summaryrefslogtreecommitdiffstats
path: root/meta-networking
Commit message (Collapse)AuthorAgeFilesLines
...
* blueman: add features_check on gobject-introspection-dataRoss Burton2023-05-251-1/+3
| | | | | | | This project uses gobject-introspection, so depend on the DISTRO_FEATURE. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* firewalld: add features_check on gobject-introspection-dataRoss Burton2023-05-251-1/+3
| | | | | | | This project uses gobject-introspection, so depend on the DISTRO_FEATURE. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ndpi: remove unused CVE-2021-36082.patchMartin Jansa2023-05-241-116/+0
| | | | | | | | * it was removed from SRC_URI in: https://git.openembedded.org/meta-openembedded/commit/?id=8359cf87458d185011831a8132b8af17bcbc9605 Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dhcp-relay: dev subpackage conflicts with bind-devZhang Xiao2023-05-241-0/+3
| | | | | | | | dhcp-relay contains a bundled bind thus their development packages conflict each other. Signed-off-by: Zhang Xiao <xiao.zhang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open62541: add OpenSSL as crypto providerJohannes Kauffmann2023-05-231-1/+2
| | | | | | | | Since multiple crypto provider aren't supported simultaneously, the mbedtls packageconfig conflicts with the openssl packgeconfig. Signed-off-by: Johannes Kauffmann <johanneskauffmann@hotmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open62541: rename encryption PACKAGECONFIGJohannes Kauffmann2023-05-231-2/+2
| | | | | | | ... in anticipation for OpenSSL as crypto provider. Signed-off-by: Johannes Kauffmann <johanneskauffmann@hotmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* babeld: Upgrade to 1.12.2Khem Raj2023-05-231-1/+3
| | | | | | | Fix buildpath QA errors while here by passing bitbake provided cflags to build env Signed-off-by: Khem Raj <raj.khem@gmail.com>
* unbound: Remove references to buildpathsKhem Raj2023-05-231-0/+4
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* curlpp: Remove references to buildpaths e.g. TMPDIRKhem Raj2023-05-232-1/+42
| | | | | | | Fixes WARNING: curlpp-0.8.1-r0 do_package_qa: QA Issue: File /usr/bin/curlpp-config in package curlpp-dev contains reference to TMPDIR [buildpaths] Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dovecot: Do not install dovecot-configKhem Raj2023-05-231-0/+1
| | | | | | | | | | | | This contains references to source directories used during build, it will not be useful on target without really editing it properly to reflect target rootfs install. it perhaps never was used thus far, it would have failed otherwise. Fixes WARNING: dovecot-2.3.20-r0 do_package_qa: QA Issue: File /usr/lib/dovecot/dovecot-config in package dovecot contains reference to TMPDIR [buildpaths] Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dovecot: Upgrade to 2.3.20Khem Raj2023-05-231-13/+9
| | | | | | | | - Re-enable LTO again, it works ok. - Turn systemd into a packageconfig and enable it when systemd is in distro features Signed-off-by: Khem Raj <raj.khem@gmail.com>
* system-config-printer: Delete __pycache__ filesKhem Raj2023-05-231-0/+9
| | | | | | | These pyc files include references to buildtime TMPDIR, therefore delete them and let them be regerated during runtime if needed. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nbdkit: Remove buildpaths from binariesKhem Raj2023-05-233-40/+39
| | | | | | | | | Drop unused patch 0001-server-Fix-build-when-printf-is-a-macro.patch Fixes WARNING: nbdkit-1.33.11-r0 do_package_qa: QA Issue: File /usr/lib/nbdkit/plugins/nbdkit-cc-plugin.so in package nbdkit contains reference to TMPDIR [buildpaths] Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: Turn ppp support into a packageconfig optionThomas Perrot2023-05-231-1/+1
| | | | | | | Enable it only if ppp is in distro features Signed-off-by: Thomas Perrot <thomas.perrot@bootlin.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ippool: Enable systemd service on installKhem Raj2023-05-212-4/+2
| | | | | | Start the daemon with RPC support Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ippool: Port to using ppp 2.5.xKhem Raj2023-05-212-0/+61
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* system-config-printer: clean up DEPENDSRoss Burton2023-05-201-2/+2
| | | | | | | | | | Remove intltool-native as it is not used, and add autoconf-archive-native. Also explicitly disable systemd when not selected to be sure it doesn't automatically enable. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager-openconnect: add new recipePetr Gotthard2023-05-151-0/+46
| | | | | | | | Integration of the OpenConnect VPN client to the NetworkManager https://gitlab.gnome.org/GNOME/NetworkManager-openconnect Signed-off-by: Petr Gotthard <petr.gotthard@advantech.cz> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager-fortisslvpn: add new recipePetr Gotthard2023-05-143-0/+410
| | | | | | | | Fortinet SSLVPN support for NetworkManager https://gitlab.gnome.org/GNOME/NetworkManager-fortisslvpn Signed-off-by: Petr Gotthard <petr.gotthard@advantech.cz> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* squid: Remove buildpaths from generated binariesKhem Raj2023-05-141-0/+4
| | | | | | | | | | Compiler invocation and flags are added to SQUID_CONFIGURE_OPTIONS which is added via generated autoconf.h during configure step. Since OE encodes sysroot and buildpaths for cross compile, they end up in squid binary, this patch removes from workdir from them so avoid encoding build workspace path Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openfortivpn: add new recipePetr Gotthard2023-05-131-0/+26
| | | | | | | | A client for PPP+SSL VPN tunnel services, compatible with Fortinet VPNs. https://github.com/adrienverge/openfortivpn Signed-off-by: Petr Gotthard <petr.gotthard@advantech.cz> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* strongswan: add PACKAGECONFIG for the NetworkManager modulePetr Gotthard2023-05-111-0/+5
| | | | | | | | Disabled by default. When enabled, a package 'strongswan-nm' gets created. The package naming follows Debian/Ubuntu. Signed-off-by: Petr Gotthard <petr.gotthard@advantech.cz> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open62541: disable warnings as errorsJohannes Kauffmann2023-05-091-0/+1
| | | | | | | | | When using OpenSSL as the encryption provider, the package does not build without deprecation warnings, thus breaking the build. Disable warnings as errors to unbreak the build. Signed-off-by: Johannes Kauffmann <johanneskauffmann@hotmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open62541: allow overriding encryption providersJohannes Kauffmann2023-05-091-1/+1
| | | | | | | | | | | | | | | | | | | Without "encryption" PACKAGECONFIG, the option UA_ENABLE_ENCRYPTION=OFF is passed, which disables encryption support altogether and makes it impossible to override the encryption provider. Since no encryption support is already the default, we don't have to specify anthing to disable encryption. Additionally, explicitly specify MbedTLS as the encryption provider; this is the preferred way to enable any one of the three supported providers (LibreSSL, OpenSSL or MbedTLS). The current method prints a deprecation warning: CMake Deprecation Warning at CMakeLists.txt:200 (message): Set UA_ENABLE_ENCRYPTION to the desired encryption library. Signed-off-by: Johannes Kauffmann <johanneskauffmann@hotmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* frr: add CVE_PRODUCTChen Qi2023-05-081-0/+2
| | | | | | | The CVE_PRODUCT is frrouting in NVD database. Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice-gtk: respect gobject-introspection-dataMartin Jansa2023-05-031-2/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * without gobject-introspection-data in DISTRO_FEATURES the bbclass correctly disables it: $ bitbake-getvar -r spice-gtk EXTRA_OEMESON # # $EXTRA_OEMESON [6 operations] # :append /OE/build/oe-core/openembedded-core/meta/classes-recipe/meson.bbclass:44 # " ${PACKAGECONFIG_CONFARGS}" # :prepend[class-target] /OE/build/oe-core/openembedded-core/meta/classes-recipe/gobject-introspection.bbclass:28 # "${@['', '${GIRMESONTARGET}'][d.getVar('GIR_MESON_OPTION') != '']}" # :prepend[class-native] /OE/build/oe-core/openembedded-core/meta/classes-recipe/gobject-introspection.bbclass:33 # "${@['', '${GIRMESONBUILD}'][d.getVar('GIR_MESON_OPTION') != '']}" # :prepend[class-nativesdk] /OE/build/oe-core/openembedded-core/meta/classes-recipe/gobject-introspection.bbclass:34 # "${@['', '${GIRMESONBUILD}'][d.getVar('GIR_MESON_OPTION') != '']}" # set /OE/build/oe-core/meta-openembedded/meta-networking/recipes-support/spice/spice-gtk_0.42.bb:49 # "-Dpie=true -Dvapi=enabled" # :append[libc-musl] /OE/build/oe-core/meta-openembedded/meta-networking/recipes-support/spice/spice-gtk_0.42.bb:50 # " -Dcoroutine=libucontext" # pre-expansion value: # "${@['', '${GIRMESONTARGET}'][d.getVar('GIR_MESON_OPTION') != '']}-Dpie=true -Dvapi=enabled ${PACKAGECONFIG_CONFARGS}" EXTRA_OEMESON="-Dintrospection=false -Dpie=true -Dvapi=enabled " and prevents build failure: http://errors.yoctoproject.org/Errors/Details/702789/ Run-time dependency gobject-introspection-1.0 found: NO (tried pkgconfig) ../git/meson.build:346:0: ERROR: Dependency "gobject-introspection-1.0" not found, tried pkgconfig * it just needs GIR_MESON_*_FLAG to be set to avoid: meson.build:4:0: ERROR: Value "false" (of type "string") for combo option "Check for GObject instrospection requirements" is not one of the choices. Possible choices are (as string): "enabled", "disabled", "auto". * and enable vapi only when introspection is enabled, use PACKAGECONFIG for that to avoid: meson.build:358:4: ERROR: Problem encountered: VAPI support requested without introspection Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* freediameter: fix typo and old overide syntaxBergin, Peter2023-05-021-1/+1
| | | | | | | | | | A typo that probably caused a left over from override syntax conversion. INITSCRIPT_PARAMS$_${PN} --> INITSCRIPT_PARAMS:${PN} Signed-off-by: Peter Bergin <peter.bergin@windriver.com> Signed-off-by: Peter Bergin <peter@berginkonsult.se> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nfacct: Update SRC_URI to point to valid URLKhem Raj2023-05-011-5/+3
| | | | | | Update UPSTREAM_CHECK_URI accordingly Signed-off-by: Khem Raj <raj.khem@gmail.com>
* radiusclient-ng: Point SRC_URI to archive.ubuntu.comKhem Raj2023-05-011-2/+1
| | | | | | This tarball is not available on debian ftp archive anymore Signed-off-by: Khem Raj <raj.khem@gmail.com>
* rp-pppoe: Point SRC_URI to valid locationKhem Raj2023-04-301-1/+1
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* netkit-ftp: Update to debian patch 34Khem Raj2023-04-301-5/+2
| | | | | | drop md5 SRC_URI checksums while here Signed-off-by: Khem Raj <raj.khem@gmail.com>
* meta-networking/licenses/netperf: remove unused licenseArsalan H. Awan2023-04-281-43/+0
| | | | | | | | | | This removes the old unused license for netperf as upstream moved to using the MIT license for netperf. See: meta-openembedded commit 587fe5877790b6c2e1d337c351b8f50603ad4db9 Signed-off-by: Arsalan H. Awan <arsalan.awan@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.18.1 -> 4.18.2Wang Mingyu2023-04-231-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: upgrade 1.42.4 -> 1.42.6Wang Mingyu2023-04-231-1/+1
| | | | | | | | | | | | | | | | | | Changelog: ========== * Emit the dhcp-change dispatcher event also after a lease renewal. * Fix assertion failure on DHCP renewal. * Add support for EC2 IMDSv2 in nm-cloud-setup. * Allow setting tunnel flags for ip6gre & ip6gretap connection profiles. * Improve the Wi-Fi hotspot functionality. * Fix setting the Wi-Fi roaming policy based on the number of seen BSSIDs. * Support the "no-aaaa" resolv.conf option. * Some oFono fixes. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ntp: whitelist CVE-2019-11331Peter Marko2023-04-191-0/+2
| | | | | | | | | | | | Links from https://nvd.nist.gov/vuln/detail/CVE-2019-11331 lead to conclusion that this is how icurrent ntp protocol is designed. New RFC is propsed for future but it will not be compatible with current one. See https://support.f5.com/csp/article/K09940637 Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tcpdump: upgrade 4.99.3 -> 4.99.4Wang Mingyu2023-04-171-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ========== Source code: ---------------- Fix spaces before tabs in indentation. Updated printers: ----------------- LSP ping: Fix "Unused value" warnings from Coverity. CVE-2023-1801: Fix an out-of-bounds write in the SMB printer. DNS: sync resource types with IANA. ICMPv6: Update the output to show a RPL DAO field name. Geneve: Fix the Geneve UDP port test. Building and testing: ---------------------- Require at least autoconf 2.69. Don't check for strftime(), as it's in C90 and beyond. Update config.{guess,sub}, timestamps 2023-01-01,2023-01-21. Documentation: ------------- man: Document TCP flag names better. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: upgrade 2.6.2 -> 2.6.3Wang Mingyu2023-04-171-1/+1
| | | | | | | | | | | | | Changelog: ========== GHA: remove Ubuntu 18.04 builds vcpkg: request "tools" feature of openssl for MSVC build doc: run rst2* with --strict to catch warnings Support of DNS domain for DHCP-less drivers Bug-fix: segfault in dco_get_peer_stats() Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mctp: upgrade 1.0 -> 1.1Wang Mingyu2023-04-171-3/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nftables: upgrade 1.0.6 -> 1.0.7Petr Gotthard2023-04-141-11/+33
| | | | | | | | | | | | | | | | | | | Changelog: https://netfilter.org/projects/nftables/files/changes-nftables-1.0.7.txt The COPYING text changed to highlight that "New code though is moving to GPL version 2 or any later which is the preferred license for this project these days." Although the project itself stays GPLv2 only. https://netfilter.org/licensing.html#terms The upstream replaced distutils with setuptools, so the nftables-python is now built using the standard approach. The coexistence of setuptools and automake is solved in the same way as in meta-oe/recipes-support/libiio. The removal of *.pyc is no longer necessary. Signed-off-by: Petr Gotthard <petr.gotthard@advantech.cz> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* restinio: fix S variable in multilib buildsMartin Jansa2023-04-071-2/+2
| | | | | | | | * do_populate_lic as well as do_configure fails in multilib builds, because S points to empty: lib32-restinio/0.6.13-r0/lib32-restinio-0.6.13/dev Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libdnet: Upgrade to 1.16.3Khem Raj2023-04-064-20/+89
| | | | | | Fix build with upcoming autoconf 1.16.3 Signed-off-by: Khem Raj <raj.khem@gmail.com>
* recipes: Remove double protocol= from SRC_URIsPeter Kjellerstedt2023-04-051-1/+1
| | | | | | | | | | With the exception of paho-mqtt-cpp, the double protocol= attributes were added to the SRC_URIs when protocol=https was added to all SRC_URIs fetching from github.com in commit b402a3076f (recipes: Update SRC_URI branch and protocols). Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* autossh: Correct the license informationPeter Kjellerstedt2023-04-051-3/+2
| | | | | | | | | | Correct "startline=" to "beginline=" in LIC_FILES_CHKSUM so that the correct lines from autossh.c and daemon.h are used. Also remove autossh.spec from LIC_FILES_CHKSUM as it doesn't really contain any license information. Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.18.0 -> 4.18.1Yi Zhao2023-04-041-1/+1
| | | | | | | | | | | | | Release Notes: https://www.samba.org/samba/history/samba-4.18.1.html This is a security release in order to address the following defects: CVE-2023-0225 CVE-2023-0922 CVE-2023-0614 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openvpn: upgrade 2.6.1 -> 2.6.2Wang Mingyu2023-04-041-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ========== dco: don't use NetLink to exchange control packets dco: print version to log if available dco-linux: remove M_ERRNO flag when printing netlink error message multi: don't call DCO APIs if DCO is disabled dco-freebsd: use m->instances[] instead of m->hash dco-linux: implement dco_get_peer_stats{, multi} API Set netlink socket to be non-blocking Ensure n = 2 is set in key2 struct in tls_crypt_v2_unwrap_client_key Fix memory leaks in open_tun_dco() Fix memory leaks in HMAC initial packet generation Use key_state instead of multi for tls_send_payload parameter Make sending plain text control message session aware Only update frame calculation if we have a valid link sockets Improve description of compat-mode Simplify --compress parsing in options.c Refuse connection if server pushes an option contradicting allow-compress Add 'allow-compression stub-only' internally for DCO Parse compression options and bail out when compression is disabled tests/unit_tests: Fix 'make distcheck' with subdir-objects enabled preparing release 2.6.2 dns option: allow up to eight addresses per server dco: print FreeBSD version Support --inactive option for DCO Fix '--inactive <time> 0' behavior for DCO Print DCO client stats on SIGUSR2 Don't overwrite socket flags when using DCO on Windows using OpenSSL3 API for EVP PKEY type name reporting Bugfix: Convert ECDSA signature form pkcs11-helper to DER encoded form Import some sample certificates into Windows store for testing Add tests for finding certificates in Windows cert store Refactor SSL_CTX_use_CryptoAPI_certificate() Add a test for signing with certificates in Windows store Unit tests: add test for SSL_CTX_use_Cryptoapi_certificate() Improve error message on short read from socks proxy Make error in setting metric for IPv6 interface non-fatal Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ndisc6: upgrade 1.0.6 -> 1.0.7Wang Mingyu2023-04-041-1/+1
| | | | | | | | | | Changelog: ========= # Do not ignore multicast advertisements when discovery was sent as unicast (fix regression from 1.0.5). Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libldb: upgrade 2.7.1 -> 2.7.2Wang Mingyu2023-04-041-2/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fwknop: Fix AS_IF configure syntaxKhem Raj2023-04-022-11/+32
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* fwknop: Use pkg-config instead of gpgme-configKhem Raj2023-04-022-1/+29
| | | | | | pkg-config is sysroot aware which is needed for cross-builds Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dnsmasq: fix CVE-2023-28450Peter Marko2023-03-252-0/+49
| | | | | | | | The patch is modified by removing irrelevant and conflicting CHANGELOG entry. Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-23 18:29:44 +0000