Staging tree of Christian Lamparter https://git.openwrt.org/openwrt/staging/chunkeey/atom?h=master 2022-05-18T10:32:06Z 2022-05-18T10:32:06Z Stijn Tintel 2022-03-28T15:40:30Z urn:sha1:ad79b92719498afa93567cccdfbffeb49a57388d The upcoming dwarves host package requires elfutils. As dependencies for tools must exist in tools, we need to move elfutils host build there. As there is at least one package that depends on this, and there is no proper way to create such dependency in the build system, build it unconditionally when not building on macOS. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be> 2022-05-15T18:52:46Z Eneas U de Queiroz 2022-05-10T19:39:11Z urn:sha1:73c1fe2890baa5c0bfa46f53c5387f5e47de1acb This is mostly a bug fix release, including two that were already patched here: - 300-fix-SSL_get_verify_result-regression.patch - 400-wolfcrypt-src-port-devcrypto-devcrypto_aes.c-remove-.patch Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com> 2022-05-15T14:32:40Z Eneas U de Queiroz 2022-05-10T23:34:57Z urn:sha1:7a5ddc0d06895bde7538d78c8dad2c863d70f946 This release comes with a security fix related to c_rehash. OpenWrt does not ship or use it, so it was not affected by the bug. There is a fix for a possible crash in ERR_load_strings() when configured with no-err, which OpenWrt does by default. Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com> 2022-05-15T13:20:34Z Felix Fietkau 2022-05-15T13:19:49Z urn:sha1:3e300e724b674b299d055d172a268c8cfa8489d2 f2d6752901f2 blob: clear buf->head when freeing a buffer 45210ce14136 list.h: add container_of_safe macro cfa372ff8aed blobmsg: implicitly reserve space for 0-terminator in string buf alloc d2223ef9da71 blobmsg: work around false positive gcc -Warray-bounds warnings Signed-off-by: Felix Fietkau <nbd@nbd.name> 2022-04-20T10:36:38Z Eneas U de Queiroz 2022-04-13T13:30:15Z urn:sha1:c18c6e53b9860b248986cea4b6856806a65af73c This is trivial fix of a duplicate definition of 'int ret'. Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com> 2022-04-16T12:02:11Z Rosen Penev 2022-03-31T04:33:01Z urn:sha1:b363f7488643882b9c53a1e2c6db2a110703cc1d Python seems to fail to link to libreadline properly because of this. Not a fatal error but an error nontheless. Signed-off-by: Rosen Penev <rosenp@gmail.com> 2022-04-16T12:02:11Z Rosen Penev 2022-03-27T20:27:15Z urn:sha1:fc60b97a772e857d1d049b34f116d91c462db462 static libraries need them as they are not PIC by default. Signed-off-by: Rosen Penev <rosenp@gmail.com> 2022-04-11T19:41:03Z Eneas U de Queiroz 2022-04-08T13:27:25Z urn:sha1:e89f3e85eb1c1d81294e5d430a91b0ba625e2ec0 Fixes two high-severity vulnerabilities: - CVE-2022-25640: A TLS v1.3 server who requires mutual authentication can be bypassed. If a malicious client does not send the certificate_verify message a client can connect without presenting a certificate even if the server requires one. - CVE-2022-25638: A TLS v1.3 client attempting to authenticate a TLS v1.3 server can have its certificate heck bypassed. If the sig_algo in the certificate_verify message is different than the certificate message checking may be bypassed. Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com> 2022-04-09T16:34:04Z Nick Hainke 2022-04-05T13:01:43Z urn:sha1:c3b738933981de601389794152534628b04555dc Changes: Duncan Roe (5): nlmsg: Fix a missing doxygen section trailer build: doc: "make" builds & installs a full set of man pages build: doc: get rid of the need for manual updating of Makefile build: If doxygen is not available, be sure to report "doxygen: no" to ./configure src: doc: Fix messed-up Netlink message batch diagram Fernando Fernandez Mancera (1): src: fix doxygen function documentation Florian Westphal (1): libmnl: zero attribute padding Guillaume Nault (1): callback: mark cb_ctl_array 'const' in mnl_cb_run2() Kylie McClain (1): examples: nfct-daemon: Fix test building on musl libc Laura Garcia Liebana (4): examples: add arp cache dump example examples: fix neigh max attributes examples: fix print line format examples: reduce LOCs during neigh attributes validation Pablo Neira Ayuso (3): doxygen: remove EXPORT_SYMBOL from the output include: add MNL_SOCKET_DUMP_SIZE definition build: libmnl 1.0.5 release Petr Vorel (1): examples: Add rtnl-addr-add.c Stephen Hemminger (1): examples: rtnl-addr-dump: fix typo igo95862 (1): doxygen: Fixed link to the git source tree on the website. Signed-off-by: Nick Hainke <vincent@systemli.org> 2022-04-09T16:33:24Z Nick Hainke 2022-04-05T13:26:24Z urn:sha1:aecf088b3792d556c717510304729fa542ceb770 Changes: c63f193 bump version to 1.0.2 3cffa84 libnfnetlink: Check getsockname() return code 90ba679 include: Silence gcc warning in linux_list.h bb4f6c8 Make it clear that this library is deprecated e46569c Minimally resurrect doxygen documentation 5087de4 libnfnetlink: hide private symbols 62ca426 autogen: don't convert __u16 to u_int16_t efa1d8e src: Use stdint types everywhere 7a1a07c include: Sync with kernel headers 7633f0c libnfnetlink: initialize attribute padding to resolve valgrind warnings 94b68f3 configure: uclinux is also linux 617fe82 src: get source code license header in sync with current licensing terms 97a3960 build: resolve automake-1.12 warnings Removed the patch 100-missing_include.patch, libnfnetlink compiles fine with musl without this patch. Signed-off-by: Nick Hainke <vincent@systemli.org>