec
937b19ebb7
treewide: add PKG_CPE_ID for better cvescanner coverage 
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from bf2f1a0263)
 2019-09-26 19:36:27 -07:00
Sven Eckelmann
1142f52078
treewide: Change .*GPL.*+ licenses to SPDX compatible identifier 
The CONTRIBUTING.md requests an (or multiple) SPDX identifier for GPL
licenses. But a lot of packages did use a different, non-SPDX style with a
"+" at the end instead of "-or-later".

Signed-off-by: Sven Eckelmann <sven@narfation.org>
(cherry-picked from bbb1ea7345)
 2019-09-26 19:36:25 -07:00
Rosen Penev
07f47d6ea5
jamvm: Add host build 
Needed for classpath. GCJ is also needed but that can be dealt with
separately.

Fix compilation with musl by defining _GNU_SOURCE. What's funny here is
that if __USE_GNU gets replaced, the host build fails. The man page says
_GNU_SOURCE for pthread_getattr_np but glibc violates that statement.

Removed classpath dependency. classpaths must select jamvm, not the other
way around.

Removed target whitelist. Switched to blacklist.

Fixed License information.

Various other cleanups.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from 2972cc98eb)
 2019-09-26 19:36:22 -07:00
Josef Schlehofer
de686dc0e8
python-sentry-sdk: Update to version 0.12.2 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
 2019-09-26 18:24:21 +02:00
Karel Kočí
c004f8a7a6
python-intelhex: add new package 
This is Python library to parse, generate and in general handle files
in Intel HEX format.

Signed-off-by: Karel Kočí <cynerd@email.cz>
(cherry-picked from commit 306e276a3b)
 2019-09-17 08:44:59 +02:00
Karel Kočí
c35c9d6932
python-schema: update to version 0.7.1 
Signed-off-by: Karel Kočí <karel.koci@nic.cz>
(cherry-picked from commit 7bb6d72a47)
 2019-09-17 08:41:40 +02:00
Michael Heimpold
41fb159a38 php7: update to 7.2.22 
While at, update the SPDX license id to most recent format.

Compile and run tested on mxs platform.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 5805da860e)
 2019-09-12 21:52:27 +02:00
Josef Schlehofer
24ef2a78e3
python-sqlalchemy: Update to version 1.3.7 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 2ee4b09760)
 2019-09-04 16:06:09 +02:00
Josef Schlehofer
38ba031f26
python-slugify: Update to version 3.0.3 
Change indentation in dependencies and as well in description

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit d3c2ff35b5)
 2019-09-04 16:05:56 +02:00
Josef Schlehofer
43e07c60a0
python-yaml: Update to version 5.1.2 
PKG_NAME should match the name of the folder

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 3cfbdbf25b)
 2019-09-04 16:05:44 +02:00
Josef Schlehofer
d49bde8ea9
python-voluptuous-serialize: Update to version 2.2.0 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit af213059f5)
 2019-09-04 16:05:31 +02:00
Josef Schlehofer
5fa4f744ac
python-voluptuous: Update to version 0.11.7 
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 0835e5e6dc)
 2019-09-04 16:05:20 +02:00
Jeffery To
f57f327f06 python-pyasn1: Update to 0.4.7 
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2019-09-03 02:52:18 +08:00
Alexandru Ardelean
76ea030571
python-dateutil: bump to version 2.8.0 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 0699a69ba1)
 2019-09-01 10:10:38 +02:00
Alexandru Ardelean
6464894728
python-lxml: bump to version 4.4.1 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 621f5777d3)
 2019-09-01 10:10:23 +02:00
Alexandru Ardelean
87fbf41ae8
python-pytz: bump to version 2019.2 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry-picked from commit 16c9fcdda8)
 2019-09-01 10:09:45 +02:00
Eric Kinzie
bc0001d5a5
luajit: fix building for 64-bit targets 
Host and target architectures need to have the same pointer size.
When building on x86_64, do not force 32-bit host binaries if the target
architecture is also 64-bit.

See http://luajit.org/install.html#cross

Add 64-bit arm (aarch64) to the list of architectures.

Signed-off-by: Eric Kinzie <ekinzie@labn.net>
(cherry-picked from commit 5b0ef0e1b9)
 2019-08-26 03:47:52 +02:00
Eneas U de Queiroz
40e86c8729
python-oauthlib: bump to 3.1.0 
This is a feature release including improvement to OIDC and security
enhancements, as well as bugfixes.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry-picked from commit ab990af307)
 2019-08-24 16:50:44 +02:00