Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libkea-http87-3.0.1-1.1 RPM for aarch64

From OpenSuSE Ports Tumbleweed for aarch64

Name: libkea-http87 Distribution: openSUSE Tumbleweed
Version: 3.0.1 Vendor: openSUSE
Release: 1.1 Build date: Thu Aug 28 11:03:21 2025
Group: System/Libraries Build host: reproducible
Size: 1052645 Source RPM: kea-3.0.1-1.1.src.rpm
Packager: http://bugs.opensuse.org
Url: https://kea.isc.org/
Summary: Kea DHCP http communication library
This library is used by Control Agent to establish HTTP connections,
receive messages and send responses over HTTP. This library uses
boost ASIO for creating TCP connections and asynchronously receive
and send the data over the sockets.

Provides

Requires

License

MPL-2.0

Changelog

* Thu Aug 28 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Update to release 3.0.1
    Security Fixes:
    * Corrected an issue in kea-dhcp4 that caused the server to abort
      if a client sent a unicast request with a particular options,
      and Kea failed to find an appropriate subnet for that client.
      (CVE-2025-40779)
      [bsc#1248801]
    Changes:
    * Moved Botan crypto backend support to version 3.
    * Avoid adding the qualifying-suffix to fully qualified host
      names specified in host reservations.
* Tue Jul 29 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Remove `/usr/share/kea/meson-info` directory because it contains
    non reproducible files.
    [bsc#1246670]
* Mon Jul 07 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Use meson install_umask to set binaries and libraries
    permissions.
* Tue Jul 01 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Update to release 3.0.0
    Noteworthy changes:
    * Lease caching is now enabled by default.
    * The control-socket.socket-name and control-socket.socket-type
      parameters have been removed from the CB.
    * Kea now rejects certain default passwords. If you copied your
      Kea configuration from the examples in our documentation using
      our sample password, change your password to a unique value.
    * The kea-control-agent is now deprecated. The individual Kea
      services support HTTP/HTTPS control channels, so the Control
      Agent (CA) is no longer needed. The CA is still available but
      will be removed in a future release.
    * The precedence of options specified in a template class and its
      spawned classes has been reversed. An option specified in a
      spawned class now takes precedence over the same option
      specified in the template class.
    * The only-if-required and require-client-classes were renamed to
      only-in-additional-list and evaluate-additional-classes.
    * Classes included in require-client-classes (now called
      evaluate-additional-classes) that do not have test expressions
      will now be unconditionally added to a client's list of
      matching classes; previously, they were ignored.
    * Additional classes are now evaluated in the same order as
      option-data, i.e. pools, subnets, and shared networks. In
      earlier versions, the order was reversed.
    * It is now possible to define multiple client classes when
      limiting access to networks, subnets, and pools. The parameter
      client-class (a single class name) has been replaced with
      client-classes (a list of one or more class names). The older
      syntax is still accepted but is now deprecated and will be
      removed in the future. You cannot specify both client-class and
      client-classes within the same scope.
    * Options name value pairs specified in option-data have a new
      parameter available: client-classes. This allows the
      administrator to place a guard on the option requiring
      membership in a class or classes before that particular option
      data will be added to the packet. This is intended as a
      powerful mechanism to bring back some of the functionality from
      the conditional (if) statements that were widely used in ISC
      DHCP. See Option Class-Tagging in the ARM for further
      information.
    * The build system has been switched to meson.
    Further detailed information of all changes is available at
    https://gitlab.isc.org/isc-projects/kea/-/wikis/Release-Notes/release-notes-3.0.0
    and
    https://kb.isc.org/docs/things-to-be-aware-of-when-upgrading-to-kea-300
  - Set RuntimeDirectoryPreserve=yes in services to prevent deletion
    of RuntimeDirectory when one service gets stopped.
* Mon Jun 16 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Change After= from network.target to network-online.target and
    add Wants=network-online.target to systemd services to prevent
    starting up before ip setup is finished.
* Mon May 26 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Update to release 2.6.3
    Security Fixes:
    * The default configuration for the Kea Control Agent (CA) has
      been updated to enable basic HTTP authentication.  Access to
      the Kea API will thus require a password.
      (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803)
      [bsc#1243240]
    * `kea-dhcp4`, `kea-dhcp6`, `kea-dhcp-ddns`, and
      `kea-ctrl-agent` now only load hook libraries from the
      default installation directory. For ease of use, the path may
      be omitted.
      (CVE-2025-32801)
      [bsc#1243240]
    * The API command `config-write` will now only write to the same
      directory as the configuration file used when Kea was started
      (passed as a `-c` argument).
      (CVE-2025-32802)
      [bsc#1243240]
    * Lease files can now only be loaded from the data directory
      `/var/lib/kea`. This path may be overridden at startup by
      setting the environment variable `KEA_DHCP_DATA_DIR` to the
      desired path. If a path outside the defined data directory is
      used in `lease-database.name`, Kea returns an error and refuses
      to start or, if already running, aborts and exits. For ease of
      use in specifying a custom file name, simply omit the path
      component from `name`.
      (CVE-2025-32802)
      [bsc#1243240]
    * Log files can now only be written to a defined output directory
      `/var/log/kea`. This path may be overridden at startup by
      setting the environment variable `KEA_LOG_FILE_DIR` to the
      desired path. If a path outside the defined output directory is
      used in `loggers.output_options.output`, Kea returns an error
      and refuses to start or, if already running, aborts and exits.
      For ease of use, simply omit the path component from `output`
      and specify only the file name.
      (CVE-2025-32802)
      [bsc#1243240]
    * Files created by Kea now have more restrictive file
      permissions. Write access by group and any access by others is
      now forbidden.
      (CVE-2025-32803)
      [bsc#1243240]
    * Sockets can no longer be created in a world-writable directory,
      such as `/tmp`. Sockets must now be created in the more
      restricted `/var/run/kea`.
      (CVE-2025-32802)
      [bsc#1243240]
    * Many sample configuration files have been updated to reflect
      changes introduced in this release. In the ARM, the Kea
      Security section has been moved to a more prominent location,
      and a new section concerning securing the Kea Control Agent has
      been added.
      (CVE-2025-32801, CVE-2025-32802, CVE-2025-32803)
      [bsc#1243240]
    Other changes:
    * Fix build with the latest Boost 1.87.
      (Obsoletes patch `kea-2.6.1-boost_1.87-compat.patch`)
    * Backported a clarification in the ARM about subnet4-delta-add.
  - Remove /run/kea from systemd tmpfiles as the creation of this
    directory is handled by the services.
  - Replace 'chmod -h' and 'chown -h' with 'find' as the '-h' isn't
    present in Leap/SLE.
  - /run/kea now has mode 0750 for all services.
* Wed Apr 30 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Update owner and perms in %post on modified config files
* Tue Apr 15 2025 Jan Engelhardt <jengelh@inai.de>
  - Add logic to %post for switching from kea.service to the new
    split units, kea-*.service.
    (Inspiration taken from strongswan.spec.)
* Wed Apr 02 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Split off services into separate ones to allow more fine grained
    control for e.g. capabilities.
  - Tighten access to state and log directories.
* Wed Mar 26 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Update to release 2.6.2
    Bug fixes:
    * Fix for inaccurate statistics: Kea was miscalculating
      declined and assigned leases.
    * Fix for lease conflicts and NAK: Conflicting entries were
      created when two relayed HA instances tried to update a shared
      lease DB at the same time.
    * Fix for `subnetX-del` not removing subnets completely:
      `subnetX-del` was not correctly deleting the subnet declaration
      from the shared network configuration section.
    * Fix for `config-write` and `retry-on-startup` parameter:
      `config-write` was improperly storing the `retry-on-startup`
      parameter in the config file, causing Kea to fail when
      restarting.
    * Fix for incorrect DB schema entry: A typo prevented the
      upgrade script from working in certain circumstances.
    * Fix for mishandling malformed DISCOVER packets:
    * Fix for excessive memory utilization when receiving frequent
      SIGHUP: Kea was storing a history of configs in memory with
      each restart.
    * Fix for `config-set` with `output_options`: `config-set` was
      omitting the `output_options` section when spelled with "_".
    * Fix for store-extended-info breaking lease limits: A specific
      combination of vendor classes and storing extended info caused
      limits to not be applied.
    * Fix for DB connection recovery
    * DB upgrade scripts: DB upgrade could fail on some
      distributions.
* Thu Mar 13 2025 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Add patch to fix build with boost 1.87
    (kea-2.6.1-boost_1.87-compat.patch)
  - Add BuildRequires for python3-sphinx_rtd_theme to fix docs build
* Tue Oct 08 2024 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Update to release 2.6.1
    Bug fixes:
    * Corrected an issue in MySQL config back end that causes
      preferred life time values to be overwritten when updating
      client classes via remote-set-class6. command.
    * Corrected an issue with overlapping enum values for option
      definition data type.  This was causing option definitions of
      type "record", created via config backend commands, to not load
      properly when fetched from the back end.
    * Corrected a bug in storing and fetching the encapsulated DHCP
      options from the configuration backend. These options were
      sometimes not returned when they were specified at the subnet,
      shared network or client class level.
    * Fixed a file descriptor leak in the High Availability hook
      library.
  - Only require bison for build and enable regen_files on Tumbleweed
    and SLFO, because bison is too old in SLES/Leap
  - Remove leading zeros from %if %{with ...}
* Tue Jun 18 2024 Jan Engelhardt <jengelh@inai.de>
  - Update to release 2.6.0
    * New features:
    * Hub-and-spoke model in High Availability (HA)
    * Ping Check hook, RADIUS hook, Performance Monitoring hook
    * Database connection retry on startup
    * Classless static route option
    * Discovery of Network-designated Resolvers (DNR) options
    * Stash Agent options: ISC DHCP provided a
      `stash-agent-options` mechanism that, when enabled, caused
      the server to remember options inserted by a relay agent
      during the initial exchange with a client.
    * Removals/Changes:
    * Removed autogeneration of subnet-ids
    * `output_options` was renamed to `output-options`
* Sat Feb 03 2024 Jan Engelhardt <jengelh@inai.de>
  - Generate "keadhcp" user with sysusers mechanism
* Mon Jan 08 2024 Richard Rahl <rrahl0@proton.me>
  - Update to release 2.4.1
    * fix a race condition in FLQ in which kea could crash
    * fix a regression where redetection of interfaces stopped working
* Thu Jul 06 2023 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Add RuntimeDirectory to kea.service
  - Update to release 2.4.0
    Breaking Changes:
    * Both MySQL and PostgreSQL database schemas were updated to
      accommodate DHCPv6 Bulk Leasequery support.
    * The values accepted by `operation-target` used in
      `reservation-*` commands have been renamed: primary ->
      memory, alternate -> database.
    * Kea DHCPv4 server can now handle multiple `vivco-suboptions`
      options with different enterprise IDs and multiple vendor
      options.
    * The Discovery of Network-designated Resolvers (DNR) options
      have been implemented for both DHCPv4 and DHCPv6. The options
      allow configuration.
    * Template classes mechanism, similar to spawning classes in
      ISC DHCP, has been implemented.
    * Kea now keeps leases for a period of time after they are
      released.
    * An address reserved in a global reservation must now lie
      within the range of the subnet or shared-network selected by
      Kea.
    * It is now possible to add an "empty" host reservation without
      any attribute.
    * kea-dhcp4 now supports the `offer-lifetime` parameter to
      allow the temporary allocation of leases during DHCPOFFER.
    * Added support for Secure Zero Touch Provisioning options, per
      RFC8572.
    * The kea-dhcp6 `prefix-len` and `pd-pools` list now checks the
      prefix lengths correctly.
    * The preferred lifetime is now calculated as 0.625 *
      `valid-lifetime` unless explicitly specified.
    * The link selection suboption is now optional.
    * See /usr/share/doc/kea/ChangeLog in the kea-doc package for
      details.
* Wed Dec 14 2022 Jorik Cronenberg <jorik.cronenberg@suse.com>
  - Separate documentation into kea-doc package
  - Remove following packages from BuildRequires
    * docbook-xsl-stylesheets
    * elinks
    * libxslt-tools
* Thu Aug 18 2022 Jan Engelhardt <jengelh@inai.de>
  - Update to release 2.2.0
    * Kea now features full native support for TLS in HA
    * PostgreSQL configuration backend
    * A new hook is dedicated to RBAC.
    * A new hook limits the rate and number of leases.
    * A new DDNS Tuning library adds custom behaviors related to
      Dynamic DNS updates on a per-client basis.
    * The subnet_cmds hook has been expanded with several new
      commands: `subnet4-delta-add`, `subnet4-delta-del`,
      `subnet6-delta-add`, and `subnet6-delta-del`.

Files

/usr/lib64/libkea-http.so.87
/usr/lib64/libkea-http.so.87.0.0


Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Oct 17 23:12:24 2025