summaryrefslogtreecommitdiffstats
path: root/meta-networking
Commit message (Collapse)AuthorAgeFilesLines
* nftables: Conditionally add ${PN}-python as RDEPENDS for ptestNikhil R2024-10-061-1/+4
| | | | | | | | | | | | | | | | This commit updates the RDEPENDS for the ptest package to include ${PN}-python only when the 'python' PACKAGECONFIG option is enabled. This fix is required as ptest is enabled in the Distro features, which was causing the following error: ERROR: Nothing RPROVIDES 'nftables-python' (but /home/builder/src/base/node0/meta-openembedded/meta-networking/recipes-filter/nftables/nftables_1.0.9.bb RDEPENDS on or otherwise requires it) NOTE: Runtime target 'nftables-python' is unbuildable, removing... Missing or unbuildable dependency chain was: ['nftables-python'] ERROR: Required build target 'nftables' has no buildable providers. Missing or unbuildable dependency chain was: ['nftables', 'nftables-python'] Signed-off-by: Nikhil R <nikhil.r@kpit.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* nftables: avoid python dependencies when building without pythonMichael Olbrich2024-10-061-2/+2
| | | | | | | | | | | | | | | Use inherit_defer instead of inhert. This way, setuptools3 is not inherited when python is removed from PACKAGECONFIG in a .bbappend file. This avoids dependencies added by setuptools3. Don't add nftables-python to PACKAGES if python is disabled. It adds extra runtime dependencies on python3-core and python3-json. Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 5cf3766cf6395d4bfa5de20cf7427950ca498eaa) Signed-off-by: Nikhil R <nikhil.r@kpit.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libldb: upgrade 2.8.0 -> 2.8.1Yi Zhao2024-10-061-1/+1
| | | | | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 09f8ef2242c2d7f83101effed09ee7894e14c069) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tgt: fix CVE-2024-45751Hitendra Prajapati2024-09-222-0/+72
| | | | | | | Upstream-Status: Backport from https://github.com/fujita/tgt/commit/abd8e0d987ab56013d360077202bf2aca20a42dd Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* mbedtls: upgrade 2.28.8 -> 2.28.9Yi Zhao2024-09-221-1/+1
| | | | | | | | | | | | | ChangeLog https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-2.28.9 Security fix: CVE-2024-45157 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* mbedtls: upgrade 3.6.0 -> 3.6.1Yi Zhao2024-09-221-4/+5
| | | | | | | | | | | | | | | | | | | | ChangeLog: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.1 Security fixes: CVE-2024-45157 CVE-2024-45158 CVE-2024-45159 * According to commit[1], install data_files into framework directory for ptest. [1] https://github.com/Mbed-TLS/mbedtls/commit/9c4dd4ee6fe570b6a50a275d78b7d140fec0e02f Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* samba: upgrade 4.19.7 -> 4.19.8Wang Mingyu2024-09-151-1/+1
| | | | | | | | | | Changelog: https://www.samba.org/samba/history/samba-4.19.8.html Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 3cbd140c7d85d99afc81ffd83b75698ee621c1c1) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* samba: upgrade 4.19.6 -> 4.19.7Yi Zhao2024-09-151-1/+1
| | | | | | | | | | ChangeLog: https://www.samba.org/samba/history/samba-4.19.7.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 41df431b91f1d81070c1f0e8633995d7afba52e4) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: upgrade 4.2.5 -> 4.2.7Vijay Anusuri2024-09-091-1/+1
| | | | | | | | | | | | | CVE's fixed by upgrade: CVE-2024-8250 Other Changes between 4.2.5 -> 4.2.7 ====================================== https://www.wireshark.org/docs/relnotes/wireshark-4.2.7.html https://www.wireshark.org/docs/relnotes/wireshark-4.2.6.html Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* networkmanager: remove modemmanager rdependsAdrian Freihofer2024-08-211-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | This reverts commit: 5edb8335dc46450fd6bcdbb3fcf55336b32bd422 The Networkmanager package must not depend on ModemManager. Only the Networkmanager-wwan package should depend on the ModemManager package. The mobile-broadband-provider-info is fully optional and it is often not required for embedded devices. Let the user choose if it gets installed or not. Adding it explicitely to IMAGE_INSTALL is simple. Adding an RRECOMMENS would work as well. But adding an RDEPENDS is bad. In general, NetworkManager packaging is intended to provide a set of binary packages suitable for building many different images. NetworkManager is designed to be used for binary packages distributions where it is not possible to rebuild NetworkManager just to install Modemmanager. Also for OE, where a rebuilding is possible, a rebuild is a disadvantage. So please do not destroy this flexibility by adding RDEPENDS, which are firstly wrong and secondly only suitable for your specific needs. Signed-off-by: Adrian Freihofer <adrian.freihofer@siemens.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* squid: patch CVE-2024-37894Peter Marko2024-08-212-0/+37
| | | | | | | Reference: https://github.com/squid-cache/squid/security/advisories/GHSA-wgvf-q977-9xjg Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tayga: Fix contains reference to TMPDIR [buildpaths] warningalperak2024-08-101-0/+3
| | | | | | | | | | | WARNING: tayga-0.9.2-r0 do_package_qa: QA Issue: File /usr/sbin/.debug/tayga in package tayga-dbg contains reference to TMPDIR [buildpaths] Make sure that the OE provided CFLAGS are passed to the compiler. Signed-off-by: alperak <alperyasinak1@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit d1bf2db7cc2bcb8b6ac45bb382c3f2b6bb762053) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* znc: Fix buildpaths QA errorsJ. S.2024-08-101-0/+1
| | | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 28d77dddad1c86ac5771859e59504e662eb68813) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tcpreplay: Fix CVE-2023-4256Poonam Jadhav2024-08-032-0/+28
| | | | | | | | | | | Add patch to fix tcpreplay CVE-2023-4256 dlt_jnpr_ether_cleanup: check config before cleanup Links: https://github.com/appneta/tcpreplay/pull/851 https://github.com/appneta/tcpreplay/issues/813#issuecomment-2245557093 Signed-off-by: Poonam Jadhav <poonam.jadhav@kpit.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* nftables: change ptest output formatJiaying Song2024-07-231-2/+6
| | | | | | | | | This change adds a simple format for the skip results. The format selected is the automake "simple test" format: "result: testname" Signed-off-by: Jiaying Song <jiaying.song.cn@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: upgrade 4.2.4 -> 4.2.5Vijay Anusuri2024-07-171-1/+1
| | | | | | | | | | | | | | | The following vulnerabilities have been fixed: wnpa-sec-2024-07 MONGO and ZigBee TLV dissector infinite loops. Issue 19726. CVE-2024-4854. wnpa-sec-2024-08 The editcap command line utility could crash when chopping bytes from the beginning of a packet. Issue 19724. CVE-2024-4853. wnpa-sec-2024-09 The editcap command line utility could crash when injecting secrets while writing multiple files. Issue 19782. CVE-2024-4855. Release Notes: https://www.wireshark.org/docs/relnotes/wireshark-4.2.5.html Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* tcpdump: fix CVE-2024-2397Hitendra Prajapati2024-06-262-0/+130
| | | | | | | Upstream-Status: Backport from https://github.com/the-tcpdump-group/tcpdump/commit/b9811ef5bb1b7d45a90e042f81f3aaf233c8bcb2 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* daq: fix incompatible pointer type errorKai Kang2024-06-242-0/+32
| | | | | | | | | | | | | | | | Fix incompatible pointer type error for daq: | ../../daq-2.0.7/os-daq-modules/daq_nfq.c: In function 'SetPktHdr': | ../../daq-2.0.7/os-daq-modules/daq_nfq.c:394:37: error: passing argument 2 of 'nfq_get_payload' from incompatible pointer type [-Wincompatible-pointer-types] | 394 | int len = nfq_get_payload(nfad, (char**)pkt); | | ^~~~~~~~~~~ | | | | | char ** Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* squid: workaround a build failure with native gcc10Yoann Congal2024-06-021-0/+5
| | | | | | | | | | | | | | | | | | | | | When build on Debian 11 (gcc10), squid fails to build[0] because of a bug[1] in the configure step (it mixes options between old native compiler and recent target compiler: the former needs the std=c++17 option, the latter doesn't). The workaround is to force the "-std=c++17" option for the native build. NB: Our Buildroot friends have the same workaround[2]. [0]: https://autobuilder.yoctoproject.org/typhoon/#/builders/155/builds/23/steps/28/logs/stdio [1]: https://bugs.squid-cache.org/show_bug.cgi?id=5376 Bug closed as invalid by upstream [2]: https://github.com/buildroot/buildroot/blob/932b52fad87d79d9f26a343edafe2981079de16e/package/squid/squid.mk#L24 Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Reviewed-by: Alexandre Truong <alexandre.truong@smile.fr> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* samba: upgrade 4.19.5 -> 4.19.6Yi Zhao2024-06-021-1/+1
| | | | | | | | | ChangeLog: https://www.samba.org/samba/history/samba-4.19.6.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* libtevent: upgrade 0.16.0 -> 0.16.1Yi Zhao2024-06-021-1/+1
| | | | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* networkmanager: fix gir buildMarkus Volk2024-04-301-3/+4
| | | | | | | | | | | | | | | Basically what is done in: https://git.openembedded.org/meta-openembedded/commit/?h=master-next&id=4c40897893f43a99e6ae12e652c0cf789d89df90 This fixes: | gi.RepositoryError: Typelib file for namespace 'Gobject', version '2.0' not found | gi.RepositoryError: Typelib file for namespace 'Gio', version '2.0' not found | gi.RepositoryError: Typelib file for namespace 'GModule', version '2.0' not found - Remove uneeded do_compile:prepend. It was broken because of {B}} and seems to be unneeded anyway Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkd-dispatcher: Add dependency on python3-jsonmaffan2024-04-301-1/+1
| | | | | | networkd-dispatcher imports json. Add it as a RDEPENDS. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* open-vm-tools: Update status for CVE-2014-4199 and CVE-2014-4200Ninette Adhikari2024-04-301-0/+2
| | | | | | | Current version 12.3.5 is not affected by the issue. Affected versions: Up to (incl) 10.0.3 Signed-off-by: Khem Raj <raj.khem@gmail.com>
* reproducibility: move repro excludes from AB config.json to meta-oeYoann Congal2024-04-301-0/+59
| | | | | | | | | | | | | | For now, the known non-reproducible packages list is stored inside the autobuilder config.json file. This is not ideal. Let's move this list into each layers of meta-openembedded. These lists can be used with, in local.conf: include conf/include/non-repro-meta-oe.inc OEQA_REPRODUCIBLE_EXCLUDED_PACKAGES = "${KNOWN_NON_REPRO_META_OE}" Signed-off-by: Yoann Congal <yoann.congal@smile.fr> Acked-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice-gtk: add PACKAGECONFIG for webdavMarkus Volk2024-04-301-0/+1
| | | | | Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* spice-gtk: use hwdata instead of usbidsMarkus Volk2024-04-301-2/+2
| | | | | | | | spice-gtk seems to be the last recipe in meta-openembedded that uses usbids instead of hwdata. Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* openfortivpn: upgrade 1.21.0 -> 1.22.0Wang Mingyu2024-04-301-1/+1
| | | | | | | | | | | | Changelog: ========== * make sure Homebrew packages for macOS are built with --enable-legacy-pppd * do not print TLS socket options in log (revert change from 1.16.0) * add option to specify SNI * change most occurrences of "SSL" to "TLS" in user-visible text Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* freediameter: fix dependency from libidn to libidn2Martin Jansa2024-04-211-1/+1
| | | | | | | | | | | | | | | | | | * it's used since: https://github.com/freeDiameter/freeDiameter/commit/da679d27c546e11f6e41ad8882699f726e58a9f7 included with the upgrade to 1.5.0 in: https://git.openembedded.org/meta-openembedded/commit/?id=47ccb88d94852e327f3bdd45425f33e56983b50c * libidn2 is usually pulled into the RSS by the dependency from gnutls but when gnutls doesn't depend on it, the build fails with: -- Checking for module 'libidn2' -- No package 'libidn2' found CMake Error at include/freeDiameter/CMakeLists.txt:144 (MESSAGE): Unable to find libidn2, please install libidn2-dev or equivalent, or set DIAMID_IDNA_IGNORE or DIAMID_IDNA_REJECT Signed-off-by: Martin Jansa <martin.jansa@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* squid: upgrade 6.8 -> 6.9Wang Mingyu2024-04-211-1/+1
| | | | | | | | | | | | | | | Changelog: ========== - Regression Bug 5349: basic_nis_auth build error: unterminated #ifndef - Bug 5069: Keep listening after getsockname() error - Bug 5360: FwdState::noteDestinationsEnd() assertion "err" - Reduce stale errno usage - Plug memory leak in handling cache manager requests - Fix error: template-id not allowed for constructor in C++20 - Improve release packaging automation Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* sngrep: upgrade 1.8.0 -> 1.8.1Wang Mingyu2024-04-211-1/+1
| | | | | | | | Changelog: capture: fix possible buffer overflow while processing headers Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* rdma-core: upgrade 50.0 -> 51.0Wang Mingyu2024-04-211-1/+1
| | | | | | | | | | | | | | | | | | Changelog: ============ -Merge pull request #1444 from yishaih/mlx5_dr -Merge pull request #1439 from Kamalheib/qedr_pr -mlx5: DR, Using sq ts format when RoCE is disabled -Merge pull request #1440 from Honggang-LI/doc -librdmacm: adjust ECE function name in man page -providers/qedr: Remove unused debug files -roviders/qelr: Replace DP_ERR with verbs_err -providers/qelr: Replace DP_VERBOSE with verbs_debug -providers/qelr: Remove unused macros -Merge pull request #1438 from amzn/fix-rdma-tracepoint Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nng: upgrade 1.5.2 -> 1.7.3Alexander Vickberg2024-04-211-1/+1
| | | | | Signed-off-by: Alexander Vickberg <wickbergster@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* Revert "nng: upgrade 1.5.2 -> 12"Alexander Vickberg2024-04-211-0/+0
| | | | | | | | | This reverts commit 915b6c02ee43e2dee8c6b3132e7d47836d392168. Mistake upgrade by AUH Signed-off-by: Alexander Vickberg <wickbergster@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* snort3: update to latest stable version 3.1.84.0Yi Zhao2024-04-211-3/+1
| | | | | | | | ChangeLog: https://github.com/snort3/snort3/releases/tag/3.1.84.0 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libdaq: update to latest stable version 3.0.14Yi Zhao2024-04-211-1/+1
| | | | | | | | ChangeLog: https://github.com/snort3/libdaq/releases/tag/v3.0.14 Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* Use PYTHON_SITEPACKAGES_DIR instead of hard-coded site-packages directory pathalperak2024-04-215-7/+7
| | | | | | | | | | | | The following paths have been replaced with PYTHON_SITEPACKAGES_DIR: - "${libdir}/${PYTHON_DIR}/site-packages" - "${libdir}/python${PYTHON_BASEVERSION}/site-packages" - "${libdir}/python*/site-packages" - "${libdir}/python3.*/site-packages" Signed-off-by: alperak <alperyasinak1@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* freediameter: Upgrade to latest on master 1.5.0+Khem Raj2024-04-214-107/+14
| | | | | | | This also fixes all ptests, therefore move freediameter out of PTESTS_PROBLEMS_META_NETWORKING to PTESTS_FAST_META_NETWORKING Signed-off-by: Khem Raj <raj.khem@gmail.com>
* libcoap: fix CVE-2024-0962alperak2024-04-142-0/+46
| | | | | | | | | | | | | | | CVE-2024-0962: A vulnerability was found in obgm libcoap 4.3.4. It has been rated as critical. Affected by this issue is the function get_split_entry of the file src/coap_oscore.c of the component Configuration File Handler. The manipulation leads to stack-based buffer overflow. Upstream-Status: Backport [https://github.com/obgm/libcoap/pull/1311] WARNING: libcoap-4.3.4-r0 do_cve_check: Found unpatched CVE (CVE-2024-0962) This vulnerability is only exist in 4.3.4. Signed-off-by: alperak <alperyasinak1@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* waf-samba: replace oldincludedirPeter Marko2024-04-141-1/+1
| | | | | | | | oldincludedir was removed in oe-core by commit 506c91cbc6a604a84e37e53ccff430436369802e Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nftables: Fix ptest runsKhem Raj2024-04-143-3/+25
| | | | | | | | | | | It gets OOMs with memory < 2G on x86_64 qemu Export NFT variable in run-ptest script its used by few tests Add required runtime dependencies for ptests to pass This also requires changes to kernel config features/nf_tables/nft_test.scc and CONFIG_VETH Signed-off-by: Khem Raj <raj.khem@gmail.com>
* postfix: switch SRC_URI to httpRandy MacLeod2024-04-141-1/+1
| | | | | | | Switch the SRC_URI to http since the postfix site does not yet use https. Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* tnftp: switch the SRC_URI to httpsRandy MacLeod2024-04-141-1/+1
| | | | | Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* pimd: switch SRC_URI to httpsRandy MacLeod2024-04-141-2/+1
| | | | | | | | Switch SRC_URI to https (yes, the URI still has ftp in the path!). Also drop the obsolete SRC_URI[md5sum]. Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* ncftp: Upgrade to 3.2.7Randy MacLeod2024-04-142-87/+2
| | | | | | | | | Switch the SRC_URI from "ftp:" to "https:". Drop the obsolete SRC_URI[md5sum]. Drop ncftp-3.2.5-gcc10.patch since we're using gcc13 and upstream has fixed the build to work by adding an extern to sh_util/gpshare.c for example. Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* unbound: upgrade 1.19.1 -> 1.19.3Beniamin Sandu2024-04-071-2/+2
| | | | | | | | | | | Includes security fixes for: CVE-2024-1931 - Loop with Unreachable Exit Condition ('Infinite Loop') Full release notes: https://github.com/NLnetLabs/unbound/releases/tag/release-1.19.3 Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mbedtls: upgrade 2.28.7 -> 2.28.8Beniamin Sandu2024-04-071-2/+2
| | | | | | | | | | | Includes security fixes for: CVE-2024-28960 - Insecure handling of shared memory in PSA Crypto APIs Full release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8 Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mbedtls: upgrade 3.5.2 -> 3.6.0Beniamin Sandu2024-04-072-89/+6
| | | | | | | | | | | | | This is an LTS release. Includes security fixes: * CVE-2024-28960 - Insecure handling of shared memory in PSA Crypto APIs Full release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v3.6.0 Signed-off-by: Beniamin Sandu <beniaminsandu@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mdns: Upgrade 2200.80.16 -> 2200.100.94.0.2Alex Kiernan2024-04-071-1/+1
| | | | | Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nftables: Fix failed ptest testcasesWilliam Lyu2024-04-033-0/+101
| | | | | | | | | | | | | | | There are 2 failed ptest testcases. They fail because they are broken, but the fix from the upstream is not yet available in version 1.0.9. These testcases are: - tests/shell/testcases/sets/reset_command_0 Fix from the upstream: https://git.netfilter.org/nftables/commit/?id=7a6089a400a573b9a4fd92f29c00a6be7b8ef269 - tests/shell/testcases/json/0005secmark_objref_0 Fix from the upstream: https://git.netfilter.org/nftables/commit/?id=fff913c1eefbc84eb2d9c52038ef29fe881e9ee9 Signed-off-by: William Lyu <William.Lyu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-05 23:07:31 +0000