staging/robimarko/package/libs, branch master

libxml2: update to 2.12.5

2024-02-13T11:34:56Z

Release Notes: https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.5 Fixes: CVE-2024-25062 Signed-off-by: Nick Hainke

zlib: update to 1.3.1

2024-02-02T16:26:29Z

Release Notes: https://github.com/madler/zlib/releases/tag/v1.3.1 Refresh patch: - 004-attach-sourcefiles-in-patch-002-to-buildsystem.patch Signed-off-by: Nick Hainke

openssl: update to 3.0.13

2024-02-02T05:46:52Z

Major changes between OpenSSL 3.0.12 and OpenSSL 3.0.13 [30 Jan 2024] * Fixed PKCS12 Decoding crashes ([CVE-2024-0727]) * Fixed Excessive time spent checking invalid RSA public keys ([CVE-2023-6237]) * Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129]) * Fix excessive time spent in DH check / generation with large Q parameter value ([CVE-2023-5678]) Signed-off-by: Ivan Pavlov

libbsd: update to 0.11.8

2024-01-30T09:39:21Z

Changelog: edddd80 Release libbsd 0.11.8 dd0bdb5 test: Close all descriptors before initializing them for closefrom() 0813f37 build: Check out-of-tree builds in CI df116b5 Adjust strlcpy() and strlcat() per glibc adoption ecb44e1 Do not add a pointer to the NULL constant 459b7f7 Do not confuse code analyzers with out-of-bounds array access look alike a44f885 test: Fix short-lived memory leak 3f5ca0a build: Add a coverage regex to the CI job 9d3e59a man: Use VARIANTS instead of ALTERNATIVES in libbsd(7) f02562d man: Markup function references with Xr instead of Fn b7367c9 build: Add missing dash to macro title bar 6777eb6 pwcache: Do not declare uidtb and gidtb when not used d4e0cdc fgetln: Include after f41d6c1 build: Refactor GNU .init_array support check into a new m4 function 30b48ed build: Refactor linker script detection into a new m4 function d0d8d01 build: Do not provide prototypes for arc4random() on Solaris cf61ebb build: Do not build the progname module if it is not needed 73b25a8 build: Sort entries alphabetically 5434ba1 build: Conditionalize wcslcpy() and wcslcat() functions on macOS dc1bd1a build: Conditionalize only id-from-name functions not the entire pwcache edc746e build: Conditionalize getprogname()/setprogname on macOS 8f998d1 progname: Include if available d08163b build: Check whether we need libperfstat on AIX 1186cf8 build: Annotate droppable functions for musl on next SOVERSION bump 6385ccc build: Conditionalize bsd_getopt() on macOS c120681 Move the version script comments before the symbols 9fa0676 Port getprogname() to AIX 92337b1 Make getprogname() porting mandatory 90b7f3a test: Do not use /dev/null as compiler output file 426bf45 build: Add generated *.sym files to .gitignore 21d12b0 build: On macOS do not build functions provided by the system bc65806 build: Select whether to include funopen() in the build system 8b7a4d9 build: Move Windows OS detection to the OS features section ccbfd1c build: Remove __MUSL__ definition from configure e0976d7 build: Add a new libbsd_strong_alias() macro and switch users to it 49c7dd1 build: Only emit link warnings for ELF objects 8622767 build: Use an export symbols file if there is no version script support 8f61036 build: Add -no-undefined libtool flag ae7942b build: Do not override the default DEPENDENCIES for libbsd a5faf17 Only use if present 06e8a1b Define _NSIG if it is not defined by the system 44824ac Declare environ if the system does not do so 1fb6c3f Use lockf() when flock() is not available fe16f38 test: Use open_memstream() only if available 7c652a9 test: Do not hardcode root:root user and group names ed2eb31 test: Fix closefrom() test on macOS 0f8bcdf test: Fix closefrom() test to handle open file descriptor limits 07192b3 test: Disable blank_stack_side_effects() on non-Hurd systems ca3db5e build: Do not enable ASAN for musl CI pipelines ff46386 man: Add HISTORY section to arc4random(3bsd) 4c6da57 man: Switch arc4random(3bsd) man page from OpenBSD to NetBSD 830dd88 doc: Remove written-by attribution 257800a build: Add support for sanitizer compiler flags 536a7d4 test: Exempt blank_stack_side_effects() from sanitizer checks 7ed5de0 test: Import explicit_bzero() sanitizer support changes from OpenBSD 05a802a test: Fix memory leaks in fpurge test 5962e03 man: Fix BSD and glibc versions 59a21c7 man: Update STANDARDS and HISTORY sections 7b4ebd6 include: Adjust closefrom() per glibc adoption 0dfbe76 build: Switch to debian:latest Docker image dec783d build: Fix version script linker support detection fe21244 include: Use __has_builtin to detect __builtin_offsetof support ec88b7b funopen: Replace off64_t with off_t in funopen_seek() 2337719 man: Prune unneeded include in setproctitle(3) 5dea9da build: Improve C99 compatibility of __progname configure check b9bf42d build: Enable -Wall for automake e57c078 build: Add missing AM_PROG_AR macro call to configure.ac 80f1927 build: Fix configure.ac indentation b7a8bc2 build: Require automake 1.11 e508962 build: Do not require funopen() to be ported 00b538f build: Terminate lists in variables with «# EOL» 5cfa39e build: Use «yes» instead of «true» for AC_CHECK_FUNCS cache value Signed-off-by: Nick Hainke

mbedtls: security bump to version 2.28.7

2024-01-29T09:28:41Z

This release of Mbed TLS provides bug fixes and minor enhancements. This release includes fixes for following security issues: * Timing side channel in private key RSA operations (CVE-2024-23170) Mbed TLS is vulnerable to a timing side channel in private key RSA operations. This side channel could be sufficient for an attacker to recover the plaintext. A local attacker or a remote attacker who is close to the victim on the network might have precise enough timing measurements to exploit this. It requires the attacker to send a large number of messages for decryption. * Buffer overflow in mbedtls_x509_set_extension() (CVE-2024-23775) When writing x509 extensions we failed to validate inputs passed in to mbedtls_x509_set_extension(), which could result in an integer overflow, causing a zero-length buffer to be allocated to hold the extension. The extension would then be copied into the buffer, causing a heap buffer overflow. Fixes: CVE-2024-23170, CVE-2024-23775 References: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-01-1/ References: https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2024-01-2/ Signed-off-by: orangepizza Signed-off-by: Petr Štetiar [formal fixes]

libubox: update to Git HEAD (2024-01-26)

2024-01-26T20:08:07Z

6339204c212b CMakeLists.txt: bump minimum cmake version c1be505732e6 udebug: fix crash in udebug_entry_vprintf with longer strings Signed-off-by: Felix Fietkau

libtracefs: update to 1.8

2024-01-25T16:31:50Z

Changes: 67f3b2a libtracefs: version 1.8 8a1322f libtracefs utest: Add tests to use mapping if supported 0a65b79 libtracefs: Add tracefs_mapped_is_supported() API 805f650 libtracefs: Call mmap ioctl if a refresh happens cf7e2a5 libtracefs: Fix tracefs_mmap() kbuf usage 3a26b26 libtracefs: Have nonblock tracefs_cpu reads set errno EAGAIN 2b5bb09 libtracefs: Have tracefs_mmap_read() include subbuf meta data dee0448 libtracefs: Have mapping work with the other tracefs_cpu* functions 28eebc1 libtracefs: Have tracefs_cpu_flush(_buf)() use mapping 065d914 libtracefs: Use mmapping for iterating raw events 1124e0e libtracefs: Use tracefs_cpu_*_buf() calls for iterator f43b293 libtracefs: Unmap mmap mapping on tracefs_cpu close 0d24516 libtracefs Documentation: Fix tracefs_cpu_snapshot_open() man pages 5ff31c0 libtracefs Documentation: Add tracefs_follow_events_clear() to main man page 0c7d9f7 libtracefs: Add man pages for tracefs_snapshot_*() functions b2dc3e0 libtracefs sql: Rename TIMESTAMP_USECS_DELTA to TIMESTAMP_DELTA_USECS 585ec77 libtracefs: Force off trace mmapping 2ed14b5 libtracefs: Add ring buffer memory mapping APIs 173ffc0 libtracefs meson: Add option to disable samples a55e2e8 libtracefs meson: Add option to disable documentation 93e20af libtracefs: Fix tracefs_instance_reset to clear synthetic events a1ecbff libtracefs utest: Add more tests to test tracefs_sql() 975c37c libtracefs utest: Add matches to trace_sql() tests 0567e2d libtracefs synthetic: Handle hashed name variables fcb3a83 libtracefs synthetic: Remove multiple adding of action in tracefs_synth_save() a9dae65 libtracefs: Fix sqlhist used uninitialized error fe7a467 libtracefs: Add updating and reading snapshot buffers 1ad57ab libtracefs: Add PID filtering API d8726bf libtracefs: Also clear max_graph_depth on reset eb4dd60 libtracefs: Add TIMESTAMP_USECS_DELTA to simplify SQL timestamp compares 8c57eb4 libtracefs: Add tracefs_instance_set/get_subbuf_size() 9bafb21 libtracefs: Add API to extract ring buffer statistics 141d25e libtracefs: Add tracefs_load_headers() API ef3fae7 libtracefs: Add kerneldoc comments to tracefs_instance_set_buffer_size() 31acfe1 libtracefs utest: Add test to test tracefs_instance_set/get_buffer_percent() 3e6d975 libtracefs: Add tracefs_instance_clear() API c4efaaf libtracefs: Add tracefs_instance_get/set_buffer_percent() 1e1cc54 libtracefs: Add API to read tracefs_cpu and return a kbuffer 7d395b1 libtracefs: Add tracefs_instance_file_write_number() e34cbd8 libtracefs: Increase splice to use pipe max size 1f50965 libtracefs: Add API to remove followers from an instance or toplevel 576ee0b libtracefs: Reset tracing before and after unit tests 118b694 libtracefs: Free dynamic event list in utest 5159973 libtracefs: Free tracing_dir in case of remount df563eb libtracefs: Free buf in clear_func_filter() 3cbac37 libtracefs: Free "missed_followers" of instance 0cbe56e libtracefs testing: Use one tep handle for most tests adac30f libtracefs Documentation: Fix tracefs_event_file_exists() issues 07ab199 libtracefs: Pass enum value where expected instead of int bb299b4 libtracefs: fix cscope makefile rule 420d677 libtracefs: Free "followers" when freeing instance 3f436fc libtracefs: Fix documentation of tracefs_trace_pipe_stream() flags 1fde9df libtracefs: Add explicit pthread dependency to meson d1989ae tracefs-perf: Add missing headers for syscall() and SYS_* defines Signed-off-by: Nick Hainke

libtraceevent: update to 1.8.2

2024-01-25T16:31:50Z

Changelog: 6f6d580 libtraceevent: 1.8.2 b29b192 kbuffer: Update kbuf->next in kbuffer_refresh 4b2286c kbuffer: Always walk the events to calculate timestamp in kbuffer_read_buffer() ce0acec libtraceevent meson: Add libdl dependency to meson 15a0121 libtraceevent Documentation: Fix tep_kbuffer() prototype 85a2078 libtraceevent: 1.8.1 6b21b4c libtraceevent: Add tep_get_sub_buffer_data_size() 8cf5315 libtraceevent: 1.8 7a4d5b2 kbuffer: Add kbuffer_refresh() API 33bad32 kbuffer: Add kbuffer_subbuffer() API f6bdff7 kbuffer: Add kbuffer_dup() 0582118 kbuffer: Add kbuffer_read_buffer() 014ca24 libtraceevent: Fix tep_kbuffer() to have kbuf assign long_size afead9a libtraceevent: Add tep_get_sub_buffer_commit_offset() 3152506 libtraceevent plugins: Parse sched_switch "prev_state" field for state info 4be92aa libtraceevent: Bump meson version to >=0.58.0 9b2e543 libtraceevent: sync state char array with the kernel 5b89385 libtraceevent: Add option to disable documentation a496a39 libtraceevent: Add tep_record_is_event() API Signed-off-by: Nick Hainke

libxml2: update to 2.12.4

2024-01-24T15:40:15Z

Release Notes: - https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.4 Signed-off-by: Nick Hainke

gettext-full: use autoreconf host fixup

2024-01-15T16:35:31Z

To prevent use of host's library path on Void Linux: /usr/lib/libacl.so: file not recognized: file format not recognized collect2: error: ld returned 1 exit status libtool: error: error: relink 'libgettextlib.la' with the above command before installing it Signed-off-by: Alexander Egorenkov