summaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-support
Commit message (Collapse)AuthorAgeFilesLines
...
* ntp: upgrade 4.2.8p2 -> 4.2.8p3Li xin2015-08-061-2/+2
| | | | | | | | 4.2.8p3 fixed CVE-2015-5146 and Bugs. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dovecot: upgrade 2.2.10 -> 2.2.18Li xin2015-08-063-73/+19
| | | | | | | | | | | Dropped building-rquota_xdr.c-depend-on-rquota.h.patch,since 2.2.18 fixed the problem. Update 0001-configure.ac-convert-AC_TRY_RUN-to-AC_TRY_LINK-state.patch,since the file configure.ac has been changed. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netperf: fix the broken download urlZongchun Yu2015-08-031-1/+1
| | | | | Signed-off-by: Zongchun Yu <Zongchun.Yu@freescale.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* ypbind: remove bashisms from initscriptJoe MacDonald2015-07-301-3/+3
| | | | | | | | Remove three very minor bashisms, all about redirecting stdout/stderr. The initscript identifies as /bin/sh, this change ensures that the script should work with a non-bash /bin/sh as well. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* nbd: Add new packageArmin Kuster2015-07-151-0/+19
| | | | | | Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* drbd ufw linux-atm: correct certain packaging errorJoe Slater2015-07-062-3/+8
| | | | | | | | | | The named packages explicitly install some items under /lib, but the recipes assume they are in base_libdir. We change the recipes. Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 1.12.6Armin Kuster2015-07-061-2/+2
| | | | | | | | | | | | | | include a security fixes but no CVE # The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-19 WCCP dissector crash. ([2]Bug 11153) * [3]wnpa-sec-2015-20 GSM DTAP dissector crash. ([4]Bug 11201) Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 12.5Armin Kuster2015-06-051-9/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | fixed broken url and cleaned up the PACKAGECONFIG removed patch as it is included in this release The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-12 The LBMR dissector could go into an infinite loop. ([2]Bug 11036) [3]CVE-2015-3808 [4]CVE-2015-3809 * [5]wnpa-sec-2015-13 The WebSocket dissector could recurse excessively. ([6]Bug 10989) [7]CVE-2015-3810 * [8]wnpa-sec-2015-14 The WCP dissector could crash while decompressing data. ([9]Bug 10978) [10]CVE-2015-3811 * [11]wnpa-sec-2015-15 The X11 dissector could leak memory. ([12]Bug 11088) [13]CVE-2015-3812 * [14]wnpa-sec-2015-16 The packet reassembly code could leak memory. ([15]Bug 11129) [16]CVE-2015-3813 * [17]wnpa-sec-2015-17 The IEEE 802.11 dissector could go into an infinite loop. ([18]Bug 11110) [19]CVE-2015-3814 * [20]wnpa-sec-2015-18 The Android Logcat file parser could crash. Discovered by Hanno Böck. ([21]Bug 11188) [22]CVE-2015-3815 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* meta-networking: standardize SECTION valuesJoe MacDonald2015-06-0546-42/+47
| | | | | | | SECTION has been used inconsistently throughout the recipes in this layer. Convert them to all use the same convention. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dovecot: add systemd support and add user dovecot dovenull which is need to ↵Li xin2015-06-053-3/+51
| | | | | | | | start dovecot service. Signed-off-by: Li Xin <lixin.fnst@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipsec-tools: Security Advisory - CVE-2015-4047Roy Li2015-06-052-0/+37
| | | | | | | | | This fixed the CVE-2015-4047: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4047 Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* stunnel: upgrade to 5.17Roy Li2015-06-051-2/+2
| | | | | | | | | upgrade to include the fix for CVE-2015-3644: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3644 Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntimed: add recipe to meta-networking (git version)Christopher Larson2015-06-052-0/+57
| | | | | | | | | | | Ntimed is an unreleased ntpd replacement being sponsored by the Linux Foundation. Currently it only includes a work-in-progress client, but for future use this recipe emits an ntimed-client package and an ntimed meta package which will pull in client and server. Signed-off-by: Christopher Larson <kergoth@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* geoipupdate: update to 2.2.1Lei Maohui2015-06-053-5/+5
| | | | | | | | | | | | | - `geoipupdate` now verifies the MD5 of the new database before deploying it. If the database MD5 does not match the expected MD5, `geoipupdate` will exit with an error. - The copy of `base64.c` and `base64.h` was switched to a version under GPL 2+ to prevent a license conflict. - The `LICENSE` file was added to the distribution. - Several issues in the documentation were fixed. Signed-off-by: Lei Maohui <leimaohui@cn.fujitsu.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: control refclock driver support via PACKAGECONFIGAndre McCurdy2015-05-131-2/+3
| | | | | | | | | | | | The default configuration of ntp includes a large number of reference clock drivers. Provide a PACKAGECONFIG to allow control over whether or not these refclock drivers are built. Leave enabled by default. http://doc.ntp.org/4.2.8/refclock.html Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* tcpdump: upgrade to 4.7.4Roy Li2015-05-137-56/+2
| | | | | | | Remove two unneeded patches, configure.patch and tcpdump-cross-getaddrinfo.patch Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* strongswan: upgrade to 5.3.0Roy Li2015-05-131-2/+2
| | | | | Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* cifs-utils: upgrade to 6.4Roy Li2015-05-081-3/+2
| | | | | | | | | | | 6.4 fixed a CVE defect: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2830 Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils before 6.4, as used in pam_cifscreds, allows remote attackers to have unspecified impact via unknown vectors. Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipsec-tools: set SYSTEMD_SERVICE correctly to avoid building warning.Bian Naimeng2015-05-081-0/+5
| | | | | | | | | | | | ipsec-tools-0.8.2: ipsec-tools: Files/directories were installed but not shipped /lib /lib/systemd /lib/systemd/system /lib/systemd/system/racoon.service [installed-vs-shipped] Signed-off-by: Bian Naimeng <biannm@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* netcat-openbsd: add LIC_FILES_CHKSUMChunrong Guo2015-05-081-0/+1
| | | | | | Signed-off-by: Chunrong Guo <B40290@freescale.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: uprev to 4.2.8p2Roy Li2015-05-082-172/+3
| | | | | | | | | ntp 4.2.8p2 has more CVE fixes, like CVE-2015-1799, CVE-2015-1798; and remove ntp-4.2.8-ntp-keygen-no-openssl.patch which 4.2.8p2 has integrated Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* lksctp-tools: make -utils and -ptest recommend sctp kernel moduleDmitry Eremin-Solenikov2015-05-081-0/+3
| | | | | | | | | Neither -utils nor -ptest packages make sense w/o actual kernel support for SCTP protocol. Make both packages RRECOMMEND kernel-module-sctp. Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin@mentor.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipvsadm: Add version 1.26 (initial recipe)Jianchuan Wang2015-04-154-0/+234
| | | | | | | | * add ipvs administration tool Signed-off-by: Jianchuan Wang <jianchuan.wang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ypbind-mt: Add systemd dependencyJoe MacDonald2015-04-071-1/+4
| | | | | | | | When building for a system including systemd ypbind-mt will link against libsystemd creating an implicit dependency. Make that explicit. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* smcroute: add version 2.0.0 with /usr/sbin and endless loop fixesDenys Dmytriyenko2015-03-211-0/+13
| | | | | Signed-off-by: Denys Dmytriyenko <denys@ti.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* GeoIP: update checksumsJoe MacDonald2015-03-181-9/+8
| | | | Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* esmtp: update sendmail link filesKang Kai2015-03-101-12/+12
| | | | | | | | | | | | | | | | | esmtp use 'sbinsendmail' to define alternative ${sbindir}/sendmail, but other packages msmtp and postfix use 'sendmail'. When remove esmtp, it removes ${sbindir}/sendmail even msmtp or postfix is installed which has alternative ${sbindir}/sendmail. Make esmtp use 'sendmail' too to fix this issue. Remove ${libdir}/sendmail which is only used by LSB core test for historical reasons. And only create link file with fixed path /usr/lib/sendmail for LSB images even for 64 bits system. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 12.4Armin Kuster2015-03-101-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-06 The ATN-CPDLC dissector could crash. ([2]Bug 9952) [3]CVE-2015-2187 * [4]wnpa-sec-2015-07 The WCP dissector could crash. ([5]Bug 10844) [6]CVE-2015-2188 * [7]wnpa-sec-2015-08 The pcapng file parser could crash. ([8]Bug 10895) [9]CVE-2015-2189 * [10]wnpa-sec-2015-09 The LLDP dissector could crash. ([11]Bug 10983) [12]CVE-2015-2190 * [13]wnpa-sec-2015-10 The TNEF dissector could go into an infinite loop. Discovered by Vlad Tsyrklevich. ([14]Bug 11023) [15]CVE-2015-2191 * [16]wnpa-sec-2015-11 The SCSI OSD dissector could go into an infinite loop. Discovered by Vlad Tsyrklevich. ([17]Bug 11024) [18]CVE-2015-2192 For more information see https://www.wireshark.org/docs/relnotes/wireshark-1.12.4.html Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* stunnel: Update to version 5.10Sven Ebenfeld2015-03-102-17/+20
| | | | | | Signed-off-by: Sven Ebenfeld <sven.ebenfeld@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ypbind-mt: fix typo in PNBLACKLIST to really blacklist itMartin Jansa2015-03-061-1/+1
| | | | Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* nis: blacklist updated yp toolsJoe MacDonald2015-03-052-0/+4
| | | | | | | | | | | | | The updated yp-tools fails on qemuarm: /home/jenkins/oe/world/shr-core/tmp-glibc/work/armv5e-oe-linux-gnueabi/yp-tools/3.3-r0/yp-tools-3.3/lib/do_ypcall.c: In function 'do_ypcall_tr': /home/jenkins/oe/world/shr-core/tmp-glibc/work/armv5e-oe-linux-gnueabi/yp-tools/3.3-r0/yp-tools-3.3/lib/do_ypcall.c:461:27: error: cast increases required alignment of target type [-Werror=cast-align] status = ypprot_err (((struct ypresp_val *) resp)->status); http://errors.yoctoproject.org/Errors/Details/9221/ Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* nis: integrate latest stable yp-tools and ypbindJoe MacDonald2015-03-043-0/+207
| | | | | | | | | | | | | | | Update to the latest stable NIS tools. The yp-tools libraries and headers conflict with the RPC headers provided by glibc, so install them to a different location. Systems that intend to build using the NIS-provided versions will need to specify the alternate location, but that is covered by pkg-config, so it should only be necessary to point pkg-config at the alternate .pc file. The older stable versions are suitable for IPv4-only setups, so keep them around in case those are required for some systems. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* nis: update yp-tools and ypbindJoe MacDonald2015-02-275-57/+33
| | | | | | | | | | | Both yp-tools and ypbind-mt were out of date with their latest released versions, so bump them up to current. Remove two dead patches at the same time and reorganize the recipes to better follow the preferred OE style. Finally, the new release includes a new version of the GPLv2 COPYING file, with a significant amount of whitespace fixes, so update the license checksum. Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* lksctp-tools: include library major version symlink in base packageJoe MacDonald2015-02-251-2/+2
| | | | | | | | | Typically the major-version-only link for shared libs are included in the base package. Move the links into the base packages here, leaving the un-versioned links in the -dev packages. Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipsec-tools: add systemd supportedBian Naimeng2015-02-233-1/+33
| | | | | | Signed-off-by: Bian Naimeng <biannm@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ipsec-tools: install a sample config file for racoonBian Naimeng2015-02-232-0/+47
| | | | | | Signed-off-by: Bian Naimeng <biannm@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: fix pcap-config issueArmin Kuster2015-02-231-3/+4
| | | | | | | | | | | | configure: error: Header file pcap.h not found; if you installed libpcap don't use pcap. Use the internal version. And minor configure cleanups Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* openvpn: install /etc/tmpfiles.d/openvpn.confBian Naimeng2015-02-232-1/+6
| | | | | | | | Directory /var/run/openvpn is required by service. Signed-off-by: Bian Naimeng <biannm@cn.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* geoip-perl: change local tarfile nameJoe Slater2015-02-111-1/+3
| | | | | | | | | Use a better filename for the local copy of the source. Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* nuttcp: fix HOMEPAGE and SRC_URIRobert Yang2015-02-111-3/+3
| | | | | | | | The old ones are invalid. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dnssec-conf: depends libxslt-nativeRobert Yang2015-02-111-1/+2
| | | | | | | | | | | Fixed: xmlto: Can't continue, xsltproc tool not found or not executable. Makefile:20: recipe for target 'dnssec-configure.8' failed make: *** [dnssec-configure.8] Error 3 Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: fix rdepends issueArmin Kuster2015-01-261-3/+11
| | | | | | | Added a few more PACKAGECONF options Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 1.12.3Armin Kuster2015-01-261-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The following vulnerabilities have been fixed. * [1]wnpa-sec-2015-01 The WCCP dissector could crash. ([2]Bug 10720, ws-buglink:10806) CVE-2015-0559, CVE-2015-0560 * [3]wnpa-sec-2015-02 The LPP dissector could crash. ([4]Bug 10773) CVE-2015-0561 * [5]wnpa-sec-2015-03 The DEC DNA Routing Protocol dissector could crash. ([6]Bug 10724) CVE-2015-0562 * [7]wnpa-sec-2015-04 The SMTP dissector could crash. ([8]Bug 10823) CVE-2015-0563 * wnpa-sec-2015-05 Wireshark could crash while decypting TLS/SSL sessions. Discovered by Noam Rathaus. CVE-2015-0564 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* traceroute: give high priority when update-alternativesRoy Li2015-01-261-0/+1
| | | | | | | | | busybox provides traceroute command and uses the default priority to update-alternatives, if traceroute is not defined the priority, the traceroute maybe link to busybox's Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* lksctp-tools: add ptest subpackage and other updatesKang Kai2015-01-264-4/+44
| | | | | | | | | | | | Some updates for lksctp-tools: * add ptest subpackage * only blacklist lksctp-tools when gold ld is used. Refer to: https://bugs.gentoo.org/show_bug.cgi?id=530318 * update licenses and add homepage. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* geoip-perl: add recipe for version 1.45Joe Slater2015-01-262-0/+53
| | | | | | | | | | The package includes a few data files. Despite the names, these are very small databases only useful for running the perl test scripts. Signed-off-by: Joe Slater <jslater@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* ntp: fix perl pathSzombathelyi György2015-01-231-1/+3
| | | | | | | | | Fix perl path in ntp-wait and calc_tickadj. Signed-off-by: Gyorgy Szombathelyi <gyurco@freemail.hu> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* dnsmasq: update to 2.72Paul Eggleton2015-01-072-10/+10
| | | | | | Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* traceroute: update to 2.0.21Paul Eggleton2015-01-071-3/+3
| | | | | | | | | Also fix LICENSE to be "or any later version" (as specified in the upstream source headers); both licenses apply so use &. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* mtr: update to 0.86Paul Eggleton2015-01-073-49/+4
| | | | | | | | | | * Newer automake compatibility fixed upstream, so drop patches. * LIC_FILES_CHKSUM changed due to a trailing space being removed, no actual change to the license text. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-04 18:13:15 +0000