Commit Graph

2729 Commits

Author SHA1 Message Date
Trevor Gamblin
668796b11c libnftnl: add ptest
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-21 18:48:51 -08:00
Jeremy Kerr
1427cbe9c2 mctp: install dbus service configuration
mctpd ships with an example dbus service configuration, so install in
the dbus system configuration dir.

Signed-off-by: Jeremy Kerr <jk@codeconstruct.com.au>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-21 18:48:51 -08:00
Jeremy Kerr
9da8d6eaa9 mctp: upgrade to v1.0
We have a tag for 1.0, now: better handling of local stack configuration
at runtime, and the 5.15 kernel header change has been integrated.

Signed-off-by: Jeremy Kerr <jk@codeconstruct.com.au>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-21 18:48:51 -08:00
Ross Burton
a74f3a6c21 dhcp-relay: fix rebuilds
dhcp-relay needs a fresh tarball of bind unpacked in ${S}, but this is
done by fetching the tarball to ${WORKDIR}, then in do_configure moving
it to ${S} and unpacking it.

If dhcp-relay is re-configured, the tarball no longer exists in ${WORKDIR}
so this fails.  Copy instead of moving so rebuilds work.

Also don't rename the downloaded file to just bind.tar.gz as that can
cause probems if the version changes.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-15 10:18:25 -08:00
wangmy
0d4db99f6b snort: upgrade 2.9.18.1 -> 2.9.19
changelog:
=========

* src/snort.c :
  Fixed an issue where verdict will be applied onto next session when timeout
  occurs in some scenarios.

* rc/file-process/file_service.c :
  Removed an excessively flooding log.

* src/dynamic-preprocessors/modbus/modbus_decode.c :
  Fixed possible integer overflow.

* src/fpcreate.c :
  Added fix to GCC compiled snort to use AC-BNFA-Q search-method when Intel-cpm
  is enabled.

* src/generators.h
  src/preprocessors/Stream6/snort_stream_tcp.c :
  Added fix to not to drop packets when window size is 0 by TCP normalizer
  and Added new alert with GID 129 and SID 21 when such packets are seen.

* src/dynamic-preprocessors/appid/detector_plugins/detector_imap.c
  src/dynamic-preprocessors/appid/detector_plugins/detector_pop3.c :
  Added support for Appid to detect login success and failure for IMAP and POP3
  protocols.

* src/dynamic-preprocessors/reputation/reputation_config.c
  src/dynamic-preprocessors/reputation/spp_reputation.c
  src/dynamic-preprocessors/reputation/spp_reputation.h
  src/pkt_tracer.c
  src/snort.c
  src/util.c :
  Fixed terminology to be bias-free in log/error messages.

* src/snort.c :
  Fixed a potential race condition.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-13 21:20:01 -08:00
Ross Burton
928d69e2f7 unbound: remove obsolete support for renamed libtool
libtool is now longer renamed to ${host}-libtool, so remove the changes
to support this.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-13 21:20:01 -08:00
Ross Burton
2cc998fa06 dhcp-relay: remove obsolete support for renamed libtool
libtool is now longer renamed to ${host}-libtool, so remove the changes
to support this.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-13 21:20:01 -08:00
Ross Burton
df0231eeec net-snmp: use precise BSD license
"BSD" is vague, this license is BSD 3-clause BSD.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-13 21:20:01 -08:00
Oleksandr Kravchuk
08d3bcb303 python3-ldap: update to 3.4.0
Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
2021-12-13 08:06:53 -08:00
Oleksandr Kravchuk
872b60f3ea bmon: fix PV
The commit hash is pointing out to the tag v4.0, not 2.1.0.

Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-10 09:11:56 -08:00
Andrei Gherzan
72a51076a7 mosquitto: Don't depends on dlt-daemon unconditionally
This dependency is already handled through a PACKAGECONFIG so there is
no need for it in DEPENDS anymore.

Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-09 08:37:06 -08:00
Khem Raj
73acbc2952 ntpsec: Disable seccomp on riscv32
rv32 does not have seccomp support yet.

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-02 22:40:22 -08:00
Khem Raj
1bef1dbf20 meta-networking,meta-python: Fix README for yocto check layer
This ensures that Maintainer entries are as expected

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-02 18:36:58 -08:00
Trevor Gamblin
a7313d4503 libnftnl: upgrade 1.2.0 -> 1.2.1
Also fix patch contributor name in the process of reworking it to apply
on the new 1.2.1 release (I had accidentally modified it when reworking
it previously).

Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-12-01 12:47:27 -08:00
wangmy
c9a95c095d pure-ftpd: upgrade 1.0.49 -> 1.0.50
License-Update: year updated to 2021.

Changelog
==========
This version fixes some really old issues, the most significant one being
excessive memory use for large memory listings.

When virtual quotas were used, transfers were not aborted after the limit was
reached; files were only removed at the end of a transfer. That should now be fixed.

Support for MD5, SHA1 and the MySQL PASSWORD() function were removed for
password hashing. You should now use scrypt, argon2 or the system crypt(3) function.

The server used to reject class E reserved network ranges. People reported that
Linux containers may use them, so this is now accepted.

Finally, it is now possible to recursively include additional files in a
configuration file, with the new Include directive.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-29 09:09:03 -08:00
Yi Zhao
2fb000b020 samba: update cross-answers files
Replace the configure tests UNKNOWN answers with the correct answers.
Then drop the related patches.

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Yi Zhao
d3eb0a9e84 samba: add pyldb to rdepends for samba-python3
Fixes:
$ python3
>>> import samba
Traceback (most recent call last):
  File "<stdin>", line 1, in <module>
  File "/usr/lib64/python3.10/site-packages/samba/__init__.py", line 28, in <module>
    import ldb
ModuleNotFoundError: No module named 'ldb'
>>>

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Yi Zhao
e02caef1cc samba: fix pyext_PATTERN for cross compilation
The pyext_PATTERN will add native arch as suffix when cross compiling.
For example, on qemuarm64, it is expanded to:
pyext_PATTERN ='%s.cpython-310-x86_64-linux-gnu.so'
which will result in the incorrect library name.

root@qemuarm64:~# find /usr/lib -name \*cpython\*
/usr/lib/pkgconfig/samba-policy.cpython-310-x86_64-linux-gnu.pc
/usr/lib/libsamba-policy.cpython-310-x86-64-linux-gnu.so
/usr/lib/samba/libsamba-python.cpython-310-x86-64-linux-gnu-samba4.so
/usr/lib/samba/libsamba-net.cpython-310-x86-64-linux-gnu-samba4.so
/usr/lib/libsamba-policy.cpython-310-x86-64-linux-gnu.so.0
/usr/lib/libsamba-policy.cpython-310-x86-64-linux-gnu.so.0.0.1
/usr/lib/python3.10/site-packages/samba/dsdb_dns.cpython-310-x86_64-linux-gnu.so
/usr/lib/python3.10/site-packages/samba/dsdb.cpython-310-x86_64-linux-gnu.so
/usr/lib/python3.10/site-packages/samba/xattr_tdb.cpython-310-x86_64-linux-gnu.so
/usr/lib/python3.10/site-packages/samba/_ldb.cpython-310-x86_64-linux-gnu.so
/usr/lib/python3.10/site-packages/samba/gensec.cpython-310-x86_64-linux-gnu.so
[snip]

Set pyext_PATTERN to '%s.so' to remove the suffix.
After the patch:
root@qemuarm64:~# find /usr/lib/
/usr/lib/pkgconfig/samba-policy.pc
/usr/lib/libsamba-policy.so
/usr/lib/samba/libsamba-python-samba4.so
/usr/lib/samba/libsamba-net-samba4.so
/usr/lib/libsamba-policy.so.0
/usr/lib/libsamba-policy.so.0.0.1
/usr/lib/python3.10/site-packages/samba/dsdb_dns.so
/usr/lib/python3.10/site-packages/samba/dsdb.so
/usr/lib/python3.10/site-packages/samba/xattr_tdb.so
/usr/lib/python3.10/site-packages/samba/_ldb.so
/usr/lib/python3.10/site-packages/samba/gensec.so
[snip]

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Yi Zhao
77062c03bf libldb: fix pyext_PATTERN for cross compilation
The pyext_PATTERN will add native arch as suffix when cross compiling.
For example, on qemuarm64, it is expanded to:
pyext_PATTERN ='%s.cpython-310-x86_64-linux-gnu.so'
which will result in the incorrect library name.

root@qemuarm64:~# find /usr/lib/ -name \*ldb\*
/usr/lib/pkgconfig/pyldb-util.cpython-310-x86_64-linux-gnu.pc
/usr/lib/pkgconfig/ldb.pc
/usr/lib/libpyldb-util.cpython-310-x86-64-linux-gnu.so.2.3.2
/usr/lib/libldb.so.2.3.2
/usr/lib/libpyldb-util.cpython-310-x86-64-linux-gnu.so.2
/usr/lib/libldb.so
/usr/lib/libldb.so.2
/usr/lib/python3.10/site-packages/_ldb_text.py
/usr/lib/python3.10/site-packages/ldb.cpython-310-x86_64-linux-gnu.so
/usr/lib/libpyldb-util.cpython-310-x86-64-linux-gnu.so

Set pyext_PATTERN to '%s.so' to remove the suffix.
After the patch:
root@qemuarm64:~# find /usr/lib/ -name \*ldb\*
/usr/lib/pkgconfig/pyldb-util.pc
/usr/lib/pkgconfig/ldb.pc
/usr/lib/libpyldb-util.so.2.3.2
/usr/lib/libldb.so.2.3.2
/usr/lib/libpyldb-util.so.2
/usr/lib/libldb.so
/usr/lib/libldb.so.2
/usr/lib/python3.10/site-packages/_ldb_text.py
/usr/lib/python3.10/site-packages/ldb.so
/usr/lib/libpyldb-util.so

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Yi Zhao
38864f10fa libtevent: fix pyext_PATTERN for cross compilation
The pyext_PATTERN will add native arch as suffix when cross compiling.
For example, on qemuarm64, it is expanded to:
pyext_PATTERN ='%s.cpython-310-x86_64-linux-gnu.so'
which will result in the incorrect library name.

root@qemuarm64:~# find /usr/lib/python3.10/ -name \*tevent\*.so
/usr/lib/python3.10/site-packages/_tevent.cpython-310-x86_64-linux-gnu.so
/usr/lib/python3.10/site-packages/_tevent.so

Set pyext_PATTERN to '%s.so' to remove the suffix.
After the patch:
root@qemuarm64:~# find /usr/lib/python3.10/ -name \*tevent\*.so
/usr/lib/python3.10/site-packages/_tevent.so

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Yi Zhao
301e8045d2 libtdb: fix pyext_PATTERN for cross compilation
The pyext_PATTERN will add native arch as suffix when cross compiling.
For example, on qemuarm64, it is expanded to:
pyext_PATTERN ='%s.cpython-310-x86_64-linux-gnu.so'
which will result in the incorrect library name.

root@qemuarm64:~# find /usr/lib/python3.10/ -name tdb\*
/usr/lib/python3.10/site-packages/tdb.so
/usr/lib/python3.10/site-packages/tdb.cpython-310-x86_64-linux-gnu.so

Set pyext_PATTERN to '%s.so' to remove the suffix.
After the patch:
root@qemuarm64:~# find /usr/lib/python3.10/ -name tdb\*
/usr/lib/python3.10/site-packages/tdb.so

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Yi Zhao
13187d3f01 libtalloc: fix pyext_PATTERN for cross compilation
The pyext_PATTERN will add native arch as suffix when cross compiling.
For example, on qemuarm64, it is expanded to:
pyext_PATTERN ='%s.cpython-310-x86_64-linux-gnu.so'
which will result in the incorrect library name.

root@qemuarm64:~# find /usr/lib -name \*talloc\*
/usr/lib/pkgconfig/talloc.pc
/usr/lib/pkgconfig/pytalloc-util.cpython-310-x86_64-linux-gnu.pc
/usr/lib/libpytalloc-util.cpython-310-x86-64-linux-gnu.so.2.3.3
/usr/lib/libtalloc.so.2
/usr/lib/libpytalloc-util.cpython-310-x86-64-linux-gnu.so.2
/usr/lib/libpytalloc-util.cpython-310-x86-64-linux-gnu.so
/usr/lib/libtalloc.so
/usr/lib/libtalloc.so.2.3.3
/usr/lib/python3.10/site-packages/talloc.cpython-310-x86_64-linux-gnu.so

Set pyext_PATTERN to '%s.so' to remove the suffix.
After the patch:
root@qemuarm64:~# find /usr/lib -name \*talloc\*
/usr/lib/pkgconfig/talloc.pc
/usr/lib/pkgconfig/pytalloc-util.pc
/usr/lib/libpytalloc-util.so.2.3.3
/usr/lib/libtalloc.so.2
/usr/lib/libpytalloc-util.so.2
/usr/lib/libpytalloc-util.so
/usr/lib/libtalloc.so
/usr/lib/libtalloc.so.2.3.3
/usr/lib/python3.10/site-packages/talloc.so

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Khem Raj
6d8edf440c ippool: silence a DeprecationWarning
Use regex strings (r’’)
Fixes

meta-networking/recipes-daemons/ippool/ippool_1.3.bb:99:
DeprecationWarning: invalid escape sequence \d
  r = re.compile("\d*\.\d*\.\d*")

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-25 10:14:18 -08:00
Salman Ahmed
61737a0f8c python3-ldap: for openldap v2.5.8, link with libldap instead of libldap_r
Signed-off-by: Salman Ahmed <salman.ahmed@weidmueller.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
2021-11-24 09:31:08 -08:00
wangmy
868479a3f5 libnetfilter-log: upgrade 1.0.1 -> 1.0.2
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-23 08:35:08 -08:00
wangmy
393332d02e wireguard-tools: upgrade 1.0.20210315 -> 1.0.20210914
Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-22 10:15:00 -08:00
wangmy
de31f278cf smcroute: upgrade 2.5.3 -> 2.5.4
Changes:
Automatically extract new version from GIT tag

Fixes:
Avoid trying to delete inactive VIFs. Fixing an annoying bogus error:
"Failed deleting VIF for iface lo: Resource temporarily unavailable"
Fix #171: too small string buffer for IPv6 address causing garbled
output in periodic expiry callback
Fix too small buffer for IPv6 address in mroute display functions

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-16 08:26:26 -08:00
Yi Zhao
28e7d47f66 samba: upgrade 4.14.8 -> 4.14.10
This is a security release in order to address the following defects:

CVE-2016-2124:  SMB1 client connections can be downgraded to plaintext
                authentication.
                https://www.samba.org/samba/security/CVE-2016-2124.html

CVE-2020-25717: A user on the domain can become root on domain members.
                https://www.samba.org/samba/security/CVE-2020-25717.html

CVE-2020-25718: Samba AD DC did not correctly sandbox Kerberos tickets
                issued by an RODC.
	        https://www.samba.org/samba/security/CVE-2020-25718.html

CVE-2020-25719: Samba AD DC did not always rely on the SID and PAC in
                Kerberos tickets.
	        https://www.samba.org/samba/security/CVE-2020-25719.html

CVE-2020-25721: Kerberos acceptors need easy access to stable AD
                identifiers (eg objectSid).
                https://www.samba.org/samba/security/CVE-2020-25721.html

CVE-2020-25722: Samba AD DC did not do suffienct access and conformance
                checking of data stored.
                https://www.samba.org/samba/security/CVE-2020-25722.html

CVE-2021-3738:  Use after free in Samba AD DC RPC server.
                https://www.samba.org/samba/security/CVE-2021-3738.html

CVE-2021-23192: Subsequent DCE/RPC fragment injection vulnerability.
                https://www.samba.org/samba/security/CVE-2021-23192.html

See: https://www.samba.org/samba/history/samba-4.14.10.html

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-16 08:26:26 -08:00
Yi Zhao
dafc5b8da8 libldb: upgrade 2.3.0 -> 2.3.2
Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-16 08:26:26 -08:00
wangmy
54567412b5 openvpn: Change the default cipher to AES-256-GCM for server configurations
This change makes the server use AES-256-GCM instead of BF-CBC as the default
cipher for the VPN tunnel.  To avoid breaking existing running configurations
defaulting to BF-CBC, the Negotiable Crypto Parameters (NCP) list contains
the BF-CBC in addition to AES-CBC.  This makes it possible to migrate
existing older client configurations one-by-one to use at least AES-CBC unless
the client is updated to v2.4 (which defaults to upgrade to AES-GCM automatically)

Upstream-Status: Backport [https://src.fedoraproject.org/rpms/openvpn/blob/rawhide/f/0001-Change-the-default-cipher-to-AES-256-GCM-for-server-.patch]

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-15 18:04:23 -08:00
Alexander Kanavin
c6d8fd96a3 open-vpm-tools: update 11.2.5 -> 11.3.5
Drop
0001-hgfsmounter-Makefile.am-support-usrmerge.patch
(file no longer present)
0001-pollGtk-Fix-volatile-qualifier-exposed-incorrectly.patch
(issue fixed upstream)

Signed-off-by: Alexander Kanavin <alex@linutronix.de>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-13 01:17:26 -08:00
Yi Zhao
799dc735f8 strongswan: add required kernel modules to RRECOMMENDS
Strongswan failed to startup because there is no kernel module named
ipsec. Add basic kernel modules required by strongswan per [1].

[1] https://wiki.strongswan.org/projects/strongswan/wiki/KernelModules,

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-11 08:31:56 -08:00
wangmy
eb1424e83d fetchmail: upgrade 6.4.21 -> 6.4.23
fetchmail-6.4.23 (released 2021-10-31, 30206 LoC):

 For common ssh-based IMAP PREAUTH setups (i. e. those that use a plugin
 - no matter its contents - and that set auth ssh), change the STARTTLS
 error message to suggest sslproto '' instead.
 This is a commonly reported issue after the CVE-2021-39272 fix in 6.4.22.
 Fixes Redhat Bugzilla 2008160. Fixes GitLab #39.

License-Update:
 Add "SSL library considerations" to COPYING.
 Format of COPYING changed.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-09 11:23:54 -08:00
Oleksandr Kravchuk
13ba4e62b6 wolfssl: update to 5.0.0
Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-08 10:06:23 -08:00
Martin Jansa
d6b4f9b460 ntpsec: require x11 in DISTRO_FEATURES
* fixes:
  ERROR: Nothing RPROVIDES 'gnuplot' (but meta-openembedded/meta-networking/recipes-support/ntpsec/ntpsec_1.2.1.bb RDEPENDS on or otherwise requires it)
  gnuplot was skipped: missing required distro feature 'x11' (not in DISTRO_FEATURES)
  NOTE: Runtime target 'gnuplot' is unbuildable, removing...
  Missing or unbuildable dependency chain was: ['gnuplot']
  NOTE: Runtime target 'ntpsec' is unbuildable, removing...
  Missing or unbuildable dependency chain was: ['ntpsec', 'gnuplot']
  NOTE: Runtime target 'ntpsec-python' is unbuildable, removing...
  Missing or unbuildable dependency chain was: ['ntpsec-python', 'gnuplot']
  ERROR: Nothing RPROVIDES 'ntpsec-dev' (but meta-openembedded/meta-networking/recipes-support/ntpsec/ntpsec_1.2.1.bb RDEPENDS on or otherwise requires it)
  No eligible RPROVIDERs exist for 'ntpsec-dev'
  NOTE: Runtime target 'ntpsec-dev' is unbuildable, removing...
  Missing or unbuildable dependency chain was: ['ntpsec-dev']

Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-06 12:58:20 -07:00
Khem Raj
ee9ee2d73a mctp: Fix build with 5.15+ kernel headers
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Cc: Bruce Ashfield <bruce.ashfield@gmail.com>
2021-11-06 12:54:03 -07:00
Khem Raj
026721d834 packagegroup-meta-networking: Add ntpsec
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 10:07:21 -07:00
Khem Raj
1e89f5edc3 ntpsec: Disable documentation
It seems to require asciidoctor and currently does not build
until someone fixes it, disable it for cosnsitency.

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 10:07:21 -07:00
Khem Raj
00dba6bf6b ntpsec: Disable seccomp on musl/rv32
seccomp on musl is not fully done yet

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 10:07:21 -07:00
Alex Kiernan
57776d013a ntpsec: Add recipe
NTPsec, "a secure, hardened, and improved implementation of Network Time
Protocol derived from NTP Classic, Dave Mills’s original."

Signed-off-by: Alex Kiernan <alex.kiernan@gmail.com>
Signed-off-by: Alex Kiernan <alexk@zuma.ai>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 07:43:14 -07:00
Khem Raj
611700b6a0 packagegroup-meta-networking: Enable mdns on musl systems
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 07:43:14 -07:00
Khem Raj
d04f3c9bfe mdns: Upgrade to 1310.140.1
Fix build with musl while here

Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 07:43:14 -07:00
Peter Kjellerstedt
fce137d50b opensaf: Make sure a file needed by opensafd.service is not removed
Rename /etc/init.d/opensafd to /usr/lib/opensaf/opensafd-init as it is
needed by opensafd.service, but /etc/init.d is removed by
systemd.bbclass if sysvinit is not in DISTRO_FEATURES.

Note that this will not actually make the initscript and service file
work since they depend on /lib/lsb/init-functions, which does not exist
since the lsb recipe was removed from OE-Core.

Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-04 06:52:50 -07:00
Richard Purdie
b402a3076f recipes: Update SRC_URI branch and protocols
This patch updates SRC_URIs using git to include branch=master if no branch is set
and also to use protocol=https for github urls as generated by the conversion script
in OE-Core.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-03 06:57:49 -07:00
Peter Kjellerstedt
175765fdf3 opensaf: Create /var/log/opensaf/saflog in runtime
/var/log is normally a link to /var/volatile/log and /var/volatile is a
tmpfs mount. So anything created in /var/log will not be available when
the tmpfs is mounted.

Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-03 06:57:49 -07:00
Peter Kjellerstedt
c386e5ab79 openflow: Create /var/log/openflow in runtime
/var/log is normally a link to /var/volatile/log and /var/volatile is a
tmpfs mount. So anything created in /var/log will not be available when
the tmpfs is mounted.

Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-03 06:57:49 -07:00
Peter Kjellerstedt
a61358b511 corosync: Do not install the /var/log/cluster directory
/var/log is normally a link to /var/volatile/log and /var/volatile is a
tmpfs mount. So anything created in /var/log will not be available when
the tmpfs is mounted.

/var/log/cluster will be created in runtime.

This also drops the removal of the /var/run directory as it is no
longer created in the first place.

Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-03 06:57:48 -07:00
Peter Kjellerstedt
b1ce7f5036 corosync: Clean up leftover support for qdevice and qnetd
These features were removed in commit 5c051f84 (corosync: Update to
3.0.3), but some code still remained.

Signed-off-by: Peter Kjellerstedt <peter.kjellerstedt@axis.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-03 06:57:48 -07:00
Khem Raj
b66ad22324 mtr: Explicitly use branch= in SRC_URI
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-01 05:45:17 -07:00
Khem Raj
a61be25234 mtr: Fix build with ncurses 6.3+
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-11-01 05:45:17 -07:00