staging/pepe2k/tools, branch v21.02.4

tools: remove xxd package

2022-09-21T09:52:40Z

It shouldn't be needed anymore as we've now `scripts/xxdi.pl`, which should be self contained and fully compatible `xxd -i` replacement. Fixes: #10555 Signed-off-by: Petr Štetiar (cherry picked from commit 88c9056a70901577489ecdc7a25207a9b7576d6e)

tools/libelf: alpine linux os type: linux-musl fix

2022-08-28T05:58:46Z

Prevents ./configure "checking build system" test fail on Alpine linux. Signed-off-by: Isaev Ruslan Signed-off-by: Petr Štetiar [commit description]

tools/libressl: update to version 3.4.3

2022-07-15T13:52:13Z

Release notes: https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.4.3-relnotes.txt ``` It includes the following security fix: * A malicious certificate can cause an infinite loop. Reported by and fix from Tavis Ormandy and David Benjamin, Google. (CVE-2022–0778) ``` Signed-off-by: Josef Schlehofer (cherry picked from commit 25534d5cc20a807ff776fdb18847344167ce081d)

zlib: backport security fix for a reproducible crash in compressor

2022-03-24T08:40:12Z

Tavis has just reported, that he was recently trying to track down a reproducible crash in a compressor. Believe it or not, it really was a bug in zlib-1.2.11 when compressing (not decompressing!) certain inputs. Tavis has reported it upstream, but it turns out the issue has been public since 2018, but the patch never made it into a release. As far as he knows, nobody ever assigned it a CVE. Suggested-by: Tavis Ormandy References: https://www.openwall.com/lists/oss-security/2022/03/24/1 Signed-off-by: Petr Štetiar (cherry picked from commit b3aa2909a79aeff20d594160b207a89dc807c033) (cherry picked from commit 3965dda0fa70dc9408f1a2e55a3ddefde78bd50e)

tools: xxd: use more convenient source tarball

2022-03-15T17:50:32Z

Don't download all of vim just to build xxd. Use a tight tarball containing only xxd sources instead. Signed-off-by: Daniel Golle (cherry picked from commit 2b94aac7a128c9d9f4343af2265b362e8b5d5013)

tools: add xxd (from vim)

2022-03-15T17:50:26Z

U-Boot requires xxd to create the default environment from an external file as done in uboot-mediatek. Build xxd (only, not the rest of vim) as part of tools to make sure it is present on the buildhost. Reported-by: David Bauer Signed-off-by: Daniel Golle (cherry picked from commit c4dd2441e7875c9550820f8380b3e41ca619ef27)

tools/libressl: update to version 3.4.2

2022-03-06T19:56:23Z

Release notes: https://ftp.openbsd.org/pub/OpenBSD/LibreSSL/libressl-3.4.2-relnotes.txt ``` It includes the following security fix * In some situations the X.509 verifier would discard an error on an unverified certificate chain, resulting in an authentication bypass. Thanks to Ilya Shipitsin and Timo Steinlein for reporting. ``` Signed-off-by: Josef Schlehofer (cherry picked from commit 495c4f4e197166a6fa997d4620ca6c241e3abd45)

tools/libressl: update to 3.4.1

2022-03-06T19:56:23Z

Signed-off-by: Rosen Penev (cherry picked from commit 03bb3412a2b8bf8ac69e062ea9fd88e2c6c6fb57)

tools/libressl: update to 3.3.4

2022-03-06T19:56:23Z

Signed-off-by: Rosen Penev (cherry picked from commit f78ad901e1ce07c42a9f5e670c39dbdcea15eb87)

tools/libressl: update to 3.3.3

2022-03-06T19:56:23Z

Fix wrong FPIC variable usage. Fixes compilation under sparc64 host. Signed-off-by: Rosen Penev (cherry picked from commit bf4dbbb55e2b8e23f186e1334f1e9ce6a3a8ddfe)