This fixes the following CVEs:
- in intl: CVE-2016-7416
- in mysqlnd: CVE-2016-7412
- in phar: CVE-2016-7414
- in spl: CVE-2016-7417
- in standard: CVS-2016-7411
- in wddx: CVE-2016-7413, CVE-2016-7418
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
This fixes the following CVEs:
- in intl: CVE-2016-7416
- in mysqlnd: CVE-2016-7412
- in phar: CVE-2016-7414
- in spl: CVE-2016-7417
- in wddx: CVE-2016-7413, CVE-2016-7418
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
It's a bit weird fixing a build error with an upgrade,
but it seems to work on my setup.
Hopefully, builbot agrees.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
When php is installed on the host system, then the configure tries
to obtain from this binary whether some extensions are available.
This prevents the cross build when the desired extensions are not
present - which is the usual case.
So add a patch to prevent configure from doing this - we give
this information via environment variable during build already.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
- remove hack to find required packages: when php5-pecl-{raphf,propro}
was built in paralle, then the hack could not determine which build
directory must be used; this was resolved by a previous commit, both
packages now install their header files in the staging area so that
this pecl module will find it properly
- refine build dir to avoid collision with (possible) php5 package variant
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
- refine build dir to avoid collisions with php5 package variants
- properly install headers to location where depended packages look for it
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Quote:
This PHP HTTP extension aims to provide a convenient and powerful
set of functionality for one of PHPs major applications:
it eases handling of HTTP urls, headers and messages, provides
means for negotiation of a client's preferred content type,
language and charset, as well as a convenient way to send any
arbitrary data with caching and resuming capabilities.
It provides powerful request functionality with support for
parallel requests.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
This is the php7 version of php5-pecl-libevent.
Since upstream did not (yet) merged the php7 compat
changes and released a new package, we use a development
snapshot of a Github contributor.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Some PECL modules (possibly also php modules) depend on
special load order, otherwise loading the module will fail
due to unresolvable symbols.
This changeset introduces a very simple compile-time defined
order by specifying a prefix for the ini file with the load
directive. If not given, it uses a default value.
It also updates all current pecl module packages to take
this new approach.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
This is a heavy patched variant of the pecl dio module, which
now at least compiles for php7.
Patches are sent to maintainer - no response yet.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
- Add some more patches from Debian
- Rename existing ones (our own patches starts with prefix 1000+)
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
This is a copy of the existing php5 stuff, adopted for PHP7.
Please not, that its not supported to install both php5
and php7 in parallel on the target.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
This is caused by a toolchain bug and has been reported to GCC a
while a ago without receiving any responses yet [1]. Fix it at the
moment by not compiling with mips16 enabled.
Should fix#1750 and #1904.
[1] Bug 71519 - "Out of range operand" bteqz inst generated by
"casesi_internal_mips16_<mode>",
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=71519
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
Currently luasec fails to build if OpenSSL was built without compression
support due to an undefined COMP_METHOD type:
ssl.c: In function 'meth_compression':
ssl.c:404:9: error: unknown type name 'COMP_METHOD'
const COMP_METHOD *comp;
^
<builtin>: recipe for target 'ssl.o' failed
make[6]: *** [ssl.o] Error 1
Add a local patch to stub the `meth_compression()` function if there is no
compression support available in the OpenSSL library in order to allow
luasec to build.
A similar fix has been added upstream with
https://github.com/brunoos/luasec/pull/30
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
This fixes the following CVEs:
- in GD: CVE-2015-8874, CVE-2016-5766, CVE-2016-5767
- in mbstring: CVE-2016-5768
- in mcrypt: CVE-2016-5769
- in SPL: CVE-2016-5770, CVE-2016-5771
- in WDDX: CVE-2016-5772
- in zip: CVE-2016-5773
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Maintainer: Oskari Rauta / @oskarirauta
Compile tested: x86, APU-4D, Chaos Calmer
Run tested: ar71xx, WNDR3800, Chaos Calmer and x86, APU-4D, Chaos
Calmer - tests done. Performs as should.
Description:
LuaSQLite3 is a thin wrapper around the public domain SQLite3 database
engine.
This commit adds another sqlite3 module for Lua. This is very popular
and in my opinion, suites even better for some projects requiring
sqlite3 in Lua than already luasql, even though luasql is more
versatile since it supports other databases as well. It wouldn't hurt
to include this in the repository. This can also be installed with
luarocks, but I prefer a openwrt package.
Signed-off-by: Oskari Rauta oskari.rauta@gmail.com
Standard assignment is immediate expansion without any extraneous spacing, RFC822 compliant email addresses without any quotation marks and long git hashes
Signed-off-by: Stephen Walker <stephendwalker+github@gmail.com>
perlbase-utf8 depends on perlbase-unicore however that dependency was missing.
This patch fixes that.
Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
The original Google Code repository is not available anymore, use the
equivalent Github repository instead.
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
This fixes the following CVEs:
- in BCMath: CVE-2016-4537, CVE-2016-4538
- in EXIF: CVE-2016-4542, CVE-2016-4543, CVE-2016-4544
- in GD: CVE-2016-3074
- in Intl: CVE-2016-4540, CVE-2016-4541
- in XML: CVE-2016-4539
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Perl CGI fails to copy CGI.pm to package and therefore
perl programs and modules depend on CGI module fail.
Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
LUA_MATH_LIBRARY=m is added as lua-cjson fails to detect Lua in the host
build without it.
Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
Fixes segfaults occuring in the node host build when GCC 6 is used.
Backport of upstream commit 96198d5bc710a4e3ca49eeeb3b3fa7b8cb61547d.
Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
Also, override all prefix args in the HOST_CONFIGURE_ARGS
so that this works fine on CC/15.05.
There are some changes in core regarding package builds that
require this.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Also, override all prefix args in the HOST_CONFIGURE_ARGS
so that this works fine on CC/15.05.
There are some changes in core regarding package builds that
require this.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Seems it's some Unicode fix that required a small release.
https://pip.pypa.io/en/stable/news/
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
python-setuptools releases more often than my preference.
Every once in a while I sync up with the latest released.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
It seems that this can become an issue.
Found when building python3-setuptools from packages/trunk
in openwrt/15.05.
python3-setuptools is not in packages/for-15.05
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
python-setuptools/host needs python-package.mk and python-host.mk files that are installed by python (non host build - InstallDev)
Signed-off-by: Andrey Sechin <zyxmon@gmail.com>
- update to latest version (16.0.0)
- change to one package containing all plugins/subprojects
- add license info
- add myself as maintainer
This builds one main package, instead of multiple packages like the old
packages feed, to match upstream. (Debian and Fedora are moving to a
single-package model as well.) The obvious downside is a larger install
size, but one main package should be easier to maintain in the future.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
From the README:
service_identity aspires to give you all the tools you need for
verifying whether a certificate is valid for the intended purposes.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
From the README:
attrs is an MIT-licensed Python package with class decorators that ease
the chores of implementing the most common attribute-related object
protocols.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
From the PyPi description:
gmpy is a C-coded Python extension module that provides access to the
GMP (or MPIR) multiple-precision arithmetic library.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
$(CP) was defined as `cp -fpR' since the very begining of OpenWrt build
system (2006-06-22). The -R option should be enough and base packages
use only $(CP) for the same purposes just fine and BSD manual of cp also
discourages the use of `-r' option. So let's just tidy up the usage now.
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
Pull requests #2455 and #2463 should have fixed python-cffi.
Additionally r48918 has decreased the risk from broken host sections
to buildbot builds: https://dev.openwrt.org/changeset/48918
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
New feature release for ruby.More info:
https://www.ruby-lang.org/en/news/2015/12/25/ruby-2-3-0-released/
Patches changes:
(-) 001-rdoc-remove_gems_dep.patch was merged
(+) 001-acinclude.m4_rename_aclocal.m4.patch backported from upstream.
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
The sets host Python's prefix and exec-prefix to the same value
($(STAGING_DIR)/host for packages, as currently defined in
include/host-build.mk), which avoids the case where pyconfig.h is
not in the same location as Python's other header files (see
https://bugs.python.org/issue896330).
This also removes some cross compilation workarounds
(_python_sysroot/prefix/exec_prefix, disabling byte-compilation,
__PYVENV_LAUNCHER__) that are not necessary when compiling packages
for host.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
python-cffi's host section has trouble compiling at buildbot.
Yesterday it stopped all buildbot runs that reached the package.
Mark the package temporarily as BROKEN to enable buildbot to complete the build.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
