summaryrefslogtreecommitdiffstats
path: root/meta/recipes-connectivity
Commit message (Collapse)AuthorAgeFilesLines
* bluez: upgrade 5.60 -> 5.61Trevor Gamblin2021-08-261-1/+1
| | | | | | | | | | | | | | | | | | | | | 5.61 includes a fix for CVE-2021-3658 (bluez: adapter incorrectly restores Discoverable state after powered down), as well as other fixes. >From the changelog: ver 5.61: Fix issue with A2DP while waiting for command response. Fix issue with A2DP when SetConfiguration fails. Fix issue with device removal handling. Fix issue with storing discoverable setting. Add support for Central Address Resolution characteristic. Add support for admin policy plugin. (From OE-Core rev: 5f87fbf13bd35169a488ca564875974681aafd4f) Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kea: backport a patch to fix build errors exposed by latest update batchAlexander Kanavin2021-08-232-0/+30
| | | | | | | (From OE-Core rev: 043e32278e91843277143777b27a498fa27f0a8f) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* mobile-broadband-provider-info: upgrade 20201225 -> 20210805Alexander Kanavin2021-08-231-2/+2
| | | | | | | (From OE-Core rev: 93a335993ce592a8ee34fc9a490e327f2775e03f) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* inetutils: upgrade 2.0 -> 2.1Alexander Kanavin2021-08-231-2/+1
| | | | | | | (From OE-Core rev: fc286bbf76eda315ecb9e51c5452d2163470e579) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: upgrade 9.16.18 -> 9.16.19wangmy2021-08-0210-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | --- 9.16.19 released --- 5671. [bug] A race condition could occur where two threads were competing for the same set of key file locks, leading to a deadlock. This has been fixed. [GL #2786] 5670. [bug] create_keydata() created an invalid placeholder keydata record upon a refresh failure, which prevented the database of managed keys from subsequently being read back. This has been fixed. [GL #2686] 5669. [func] KASP support was extended with the "check DS" feature. Zones with "dnssec-policy" and "parental-agents" configured now check for DS presence and can perform automatic KSK rollovers. [GL #1126] 5668. [bug] Rescheduling a setnsec3param() task when a zone failed to load on startup caused a hang on shutdown. This has been fixed. [GL #2791] 5667. [bug] The configuration-checking code failed to account for the inheritance rules of the "dnssec-policy" option. This has been fixed. [GL #2780] 5666. [doc] The safe "edns-udp-size" value was tweaked to match the probing value from BIND 9.16 for better compatibility. [GL #2183] 5665. [bug] If nsupdate sends an SOA request and receives a REFUSED response, it now fails over to the next available server. [GL #2758] 5664. [func] For UDP messages larger than the path MTU, named now sends an empty response with the TC (TrunCated) bit set. In addition, setting the DF (Don't Fragment) flag on outgoing UDP sockets was re-enabled. [GL #2790] 5662. [bug] Views with recursion disabled are now configured with a default cache size of 2 MB unless "max-cache-size" is explicitly set. This prevents cache RBT hash tables from being needlessly preallocated for such views. [GL #2777] 5661. [bug] Change 5644 inadvertently introduced a deadlock: when locking the key file mutex for each zone structure in a different view, the "in-view" logic was not considered. This has been fixed. [GL #2783] 5658. [bug] Increasing "max-cache-size" for a running named instance (using "rndc reconfig") did not cause the hash tables used by cache databases to be grown accordingly. This has been fixed. [GL #2770] 5655. [bug] Signed, insecure delegation responses prepared by named either lacked the necessary NSEC records or contained duplicate NSEC records when both wildcard expansion and CNAME chaining were required to prepare the response. This has been fixed. [GL #2759] 5653. [bug] A bug that caused the NSEC3 salt to be changed on every restart for zones using KASP has been fixed. [GL #2725] (From OE-Core rev: 8afda7983aa6476eb5d44962e99992eb479eff1f) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Convert to new override syntaxRichard Purdie2021-08-0224-340/+340
| | | | | | | | | | | | This is the result of automated script conversion: scripts/contrib/convert-overrides.py <oe-core directory> converting the metadata to use ":" as the override character instead of "_". (From OE-Core rev: 42344347be29f0997cc2f7636d9603b1fe1875ae) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libuv: update 1.41.0 -> 1.42.0Alexander Kanavin2021-07-241-1/+1
| | | | | | | | (From OE-Core rev: 6478ca47e76f4af10121ccb8428a5a68f21b16cd) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* avahi: fix CVE-2021-36217, crash on pinging '.local'Ross Burton2021-07-202-0/+153
| | | | | | | | (From OE-Core rev: 638beadad098e9ee4e743be8f59f5a7f11373aff) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* iproute2: upgrade 5.12.0 -> 5.13.0Alexander Kanavin2021-07-161-1/+1
| | | | | | | | (From OE-Core rev: 76e7cd680c96fba794b785cfe0c3403c32b71028) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bluez5: upgrade 5.59 -> 5.60Alexander Kanavin2021-07-161-1/+1
| | | | | | | | (From OE-Core rev: 5d113ccdd4ad45b628fa6f8f3142d250e82eb4a3) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* dhcpcd: add ARC supportAlexey Brodkin2021-07-052-0/+64
| | | | | | | | | | | | | This retrofits ARC support from upstream [1]. Should be a part of the next release of "dhcpcd". https://github.com/NetworkConfiguration/dhcpcd/commit/82386110e67cf75c224e9817fce55e6b0f143266 (From OE-Core rev: 5f4f9529b89b7e3357f6b979bb7d97c4c937d44c) Signed-off-by: Alexey Brodkin <abrodkin@synopsys.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: Remove temporary keys before generating new onesAsfak Rahman2021-07-021-0/+1
| | | | | | | | | | | | Key generation may wait for user input, due to the existence of temporary keys resulting from power interruption in the first boot. This prevents users from login via ssh. (From OE-Core rev: 3196249a6917a32491be56e70bbf26d3b9818e0e) Signed-off-by: Asfak Rahman <asfakr@outlook.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bluez5: upgrade 5.58 -> 5.59Alexander Kanavin2021-06-263-27/+2
| | | | | | | | | | (From OE-Core rev: 9c42e84c68990b49c71f0fafb3575bf9683414b4) (From OE-Core rev: ecb10add0ea8f8e046fcba2bcb5ce2a86234218d) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: upgrade 9.16.16 -> 9.16.18Alexander Kanavin2021-06-2610-3/+1
| | | | | | | | | | (From OE-Core rev: e3e4f7b9c95b7c89ab1542483f1782ae884d4ebb) (From OE-Core rev: b3c94e9a50a64f56296500063c0c2baea6de4d16) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nfs-utils: upgrade 2.5.3 -> 2.5.4zhengruoqin2021-06-171-1/+1
| | | | | | | (From OE-Core rev: b8723c114b3d9b58d2da1a86d728d176dcbeb4b1) Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libpcap: upgrade 1.10.0 -> 1.10.1Andreas Müller2021-06-171-4/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Summary for 1.10.1 libpcap release Packet filtering: Fix "type XXX subtype YYY" giving a parse error Source code: Add PCAP_AVAILABLE_1_11. Building and testing: Rename struct bpf_aux_data to avoid NetBSD compile errors Squelch some compiler warnings Squelch some Bison warnings Fix cross-builds with older kernels lacking BPF_MOD and BPF_XOR Fix Bison detection for minor version 0. Fix parallel build with FreeBSD make. Get DLT_MATCHING_MAX right in gencode.c on NetBSD. Define timeradd() and timersub() if necessary. Fix Cygwin/MSYS target directories. Fix symlinking with DESTDIR. Fix generation of libpcap.pc with CMake when not building a shared library. Check for Arm64 as well as x86-64 when looking for packet.lib on Windows. Documentation: Refine Markdown in README.md. Improve the description of portrange in filters. README.linux.md isn't Markdown, rename it just README.linux. pcapng: Support reading version 1.2, which some writers produce, and which is the same as 1.0 (some new block types were added, but that's not sufficient reason to bump the minor version number, as code that understands those new block types can handle them in a 1.0 file) Linux: Drop support for text-mode USB captures, as we require a 2.6.27 or later kernel (credit to Chaoyuan Peng for noting the sscanf vulnerabilities in the text-mode code that got me to realize that we didn't need this code any more) Bluetooth: fix non-blocking mode. Don't assume that all compilers used to build for Linux support the __atomic builtins Windows: ... rpcap: Clean up error checking and error messages for server address lookup. (From OE-Core rev: bcd20c78be3828903c18fcb40853e7146cc85fdb) Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libnss-mdns: upgrade 0.15 -> 0.15.1Alexander Kanavin2021-06-171-1/+1
| | | | | | | (From OE-Core rev: 7631f20b3f4317bc22fead3d28684c42b9a08e98) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* connman: update 1.39 -> 1.40Alexander Kanavin2021-06-172-6/+6
| | | | | | | (From OE-Core rev: a23c6374ad3112f8b0a4bc259c67eb7dd2ae9097) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* avahi: apply fix for CVE-2021-3468Ross Burton2021-06-172-0/+42
| | | | | | | | | | This patch isn't yet upstream but it has been submitted and other distros are shipping it. (From OE-Core rev: ea33a4a2df4600a55b268e9d57e7396c30f3d123) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* iproute2: upgrade 5.11.0 -> 5.12.0Richard Purdie2021-05-311-1/+1
| | | | | | (From OE-Core rev: e36e645bf02c608ccfe4e410bd72602d304d0cb5) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: upgrade 9.16.15 -> 9.16.16Trevor Gamblin2021-05-2810-1/+1
| | | | | | | (From OE-Core rev: ad19d41cbdb2afa2f58fa18be44343f199ab488e) Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: upgrade 9.16.13 -> 9.16.15Richard Purdie2021-05-1810-1/+1
| | | | | | (From OE-Core rev: e938c7041a651071a995ceeb475ed4eb8fb8949a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* libnss-mdns: upgrade 0.14.1 -> 0.15Richard Purdie2021-05-181-1/+1
| | | | | | (From OE-Core rev: bef3740cfd146921d0dd8789246573e68081c80a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ofono: upgrade 1.31 -> 1.32Richard Purdie2021-05-181-2/+1
| | | | | | (From OE-Core rev: c0e635c85b2d1eedcc515a89e949b8c9e43d8881) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* avahi: disable gtk bitsAlexander Kanavin2021-05-141-1/+1
| | | | | | | | | | | This should greatly reduce dependency chains on the autobuilder; the only affected recipe is remmina, where avahi support will be disabled by default. (From OE-Core rev: 5f68f2e72accecaad6210c71d7f1ffb069edf011) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* avahi: Exclude CVE-2021-26720 from cve-checkRichard Purdie2021-05-131-0/+3
| | | | | | | | Issue only affects Debian and SUSE. (From OE-Core rev: 72522fa1a5f3b9b2855043fe6b421886d641385f) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bluez: Exclude CVE-2020-12352 CVE-2020-24490 from cve-checkRichard Purdie2021-05-121-0/+3
| | | | | | | | These CVEs are fixed with kernel changes and don't affect the bluez recipe. (From OE-Core rev: 658902477840ea34d414083c4c79616bf5e999a2) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: Exclude CVE-2008-3844 from cve-checkRichard Purdie2021-05-121-0/+3
| | | | | | | | CVE only applies to some distributed RHEL binaries so irrelavent to us. (From OE-Core rev: 5d8b3ddf91050f6745a99a8abb1c3b03c35247af) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: Exclude CVE-2019-6470 from cve-checkRichard Purdie2021-05-121-0/+4
| | | | | | | | | Issue only affects dhcpd with recent bind versions. We don't ship dhcpd anymore so the issue doesn't affect us. (From OE-Core rev: 30106ae676124ba3c0e496a4f19c919c8418b59b) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: Exclude CVE-2007-2768 from cve-checkRichard Purdie2021-05-111-0/+3
| | | | | | | | We don't build/use the OPIE PAM module, exclude the CVE from this recipe. (From OE-Core rev: 3670be602f2ace24dc49e196407efec577164050) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: upgrade 9.16.12 -> 9.16.13Alexander Kanavin2021-05-0910-1/+1
| | | | | | | (From OE-Core rev: 40624d1d3420783f24253b87465cd5ab7ecb32b4) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bluez5: upgrade 5.56 -> 5.58Alexander Kanavin2021-05-093-2/+27
| | | | | | | (From OE-Core rev: 6aabd10b113a81b0abbcb9654bc6fe17cc6bb3ce) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bluez: Fix shadowing of pause function from libcKhem Raj2021-05-022-0/+49
| | | | | | | (From OE-Core rev: d5e0d319fc714a5af59ebec0b3a89851c04a6c4f) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: Filter out -ffile-prefix-map as wellKhem Raj2021-05-011-9/+8
| | | | | | | (From OE-Core rev: 1829fa0bda9a9388c3134866c471f26ec5658c36) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: upgrade 8.5p1 -> 8.6p1wangmy2021-04-231-1/+1
| | | | | | | (From OE-Core rev: 5fd4497e7ad156fa426bb1913846c2b65a9fbd1b) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* ofono: prevent using bundled ell headers and fix build with ell-0.39Martin Jansa2021-04-232-2/+36
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * -I../ofono-1.31 is included when building drivers/mbimmodem/mbim.c and then ell.h will happily include ell/util.h from there: # 1 "/OE/build/oe-core/tmp-glibc/work/core2-64-oe-linux/ofono/1.31-r0/recipe-sysroot/usr/include/ell/ell.h" 1 3 4 # 23 "/OE/build/oe-core/tmp-glibc/work/core2-64-oe-linux/ofono/1.31-r0/recipe-sysroot/usr/include/ell/ell.h" 3 4 # 1 "../ofono-1.31/ell/util.h" 1 3 4 # 26 "../ofono-1.31/ell/util.h" 3 4 # 1 "/OE/build/oe-core/tmp-glibc/work/core2-64-oe-linux/ofono/1.31-r0/recipe-sysroot/usr/include/string.h" 1 3 4 # 26 "/OE/build/oe-core/tmp-glibc/work/core2-64-oe-linux/ofono/1.31-r0/recipe-sysroot/usr/include/string.h" 3 4 # 1 "/OE/build/oe-core/tmp-glibc/work/core2-64-oe-linux/ofono/1.31-r0/recipe-sysroot/usr/include/bits/libc-header-start.h" 1 3 4 # 27 "/OE/build/oe-core/tmp-glibc/work/core2-64-oe-linux/ofono/1.31-r0/recipe-sysroot/usr/include/string.h" 2 3 4 * and it gets more interesting because unlikely() macro was dropped from ell/util.h in: https://git.kernel.org/pub/scm/libs/ell/ell.git/commit/?id=2a682421b06e41c45098217a686157f576847021 and ofono builds from git (which doesn't bundle ell) were failing with: drivers/mbimmodem/mbim-message.c: In function 'message_iter_next_entry_valist': drivers/mbimmodem/mbim-message.c:504:8: warning: implicit declaration of function 'unlikely' [-Wimplicit-function-declaration] 504 | if (unlikely(indent > MAX_NESTING)) | ^~~~~~~~ ... x86_64-webos-linux-libtool: link: x86_64-webos-linux-gcc -m64 -march=core2 -mtune=core2 -msse3 -mfpmath=sse --sysroot=/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot -I/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot/usr/include/dbus-1.0 -I/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot/usr/lib/dbus-1.0/include -I/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot/usr/include/glib-2.0 -I/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot/usr/lib/glib-2.0/include -DOFONO_PLUGIN_BUILTIN -DPLUGINDIR=\"/usr/lib/ofono/plugins\" -O2 -pipe -g -feliminate-unused-debug-types -fmacro-prefix-map=/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0=/usr/src/debug/ofono/1.31+gitAUTOINC+0db662bd6b-r0 -fdebug-prefix-map=/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0=/usr/src/debug/ofono/1.31+gitAUTOINC+0db662bd6b-r0 -fdebug-prefix-map=/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot= -fdebug-prefix-map=/OE/build/luneos-honister/webos-ports/tmp-glibc/work/core2-64-webos-linux/ofono/1.31+gitAUTOINC+0db662bd6b-r0/recipe-sysroot-native= -Wl,-O1 -Wl,--hash-style=gnu -Wl,--as-needed -o unit/test-mbim unit/test-mbim.o drivers/mbimmodem/mbim-message.o drivers/mbimmodem/mbim.o -lell drivers/mbimmodem/mbim-message.c:1389: error: undefined reference to 'unlikely' drivers/mbimmodem/mbim-message.c:1255: error: undefined reference to 'unlikely' drivers/mbimmodem/mbim-message.c:514: error: undefined reference to 'unlikely' drivers/mbimmodem/mbim-message.c:504: error: undefined reference to 'unlikely' collect2: error: ld returned 1 exit status while build from 1.31 tarball was passing OK, because using this older bundled ell/util.h delete bundled ell as we always enable external ell to make sure this doesn't happen again and fix mbimmodem to build with ell-0.39 (From OE-Core rev: 25f44ce327aff94c956d431c3cdf92adc39b2eeb) Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* wpa-supplicant: Enable opensslKhem Raj2021-04-201-1/+1
| | | | | | | | | Use openSSL for TLS/SSL implementation (From OE-Core rev: 2bd4702d68ef79320c8194934568c56b4cc87aa3) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* wpa-supplicant: fix CVE-2021-30004Stefan Ghinea2021-04-182-0/+124
| | | | | | | | | | | | | | | | | In wpa_supplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. References: https://nvd.nist.gov/vuln/detail/CVE-2021-30004 Upstream patches: https://w1.fi/cgit/hostap/commit/?id=a0541334a6394f8237a4393b7372693cd7e96f15 (From OE-Core rev: b32b671bf430b36a5547f8d822dbb760d6be47f7) Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: update to 1.1.1k to fix CVE-2021-3450 and CVE-2021-3449Mikko Rapeli2021-03-281-1/+1
| | | | | | | | | | Only security issues fixed in this release according to https://www.openssl.org/news/cl111.txt (From OE-Core rev: 557d956743ecf5e1d002ae0b2135b1307736b7c8) Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: Improve LICENSE to show BSD license variants.Wang Mingyu2021-03-231-1/+1
| | | | | | | | | | Update LICENSE to show that BSD-2-Clause, BSD-3-Clause and BSD-4-Clause are all present. (From OE-Core rev: d17938953fc2524bc5f04db4409a47aa400e756a) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssh: upgrade 8.4p1 -> 8.5p1Wang Mingyu2021-03-232-31/+2
| | | | | | | | | | | | | 0f90440ca70abab947acbd77795e9f130967956c.patch removed since it is included in 8.5p1 License Updated : 2-clause BSD license and 4-clause BSD license added (From OE-Core rev: 60ab470f8759539547a96f1b47299b7b16d6a630) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bind: upgrade 9.16.11 -> 9.16.12Alexander Kanavin2021-03-2010-2/+5
| | | | | | | | | Adjust library packaging (see link to commit in the recipe). (From OE-Core rev: 4711c1f4fc003da594b2a230997012ad5dcc202f) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: Enable building for RISC-V 32-bitAlistair Francis2021-03-113-0/+166
| | | | | | | (From OE-Core rev: 22691df60abe22bafb83f391549ee9e5026cabef) Signed-off-by: Alistair Francis <alistair.francis@wdc.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* wpa-supplicant: fix CVE-2021-27803Stefan Ghinea2021-03-062-0/+59
| | | | | | | | | | | | | | | | | | A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range. References: https://nvd.nist.gov/vuln/detail/CVE-2021-27803 Upstream patches: https://w1.fi/cgit/hostap/commit/?id=8460e3230988ef2ec13ce6b69b687e941f6cdb32 (From OE-Core rev: 81e4260b83c52558c320fd7d1c1eafcb312ad6be) Signed-off-by: Stefan Ghinea <stefan.ghinea@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* openssl: address ptest failures caused by perl 5.32.1Alexander Kanavin2021-03-021-0/+4
| | | | | | | | | | | For some reason the new perl no longer has . in list of directories searched in 'require', and so the file needs to be copied where perl can find it. (From OE-Core rev: 2ae879ddb72bd316e49a8200e99887dadb02b3dc) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* kea: Fix configure test error with gcc11Khem Raj2021-03-013-0/+61
| | | | | | | | | | Since the test program fails to compile, configure thinks compiler is not having thread support and bails out (From OE-Core rev: 232f97405a3e69cf9e54d4de0a8f1593da747603) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* iproute2: upgrade 5.10.0 -> 5.11.0Wang Mingyu2021-03-011-1/+1
| | | | | | | (From OE-Core rev: a3ce10f29c5c76da82d09e7bfe3d1a25d5230adf) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta/recipes-connectivity: Add HOMEPAGE / DESCRIPTIONDorinda2021-02-266-0/+6
| | | | | | | | | | | Added HOMEPAGE and DESCRIPTION for recipes with missing decriptions or homepage [YOCTO #13471] (From OE-Core rev: ecf8922e6bb12a2facc59bbe794b575101fce1dc) Signed-off-by: Dorinda Bassey <dorindabassey@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* nfs-utils: upgrade 2.5.2 -> 2.5.3Wang Mingyu2021-02-261-1/+1
| | | | | | | (From OE-Core rev: 6c943b114e31fad7c08645ba60ae80723fb5fe8d) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* bluez5: upgrade 5.55 -> 5.56Wang Mingyu2021-02-262-3/+3
| | | | | | | | | | -License-Update: remove the description of license from src/main.c (From OE-Core rev: 6d2fae223ff31e006423dfb1bce1f6d23cc1001b) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>