Now that the library has been updated, we can also update this.
Switched to codeload as we don't need the submodule anymore.
Various other Makefile consistency updates.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
This version contains NVME fixes.
Edited the patches to modify the package Makefile directly so as to reduce
hacks in the OpenWrt Makefile.
Added LTO support to lower filesize by ~4KB.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
These patches address issue:
CVE-2019-9636: urlsplit does not handle NFKC normalization
Link to Python issue:
https://bugs.python.org/issue36216
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Save a copy of unixodbc_conf.h in STAGING_DIR to be used by host build.
Use STAGING_DIR/tmp/unixodbc instead of include.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
For host compilation, the configure-generated config.h from the target
compilation is used in place of the host-generated file. When the
target package is compiled with clean-build, that file is gone. This
saves the file under $(STAGING_DIR), and fetch it from there.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
When copying config.h from PKG_BUILD_DIR to HOST_BUILD_DIR, LIB_PREFIX
is set to /usr/lib. Then when odbc_config is run, it reports /usr/lib
as the --lib-dir, and in --libs as well, and dependent packages may
fail. Set it to $(STAGING_DIR)/usr/lib to make it right.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
Very minor bugfix.
Also adjusted standard to gnu89 to fix compilation issues (lot of missing
prototypes).
Signed-off-by: Rosen Penev <rosenp@gmail.com>
This should fix compilation as wolfSSL currently does not define
wolfTLSv1_client_method. And as the comment suggests, this is only TLS 1,
not 1.0 and above.
SSLv23 is TLS 1.1 and above as currently configured in the wolfssl package
Signed-off-by: Rosen Penev <rosenp@gmail.com>
* update nano to 4.1
* implement Makefile style changes proposed in #8483
Release notes at https://nano-editor.org/news.php
2019.04.15 - GNU nano 4.1
* By default, a newline character is again automatically added at the
end of a buffer, to produce valid POSIX text files by default, but
also to get back the easy adding of text at the bottom.
* The now unneeded option --finalnewline (-f) has been removed.
* Syntax files are read in alphabetical order when globbing, so that
the precedence of syntaxes becomes predictable.
* In the C syntax, preprocessor directives are highlighted differently.
* M-S now toggles soft wrapping, and M-N toggles line numbers.
* The jumpy-scrolling toggle has been removed.
* The legacy keystrokes ^W^Y and ^W^V are recognized again.
* Executing an external command is disallowed when in view mode.
* Problems with resizing during external or speller commands were fixed.
Tested with ipq806x R7800
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 5c212b1a13)
Correct option is "password_file" not "passwd_file"
Originally reported as: https://github.com/openwrt/packages/pull/8642
Added the package bump.
Signed-off-by: Karl Palsson <karlp@etactica.com>
Also refresh patch which does not apply cleanly anymore.
Run tested on Duckbill for mxs platform.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 80cdd53134)
While at, add --with-pic to configure arguments. This prevents the following
build errors spotted by the build bots for i386 targets:
-snip-
...
ext/openssl/.libs/openssl.o: direct GOT relocation R_386_GOT32X against
`X509_REQ_free' without base register can not be used when making a shared object
...
-snap-
This parameter seems to make no difference on other targets, nor
improve or make worse the package size.
Run tested for i386 in VirtualBox VM and on Duckbill for mxs platform.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 963c841463)
This orders loading of openssl extension before extensions
which require openssl functions.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 5afeb3f9c8)
Update nano editor to version 4.0.
Release notes at
http://git.savannah.gnu.org/cgit/nano.git/plain/NEWS?h=v4.0
2019.03.24 - GNU nano 4.0 "Thy Rope of Sands"
* An overlong line is no longer automatically hard-wrapped.
* Smooth scrolling (one line at a time) has become the default.
* A newline character is no longer automatically added at end of buffer.
* The line below the title bar is by default part of the editing space.
* Option --breaklonglines (-b) turns automatic hard-wrapping back on.
* Option --jumpyscrolling (-j) gives the chunky, half-screen scrolling.
* Option --finalnewline (-f) brings back the automatic newline at EOF.
* Option --emptyline (-e) leaves the line below the title bar unused.
* <Alt+Up> and <Alt+Down> now do a linewise scroll instead of a findnext.
* Any number of justifications can be undone (like all other operations).
* When marked text is justified, it becomes a single, separate paragraph.
* Option --guidestripe=<number> draws a vertical bar at the given column.
* Option --fill=<number> no longer turns on automatic hard-wrapping.
* When a line continues offscreen, it now ends with a highlighted ">".
* The halfs of a split two-column character are shown as "[" and "]".
* A line now scrolls horizontally one column earlier.
* The bindable functions 'cutwordleft' and 'cutwordright' were renamed
to 'chopwordleft' and 'chopwordright' as they don't use the cutbuffer.
* The paragraph-jumping functions were moved from Search to Go-to-Line.
* Option --rebinddelete is able to compensate for more misbindings.
* Options --morespace and --smooth are obsolete and thus ignored.
* The --disable-wrapping-as-root configure option was removed.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit f1d51dbf76)
- CVE-2019-3855
Possible integer overflow in transport read allows out-of-bounds write
- CVE-2019-3856
Possible integer overflow in keyboard interactive handling allows
out-of-bounds write
- CVE-2019-3857
Possible integer overflow leading to zero-byte allocation and out-of-bounds
write
- CVE-2019-3858
Possible zero-byte allocation leading to an out-of-bounds read
- CVE-2019-3859
Out-of-bounds reads with specially crafted payloads due to unchecked use of
`_libssh2_packet_require` and `_libssh2_packet_requirev`
- CVE-2019-3860
Out-of-bounds reads with specially crafted SFTP packets
- CVE-2019-3861
Out-of-bounds reads with specially crafted SSH packets
- CVE-2019-3862
Out-of-bounds memory comparison
- CVE-2019-3863
Integer overflow in user authenicate keyboard interactive allows
out-of-bounds writes
Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
2.5.5: Bug fix for a deadlock in multi-thread/multi-process (using Process.fork) applications, like for example Puma
2.5.4: Fixes multiple vulnerabilities:
CVE-2019-8320: Delete directory using symlink when decompressing tar
CVE-2019-8321: Escape sequence injection vulnerability in verbose
CVE-2019-8322: Escape sequence injection vulnerability in gem owner
CVE-2019-8323: Escape sequence injection vulnerability in API response handling
CVE-2019-8324: Installing a malicious gem may lead to arbitrary code execution
CVE-2019-8325: Escape sequence injection vulnerability in errors
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
When the server hostname resolved to both IPv4 and IPv6 addresses,
connecting would fail with nothing in syslog. This corrects that oversight.
Signed-off-by: Daniel Gimpelevich <daniel@gimpelevich.san-francisco.ca.us>
(cherry picked from ca56324 and PKG_MIRROR_HASH removal from 494ce71)
Revert the addition of build dependency in commit 2d1694ff7
to a non-existent host build of zlib.
The host build of zlib was removed already in April 2018 by
8dcd941d8b (diff-1ed408c61d79f9c6c5d197333e94ce8d)
which made zlib a build tool defined in /tools
The newly introduced build dependency causes always a warning like:
WARNING: Makefile 'package/feeds/packages/postgresql/Makefile'
has a build dependency on 'zlib/host', which does not exist
Not sure what was the error that 2d1694ff7 tried to fix,
but reference to a non-existent host build is not the solution.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit d8e61d49da)
