[Buildroot] [PATCH 1/1] package/libbsd: security bump to version 0.10.0
Yann E. MORIN
yann.morin.1998 at free.fr
Mon Aug 12 17:19:19 UTC 2019
Fabrice, All,
On 2019-08-12 18:37 +0200, Fabrice Fontaine spake thusly:
> - Remove patch (already in version)
> - Update site to get the latest version
> - Update hash of license file (update in year, new file and author)
> - Remove !(BR2_TOOLCHAIN_USES_UCLIBC && !BR2_USE_MMU) dependency,
> __register_at_fork availability is correclty checked since
> https://gitlab.freedesktop.org/libbsd/libbsd/commit/b0ebb0d4c26b281facbab7a774510b541637b13b
> - Includes Several security related fixes for nlist() reported by Daniel
> Hodson and one by Coverity Scan, see
> https://lists.freedesktop.org/archives/libbsd/2019-August/000229.html
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
Acked-by: Yann E. MORIN <yann.morin.1998 at free.fr>
Regards,
Yann E. MORIN.
> ---
> package/fwts/Config.in | 2 +-
> ...0001-flopen-fix-build-with-musl-libc.patch | 40 -------------------
> package/libbsd/Config.in | 2 -
> package/libbsd/libbsd.hash | 6 +--
> package/libbsd/libbsd.mk | 4 +-
> 5 files changed, 6 insertions(+), 48 deletions(-)
> delete mode 100644 package/libbsd/0001-flopen-fix-build-with-musl-libc.patch
>
> diff --git a/package/fwts/Config.in b/package/fwts/Config.in
> index 94ac606366..269f065fd5 100644
> --- a/package/fwts/Config.in
> +++ b/package/fwts/Config.in
> @@ -3,7 +3,7 @@ config BR2_PACKAGE_FWTS
> depends on BR2_i386 || BR2_x86_64 || BR2_aarch64
> depends on BR2_PACKAGE_LIBBSD_ARCH_SUPPORTS # libbsd
> depends on BR2_TOOLCHAIN_HAS_SYNC_4 # json-c
> - depends on BR2_USE_MMU # libglib2, libbsd
> + depends on BR2_USE_MMU # libglib2
> depends on BR2_USE_WCHAR # libglib2, libbsd
> depends on BR2_TOOLCHAIN_HAS_THREADS # libglib2, libbsd
> depends on BR2_TOOLCHAIN_USES_GLIBC # execinfo.h
> diff --git a/package/libbsd/0001-flopen-fix-build-with-musl-libc.patch b/package/libbsd/0001-flopen-fix-build-with-musl-libc.patch
> deleted file mode 100644
> index 6f0aeffed7..0000000000
> --- a/package/libbsd/0001-flopen-fix-build-with-musl-libc.patch
> +++ /dev/null
> @@ -1,40 +0,0 @@
> -From 8575450b9c1226fc38196b29e33c67f2b58cacf5 Mon Sep 17 00:00:00 2001
> -From: Baruch Siach <baruch at tkos.co.il>
> -Date: Tue, 5 Jun 2018 19:18:47 +0300
> -Subject: [PATCH] flopen: fix build with musl libc
> -MIME-Version: 1.0
> -Content-Type: text/plain; charset=UTF-8
> -Content-Transfer-Encoding: 8bit
> -
> -Commit 993828d84ee (Add flopenat() function from FreeBSD) dropped the
> -fcntl.h header. This breaks the build with musl libc:
> -
> -flopen.c: In function ‘vflopenat’:
> -flopen.c:60:14: error: ‘O_CREAT’ undeclared (first use in this function)
> - if (flags & O_CREAT) {
> - ^~~~~~~
> -
> -Restore the fcntl.h header include to fix the build.
> -
> -Signed-off-by: Baruch Siach <baruch at tkos.co.il>
> ----
> -Upstream status: sent to libbsd at lists.freedesktop.org
> -
> - src/flopen.c | 1 +
> - 1 file changed, 1 insertion(+)
> -
> -diff --git a/src/flopen.c b/src/flopen.c
> -index b9972c94ec90..ff20d074445b 100644
> ---- a/src/flopen.c
> -+++ b/src/flopen.c
> -@@ -32,6 +32,7 @@
> - #include <sys/stat.h>
> -
> - #include <errno.h>
> -+#include <fcntl.h>
> - #include <stdarg.h>
> - #include <unistd.h>
> -
> ---
> -2.17.1
> -
> diff --git a/package/libbsd/Config.in b/package/libbsd/Config.in
> index 1a107d41f0..e54f5e6f23 100644
> --- a/package/libbsd/Config.in
> +++ b/package/libbsd/Config.in
> @@ -6,8 +6,6 @@ config BR2_PACKAGE_LIBBSD_ARCH_SUPPORTS
> depends on !BR2_arc
> depends on !BR2_xtensa
> depends on !BR2_nds32
> - # uClibc on noMMU doesn't provide __register_atfork()
> - depends on !(BR2_TOOLCHAIN_USES_UCLIBC && !BR2_USE_MMU)
>
> config BR2_PACKAGE_LIBBSD
> bool "libbsd"
> diff --git a/package/libbsd/libbsd.hash b/package/libbsd/libbsd.hash
> index 93af3944ae..95887bd607 100644
> --- a/package/libbsd/libbsd.hash
> +++ b/package/libbsd/libbsd.hash
> @@ -1,3 +1,3 @@
> -# From https://lists.freedesktop.org/archives/libbsd/2018-May/000190.html
> -sha256 56d835742327d69faccd16955a60b6dcf30684a8da518c4eca0ac713b9e0a7a4 libbsd-0.9.1.tar.xz
> -sha256 df6d8e1b5b3a5b06376c658c8ad3afc82687f1c0e0404cec4738ad14b2675708 COPYING
> +# From https://lists.freedesktop.org/archives/libbsd/2019-August/000229.html
> +sha256 34b8adc726883d0e85b3118fa13605e179a62b31ba51f676136ecb2d0bc1a887 libbsd-0.10.0.tar.xz
> +sha256 933d14a6bc89ee1fd7adbf5b6ec97f6ff0e002549d0b0c164f8a8895371d78f8 COPYING
> diff --git a/package/libbsd/libbsd.mk b/package/libbsd/libbsd.mk
> index 2d78b8c5f3..27bac6838a 100644
> --- a/package/libbsd/libbsd.mk
> +++ b/package/libbsd/libbsd.mk
> @@ -4,9 +4,9 @@
> #
> ################################################################################
>
> -LIBBSD_VERSION = 0.9.1
> +LIBBSD_VERSION = 0.10.0
> LIBBSD_SOURCE = libbsd-$(LIBBSD_VERSION).tar.xz
> -LIBBSD_SITE = https://archive.hadrons.org/software/libbsd
> +LIBBSD_SITE = https://libbsd.freedesktop.org/releases
> LIBBSD_LICENSE = BSD-2-Clause, BSD-3-Clause, BSD-4-Clause, BSD-5-Clause, \
> MIT, ISC, Beerware
> LIBBSD_LICENSE_FILES = COPYING
> --
> 2.20.1
>
--
.-----------------.--------------------.------------------.--------------------.
| Yann E. MORIN | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software Designer | \ / CAMPAIGN | ___ |
| +33 561 099 427 `------------.-------: X AGAINST | \e/ There is no |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL | v conspiracy. |
'------------------------------^-------^------------------^--------------------'
More information about the buildroot
mailing list