summaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-support
Commit message (Collapse)AuthorAgeFilesLines
* dnsmasq: fix CVE-2023-28450Peter Marko2023-03-252-0/+49
| | | | | | | | The patch is modified by removing irrelevant and conflicting CHANGELOG entry. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* ntp: whitelist CVE-2019-11331Peter Marko2023-03-161-0/+2
| | | | | | | | | | | | Links from https://nvd.nist.gov/vuln/detail/CVE-2019-11331 lead to conclusion that this is how icurrent ntp protocol is designed. New RFC is propsed for future but it will not be compatible with current one. See https://support.f5.com/csp/article/K09940637 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tinyproxy: fix CVE-2022-40468Chee Yang Lee2023-02-112-0/+34
| | | | | | | Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 795ccdd86cad05c425adae15af27797f42f33c56) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* strongswan: upgrade 5.9.8 -> 5.9.9Yi Zhao2023-01-211-1/+1
| | | | | | | | | | Changelog: https://github.com/strongswan/strongswan/releases/tag/5.9.9 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 6cca42d726c333b5955c6f4e46395b9578efce2e) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* smcroute: upgrade 2.5.5 -> 2.5.6Wang Mingyu2022-12-201-1/+1
| | | | | | | | | | | | | | | | | | | | | Changelog: ========== - Add smcroutectl batch support, issue #189. Based on the IPC support added in issue #185 - Fix #178: invalid systemd daemon type Simple/Notify vs simple/notify - Fix #179: typo in wildcard routes section of README - Fix #180: minor typo in file and directory names in documentation - Fix #183: casting in IPC code hides error handling of recv() - Fix #186: NULL pointer dereference in utimensat() replacement function. Found accidentally by Alexey Smirnov. Only triggered on systems that don't have a native utimensat() in their C-library, or if you try to build SMCRoute without using its own build system ... - Fix #187: strange behavior joining/leaving the same group - Fix #192: typo in README Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit abc501113aa7e136963c1bbab9b202d425014dbf) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* ettercap: Add missing dependency on libpcreKhem Raj2022-11-251-0/+1
| | | | | | | | | | | | It depends on it, but it was being pulled in via glib-2.0 which now uses libpcre2 Fixes TOPDIR/build/tmp/work/cortexa15t2hf-neon-yoe-linux-gnueabi/ettercap/0.8.3.1-r0/recipe-sysroot-native/usr/lib/libpcre.so: file not recognized: file format not recognized Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit d8bc689ee73fa0f497294cc742660766c7ecd8c3) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* chrony: Remove the libcap and nss PACKAGECONFIGsPeter Kjellerstedt2022-11-181-4/+4
| | | | | | | | | | | | There is no need for these configs on their own and they would only mess up the sechash and privdrop configs. To actually enable sechash one also had to enable nss, and to enable privdrop one also had to enable libcap. This also avoids passing --with-libcap if privdrop is enabled since the option does not exist. Change-Id: I64a49741f61385e87ddbc83b9e87213a6fc7668e Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
* chrony: Make it possible to enable editline support againPeter Kjellerstedt2022-11-181-9/+4
| | | | | | | | | | | | | Support for readline was dropped in Chrony 4.2. However, the --disable-readline option still remains (it is used to completely ignore all forms of command line editing, even though the only remaining variant is editline). So keeping the readline PACKAGECONFIG and making it pass --disable-readline when it is not enabled disabled support for editline, and if it was enabled it instead passed --without-editline, which also disabled support for editline. Thus there was no way to enable editline support. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
* tcpslice: upgrade 1.5 -> 1.6zhengruoqin2022-11-051-2/+1
| | | | | | | | | | | | | | | | | | | Changelog: ========= - Call pcap_dump_close() on the output file. - Implement new flags in ./configure: --enable-instrument-functions, --without-libnids, --without-libosipparser2 and --without-libooh323c. - autoconf: Add the option to print functions and files names - Update config.{guess,sub}, timestamps 2022-01-09,2022-01-03 - configure: use pcap-config --static-pcap-only if available - Remove awk code from mkdep. - Refine the man page. - Refine the documentation files. Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 8e64d8f7afa26c7d2c4ac7ed23f6d48d639cfd39) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* unbound: upgrade 1.16.3 -> 1.17.0zhengrq.fnst2022-10-181-1/+1
| | | | | Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: upgrade 1.33.1 -> 1.33.2Wang Mingyu2022-10-181-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: install the .target filesHao Jiang2022-10-121-1/+4
| | | | | | | Need the targets file to enable the mctpd.service on systemd. Signed-off-by: Hao Jiang <jianghao@google.com> Change-Id: I8d48d3767760dc1f34ae7e1266600d350ac93281
* spice: Include aarch64 to COMPATIBLE_HOSTFabio Estevam2022-10-101-1/+1
| | | | | | | | Allow spice to be built on ARM64 as well, so add aarch64 entry to COMPATIBLE_HOST. Signed-off-by: Fabio Estevam <festevam@denx.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open-vm-tools: upgrade 11.3.5 -> 12.1.0Yi Zhao2022-10-1017-176/+97
| | | | | | | | | | | * Drop 0001-Make-HgfsConvertFromNtTimeNsec-aware-of-64-bit-time_.patch and 0013-misc-Do-not-print-NULL-string-into-logs.patch which have been merged upstream. * Refresh patches. * Do not build containerinfo plugin as it requries containerd. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* stunnel: upgrade 5.65 -> 5.66zhengrq.fnst2022-10-101-1/+1
| | | | | | | | | | | | | | Changelog: =========== New features OpenSSL 3.0 FIPS Provider support for Windows. Bugfixes Fixed building on machines without pkg-config. Added the missing "environ" declaration for BSD-based operating systems. Fixed the passphrase dialog with OpenSSL 3.0. Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* strongswan: upgrade 5.9.7 -> 5.9.8Yi Zhao2022-10-081-2/+2
| | | | | | | | | | | | ChangeLog: https://github.com/strongswan/strongswan/releases/tag/5.9.8 * Drop PACKAGECONFIG[scep] as scepclient has been removed. * Add plugin-gcm to RDEPENDS as gcm plugin has been added to the default plugins. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: correct parameter to configure to disable readline usageFederico Pellegrin2022-10-061-1/+1
| | | | | | | | | | | The correct parameter to disable readline usage is --disable-readline and not --without-readline. See also chrony source at: https://github.com/mlichvar/chrony/blob/master/configure#L110 Signed-off-by: Federico Pellegrin <fede@evolware.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: add pkgconfig class as pkg-config is explicitly searched forFederico Pellegrin2022-10-061-1/+1
| | | | | | | | | | | | | | The configure script present in chrony will explicitly look for pkg-config and without the pkgconfig class it will fail: Checking for pkg-config : No This then affects the possibility (via image features or bbappend) to use features based on nettle/gnutls/nss which strictly require pkgconfig to be present and working. Signed-off-by: Federico Pellegrin <fede@evolware.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* unbound: upgrade 1.16.2 -> 1.16.3wangmy2022-09-271-1/+1
| | | | | | | | Bug Fixes - Patch for CVE-2022-3204 Non-Responsive Delegation Attack. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dnsmasq: upgrade 2.86 -> 2.87wangmy2022-09-274-201/+10
| | | | | | | | | | License-Update : format of License file changed. CVE-2022-0934.patch deleted since it's included in 2.87. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: CVE-2022-3190 Infinite loop in legacy style dissectorHitendra Prajapati2022-09-262-0/+146
| | | | | | | | | | | | | Source: https://gitlab.com/wireshark/wireshark/-/commit/67326401a595fffbc67eeed48eb6c55d66a55f67 MR: 122044 Type: Security Fix Disposition: Backport from https://gitlab.com/wireshark/wireshark/-/commit/67326401a595fffbc67eeed48eb6c55d66a55f67 ChangeID: 13f833dfbd8f76db1ea01984441b212f08e6e4f5 Description: CVE-2022-3190 wireshark: Infinite loop in legacy style dissector. Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntp: add missing runtime dependency on libgcc for sntpFrank de Brabander2022-09-261-1/+2
| | | | | | | | | | This runtime dependency was already added for ntpd but not yet for the sntp binary. This will result in an error when pthread_exit() is called: "libgcc_s.so.1 must be installed for pthread_cancel to work" Signed-off-by: Frank de Brabander <debrabander@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mdio-tools,mdio-netlink: Upgrade recipes to 1.2.0Khem Raj2022-09-223-2/+1
| | | | | | | | | | | | | | | | | | | | | brings in Added mdio: A new addressing mode "mmd-c22": Used to access MMDs attached to MDIO controllers without Clause 45 support by using registers 13 and 14 in the device's Clause 22 register space mdio: Pretty print gigabit link capability information from a PHY's extended status register mdio: Pretty print lots of status information from MMDs (C45 PHYs) mvls: Decode priority override information of ATU entries Changed mvls: Table listings now always prints out the device information, even on single chip systems. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open-isns: upgrade 0.101 -> 0.102wangmy2022-09-131-1/+1
| | | | | | | | | | | | | Changelog: ========= Enable meson for building open-isns, deprecating autoconf/make (though the current build system still works) Add a package config file for libisns, so other software can find it Fix some compiler warnings and spelling errors Make IPv6 default socket type Fix isnsadm parsing of some arguments Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libesmtp: Enable gnu strerror_r on glibcKhem Raj2022-09-071-0/+4
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntp: Fix check for pthread_detachKhem Raj2022-09-072-0/+34
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* linux-atm: Remove AC_CHECK_LIB for libresolvKhem Raj2022-09-052-0/+29
| | | | | | | libatm uses res_search which is provided by libc now a days in both glibc and musl, we dont need to error out if libresolv is not found Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: upgrade 4.2 -> 4.3Wang Mingyu2022-09-052-11/+9
| | | | | | | | arm_eabi.patch upgrade for 4.3 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tcpreplay: fix buildpaths issueYi Zhao2022-08-302-1/+51
| | | | | | | | | | | | | | | | | | POSIX_SHELL is specified a host tool path as it searches path on build host using `which` when configure. Set it to a fixed path '/bin/sh'. Fixes: QA Issue: File /usr/bin/tcpbridge in package tcpreplay contains reference to TMPDIR File /usr/bin/tcpliveplay in package tcpreplay contains reference to TMPDIR File /usr/bin/tcprewrite in package tcpreplay contains reference to TMPDIR File /usr/bin/tcpcapinfo in package tcpreplay contains reference to TMPDIR File /usr/bin/tcpreplay in package tcpreplay contains reference to TMPDIR File /usr/bin/tcpprep in package tcpreplay contains reference to TMPDIR File /usr/bin/tcpreplay-edit in package tcpreplay contains reference to TMPDIR [buildpaths] QA Issue: File /usr/src/debug/tcpreplay/4.4.2-r0/src/defines.h in package tcpreplay-src contains reference to TMPDIR [buildpaths] Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* rdma-core: Fix build with muslKhem Raj2022-08-302-1/+32
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ettercap: Pass -D_GNU_SOURCEKhem Raj2022-08-301-0/+1
| | | | | | Fixes build on musl Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: Upgrade to 1.6.17Khem Raj2022-08-302-2/+116
| | | | | | Fix build with clang while here Signed-off-by: Khem Raj <raj.khem@gmail.com>
* linux-atm: Include missing string.hKhem Raj2022-08-302-1/+89
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fping: Fix build with muslKhem Raj2022-08-302-1/+45
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ypbind-mt: Upgrade to 2.7.2Khem Raj2022-08-302-49/+4
| | | | | | | Disable on musl since its using some non-portable glibc only constructs Drop gettid patch its applied upstream Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: Update to latest tip of trunkKhem Raj2022-08-301-1/+1
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tcpreplay: upgrade 4.4.1 -> 4.4.2Wang Mingyu2022-08-291-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libldb: upgrade 2.3.3 -> 2.3.4Yi Zhao2022-08-251-2/+2
| | | | | | | Required by samba 4.14.14. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libesmtp: Define _GNU_SOURCEKhem Raj2022-08-251-0/+2
| | | | | | Needed for strlcpy Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ssmtp: Fix null pointer assignmentsKhem Raj2022-08-252-1/+53
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: add support for config and source snippet includesJan Luebbe2022-08-241-0/+7
| | | | | | | | | | | | | | This makes it simpler to set specific config options or custom sources by adding snippet files to /etc/chrony/conf.d/ or /etc/chrony/sources.d/ instead of modifying a copy of the full configuration file. As new snippets can be added from separate recipes, targeted changes can be done in multiple layers. These specific directories are also used in Debian's default configuration. It is not an error if they are missing. Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* unbound: upgrade 1.16.1 -> 1.16.2Wang Mingyu2022-08-231-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: =========== Features - Merge #718: Introduce infra-cache-max-rtt option to config max retransmit timeout. Bug Fixes - Fix the novel ghost domain issues CVE-2022-30698 and CVE-2022-30699. - Fix bug introduced in 'improve val_sigcrypt.c::algo_needs_missing for one loop pass'. - Merge PR #668 from Cristian Rodríguez: Set IP_BIND_ADDRESS_NO_PORT on outbound tcp sockets. - Fix verbose EDE error printout. - Fix dname count in sldns parse type descriptor for SVCB and HTTPS. - For windows crosscompile, fix setting the IPV6_MTU socket option equivalent (IPV6_USER_MTU); allows cross compiling with latest cross-compiler versions. - Merge PR 714: Avoid treat normal hosts as unresponsive servers. And fixup the lock code. - iana portlist update. - Update documentation for 'outbound-msg-retry:'. - Tests for ghost domain fixes. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* rdma-core: upgrade 41.0 -> 42.0Wang Mingyu2022-08-231-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: upgrade 1.32.1 -> 1.33.1Wang Mingyu2022-08-231-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntpsec: Add -D_GNU_SOURCE and fix building with devtoolKhem Raj2022-08-232-2/+33
| | | | | | | | | | wscript detects .git directory and if its present them invokes git describe --dirty which does not work on the devtool created git repository, since its synthesized. Add GNU_SOURCE define to get strptime() definition Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mdio-tools: add recipesEnguerrand de Ribaucourt2022-08-223-0/+31
| | | | | | | | | Self-description from the README: mdio-tools is a low-level debug tool for communicating with devices attached to an MDIO bus. Signed-off-by: Enguerrand de Ribaucourt <enguerrand.de-ribaucourt@savoirfairelinux.com> Signed-off-by: Potin Lai <potin.lai.pt@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* uftp: upgrade 5.0 -> 5.0.1Wang Mingyu2022-08-151-1/+1
| | | | | | | | | | | | | | | | | | Changelog: ========== -On very low speed transfers (<10Kbps) sessions would time out due to a very large interpacket transmission interval. Fixed by putting a lower limit on the advertised GRTT of of the interpacket transmission interval. -Sending of ABORT messages on early shutdown would sometimes fail due to OpenSSL cleanup functions running before application cleanup. Changed the ordering of atexit() handlers to ensure OpenSSL cleanup happens last. -Fixed missing timestamp update when clients read CONG_CTRL messages -Fix to GRTT handling on server to ensure it doesn't fall below minumim. -Fixed bypassed checking of existing files on client for backup -Various logging fixes Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: upgrade 1.31.15 -> 1.32.1Wang Mingyu2022-08-151-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* htpdate: upgrade 1.3.5 -> 1.3.6Wang Mingyu2022-08-151-1/+1
| | | | | | | Fix when correcting large time offsets (bug introduced in 1.3.5) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* cifs-utils: upgrade 6.15 -> 7.0Wang Mingyu2022-08-151-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-05 23:06:45 +0000