https://github.com/openwrt/packages/pull/11320#issuecomment-594032207



luv, libwebsockets, ttyd, netdata are build OK.

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>

Replace inactive maintainer with myself.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 7cd204e9)
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
[compile tested on powerpc_8540]

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>

It's all fixed upstream. Backported a combination of three patches.

Signed-off-by: Rosen Penev <rosenp@gmail.com>

This should finally get rid of buildbot failures.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 13810e09)

_GNU_SOURCE is needed for fdopen, sigaction, and probably more.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 7940093f)

The define in the codebase is wrong. Fixed in the Makefile.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit a5b7a461)

Changes:
-enable geoip
-add geoip db package

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit 3ee1b8ea)

Signed-off-by: Rosen Penev <rosenp@gmail.com>

This is a squash of the following cherry-picked commits:

27c47239
03124bf4
141bd553
40c7e952
1d25dcde
ea5b746e
a62c0e59
a16b2948
c24f5d25
f6c218e7

Short summary:

- adds external modules (crypto-openssl dbd-mysql dbd-odbc dbd-pgsql
  dbd-sqlite3 dbm-gdbm ldap)
- Makefile and patches are updated and cleaned
- adds myself as maintainer
- improves the cross-compile setup (via configure variables sed scripts)

For more details please check the individual commits provided above.

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>

This is a squash of the following cherry-picked commits:

40a29bf0
40c7e952
893a804c
12037b3f
193c3913
430ab5f9
0c6d461c
86396c6a

Short summary:

- version is bumped to 1.7.0
- Makefile and patches are updated and cleaned
- adds myself as maintainer
- improves the cross-compile setup (via configure variables, patches &
  sed scripts)

For more details please check the individual commits provided above.

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>

Signed-off-by: Josip Kelečić <josip.kelecic@sartura.hr>

Currently only xml2-config is installed, for both the normal libxml2
package as well as the host package. The problem with that is that due
to multilib considerations the build host may have xml2-config installed
with a host triplet prefix, like x86_64-pc-linux-gnu-xml2-config (and
xml2-config as a symbolic link to it). Gentoo for instance sets it up
like this.

Packages may actually search for a prefixed xml2-config before searching
for xml2-config. An example would be Asterisk:

checking for x86_64-pc-linux-gnu-xml2-config... /usr/bin/x86_64-pc-linux-gnu-xml2-config

This then introduces wrong information into the build, for instance
bad includes:

~/tmp/openwrt $ /usr/bin/x86_64-pc-linux-gnu-xml2-config --cflags
-I/usr/include/libxml2

When the intention is to use OpenWrt's own (host) libxml2 one would like
to see this output used instead:

~/tmp/openwrt $ ./staging_dir/hostpkg/bin/xml2-config --cflags
-I/home/sk/tmp/openwrt/staging_dir/hostpkg/include/libxml2

This commit addresses this by installing xml2-config with a suitable
prefix and creating a symbolic link xml2-config. This is done for both
the host package and the normal package. The latter also needs this fix
because the target may use the same triplet as the host system (for
instance x86_64 cross-compiling for x86_64).

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>

Commit 218f0229a4594b32d9db6ad0678cdce7e2663e27 added a workaround for a
problem. The host compile overwrote xml2-config in
"$(STAGING_DIR)/host/bin". The workaround fixed the issue for regular
target packages. But it didn't leave a proper xml2-config script for
host packages.

Times have changed. Host packages are now installed in
"$(STAGING_DIR_HOSTPKG). So there is no longer any danger of the host
package overwriting the xml2-config script for target packages. So
revert the mentioned commit, leaving us with two proper xml2-config
scripts, one for target package builds and one for host package builds.

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>

The host build requires libxml2-dev. This commit adds the dependency for
libxml2/host, as the host system may not have it installed. This also
avoids using the host's xml2-config (in /usr/bin for instance) while
linking to libraries in staging_dir/hostpkg.

ldd staging_dir/hostpkg/bin/xsltproc | grep xml2
	libxml2.so.2 => /home/sk/tmp/openwrt/staging_dir/hostpkg/lib/libxml2.so.2 (0x00007fcc0644c000)

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
(cherry-picked from 05f0beb6)

Fixes:
CVE-2019-13117
CVE-2019-13118

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from f77c53cf)

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry-picked from 48ad713a)

Signed-off-by: Nicholas Smith <nicholas.smith@telcoantennas.com.au>

Signed-off-by: Nicholas Smith <nicholas.smith@telcoantennas.com.au>

* allows building as mips16 (fixes broken mips16/32 mixed static linking)
* add some static link related flags to reduce target binary size

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
(cherry-picked from a558b209)

On GCC9, it throws a Wformat-nonliteral error. Unfortunately, there's no
easy was to fix it as it is fortify-headers where the warning ultimately
comes from.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from abdec893)

Signed-off-by: Jiri Slachta <jiri@slachta.eu>

This version is up to 20% faster than 1.0.1.
Build without cryptouser information, which is not available in 19.07.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>

In the version 2.4.2, there was introduced a new header file.
Ship it to InstallDev

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>

Use a fixed ENGINES_DIR location, instead of trying to read it from the
openssl Makefile.

It also fixes the zero-copy config option not being passed down to the
cmake options.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry-picked from 6a5f7920)

This is an alternate AF_ALG engine for openssl, based on the devcrypto
engine, but using the AF_ALG interface instead of /dev/crypto.

It is different than the AF_ALG engine that ships with OpenSSL:
  - it uses sync calls, instead of async
  - it suports more algorithms

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 0e0bd6da)

Fixes CVE-2019-19221

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry-picked from df634dcc)

This version adds a new RegSet API, and fixes the following:
 - CVE-2019-19012
 - CVE-2019-19203
 - CVE-2019-19204
 - CVE-2019-19246
 - some problems (found by libFuzzer test)

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry-picked from 94895ec8)

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit 744e2dd1)

Changes:
-add InstallDev section
-remove uclibc patch (issue fixed in upstream)

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit df853b2d)

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit 2949906e)

Fixes CVE-2019-16168

In other news:

- adds ABI_VERSION
- prefers INSTALL_DATA over CP
- removes gratuitous trailing slashes

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
(cherry-picked from commit 33fecfef)

Fixes CVE-2019-5018
Also drops upstreamed patch.

Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
(cherry picked from commit 2f7fbde7)

* update to 4.11.4 (python3 version)
* re-enable AD-DC option
* add 'samba_nice' UCI option via "config procd 'extra'"
* restructure buildsteps (don't rely on waf --targets logic)
* move quota option into VFS
* move ACL option into AC-DC
* add more admin-tools
* use rpath_install for libs
* fix rpath + rstrip

extra:
* add rpcsvc-proto package _(don't rely on nfs-utils/host for headers, rpcgen anymore)_
* add libasn1 host build _(samba4 is looking for the bins)_

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

* update to 1.2.5
* remove upstream merged patches

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>

[openwrt-19.07] libuv: update to 1.32.0

update to 1.32.0
Update is required to build the latest node.js v12.x.

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>

Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit 7c827937)

Fixes compilation with uClibc-ng.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry-picked from 93d04995)