aboutsummaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-connectivity
Commit message (Collapse)AuthorAgeFilesLines
* networkmanager: upgrade 1.32.12 -> 1.34.0wangmy8 days1-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ========= * initrd: wait for both IPv4 and IPv6 with "ip=dhcp,dhcp6". * core: better handle sd-resolved errors when resolving hostnames. * nmcli: fix import WireGuard profile with DNS domain and address family disabled. * ndisc: send router solicitations before expiry. * policy: send earlier the ip configs to the DNS manager. * core: support linking with LLD 13. * wireguard: importing wg-quick configuration files with nmcli no longer sets a negative, exclusive "dns-priority". This plays better with common split DNS setups that use systemd-resolved. Adjust the "dns-priority" to your liking after import yourself. * NetworkManager no longer listens for netlink events for traffic control objects (qdiscs and filters). * core: add internal nm-priv-helper service for separating privileges and have a way to drop capabilities from NetworkManager daemon. * bond: add support for setting queue-id of bond port. * dns: support configuring DNS over TLS (DoT) with systemd-resolved. * nmtui: add support for WireGuard profiles. * nmcli: add aliases `nmcli device up|down` beside connect|disconnect. * conscious language: Deprecate 'Device.Slaves' D-Bus property in favor of new 'Device.Ports' property. Depracate 'nm_device_*_get_slaves()' in favor of 'nm_device_get_ports()' in libnm. * nmcli: invoking nmcli command without arguments will now show 'default' instead of null address in route4 or route6 section. The following changes were backported to 1.32.x releases between 1.32.0 and 1.32.12 are also present in NetworkManager-1.34: - 1.32.12: * Fix wrong order of addresses when restarting NetworkManager. * Preserve the IPv6 ff00::/8 route added by kernel in the local table, necessary for multicast communication. * Fix emitting the signal for changed metered status of devices. * Fix applying the ethtool autonegotiation and speed settings. * initrd: fix crash parsing plain '=' without key. * cloud-setup: use suppress_prefixlength rule to honor non-default-routes in the main table. - 1.32.10: * core: fix the order of IPv6 addresses changing on service restart. * initrd: add command line option to configure link autonegotiation and speed. * ifcfg-rh: fix crash when parsing invalid DNS address. * ifcfg-rh: extend ifup/ifdown scripts to work with connection profile names. * udev: also react to "move" (and "change") udev actions in our rules. - 1.32.8: * firewalld: configure zones on "Reloaded" signal. * core: fix wrong MTU for bridge interfaces. * cloud-setup: fix gateway address for Aliyun cloud. - 1.32.6: * core: fix adding stale local routes when address changes. * initrd: tag generated profiles with origin in user data. * core: introduce "allowed-connections" option to disallow profiles on a device. This allows to filter out profiles that originate from initrd. * core: introduce "keep-configuration" device option to forcefully activate a profile on start. * dhcp: handle filename/bootfile_name DHCP option and write it to device state file for initrd/kickstart. * initrd: add "ib.pkey=" command line option - 1.32.4: * core: remove stale entries from "seen-bssids" and "timestamp" files in "/var/lib/NetworkManager". * bond: support the peer_notif_delay option. * core: add ipv[46].required-timeout option to wait for IP configuration while activating. * core: send ARP announcements when there is carrier. * core: start DHCPv6 when a prefix delegation is needed for shared mode. * firewall: fix nftables backend to create "ip" table for IPv4 only. * initrd: set required-timeout of 20 seconds for default IPv4 configuration to opportunistically wait for IPv4. * ifcfg: log warning about invalid keys in ifcfg files. * ifcfg: reject non-UTF-8 from ifcfg files. * nmcli: show DNS SEARCH field in device information. * cloud-setup: add support for Aliyun cloud. - 1.32.2: * hostname: prefer IPv4 addresses for reverse DNS lookup. * dhcp: ignore unauthenticated FORCERENEW messages with internal, systemd-based DHCPv4 plugin (CVE-2020-13529). This plugin is not used, unless the undocumented dhcp=systemd option was set. * cloud-setup: preserve IP addresses, routes and rules from currently active connection profile. * Various bugfixes and performance improvements. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wolfssl: upgrade 5.0.0 -> 5.1.0wangmy2022-01-051-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* blueman: upgrade 2.2.1 -> 2.2.3Andreas Müller2022-01-051-1/+1
| | | | | | | | | | | | | | | | 2.2.3: Bugs fixed Recent connections disabled after suspend and resume Service authorization notifications did not respond Passkeys did not get displayed 2.2.2: Bugs fixed Issues with power level bars Error message in blueman-mechanism Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.14.10 -> 4.14.11zhengruoqin2021-12-211-2/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ============ There have been a few regressions in the security release 4.14.10: o CVE-2020-25717: A user on the domain can become root on domain members. https://www.samba.org/samba/security/CVE-2020-25717.html PLEASE [RE-]READ! The instructions have been updated and some workarounds initially adviced for 4.14.10 are no longer required and should be reverted in most cases. o BUG-14902: User with multiple spaces (eg Fred&lt;space&gt;&lt;space&gt;Nurk) become un-deletable. While this release should fix this bug, it is adviced to have a look at the bug report for more detailed information, see https://bugzilla.samba.org/show_bug.cgi?id=14902. Changes since 4.14.10 --------------------- * BUG 14878: Recursive directory delete with veto files is broken. * BUG 14879: A directory containing dangling symlinks cannot be deleted by SMB2 alone when they are the only entry in the directory. * BUG 14656: Spaces incorrectly collapsed in ldb attributes. * BUG 14694: Ensure that the LDB request has not timed out during filter processing as the LDAP server MaxQueryDuration is otherwise not honoured. * BUG 14901: The CVE-2020-25717 username map [script] advice has undesired side effects for the local nt token. * BUG 14902: User with multiple spaces (eg Fred&lt;space&gt;&lt;space&gt;Nurk) become un- deletable. * BUG 14127: Avoid storing NTTIME_THAW (-2) as value on disk * BUG 14922: Kerberos authentication on standalone server in MIT realm broken. * BUG 14923: Segmentation fault when joining the domain. * BUG 14903: Support for ROLE_IPA_DC is incomplete. * BUG 14788: Memory leak if ioctl(FSCTL_VALIDATE_NEGOTIATE_INFO) fails before smbd_smb2_ioctl_send. * BUG 14899: winbindd doesn&apos;t start when &quot;allow trusted domains&quot; is off. * BUG 14901: The CVE-2020-25717 username map [script] advice has undesired side effects for the local nt token. * BUG 14694: Ensure that the LDB request has not timed out during filter processing as the LDAP server MaxQueryDuration is otherwise not honoured. * BUG 14901: The CVE-2020-25717 username map [script] advice has undesired side effects for the local nt token. Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dhcp-relay: fix rebuildsRoss Burton2021-12-151-3/+3
| | | | | | | | | | | | | | | dhcp-relay needs a fresh tarball of bind unpacked in ${S}, but this is done by fetching the tarball to ${WORKDIR}, then in do_configure moving it to ${S} and unpacking it. If dhcp-relay is re-configured, the tarball no longer exists in ${WORKDIR} so this fails. Copy instead of moving so rebuilds work. Also don't rename the downloaded file to just bind.tar.gz as that can cause probems if the version changes. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* snort: upgrade 2.9.18.1 -> 2.9.19wangmy2021-12-131-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | changelog: ========= * src/snort.c : Fixed an issue where verdict will be applied onto next session when timeout occurs in some scenarios. * rc/file-process/file_service.c : Removed an excessively flooding log. * src/dynamic-preprocessors/modbus/modbus_decode.c : Fixed possible integer overflow. * src/fpcreate.c : Added fix to GCC compiled snort to use AC-BNFA-Q search-method when Intel-cpm is enabled. * src/generators.h src/preprocessors/Stream6/snort_stream_tcp.c : Added fix to not to drop packets when window size is 0 by TCP normalizer and Added new alert with GID 129 and SID 21 when such packets are seen. * src/dynamic-preprocessors/appid/detector_plugins/detector_imap.c src/dynamic-preprocessors/appid/detector_plugins/detector_pop3.c : Added support for Appid to detect login success and failure for IMAP and POP3 protocols. * src/dynamic-preprocessors/reputation/reputation_config.c src/dynamic-preprocessors/reputation/spp_reputation.c src/dynamic-preprocessors/reputation/spp_reputation.h src/pkt_tracer.c src/snort.c src/util.c : Fixed terminology to be bias-free in log/error messages. * src/snort.c : Fixed a potential race condition. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* dhcp-relay: remove obsolete support for renamed libtoolRoss Burton2021-12-131-2/+1
| | | | | | | | libtool is now longer renamed to ${host}-libtool, so remove the changes to support this. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mosquitto: Don't depends on dlt-daemon unconditionallyAndrei Gherzan2021-12-091-1/+1
| | | | | | | | This dependency is already handled through a PACKAGECONFIG so there is no need for it in DEPENDS anymore. Signed-off-by: Andrei Gherzan <andrei.gherzan@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: update cross-answers filesYi Zhao2021-11-255-253/+0
| | | | | | | | Replace the configure tests UNKNOWN answers with the correct answers. Then drop the related patches. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: add pyldb to rdepends for samba-python3Yi Zhao2021-11-251-1/+1
| | | | | | | | | | | | | | | Fixes: $ python3 >>> import samba Traceback (most recent call last): File "<stdin>", line 1, in <module> File "/usr/lib64/python3.10/site-packages/samba/__init__.py", line 28, in <module> import ldb ModuleNotFoundError: No module named 'ldb' >>> Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: fix pyext_PATTERN for cross compilationYi Zhao2021-11-252-0/+64
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The pyext_PATTERN will add native arch as suffix when cross compiling. For example, on qemuarm64, it is expanded to: pyext_PATTERN ='%s.cpython-310-x86_64-linux-gnu.so' which will result in the incorrect library name. root@qemuarm64:~# find /usr/lib -name \*cpython\* /usr/lib/pkgconfig/samba-policy.cpython-310-x86_64-linux-gnu.pc /usr/lib/libsamba-policy.cpython-310-x86-64-linux-gnu.so /usr/lib/samba/libsamba-python.cpython-310-x86-64-linux-gnu-samba4.so /usr/lib/samba/libsamba-net.cpython-310-x86-64-linux-gnu-samba4.so /usr/lib/libsamba-policy.cpython-310-x86-64-linux-gnu.so.0 /usr/lib/libsamba-policy.cpython-310-x86-64-linux-gnu.so.0.0.1 /usr/lib/python3.10/site-packages/samba/dsdb_dns.cpython-310-x86_64-linux-gnu.so /usr/lib/python3.10/site-packages/samba/dsdb.cpython-310-x86_64-linux-gnu.so /usr/lib/python3.10/site-packages/samba/xattr_tdb.cpython-310-x86_64-linux-gnu.so /usr/lib/python3.10/site-packages/samba/_ldb.cpython-310-x86_64-linux-gnu.so /usr/lib/python3.10/site-packages/samba/gensec.cpython-310-x86_64-linux-gnu.so [snip] Set pyext_PATTERN to '%s.so' to remove the suffix. After the patch: root@qemuarm64:~# find /usr/lib/ /usr/lib/pkgconfig/samba-policy.pc /usr/lib/libsamba-policy.so /usr/lib/samba/libsamba-python-samba4.so /usr/lib/samba/libsamba-net-samba4.so /usr/lib/libsamba-policy.so.0 /usr/lib/libsamba-policy.so.0.0.1 /usr/lib/python3.10/site-packages/samba/dsdb_dns.so /usr/lib/python3.10/site-packages/samba/dsdb.so /usr/lib/python3.10/site-packages/samba/xattr_tdb.so /usr/lib/python3.10/site-packages/samba/_ldb.so /usr/lib/python3.10/site-packages/samba/gensec.so [snip] Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.14.8 -> 4.14.10Yi Zhao2021-11-161-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a security release in order to address the following defects: CVE-2016-2124: SMB1 client connections can be downgraded to plaintext authentication. https://www.samba.org/samba/security/CVE-2016-2124.html CVE-2020-25717: A user on the domain can become root on domain members. https://www.samba.org/samba/security/CVE-2020-25717.html CVE-2020-25718: Samba AD DC did not correctly sandbox Kerberos tickets issued by an RODC. https://www.samba.org/samba/security/CVE-2020-25718.html CVE-2020-25719: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets. https://www.samba.org/samba/security/CVE-2020-25719.html CVE-2020-25721: Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). https://www.samba.org/samba/security/CVE-2020-25721.html CVE-2020-25722: Samba AD DC did not do suffienct access and conformance checking of data stored. https://www.samba.org/samba/security/CVE-2020-25722.html CVE-2021-3738: Use after free in Samba AD DC RPC server. https://www.samba.org/samba/security/CVE-2021-3738.html CVE-2021-23192: Subsequent DCE/RPC fragment injection vulnerability. https://www.samba.org/samba/security/CVE-2021-23192.html See: https://www.samba.org/samba/history/samba-4.14.10.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wolfssl: update to 5.0.0Oleksandr Kravchuk2021-11-081-3/+3
| | | | | Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* recipes: Update SRC_URI branch and protocolsRichard Purdie2021-11-0316-16/+16
| | | | | | | | | This patch updates SRC_URIs using git to include branch=master if no branch is set and also to use protocol=https for github urls as generated by the conversion script in OE-Core. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* netplan: fix hardcoded path for /lib/netplanYi Zhao2021-11-011-0/+2
| | | | | | | | | | The hardcoded path /lib/netplan causes a runtime error on multilib image: $ netplan try An error occurred: [Errno 2] No such file or directory: '/lib/netplan/generate' Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* bluepy: Fix permissions on tarballKhem Raj2021-10-202-1/+35
| | | | | Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Marco Cavallini <m.cavallini@koansoftware.com>
* bluepy: Set PV and correct syntax for RDEPENDSKhem Raj2021-10-201-7/+8
| | | | | | | | | | | Also organize the recipe to to match OE style Remove PYTHON_PN from DEPENDS, setuptools should be enough Correct setting LIC_FILES_CHKSUM Move setting git SHA to SRCREV Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Marco Cavallini <m.cavallini@koansoftware.com> Cc: Martin Jansa <martin.jansa@gmail.com>
* bluepy_git.bb: Added recipe for BluePy Python interface to Bluetooth LE on ↵Marco Cavallini2021-10-191-0/+17
| | | | | | | Linux (v2) Signed-off-by: Marco Cavallini <koansoftware@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* nng: update to 1.4.0Oleksandr Kravchuk2021-10-161-4/+2
| | | | | Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: update to 1.32.12Oleksandr Kravchuk2021-10-161-1/+1
| | | | | Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager-openvpn: upgrade 1.8.14 -> 1.8.16zangrc2021-10-161-2/+1
| | | | | Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* netplan: do not use -WerrorAlexander Kanavin2021-10-143-3/+31
| | | | | | | This addresses openssl 3.x deprecation warnings turning into errors. Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.14.7 -> 4.14.8Yi Zhao2021-10-081-2/+2
| | | | | | | | Release notes: https://www.samba.org/samba/history/samba-4.14.8.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* snort: upgrade 2.9.18 -> 2.9.18.1wangmy2021-09-271-1/+1
| | | | | | | | | | snort 2.9.18.1 * snort/src/dynamic-preprocessors/dcerpc2/dce2_smb.c: Fixed possible memory corruption in SMB preprocessor. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: Inherit pkgconfigKhem Raj2021-09-241-1/+1
| | | | | | | Fixes Checking for program 'pkg-config' : not found Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mosquitto: Inherit pkgconfigKhem Raj2021-09-241-1/+1
| | | | | | | Fixes logging.c:(.text+0x218): undefined reference to `dlt_register_app' Signed-off-by: Khem Raj <raj.khem@gmail.com>
* firewalld: Inherit pkgconfigKhem Raj2021-09-241-1/+1
| | | | | | | | | Fixes ../firewalld-0.9.4/configure: line 3408: pkg.m4: command not found ../firewalld-0.9.4/configure: line 3422: syntax error near unexpected token `0.16' ../firewalld-0.9.4/configure: line 3422: ` PKG_PROG_PKG_CONFIG(0.16)' Signed-off-by: Khem Raj <raj.khem@gmail.com>
* crda: Inherit pkgconfigKhem Raj2021-09-241-1/+1
| | | | | | | Fixes /bin/sh: pkg-config: command not found Signed-off-by: Khem Raj <raj.khem@gmail.com>
* blueman: Inherit pkgconfigKhem Raj2021-09-241-1/+1
| | | | | | | | Fixes ../blueman-2.2.1/configure: line 15660: syntax error near unexpected token `PYTHON,' ../blueman-2.2.1/configure: line 15660: `PKG_CHECK_MODULES(PYTHON, python-${PYTHON_VERSION})' Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.14.5 -> 4.14.7Yi Zhao2021-09-241-2/+2
| | | | | | | | Changelog: https://www.samba.org/samba/history/samba-4.14.7.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* autossh: set precise BSD licensesArmin Kuster2021-09-241-2/+4
| | | | | | | | One file is BSD-1-Clause while another is BSD-4-Clause Set and check accourdingly Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mosquitto: upgrade 2.0.11 -> 2.0.12zhengruoqin2021-09-081-2/+1
| | | | | Signed-off-by: Zheng Ruoqin <zhengrq.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: upgrade 1.32.8 -> 1.32.10wangmy2021-08-261-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* netplan: upgrade 0.102 -> 0.103wangmy2021-08-233-40/+30
| | | | | | | | | | 0001-Handle-enum-element-override.patch removed since it is included in 0.103 Add patch to fix bug for 32bit format string bug. Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: upgrade 1.32.4 -> 1.32.8Andreas Müller2021-08-201-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | =============================================== NetworkManager-1.32.8 Overview of changes since NetworkManager-1.32.6 =============================================== * firewalld: configure zones on "Reloaded" signal. * core: fix wrong MTU for bridge interfaces. * cloud-setup: fix gateway address for Aliyun cloud. =============================================== NetworkManager-1.32.6 Overview of changes since NetworkManager-1.32.4 =============================================== * core: fix adding stale local routes when address changes. * initrd: tag generated profiles with origin in user data. * core: introduce "allowed-connections" option to disallow profiles on a device. This allows to filter out profiles that originate from initrd. * core: introduce "keep-configuration" device option to forcefully activate a profile on start. * dhcp: handle filename/bootfile_name DHCP option and write it to device state file for initrd/kickstart. * initrd: add "ib.pkey=" command line option Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: add PACKAGECONFIG for audit and selinuxYi Zhao2021-08-121-0/+3
| | | | | | | Add them to PACKAGECONFIG if enable selinux distro feature. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* Convert to new override syntaxMartin Jansa2021-08-0328-169/+169
| | | | | | | | | | This is the result of automated script (0.9.1) conversion: oe-core/scripts/contrib/convert-overrides.py . converting the metadata to use ":" as the override character instead of "_". Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* addcli: check for ns_get16 and ns_get32Khem Raj2021-08-032-1/+41
| | | | | | Fixes build with glibc 2.34+ Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: upgrade 1.32.2 -> 1.32.4wangmy2021-07-291-1/+1
| | | | | Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* firewalld: upgrade 0.9.3 -> 0.9.4zangrc2021-07-131-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a bug fix only release. $ git shortlog --grep "^fix" v0.9.3..v0.9.4 Eric Garver (10): fix(dbus): conf: setting deprecated properties should be ignored fix(dbus): properties: IPv4 and IPv6 should be true if using nftables fix(fw): when checking tables make sure to check the actual backend fix(ipset): nftables: use interval flag for "ip" types fix(rpm): applet: don't replace config modified by admin fix(rpm): logrotate: don't replace config modified by admin fix(ipv6_filter): match fwmark fix(direct): rule order with multiple address with -s/-d fix(nm): reload: only consider NM connections with a real interface fix(policy): warn instead of error for overlapping ports Fabrizio D'Angelo (1): fix(ipset): fix hash:net,net functionality Robert Richmond (1): fix(ipset): entry delete with timeout Ye Shu (1): fix(applet): Show a basic tooltip instead of HTML Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* networkmanager: upgrade 1.30.4 -> 1.32.2Andreas Müller2021-07-084-202/+19
| | | | | | | Did not find hints upstream but musl build turned painless! Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* blueman: upgrade 2.1.4 -> 2.2.1Andreas Müller2021-07-082-19/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Manually refresh 0002-fix-fail-to-enable-bluetooth.patch - it did not apply 2.2.1 Bugs fixed Hard dependency of DBusService on NetworkManager 2.2 New features Disconnect items in applet menu (plugin) Desktop notifications on connect / disconnect (plugin) Notifications with battery level for connecting devices (applet plugin) Stop discovery and retry connection for broken adapter drivers Auto-connect settings for supported services Changes Drop blueman-report Drop blueman-assistant Raise minimum Python version to 3.6 Raise GTK+ 3 version to 3.22 Raise minimum BlueZ version to 5.48 Allow opening device menus via keyboard (Shift+F10 or menu key) Add Ctrl+Q and Ctrl+W accelerators for closing blueman-manager Allow cancelling device connection attempts Improved passkey handling (fixed padding, highlighting, single notifitication) Hide devices with no name Bugs fixed Fix disconnecting NMDevice Exceptions from asynchronous DBus calls (getting picked up by tools like Apport or ABRT) DiscvManager plugin showed its icon unreliably Signed-off-by: Andreas Müller <schnitzeltony@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: add missing runtime dependency for pidlYi Zhao2021-07-011-1/+1
| | | | | | | | | | | Add libparse-yapp-perl to RDEPENDS for pidl. Fixes: $ pidl Can't locate Parse/Yapp/Driver.pm in @INC (you may need to install the Parse::Yapp::Driver module) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: fix shebang for pidlYi Zhao2021-07-011-1/+1
| | | | | | | | | The shebang in pidl points to wrong location: $ pidl -sh: /usr/bin/pidl: /buildarea/build/tmp-glibc/hosttools/env: bad interpreter: No such file or directory Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: Don't guess dirs for perllocal.pod removingPersian Prince2021-06-241-1/+1
| | | | | | | | We're not living in a perfect world so avoid build failures like: ERROR: samba-4.14.5-r0 do_package_qa: QA Issue: samba-pidl contains perllocal.pod (/usr/lib/perl5/5.34.0/x86_64-linux/perllocal.pod), should not be installed [perllocalpod] ERROR: samba-4.14.5-r0 do_package_qa: QA run found fatal errors. Please consider fixing them. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: Solve the dependency problem when installing Sambawangmy2021-06-231-2/+20
| | | | | | | | | Error Message: Problem: conflicting requests - nothing provides samba-pidl needed by samba-client-4.14.5-r0.aarch64 Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* snort: upgrade 2.9.17.1 -> 2.9.18zangrc2021-06-232-4/+4
| | | | | | | | Refresh the following patch: configure.in-disable-tirpc-checking-for-fedora.patch Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* mosquitto: upgrade 2.0.10 -> 2.0.11zangrc2021-06-181-3/+3
| | | | | | | | -License-Update: notice.html does not exist in this version, use NOTICE.md to check. Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* add CVE-2011-2411 to allowlistSekine Shigeki2021-06-111-0/+4
| | | | | | | This affects only on HP NonStop Server, so add it to allowlist. Signed-off-by: Sekine Shigeki <sekine.shigeki@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* samba: upgrade 4.14.4 -> 4.14.5Yi Zhao2021-06-091-2/+2
| | | | | | | | Changelog: https://www.samba.org/samba/history/samba-4.14.5.html Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>