Update for 2022.02.1

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

CHANGES

@@ -1,3 +1,57 @@
+2022.02.1, released April 11th, 2022
+
+	Important / security related fixes.
+
+	Graphs: Also generate a build time timeline graph (for top
+	level parallel builds).
+
+	scripts/pkg-stats: Optimize memory consumption for CPE parsing
+
+	Fix compatibility issue with the fakeroot script logic and
+	modern versions of dash.
+
+	Change git:// URLs pointing to Github to https://, now that
+	Github has turned off support for git://
+
+	Updated/fixed packages: ace, apache, apr, apr-util, belr,
+	bind, bluez5_utils, boinc, bpftool, busybox, cloop, cog,
+	containerd, cppcms, dav1d, dhcp, dieharder, dnsmasq,
+	docker-cli, docker-engine, efl, ell, fakeroot, flac,
+	fluidsynth, gdk-pixbuf, glib-networking, gnutls, gst-omx,
+	gst1-devtools, gst1-libav, gst1-plugins-bad,
+	gst1-plugins-base, gst1-plugins-good, gst1-plugins-ugly,
+	gst1-python, gst1-rtsp-server, gst1-vaapi, gstreamer1,
+	gstreamer1-editing-services, haproxym htop, intel-gmmlib,
+	ipmiutil, iwd, jack1, jack2, lftp, libabseil-cpp, libbluray,
+	libcamera-apps, libcoap, libcurl, libest, libgee, libglib2,
+	libgtk3, libiec61850, libkrb5, libminiupnpc, libodb,
+	libodb-boost, libopenssl, libp11, libpsl, libressl, librstp,
+	librtlsdr, liburing, libyang, libzlib, luasec, lxc, matio,
+	meson, minidlna, minizip, mpd, mtools, netatalk, nbd, odb,
+	openblas, openssh, openvpn, optee-os, opus, paho-mqtt-c,
+	pango, php, pipewire, pkcs11-helper, postgresql, ppp,
+	protozero, python-aioconsole, python-avro, python-brotli,
+	python-greenlet, python-paramiko, python-pillow,
+	python-rpi-gpio, python-treq, python-twisted, python-ujson,
+	python-weasyprint, qt5base, qt5wayland, raptor, rpi-firmware,
+	rpi-userland, rtl_433, runc, rust, rygel, samba4,
+	shairport-sync, spice, spidev_test, stunnel, systemd,
+	timescaledb, trace-cmd, trousers, ts4900-fpga, tvheadend,
+	udpcast, unbound, upower, urandom-scripts, usbguard, valgrind,
+	valijson, vim, wavpack, wget, wireplumber, wireshark, woff2,
+	xmrig, zabbix, zlib-ng, zynaddsubfx, zziplib
+
+	Issues resolved (http://bugs.uclibc.org):
+
+	#13971: ip6tables-nft build does not include MASQUERADE target..
+	#14651: OpenSSH 8.9p1 compiler error under ARM
+	#14656: Adding dependencies from an external tree does not work
+	#14661: Fakeroot script relies on bash-isms, does not work ..
+	#14686: genimage.cfg have a hard-coded .ext4 extension which..
+	#14701: Multiple unresolved symbols while building kernel ..
+	#14711: nodjs build problem missing bzip
+	#14731: BR2_PACKAGE_IOSTAT
+
 2022.02, released March 8th, 2022
 
 	Various fixes.

DEVELOPERS

@@ -2082,7 +2082,7 @@ F:	package/libevdev/
 F:	package/pkg-qmake.mk
 F:	package/qt5/qt5opcua/
 
-N:	Neal Frager <neal.frager@xilinx.com>
+N:	Neal Frager <neal.frager@amd.com>
 F:	board/zynqmp/
 F:	configs/zynqmp_zcu102_defconfig
 
@@ -2749,8 +2749,11 @@ F:	utils/size-stats-compare
 F:	toolchain/
 
 N:	Thomas Huth <huth@tuxfamily.org>
+F:	board/qemu/m68k-mcf5208/
+F:	configs/qemu_m68k_mcf5208_defconfig
 F:	package/ascii-invaders/
 F:	package/frotz/
+F:	package/kvm-unit-tests/
 F:	package/xorcurses/
 
 N:	Thomas Petazzoni <thomas.petazzoni@bootlin.com>

Makefile

@@ -92,9 +92,9 @@ all:
 .PHONY: all
 
 # Set and export the version string
-export BR2_VERSION := 2022.02
+export BR2_VERSION := 2022.02.1
 # Actual time the release is cut (for reproducible builds)
-BR2_VERSION_EPOCH = 1646777000
+BR2_VERSION_EPOCH = 1649713000
 
 # Save running make version since it's clobbered by the make package
 RUNNING_MAKE_VERSION := $(MAKE_VERSION)
@@ -873,6 +873,9 @@ graph-build: $(O)/build/build-time.log
 				   --type=pie-$(t) --input=$(<) \
 				   --output=$(GRAPHS_DIR)/build.pie-$(t).$(BR_GRAPH_OUT) \
 				   $(if $(BR2_GRAPH_ALT),--alternate-colors)$(sep))
+	./support/scripts/graph-build-time --type=timeline --input=$(<) \
+		--output=$(GRAPHS_DIR)/build.timeline.$(BR_GRAPH_OUT) \
+		$(if $(BR2_GRAPH_ALT),--alternate-colors)
 
 .PHONY: graph-depends-requirements
 graph-depends-requirements:

board/technologic/ts4900/readme.txt

@@ -9,7 +9,7 @@ Freescale i.MX6 Single or Quad Core ARM Cortex-A9 CPU clocked at
 1GHz. The TS-4900 features Gigabit Ethernet, SATA II Port, PCI Express
 Bus, high speed USB host and device (OTG), and microSD card.
 More details on the board here:
-   http://wiki.embeddedarm.com/wiki/TS-4900
+   https://docs.embeddedTS.com/TS-4900
 
 The TS-4900 is not currently supported by mainline Linux, so a
 Technologic Systems Linux is used based on Linux 4.1.
@@ -48,5 +48,5 @@ connector etc.
 The bootloader comes pre-flashed on the board on an SPI flash. Since
 updating the bootloader is risky and not trivial, it is not included
 in the Buildroot defconfig. Refer to
-http://wiki.embeddedarm.com/wiki/TS-4900#U-Boot for details on which
+https://docs.embeddedTS.com/TS-4900#U-Boot for details on which
 U-Boot config to use and how to flash it.

board/technologic/ts5500/readme.txt

@@ -5,7 +5,7 @@ This document explains how to set up a basic Buildroot system for the
 Technologic Systems TS-5x00 serie of x86-based Single Board Computers.
 
 TS-5x00 Single Board Computers are based on the AMD Elan520 processor. For more
-information please have a look at http://wiki.embeddedarm.com/wiki/#AMD
+information please have a look at https://docs.embeddedTS.com/Documentation_Home#AMD
 
 The kernel configuration works for any AMD Elan520-based SBCs, but the support
 is enhanced for the TS-5500 and TS-5400 models (on-board devices registration
@@ -45,7 +45,7 @@ config, the BIOS must use Logical Block Addressing (LBA). You can do it by
 choosing "Ide 0: AUTOCONFIG, LBA" under "IDE DRIVE GEOMETRY" in the "Basic CMOS
 Configuration" screen. Also, don't forget to set the 'active' (or 'bootable')
 flag on partition 1. For details about the CMOS setup, please see:
-http://wiki.embeddedarm.com/wiki/TS-5500#System_BIOS_Setup_Screens
+https://docs.embeddedts.com/TS-5500#System_BIOS_Setup_Screens
 
 Connect a terminal program to the rs232 connector marked "COM2"
 with baudrate set to 115200, insert the Compact Flash card into the socket,

board/technologic/ts7680/readme.txt

@@ -8,7 +8,7 @@ The TS-7680 SBC is based on the Freescale i.MX286 ARM ARM926EJ-S
 running at 454MHz. The TS-7680 features are 10/100 Ethernet ports,
 Wi-Fi, microSD card, eMMC, NOR Flash, USB host port, CAN ports,
 relays and ADC/DAC. More details on the board here:
-https://wiki.embeddedarm.com/wiki/TS-7680
+https://docs.embeddedTS.com/TS-7680
 
 The TS-7680 uses a 4.9 Linux kernel provided by Technologic Systems.
 
@@ -46,5 +46,5 @@ the SD jumper is present and the U-Boot jumper is not.
 The bootloader comes pre-flashed on the board on an SPI flash. Since
 updating the bootloader is risky and not trivial, it is not included
 in the Buildroot defconfig. Refer to
-https://wiki.embeddedarm.com/wiki/TS-7680#U-Boot for details on
+https://docs.embeddedts.com/TS-7680#U-Boot for details on
 which U-Boot config to use and how to flash it.

boot/boot-wrapper-aarch64/boot-wrapper-aarch64.mk

@@ -5,7 +5,8 @@
 ################################################################################
 
 BOOT_WRAPPER_AARCH64_VERSION = 8d5a765251d9113c3c0f9fa14de42a9e7486fe8a
-BOOT_WRAPPER_AARCH64_SITE = git://git.kernel.org/pub/scm/linux/kernel/git/mark/boot-wrapper-aarch64.git
+BOOT_WRAPPER_AARCH64_SITE = https://git.kernel.org/pub/scm/linux/kernel/git/mark/boot-wrapper-aarch64.git
+BOOT_WRAPPER_AARCH64_SITE_METHOD = git
 BOOT_WRAPPER_AARCH64_LICENSE = BSD-3-Clause
 BOOT_WRAPPER_AARCH64_LICENSE_FILES = LICENSE.txt
 BOOT_WRAPPER_AARCH64_DEPENDENCIES = linux

boot/optee-os/Config.in

@@ -54,6 +54,13 @@ config BR2_TARGET_OPTEE_OS_VERSION
 	default BR2_TARGET_OPTEE_OS_CUSTOM_REPO_VERSION \
 				if BR2_TARGET_OPTEE_OS_CUSTOM_GIT
 
+config BR2_TARGET_OPTEE_OS_NEEDS_DTC
+	bool "OP-TEE OS needs dtc"
+	select BR2_PACKAGE_HOST_DTC
+	help
+	  Select this option if your OP-TEE OS platform configuration
+	  requires the Device Tree compiler to be available.
+
 config BR2_TARGET_OPTEE_OS_CORE
 	bool "Build core"
 	default y

boot/optee-os/optee-os.mk

@@ -23,6 +23,10 @@ endif
 
 OPTEE_OS_DEPENDENCIES = host-openssl host-python3 host-python-pycryptodomex host-python-pyelftools
 
+ifeq ($(BR2_TARGET_OPTEE_OS_NEEDS_DTC),y)
+OPTEE_OS_DEPENDENCIES += host-dtc
+endif
+
 # On 64bit targets, OP-TEE OS can be built in 32bit mode, or
 # can be built in 64bit mode and support 32bit and 64bit
 # trusted applications. Since buildroot currently references

configs/qemu_xtensa_lx60_nommu_defconfig

@@ -7,6 +7,9 @@ BR2_XTENSA_OVERLAY_FILE="https://github.com/jcmvbkbc/xtensa-toolchain-build/raw/
 BR2_PACKAGE_HOST_ELF2FLT=y
 # BR2_USE_MMU is not set
 
+# Use minimal busybox with hush and networking tools
+BR2_PACKAGE_BUSYBOX_CONFIG="package/busybox/busybox-minimal.config"
+
 # System
 BR2_SYSTEM_DHCP="eth0"
 BR2_TARGET_GENERIC_GETTY_PORT="ttyS0"

configs/ts7680_defconfig

@@ -4,7 +4,7 @@ BR2_ROOTFS_POST_IMAGE_SCRIPT="support/scripts/genimage.sh"
 BR2_ROOTFS_POST_SCRIPT_ARGS="-c board/technologic/ts7680/genimage.cfg"
 BR2_LINUX_KERNEL=y
 BR2_LINUX_KERNEL_CUSTOM_TARBALL=y
-BR2_LINUX_KERNEL_CUSTOM_TARBALL_LOCATION="$(call github,embeddedarm,linux-4.9.y,d03d426e6abd95a973bc669315206295713c17e8)/linux-d03d426e6abd95a973bc669315206295713c17e8.tar.gz"
+BR2_LINUX_KERNEL_CUSTOM_TARBALL_LOCATION="$(call github,embeddedTS,linux-4.9.y,d03d426e6abd95a973bc669315206295713c17e8)/linux-d03d426e6abd95a973bc669315206295713c17e8.tar.gz"
 BR2_LINUX_KERNEL_DEFCONFIG="ts_imx28"
 BR2_LINUX_KERNEL_UIMAGE=y
 BR2_LINUX_KERNEL_UIMAGE_LOADADDR="0x40008000"

configs/zynqmp_zcu102_defconfig

@@ -4,7 +4,7 @@ BR2_ROOTFS_POST_BUILD_SCRIPT="board/zynqmp/post-build.sh"
 BR2_ROOTFS_POST_IMAGE_SCRIPT="board/zynqmp/post-image.sh"
 BR2_LINUX_KERNEL=y
 BR2_LINUX_KERNEL_CUSTOM_GIT=y
-BR2_LINUX_KERNEL_CUSTOM_REPO_URL="git://github.com/Xilinx/linux-xlnx.git"
+BR2_LINUX_KERNEL_CUSTOM_REPO_URL="https://github.com/Xilinx/linux-xlnx.git"
 BR2_LINUX_KERNEL_CUSTOM_REPO_VERSION="v5.15-930-g966124532656bc95d781abf57531e4cd4f962237"
 BR2_LINUX_KERNEL_DEFCONFIG="xilinx_zynqmp"
 BR2_LINUX_KERNEL_DTS_SUPPORT=y
@@ -22,7 +22,7 @@ BR2_TARGET_ARM_TRUSTED_FIRMWARE_BL31_UBOOT=y
 BR2_TARGET_UBOOT=y
 BR2_TARGET_UBOOT_BUILD_SYSTEM_KCONFIG=y
 BR2_TARGET_UBOOT_CUSTOM_GIT=y
-BR2_TARGET_UBOOT_CUSTOM_REPO_URL="git://github.com/Xilinx/u-boot-xlnx.git"
+BR2_TARGET_UBOOT_CUSTOM_REPO_URL="https://github.com/Xilinx/u-boot-xlnx.git"
 BR2_TARGET_UBOOT_CUSTOM_REPO_VERSION="v2022.01-165-g667001319cbe511ce6353195fb4910ae5cb041ce"
 BR2_TARGET_UBOOT_BOARD_DEFCONFIG="xilinx_zynqmp_virt"
 BR2_TARGET_UBOOT_CONFIG_FRAGMENT_FILES="board/zynqmp/zcu102/uboot.fragment"

configs/zynqmp_zcu106_defconfig

@@ -4,7 +4,7 @@ BR2_ROOTFS_POST_BUILD_SCRIPT="board/zynqmp/post-build.sh"
 BR2_ROOTFS_POST_IMAGE_SCRIPT="board/zynqmp/post-image.sh"
 BR2_LINUX_KERNEL=y
 BR2_LINUX_KERNEL_CUSTOM_GIT=y
-BR2_LINUX_KERNEL_CUSTOM_REPO_URL="git://github.com/Xilinx/linux-xlnx.git"
+BR2_LINUX_KERNEL_CUSTOM_REPO_URL="https://github.com/Xilinx/linux-xlnx.git"
 BR2_LINUX_KERNEL_CUSTOM_REPO_VERSION="v5.15-930-g966124532656bc95d781abf57531e4cd4f962237"
 BR2_LINUX_KERNEL_DEFCONFIG="xilinx_zynqmp"
 BR2_LINUX_KERNEL_DTS_SUPPORT=y
@@ -22,7 +22,7 @@ BR2_TARGET_ARM_TRUSTED_FIRMWARE_BL31_UBOOT=y
 BR2_TARGET_UBOOT=y
 BR2_TARGET_UBOOT_BUILD_SYSTEM_KCONFIG=y
 BR2_TARGET_UBOOT_CUSTOM_GIT=y
-BR2_TARGET_UBOOT_CUSTOM_REPO_URL="git://github.com/Xilinx/u-boot-xlnx.git"
+BR2_TARGET_UBOOT_CUSTOM_REPO_URL="https://github.com/Xilinx/u-boot-xlnx.git"
 BR2_TARGET_UBOOT_CUSTOM_REPO_VERSION="v2022.01-165-g667001319cbe511ce6353195fb4910ae5cb041ce"
 BR2_TARGET_UBOOT_BOARD_DEFCONFIG="xilinx_zynqmp_virt"
 BR2_TARGET_UBOOT_CONFIG_FRAGMENT_FILES="board/zynqmp/zcu106/uboot.fragment"

docs/manual/faq-troubleshooting.txt

@@ -45,7 +45,7 @@ distribution_ and you should opt for something like:
 
 * http://www.openembedded.org[openembedded]
 * https://www.yoctoproject.org[yocto]
-* http://www.emdebian.org[emdebian]
+* https://www.debian.org/ports/[Debian]
 * https://fedoraproject.org/wiki/Architectures[Fedora]
 * http://en.opensuse.org/Portal:ARM[openSUSE ARM]
 * http://archlinuxarm.org[Arch Linux ARM]

fs/common.mk

@@ -186,7 +186,8 @@ $$(BINARIES_DIR)/$$(ROOTFS_$(2)_FINAL_IMAGE_NAME): $$(ROOTFS_$(2)_DEPENDENCIES)
 
 	$$(foreach hook,$$(ROOTFS_$(2)_PRE_GEN_HOOKS),\
 		$$(call PRINTF,$$($$(hook))) >> $$(FAKEROOT_SCRIPT)$$(sep))
-	echo "rm -rf $$(TARGET_DIR)/run/* $$(TARGET_DIR)/run/.[^.]* $$(TARGET_DIR)/tmp/* $$(TARGET_DIR)/tmp/.[^.]*" >> $$(FAKEROOT_SCRIPT)
+	echo "find $$(TARGET_DIR)/run/ -mindepth 1 -prune -print0 | xargs -0r rm -rf --" >> $$(FAKEROOT_SCRIPT)
+	echo "find $$(TARGET_DIR)/tmp/ -mindepth 1 -prune -print0 | xargs -0r rm -rf --" >> $$(FAKEROOT_SCRIPT)
 	$$(call PRINTF,$$(ROOTFS_REPRODUCIBLE)) >> $$(FAKEROOT_SCRIPT)
 	$$(call PRINTF,$$(ROOTFS_SELINUX)) >> $$(FAKEROOT_SCRIPT)
 	$$(call PRINTF,$$(ROOTFS_$(2)_CMD)) >> $$(FAKEROOT_SCRIPT)

fs/oci/Config.in

@@ -1,5 +1,6 @@
 config BR2_TARGET_ROOTFS_OCI
 	bool "oci image"
+	depends on BR2_PACKAGE_HOST_GO_TARGET_ARCH_SUPPORTS
 	help
 	  Build an OCI (Open Container Initiative) image.
 

linux/Config.in

@@ -31,7 +31,7 @@ config BR2_LINUX_KERNEL_LATEST_VERSION
 	bool "Latest version (5.15)"
 
 config BR2_LINUX_KERNEL_LATEST_CIP_VERSION
-	bool "Latest CIP SLTS version (5.10.100-cip2)"
+	bool "Latest CIP SLTS version (5.10.104-cip3)"
 	help
 	  CIP launched in the spring of 2016 to address the needs of
 	  organizations in industries such as power generation and
@@ -50,7 +50,7 @@ config BR2_LINUX_KERNEL_LATEST_CIP_VERSION
 	  https://www.cip-project.org
 
 config BR2_LINUX_KERNEL_LATEST_CIP_RT_VERSION
-	bool "Latest CIP RT SLTS version (5.10.100-cip2-rt2)"
+	bool "Latest CIP RT SLTS version (5.10.104-cip3-rt3)"
 	help
 	  Same as the CIP version, but this is the PREEMPT_RT realtime
 	  variant.
@@ -125,9 +125,9 @@ endif
 
 config BR2_LINUX_KERNEL_VERSION
 	string
-	default "5.15.26" if BR2_LINUX_KERNEL_LATEST_VERSION
-	default "5.10.100-cip2" if BR2_LINUX_KERNEL_LATEST_CIP_VERSION
-	default "5.10.100-cip2-rt2" if BR2_LINUX_KERNEL_LATEST_CIP_RT_VERSION
+	default "5.15.33" if BR2_LINUX_KERNEL_LATEST_VERSION
+	default "5.10.104-cip3" if BR2_LINUX_KERNEL_LATEST_CIP_VERSION
+	default "5.10.104-cip3-rt3" if BR2_LINUX_KERNEL_LATEST_CIP_RT_VERSION
 	default BR2_LINUX_KERNEL_CUSTOM_VERSION_VALUE \
 		if BR2_LINUX_KERNEL_CUSTOM_VERSION
 	default "custom" if BR2_LINUX_KERNEL_CUSTOM_TARBALL
@@ -261,11 +261,11 @@ config BR2_LINUX_KERNEL_SIMPLEIMAGE
 
 config BR2_LINUX_KERNEL_IMAGE
 	bool "Image"
-	depends on BR2_aarch64 || BR2_riscv
+	depends on BR2_aarch64 || BR2_aarch64_be || BR2_riscv
 
 config BR2_LINUX_KERNEL_IMAGEGZ
 	bool "Image.gz"
-	depends on BR2_aarch64 || BR2_riscv
+	depends on BR2_aarch64 || BR2_aarch64_be || BR2_riscv
 
 config BR2_LINUX_KERNEL_LINUX_BIN
 	bool "linux.bin"

linux/linux.hash

@@ -1,16 +1,16 @@
 # From https://www.kernel.org/pub/linux/kernel/v5.x/sha256sums.asc
-sha256  bb5a1df15a10a715807a44872ff4fe775337aae445285181f1d1ba0c78b1d7f2  linux-5.16.12.tar.xz
-sha256  58122134f2613fcbb200bb2399ef2117852166a8e11eed4b632a86b20b6bbe3a  linux-5.15.26.tar.xz
-sha256  4fb8ad55e6430342e4fbc94d54e594e9be8eb6a8bea1d71eccf835948d08580a  linux-5.10.103.tar.xz
-sha256  b2f1201f64f010e9e3c85d6f303a559a7944a80a0244a86b8f5035bd23f1f40d  linux-5.4.182.tar.xz
+sha256  da6d2cfa8b5b82d8a17b032a627fc1c7885097523c32cc8a4294745697d59b7e  linux-5.16.19.tar.xz
+sha256  c30a17e6090f9ebf2d8ff58cd6c92c7324b1f4a8b3aa6a7f68850310af05a9c4  linux-5.15.33.tar.xz
+sha256  dbef6a06325433481551cb8cfca9254d908d0ae950bc809f3da8ade00c485693  linux-5.10.110.tar.xz
+sha256  9fbc8bfdc28c9fce2307bdf7cf1172c9819df673397a411c40a5c3d0a570fdbc  linux-5.4.188.tar.xz
 # From https://www.kernel.org/pub/linux/kernel/v4.x/sha256sums.asc
 sha256  35017bb40b604e0b577fc2b87e727632b46608a2ba3a4f5858b9177f58f376b3  linux-4.4.302.tar.xz
-sha256  295e4bb3ba3244a9f4c48139ad13f78145f3e6402e11aa25b20aadb9ae9f2b25  linux-4.9.304.tar.xz
-sha256  03a65f405c3acae4dd8cd952444b7cd931f972c01a42e20a471319a2f6c018d2  linux-4.14.269.tar.xz
-sha256  4fcfe814780d63dc56e907bf41596ff162e9601978bdc1a60eab64cc3903a22c  linux-4.19.232.tar.xz
+sha256  e86a55a89e1e28756b890b2b78f8b582d05cecb3509ff5c353e9534866468614  linux-4.9.309.tar.xz
+sha256  100a9960fb2d8e079c9feeef640715a7fb749ed728a57e427f9e2443212e58f9  linux-4.14.275.tar.xz
+sha256  bafff35102cc486ec2bf94c6d908be8e24017b2e4a1873f52f24c855eb220cd8  linux-4.19.237.tar.xz
 # Locally computed
-sha256  e90e8100bf44cdd6714bca3b9b1f78694c99bfa9bdff761de06b192dfb230831  linux-cip-5.10.100-cip2.tar.gz
-sha256  945b63f280c5bd9aad66016ef6fbed57612864192bc0f54f6800562f56cfd518  linux-cip-5.10.100-cip2-rt2.tar.gz
+sha256  63e6df81c4a747c60eed535ffc2f6f1ddb0c17ec349e860316d9a700c69ab38e  linux-cip-5.10.104-cip3.tar.gz
+sha256  9a45929d91ebaddbf6a0ef29750775e33d3c3f56f42f0a9e95e77e5b4eba3c6e  linux-cip-5.10.104-cip3-rt3.tar.gz
 
 # Licenses hashes
 sha256  fb5a425bd3b3cd6071a3a9aff9909a859e7c1158d54d32e07658398cd67eb6a0  COPYING

linux/linux.mk

@@ -566,6 +566,12 @@ endif
 
 ifeq ($(BR_BUILDING),y)
 
+ifeq ($(BR2_LINUX_KERNEL_CUSTOM_VERSION),y)
+ifeq ($(LINUX_VERSION),)
+$(error No custom kernel version set. Check your BR2_LINUX_KERNEL_CUSTOM_VERSION_VALUE setting)
+endif
+endif
+
 ifeq ($(BR2_LINUX_KERNEL_USE_DEFCONFIG),y)
 # We must use the user-supplied kconfig value, because
 # LINUX_KCONFIG_DEFCONFIG will at least contain the

package/ace/0001-ACE-ace-SSL-SSL_Asynch_BIO.cpp-fix-build-with-libres.patch

@@ -0,0 +1,52 @@
+From e06cadc3b95a577e6a8bbc94f93dd063710c73a1 Mon Sep 17 00:00:00 2001
+From: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+Date: Sun, 3 Apr 2022 15:25:49 +0200
+Subject: [PATCH] ACE/ace/SSL/SSL_Asynch_BIO.cpp: fix build with libressl
+
+Fix the following build failure with libressl:
+
+/home/autobuild/autobuild/instance-10/output-1/build/ace-7.0.6/ace/SSL/SSL_Asynch_BIO.cpp:174:7: error: 'BIO_get_init' was not declared in this scope; did you mean 'BIO_set_init'?
+  174 |   if (BIO_get_init(pBIO) == 0 || p_stream == 0 || buf == 0 || len <= 0)
+      |       ^~~~~~~~~~~~
+      |       BIO_set_init
+
+Fixes:
+ - http://autobuild.buildroot.org/results/386afa88ac9e5e3bb65dddeabf610bb1e9bc4285
+
+Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+[Retrieved from:
+https://github.com/DOCGroup/ACE_TAO/commit/e06cadc3b95a577e6a8bbc94f93dd063710c73a1]
+---
+ ACE/ace/SSL/SSL_Asynch_BIO.cpp | 6 +++---
+ 1 file changed, 3 insertions(+), 3 deletions(-)
+
+diff --git a/ace/SSL/SSL_Asynch_BIO.cpp b/ace/SSL/SSL_Asynch_BIO.cpp
+index a657d8a14e6f7..64aa14c6ab9a7 100644
+--- a/ace/SSL/SSL_Asynch_BIO.cpp
++++ b/ace/SSL/SSL_Asynch_BIO.cpp
+@@ -41,7 +41,7 @@ extern "C"
+ 
+ #define BIO_TYPE_ACE  ( 21 | BIO_TYPE_SOURCE_SINK )
+ 
+-#if OPENSSL_VERSION_NUMBER < 0x10100000L
++#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
+ static BIO_METHOD methods_ACE =
+   {
+     BIO_TYPE_ACE, // BIO_TYPE_PROXY_SERVER,
+@@ -68,14 +68,14 @@ static BIO_METHOD methods_ACE =
+ #else
+ static BIO_METHOD* methods_ACE;
+ # define BIO_set_num(b, val)
+-#endif /* OPENSSL_VERSION_NUMBER < 0x10100000L */
++#endif /* OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) */
+ 
+ ACE_BEGIN_VERSIONED_NAMESPACE_DECL
+ 
+ BIO *
+ ACE_SSL_make_BIO (void * ssl_asynch_stream)
+ {
+-#if OPENSSL_VERSION_NUMBER < 0x10100000L
++#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
+   BIO * const pBIO = BIO_new (&methods_ACE);
+ #else
+   if (!methods_ACE)

package/ace/ace.hash

@@ -1,3 +1,6 @@
+# From https://download.dre.vanderbilt.edu/previous_versions/ACE-7.0.6.tar.bz2.md5:
+md5  d1656851619aff15365270ccf2d56c6e  ACE-7.0.6.tar.bz2
+
 # Locally Computed:
-sha256  a28339750620c70cd29a8a7088a4bc6ebaf1ff7ba667498a0279ac97f0e32e01  ACE-7.0.1.tar.gz
+sha256  4a0cd7da4851f769fddfcf33f663eba4afad824efeff9f59f134c4640ee80216  ACE-7.0.6.tar.bz2
 sha256  687bf9d16119e0caf6fb5c18214928fd6ea0da10df91e906255b7613af8061d8  COPYING

package/ace/ace.mk

@@ -4,8 +4,8 @@
 #
 ################################################################################
 
-ACE_VERSION = 7.0.1
-ACE_SOURCE = ACE-$(ACE_VERSION).tar.gz
+ACE_VERSION = 7.0.6
+ACE_SOURCE = ACE-$(ACE_VERSION).tar.bz2
 ACE_SITE = http://download.dre.vanderbilt.edu/previous_versions
 ACE_LICENSE = DOC
 ACE_LICENSE_FILES = COPYING

package/aer-inject/aer-inject.mk

@@ -5,7 +5,8 @@
 ################################################################################
 
 AER_INJECT_VERSION = 9bd5e2c7886fca72f139cd8402488a2235957d41
-AER_INJECT_SITE = git://git.kernel.org/pub/scm/linux/kernel/git/gong.chen/aer-inject.git
+AER_INJECT_SITE = https://git.kernel.org/pub/scm/linux/kernel/git/gong.chen/aer-inject.git
+AER_INJECT_SITE_METHOD = git
 AER_INJECT_LICENSE = GPL-2.0
 AER_INJECT_LICENSE_FILES = README
 AER_INJECT_DEPENDENCIES = host-flex host-bison

package/apache/Config.in

@@ -4,7 +4,7 @@ config BR2_PACKAGE_APACHE
 	depends on BR2_TOOLCHAIN_HAS_THREADS
 	depends on BR2_USE_MMU # apr
 	select BR2_PACKAGE_APR_UTIL
-	select BR2_PACKAGE_PCRE
+	select BR2_PACKAGE_PCRE2
 	help
 	  The Apache HTTP Server Project is an effort to develop and
 	  maintain an open-source HTTP server for modern operating

package/apache/apache.hash

@@ -1,5 +1,5 @@
-# From https://downloads.apache.org/httpd/httpd-2.4.52.tar.bz2.{sha256,sha512}
-sha256  0127f7dc497e9983e9c51474bed75e45607f2f870a7675a86dc90af6d572f5c9  httpd-2.4.52.tar.bz2
-sha512  97c021c576022a9d32f4a390f62e07b5f550973aef2f299fd52defce1a9fa5d27bd4a676e7bf214373ba46063d34aecce42de62fdd93678a4e925cfcbb2afdf6  httpd-2.4.52.tar.bz2
+# From https://downloads.apache.org/httpd/httpd-2.4.53.tar.bz2.{sha256,sha512}
+sha256  d0bbd1121a57b5f2a6ff92d7b96f8050c5a45d3f14db118f64979d525858db63  httpd-2.4.53.tar.bz2
+sha512  07ef59594251a30a864cc9cc9a58ab788c2d006cef85b728f29533243927c63cb063e0867f2a306f37324c3adb9cf7dcb2402f3516b05c2c6f32469d475dd756  httpd-2.4.53.tar.bz2
 # Locally computed
 sha256  47b8c2b6c3309282a99d4a3001575c790fead690cc14734628c4667d2bbffc43  LICENSE

package/apache/apache.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-APACHE_VERSION = 2.4.52
+APACHE_VERSION = 2.4.53
 APACHE_SOURCE = httpd-$(APACHE_VERSION).tar.bz2
 APACHE_SITE = https://downloads.apache.org/httpd
 APACHE_LICENSE = Apache-2.0
@@ -17,11 +17,11 @@ APACHE_INSTALL_STAGING = YES
 # We have a patch touching configure.in and Makefile.in,
 # so we need to autoreconf:
 APACHE_AUTORECONF = YES
-APACHE_DEPENDENCIES = apr apr-util pcre
+APACHE_DEPENDENCIES = apr apr-util pcre2
 
 APACHE_CONF_ENV= \
 	ap_cv_void_ptr_lt_long=no \
-	PCRE_CONFIG=$(STAGING_DIR)/usr/bin/pcre-config
+	PCRE_CONFIG=$(STAGING_DIR)/usr/bin/pcre2-config
 
 ifeq ($(BR2_PACKAGE_APACHE_MPM_EVENT),y)
 APACHE_MPM = event
@@ -35,7 +35,7 @@ APACHE_CONF_OPTS = \
 	--sysconfdir=/etc/apache2 \
 	--with-apr=$(STAGING_DIR)/usr \
 	--with-apr-util=$(STAGING_DIR)/usr \
-	--with-pcre=$(STAGING_DIR)/usr/bin/pcre-config \
+	--with-pcre=$(STAGING_DIR)/usr/bin/pcre2-config \
 	--enable-http \
 	--enable-dbd \
 	--enable-proxy \

package/apr-util/Config.in

@@ -8,7 +8,7 @@ config BR2_PACKAGE_APR_UTIL
 	help
 	  The utility library for the apache runtime project
 
-	  http://apr.apache.org/
+	  https://apr.apache.org
 
 comment "apr-util needs a toolchain w/ dynamic library"
 	depends on BR2_USE_MMU

package/apr-util/apr-util.mk

@@ -6,7 +6,7 @@
 
 APR_UTIL_VERSION = 1.6.1
 APR_UTIL_SOURCE = apr-util-$(APR_UTIL_VERSION).tar.bz2
-APR_UTIL_SITE = http://archive.apache.org/dist/apr
+APR_UTIL_SITE = https://archive.apache.org/dist/apr
 APR_UTIL_LICENSE = Apache-2.0
 APR_UTIL_LICENSE_FILES = LICENSE
 APR_UTIL_CPE_ID_VENDOR = apache

package/apr/0004-apr-1.7.0-CVE-2021-35940.patch

@@ -0,0 +1,57 @@
+
+SECURITY: CVE-2021-35940 (cve.mitre.org)
+
+Restore fix for CVE-2017-12613 which was missing in 1.7.x branch, though
+was addressed in 1.6.x in 1.6.3 and later via r1807976.
+
+The fix was merged back to 1.7.x in r1891198.
+
+Since this was a regression in 1.7.0, a new CVE name has been assigned
+to track this, CVE-2021-35940.
+
+Thanks to Iveta Cesalova <icesalov redhat.com> for reporting this issue.
+
+https://svn.apache.org/viewvc?view=revision&revision=1891198
+
+[Retrieved from:
+https://dist.apache.org/repos/dist/release/apr/patches/apr-1.7.0-CVE-2021-35940.patch]
+Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+
+Index: ./time/unix/time.c
+===================================================================
+--- ./time/unix/time.c	(revision 1891197)
++++ ./time/unix/time.c	(revision 1891198)
+@@ -142,6 +142,9 @@
+     static const int dayoffset[12] =
+     {306, 337, 0, 31, 61, 92, 122, 153, 184, 214, 245, 275};
+ 
++    if (xt->tm_mon < 0 || xt->tm_mon >= 12)
++        return APR_EBADDATE;
++
+     /* shift new year to 1st March in order to make leap year calc easy */
+ 
+     if (xt->tm_mon < 2)
+Index: ./time/win32/time.c
+===================================================================
+--- ./time/win32/time.c	(revision 1891197)
++++ ./time/win32/time.c	(revision 1891198)
+@@ -54,6 +54,9 @@
+     static const int dayoffset[12] =
+     {0, 31, 59, 90, 120, 151, 181, 212, 243, 273, 304, 334};
+ 
++    if (tm->wMonth < 1 || tm->wMonth > 12)
++        return APR_EBADDATE;
++
+     /* Note; the caller is responsible for filling in detailed tm_usec,
+      * tm_gmtoff and tm_isdst data when applicable.
+      */
+@@ -228,6 +231,9 @@
+     static const int dayoffset[12] =
+     {306, 337, 0, 31, 61, 92, 122, 153, 184, 214, 245, 275};
+ 
++    if (xt->tm_mon < 0 || xt->tm_mon >= 12)
++        return APR_EBADDATE;
++
+     /* shift new year to 1st March in order to make leap year calc easy */
+ 
+     if (xt->tm_mon < 2)

package/apr/Config.in

@@ -9,7 +9,7 @@ config BR2_PACKAGE_APR
 	  predictable and consistent interface to underlying
 	  platform-specific implementations
 
-	  http://apr.apache.org/
+	  https://apr.apache.org
 
 comment "apr needs a toolchain w/ dynamic library"
 	depends on BR2_USE_MMU

package/apr/apr.mk

@@ -6,7 +6,7 @@
 
 APR_VERSION = 1.7.0
 APR_SOURCE = apr-$(APR_VERSION).tar.bz2
-APR_SITE = http://archive.apache.org/dist/apr
+APR_SITE = https://archive.apache.org/dist/apr
 APR_LICENSE = Apache-2.0
 APR_LICENSE_FILES = LICENSE
 APR_CPE_ID_VENDOR = apache
@@ -16,6 +16,9 @@ APR_INSTALL_STAGING = YES
 # so we need to autoreconf:
 APR_AUTORECONF = YES
 
+# 0004-apr-1.7.0-CVE-2021-35940.patch
+APR_IGNORE_CVES += CVE-2021-35940
+
 # avoid apr_hints.m4 by setting apr_preload_done=yes and set
 # the needed CFLAGS on our own (avoids '-D_REENTRANT' in case
 # not supported by toolchain and subsequent configure failure)

package/asterisk/asterisk.mk

@@ -247,7 +247,7 @@ ASTERISK_CONF_OPTS += --without-speex --without-speexdsp
 endif
 
 # asterisk needs an openssl-enabled libsrtp
-ifeq ($(BR2_PACKAGE_LIBSRTP)$(BR2_PACKAGE_OPENSSL)x$(BR2_STATIC_LIBS),yyx)
+ifeq ($(BR2_PACKAGE_LIBSRTP)$(BR2_PACKAGE_OPENSSL),yy)
 ASTERISK_DEPENDENCIES += libsrtp
 ASTERISK_CONF_OPTS += --with-srtp
 else

package/belr/belr.mk

@@ -17,9 +17,8 @@ BELR_CONF_OPTS = \
 
 ifeq ($(BR2_STATIC_LIBS),y)
 BELR_CONF_OPTS += -DENABLE_SHARED=OFF -DENABLE_STATIC=ON
-else ifeq ($(BR2_SHARED_STATIC_LIBS),y)
-BELR_CONF_OPTS += -DENABLE_SHARED=ON -DENABLE_STATIC=ON
-else ifeq ($(BR2_SHARED_LIBS),y)
+else
+# cannot build static and shared together
 BELR_CONF_OPTS += -DENABLE_SHARED=ON -DENABLE_STATIC=OFF
 endif
 

package/bind/Config.in

@@ -1,6 +1,11 @@
 config BR2_PACKAGE_BIND
 	bool "bind"
-	depends on BR2_USE_MMU # fork()
+	depends on BR2_USE_MMU # fork(), libuv
+	depends on BR2_TOOLCHAIN_HAS_SYNC_4 # libuv
+	depends on BR2_TOOLCHAIN_HAS_THREADS_NPTL # libuv
+	depends on !BR2_STATIC_LIBS # libuv
+	select BR2_PACKAGE_LIBUV
+	select BR2_PACKAGE_OPENSSL
 	help
 	  BIND (Berkeley Internet Name Domain) is an
 	  implementation of the Domain Name System (DNS) protocols
@@ -24,6 +29,11 @@ config BR2_PACKAGE_BIND
 
 	  https://www.isc.org/bind/
 
+comment "bind needs a toolchain w/ NPTL, dynamic library"
+	depends on BR2_USE_MMU
+	depends on BR2_TOOLCHAIN_HAS_SYNC_4
+	depends on !BR2_TOOLCHAIN_HAS_THREADS_NPTL || BR2_STATIC_LIBS
+
 if BR2_PACKAGE_BIND
 
 config BR2_PACKAGE_BIND_SERVER

package/bind/bind.hash

@@ -1,4 +1,4 @@
-# Verified from https://ftp.isc.org/isc/bind9/9.11.36/bind-9.11.36.tar.gz.asc
+# Verified from https://ftp.isc.org/isc/bind9/9.16.27/bind-9.16.27.tar.xz.asc
 # with key AADBBA5074F1402F7B69D56BC5B4EE931A9F9DFD
-sha256  c953fcb6703b395aaa53e65ff8b2869b69a5303dd60507cba2201305e1811681  bind-9.11.36.tar.gz
-sha256  cad49daa42654bc241762cd998630168a2542c8fd6fad3881e2eac1510bb6fcd  COPYRIGHT
+sha256  90902aaf104c81019d75d6f8b2f7ec40fcd249406f894b44e4a9c6b5e08bf566  bind-9.16.27.tar.xz
+sha256  daf6f1eddf5983ed664a2d125b619e56e2e93917c19d0d41c7586ea153ba2155  COPYRIGHT

package/bind/bind.mk

@@ -4,12 +4,12 @@
 #
 ################################################################################
 
-BIND_VERSION = 9.11.36
+BIND_VERSION = 9.16.27
+BIND_SOURCE= bind-$(BIND_VERSION).tar.xz
 BIND_SITE = https://ftp.isc.org/isc/bind9/$(BIND_VERSION)
 # bind does not support parallel builds.
 BIND_MAKE = $(MAKE1)
 BIND_INSTALL_STAGING = YES
-BIND_CONFIG_SCRIPTS = bind9-config isc-config.sh
 BIND_LICENSE = MPL-2.0
 BIND_LICENSE_FILES = COPYRIGHT
 BIND_CPE_ID_VENDOR = isc
@@ -28,18 +28,25 @@ BIND_TARGET_SERVER_SBIN += dnssec-keyfromlabel dnssec-signzone tsig-keygen
 BIND_TARGET_TOOLS_BIN = dig host nslookup nsupdate
 BIND_CONF_ENV = \
 	BUILD_CC="$(TARGET_CC)" \
-	BUILD_CFLAGS="$(TARGET_CFLAGS)"
+	BUILD_CFLAGS="$(TARGET_CFLAGS)" \
+	LIBS=`$(PKG_CONFIG_HOST_BINARY) --libs openssl`
 BIND_CONF_OPTS = \
 	$(if $(BR2_TOOLCHAIN_HAS_THREADS),--enable-threads,--disable-threads) \
 	--without-lmdb \
-	--with-libjson=no \
+	--with-json-c=no \
 	--with-randomdev=/dev/urandom \
 	--enable-epoll \
 	--enable-filter-aaaa \
-	--disable-backtrace
+	--disable-backtrace \
+	--with-openssl=$(STAGING_DIR)/usr \
+	--with-ecdsa=yes \
+	--with-eddsa=no \
+	--with-aes=yes
+
+BIND_DEPENDENCIES = host-pkgconf libuv openssl
 
 ifeq ($(BR2_PACKAGE_ZLIB),y)
-BIND_CONF_OPTS += --with-zlib=$(STAGING_DIR)/usr
+BIND_CONF_OPTS += --with-zlib
 BIND_DEPENDENCIES += zlib
 else
 BIND_CONF_OPTS += --without-zlib
@@ -60,29 +67,18 @@ BIND_CONF_OPTS += --with-gssapi=no
 endif
 
 ifeq ($(BR2_PACKAGE_LIBXML2),y)
-BIND_CONF_OPTS += --with-libxml2=$(STAGING_DIR)/usr
+BIND_CONF_OPTS += --with-libxml2
 BIND_DEPENDENCIES += libxml2
 else
 BIND_CONF_OPTS += --with-libxml2=no
 endif
 
-ifeq ($(BR2_PACKAGE_OPENSSL),y)
-BIND_DEPENDENCIES += host-pkgconf openssl
-BIND_CONF_OPTS += \
-	--with-openssl=$(STAGING_DIR)/usr \
-	--with-ecdsa=yes \
-	--with-eddsa=no \
-	--with-aes=yes
-BIND_CONF_ENV += LIBS=`$(PKG_CONFIG_HOST_BINARY) --libs openssl`
 # GOST cipher support requires openssl extra engines
 ifeq ($(BR2_PACKAGE_OPENSSL_ENGINES),y)
 BIND_CONF_OPTS += --with-gost=yes
 else
 BIND_CONF_OPTS += --with-gost=no
 endif
-else
-BIND_CONF_OPTS += --with-openssl=no
-endif
 
 # Used by dnssec-keymgr
 ifeq ($(BR2_PACKAGE_PYTHON_PLY),y)

package/bluez5_utils/0006-src-shared-util.h-include-sys-types.h.patch

@@ -0,0 +1,39 @@
+From 1d21878d84f16e28e16c61b36799a62e22732d97 Mon Sep 17 00:00:00 2001
+From: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+Date: Thu, 24 Feb 2022 18:19:33 +0100
+Subject: [PATCH] src/shared/util.h: include sys/types.h
+
+Include sys/types.h to avoid the following build failure on musl raised
+since commit fb57ad9b9d107856e5f1c8135da04ffa2f7a11ac:
+
+In file included from src/shared/queue.c:15:
+./src/shared/util.h:106:1: error: unknown type name 'ssize_t'; did you mean 'size_t'?
+  106 | ssize_t util_getrandom(void *buf, size_t buflen, unsigned int flags);
+      | ^~~~~~~
+      | size_t
+
+Fixes:
+ - http://autobuild.buildroot.org/results/83eaeb3863040645409f5787fdbdde79385c5257
+
+Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+[Upstream status:
+https://patchwork.kernel.org/project/bluetooth/patch/20220224173104.479809-1-fontaine.fabrice@gmail.com]
+---
+ src/shared/util.h | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/src/shared/util.h b/src/shared/util.h
+index c01eccf8a..554481e1e 100644
+--- a/src/shared/util.h
++++ b/src/shared/util.h
+@@ -14,6 +14,7 @@
+ #include <alloca.h>
+ #include <byteswap.h>
+ #include <string.h>
++#include <sys/types.h>
+ 
+ #define ARRAY_SIZE(arr) (sizeof(arr) / sizeof((arr)[0]))
+ #define BIT(n)  (1 << (n))
+-- 
+2.34.1
+

package/bluez5_utils/Config.in

@@ -79,15 +79,23 @@ config BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HEALTH
 
 config BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HID
 	bool "build hid plugin"
+	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
 	select BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HOG
 	help
 	  Build plugin for HID (input) profiles.
 
+comment "hid plugin needs a toolchain w/ headers >= 3.18"
+	depends on !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
+
 config BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HOG
 	bool "build hog plugin"
+	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
 	help
 	  Build plugin for HoG (input) profiles.
 
+comment "hog plugin needs a toolchain w/ headers >= 3.18"
+	depends on !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
+
 config BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_MESH
 	bool "build mesh plugin"
 	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_4_12 # ell
@@ -126,11 +134,15 @@ config BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_SAP
 config BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_SIXAXIS
 	bool "build sixaxis plugin"
 	depends on BR2_PACKAGE_HAS_UDEV
+	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18 # hid plugin
 	select BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HID # runtime
 	help
 	  Build sixaxis plugin (support Sony Dualshock
 	  controller)
 
+comment "sixaxis plugin needs a toolchain w/ headers >= 3.18"
+	depends on !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
+
 comment "sixaxis plugin needs udev /dev management"
 	depends on !BR2_PACKAGE_HAS_UDEV
 
@@ -142,11 +154,15 @@ config BR2_PACKAGE_BLUEZ5_UTILS_TEST
 config BR2_PACKAGE_BLUEZ5_UTILS_TOOLS_HID2HCI
 	bool "build hid2hci tool"
 	depends on BR2_PACKAGE_HAS_UDEV
+	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18 # hid plugin
 	select BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HID # runtime
 	select BR2_PACKAGE_BLUEZ5_UTILS_TOOLS
 	help
 	  Build hid2hci tool
 
+comment "hid2hci tool needs a toolchain w/ headers >= 3.18"
+	depends on !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
+
 comment "hid2hci tool needs udev /dev management"
 	depends on !BR2_PACKAGE_HAS_UDEV
 

package/boinc/boinc.mk

@@ -26,6 +26,7 @@ BOINC_CONF_ENV = \
 BOINC_CONF_OPTS = \
 	--disable-apps \
 	--disable-boinczip \
+	--disable-fcgi \
 	--disable-manager \
 	--disable-server \
 	--enable-client \
@@ -38,13 +39,6 @@ ifeq ($(BR2_PACKAGE_FREETYPE),y)
 BOINC_DEPENDENCIES += freetype
 endif
 
-ifeq ($(BR2_PACKAGE_LIBFCGI),y)
-BOINC_DEPENDENCIES += libfcgi
-BOINC_CONF_OPTS += --enable-fcgi
-else
-BOINC_CONF_OPTS += --disable-fcgi
-endif
-
 BOINC_MAKE_OPTS = CXXFLAGS="$(TARGET_CXXFLAGS) -std=c++11"
 
 # Remove boinc-client because it is incompatible with buildroot

package/bpftool/Config.in

@@ -1,5 +1,15 @@
+config BR2_PACKAGE_BPFTOOL_ARCH_SUPPORTS
+	bool
+	# see libbpf/src/bpf.c
+	default y if BR2_arc
+	default y if BR2_aarch64 || BR2_aarch64_be
+	default y if BR2_i386 || BR2_x86_64
+	default y if BR2_sparc || BR2_sparc64
+	default y if BR2_s390x
+
 config BR2_PACKAGE_BPFTOOL
 	bool "bpftool"
+	depends on BR2_PACKAGE_BPFTOOL_ARCH_SUPPORTS
 	depends on !BR2_nios2 # binutils
 	depends on BR2_USE_WCHAR # binutils, elfutils
 	depends on !BR2_STATIC_LIBS # elfutils
@@ -13,6 +23,7 @@ config BR2_PACKAGE_BPFTOOL
 	  of eBPF programs and maps.
 
 comment "bpftool needs a uClibc or glibc toolchain w/ wchar, dynamic library, threads, headers >= 4.12"
+	depends on BR2_PACKAGE_BPFTOOL_ARCH_SUPPORTS
 	depends on !BR2_nios2
 	depends on !BR2_USE_WCHAR || BR2_STATIC_LIBS \
 		|| !BR2_TOOLCHAIN_HAS_THREADS \

package/brltty/Config.in

@@ -4,7 +4,7 @@ config BR2_PACKAGE_BRLTTY
 	depends on BR2_TOOLCHAIN_HAS_THREADS
 	depends on !BR2_STATIC_LIBS
 	depends on BR2_USE_MMU # fork()
-	select BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HID if BR2_PACKAGE_BLUEZ5_UTILS # runtime
+	select BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HID if BR2_PACKAGE_BLUEZ5_UTILS && BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18 # runtime
 	help
 	  A daemon providing access to the Linux console for a blind
 	  person using a refreshable braille display.

package/busybox/busybox-minimal.config

@@ -1018,7 +1018,7 @@ CONFIG_UDHCP_DEBUG=9
 CONFIG_UDHCPC_SLACK_FOR_BUGGY_SERVERS=80
 # CONFIG_FEATURE_UDHCP_RFC3397 is not set
 # CONFIG_FEATURE_UDHCP_8021Q is not set
-CONFIG_IFUPDOWN_UDHCPC_CMD_OPTIONS="-b -R"
+CONFIG_IFUPDOWN_UDHCPC_CMD_OPTIONS="-R"
 
 #
 # Print Utilities

package/cloop/cloop.mk

@@ -14,7 +14,7 @@ HOST_CLOOP_DEPENDENCIES = host-zlib
 
 define HOST_CLOOP_BUILD_CMDS
 	$(HOST_CONFIGURE_OPTS) $(MAKE1) -C $(@D) APPSONLY=yes \
-		CFLAGS="$(HOST_CFLAGS) -D_GNU_SOURCE"
+		CFLAGS="$(HOST_CFLAGS) -D_GNU_SOURCE" CPPFLAGS="-std=c++14"
 endef
 
 define HOST_CLOOP_INSTALL_CMDS

package/cog/cog.hash

@@ -1,7 +1,7 @@
-# From https://wpewebkit.org/releases/cog-0.12.1.tar.xz.sums
-md5  25a80a5a8a52b8873933a128151b8928  cog-0.12.1.tar.xz
-sha1  3b9f67bc23cd9e3db2221366d6cde4ca0b06b811  cog-0.12.1.tar.xz
-sha256  23caaafa2ef5c2f6a97d467fcce908ea71087ad03b72deb9280225c0dd561c91  cog-0.12.1.tar.xz
+# From https://wpewebkit.org/releases/cog-0.12.4.tar.xz.sums
+md5  cdb8acdc3acc9b5082e7db9c279155c3  cog-0.12.4.tar.xz
+sha1  600b30efadf55bf94ea5062a0a1b2ea0b74053e5  cog-0.12.4.tar.xz
+sha256  9983c621c8e14fca3792ff566cb6b86d6a1f17446eb4c083af4a5a749112982f  cog-0.12.4.tar.xz
 
 # Hashes for license files:
 sha256  e6c42d93c68b292bcccf6d2ec3e13da85df90b718ba27c2c2a01053a9d009252  COPYING

package/cog/cog.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-COG_VERSION = 0.12.1
+COG_VERSION = 0.12.4
 COG_SITE = https://wpewebkit.org/releases
 COG_SOURCE = cog-$(COG_VERSION).tar.xz
 COG_INSTALL_STAGING = YES

package/containerd/containerd.hash

@@ -1,3 +1,3 @@
 # Computed locally
-sha256  40c9767af3e87f2c36adf2f563f0a8374e80b30bd2b7aa80058c85912406cef4  containerd-1.5.9.tar.gz
+sha256  02b79d5e2b07b5e64cd28f1fe84395ee11eef95fc49fd923a9ab93022b148be6  containerd-1.5.11.tar.gz
 sha256  4bbe3b885e8cd1907ab4cf9a41e862e74e24b5422297a4f2fe524e6a30ada2b4  LICENSE

package/containerd/containerd.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-CONTAINERD_VERSION = 1.5.9
+CONTAINERD_VERSION = 1.5.11
 CONTAINERD_SITE = $(call github,containerd,containerd,v$(CONTAINERD_VERSION))
 CONTAINERD_LICENSE = Apache-2.0
 CONTAINERD_LICENSE_FILES = LICENSE

package/cppcms/Config.in

@@ -1,13 +1,10 @@
 config BR2_PACKAGE_CPPCMS
 	bool "cppcms"
 	depends on BR2_INSTALL_LIBSTDCPP
-	depends on BR2_PACKAGE_LIBGPG_ERROR_ARCH_SUPPORTS # libgcrypt
 	depends on BR2_TOOLCHAIN_HAS_THREADS_NPTL
 	depends on !BR2_STATIC_LIBS # dlopen()
 	depends on BR2_USE_WCHAR
-	select BR2_PACKAGE_ZLIB
 	select BR2_PACKAGE_PCRE
-	select BR2_PACKAGE_LIBGCRYPT
 	help
 	  CppCMS is a Free High Performance Web Development Framework
 	  (not a CMS) aimed for Rapid Web Application Development. It

package/cppcms/cppcms.mk

@@ -18,7 +18,7 @@ CPPCMS_CONF_OPTS = \
 	-DCMAKE_SKIP_RPATH=ON \
 	-DCMAKE_CXX_FLAGS="$(CPPCMS_CXXFLAGS)"
 
-CPPCMS_DEPENDENCIES = zlib pcre libgcrypt
+CPPCMS_DEPENDENCIES = pcre
 
 ifeq ($(BR2_PACKAGE_CPPCMS_ICU),y)
 CPPCMS_CONF_OPTS += -DDISABLE_ICU_LOCALE=OFF
@@ -28,6 +28,27 @@ else
 CPPCMS_CONF_OPTS += -DDISABLE_ICU_LOCALE=ON
 endif
 
+ifeq ($(BR2_PACKAGE_LIBGCRYPT),y)
+CPPCMS_CONF_OPTS += -DDISABLE_GCRYPT=OFF
+CPPCMS_DEPENDENCIES += libgcrypt
+else
+CPPCMS_CONF_OPTS += -DDISABLE_GCRYPT=ON
+endif
+
+ifeq ($(BR2_PACKAGE_OPENSSL),y)
+CPPCMS_CONF_OPTS += -DDISABLE_OPENSSL=OFF
+CPPCMS_DEPENDENCIES += openssl
+else
+CPPCMS_CONF_OPTS += -DDISABLE_OPENSSL=ON
+endif
+
+ifeq ($(BR2_PACKAGE_ZLIB),y)
+CPPCMS_CONF_OPTS += -DDISABLE_GZIP=OFF
+CPPCMS_DEPENDENCIES += zlib
+else
+CPPCMS_CONF_OPTS += -DDISABLE_GZIP=ON
+endif
+
 ifeq ($(BR2_TOOLCHAIN_USES_UCLIBC),y)
 # posix backend needs monetary.h which isn't available on uClibc
 CPPCMS_CONF_OPTS += -DDISABLE_POSIX_LOCALE=on

package/cwiid/Config.in

@@ -4,7 +4,7 @@ config BR2_PACKAGE_CWIID
 	depends on BR2_USE_WCHAR # bluez5_utils -> libglib2
 	depends on BR2_TOOLCHAIN_HAS_THREADS # bluez5_utils -> dbus, alsa-lib, libglib2
 	depends on BR2_USE_MMU # bluez5_utils -> dbus, libglib2
-	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_4 # bluez5_utils
+	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18 # bluez5_utils hid plugin
 	depends on BR2_TOOLCHAIN_HAS_SYNC_4 # bluez5_utils
 	select BR2_PACKAGE_BLUEZ5_UTILS
 	select BR2_PACKAGE_BLUEZ5_UTILS_PLUGINS_HID # runtime
@@ -28,9 +28,9 @@ config BR2_PACKAGE_CWIID_WMGUI
 	select BR2_PACKAGE_LIBGTK2
 endif
 
-comment "cwiid needs a toolchain w/ dynamic lib, threads, wchar, headers >= 3.4"
+comment "cwiid needs a toolchain w/ dynamic lib, threads, wchar, headers >= 3.18"
 	depends on BR2_TOOLCHAIN_HAS_SYNC_4
 	depends on BR2_STATIC_LIBS || !BR2_USE_WCHAR || \
 		!BR2_TOOLCHAIN_HAS_THREADS || \
-		!BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_4
+		!BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_18
 	depends on !BR2_USE_MMU

package/dahdi-linux/dahdi-linux.mk

@@ -5,7 +5,8 @@
 ################################################################################
 
 DAHDI_LINUX_VERSION = 5c840cf43838e0690873e73409491c392333b3b8
-DAHDI_LINUX_SITE = git://git.asterisk.org/dahdi/linux.git
+DAHDI_LINUX_SITE = https://gerrit.asterisk.org/dahdi-linux
+DAHDI_LINUX_SITE_METHOD = git
 
 # We need to download all those firmware blobs ourselves, otherwise
 # dahdi-linux will try to download them at install time.

package/dav1d/dav1d.hash

@@ -1,3 +1,4 @@
+# From http://download.videolan.org/pub/videolan/dav1d/0.9.2/dav1d-0.9.2.tar.xz.sha256
+sha256  e3235ab6c43c0135b0db1d131e1923fad4c84db9d85683e30b91b33a52d61c71  dav1d-0.9.2.tar.xz
 # Locally computed
-sha256  0d198c4fe63fe7f0395b1b17de75b21c8c4508cd3204996229355759efa30ef8  dav1d-0.9.2.tar.bz2
 sha256  b327887de263238deaa80c34cdd2ff3e0ba1d35db585ce14a37ce3e74ee389e9  COPYING

package/dav1d/dav1d.mk

@@ -5,8 +5,8 @@
 ################################################################################
 
 DAV1D_VERSION = 0.9.2
-DAV1D_SOURCE = dav1d-$(DAV1D_VERSION).tar.bz2
-DAV1D_SITE = https://code.videolan.org/videolan/dav1d/-/archive/$(DAV1D_VERSION)
+DAV1D_SOURCE = dav1d-$(DAV1D_VERSION).tar.xz
+DAV1D_SITE = http://download.videolan.org/pub/videolan/dav1d/$(DAV1D_VERSION)
 DAV1D_LICENSE = BSD-2-Clause
 DAV1D_LICENSE_FILES = COPYING
 DAV1D_INSTALL_STAGING = YES

package/dhcp/Config.in

@@ -3,7 +3,6 @@ config BR2_PACKAGE_DHCP
 	# fork()
 	depends on BR2_USE_MMU
 	depends on BR2_PACKAGE_BUSYBOX_SHOW_OTHERS
-	select BR2_PACKAGE_BIND
 	help
 	  DHCP relay agent from the ISC DHCP distribution.
 

package/dhcp/dhcp.mk

@@ -9,8 +9,10 @@ DHCP_SITE = https://ftp.isc.org/isc/dhcp/$(DHCP_VERSION)
 DHCP_INSTALL_STAGING = YES
 DHCP_LICENSE = MPL-2.0
 DHCP_LICENSE_FILES = LICENSE
-DHCP_DEPENDENCIES = bind host-gawk
+DHCP_DEPENDENCIES = host-gawk
 DHCP_CPE_ID_VENDOR = isc
+# internal bind does not support parallel builds.
+DHCP_MAKE = $(MAKE1)
 
 # use libtool-enabled configure.ac
 define DHCP_LIBTOOL_AUTORECONF
@@ -21,11 +23,12 @@ DHCP_CONF_ENV = \
 	CPPFLAGS='-D_PATH_DHCPD_CONF=\"/etc/dhcp/dhcpd.conf\" \
 		-D_PATH_DHCLIENT_CONF=\"/etc/dhcp/dhclient.conf\"' \
 	CFLAGS='$(TARGET_CFLAGS) -DISC_CHECK_NONE=1'
+DHCP_BIND_EXTRA_CONFIG = BUILD_CC='$(TARGET_CC)'
 
 DHCP_CONF_ENV += ac_cv_prog_AWK=$(HOST_DIR)/bin/gawk
 
 DHCP_CONF_OPTS = \
-	--with-libbind=$(STAGING_DIR)/usr \
+	--with-bind-extra-config="$(DHCP_BIND_EXTRA_CONFIG)" \
 	--with-randomdev=/dev/random \
 	--with-srv-lease-file=/var/lib/dhcp/dhcpd.leases \
 	--with-srv6-lease-file=/var/lib/dhcp/dhcpd6.leases \
@@ -38,8 +41,18 @@ DHCP_CONF_OPTS = \
 	--with-relay-pid-file=/var/run/dhcrelay.pid \
 	--with-relay6-pid-file=/var/run/dhcrelay6.pid
 
+ifeq ($(BR2_PACKAGE_ZLIB),y)
+DHCP_BIND_EXTRA_CONFIG += --with-zlib=$(STAGING_DIR)/usr
+DHCP_DEPENDENCIES += zlib
+else
+DHCP_BIND_EXTRA_CONFIG += --without-zlib
+endif
+
+ifeq ($(BR2_TOOLCHAIN_HAS_LIBATOMIC),y)
+DHCP_CONF_ENV += LIBS=-latomic
+endif
+
 ifeq ($(BR2_STATIC_LIBS),y)
-DHCP_CONF_ENV += LIBS="`$(STAGING_DIR)/usr/bin/bind9-config --libs bind9`"
 DHCP_CONF_OPTS += --disable-libtool
 else
 DHCP_POST_EXTRACT_HOOKS += DHCP_LIBTOOL_AUTORECONF

package/dieharder/0005-Remove-defunct-rgb_operm.patch

@@ -0,0 +1,732 @@
+From 40d377b86c856f5a4510a6f5cd56be004873ad77 Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?Marcus=20M=C3=BCller?= <mueller@kit.edu>
+Date: Mon, 12 Oct 2020 21:30:12 +0200
+Subject: [PATCH] Remove defunct rgb_operm
+
+[Retrieved from:
+https://github.com/eddelbuettel/dieharder/pull/2/commits/40d377b86c856f5a4510a6f5cd56be004873ad77]
+Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+---
+ include/Makefile.am           |   1 -
+ include/dieharder/rgb_operm.h |  38 --
+ include/dieharder/tests.h     |   2 -
+ libdieharder/rgb_operm.c      | 633 ----------------------------------
+ 4 files changed, 674 deletions(-)
+ delete mode 100644 include/dieharder/rgb_operm.h
+ delete mode 100644 libdieharder/rgb_operm.c
+
+diff --git a/include/Makefile.am b/include/Makefile.am
+index f80b4ff..e4659cd 100644
+--- a/include/Makefile.am
++++ b/include/Makefile.am
+@@ -33,7 +33,6 @@ nobase_include_HEADERS = dieharder/copyright.h \
+ 	dieharder/rgb_lagged_sums.h \
+ 	dieharder/rgb_lmn.h \
+ 	dieharder/rgb_minimum_distance.h \
+-	dieharder/rgb_operm.h \
+ 	dieharder/rgb_persist.h \
+ 	dieharder/rgb_permutations.h \
+ 	dieharder/rgb_timing.h \
+diff --git a/include/dieharder/rgb_operm.h b/include/dieharder/rgb_operm.h
+deleted file mode 100644
+index c48fa37..0000000
+--- a/include/dieharder/rgb_operm.h
++++ /dev/null
+@@ -1,38 +0,0 @@
+-/*
+- * rgb_operm test header.
+- */
+-
+-/*
+- * function prototype
+- */
+-int rgb_operm(Test **test,int irun);
+-
+-static Dtest rgb_operm_dtest __attribute__((unused)) = {
+-  "RGB Overlapping Permuations Test",
+-  "rgb_operm",
+-  "\n\
+-#========================================================================\n\
+-#                 RGB Overlapping Permutations Test\n\
+-# Forms both the exact (expected) covariance matrix for overlapping\n\
+-# permutations of random integer and an empirical covariance matrix\n\
+-# formed from a long string of samples.  The difference is expected\n\
+-# to have a chisq distribution and hence can be transformed into a\n\
+-# sample p-value.  Note that this is one possible functional replacement\n\
+-# for the broken/defunct diehard operm5 test, but one that permits k (the\n\
+-# number of numbers in the overlapping permutation window) to be varied\n\
+-# from 2 to perhaps 8.\n\
+-#\n",
+-  100,     /* Default psamples */
+-  100000,  /* Default tsamples */
+-  1,       /* We magically make all the bit tests return a single histogram */
+-  rgb_operm,
+-  0
+-};
+-
+-/*
+- * Global variables.
+- *
+- * rgb_operm_k is the size of the overlapping window that is slid along
+- * a data stream of rands from x_i to x_{i+k} to compute c[][].
+- */
+-unsigned int rgb_operm_k;
+diff --git a/include/dieharder/tests.h b/include/dieharder/tests.h
+index 1674aed..b50dbe3 100644
+--- a/include/dieharder/tests.h
++++ b/include/dieharder/tests.h
+@@ -11,7 +11,6 @@
+ #include <dieharder/rgb_kstest_test.h>
+ #include <dieharder/rgb_lagged_sums.h>
+ #include <dieharder/rgb_minimum_distance.h>
+-#include <dieharder/rgb_operm.h>
+ #include <dieharder/rgb_permutations.h>
+ #include <dieharder/dab_bytedistrib.h>
+ #include <dieharder/dab_dct.h>
+@@ -80,7 +79,6 @@
+    RGB_PERMUTATIONS,
+    RGB_LAGGED_SUMS,
+    RGB_LMN,
+-   RGB_OPERM,
+    DAB_BYTEDISTRIB,
+    DAB_DCT,
+    DAB_FILLTREE,
+diff --git a/libdieharder/rgb_operm.c b/libdieharder/rgb_operm.c
+deleted file mode 100644
+index 15f8e9a..0000000
+--- a/libdieharder/rgb_operm.c
++++ /dev/null
+@@ -1,633 +0,0 @@
+-/*
+- * ========================================================================
+- * $Id: rgb_operm.c 252 2006-10-10 13:17:36Z rgb $
+- *
+- * See copyright in copyright.h and the accompanying file COPYING
+- * ========================================================================
+- */
+-
+-/*
+- * ========================================================================
+- * This is the revised Overlapping Permutations test.  It directly
+- * simulates the covariance matrix of overlapping permutations.  The way
+- * this works below (tentatively) is:
+- *
+- *    For a bit ntuple of length N, slide a window of length N to the
+- *    right one bit at a time.  Compute the permutation index of the
+- *    original ntuple, the permutation index of the window ntuple, and
+- *    accumulate the covariance matrix of the two positions.  This
+- *    can be directly and precisely computed as well.  The simulated
+- *    result should be distributed according to the chisq distribution,
+- *    so we subtract the two and feed it into the chisq program as a
+- *    vector to compute p.
+- *
+- * This MAY NOT BE RIGHT.  I'm working from both Marsaglia's limited
+- * documentation (in a program that doesn't do ANYTHING like what the
+- * documentation says it does) and from Nilpotent Markov Processes.
+- * But I confess to not quite understand how to actually perform the
+- * test in the latter -- it is very good at describing the construction
+- * of the target matrix, not so good at describing how to transform
+- * this into a chisq and p.
+- *
+- * FWIW, as I get something that actually works here, I'm going to
+- * THOROUGHLY document it in the book that will accompany the test.
+- *========================================================================
+- */
+-
+-#include <dieharder/libdieharder.h>
+-#define RGB_OPERM_KMAX 10
+-
+-/*
+- * Some globals that will eventually go in the test include where they
+- * arguably belong.
+- */
+-double fpipi(int pi1,int pi2,int nkp);
+-uint piperm(size_t *data,int len);
+-void make_cexact();
+-void make_cexpt();
+-int nperms,noperms;
+-double **cexact,**ceinv,**cexpt,**idty;
+-double *cvexact,*cvein,*cvexpt,*vidty;
+-
+-int rgb_operm(Test **test,int irun)
+-{
+-
+- int i,j,n,nb,iv,s;
+- uint csamples;   /* rgb_operm_k^2 is vector size of cov matrix */
+- uint *count,ctotal; /* counters */
+- uint size;
+- double pvalue,ntuple_prob,pbin;  /* probabilities */
+- Vtest *vtest;   /* Chisq entry vector */
+-
+- gsl_matrix_view CEXACT,CEINV,CEXPT,IDTY;
+-
+- /*
+-  * For a given n = ntuple size in bits, there are n! bit orderings
+-  */
+- MYDEBUG(D_RGB_OPERM){
+-   printf("#==================================================================\n");
+-   printf("# rgb_operm: Running rgb_operm verbosely for k = %d.\n",rgb_operm_k);
+-   printf("# rgb_operm: Use -v = %d to focus.\n",D_RGB_OPERM);
+-   printf("# rgb_operm: ======================================================\n");
+- }
+-
+- /*
+-  * Sanity check first
+-  */
+- if((rgb_operm_k < 0) || (rgb_operm_k > RGB_OPERM_KMAX)){
+-   printf("\nError:  rgb_operm_k must be a positive integer <= %u.  Exiting.\n",RGB_OPERM_KMAX);
+-   exit(0);
+- }
+-
+- nperms = gsl_sf_fact(rgb_operm_k);
+- noperms = gsl_sf_fact(3*rgb_operm_k-2);
+- csamples = rgb_operm_k*rgb_operm_k;
+- gsl_permutation * p = gsl_permutation_alloc(nperms);
+-
+- /*
+-  * Allocate memory for value_max vector of Vtest structs and counts,
+-  * PER TEST.  Note that we must free both of these when we are done
+-  * or leak.
+-  */
+- vtest = (Vtest *)malloc(csamples*sizeof(Vtest));
+- count = (uint *)malloc(csamples*sizeof(uint));
+- Vtest_create(vtest,csamples+1);
+-
+- /*
+-  * We have to allocate and free the cexact and cexpt matrices here
+-  * or they'll be forgotten when these routines return.
+-  */
+- MYDEBUG(D_RGB_OPERM){
+-   printf("# rgb_operm: Creating and zeroing cexact[][] and cexpt[][].\n");
+- }
+- cexact = (double **)malloc(nperms*sizeof(double*));
+- ceinv  = (double **)malloc(nperms*sizeof(double*));
+- cexpt  = (double **)malloc(nperms*sizeof(double*));
+- idty   = (double **)malloc(nperms*sizeof(double*));
+- cvexact = (double *)malloc(nperms*nperms*sizeof(double));
+- cvein   = (double *)malloc(nperms*nperms*sizeof(double));
+- cvexpt  = (double *)malloc(nperms*nperms*sizeof(double));
+- vidty   = (double *)malloc(nperms*nperms*sizeof(double));
+- for(i=0;i<nperms;i++){
+-   /* Here we pack addresses to map the matrix addressing onto the vector */
+-   cexact[i] = &cvexact[i*nperms];
+-   ceinv[i] = &cvein[i*nperms];
+-   cexpt[i] = &cvexpt[i*nperms];
+-   idty[i] = &vidty[i*nperms];
+-   for(j = 0;j<nperms;j++){
+-     cexact[i][j] = 0.0;
+-     ceinv[i][j] = 0.0;
+-     cexpt[i][j]  = 0.0;
+-     idty[i][j]   = 0.0;
+-   }
+- }
+-
+- make_cexact();
+- make_cexpt();
+-
+- iv=0;
+- for(i=0;i<nperms;i++){
+-   for(j=0;j<nperms;j++){
+-     cvexact[iv] = cexact[i][j];
+-     cvexpt[iv]  = cexpt[i][j];
+-     vidty[iv]   = 0.0;
+-   }
+- }
+-
+- CEXACT = gsl_matrix_view_array(cvexact, nperms, nperms);
+- CEINV  = gsl_matrix_view_array(cvein  , nperms, nperms);
+- CEXPT  = gsl_matrix_view_array(cvexpt , nperms, nperms);
+- IDTY   = gsl_matrix_view_array(vidty  , nperms, nperms);
+-
+- /*
+-  * Hmmm, looks like cexact isn't invertible.  Duh.  So it has eigenvalues.
+-  * This seems to be important (how, I do not know) so let's find out.
+-  * Here is the gsl ritual for evaluating eigenvalues etc.
+-  */
+-
+- gsl_vector *eval = gsl_vector_alloc (nperms);
+- gsl_matrix *evec = gsl_matrix_alloc (nperms,nperms);
+- /*
+- gsl_eigen_nonsymm_workspace* w =  gsl_eigen_nonsymmv_alloc(nperms);
+- gsl_eigen_nonsymm_params (1,0,w);
+- gsl_eigen_nonsymmv(&CEXACT.matrix, eval, evec, w);
+- gsl_eigen_nonsymmv_free (w);
+- */
+- gsl_eigen_symmv_workspace* w =  gsl_eigen_symmv_alloc(nperms);
+- gsl_eigen_symmv(&CEXACT.matrix, eval, evec, w);
+- gsl_eigen_symmv_free (w);
+- gsl_eigen_symmv_sort (eval, evec, GSL_EIGEN_SORT_ABS_ASC);
+-
+- {
+-   int i;
+-
+-   printf("#==================================================================\n");
+-   for (i = 0; i < nperms; i++) {
+-     double eval_i = gsl_vector_get (eval, i);
+-     gsl_vector_view evec_i = gsl_matrix_column (evec, i);
+-     printf ("eigenvalue[%u] = %g\n", i, eval_i);
+-     printf ("eigenvector[%u] = \n",i);
+-     gsl_vector_fprintf (stdout,&evec_i.vector, "%10.5f");
+-   }
+-   printf("#==================================================================\n");
+- }
+-
+- gsl_vector_free (eval);
+- gsl_matrix_free (evec);
+-
+-/*
+- gsl_linalg_LU_decomp(&CEXACT.matrix, p, &s);
+- gsl_linalg_LU_invert(&CEXACT, p, &CEINV);
+- gsl_permutation_free(p);
+- gsl_blas_dgemm(CblasNoTrans, CblasNoTrans, 1.0, &CEINV.matrix, &CEXPT.matrix, 0.0, &IDTY.matrix);
+- printf("#==================================================================\n");
+- printf("# Should be inverse of C, assuming it is invertible:\n");
+- for(i=0;i<nperms;i++){
+-   printf("# ");
+-   for(j = 0;j<nperms;j++){
+-     printf("%8.3f ",idty[i][j]);
+-   }
+-   printf("\n");
+- }
+- printf("#==================================================================\n");
+- printf("#==================================================================\n");
+- printf("# Should be normal on identity:\n");
+- for(i=0;i<nperms;i++){
+-   printf("# ");
+-   for(j = 0;j<nperms;j++){
+-     printf("%8.3f ",idty[i][j]);
+-   }
+-   printf("\n");
+- }
+- printf("#==================================================================\n");
+- */
+-
+-    
+-
+- /*
+-  * OK, at this point we have two matrices:  cexact[][] is filled with
+-  * the exact covariance matrix expected for the overlapping permutations.
+-  * cexpt[][] has been filled numerically by generating strings of random
+-  * uints or floats, generating sort index permutations, and
+-  * using them to IDENTICALLY generate an "experimental" version of c[][].
+-  * The two should correspond, in the limit of large tsamples.  IF I
+-  * understand Alhakim, Kawczak and Molchanov, then the way to implement
+-  * the simplest possible chisq test is to evaluate:
+-  *       cexact^-1 cexpt \approx I
+-  * where the diagonal terms should form a vector that is chisq distributed?
+-  * Let's try this...
+-  */
+- 
+- 
+-
+- /*
+-  * Free cexact[][] and cexpt[][]
+-  * Fix this when we're done so we don't leak; for now to much trouble.
+- for(i=0;i<nperms;i++){
+-   free(cexact[i]);
+-   free(cexpt[i]);
+- }
+- free(cexact);
+- free(cexpt);
+-  */
+- 
+- return(0);
+-
+-}
+-
+-void make_cexact()
+-{
+-
+- int i,j,k,ip,t,nop;
+- double fi,fj;
+- /*
+-  * This is the test vector.
+-  */
+- double testv[RGB_OPERM_KMAX*2];  /* easier than malloc etc, but beware length */
+- /*
+-  * pi[] is the permutation index of a sample.  ps[] holds the
+-  * actual sample.
+-  */
+- size_t pi[4096],ps[4096];
+- /*
+-  * We seem to have made a mistake of sorts.  We actually have to sum
+-  * BOTH the forward AND the backward directions.  That means that the
+-  * permutation vector has to be of length 3k-1, with the pi=1 term
+-  * corresponding to the middle.  So for k=2, instead of 0,1,2 we need
+-  * 0 1 2 3 4 and we'll have to do 23, 34 in the leading direction and
+-  * 21, 10 in the trailing direction.
+-  */
+- gsl_permutation **operms;
+-
+- MYDEBUG(D_RGB_OPERM){
+-   printf("#==================================================================\n");
+-   printf("# rgb_operm: Running cexact()\n");
+- }
+-
+- /*
+-  * Test fpipi().  This is probably cruft, actually.
+- MYDEBUG(D_RGB_OPERM){
+-   printf("# rgb_operm: Testing fpipi()\n");
+-   for(i=0;i<nperms;i++){
+-     for(j = 0;j<nperms;j++){
+-       printf("# rgb_operm: fpipi(%u,%u,%u) = %f\n",i,j,nperms,fpipi(i,j,nperms));
+-     }
+-   }
+- }
+- */
+-
+- MYDEBUG(D_RGB_OPERM){
+-   printf("#==================================================================\n");
+-   printf("# rgb_operm: Forming set of %u overlapping permutations\n",noperms);
+-   printf("# rgb_operm: Permutations\n");
+-   printf("# rgb_operm:==============================\n");
+- }
+- operms = (gsl_permutation**) malloc(noperms*sizeof(gsl_permutation*));
+- for(i=0;i<noperms;i++){
+-   operms[i] = gsl_permutation_alloc(3*rgb_operm_k - 2);
+-   /* Must quiet down
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("# rgb_operm: ");
+-   }
+-   */
+-   if(i == 0){
+-     gsl_permutation_init(operms[i]);
+-   } else {
+-     gsl_permutation_memcpy(operms[i],operms[i-1]);
+-     gsl_permutation_next(operms[i]);
+-   }
+-   /*
+-   MYDEBUG(D_RGB_OPERM){
+-     gsl_permutation_fprintf(stdout,operms[i]," %u");
+-     printf("\n");
+-   }
+-   */
+- }
+-
+- /*
+-  * We now form c_exact PRECISELY the same way that we do c_expt[][]
+-  * below, except that instead of pulling random samples of integers
+-  * or floats and averaging over the permutations thus represented,
+-  * we iterate over the complete set of equally weighted permutations
+-  * to get an exact answer.  Note that we have to center on 2k-1 and
+-  * go both forwards and backwards.
+-  */
+- for(t=0;t<noperms;t++){
+-   /*
+-    * To sort into a perm, test vector needs to be double.
+-    */
+-   for(k=0;k<3*rgb_operm_k - 2;k++) testv[k] = (double) operms[t]->data[k];
+-
+-   /* Not cruft, but quiet...
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("#------------------------------------------------------------------\n");
+-     printf("# Generating offset sample permutation pi's\n");
+-   }
+-   */
+-   for(k=0;k<2*rgb_operm_k - 1;k++){
+-     gsl_sort_index((size_t *) ps,&testv[k],1,rgb_operm_k);
+-     pi[k] = piperm((size_t *) ps,rgb_operm_k);
+-
+-     /* Not cruft, but quiet...
+-     MYDEBUG(D_RGB_OPERM){
+-       printf("# %u: ",k);
+-       for(ip=k;ip<rgb_operm_k+k;ip++){
+-         printf("%.1f ",testv[ip]);
+-       }
+-       printf("\n# ");
+-       for(ip=0;ip<rgb_operm_k;ip++){
+-         printf("%u ",ps[ip]);
+-       }
+-       printf(" = %u\n",pi[k]);
+-     }
+-     */
+-
+-   }
+-
+-   /*
+-    * This is the business end of things.  The covariance matrix is the
+-    * the sum of a central function of the permutation indices that yields
+-    * nperms-1/nperms on diagonal, -1/nperms off diagonal, for all the
+-    * possible permutations, for the FIRST permutation in a sample (fi)
+-    * times the sum of the same function over all the overlapping permutations
+-    * drawn from the same sample.  Quite simple, really.
+-    */
+-   for(i=0;i<nperms;i++){
+-     fi = fpipi(i,pi[rgb_operm_k-1],nperms);
+-     for(j=0;j<nperms;j++){
+-       fj = 0.0;
+-       for(k=0;k<rgb_operm_k;k++){
+-         fj += fpipi(j,pi[rgb_operm_k - 1 + k],nperms);
+-         if(k != 0){
+-           fj += fpipi(j,pi[rgb_operm_k - 1 - k],nperms);
+-	 }
+-       }
+-       cexact[i][j] += fi*fj;
+-     }
+-   }
+-
+- }
+-
+- MYDEBUG(D_RGB_OPERM){
+-   printf("# rgb_operm:==============================\n");
+-   printf("# rgb_operm: cexact[][] = \n");
+- }
+- for(i=0;i<nperms;i++){
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("# ");
+-   }
+-   for(j=0;j<nperms;j++){
+-     cexact[i][j] /= noperms;
+-     MYDEBUG(D_RGB_OPERM){
+-       printf("%10.6f  ",cexact[i][j]);
+-     }
+-   }
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("\n");
+-   }
+- }
+-
+- /*
+-  * Free operms[]
+-  */
+- for(i=0;i<noperms;i++){
+-   gsl_permutation_free(operms[i]);
+- }
+- free(operms);
+-
+-}
+-
+-void make_cexpt()
+-{
+-
+- int i,j,k,ip,t;
+- double fi,fj;
+- /*
+-  * This is the test vector.
+-  */
+- double testv[RGB_OPERM_KMAX*2];  /* easier than malloc etc, but beware length */
+- /*
+-  * pi[] is the permutation index of a sample.  ps[] holds the
+-  * actual sample.
+-  */
+- int pi[4096],ps[4096];
+-
+- MYDEBUG(D_RGB_OPERM){
+-   printf("#==================================================================\n");
+-   printf("# rgb_operm: Running cexpt()\n");
+- }
+-
+- /*
+-  * We evaluate cexpt[][] by sampling.  In a nutshell, this involves
+-  *   a) Filling testv[] with 2*rgb_operm_k - 1 random uints or doubles
+-  * It clearly cannot matter which we use, as long as the probability of
+-  * exact duplicates in a sample is very low.
+-  *   b) Using gsl_sort_index the exact same way it was used in make_cexact()
+-  * to generate the pi[] index, using ps[] as scratch space for the sort
+-  * indices.
+-  *   c) Evaluating fi and fj from the SAMPLED result, tsamples times.
+-  *   d) Normalizing.
+-  * Note that this is pretty much identical to the way we formed c_exact[][]
+-  * except that we are determining the relative frequency of each sort order
+-  * permutation 2*rgb_operm_k-1 long.
+-  *
+-  * NOTE WELL!  I honestly think that it is borderline silly to view
+-  * this as a matrix and to go through all of this nonsense.  The theoretical
+-  * c_exact[][] is computed from the observation that all the permutations
+-  * of n objects have equal weight = 1/n!.  Consequently, they should
+-  * individually be binomially distributed, tending to normal with many
+-  * samples.  Collectively they should be distributed like a vector of
+-  * equal binomial probabilities and a p-value should follow either from
+-  * chisq on n!-1 DoF or for that matter a KS test.  I see no way that
+-  * making it into a matrix can increase the sensitivity of the test -- if
+-  * the p-values are well defined in the two cases they can only be equal
+-  * by their very definition.
+-  *
+-  * If you are a statistician reading these words and disagree, please
+-  * communicate with me and explain why I'm wrong.  I'm still very much
+-  * learning statistics and would cherish gentle correction.
+-  */
+- for(t=0;t<tsamples;t++){
+-   /*
+-    * To sort into a perm, test vector needs to be double.
+-    */
+-   for(k=0;k<3*rgb_operm_k - 2;k++) testv[k] = (double) gsl_rng_get(rng);
+-
+-   /* Not cruft, but quiet...
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("#------------------------------------------------------------------\n");
+-     printf("# Generating offset sample permutation pi's\n");
+-   }
+-   */
+-   for(k=0;k<2*rgb_operm_k-1;k++){
+-     gsl_sort_index(ps,&testv[k],1,rgb_operm_k);
+-     pi[k] = piperm(ps,rgb_operm_k);
+-
+-     /* Not cruft, but quiet...
+-     MYDEBUG(D_RGB_OPERM){
+-       printf("# %u: ",k);
+-       for(ip=k;ip<rgb_operm_k+k;ip++){
+-         printf("%.1f ",testv[ip]);
+-       }
+-       printf("\n# ");
+-       for(ip=0;ip<rgb_operm_k;ip++){
+-         printf("%u ",permsample->data[ip]);
+-       }
+-       printf(" = %u\n",pi[k]);
+-     }
+-     */
+-   }
+-
+-   /*
+-    * This is the business end of things.  The covariance matrix is the
+-    * the sum of a central function of the permutation indices that yields
+-    * nperms-1/nperms on diagonal, -1/nperms off diagonal, for all the
+-    * possible permutations, for the FIRST permutation in a sample (fi)
+-    * times the sum of the same function over all the overlapping permutations
+-    * drawn from the same sample.  Quite simple, really.
+-    */
+-   for(i=0;i<nperms;i++){
+-     fi = fpipi(i,pi[rgb_operm_k-1],nperms);
+-     for(j=0;j<nperms;j++){
+-       fj = 0.0;
+-       for(k=0;k<rgb_operm_k;k++){
+-         fj += fpipi(j,pi[rgb_operm_k - 1 + k],nperms);
+-	 if(k != 0){
+-           fj += fpipi(j,pi[rgb_operm_k - 1 - k],nperms);
+-	 }
+-       }
+-       cexpt[i][j] += fi*fj;
+-     }
+-   }
+-
+- }
+-
+- MYDEBUG(D_RGB_OPERM){
+-   printf("# rgb_operm:==============================\n");
+-   printf("# rgb_operm: cexpt[][] = \n");
+- }
+- for(i=0;i<nperms;i++){
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("# ");
+-   }
+-   for(j=0;j<nperms;j++){
+-     cexpt[i][j] /= tsamples;
+-     MYDEBUG(D_RGB_OPERM){
+-       printf("%10.6f  ",cexpt[i][j]);
+-     }
+-   }
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("\n");
+-   }
+- }
+-
+-}
+-
+-uint piperm(size_t *data,int len)
+-{
+-
+- uint i,j,k,max,min;
+- uint pindex,uret,tmp;
+- static gsl_permutation** lookup = 0;
+-
+- /*
+-  * Allocate space for lookup table and fill it.
+-  */
+- if(lookup == 0){
+-   lookup = (gsl_permutation**) malloc(nperms*sizeof(gsl_permutation*));
+-   MYDEBUG(D_RGB_OPERM){
+-     printf("# rgb_operm: Allocating piperm lookup table of perms.\n");
+-   }
+-   for(i=0;i<nperms;i++){
+-        lookup[i] = gsl_permutation_alloc(rgb_operm_k);
+-   }
+-   for(i=0;i<nperms;i++){
+-     if(i == 0){
+-       gsl_permutation_init(lookup[i]);
+-     } else {
+-       gsl_permutation_memcpy(lookup[i],lookup[i-1]);
+-       gsl_permutation_next(lookup[i]);
+-     }
+-   }
+-
+-   /*
+-    * This method yields a mirror symmetry in the permutations top to
+-    * bottom.
+-   for(i=0;i<nperms/2;i++){
+-     if(i == 0){
+-       gsl_permutation_init(lookup[i]);
+-       for(j=0;j<rgb_operm_k;j++){
+-         lookup[nperms-i-1]->data[rgb_operm_k-j-1] = lookup[i]->data[j];
+-       }
+-     } else {
+-       gsl_permutation_memcpy(lookup[i],lookup[i-1]);
+-       gsl_permutation_next(lookup[i]);
+-       for(j=0;j<rgb_operm_k;j++){
+-         lookup[nperms-i-1]->data[rgb_operm_k-j-1] = lookup[i]->data[j];
+-       }
+-     }
+-   }
+-   */
+-   MYDEBUG(D_RGB_OPERM){
+-     for(i=0;i<nperms;i++){
+-       printf("# rgb_operm: %u => ",i);
+-       gsl_permutation_fprintf(stdout,lookup[i]," %u");
+-       printf("\n");
+-     }
+-   }
+-
+- }
+-
+- for(i=0;i<nperms;i++){
+-   if(memcmp(data,lookup[i]->data,len*sizeof(uint))==0){
+-     /* Not cruft, but off:
+-     MYDEBUG(D_RGB_OPERM){
+-       printf("# piperm(): ");
+-       gsl_permutation_fprintf(stdout,lookup[i]," %u");
+-       printf(" = %u\n",i);
+-     }
+-     */
+-     return(i);
+-   }
+- }
+- printf("We'd better not get here...\n");
+-
+- return(0);
+-
+-}
+-
+-double fpipi(int pi1,int pi2,int nkp)
+-{
+-
+- int i;
+- double fret;
+-
+- /*
+-  * compute the k-permutation index from iperm for the window
+-  * at data[offset] of length len.  If it matches pind, return
+-  * the first quantity, otherwise return the second.
+-  */
+- if(pi1 == pi2){
+-
+-   fret = (double) (nkp - 1.0)/nkp;
+-   if(verbose < 0){
+-     printf(" f(%d,%d) = %10.6f\n",pi1,pi2,fret);
+-   }
+-   return(fret);
+-
+- } else {
+-
+-   fret = (double) (-1.0/nkp);
+-   if(verbose < 0){
+-     printf(" f(%d,%d) = %10.6f\n",pi1,pi2,fret);
+-   }
+-   return(fret);
+-
+- }
+-
+-
+-}
+-
+-
+-
+-

package/dnsmasq/dnsmasq.mk

@@ -26,9 +26,6 @@ endif
 ifeq ($(BR2_PACKAGE_DNSMASQ_DNSSEC),y)
 DNSMASQ_DEPENDENCIES += gmp nettle
 DNSMASQ_COPTS += -DHAVE_DNSSEC
-ifeq ($(BR2_STATIC_LIBS),y)
-DNSMASQ_COPTS += -DHAVE_DNSSEC_STATIC
-endif
 endif
 
 ifneq ($(BR2_PACKAGE_DNSMASQ_TFTP),y)

package/docker-cli/docker-cli.hash

@@ -1,3 +1,3 @@
 # Locally calculated
-sha256  d86e3e6e10669634ee02b5e071e5ee504457a9d03941bbc5b7f2bd3683ebdb19  docker-cli-20.10.12.tar.gz
+sha256  bda289b27b18675d6a6ff07568453768fe68c16c27b5e52724e46896d5464a55  docker-cli-20.10.14.tar.gz
 sha256  2d81ea060825006fc8f3fe28aa5dc0ffeb80faf325b612c955229157b8c10dc0  LICENSE

package/docker-cli/docker-cli.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-DOCKER_CLI_VERSION = 20.10.12
+DOCKER_CLI_VERSION = 20.10.14
 DOCKER_CLI_SITE = $(call github,docker,cli,v$(DOCKER_CLI_VERSION))
 
 DOCKER_CLI_LICENSE = Apache-2.0

package/docker-engine/docker-engine.hash

@@ -1,3 +1,3 @@
 # Locally calculated
-sha256  a8ee80d31c7b74f687a837cd2a8570578f118179fba0844c5ee88f90fe180155  docker-engine-20.10.12.tar.gz
+sha256  dbe1ae342351108b7b30232c4bce0559c81ad9fb6c978d7c8425d6aa53e476c1  docker-engine-20.10.14.tar.gz
 sha256  7c87873291f289713ac5df48b1f2010eb6963752bbd6b530416ab99fc37914a8  LICENSE

package/docker-engine/docker-engine.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-DOCKER_ENGINE_VERSION = 20.10.12
+DOCKER_ENGINE_VERSION = 20.10.14
 DOCKER_ENGINE_SITE = $(call github,moby,moby,v$(DOCKER_ENGINE_VERSION))
 
 DOCKER_ENGINE_LICENSE = Apache-2.0

package/efl/Config.in

@@ -85,6 +85,19 @@ config BR2_PACKAGE_EFL_LIBFRIBIDI
 	  so you may also trigger code paths with bugs that are never
 	  normally used.
 
+config BR2_PACKAGE_EFL_ELPUT
+	bool "Enable elput support (recommended)"
+	default y
+	depends on BR2_PACKAGE_HAS_UDEV # libinput, efl-eeze
+	select BR2_PACKAGE_EFL_EEZE
+	select BR2_PACKAGE_LIBINPUT
+	select BR2_PACKAGE_LIBXKBCOMMON
+	help
+	  Eplut is used to support gesture recognition.
+
+comment "elput needs udev /dev management"
+	depends on !BR2_PACKAGE_HAS_UDEV
+
 config BR2_PACKAGE_EFL_LIBSNDFILE
 	bool "Enable libsndfile support (recommended)"
 	default y
@@ -115,7 +128,8 @@ config BR2_PACKAGE_EFL_PULSEAUDIO
 config BR2_PACKAGE_EFL_UTIL_LINUX_LIBMOUNT
 	bool "Enable libmount support (recommended)"
 	default y
-	depends on BR2_PACKAGE_EFL_EEZE
+	depends on BR2_PACKAGE_HAS_UDEV # efl-eeze
+	select BR2_PACKAGE_EFL_EEZE
 	select BR2_PACKAGE_UTIL_LINUX
 	select BR2_PACKAGE_UTIL_LINUX_LIBMOUNT
 	# libblkid is part of required tools, see EFL's README.
@@ -125,8 +139,8 @@ config BR2_PACKAGE_EFL_UTIL_LINUX_LIBMOUNT
 	  devices etc... and disabling this will hurt support for
 	  Enlightenment and its filemanager.
 
-comment "efl's libmount support needs udev /dev management (eeze)"
-	depends on !BR2_PACKAGE_EFL_EEZE
+comment "efl's libmount support needs udev /dev management "
+	depends on !BR2_PACKAGE_HAS_UDEV
 
 config BR2_PACKAGE_EFL_HAS_RECOMMENDED_CONFIG
 	bool
@@ -173,16 +187,16 @@ config BR2_PACKAGE_EFL_WAYLAND
 	depends on BR2_PACKAGE_WAYLAND
 	depends on BR2_TOOLCHAIN_HAS_THREADS # Evas DRM Engine -> libdrm
 	depends on BR2_PACKAGE_MESA3D_OPENGL_EGL # Evas DRM Engine
-	depends on BR2_PACKAGE_EFL_EEZE # efl drm
+	depends on BR2_PACKAGE_HAS_UDEV # efl drm, efl-eeze
 	depends on BR2_PACKAGE_EFL_OPENGLES # OpenGL ES with EGL support only
 	depends on BR2_ENABLE_LOCALE # efl-drm <- efl-elput <- linput
 	select BR2_PACKAGE_EFL_DRM
 	select BR2_PACKAGE_WAYLAND_PROTOCOLS
 
-comment "Wayland support needs udev /dev management (eeze), OpenGL ES w/ EGL, threads, locales"
+comment "Wayland support needs udev /dev management, OpenGL ES w/ EGL, threads, locales"
 	depends on BR2_PACKAGE_WAYLAND
 	depends on !BR2_TOOLCHAIN_HAS_THREADS || !BR2_PACKAGE_MESA3D_OPENGL_EGL \
-		|| !BR2_PACKAGE_EFL_OPENGLES || !BR2_PACKAGE_EFL_EEZE \
+		|| !BR2_PACKAGE_EFL_OPENGLES || !BR2_PACKAGE_HAS_UDEV \
 		|| !BR2_ENABLE_LOCALE
 
 choice
@@ -215,12 +229,11 @@ endchoice # OpenGL support
 
 config BR2_PACKAGE_EFL_DRM
 	bool "Evas DRM Engine"
-	depends on BR2_PACKAGE_EFL_EEZE
+	depends on BR2_PACKAGE_HAS_UDEV # efl-elput, efl-eeze
 	depends on BR2_TOOLCHAIN_HAS_THREADS # libdrm
 	depends on BR2_PACKAGE_MESA3D_OPENGL_EGL # require libgbm from mesa3d
+	select BR2_PACKAGE_EFL_ELPUT
 	select BR2_PACKAGE_LIBDRM
-	select BR2_PACKAGE_LIBINPUT # For elput
-	select BR2_PACKAGE_LIBXKBCOMMON
 	help
 	  This option enable building support for the Evas DRM Engine.
 
@@ -230,9 +243,9 @@ config BR2_PACKAGE_EFL_DRM
 	  etc) to handle interfacing with libinput without having to
 	  duplicate the code in each subsystem.
 
-comment "Evas DRM Engine needs udev /dev management (eeze), mesa3d w/ EGL support, threads"
+comment "Evas DRM Engine needs udev /dev management, mesa3d w/ EGL support, threads"
 	depends on !BR2_TOOLCHAIN_HAS_THREADS || !BR2_PACKAGE_MESA3D_OPENGL_EGL \
-		|| !BR2_PACKAGE_EFL_EEZE
+		|| !BR2_PACKAGE_HAS_UDEV
 
 comment "libevas loaders"
 

package/efl/efl.mk

@@ -67,6 +67,13 @@ else
 EFL_CONF_OPTS += -Deeze=false
 endif
 
+ifeq ($(BR2_PACKAGE_EFL_ELPUT),y)
+EFL_DEPENDENCIES += libinput libxkbcommon
+EFL_CONF_OPTS += -Dinput=true
+else
+EFL_CONF_OPTS += -Dinput=false
+endif
+
 ifeq ($(BR2_PACKAGE_EFL_UTIL_LINUX_LIBMOUNT),y)
 EFL_DEPENDENCIES += util-linux
 EFL_CONF_OPTS += -Dlibmount=true
@@ -192,7 +199,7 @@ endif
 
 ifeq ($(BR2_PACKAGE_EFL_DRM),y)
 EFL_CONF_OPTS += -Ddrm=true
-EFL_DEPENDENCIES += libdrm libegl libinput mesa3d
+EFL_DEPENDENCIES += libdrm libegl mesa3d
 else
 EFL_CONF_OPTS += -Ddrm=false
 endif
@@ -204,8 +211,6 @@ else
 EFL_CONF_OPTS += -Dwl=false
 endif
 
-EFL_DEPENDENCIES += $(if $(BR2_PACKAGE_LIBXKBCOMMON),libxkbcommon)
-
 # json evas loader is disabled by default by upstream.
 # Disable libspectre (ps).
 # Keep all other evas loader enabled or handled below.

package/ell/ell.hash

@@ -1,5 +1,5 @@
 # From https://mirrors.edge.kernel.org/pub/linux/libs/ell/sha256sums.asc
-sha256  4901a0baac4eb24163ceafb44fd448430361d25d8f17d89ff29f8b0b162b3eb9  ell-0.47.tar.xz
+sha256  9894943042a5d6165d3e5cc354f92274fb1304004d02b4bee682ab6067cdbbd5  ell-0.48.tar.xz
 
 # License files
 sha256  ec60b993835e2c6b79e6d9226345f4e614e686eb57dc13b6420c15a33a8996e5  COPYING

package/ell/ell.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-ELL_VERSION = 0.47
+ELL_VERSION = 0.48
 ELL_SOURCE = ell-$(ELL_VERSION).tar.xz
 ELL_SITE = $(BR2_KERNEL_MIRROR)/linux/libs/ell
 ELL_LICENSE = LGPL-2.1+

package/fakeroot/0001-fix-prototype-generation.patch

@@ -0,0 +1,61 @@
+Subject: Fix prototype generation for openat
+Author: Christoph Biedl <debian.axhn@manchmal.in-ulm.de>
+Date: 2021-12-30
+Bug-Debian: https://bugs.debian.org/995393
+Forwarded: Yes (implicitely)
+
+    As jrtc27 pointed out in IRC, ppc64el is more strict than other
+    architectures when it comes to va_arg handling:
+
+        it's that ppc64le uses the elfv2 abi, and for variadic calls you
+        must reserve space for a parameter save area
+
+    So enhance wrapawk to create a proper prototype and argument
+    handling although it's specific to the openat call. Also add the
+    missing documentation for the sixth column to wrapfunc.inp.
+
+Signed-off-by: Joel Stanley <joel@jms.id.au>
+
+--- a/wrapawk
++++ b/wrapawk
+@@ -37,7 +37,25 @@
+   argtype=$3;
+   argname=$4;
+   MACRO=$5;
+-  if(MACRO){
++  openat_extra=$6;
++  if(openat_extra){
++    print "  {(void(*))&next_" name ", \"" name "\"},"  > structfile;
++    print "extern " ret " (*next_" name ")" openat_extra ";" > headerfile;
++    print ret " (*next_" name ")" openat_extra "=tmp_" name ";"> deffile;
++
++    print ret " tmp_" name,  openat_extra "{"           > tmpffile;
++    print "  mode_t mode = 0;"                          > tmpffile;
++    print "  if (flags & O_CREAT) {"                    > tmpffile;
++    print "    va_list args;"                           > tmpffile;
++    print "    va_start(args, flags);"                  > tmpffile;
++    print "    mode = va_arg(args, int);"               > tmpffile;
++    print "    va_end(args);"                           > tmpffile;
++    print "  }"                                         > tmpffile;
++    print "  load_library_symbols();"                   > tmpffile;
++    print "  return  next_" name,  argname ";"          > tmpffile;
++    print "}"                                           > tmpffile;
++    print ""                                            > tmpffile;
++  } else if(MACRO){
+     print "  {(void(*))&NEXT_" MACRO "_NOARG, " name "_QUOTE},"  > structfile;
+     print "extern " ret " (*NEXT_" MACRO "_NOARG)" argtype ";" > headerfile;
+     print ret " (*NEXT_" MACRO "_NOARG)" argtype "=TMP_" MACRO ";"> deffile;
+--- a/wrapfunc.inp
++++ b/wrapfunc.inp
+@@ -9,8 +9,10 @@
+ /**/									  */
+ /* each line of this file lists 4 fields, seperated by a ";".		  */
+ /* The first field is the name of the wrapped function, then it's return  */
+-/* value. After that come the function arguments with types, and the last */
++/* value. After that come the function arguments with types, and the fifth */
+ /* field contains the function arguments without types.                   */
++/* A sixth field is a special needed when wrapping the openat syscall.    */
++/* Otherwise it's like the third (function arguments with types).         */
+ /**/
+ 
+ /* __*xstat are used on glibc systems instead of just *xstat. */

package/firmware-utils/firmware-utils.mk

@@ -5,7 +5,8 @@
 ################################################################################
 
 FIRMWARE_UTILS_VERSION = 86739f2b3ae9502368b89ef37fa6f31c42aad6f4
-FIRMWARE_UTILS_SITE = git://git.openwrt.org/project/firmware-utils.git
+FIRMWARE_UTILS_SITE = https://git.openwrt.org/project/firmware-utils.git
+FIRMWARE_UTILS_SITE_METHOD = git
 FIRMWARE_UTILS_LICENSE = \
 	BSD-2-Clause (tplink-safeloader), \
 	BSD-3-Clause (seama), \

package/flac/flac.mk

@@ -20,7 +20,8 @@ FLAC_CONF_OPTS = \
 	$(if $(BR2_INSTALL_LIBSTDCPP),--enable-cpplibs,--disable-cpplibs) \
 	--disable-xmms-plugin \
 	--disable-altivec \
-	--disable-stack-smash-protection
+	--disable-stack-smash-protection \
+	--disable-vsx
 
 ifeq ($(BR2_PACKAGE_LIBOGG),y)
 FLAC_CONF_OPTS += --with-ogg=$(STAGING_DIR)/usr

package/flashbench/flashbench.mk

@@ -5,7 +5,8 @@
 ################################################################################
 
 FLASHBENCH_VERSION = 2e30b1968a66147412f21002ea844122a0d5e2f0
-FLASHBENCH_SITE = git://git.linaro.org/people/arnd/flashbench.git
+FLASHBENCH_SITE = https://git.linaro.org/people/arnd/flashbench.git
+FLASHBENCH_SITE_METHOD = git
 FLASHBENCH_LICENSE = GPL-2.0
 FLASHBENCH_LICENSE_FILES = COPYING
 

package/fluidsynth/Config.in

@@ -6,6 +6,7 @@ config BR2_PACKAGE_FLUIDSYNTH
 	# the .pc file installed by fluidsynth does not mention its
 	# indirect dependencies in Libs.private.
 	depends on !BR2_STATIC_LIBS
+	depends on BR2_INSTALL_LIBSTDCPP
 	select BR2_PACKAGE_LIBGLIB2
 	help
 	  FluidSynth is a real-time software synthesizer based on the
@@ -128,7 +129,7 @@ config BR2_PACKAGE_FLUIDSYNTH_READLINE
 
 endif # BR2_PACKAGE_FLUIDSYNTH
 
-comment "fluidsynth needs a toolchain w/ threads, wchar, dynamic library"
+comment "fluidsynth needs a toolchain w/ threads, wchar, dynamic library, C++"
 	depends on BR2_USE_MMU
 	depends on !BR2_USE_WCHAR || !BR2_TOOLCHAIN_HAS_THREADS || \
-		BR2_STATIC_LIBS
+		BR2_STATIC_LIBS || !BR2_INSTALL_LIBSTDCPP

package/fluidsynth/fluidsynth.hash

@@ -1,3 +1,3 @@
 # Locally computed
-sha256  9037e703617f91c4c36039a5059e0f624164799d856af715bcd8a23c07ba03b8  fluidsynth-2.2.5.tar.gz
+sha256  ca90fe675cacd9a7b442662783c4e7fa0e1fd638b28d64105a4e3fe0f618d20f  fluidsynth-2.2.6.tar.gz
 sha256  9b872a8a070b8ad329c4bd380fb1bf0000f564c75023ec8e1e6803f15364b9e9  LICENSE

package/fluidsynth/fluidsynth.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-FLUIDSYNTH_VERSION = 2.2.5
+FLUIDSYNTH_VERSION = 2.2.6
 FLUIDSYNTH_SITE = $(call github,FluidSynth,fluidsynth,v$(FLUIDSYNTH_VERSION))
 FLUIDSYNTH_LICENSE = LGPL-2.1+
 FLUIDSYNTH_LICENSE_FILES = LICENSE

package/gdk-pixbuf/gdk-pixbuf.mk

@@ -70,14 +70,14 @@ endif
 # gdk-pixbuf requires the loaders.cache file populated to work properly
 # Rather than doing so at runtime, since the fs can be read-only, do so
 # here after building and installing to target.
-# And since the cache file will contain absolute host directory names we
-# need to sanitize (strip) them.
+# And since the cache file will contain relative host directory names we
+# need to prepend them with /usr/.
 ifeq ($(BR2_STATIC_LIBS),)
 define GDK_PIXBUF_UPDATE_CACHE
 	GDK_PIXBUF_MODULEDIR=$(HOST_DIR)/lib/gdk-pixbuf-2.0/2.10.0/loaders \
 		$(HOST_DIR)/bin/gdk-pixbuf-query-loaders \
 		> $(TARGET_DIR)/usr/lib/gdk-pixbuf-2.0/2.10.0/loaders.cache
-	$(SED) "s,$(HOST_DIR)/lib,/usr/lib,g" \
+	$(SED) 's,^"lib,"/usr/lib,g' \
 		$(TARGET_DIR)/usr/lib/gdk-pixbuf-2.0/2.10.0/loaders.cache
 endef
 GDK_PIXBUF_POST_INSTALL_TARGET_HOOKS += GDK_PIXBUF_UPDATE_CACHE

package/glib-networking/Config.in

@@ -6,6 +6,7 @@ config BR2_PACKAGE_GLIB_NETWORKING
 	depends on !BR2_STATIC_LIBS
 	select BR2_PACKAGE_LIBGLIB2
 	select BR2_PACKAGE_OPENSSL if !BR2_PACKAGE_GNUTLS
+	select BR2_PACKAGE_OPENSSL_FORCE_LIBOPENSSL if !BR2_PACKAGE_GNUTLS
 	select BR2_PACKAGE_P11_KIT if BR2_PACKAGE_GNUTLS
 	help
 	  Network-related GIO modules for glib.

package/glib-networking/glib-networking.mk

@@ -31,7 +31,7 @@ else
 GLIB_NETWORKING_CONF_OPTS += -Dgnutls=disabled
 endif
 
-ifeq ($(BR2_PACKAGE_OPENSSL),y)
+ifeq ($(BR2_PACKAGE_LIBOPENSSL),y)
 GLIB_NETWORKING_DEPENDENCIES += openssl
 GLIB_NETWORKING_CONF_OPTS += -Dopenssl=enabled
 else

package/gnutls/0001-locks-define-lock-functions-as-a-macro.patch

@@ -0,0 +1,179 @@
+From 5803bfa3d4febdcf32494e2c2c8f4731cb8be7cd Mon Sep 17 00:00:00 2001
+From: Daiki Ueno <ueno@gnu.org>
+Date: Wed, 9 Mar 2022 08:07:58 +0100
+Subject: [PATCH] locks: define lock functions as a macro
+
+When threads are not supported, glthread_* functions are defined as
+no-op and thus dereferencing lock variables in inline functions will
+cause compilation error.  This change fixes it by redefining our lock
+functions as a macro so it will also be compiled out.
+
+Reported by Fabrice Fontaine in:
+https://gitlab.com/gnutls/gnutls/-/issues/1330
+
+Signed-off-by: Daiki Ueno <ueno@gnu.org>
+
+[Retrieved from:
+https://gitlab.com/gnutls/gnutls/-/commit/5803bfa3d4febdcf32494e2c2c8f4731cb8be7cd]
+Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+---
+ lib/locks.c       | 54 -----------------------------------------------
+ lib/locks.h       | 28 ++++++++++++++++++------
+ lib/pkcs11.c      |  2 +-
+ lib/priority.c    |  2 +-
+ lib/verify-tofu.c |  2 +-
+ 5 files changed, 25 insertions(+), 63 deletions(-)
+
+diff --git a/lib/locks.c b/lib/locks.c
+index d61504e077..8888ed6b12 100644
+--- a/lib/locks.c
++++ b/lib/locks.c
+@@ -63,57 +63,3 @@ gnutls_global_set_mutex(mutex_init_func init, mutex_deinit_func deinit,
+ 	gnutls_mutex_lock = lock;
+ 	gnutls_mutex_unlock = unlock;
+ }
+-
+-int
+-gnutls_static_mutex_lock(gnutls_static_mutex_t lock)
+-{
+-	if (unlikely(glthread_lock_lock(lock))) {
+-		return gnutls_assert_val(GNUTLS_E_LOCKING_ERROR);
+-	}
+-	return 0;
+-}
+-
+-int
+-gnutls_static_mutex_unlock(gnutls_static_mutex_t lock)
+-{
+-	if (unlikely(glthread_lock_unlock(lock))) {
+-		return gnutls_assert_val(GNUTLS_E_LOCKING_ERROR);
+-	}
+-	return 0;
+-}
+-
+-int
+-gnutls_rwlock_rdlock(gnutls_rwlock_t rwlock)
+-{
+-	if (unlikely(glthread_rwlock_rdlock(rwlock))) {
+-		return gnutls_assert_val(GNUTLS_E_LOCKING_ERROR);
+-	}
+-	return 0;
+-}
+-
+-int
+-gnutls_rwlock_wrlock(gnutls_rwlock_t rwlock)
+-{
+-	if (unlikely(glthread_rwlock_wrlock(rwlock))) {
+-		return gnutls_assert_val(GNUTLS_E_LOCKING_ERROR);
+-	}
+-	return 0;
+-}
+-
+-int
+-gnutls_rwlock_unlock(gnutls_rwlock_t rwlock)
+-{
+-	if (unlikely(glthread_rwlock_unlock(rwlock))) {
+-		return gnutls_assert_val(GNUTLS_E_LOCKING_ERROR);
+-	}
+-	return 0;
+-}
+-
+-int
+-gnutls_once(gnutls_once_t once, void (*init_func) (void))
+-{
+-	if (unlikely(glthread_once(once, init_func))) {
+-		return gnutls_assert_val(GNUTLS_E_LOCKING_ERROR);
+-	}
+-	return 0;
+-}
+diff --git a/lib/locks.h b/lib/locks.h
+index a1ff0fa9d7..907adfc134 100644
+--- a/lib/locks.h
++++ b/lib/locks.h
+@@ -40,8 +40,14 @@ extern mutex_unlock_func gnutls_mutex_unlock;
+  */
+ #define GNUTLS_STATIC_MUTEX(lock) gl_lock_define_initialized(static, lock)
+ typedef gl_lock_t *gnutls_static_mutex_t;
+-int gnutls_static_mutex_lock(gnutls_static_mutex_t lock);
+-int gnutls_static_mutex_unlock(gnutls_static_mutex_t lock);
++
++#define gnutls_static_mutex_lock(LOCK)			\
++	(unlikely(glthread_lock_lock(LOCK)) ?		\
++	gnutls_assert_val(GNUTLS_E_LOCKING_ERROR) : 0)
++
++#define gnutls_static_mutex_unlock(LOCK)		\
++	(unlikely(glthread_lock_unlock(LOCK)) ?		\
++	gnutls_assert_val(GNUTLS_E_LOCKING_ERROR) : 0)
+ 
+ /* Unlike static mutexes, static rwlocks can be locked/unlocked with
+  * the functions defined below, because there is no way to replace
+@@ -50,13 +56,23 @@ int gnutls_static_mutex_unlock(gnutls_static_mutex_t lock);
+ #define GNUTLS_RWLOCK(rwlock) gl_rwlock_define_initialized(static, rwlock)
+ typedef gl_rwlock_t *gnutls_rwlock_t;
+ 
+-int gnutls_rwlock_rdlock(gnutls_rwlock_t rwlock);
+-int gnutls_rwlock_wrlock(gnutls_rwlock_t rwlock);
+-int gnutls_rwlock_unlock(gnutls_rwlock_t rwlock);
++#define gnutls_rwlock_rdlock(RWLOCK)			\
++	(unlikely(glthread_rwlock_rdlock(RWLOCK)) ?	\
++	gnutls_assert_val(GNUTLS_E_LOCKING_ERROR) : 0)
++
++#define gnutls_rwlock_wrlock(RWLOCK)			\
++	(unlikely(glthread_rwlock_wrlock(RWLOCK)) ?	\
++	gnutls_assert_val(GNUTLS_E_LOCKING_ERROR) : 0)
++
++#define gnutls_rwlock_unlock(RWLOCK)			\
++	(unlikely(glthread_rwlock_unlock(RWLOCK)) ?	\
++	gnutls_assert_val(GNUTLS_E_LOCKING_ERROR) : 0)
+ 
+ #define GNUTLS_ONCE(once) gl_once_define(static, once)
+ typedef gl_once_t *gnutls_once_t;
+ 
+-int gnutls_once(gnutls_once_t once, void (*init_func) (void));
++#define gnutls_once(ONCE, INIT_FUNC)			\
++	(unlikely(glthread_once(ONCE, INIT_FUNC)) ?	\
++	gnutls_assert_val(GNUTLS_E_LOCKING_ERROR) : 0)
+ 
+ #endif /* GNUTLS_LIB_LOCKS_H */
+diff --git a/lib/pkcs11.c b/lib/pkcs11.c
+index 8dda0f07c9..ba8ac0c375 100644
+--- a/lib/pkcs11.c
++++ b/lib/pkcs11.c
+@@ -351,7 +351,7 @@ int _gnutls_pkcs11_check_init(init_level_t req_level, void *priv, pkcs11_reinit_
+ 	ret = sret;
+ 
+  cleanup:
+-	gnutls_static_mutex_unlock(&pkcs11_mutex);
++	(void)gnutls_static_mutex_unlock(&pkcs11_mutex);
+ 
+ 	return ret;
+ }
+diff --git a/lib/priority.c b/lib/priority.c
+index d17a923318..55ae185c1f 100644
+--- a/lib/priority.c
++++ b/lib/priority.c
+@@ -2505,7 +2505,7 @@ static int set_ciphersuite_list(gnutls_priority_t priority_cache)
+ 	}
+ 
+  out:
+-	gnutls_rwlock_unlock(&system_wide_config_rwlock);
++	(void)gnutls_rwlock_unlock(&system_wide_config_rwlock);
+ 	return ret;
+ }
+ 
+diff --git a/lib/verify-tofu.c b/lib/verify-tofu.c
+index 40b7acdc8a..97f47385e6 100644
+--- a/lib/verify-tofu.c
++++ b/lib/verify-tofu.c
+@@ -434,7 +434,7 @@ int store_pubkey(const char *db_name, const char *host,
+ 	if (fp != NULL)
+ 		fclose(fp);
+ 
+-	gnutls_static_mutex_unlock(&file_mutex);
++	(void)gnutls_static_mutex_unlock(&file_mutex);
+ 	gnutls_free(b64key.data);
+ 
+ 	return ret;
+-- 
+GitLab
+

package/granite/Config.in

@@ -3,6 +3,7 @@ config BR2_PACKAGE_GRANITE
 	depends on BR2_USE_WCHAR
 	depends on BR2_TOOLCHAIN_HAS_THREADS
 	depends on BR2_USE_MMU # fork()
+	depends on BR2_TOOLCHAIN_GCC_AT_LEAST_4_9 # libgee
 	depends on BR2_PACKAGE_LIBGTK3
 	select BR2_PACKAGE_LIBGEE
 	select BR2_PACKAGE_LIBGLIB2
@@ -12,7 +13,8 @@ config BR2_PACKAGE_GRANITE
 
 	  https://github.com/elementary/granite
 
-comment "granite needs libgtk3 and a toolchain w/ wchar, threads"
+comment "granite needs libgtk3 and a toolchain w/ wchar, threads, gcc >= 4.9"
 	depends on BR2_USE_MMU
 	depends on !BR2_PACKAGE_LIBGTK3 || !BR2_USE_WCHAR \
-		|| !BR2_TOOLCHAIN_HAS_THREADS
+		|| !BR2_TOOLCHAIN_HAS_THREADS \
+		|| !BR2_TOOLCHAIN_GCC_AT_LEAST_4_9

package/gstreamer1/gst-omx/gst-omx.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-omx/gst-omx-1.20.0.tar.xz.sha256sum
-sha256  c1e46b70ac379ac7b3646506370c9e1007b56ae293f4d334bc0e724c76c345dd  gst-omx-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-omx/gst-omx-1.20.1.tar.xz.sha256sum
+sha256  86b52e30ebd0f59fcb5cf81a163211975f73ef32e5a6782562804646316bcd7c  gst-omx-1.20.1.tar.xz
 sha256  dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551  COPYING

package/gstreamer1/gst-omx/gst-omx.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST_OMX_VERSION = 1.20.0
+GST_OMX_VERSION = 1.20.1
 GST_OMX_SOURCE = gst-omx-$(GST_OMX_VERSION).tar.xz
 GST_OMX_SITE = https://gstreamer.freedesktop.org/src/gst-omx
 

package/gstreamer1/gst1-devtools/gst1-devtools.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-devtools/gst-devtools-1.20.0.tar.xz.sha256sum
-sha256  69fc8756ec9d93e5c5258c99088434f203e91fdbc5af28d1f2c583fd819b7a1d  gst-devtools-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-devtools/gst-devtools-1.20.1.tar.xz.sha256sum
+sha256  81f1c7ef105b8bdb63412638952f6320723b3161c96a80f113b020e2de554b2b  gst-devtools-1.20.1.tar.xz
 sha256  6095e9ffa777dd22839f7801aa845b31c9ed07f3d6bf8a26dc5d2dec8ccc0ef3  validate/COPYING

package/gstreamer1/gst1-devtools/gst1-devtools.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_DEVTOOLS_VERSION = 1.20.0
+GST1_DEVTOOLS_VERSION = 1.20.1
 GST1_DEVTOOLS_SOURCE = gst-devtools-$(GST1_DEVTOOLS_VERSION).tar.xz
 GST1_DEVTOOLS_SITE = https://gstreamer.freedesktop.org/src/gst-devtools
 GST1_DEVTOOLS_LICENSE = LGPL-2.1+

package/gstreamer1/gst1-imx/Config.in

@@ -88,11 +88,13 @@ config BR2_PACKAGE_GST1_IMX_V4L2VIDEOSRC
 config BR2_PACKAGE_GST1_IMX_V4L2VIDEOSINK
 	bool "imxv4l2videosink"
 	depends on BR2_TOOLCHAIN_HEADERS_AT_LEAST_4_2 # V4L2_COLORSPACE_DEFAULT
+	depends on BR2_INSTALL_LIBSTDCPP # gst1-plugins-bad
 	select BR2_PACKAGE_GST1_PLUGINS_BAD
 	help
 	  Elements for V4L2 output
 
-comment "imxv4l2videosink needs a toolchain w/ headers >= 4.2"
-	depends on !BR2_TOOLCHAIN_HEADERS_AT_LEAST_4_2
+comment "imxv4l2videosink needs a toolchain w/ headers >= 4.2, C++"
+	depends on !BR2_TOOLCHAIN_HEADERS_AT_LEAST_4_2 || \
+		!BR2_INSTALL_LIBSTDCPP
 
 endif

package/gstreamer1/gst1-libav/0001-gst-libav-fix-build-on-systems-without-C-compiler.patch

@@ -0,0 +1,35 @@
+From 1477eb1fad92ac07cd057b3ecdb04edeeef9edba Mon Sep 17 00:00:00 2001
+From: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+Date: Mon, 4 Apr 2022 23:32:56 +0200
+Subject: [PATCH] gst-libav: fix build on systems without C++ compiler
+
+Fix the following build failure on systems without C++ compiler:
+
+The following exception(s) were encountered:
+Running "/nvmedata/autobuild/instance-9/output-1/host/bin/or1k-buildroot-linux-musl-g++ --version" gave "[Errno 2] No such file or directory: '/nvmedata/autobuild/instance-9/output-1/host/bin/or1k-buildroot-linux-musl-g++'"
+
+Fixes:
+ - http://autobuild.buildroot.org/results/8ac0ba5eaaf7571857b4d8cfabf1488d640dc59a
+
+Part-of: <https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/2112>
+
+[Retrieved (and backported) from:
+https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/1477eb1fad92ac07cd057b3ecdb04edeeef9edba]
+Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
+---
+ subprojects/gst-libav/meson.build | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/meson.build b/meson.build
+index fbfa3049afe..7da94b80d59 100644
+--- a/meson.build
++++ b/meson.build
+@@ -1,4 +1,4 @@
+-project('gst-libav', 'c', 'cpp',
++project('gst-libav', 'c',
+   version : '1.20.1',
+   meson_version : '>= 0.60',
+   default_options : [ 'warning_level=1',
+-- 
+GitLab
+

package/gstreamer1/gst1-libav/gst1-libav.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-libav/gst-libav-1.20.0.tar.xz.sha256sum
-sha256  5eee5ed8d5082a31b500448e41535c722ee30cd5f8224f32982bbaba2eedef17  gst-libav-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-libav/gst-libav-1.20.1.tar.xz.sha256sum
+sha256  91a71fb633b75e1bd52e22a457845cb0ba563a2972ba5954ec88448f443a9fc7  gst-libav-1.20.1.tar.xz
 sha256  ad2eec519ebd4b5df86ea84dff24ae3bfa2edea846a703b58902dd221ae375db  COPYING

package/gstreamer1/gst1-libav/gst1-libav.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_LIBAV_VERSION = 1.20.0
+GST1_LIBAV_VERSION = 1.20.1
 GST1_LIBAV_SOURCE = gst-libav-$(GST1_LIBAV_VERSION).tar.xz
 GST1_LIBAV_SITE = https://gstreamer.freedesktop.org/src/gst-libav
 GST1_LIBAV_LICENSE = LGPL-2.1+

package/gstreamer1/gst1-plugins-bad/Config.in

@@ -1,5 +1,6 @@
 menuconfig BR2_PACKAGE_GST1_PLUGINS_BAD
 	bool "gst1-plugins-bad"
+	depends on BR2_INSTALL_LIBSTDCPP
 	select BR2_PACKAGE_GST1_PLUGINS_BASE
 	help
 	  A set of plug-ins for GStreamer that may be of poor quality
@@ -724,3 +725,6 @@ comment "zbar plugin needs a toolchain w/ threads, C++ and headers >= 3.0"
 		|| !BR2_INSTALL_LIBSTDCPP || !BR2_TOOLCHAIN_HEADERS_AT_LEAST_3_0
 
 endif
+
+comment "gst1-plugins-bad needs a toolchain w/ C++"
+	depends on !BR2_INSTALL_LIBSTDCPP

package/gstreamer1/gst1-plugins-bad/gst1-plugins-bad.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-plugins-bad/gst-plugins-bad-1.20.0.tar.xz.sha256sum
-sha256  015b8d4d9a395ebf444d40876867a2034dd3304b3ad48bc3a0dd0c1ee71dc11d  gst-plugins-bad-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-plugins-bad/gst-plugins-bad-1.20.1.tar.xz.sha256sum
+sha256  09d3c2cf5911f0bc7da6bf557a55251779243d3de216b6a26cc90c445b423848  gst-plugins-bad-1.20.1.tar.xz
 sha256  dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551  COPYING

package/gstreamer1/gst1-plugins-bad/gst1-plugins-bad.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_PLUGINS_BAD_VERSION = 1.20.0
+GST1_PLUGINS_BAD_VERSION = 1.20.1
 GST1_PLUGINS_BAD_SOURCE = gst-plugins-bad-$(GST1_PLUGINS_BAD_VERSION).tar.xz
 GST1_PLUGINS_BAD_SITE = https://gstreamer.freedesktop.org/src/gst-plugins-bad
 GST1_PLUGINS_BAD_INSTALL_STAGING = YES

package/gstreamer1/gst1-plugins-base/gst1-plugins-base.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-plugins-base/gst-plugins-base-1.20.0.tar.xz.sha256sum
-sha256  4cb66fccf730b1037e6533862c2128990912a6db4e5bbd14e0ef914450eb4c7c  gst-plugins-base-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-plugins-base/gst-plugins-base-1.20.1.tar.xz.sha256sum
+sha256  96d8a6413ba9394fbec1217aeef63741a729d476a505a797c1d5337d8fa7c204  gst-plugins-base-1.20.1.tar.xz
 sha256  ad2eec519ebd4b5df86ea84dff24ae3bfa2edea846a703b58902dd221ae375db  COPYING

package/gstreamer1/gst1-plugins-base/gst1-plugins-base.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_PLUGINS_BASE_VERSION = 1.20.0
+GST1_PLUGINS_BASE_VERSION = 1.20.1
 GST1_PLUGINS_BASE_SOURCE = gst-plugins-base-$(GST1_PLUGINS_BASE_VERSION).tar.xz
 GST1_PLUGINS_BASE_SITE = https://gstreamer.freedesktop.org/src/gst-plugins-base
 GST1_PLUGINS_BASE_INSTALL_STAGING = YES

package/gstreamer1/gst1-plugins-good/gst1-plugins-good.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-plugins-good/gst-plugins-good-1.20.0.tar.xz.sha256sum
-sha256  2d119c15ab8c9e79f8cd3c6bf582ff7a050b28ccae52ab4865e1a1464991659c  gst-plugins-good-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-plugins-good/gst-plugins-good-1.20.1.tar.xz.sha256sum
+sha256  3c66876f821d507bcdbebffb08b4f31a322727d6753f65a0f02c905ecb7084aa  gst-plugins-good-1.20.1.tar.xz
 sha256  6095e9ffa777dd22839f7801aa845b31c9ed07f3d6bf8a26dc5d2dec8ccc0ef3  COPYING

package/gstreamer1/gst1-plugins-good/gst1-plugins-good.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_PLUGINS_GOOD_VERSION = 1.20.0
+GST1_PLUGINS_GOOD_VERSION = 1.20.1
 GST1_PLUGINS_GOOD_SOURCE = gst-plugins-good-$(GST1_PLUGINS_GOOD_VERSION).tar.xz
 GST1_PLUGINS_GOOD_SITE = https://gstreamer.freedesktop.org/src/gst-plugins-good
 GST1_PLUGINS_GOOD_LICENSE_FILES = COPYING

package/gstreamer1/gst1-plugins-ugly/gst1-plugins-ugly.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-plugins-ugly/gst-plugins-ugly-1.20.0.tar.xz.sha256sum
-sha256  4e8dcb5d26552f0a4937f6bc6279bd9070f55ca6ae0eaa32d72d264c44001c2e  gst-plugins-ugly-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-plugins-ugly/gst-plugins-ugly-1.20.1.tar.xz.sha256sum
+sha256  42035145e29983308d2828207bb4ef933ed0407bb587fb3a569738c6a57fdb19  gst-plugins-ugly-1.20.1.tar.xz
 sha256  6095e9ffa777dd22839f7801aa845b31c9ed07f3d6bf8a26dc5d2dec8ccc0ef3  COPYING

package/gstreamer1/gst1-plugins-ugly/gst1-plugins-ugly.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_PLUGINS_UGLY_VERSION = 1.20.0
+GST1_PLUGINS_UGLY_VERSION = 1.20.1
 GST1_PLUGINS_UGLY_SOURCE = gst-plugins-ugly-$(GST1_PLUGINS_UGLY_VERSION).tar.xz
 GST1_PLUGINS_UGLY_SITE = https://gstreamer.freedesktop.org/src/gst-plugins-ugly
 GST1_PLUGINS_UGLY_LICENSE_FILES = COPYING

package/gstreamer1/gst1-python/gst1-python.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gst-python/gst-python-1.20.0.tar.xz.sha256sum
-sha256  8f67bdc5606ba33606c6bc896e89de7dcd8cf4fca459f71389b1b6fe075b5e54  gst-python-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-python/gst-python-1.20.1.tar.xz.sha256sum
+sha256  ba6cd59faa3db3981d8c6982351c239d823c0b8e80b1acf58d2997b050289422  gst-python-1.20.1.tar.xz
 sha256  ea3ad127610e5ded2210b3a86a46314f2b3b28e438eccffdae19a4d6fbcdb0c2  COPYING

package/gstreamer1/gst1-python/gst1-python.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_PYTHON_VERSION = 1.20.0
+GST1_PYTHON_VERSION = 1.20.1
 GST1_PYTHON_SOURCE = gst-python-$(GST1_PYTHON_VERSION).tar.xz
 GST1_PYTHON_SITE = https://gstreamer.freedesktop.org/src/gst-python
 GST1_PYTHON_INSTALL_STAGING = YES

package/gstreamer1/gst1-rtsp-server/gst1-rtsp-server.hash

@@ -1,4 +1,4 @@
-# From https://gstreamer.freedesktop.org/src/gst-rtsp-server/gst-rtsp-server-1.20.0.tar.xz.sha256sum
-sha256  c209f5ed906da713fdd44a8844e909aa6c8af3dfb630259b092cfb77a7755843  gst-rtsp-server-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gst-rtsp-server/gst-rtsp-server-1.20.1.tar.xz.sha256sum
+sha256  4745bc528ad7de711a41d576ddce7412266e66d05c4cfcc636c9ba4da5521509  gst-rtsp-server-1.20.1.tar.xz
 sha256  ad2eec519ebd4b5df86ea84dff24ae3bfa2edea846a703b58902dd221ae375db  COPYING
 sha256  ad2eec519ebd4b5df86ea84dff24ae3bfa2edea846a703b58902dd221ae375db  COPYING.LIB

package/gstreamer1/gst1-rtsp-server/gst1-rtsp-server.mk

@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-GST1_RTSP_SERVER_VERSION = 1.20.0
+GST1_RTSP_SERVER_VERSION = 1.20.1
 GST1_RTSP_SERVER_SOURCE = gst-rtsp-server-$(GST1_RTSP_SERVER_VERSION).tar.xz
 GST1_RTSP_SERVER_SITE = http://gstreamer.freedesktop.org/src/gst-rtsp-server
 GST1_RTSP_SERVER_LICENSE = LGPL-2.1+

package/gstreamer1/gst1-vaapi/Config.in

@@ -2,6 +2,7 @@ config BR2_PACKAGE_GST1_VAAPI
 	bool "gst1-vaapi"
 	depends on !BR2_STATIC_LIBS # dlopen(), libva
 	depends on BR2_TOOLCHAIN_HAS_THREADS # libva, libdrm
+	depends on BR2_INSTALL_LIBSTDCPP # gst1-plugins-bad
 	depends on BR2_PACKAGE_HAS_UDEV
 	select BR2_PACKAGE_LIBVA
 	select BR2_PACKAGE_LIBDRM
@@ -45,6 +46,6 @@ config BR2_PACKAGE_GST1_VAAPI_ENCODERS
 
 endif
 
-comment "gst1-vaapi needs udev /dev management and a toolchain w/ threads, dynamic library"
+comment "gst1-vaapi needs udev /dev management and a toolchain w/ threads, dynamic library, C++"
 	depends on !BR2_TOOLCHAIN_HAS_THREADS || BR2_STATIC_LIBS || \
-		!BR2_PACKAGE_HAS_UDEV
+		!BR2_PACKAGE_HAS_UDEV || !BR2_INSTALL_LIBSTDCPP

package/gstreamer1/gst1-vaapi/gst1-vaapi.hash

@@ -1,3 +1,3 @@
-# From https://gstreamer.freedesktop.org/src/gstreamer-vaapi/gstreamer-vaapi-1.20.0.tar.xz.sha256sum
-sha256  f79a47346dfd5e585e063e77078e5fc498b06dee895bfcbf47d8863fcac9ea32  gstreamer-vaapi-1.20.0.tar.xz
+# From https://gstreamer.freedesktop.org/src/gstreamer-vaapi/gstreamer-vaapi-1.20.1.tar.xz.sha256sum
+sha256  87fbf6c537af9079c99a9aefe951da119e16e5bcc9cc8614f5035f062bf21137  gstreamer-vaapi-1.20.1.tar.xz
 sha256  dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551  COPYING.LIB