Commit Graph

1043 Commits

Author SHA1 Message Date
Armin Kuster b932e31a25 wireshark: update to latest stable 3.4.11
For more infromation, see:
https://www.wireshark.org/docs/relnotes/wireshark-3.4.11.html

refresh 0004-lemon-Remove-line-directives.patch

Includes CVEs:

3.4.11:
wnpa-sec-2021-16 Gryphon dissector crash. Issue 17737. CVE-2021-4186.
wnpa-sec-2021-17 RTMPT dissector infinite loop. Issue 17745. CVE-2021-4185.
wnpa-sec-2021-18 BitTorrent DHT dissector infinite loop. Issue 17754. CVE-2021-4184.
wnpa-sec-2021-20 RFC 7468 file parser infinite loop. Issue 17801. CVE-2021-4182.
wnpa-sec-2021-21 Sysdig Event dissector crash. CVE-2021-4181.

3.4.10:
wnpa-sec-2021-07 Bluetooth DHT dissector crash. Issue 17651. CVE-2021-39929.
wnpa-sec-2021-08 Bluetooth HCI_ISO dissector crash. Issue 17649. CVE-2021-39926.
wnpa-sec-2021-09 Bluetooth SDP dissector crash. Issue 17635. CVE-2021-39925.
wnpa-sec-2021-10 Bluetooth DHT dissector large loop. Issue 17677. CVE-2021-39924.
wnpa-sec-2021-11 PNRP dissector large loop. Issue 17684.
wnpa-sec-2021-12 C12.22 dissector crash. Issue 17636. CVE-2021-39922.
wnpa-sec-2021-13 IEEE 802.11 dissector crash. Issue 17704. CVE-2021-39928.
wnpa-sec-2021-14 Modbus dissector crash. Issue 17703. CVE-2021-39921.
wnpa-sec-2021-15 IPPUSB dissector crash. Issue 17705. CVE-2021-39920.

Signed-off-by: Armin Kuster <akuster808@gmail.com>
(cherry picked from commit 89bf10d0cb)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2022-01-27 07:56:43 -08:00
Jeremy Puhlman f72a73b42f ifenslave: Add branch=main
master branch has been removed upstream

Signed-off-by: Jeremy A. Puhlman <jpuhlman@mvista.com>
[tweeked to apply to previous branch define]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-12-05 11:32:16 -08:00
Armin Kuster 7fbb276718 recipes: Update SRC_URI branch and protocols
This patch updates SRC_URIs using git to include branch=master if no branch is set
and also to use protocol=https for github urls as generated by the conversion script
in OE-Core.

Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-11-13 07:45:48 -08:00
zhengruoqin 011f049c20 wireshark: upgrade 3.4.7 -> 3.4.8
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 340ec8b25e)
[bug fix only update]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-09-06 11:58:07 -07:00
Roland Hieber 323f33560c curlpp: fix override syntax
Commit bca3bbbf20 cherry-picked a fix from master, which used
the new override syntax, which was introduced in poky commit
2abf8a699edd513405be (2021-07-25, "bitbake: bitbake: Switch to using new
override syntax"). However, this change was merged after 3.4_M2 and is
not part of hardknott, so bitbake complains about the new syntax:

    ERROR: ParseError at
    …/meta-openembedded/meta-networking/recipes-support/curlpp/curlpp_0.8.1.bb:20:
    unparsed line: 'do_install:append() {'

Revert to the old syntax on the hardknott branch for now.

Fixes: bca3bbbf20 (2021-08-09, "curlpp: fix QA Issue after LDFLAGS change")
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-08-25 07:16:32 -07:00
Tony Battersby bca3bbbf20 curlpp: fix QA Issue after LDFLAGS change
Adding -f*-prefix-map to LDFLAGS caused the following issue:

QA Issue: curlpp.pc failed sanity test (tmpdir)

Fix by filtering out -f*-prefix-map from *.pc files.

[YOCTO #14481]

Signed-off-by: Tony Battersby <tonyb@cybernetics.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit c40e01b0fc)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-08-14 07:13:21 -07:00
Changqing Li 64a6b6f8de ndpi: fix CVE-2021-36082
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-08-10 07:49:00 -07:00
wangmy a649ee623d libtalloc: upgrade 2.3.2 -> 2.3.3
License-Update:
 add note:
     ** NOTE! The following LGPL license applies to the talloc
     ** library. This does NOT imply that all of Samba is released
     ** under the LGPL
 "GNU General Public License" changed to "GNU Lesser General Public License"

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 173cf5fd6b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-08-01 09:23:04 -07:00
wangmy cfbf2182a7 nghttp2: upgrade 1.43.0 -> 1.44.0
v1.44.0 changelog:

lib: Port new ngtcp2 map implementation
doc: Replace master with main
build: Add precious variables for libev and jemalloc and use JEMALLOC_CFLAGS
build: Add more --with-* configure flags
build: Add LIBTOOL_LDFLAGS configure variable
third-party: Bump llhttp to 6.0.2
src: Replace black-list with block-list
nghttpx: Fix max distance in weight group/address cycle comparison
nghttpx: Set connect_blocker and live_check after shuffling addresses
nghttpx: Replace master with main
nghttpx: Remove trailing white space after $method log variable
(https://github.com/nghttp2/nghttp2/pull/1553)
h2load: Add --rps option
(https://github.com/nghttp2/nghttp2/pull/1559)
h2load: Allow unit in -D option
asio: fix some typos (Patch from Jan Kundrát)
(https://github.com/nghttp2/nghttp2/pull/1550)

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit b767b37e3a)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-08-01 09:22:21 -07:00
Armin Kuster a473f6d52d wireshark: update to 3.4.7
Stable branch bug fix update. Includes:
CVE-2021-22235

Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit b68fe48192)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-08-01 09:21:23 -07:00
Adrian Zaharia f52ce99b46 ntp: fix ntpdate to wait for subprocesses
When using systemd, ntpdate-sync script will start in background
triggering the start of ntpd without actually exiting.
This results in an bind error in ntpd startup.

Add wait at the end of ntpdate script to ensure that when the ntpdate.service
is marked as finished the oneshot script ntpdate-sync finished and unbind the
ntp port

Fixes #386

Signed-off-by: Adrian Zaharia <Adrian.Zaharia@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 73d5cd5e8d)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-07-10 11:27:56 -07:00
Akifumi Chikazawa da4ed302c4 openvpn: add CVE-2020-7224 and CVE-2020-27569 to allowlist
CVE-2020-7224 and CVE-2020-27569 are for Aviatrix OpenVPN client,
not for openvpn.

Signed-off-by: Akifumi Chikazawa <chikazawa.akifu@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit d49e96aac4)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-07-10 11:24:42 -07:00
Sekine Shigeki 9636d8d6eb ntp: add CVE-2016-9312 to allowlist
Signed-off-by: Sekine Shigeki <sekine.shigeki@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 04a7dce625)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-06-27 07:46:47 -07:00
Geoff Parker a83c773ddd cifs-utils: set ROOTSBINDIR to /usr/sbin if DISTRO_FEATURES has usrmerge
Fixes cif-utils recipe build when DISTRO_FEATURES includes 'usrmerge'

Add do_configure_prepend() to override ROOTSSBINDIR environment variable
so that the utilities are installed in /usr/sbin rather than /sbin.
Setting --exec-prefix or --prefix in EXTRA_OECONF does not work.

Update do_install_append() to NOT remove /usr/bin /usr/sbin if usrmerge
is set in DISTRO_FEATURES

Signed-off-by: Geoff Parker <geoffrey.parker@arthrex.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 3c1e72d62c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-06-27 07:37:21 -07:00
ito-yuichi@fujitsu.com d1fb027f89 dovecot: add CVE-2016-4983 to allowlist
CVE-2016-4983 affects only postinstall script on specific distribution, so add it to allowlist.

Signed-off-by: Yuichi Ito <ito-yuichi@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 3613b50a84)
[mkcert.sh does mask 077 first]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-06-27 07:28:23 -07:00
zangrc 330e5baa1b wireshark: upgrade 3.4.5 -> 3.4.6
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 1c3701018b)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-06-27 06:31:22 -07:00
zangrc 480e25bb08 wireshark: upgrade 3.4.4 -> 3.4.5
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 37d8352d0d)
[Bug fix update only &  CVE-2021-22207]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-05-17 07:18:41 -07:00
zangrc 8fecae53fe openvpn: upgrade 2.5.1 -> 2.5.2
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit b12a2818b9)
[Bug fix update]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-05-17 07:18:41 -07:00
zangrc a570657c08 fetchmail: upgrade 6.4.18 -> 6.4.19
-License-Update: Change distribition to distribution.
Specific permission is granted for the GPLed code in this distribution to be linked to OpenSSL without invoking GPL clause 2(b).

Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 902eea11f1)
[Bug fix update]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-05-17 07:18:41 -07:00
Joe Hershberger 42cda642d9 strongswan: Make PACKAGECONFIG a default value
Change from a weak default to a default in the definition of the PACKAGECONFIG.

In https://github.com/flihp/meta-measured/blob/master/networking-layer/recipes-support/strongswan/strongswan_5.%25.bbappend the PACKAGECONFIG is appended to, so if the definition is weak here, the variable will be empty when the bbappend attempts to add to it.

Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 90c04acced)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-18 13:49:13 -07:00
zangrc 6564ed1e5d nbdkit: upgrade 1.25.5 -> 1.25.6
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 325deac7bc)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-18 13:49:13 -07:00
zangrc 0fad914676 dnsmasq: upgrade 2.84 -> 2.85
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 063a16bc28)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-18 13:49:13 -07:00
zangrc 61ff3c287e cifs-utils: upgrade 6.12 -> 6.13
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit b96cbaefb5)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-18 13:49:13 -07:00
Khem Raj aa54436db9 open-vm-tools: Fix build with gcc 11
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Trevor Gamblin <Trevor.Gamblin@windriver.com>
(cherry picked from commit 08c0280b7c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-17 06:47:18 -07:00
Randy MacLeod 62ddf0fa2b open-vm-tools: upgrade 11.0.1 -> 11.2.5
Drop 0001-GitHub-Issue-367.-Remove-references-to-deprecated-G_.patch
since it was a backport.

Drop 0001-pollGtk-Drop-volatile-qualifier.patch
since it's covered by:
   f48efc8e Make pollGtk resetable.

Drop 0001-utilBacktrace-Ignore-Warray-bounds.patch
since it's covered by:
   0cfda58a Make peeking back into the stack work for back traces

Drop 0002-add-include-sys-sysmacros.h.patch
since it's covered by:
   69b7e1f9 Include sysmacros.h directly as mandated by glibc-2.25.

Refit:
  0005-Use-configure-to-test-for-feature-instead-of-platfor.patch
  0009-Rename-poll.h-to-vm_poll.h.patch
  0002-hgfsServerLinux-Consider-64bit-time_t-possibility.patch
  0011-Use-uintmax_t-for-handling-rlim_t.patch

Add:
  0001-Add-resolv_compat.h-for-musl-builds.patch

Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Trevor Gamblin <Trevor.Gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 7a5fbd9d46)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-17 06:47:18 -07:00
Khem Raj a9eace646c vnstat: Disable install parallism to fix a potential install race
It seems in some cases installing vnstati program races and is tried
twice, and second operation fails since it ensues somewhere between
the file being created by first operation and file actually being
created

   /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install -c vnstat vnstati '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/bin'
|  /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install -c -m 644 ../vnstat-2.6/man/vnstatd.8 '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/share/man/man8'
|  /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install -c -m 644 ../vnstat-2.6/man/vnstat.conf.5 '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/share/man/man5'
|  /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install -c -m 644 ../vnstat-2.6/man/vnstat.1 ../vnstat-2.6/man/vnstati.1 '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/share/man/man1'
| make  install-data-hook
| make[3]: Entering directory '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/build'
| Making install-exec in .
| make[4]: Entering directory '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/build'
|  /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/mkdir -p '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/bin'
|  /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/mkdir -p '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/sbin'
|   /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install -c vnstat vnstati '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/bin'
|   /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install -c vnstatd '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/sbin'
| /home/pokybuild/yocto-worker/meta-oe/build/build/tmp/hosttools/install: cannot create regular file '/home/pokybuild/yocto-worker/meta-oe/build/build/tmp/work/core2-64-poky-linux/vnstat/2.6-r0/image/usr/bin/vnstati': File exists
| make[4]: *** [Makefile:822: install-binPROGRAMS] Error 1

Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 342b6b0475)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-17 06:47:18 -07:00
zangrc c977acfba5 usbredir: upgrade 0.8.0 -> 0.9.0
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 613729e780)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-08 13:13:29 -07:00
zangrc 3fb89db2d8 stunnel: upgrade 5.58 -> 5.59
Refresh the following patch:
fix-openssl-no-des.patch

Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 83c8e6bcc0)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-08 13:13:29 -07:00
zangrc a372335f58 nbdkit: upgrade 1.25.4 -> 1.25.5
Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 5bd0f88c77)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-08 13:13:29 -07:00
zhengruoqin de95c60482 fetchmail: upgrade 6.4.17 -> 6.4.18
Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit d399c6043c)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-04-03 07:46:03 -07:00
Martin Jansa fdbb0e334f open-vm-tools: move to meta-networking
* and make it skipped only when meta-filesystem is missing as well

* depends on libdnet from meta-networking and nothing in meta-oe depends on open-vm-tools

* update packagegroup-meta-oe to match this, without either of these layers packagegroup-meta-oe is currently failing with:

  ERROR: Nothing RPROVIDES 'open-vm-tools' (but meta-oe/recipes-core/packagegroups/packagegroup-meta-oe.bb RDEPENDS on or otherwise requires it)
  open-vm-tools was skipped: Requires meta-networking and meta-filesystems to be present.
  NOTE: Runtime target 'open-vm-tools' is unbuildable, removing...
  Missing or unbuildable dependency chain was: ['open-vm-tools']
  ERROR: Required build target 'packagegroup-meta-oe' has no buildable providers.
  Missing or unbuildable dependency chain was: ['packagegroup-meta-oe', 'open-vm-tools']

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-28 12:12:57 -07:00
zangrc 60d58ceb8f wireshark: upgrade 3.4.3 -> 3.4.4
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-18 12:40:21 -07:00
zangrc ec2f2b632e nbdkit: upgrade 1.25.3 -> 1.25.4
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-18 12:40:20 -07:00
zangrc efd7121ed1 fetchmail: upgrade 6.4.16 -> 6.4.17
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-16 21:37:14 -07:00
zangrc cb4d034e7a dovecot: upgrade 2.3.13 -> 2.3.14
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-16 21:37:14 -07:00
Mingli Yu f1bb995a05 bridge-utils: Switch to use the main branch
Fix the below do_fetch warning:
WARNING: bridge-utils-1.7-r0 do_fetch: Failed to fetch URL git://git.kernel.org/pub/scm/linux/kernel/git/shemminger/bridge-utils.git, attempting MIRRORS if available

Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-11 00:12:55 -08:00
Mingli Yu 2e97d3bd11 geoip-perl: Switch to use the main branch
Fix the below do_fetch warning:
WARNING: geoip-perl-1.51-r0 do_fetch: Failed to fetch URL git://github.com/maxmind/geoip-api-perl.git;protocol=https;, attempting MIRRORS if available

Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-11 00:12:55 -08:00
Mingli Yu df3ef15834 geoip: Switch to use the main branch
Fix the below do_fetch warning:
WARNING: geoip-1.6.12-r0 do_fetch: Failed to fetch URL git://github.com/maxmind/geoip-api-c.git, attempting MIRRORS if available

Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-11 00:12:55 -08:00
Oleksandr Kravchuk 90553ded8c nbdkit: update to 1.25.3
Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-07 09:53:12 -08:00
zangrc dc516cbeb7 strongswan: upgrade 5.9.1 -> 5.9.2
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-04 09:04:24 -08:00
zangrc 7e4485adcb openvpn: upgrade 2.5.0 -> 2.5.1
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-03-04 09:04:24 -08:00
Wang Mingyu 2f887a4d0d stunnel: upgrade 5.57 -> 5.58
License-Update: Update year to 2021

Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-24 14:18:31 -08:00
Yi Fan Yu 138e4f59c3 tcpdump: update 4.9.3 -> 4.99.0
Removed patches:
    * avoid-absolute-path-when-searching-for-libdlpi.patch
    reason: this is a solaris specific patch,
            It no longer generates QA error.

    * unnecessary-to-check-libpcap.patch
    reason: upstream changed the logic, a new patch was needed.

New patch:
    * 0001-aclocal.m4-Skip-checking-for-pcap-config.patch
    reason: configure shouldn't look for pcap-config.
    upstream reference: cfc4c750a

Modified patch:
    * add-ptest.patch
    reason: Makefile had slight change.
            new unrelated perl script was introduced,
            removed to make package QA happy.

License:
    upstream removed some whitespace

Ptest:
    binaries are now present in /usr/bin not /usr/sbin
        upstream commit: 95096be4f
    add perl libraries dependencies

    tests passed: 571 (qemux86-64)
    tests failed: 0

Signed-off-by: Yi Fan Yu <yifan.yu@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-21 23:37:54 -08:00
Khem Raj ed54f12e19 recipes: Update common-licenses references to match new names
The licenses were renamed to match their SPDX names, fix the
references in LIC_FILES_CHKSUM

Correct the checksums where they were wrong

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-21 23:37:54 -08:00
Oleksiy Obitotskyy ac4c2dc26d wireshark-src: improve reproducibility
What was done:
- add --noline option to flex, --no-line to bison
  and -l to lemon generators to prevent
  adding #line directives with absolute path.
- eliminate absolute source path in python code generator
  and use baseline instead.

Signed-off-by: Oleksiy Obitotskyy <oobitots@cisco.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-17 09:58:35 -08:00
Oleksandr Kravchuk 57ccfc7f79 wireshark: update to 3.4.3
Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-11 09:05:11 -08:00
Oleksandr Kravchuk eec3d38a7a fetchmail: udpate to 6.4.16
License-Update: copyright years.

Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-11 09:05:11 -08:00
Hongxu Jia 5506dc7ddb ndpi: fix autoconf-2.71 compatibility
While DEBUG_BUILD != 1, Yocto adds option _FORTIFY_SOURCE to CPP and CC [1],
since _FORTIFY_SOURCE requires -O1 or higher, if no -O1 or higher then
results in a compiler warning.

The configure.ac of ndpi uses macro AC_PROG_CC to test toolchain, since
CPPFLAGS does not have the option -O<level> [1], while building with autoconf
2.71+, the toolchain test will report a warning.

The configure.ac of ndpi uses macro AC_LANG_WERROR to treat the warning as
error. Then it broke the build
...
|configure: error: C preprocessor "i686-wrs-linux-gcc -E --sysroot=tmp-glibc/
work/core2-32-wrs-linux/ndpi/3.4-r0/recipe-sysroot  -m32 -march=core2
-mtune=core2 -msse3 -mfpmath=sse -fstack-protector-strong -D_FORTIFY_SOURCE=2
-Wformat -Wformat-security -Werror=format-security" fails sanity check
...

The SELECTED_OPTIMIZATION contains option -O<level>, add SELECTED_OPTIMIZATION
to CPPFLAGS to could fix the issue

[1] The definition of CPP and CC and XXXFLAGS in bitbake.conf
[snip]
export CPP = "${HOST_PREFIX}gcc -E${TOOLCHAIN_OPTIONS} ${HOST_CC_ARCH}"
export CC = "${CCACHE}${HOST_PREFIX}gcc ${HOST_CC_ARCH}${TOOLCHAIN_OPTIONS}"
...
export CFLAGS = "${TARGET_CFLAGS}"
TARGET_CFLAGS = "${TARGET_CPPFLAGS} ${SELECTED_OPTIMIZATION}"
...
export CPPFLAGS = "${TARGET_CPPFLAGS}"
TARGET_CPPFLAGS = ""
[snip]

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-09 08:51:48 -08:00
Oleksandr Kravchuk e6b20e7711 nghttp2: update to 1.43.0
Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-06 21:52:33 -08:00
zangrc a12c6cf8a9 libtalloc: upgrade 2.3.1 -> 2.3.2
Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-06 21:52:33 -08:00