summaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-support
Commit message (Collapse)AuthorAgeFilesLines
...
* libtevent: upgrade 0.16.1 -> 0.16.2Wang Mingyu2025-02-261-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtdb: upgrade 1.4.12 -> 1.4.13Wang Mingyu2025-02-261-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libtalloc: upgrade 2.4.2 -> 2.4.3Wang Mingyu2025-02-261-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: fix SRC_URIGyorgy Sarvari2025-02-231-1/+1
| | | | | | | | | | | | | The original SRC_URI's content seems to be deleted regurarly, when a new version is published, making the previous version unavailable. The new SRC_URI ("all-versions" folder) seems to be more stable, the previous versions of Wireshark are not deleted from there. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: version bump 4.2.10 -> 4.2.11Jan Vermaete2025-02-221-2/+2
| | | | | | | | The 4.2.10 was not longer available at the original SRC_URI. At the new SRC_URI all version of the wireshark releases are available. Signed-off-by: Jan Vermaete <jan.vermaete@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* geoip: fix do_fetch errorWang Mingyu2025-02-201-4/+4
| | | | | | | | Change the SRC_URI to the correct value due to the following error: ERROR: geoip-1.6.12-r0 do_fetch: Bitbake Fetcher Error: FetchError('Unable to fetch URL from any source.', 'http://sources.openembedded.org/GeoIP.dat.20181205.gz;apply=no;name=GeoIP-dat;') Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: Fix build with latest muslKhem Raj2025-02-172-1/+40
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: srcrev bump 9042704131d..dd944cf5b5aThu Nguyen2025-02-171-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | Additional commit included in this version bump are below. Jeremy Kerr (9): + tests: Add tests for dbus Network1 interface + tests: add System.del_address + tests: notify netlink socket on system link/neighbour/address/route changes + tests: Add NLSocket._create_msg + tests: rename NLSocket._send_resp to _send_msg + mctpd: fix error message and code for missing linkmap entry case + mctpd: remove unnecessary debug output + CHANGELOG: Add mctp-bench change Thu Nguyen (1): + Support `LocalEIDs` property in `au.com.codeconstruct.MCTP.Network1` Timon Liu (1): + mctp-bench: Add a utility tool to send/receive messages and display throughput Signed-off-by: Thu Nguyen <thu@os.amperecomputing.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 4.2.9 -> 4.2.10Wang Mingyu2025-02-121-1/+1
| | | | | | | | releasenote: https://www.wireshark.org/docs/relnotes/wireshark-4.2.10.html Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: upgrade 1.6.34 -> 1.6.36Wang Mingyu2025-02-101-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ndpi: correct LICENSE valueGyorgy Sarvari2025-02-011-1/+1
| | | | | Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* recipes: Fix variable assignment whitespaceRichard Purdie2025-01-313-5/+5
| | | | | | | | | | | | Recipes are much more readable with whitespace around the assignment operators. Fix various assignments in meta-openembedded recipes to show this is definitely the preferred formatting. This fixes recipes with larger numbers of issues but there are just under 100 other references left to fix. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntp: set CONFIG_SITE in do_compileRoss Burton2025-01-241-0/+5
| | | | | | | | | Recent changes in to the autotools class in core means that it no longer sets CONFIG_SITE for compile tasks. However, ntp decides to reconfigure itself mid-build, so the CONFIG_SITE values are lost. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: upgrade 2.6.12 -> 2.6.13Wang Mingyu2025-01-241-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: =========== - Refuse clients if username or password is longer than USER_PASS_LEN - Improve peer fingerprint documentation - console_systemd: remove the timeout when using 'systemd-ask-password' - Fix missing spaces in various messages - GHA: Update macOS runners - GHA: Simplify macOS builds - Various typo fixes - forward: Fix potential unaligned access in drop_if_recursive_routing - send uname() release as IV_PLAT_VER= on non-windows versions - preparing release 2.6.13 - Route: remove incorrect routes on exit - Use a more robust way to get dco-win version - Fix check_addr_clash argument order - Add calls to nvlist_destroy to avoid leaks - proxy.c: Clear sensitive data after use - Protect cached username, password and token on client - Fix more of uninitialized struct user_pass local vars - Fix IPv6 in port-share journal - Fix port-share journal doc Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wpan-tools: upgrade 0.9 -> 0.10Wang Mingyu2025-01-141-2/+2
| | | | | | | | | | License-Update: Delete unnecessary blank lines Changelog: https://github.com/linux-wpan/wpan-tools/releases/tag/wpan-tools-0.10 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: upgrade 4.5 -> 4.6.1Wang Mingyu2025-01-141-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ============ Enhancements ------------ * Add ntsaeads directive to enable only selected AEAD algorithms for NTS * Add activate option to local directive to set activation threshold * Add ipv4 and ipv6 options to server/pool/peer directive * Add kod option to ratelimit directive for server KoD RATE support * Add leapseclist directive to read NIST/IERS leap-seconds.list file * Add ptpdomain directive to set PTP domain for NTP over PTP * Allow disabling pidfile * Improve copy server option to accept unsynchronised status instantly * Log one selection failure on start * Add offset command to modify source offset correction * Add timestamp sources to ntpdata report Workarounds ----------- * Negotiate use of compliant NTS keys with AES-128-GCM-SIV AEAD algorithm (by default the keys are generated differently than in RFC 8915 for compatibility with chrony server and client versions 4.4, 4.5, and 4.6) * Switch to compliant NTS keys if first response from server is NTS NAK Bug fixes --------- * Fix crash on sources reload during initstepslew or RTC initialisation * Fix source refreshment to not repeat failed name resolving attempts Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fping: upgrade 5.2 -> 5.3Wang Mingyu2025-01-071-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* chrony: fix do_fetch errorJiaying Song2025-01-021-1/+1
| | | | | | | | Change the SRC_URI to the correct value due to the following error: WARNING: chrony-4.5-r0.wr2401 do_fetch: Failed to fetch URL https://download.tuxfamily.org/chrony/chrony-4.5.tar.gz, attempting MIRRORS if available Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: upgrade 1.6.33 -> 1.6.34Wang Mingyu2024-12-301-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice: set CVE-2016-2150 status to fixedPeter Marko2024-12-271-0/+1
| | | | | | | | | | | | | | | | Debian has fixed this CVE with [1]. That patch is taken from [2]. .../tmp/work/core2-64-poky-linux/spice/0.15.2/git$ git describe 69628ea13 v0.13.1-190-g69628ea1 .../tmp/work/core2-64-poky-linux/spice/0.15.2/git$ git tag --contains 69628ea13 v0.13.2 [1] https://sources.debian.org/patches/spice/0.12.5-1%2Bdeb8u5/CVE-2016-2150/0002-improve-primary-surface-parameter-checks.patch/ [2] https://gitlab.freedesktop.org/spice/spice/-/commit/69628ea1375282cb7ca5b4dc4410e7aa67e0fc02 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* strongswan: upgrade 5.9.14 -> 6.0.0Yi Zhao2024-12-261-13/+11
| | | | | | | | | | | | | | ChangeLog: https://github.com/strongswan/strongswan/releases/tag/6.0.0 The aes, curve25519, des, fips-prf, gmp, hmac, md5, pkcs12, rc2, sha1, sha2 plugins are not enabled by default[1]. Remove these plugins from RDEPENDS and add PACKAGECONFIG for them. [1] https://github.com/strongswan/strongswan/blob/6.0.0/NEWS#L38 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 4.2.8 -> 4.2.9Peter Marko2024-12-201-1/+1
| | | | | | | | | | | Solves CVE-2024-9781 Release notes: https://www.wireshark.org/docs/relnotes/wireshark-4.2.7.html https://www.wireshark.org/docs/relnotes/wireshark-4.2.8.html Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libmemcached: ignore CVE-2023-27478Peter Marko2024-12-201-0/+2
| | | | | | | | | | | | | | | | | Per [1] this is fixed by [2]. The commit message says that it is reverting feature added in: $ git tag --no-contains d7a0084 | grep 1.0.18 1.0.18 This recipe is for the original memcached which is unmaintained now. Hence the ignore instead of upgrade. [1] https://nvd.nist.gov/vuln/detail/CVE-2023-27478 [2] https://github.com/awesomized/libmemcached/commit/48dcc61a Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libmemcached: merge inc into bbPeter Marko2024-12-202-19/+17
| | | | | | | | | After removing old libmemcached recipe version, these is no reasons anymore to have this split. The memcached resurrected project uses cmake and different urls. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libmemcached: remove recipe for version 1.0.7Peter Marko2024-12-201-4/+0
| | | | | | | This no longer compiles with latest toolchains. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: upgrade 1.6.17 -> 1.6.33Peter Marko2024-12-203-116/+10
| | | | | | | | | Solves CVE-2023-46852 and CVE-2023-46853. Upgrade done via "devtool upgrade". Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: add UPSTREAM_CHECK_URIPeter Marko2024-12-201-0/+2
| | | | | | | | Download URL is not listable so devtool upgrade fails. Using homepage works as it contains link to latest release, Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* memcached: ignore disputed CVE-2022-26635Peter Marko2024-12-191-0/+2
| | | | | | | | | | | | | | Per [1] this is a problem of applications using memcached inproperly. This should not be a CVE against php-memcached, but for whatever software the issue was actually found in. php-memcached and libmemcached provide a VERIFY_KEY flag if they're too lazy to filter untrusted user input. [1] https://github.com/php-memcached-dev/php-memcached/issues/519 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice-gtk: mark CVE-2012-4425 as fixedPeter Marko2024-12-191-0/+2
| | | | | | | | | | It is fixed by [1] since 0.15.3. NVD tracks this CVE as version-less. [1] https://cgit.freedesktop.org/spice/spice-gtk/commit/?id=efbf867bb88845d5edf839550b54494b1bb752b9 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice: ignore CVE-2016-0749Peter Marko2024-12-191-0/+1
| | | | | | | | | | | NVD tracks this as version-less CVE for spice. It was fixed by [1] and [2] included in 0.13.2. [1] https://gitlab.freedesktop.org/spice/spice/-/commit/6b32af3e1746988bb5a5123263bcf61b65e5be7e [2] https://gitlab.freedesktop.org/spice/spice/-/commit/359ac42a7ac02dcd1013757559292006647cd5c4 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* stunnel: upgrade 5.73 -> 5.74Wang Mingyu2024-12-192-5/+5
| | | | | | | | | | | | | | | fix-openssl-no-des.patch refreshed for 5.74 * Bugfixes - Fixed a stapling cache deallocation crash. - Fixed "redirect" with protocol negotiation. * Features - "protocolHost" support for "socks" protocol clients. - More detailed logs in OpenSSL 3.0 or later. Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: upgrade 2.0 -> 2.1Chanh Nguyen2024-12-161-1/+1
| | | | | Signed-off-by: Chanh Nguyen <chanh@os.amperecomputing.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* bridge-utils: add CVE_PRODUCTBenjamin Bouvier2024-12-131-0/+2
| | | | | | | | Add exact CPE name (from NVD database) in CVE_PRODUCT in order to ensure CVE filtering and not be disturb by futur potential false-positive CVEs. Signed-off-by: Benjamin Bouvier <benjamin.bouvier@ekinops.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: use inherit_defer for conditional casesGhislain Mangé2024-12-031-1/+1
| | | | | | | | | | | Conditionnal inherit may be missed when PACKAGECONFIG qt5 is activated after this inherit, eg in .bbappend. see patch [0] [0]: https://lists.openembedded.org/g/bitbake-devel/message/16815 Reviewed-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Ghislain Mangé <ghislain.mange@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: fix Qt5/6 configurationGhislain Mangé2024-12-031-1/+1
| | | | | | | | | | | | Wireshark is built with Qt6 by default when Qt is enabled. Forcibly disable Qt6 in our Qt5 PACKAGECONFIG Github issue: https://github.com/openembedded/meta-openembedded/issues/844 Reported-by: Ludovic Jozeau <ludovic.jozeau@smile.fr> Reviewed-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Ghislain Mangé <ghislain.mange@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: Bump to the newest stable repoMarcin Nowakowski2024-11-272-0/+71
| | | | | | | | | | | | | | | | Recently, the official nbdkit repo has been changed: from https://github.com/libguestfs/nbdkit into https://gitlab.com/nbdkit/nbdkit Additionally, the newest stable tag version is v1.40.4. The patch used with version 1.33.11 is also copied and modified to support the latest changes. The version 1.33.11 is not removed for reference purposes. It was tested with one of openbmc images. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dovecot: Upgrade to 2.3.21.1Khem Raj2024-11-232-1/+26
| | | | | | Fix build with icu-76.x while here Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tcpdump: add CVE_PRODUCTBenjamin Bouvier2024-11-211-0/+2
| | | | | | | Add exact CPE name in CVE_PRODUCT. Signed-off-by: Benjamin Bouvier <benjamin.bouvier@ekinops.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: add ptest supportJiaying Song2024-11-192-2/+51
| | | | | | | | | | | | | | | | | | | | | | | | | All test cases PASS. Add openvpn to PTESTS_SLOW because test duration longer than 30s Below is parts of the run log: [==========] xkey provider tests: Running 3 test(s). [ RUN ] xkey_provider_test_fetch [ OK ] xkey_provider_test_fetch [ RUN ] xkey_provider_test_mgmt_sign_cb [ OK ] xkey_provider_test_mgmt_sign_cb [ RUN ] xkey_provider_test_generic_sign_cb [ OK ] xkey_provider_test_generic_sign_cb [==========] xkey provider tests: 3 test(s) run. [ PASSED ] 3 test(s). PASS: provider_testdriver The files t_client.sh.in and t_cltsrv.sh were not added because they require specific environment configuration files. It is recommended that users configure these based on their environment before testing. Since the recipe enables iproute2, the condition for t_net.sh based on HAVE_SITNL is not met, so t_net.sh will not be included in the build. Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* unbound: update to latest to fix occasional build failureMartin Jansa2024-11-051-1/+7
| | | | | | | | | | | | | | | | | | | | | | | | buildhistory-diff shows few new files in testdata: packages/core2-64-oe-linux/unbound/unbound-ptest: FILELIST: added " /usr/lib/unbound/ptest/tests/testdata/rpz_val_block.rpl /usr/lib/unbound/ptest/tests/testdata/serve_expired_ttl_reset.rpl /usr/lib/unbound/ptest/tests/testdata/val_negcache_ttl_prefetch.rpl /usr/lib/unbound/ptest/tests/testdata/val_negcache_ttl.rpl /usr/lib/unbound/ptest/tests/testdata/iter_max_global_quota.rpl /usr/lib/unbound/ptest/tests/testdata/iter_unverified_glue.rpl /usr/lib/unbound/ptest/tests/testdata/serve_expired_val_bogus.rpl /usr/lib/unbound/ptest/tests/testdata/iter_unverified_glue_fallback.rpl /usr/lib/unbound/ptest/tests/testdata/serve_expired_client_timeout_val_bogus.rpl /usr/lib/unbound/ptest/tests/testdata/serve_expired_client_timeout_val_insecure_delegation.rpl /usr/lib/unbound/ptest/tests/testdata/dns64_prefetch_cache.rpl" wasn't tested in runtime, I don't use it, I just wanted to get rid of random build failure from world builds (happens at least since kirkstone which has 1.15.0). Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: Fix build errors with clang19 + muslChanh Nguyen2024-10-281-1/+1
| | | | | Signed-off-by: Chanh Nguyen <chanh@os.amperecomputing.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: upgrade 1.1 -> 2.0Chanh Nguyen2024-10-181-1/+5
| | | | | Signed-off-by: Chanh Nguyen <chanh@os.amperecomputing.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mdio-tools: RRECOMMENDS the kernel moduleAlban Bedel2024-10-161-1/+1
| | | | | | | | | The mdio-tools package RDEPENDS on `kernel-module-mdio-netlink` but this package doesn't exists if the module is built into the kernel. Use RRECOMMENDS instead as is usually done with kernel modules. Signed-off-by: Alban Bedel <alban.bedel@aerq.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open-vm-tools: upgrade 12.4.5 -> 12.5.0Yi Zhao2024-10-131-2/+2
| | | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* unbound: Upgrade to 1.21.1Khem Raj2024-10-131-2/+2
| | | | | | | Disable rpaths we are cross building and paths on target will be the usual locations e.g. /usr/lib Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ndisc6: Fix reproducible buildKhem Raj2024-10-102-0/+86
| | | | | | | | | | includes the CFLAGS used to build the package in the binary via PACKAGE_CONFIGURE_INVOCATION which then includes the absolute build path via (eg.) the -ffile-prefix-map flag. Here we remove using variables like PACKAGE_CONFIGURE_INVOCATION in code Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: fix typo in PACKAGECONFIG[zstd]Ghislain Mangé2024-10-021-1/+1
| | | | | | | | | | | | | | | ENABLE_STTD is a typo, correct option is ENABLE_ZSTD. This patches the following CMake warning in do_configure: Manually-specified variables were not used by the project: ENABLE_STTD After, do_configure does not show the warning. Github issue: https://github.com/openembedded/meta-openembedded/issues/845 Reported-by: Ludovic Jozeau <ludovic.jozeau@smile.fr> Reviewed-by: Yoann Congal <yoann.congal@smile.fr> Signed-off-by: Ghislain Mangé <ghislain.mange@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* curlpp: Fix build issuealperak2024-10-012-1/+38
| | | | | Signed-off-by: alperak <alperyasinak1@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* lksctp-tools: upgrade 1.0.20 -> 1.0.21Yi Zhao2024-09-291-1/+1
| | | | | | | | ChangeLog: https://github.com/sctp/lksctp-tools/blob/v1.0.21/ChangeLog Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tcpslice: upgrade 1.7 -> 1.8Yi Zhao2024-09-231-1/+1
| | | | | | | | ChangeLog: https://github.com/the-tcpdump-group/tcpslice/blob/tcpslice-1.8/CHANGES Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-19 07:07:20 +0000