* [PATCH] bwm-ng: Update to version 0.6.3
@ 2024-08-12 15:37 Adolf Belka
2024-08-12 15:37 ` [PATCH] cups: Update to version 2.4.10 Adolf Belka
` (12 more replies)
0 siblings, 13 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:37 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 3582 bytes --]
- Update from version 0.6.1-f54b3fa to 0.6.3
- Update of rootfile not required
- Changelog
0.6.3
* remove outdated copyright and email
* Merge pull request #25 from fweimer/patch-1 AC_QEF_C_NORETURN: Include
<stdlib.h> for exit
* Merge pull request #27 from ofalk/master Fix potential write to unallocated
memory.
* Merge pull request #28 from vgropp/#2-fix-csv-bits feat: #2 output bits in csv
* Merge pull request #29 from vgropp/#2-fix-csv-bits fix(doc): #2 output bits
in csv
* Merge pull request #32 from vgropp/new-netstat-#5 feat: add support for
newer (2016+) linux netstat #5
0.6.2
* Merge pull request #22 from vgropp/issue-#13 to fix windows build
* Merge pull request #20 from dreibh/master CSV file output: fix for timestamp
inaccuracy and Y-2038 problem
* Merge pull request #21 from vgropp/travisci add travisci
* Merge pull request #17 from Himura2la/master Add the started time in "sum" mode
* Merge pull request #18 from Himura2la/fix-dynamic Fix DYNAMIC and ANSIOUT in
config
* Merge pull request #10 from SoapGentoo/fixes Use `static inline` instead of
`inline`
* Merge pull request #9 from adventureloop/master Always fflush the pipe
* Merge pull request #7 from samueloph/fsf_address_clean Update FSF address
* Merge pull request #6 from samueloph/master Fix typos
* fix nan and inf values on fast refresh (fixes debian bug #532331
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/bwm-ng | 13 +++++++------
1 file changed, 7 insertions(+), 6 deletions(-)
diff --git a/lfs/bwm-ng b/lfs/bwm-ng
index 12f44d3a4..34b7fed4f 100644
--- a/lfs/bwm-ng
+++ b/lfs/bwm-ng
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2018 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,15 +26,15 @@ include Config
SUMMARY = Realtime Bandwidth Monitor
-VER = 0.6.1-f54b3fa
+VER = 0.6.3
THISAPP = bwm-ng-$(VER)
-DL_FILE = $(THISAPP).tar.xz
+DL_FILE = $(THISAPP).tar.gz
DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = bwm-ng
-PAK_VER = 2
+PAK_VER = 3
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 1f060351487c234864dace572e4378ac128b5ac1ce1544056c13583922c2249ccb9dbf36e180781122397c282348a0624d31c142265c27fd16a8cf107fa62731
+$(DL_FILE)_BLAKE2 = bfc5007470a2e4d7f50dc43dc33898f5bcb34a0eaeeb0f53ed74029299ac2b732d343eaf725144a05b778ad8a204c5d546f0ea0b6aaf997995e2e7a6bc3c6cf6
install : $(TARGET)
@@ -83,7 +83,8 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE)
cd $(DIR_APP) && ./autogen.sh
- cd $(DIR_APP) && ./configure --prefix=/usr
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
@rm -rf $(DIR_APP)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] cups: Update to version 2.4.10
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
@ 2024-08-12 15:37 ` Adolf Belka
2024-08-12 15:37 ` [PATCH] fetchmail: Update to version 6.4.39 Adolf Belka
` (11 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:37 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 5752 bytes --]
- Update from version 2.4.6 to 2.4.10
- Update of rootfile not required
- CVE fix in 2.4.7 & 2.4.9
- Changelog
2.4.10
- Fixed error handling when reading a mixed `1setOf` attribute.
- Fixed scheduler start if there is only domain socket to listen on (Issue #985)
2.4.9
- Fixed domain socket handling (CVE-2024-35235)
- Fixed creating of `cupsUrfSupported` PPD keyword (Issue #952)
- Fixed searching for destinations in web ui (Issue #954)
- Fixed TLS negotiation using OpenSSL with servers that require the TLS SNI
extension.
- Really raised `cups_enum_dests()` timeout for listing available IPP printers
(Issue #751)...
- Fixed `Host` header regression (Issue #967)
- Fixed DNS-SD lookups of local services with Avahi (Issue #970)
- Fixed listing jobs in destinations in web ui. (Apple issue #6204)
- Fixed showing search query in web ui help page. (Issue #977)
2.4.8
- Added warning if the device has to be asked for 'all,media-col-database'
separately (Issue #829)
- Added new value for 'lpstat' option '-W' - successfull - for getting
successfully printed jobs (Issue #830)
- Added support for PAM modules password-auth and system-auth (Issue #892)
- Updated IPP Everywhere printer creation error reporting (Issue #347)
- Updated and documented the MIME typing buffering limit (Issue #925)
- Now report an error for temporary printer defaults with lpadmin (Issue #237)
- Fixed mapping of PPD InputSlot, MediaType, and OutputBin values (Issue #238)
- Fixed "document-unprintable-error" handling (Issue #391)
- Fixed the web interface not showing an error for a non-existent printer
(Issue #423)
- Fixed printing of jobs with job name longer than 255 chars on older printers
(Issue #644)
- Really backported fix for Issue #742
- Fixed `cupsCopyDestInfo` device connection detection (Issue #586)
- Fixed "Upgrade" header handling when there is no TLS support (Issue #775)
- Fixed memory leak when unloading a job (Issue #813)
- Fixed memory leak when creating color profiles (Issue #815)
- Fixed a punch finishing bug in the IPP Everywhere support (Issue #821)
- Fixed crash in `scan_ps()` if incoming argument is NULL (Issue #831)
- Fixed setting job state reasons for successful jobs (Issue #832)
- Fixed infinite loop in IPP backend if hostname is IP address with Kerberos
(Issue #838)
- Added additional check on socket if `revents` from `poll()` returns POLLHUP
together with POLLIN or POLLOUT in `httpAddrConnect2()` (Issue #839)
- Fixed crash in `ppdEmitString()` if `size` is NULL (Issue #850)
- Fixed reporting `media-source-supported` when sharing printer which has
numbers as strings instead of keywords as `InputSlot` values (Issue #859)
- Fixed IPP backend to support the "print-scaling" option with IPP printers
(Issue #862)
- Fixed potential race condition for the creation of temporary queues
(Issue #871)
- Fixed `httpGets` timeout handling (Issue #879)
- Fixed checking for required attributes during PPD generation (Issue #890)
- Fixed encoding of IPv6 addresses in HTTP requests (Issue #903)
- Fixed sending response headers to client (Issue #927)
- Fixed CGI program initialization and validation of form checkbox and text
fields.
2.4.7
- CVE-2023-4504 - Fixed Heap-based buffer overflow when reading Postscript
in PPD files
- Added OpenSSL support for cupsHashData (Issue #762)
- Fixed delays in lpd backend (Issue #741)
- Fixed extensive logging in scheduler (Issue #604)
- Fixed hanging of `lpstat` on IBM AIX (Issue #773)
- Fixed hanging of `lpstat` on Solaris (Issue #156)
- Fixed printing to stderr if we can't open cups-files.conf (Issue #777)
- Fixed purging job files via `cancel -x` (Issue #742)
- Fixed RFC 1179 port reserving behavior in LPD backend (Issue #743)
- Fixed a bug in the PPD command interpretation code (Issue #768)
- Fixed Oki 407 freeze when printing larger jobs (Issue #877)
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/cups | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/lfs/cups b/lfs/cups
index ee90953cc..330f828d2 100644
--- a/lfs/cups
+++ b/lfs/cups
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -24,7 +24,7 @@
include Config
-VER = 2.4.6
+VER = 2.4.10
SUMMARY = The Common UNIX Printing System
THISAPP = cups-$(VER)
@@ -33,7 +33,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/cups-$(VER)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = cups
-PAK_VER = 38
+PAK_VER = 39
DEPS = avahi cups-filters dbus ghostscript libexif
@@ -47,7 +47,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 4e61112ddaa46f20b1cfcb8f523dd07ba7d82604b9857754b288a2a9c5bc50ce242cfa119867347e4696818dc2eb505cf7fff1f9a0634e314edb2500395b83e4
+$(DL_FILE)_BLAKE2 = 842a713d606c1e68d5113c0fc2f063cb58519891bb8f442fd64caeebf6b14fbf38b59d1fe4277cf8f9a01238c4c040fc7919234afa56dc86fcebb623a0058322
install : $(TARGET)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] fetchmail: Update to version 6.4.39
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
2024-08-12 15:37 ` [PATCH] cups: Update to version 2.4.10 Adolf Belka
@ 2024-08-12 15:37 ` Adolf Belka
2024-08-12 15:37 ` [PATCH] fping: Update to version 5.2 Adolf Belka
` (10 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:37 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 2275 bytes --]
- Update from version 6.4.38 to 6.4.39
- Update of rootfile not required
- Changelog
6.4.39
# BUG FIXES:
* When a server offers STARTTLS although the connection is already wrapped
in TLS, fetchmail would issue a bogus "WARNING: server offered STARTTLS
but sslproto '' given." (or STLS for POP3). In situations where we wrap
the connection in TLS, suppress the warning. Reported by Mike Pope.
* If fetchmail was running localized, generate an error e-mail message
locally, and if the selected translation would require the Subject: line
to wrap inside an RFC-2047 encoded word (=?UTF-8?Q?...?=), the wrapped
encoded-word was not indented, thus not marked as a continuation line.
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/fetchmail | 15 +++++++--------
1 file changed, 7 insertions(+), 8 deletions(-)
diff --git a/lfs/fetchmail b/lfs/fetchmail
index dbba637ba..6beb0db74 100644
--- a/lfs/fetchmail
+++ b/lfs/fetchmail
@@ -26,7 +26,7 @@ include Config
SUMMARY = Full-Featured POP and IMAP Mail Retrieval Daemon
-VER = 6.4.38
+VER = 6.4.39
THISAPP = fetchmail-$(VER)
DL_FILE = $(THISAPP).tar.xz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = fetchmail
-PAK_VER = 16
+PAK_VER = 17
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 6bb743b0e1f47143f69e3790ba2ad8849d2ec216c5fd7cc427a737e00183f2e3a65007df9dc5ffdebd991bd13e079a501519b271d02b1fd75151032d74e84dd2
+$(DL_FILE)_BLAKE2 = 2d03f6668d2882e7dd1d4e83e8643a2a4c81576a143c75ff1b24327873fa6112fa313f9723373a268e04697b76b3b638cbbd7a04c21cba946cd1532b6aaf201d
install : $(TARGET)
@@ -83,11 +83,10 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar Jxf $(DIR_DL)/$(DL_FILE)
$(UPDATE_AUTOMAKE)
cd $(DIR_APP) && PYTHON=python3 \
- ./configure \
- --prefix=/usr \
- --with-ssl \
- --disable-nls
-
+ ./configure \
+ --prefix=/usr \
+ --with-ssl \
+ --disable-nls
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] fping: Update to version 5.2
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
2024-08-12 15:37 ` [PATCH] cups: Update to version 2.4.10 Adolf Belka
2024-08-12 15:37 ` [PATCH] fetchmail: Update to version 6.4.39 Adolf Belka
@ 2024-08-12 15:37 ` Adolf Belka
2024-08-12 15:37 ` [PATCH] freeradius: Update to version 3.2.5 Adolf Belka
` (9 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:37 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 4016 bytes --]
- Update from version 5.1 to 5.2
- Update of rootfile not required
- Changelog
5.2
## New features
- New option -X / --fast-reachable to exit immediately once N hosts have been
found (#260, thanks @chriscray and @gsnw)
- New option -k / -fwmark to set Linux fwmark mask (#289, thanks @tomangert and
@deepkv)
## Bugfixes and other changes
- Always output fatal error messages (#303, thanks @auerswal)
- Fallback to SO\_TIMESTAMP if SO\_TIMESTAMPNS is not available (#279, thanks
@gsnw)
- Fix "not enough sequence numbers available" error on BSD-like systems (#307,
thanks @cagney, @gsnw)
- Fix running in unprivileged mode (#248, thanks @sfan5)
- Fix build issue for NetBSD/alpha (#255, thanks @0-wiz-0)
- Fix build issue for OpenBSD/alpha (#275, thanks @gsnw)
- Fix build warning for long int usage (#258, thanks @gsnw)
- Fix build error with musl libc (#263, thanks @kraj)
- Fix to guard against division by zero (#293, thanks @auerswal)
- Decouple -a/-u effects from -c (#298, thanks @auerswal)
- Added contrib/Dockerfile (#224, thanks @darless)
- Remove host from Netdata chart titles (#253, thanks @ilyam8)
- Add additional tests (#292, #297, thanks @auerswal)
- Update github action os images (#282, thanks @gsnw)
- Fix Azure pipeline tests (#308, thanks @gsnw)
- Various autoconf fixes (#286, #283, thanks @gsnw)
- Extended configure script with --enable-debug and output cpu usage (#311,
thanks @gsnw)
- Documentation: Update Netdata website link (#257, thanks @ilyam8)
- Documentation: fix description of --file option (#268, thanks @MohGeek)
- Documentation: improve exit status description (#294, thanks @auerswal)
- Documentation: move description of -i MSEC (#298, thanks @auerswal)
- Documentation: improve help output for options -c and -C (#302, #auerswal)
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/fping | 15 +++++++--------
1 file changed, 7 insertions(+), 8 deletions(-)
diff --git a/lfs/fping b/lfs/fping
index 0ccf82777..a60ccf6dd 100644
--- a/lfs/fping
+++ b/lfs/fping
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,7 +26,7 @@ include Config
SUMMARY = A program to ping multiple hosts
-VER = 5.1
+VER = 5.2
THISAPP = fping-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = fping
-PAK_VER = 7
+PAK_VER = 8
DEPS = ""
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 2fb344e650b5a359fb8780f2c599455d39405ae823edf695ee4385aa2661dc5811e088bafa1b9f53846ee90c0afa959a92832381a03346d1fda048eb4e7ee098
+$(DL_FILE)_BLAKE2 = 7efb445f32ffe2d3766d598da5f1585270ae8e68ceb8b64e418040f330e7736bfaf0313077e28b12031af25ed7952943603d3a5908174c3f78d9a1af0b735da9
install : $(TARGET)
@@ -82,10 +82,9 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
$(UPDATE_AUTOMAKE)
- cd $(DIR_APP) && ./configure \
- --prefix=/usr \
- --disable-ipv6
-
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr \
+ --disable-ipv6
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] freeradius: Update to version 3.2.5
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (2 preceding siblings ...)
2024-08-12 15:37 ` [PATCH] fping: Update to version 5.2 Adolf Belka
@ 2024-08-12 15:37 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] frr: Update to version 10.1 Adolf Belka
` (8 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:37 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 12786 bytes --]
- Update from version 3.2.3 to 3.2.5
- Update of rootfile
- Various options removed from ./configure as they are all unrecognised and don't have
any effect. Most of them look to have been related to freeradius-1.x
- There is no command that gets recognised for disabling or not using static libs
- Changelog
3.2.5
Feature Improvements
TOTP now supports TOTP-Time-Offset for tokens with times that are out of sync.
See mods-available/totp.
radclient now supports forcing the Request Authenticator and ID for
Access-Request packets.
Update dictionary.3gpp.
Update advice on shared secrets, including suggesting a secure method for
generating useful secrets.
Bug Fixes
Allow proxying by pool / home server name to work with auth+acct servers.
Fix OpenSSL API usage which sometimes caused crash in MS-CHAP Previously it
would either always crash immediately, or never crash.
Fix packet statistics. Stop double counting some packets, and track packet
statistics even if a socket is closed.
Reverted patch in TTLS which broke compatibility with some systems.
Don't crash in debug mode when multiple intermediate certs are used Patch
from Alexander Chernikov.
3.2.4
Feature Improvements
Preliminary support for TEAP.
Update EAP module pre_proxy checks to make them less restrictive This
prevents the "middle box" effect from affecting future traffic.
Many fixes and updates for Docker images.
Add dpsk module. See mods-available/dpsk.
Print out what cause the TLS operations to be made, such as the EAP method
name (peap, ttls, etc), or RADIUS/TLS listen / proxy socket.
Add auto_escape to sample SQL module config.
Add 'if not exists' to mysql create table queries. ref #5032 (#5137).
Update dictionary.aruba; add dictionary.tplink, dictionary.alphion.
Allow for 'encrypt=1' attributes to be longer than 128 characters.
Added "radsecret" program which generates strong secrets. See the top of the
"clients.conf" file for more information.
radclient now prints packets as hex when using -xxx.
Added "-t timeout" to radsniff. It will stop processing packets after
<timeout> seconds.
Support "interface = ..." on OSX and other *BSD which have IP_BOUND_IF.
The detail module now has a "dates_as_integer" configuration item See
mods-available/detail for more information.
Add lookback/lookforward steps and more configuration to totp. See
mods-available/totp.
Add "time_since" xlat to calculate elapsed time in seconds, milliseconds and
microseconds.
Support "Post-Auth-Type Challenge" in the inner tunnel. Patch from Alexander
Clouter. PR #5320.
Add "proxy_dedup_window". See radiusd.conf.
Document KRB5_CLIENT_KTNAME in the "env" section of radiusd.conf.
Add "dedup_key" for misbehaving supplicants. See mods-available/eap.
Bug Fixes
Fix corner case with empty defaults in rlm_files. Fixes #5035.
When we have multiple attributes of the same name, always use the canonical
attribute.
Make FreeRADIUS-Server-EMA* attributes work again for home server exponential
moving average statistics.
Don't send the global server stats when asked for client stats. They use the
same attributes, so the result is confusing.
Fix multiple typos in MongoDB query.conf (#5130).
Add define for illumos. Fixes #5135.
Add client configuration for TLS PSK.
Permit originate CoA after proxying to an internal virtual server.
Use virtual server "default" when passed "-i" and "-p" on the command line.
Fix locking issues with rlm_python3.
The detail file reader will catch bad times in the file, and will not update
Acct-Delay-Time with extreme values.
Fix issue where Message-Authenticator was calculated incorrectly for
CoA / Disconnect ACK and NAK packets.
Update Python thread and error handling. Fixes #5208.
Fix handling of Session-State when proxying. Fixes #5288.
Run relevant post-proxy Fail-* section on CoA / Disconnect timeout.
Add "limit" section to AWS health check configurtion. Fixes 35300.
Use MAX in sqlite queries instead of GREATEST.
Fix typo in Mongo queries. Fixes #5301.
Fix occasional crash with bad home servers. Fixes #5308.
Minor bug fixes to the SQL freetds modules.
Fix blocking issue with RADIUS/TLS connection checks.
Fix run-time crash on configuration typos of %{substr ...} instead of
%{substr:...} Fixes #5321.
Fix crash with TLS Status-Server requests. Fixes #5326.
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
config/rootfiles/packages/freeradius | 37 ++++++++++++++++++++++++++++
lfs/freeradius | 17 +++----------
2 files changed, 40 insertions(+), 14 deletions(-)
diff --git a/config/rootfiles/packages/freeradius b/config/rootfiles/packages/freeradius
index 899bfa139..24e2edf22 100644
--- a/config/rootfiles/packages/freeradius
+++ b/config/rootfiles/packages/freeradius
@@ -9,6 +9,8 @@ etc/raddb
#etc/raddb/certs/client.cnf
#etc/raddb/certs/inner-server.cnf
#etc/raddb/certs/passwords.mk
+#etc/raddb/certs/realms
+#etc/raddb/certs/realms/README.md
#etc/raddb/certs/server.cnf
#etc/raddb/certs/xpextensions
#etc/raddb/clients.conf
@@ -34,6 +36,7 @@ etc/raddb
#etc/raddb/mods-available/dhcp_sql
#etc/raddb/mods-available/dhcp_sqlippool
#etc/raddb/mods-available/digest
+#etc/raddb/mods-available/dpsk
#etc/raddb/mods-available/dynamic_clients
#etc/raddb/mods-available/eap
#etc/raddb/mods-available/echo
@@ -325,6 +328,7 @@ usr/bin/radclient
usr/bin/radcrypt
usr/bin/radeapclient
usr/bin/radlast
+usr/bin/radsecret
usr/bin/radsniff
usr/bin/radsqlrelay
usr/bin/radtest
@@ -453,6 +457,9 @@ usr/lib/freeradius/rlm_dhcp.so
#usr/lib/freeradius/rlm_digest.a
#usr/lib/freeradius/rlm_digest.la
usr/lib/freeradius/rlm_digest.so
+#usr/lib/freeradius/rlm_dpsk.a
+#usr/lib/freeradius/rlm_dpsk.la
+usr/lib/freeradius/rlm_dpsk.so
#usr/lib/freeradius/rlm_dynamic_clients.a
#usr/lib/freeradius/rlm_dynamic_clients.la
usr/lib/freeradius/rlm_dynamic_clients.so
@@ -480,6 +487,9 @@ usr/lib/freeradius/rlm_eap_pwd.so
#usr/lib/freeradius/rlm_eap_sim.a
#usr/lib/freeradius/rlm_eap_sim.la
usr/lib/freeradius/rlm_eap_sim.so
+#usr/lib/freeradius/rlm_eap_teap.a
+#usr/lib/freeradius/rlm_eap_teap.la
+usr/lib/freeradius/rlm_eap_teap.so
#usr/lib/freeradius/rlm_eap_tls.a
#usr/lib/freeradius/rlm_eap_tls.la
usr/lib/freeradius/rlm_eap_tls.so
@@ -614,10 +624,31 @@ usr/sbin/radmin
#usr/share/doc/freeradius/antora/modules/ROOT/pages
#usr/share/doc/freeradius/antora/modules/ROOT/pages/directories.adoc
#usr/share/doc/freeradius/antora/modules/ROOT/pages/index.adoc
+#usr/share/doc/freeradius/antora/modules/concepts
+#usr/share/doc/freeradius/antora/modules/concepts/nav.adoc
+#usr/share/doc/freeradius/antora/modules/concepts/pages
+#usr/share/doc/freeradius/antora/modules/concepts/pages/aaa.adoc
+#usr/share/doc/freeradius/antora/modules/concepts/pages/index.adoc
+#usr/share/doc/freeradius/antora/modules/concepts/pages/modules
+#usr/share/doc/freeradius/antora/modules/concepts/pages/modules/ldap
+#usr/share/doc/freeradius/antora/modules/concepts/pages/modules/ldap/authentication.adoc
+#usr/share/doc/freeradius/antora/modules/developers
+#usr/share/doc/freeradius/antora/modules/developers/nav.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages
+#usr/share/doc/freeradius/antora/modules/developers/pages/bugs.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages/coding-methods.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages/contributing.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages/coverage.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages/index.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages/profile.adoc
+#usr/share/doc/freeradius/antora/modules/developers/pages/release-method.adoc
#usr/share/doc/freeradius/antora/modules/howto
#usr/share/doc/freeradius/antora/modules/howto/nav.adoc
#usr/share/doc/freeradius/antora/modules/howto/pages
#usr/share/doc/freeradius/antora/modules/howto/pages/index.adoc
+#usr/share/doc/freeradius/antora/modules/howto/pages/monitoring
+#usr/share/doc/freeradius/antora/modules/howto/pages/monitoring/index.adoc
+#usr/share/doc/freeradius/antora/modules/howto/pages/monitoring/statistics.adoc
#usr/share/doc/freeradius/antora/modules/howto/pages/protocols
#usr/share/doc/freeradius/antora/modules/howto/pages/protocols/dhcp
#usr/share/doc/freeradius/antora/modules/howto/pages/protocols/dhcp/enable.adoc
@@ -638,6 +669,7 @@ usr/sbin/radmin
#usr/share/doc/freeradius/antora/modules/howto/pages/protocols/proxy/radsec_client.adoc
#usr/share/doc/freeradius/antora/modules/howto/pages/protocols/proxy/radsec_with_haproxy.adoc
#usr/share/doc/freeradius/antora/modules/howto/pages/protocols/proxy/radsec_with_traefik.adoc
+#usr/share/doc/freeradius/antora/modules/howto/pages/simultaneous_use.adoc
#usr/share/doc/freeradius/antora/modules/installation
#usr/share/doc/freeradius/antora/modules/installation/nav.adoc
#usr/share/doc/freeradius/antora/modules/installation/pages
@@ -873,6 +905,7 @@ usr/share/freeradius
#usr/share/freeradius/dictionary.alcatel-lucent.aaa
#usr/share/freeradius/dictionary.alcatel.esam
#usr/share/freeradius/dictionary.alcatel.sr
+#usr/share/freeradius/dictionary.alphion
#usr/share/freeradius/dictionary.alteon
#usr/share/freeradius/dictionary.altiga
#usr/share/freeradius/dictionary.alvarion
@@ -914,6 +947,7 @@ usr/share/freeradius
#usr/share/freeradius/dictionary.cisco.vpn3000
#usr/share/freeradius/dictionary.cisco.vpn5000
#usr/share/freeradius/dictionary.citrix
+#usr/share/freeradius/dictionary.ckey
#usr/share/freeradius/dictionary.clavister
#usr/share/freeradius/dictionary.cnergee
#usr/share/freeradius/dictionary.colubris
@@ -997,6 +1031,7 @@ usr/share/freeradius
#usr/share/freeradius/dictionary.nortel
#usr/share/freeradius/dictionary.ntua
#usr/share/freeradius/dictionary.openser
+#usr/share/freeradius/dictionary.openwifi
#usr/share/freeradius/dictionary.packeteer
#usr/share/freeradius/dictionary.paloalto
#usr/share/freeradius/dictionary.patton
@@ -1056,6 +1091,7 @@ usr/share/freeradius
#usr/share/freeradius/dictionary.shiva
#usr/share/freeradius/dictionary.siemens
#usr/share/freeradius/dictionary.slipstream
+#usr/share/freeradius/dictionary.smartsharesystems
#usr/share/freeradius/dictionary.sofaware
#usr/share/freeradius/dictionary.softbank
#usr/share/freeradius/dictionary.sonicwall
@@ -1069,6 +1105,7 @@ usr/share/freeradius
#usr/share/freeradius/dictionary.telkom
#usr/share/freeradius/dictionary.telrad
#usr/share/freeradius/dictionary.terena
+#usr/share/freeradius/dictionary.tplink
#usr/share/freeradius/dictionary.trapeze
#usr/share/freeradius/dictionary.travelping
#usr/share/freeradius/dictionary.tripplite
diff --git a/lfs/freeradius b/lfs/freeradius
index df59bd63b..7136dc3e1 100644
--- a/lfs/freeradius
+++ b/lfs/freeradius
@@ -26,7 +26,7 @@ include Config
SUMMARY = RADIUS Server
-VER = 3.2.3
+VER = 3.2.5
THISAPP = freeradius-server-$(VER)
DL_FILE = $(THISAPP).tar.bz2
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = freeradius
-PAK_VER = 20
+PAK_VER = 21
DEPS = libtalloc samba
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 525204331a5b123dac7457c6adb755cbe9794dbff4a536ea665fc7d1cac97553e392b7b598741c2a9dd00c81decd00608499d6f25208e389b9f213f54977de84
+$(DL_FILE)_BLAKE2 = 169dccd6f04b4503869912dec9423279cc18fc22fa3babf324747bdf0d80d3b4fa5460ac07f89f8d845bf664283a9772b483b8fcec990364fcaf71b673b6917c
install : $(TARGET)
@@ -89,19 +89,8 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
--sysconfdir=/etc \
--libdir=/usr/lib/freeradius \
--localstatedir=/var \
- --with-system-libtool \
--with-threads \
- --with-thread-pool \
- --disable-ltdl-install \
--disable-openssl-version-check \
- --without-rlm_eap_ikev2 \
- --without-rlm_sql_iodbc \
- --without-rlm_sql_firebird \
- --without-rlm_sql_db2 \
- --without-rlm_sql_oracle \
- --without-rlm_sql_sqlite \
- --without-rlm_sql_mysql \
- --without-rlm_python \
LDFLAGS="$(LDFLAGS)"
cd $(DIR_APP) && make $(MAKETUNING)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] frr: Update to version 10.1
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (3 preceding siblings ...)
2024-08-12 15:37 ` [PATCH] freeradius: Update to version 3.2.5 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] haproxy: Update to version 3.0.3 Adolf Belka
` (7 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 15442 bytes --]
- Update from version 9.1 to 10.1
- Update of rootfile
- CVE Fixes in 9.1.1
- Changelog
10.1
Breaking changes
Enable BGP dynamic capability by default for datacenter profile
Advertise BGP "Dynamic" capability by default if using a datacenter
profile. The dynamic capability gives more flexibility in terms of
changing some parameters (e.g. Graceful-Restart,
Long-lived Graceful-Restart timers, Addpath, Role, etc.) without
resetting the session.
Split BGP rpki cache command into separate per SSH/TCP
The old command is broken at some level. When configuring a TCP session
with the source, the command thinks it's an SSH session with a username.
Add deprecation cycle for OSPF router-info X [A.B.C.D] command
Features
BGP dampening per-neighbor support
It is now possible to configure BGP dampening parameters on a
per-neighbor basis. In previous releases, BGP dampening could only be
configured globally or per-SAFI.
BMP send-experimental stats
We added an option to send experimental BMP (RFC 7854) stats
[65531-65534].
RFC 7854 defines BMP statistics types:
Values 65531 through 65534 are Experimental, and value 65535
is Reserved.
Implement extended link-bandwidth for BGP
By default bandwidth in extended communities is encoded in IEEE
floating-point format, and is limited to a maximum of 25 Gbps. Since
not every vendor implements this correctly (due to IEEE floating-point),
another draft is implemented to encode the bandwidth into IPv6
address-specific extended community.
Paths Limit for Multiple Paths in BGP
Implemented this draft as an extension for the Addpath capability, that
tells the sender to send only an arbitrary number of paths per prefix
instead of sending all of the known paths.
New command for OSPFv2 ip ospf neighbor-filter NAME [A.B.C.D]
Configure an IP prefix list to filter packets received from OSPF
neighbors on the OSPF interface.
Implement non-broadcast support for point-to-multipoint networks
This extends non-broadcast support to point-to-multipoint networks.
The AllOSPFRouters (224.0.0.5) is still joined for non-broadcast
networks since it is joined for NBMA networks.
Other significant changes
bgpd
Fix route leaking from the default l3vrf
Fix match peer when switching between IPv4/IPv6/interface
Fix dynamic peer graceful restart race condition
Fix colored routes not installed after a switchover
Fix crash when deleting the SRv6 locator
Fix no set as-path prepend ASNUM...
Fix negative commands for Graceful-Restart operations (avoid
entering incorrect state)
Fix ipv4-mapped ipv6 on non 6pe
Fix show run of network route-distinguisher
Fix display when using missing-as-worst
Fix show bgp neighbors output
Fix error handling for MP/GR capabilities as a dynamic capability
Fix error handling when receiving BGP Prefix-SID attribute
Fix route-target display with a dotted format
Fix no bgp as-path access-list
Fix no form for neighbor X capability software-version
Check against extended community unit size for link bandwidth
Make sure we have enough data to handle extended link bandwidth
Check if FQDN capability length is in valid ranges
Allow using different ASNs per VRF instances
Send End-of-RIB not only if Graceful-Restart capability is received
Implement backpressure to avoid CPU hog
Ignore validating the attribute flags if path-attribute is configured
Prevent deletion of BGP peer groups associated with bgp listen range
Inherit some peer flags from the peer-group
Allow specification of AS 0 for RPKI commands
Allow using maximum-prefix for EVPN
Increase install/uninstall speed of EVPN VNIs
Update default-originate route-map actual map structure
Include unsuppress-map as a valid outgoing eBGP policy
Allow dynamically disable graceful-restart/long-lived graceful-restart
Unset advertised capabilities if the capability is disabled
Aggregated summary-only remove suppressed from EVPN
isisd
Fix crash when deactivating ISIS adjacency on the interface
Fix show isis database [detail] json
Fix show isis algorithm
Fix crash when configuring the circuit type for the interface
Fix IP/IPv6 reachability TLVs
When the metric-type is configured as "wide", the IS-IS generates
incorrect metric values for IPv4 directly connected routes
Add link state support for SRv6 adjacencies
The hold time of hello packets on a P2P link does not match the
sending interval
mgmtd
Implement YANG RPC/action support
ospfd
Fix crash in OSPF TE parsing
Fix the bug where ip_ospf_dead-interval_minimal_hello-multiplier did
not reset the hello timer
Fix no write-multiplier command
Fix no maximum-paths command
Solved crash in RI parsing with OSPF TE
Assure OSPF AS External routes are installed after the link flap
Send LS Updates in response to LS Request as unicast
ospf6d
Handle topo change in Graceful-Restart Helper mode for max-age LSAs
Prevent heap-buffer-overflow with an unknown type
Redistribute metric for AS-external route
Fix next-hop computation for inter-area multi-ABR ECMP
Fix interface type vs. connected routes updates
pathd
Retry synchronous label-manager ZAPI connection
pimd
Fix null register before aging out reg-stop
Fix dr-priority range
Fix crash unconfiguring rp keepalive timer
lib
Fix keychain NB crash
Do not convert EVPN prefixes into IPv4/IPv6 if not needed
ripd
Fix clear ip rip command
ripngd
Fix clear ipv6 ripng command
tools
Handle seq num for BGP as-path in frr-reload.py
vtysh
Fix 'show ip[v6] prefix-list ... json' formatting by moving it to vtysh
Fix show route-map command when calling via do
Show ip ospf network ... even if it's not the same as the interface
type
zebra
Fix mpls label bind command
Fix excessive exit commands
Fix static SRv6 segment-list SID order
Fix JSON output for show route summary json
Fix malformed json output for multiple vrfs in command show ip route
vrf all json
Fix crash if MAC-VLAN link in another netns
Fix crash on MAC-VLAN link down/up
Deny the routes if ip protocol CLI refers to an undefined route-map
Bridge flap handle VLAN membership update
Add show fpm status [json] command
9.1.1
Fixed CVEs
CVE-2024-31950
CVE-2024-31951
CVE-2024-31949
Bug Fixes
bgpd
"default-originate" shouldn't withdraw non-default routes
Aggr summary-only suppressed export to evpn
Allow using optional table id for negative `no set table x` command
Arrange peer notification to after zebra announce
Check bgp evpn instance presence in soo
Convert the bgp_advertise_attr->adv to a fifo
Do not show tcp mss if the socket is broken
Ensure bgp does not stop monitoring nexthops
Ensure community data is freed in some cases.
Ensure that the correct aspath is free'd
Fix `match peer` when switching between ipv4/ipv6/interface
Fix `no set as-path prepend asnum...`
Fix bgp_best_selection heap-use-after-free
Fix crash when deleting the srv6 locator
Fix display when using `missing-as-worst`
Fix dynamic peer graceful restart race condition
Fix ecommunity_fill_pbr_action heap-buffer-overflow
Fix error handling when receiving bgp prefix sid attribute
Fix errors handling for mp/gr capabilities as dynamic capability
Fix format overflow for graceful-restart debug logs
Fix logging message when receiving a software version capability
Fix no bgp as-path access-list issue
Fix route-map match probability deconfiguration callback
Fix srv6 memory leak detection
Fix the order of null check and zapi decode
Fix vrf leaking with 'no bgp network import-check
Free memory for srv6 functions and locator chunks
Ignore validating the attribute flags if path-attribute is configured
Include unsuppress-map as a valid outgoing policy
Lttng tp add evpn route events
Make `suppress-fib-pending` clear peering
Note when receiving but not understanding a route notification
Prevent from one more cve triggering this place
Set correct ttl for the dynamic neighbor peers
Update default-originate route-map actual map structure
Revert "Fix pointer arithmetic in bgp snmp module"
doc
Add param range for graceful-restart helper supported-grace-time
Remove duplicated show route-map
isisd
Fix _isis_spftree_del heap-use-after-free
Fix dislaying lsp id
Fix heap-after-free with prefix sid
Fix ip/ipv6 reachability tlvs
lib
Check for not being a blackhole route
Fix show route map json output
Do not convert evpn prefixes into ipv4/ipv6 if not needed
Replace deprecated ares_gethostbyname
Replace deprecated ares_process()
nhrpd
Fix race condition
Fix core dump on shutdown
ospf6d
Ospfv3 route change comparision fixed for asbr-only change
Prevent heap-buffer-overflow with unknown type
ospfd
Add support for "no router-info [<area|as>] command"
Can not delete "segment-routing node-msd" when sr if off
Correct lsa parser which fulfill the ted
Correct opaque lsa extended parser
Correct sid check size
Fix ospf dead-interval minimal hello-multiplier param range
Fix the bug where ip_ospf_dead-interval_minimal_hello-multiplier did
not reset hello timer
Protect call to get_edge() in ospf_te.c
Solved crash in ospf te parsing
Solved crash in ri parsing with ospf te
Revert "Fix some dicey pointer arith in snmp module"
pbrd
Fix map seq installed flag in json
Fix pbr handling for last rule deletion
pimd
Fix crash unconfiguring rp keepalive timer
Fix crash when configuring ssmpingd
Fix dr-priority range
Fix null register before aging out reg-stop
Fix order of operations for evaluating join
Re-evaluated s,g oils upon rp changes and for empty sg upstream oils
Fix crash when mixing ssm/any-source joins
staticd
Fix changing to source auto in bfd monitor
tests
Check for 0.0.0.0/1 in bgp_default_route
Check if ibgp session can drop invalid aigp attribute
Extend tests for aspath exclude
Update ospf te topotests
tools
Apply black formatting for tools/frr-reload.py
Fix frr-reload interface desc cmd
Fix frr-reload multiple no description cmds
Fix frr-reload multiple no description cmds
Use error log level when failing to execute commands via frr-reload.py
topotests
Do not check table version
Redispatch tests in bfd_topo3
Test wrong bfd source in bfd_topo3
Vpnv4 route leaking with no import-check
vtysh
Show `ip ospf network ...` even if it's not the same as the
interface type
zebra
Add missing whitespace when printing route entry status
Deny the routes if ip protocol cli refers to an undefined rmap
Don't deref vxlan-vni array
Fix crash if macvlan link in another netns
Fix crash on macvlan link down/up
Fix evpn svd based remote nh neigh del
Fix mpls command
Fix route deletion during zebra shutdown
The dplane_fpm_nl return path leaks memory
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
config/rootfiles/packages/frr | 14 ++++++++++++--
lfs/frr | 6 +++---
2 files changed, 15 insertions(+), 5 deletions(-)
diff --git a/config/rootfiles/packages/frr b/config/rootfiles/packages/frr
index 92b31ffe9..b5661dff4 100644
--- a/config/rootfiles/packages/frr
+++ b/config/rootfiles/packages/frr
@@ -36,9 +36,11 @@ usr/bin/vtysh
#usr/include/frr/frr_pthread.h
#usr/include/frr/frratomic.h
#usr/include/frr/frrcu.h
+#usr/include/frr/frrdistance.h
#usr/include/frr/frrevent.h
#usr/include/frr/frrlua.h
#usr/include/frr/frrscript.h
+#usr/include/frr/frrsendmmsg.h
#usr/include/frr/frrstr.h
#usr/include/frr/graph.h
#usr/include/frr/hash.h
@@ -56,6 +58,7 @@ usr/bin/vtysh
#usr/include/frr/ldp_sync.h
#usr/include/frr/lib_errors.h
#usr/include/frr/lib_vty.h
+#usr/include/frr/libagentx.h
#usr/include/frr/libfrr.h
#usr/include/frr/libfrr_trace.h
#usr/include/frr/libospf.h
@@ -67,11 +70,11 @@ usr/bin/vtysh
#usr/include/frr/memory.h
#usr/include/frr/mgmt.pb-c.h
#usr/include/frr/mgmt_be_client.h
+#usr/include/frr/mgmt_defines.h
#usr/include/frr/mgmt_fe_client.h
#usr/include/frr/mgmt_msg.h
+#usr/include/frr/mgmt_msg_native.h
#usr/include/frr/mgmt_pb.h
-#usr/include/frr/mgmtd
-#usr/include/frr/mgmtd/mgmt_defines.h
#usr/include/frr/mlag.h
#usr/include/frr/module.h
#usr/include/frr/monotime.h
@@ -152,6 +155,7 @@ usr/bin/vtysh
#usr/include/frr/zlog.h
#usr/include/frr/zlog_5424.h
#usr/include/frr/zlog_live.h
+#usr/include/frr/zlog_recirculate.h
#usr/include/frr/zlog_targets.h
#usr/lib/frr
#usr/lib/frr/modules
@@ -181,6 +185,7 @@ usr/lib/libmgmt_be_nb.so.0
usr/lib/libmgmt_be_nb.so.0.0.0
usr/sbin/bgpd
usr/sbin/fabricd
+usr/sbin/fpm_listener
usr/sbin/frr
usr/sbin/frr-reload
usr/sbin/frr-reload.py
@@ -211,6 +216,7 @@ usr/sbin/zebra
#usr/share/yang/frr-bgp-types.yang
#usr/share/yang/frr-bgp.yang
#usr/share/yang/frr-deviations-bgp-datacenter.yang
+#usr/share/yang/frr-deviations-ietf-key-chain.yang
#usr/share/yang/frr-filter.yang
#usr/share/yang/frr-if-rmap.yang
#usr/share/yang/frr-interface.yang
@@ -231,5 +237,9 @@ usr/sbin/zebra
#usr/share/yang/frr-zebra.yang
#usr/share/yang/ietf-bgp-types.yang
#usr/share/yang/ietf-interfaces.yang
+#usr/share/yang/ietf-key-chain.yang
+#usr/share/yang/ietf-netconf-acm.yang
+#usr/share/yang/ietf-netconf-with-defaults.yang
+#usr/share/yang/ietf-netconf.yang
#usr/share/yang/ietf-routing-types.yang
var/ipfire/backup/addons/includes/frr
diff --git a/lfs/frr b/lfs/frr
index ea5a6b9e9..577698cd6 100644
--- a/lfs/frr
+++ b/lfs/frr
@@ -26,7 +26,7 @@ include Config
SUMMARY = FRRouting Routing daemon
-VER = 9.1
+VER = 10.1
THISAPP = frr-frr-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = frr
-PAK_VER = 9
+PAK_VER = 10
DEPS =
@@ -50,7 +50,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = ba64f9455c38441f8cadce4eed435fb86344244e98bd1b675335887fb098be29adc035d722d3c128e136a4c6b0aa1adcbdc0e22815702e52170da940a5caf20a
+$(DL_FILE)_BLAKE2 = 72dccecd6ad4f64a635d17ca99f2b1583ea83697901a0078270c033effa53ece2a4fe169d1b46d9393000a437bb48e562f49b2a94b48f4d2d013d2204322fde8
install : $(TARGET)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] haproxy: Update to version 3.0.3
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (4 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] frr: Update to version 10.1 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] hplip: Update to version 3.24.4 Adolf Belka
` (6 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 1481 bytes --]
- Update from version 2.9.2 to 3.0.3
- Update of rootfile not required
- Changelog is over 1000 lines long. Too much to include here. See CHANGELOG file in the
source tarball for details. No CVE fixes listed inh the changelog.
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/haproxy | 8 ++++----
1 file changed, 4 insertions(+), 4 deletions(-)
diff --git a/lfs/haproxy b/lfs/haproxy
index bae1a7b16..c433d40e0 100644
--- a/lfs/haproxy
+++ b/lfs/haproxy
@@ -26,9 +26,9 @@ include Config
SUMMARY = The Reliable, High Performance TCP/HTTP Load Balancer
-VER = 2.9.2
+VER = 3.0.3
-# From: https://www.haproxy.org/download/2.9/src/haproxy-2.9.2.tar.gz
+# From: https://www.haproxy.org/download/3.0/src/haproxy-3.0.3.tar.gz
THISAPP = haproxy-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -36,7 +36,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = haproxy
-PAK_VER = 29
+PAK_VER = 30
DEPS =
@@ -54,7 +54,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 257a594fdb18e50c99e4256aa364d2ea55b56e39bfda0435c921927939a09231be5ae2bd7f39e23286febb343fa0dca5fc33f9b279461c5083050898390b21db
+$(DL_FILE)_BLAKE2 = d5f10110f0c95e214885b3a2248ed048adaf747e382fd343f90cfd35ed58e58f71a643260d87208e70f4d37101ba80471cd06ccd2d4cd9915031aa42fc86104f
install : $(TARGET)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] hplip: Update to version 3.24.4
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (5 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] haproxy: Update to version 3.0.3 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] iperf: Update to version 2.2.0 Adolf Belka
` (5 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 7678 bytes --]
- Update from version 3.23.12 to 3.24.4
- Update of rootfile
- Changelog
3.24.4
Added support for the following new Printers:
HP OfficeJet 8120 All-in-One series
HP OfficeJet Pro 8120 All-in-One series
HP OfficeJet 8130 All-in-One series
HP OfficeJet Pro 8130 All-in-One series
HP OfficeJet Pro 9720 Series
HP OfficeJet Pro 9730 Series
Added support for following new Distro:
Ubuntu 23.10
Debian 12
Fedora 39
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
config/rootfiles/packages/hplip | 86 +++++++++++++++++++--------------
lfs/hplip | 17 +++----
2 files changed, 57 insertions(+), 46 deletions(-)
diff --git a/config/rootfiles/packages/hplip b/config/rootfiles/packages/hplip
index de35b63e9..da4860318 100644
--- a/config/rootfiles/packages/hplip
+++ b/config/rootfiles/packages/hplip
@@ -1,40 +1,40 @@
-#usr/share/doc/hplip-3.23.12
-#usr/share/doc/hplip-3.23.12/COPYING
-#usr/share/doc/hplip-3.23.12/README_LIBJPG
-#usr/share/doc/hplip-3.23.12/commandline.html
-#usr/share/doc/hplip-3.23.12/copying.html
-#usr/share/doc/hplip-3.23.12/copyright
-#usr/share/doc/hplip-3.23.12/devicemanager.html
-#usr/share/doc/hplip-3.23.12/faxtrouble.html
-#usr/share/doc/hplip-3.23.12/gettinghelp.html
-#usr/share/doc/hplip-3.23.12/hpscan.html
-#usr/share/doc/hplip-3.23.12/images
-#usr/share/doc/hplip-3.23.12/images/favicon.ico
-#usr/share/doc/hplip-3.23.12/images/print.png
-#usr/share/doc/hplip-3.23.12/images/toolbox_actions.png
-#usr/share/doc/hplip-3.23.12/images/toolbox_fax.png
-#usr/share/doc/hplip-3.23.12/images/toolbox_print_control.png
-#usr/share/doc/hplip-3.23.12/images/toolbox_print_settings.png
-#usr/share/doc/hplip-3.23.12/images/toolbox_status.png
-#usr/share/doc/hplip-3.23.12/images/toolbox_supplies.png
-#usr/share/doc/hplip-3.23.12/images/xsane.png
-#usr/share/doc/hplip-3.23.12/index.html
-#usr/share/doc/hplip-3.23.12/mainttask.html
-#usr/share/doc/hplip-3.23.12/plugins.html
-#usr/share/doc/hplip-3.23.12/print.html
-#usr/share/doc/hplip-3.23.12/printing.html
-#usr/share/doc/hplip-3.23.12/printoptions.html
-#usr/share/doc/hplip-3.23.12/printtroubleshooting.html
-#usr/share/doc/hplip-3.23.12/scanning.html
-#usr/share/doc/hplip-3.23.12/scantrouble.html
-#usr/share/doc/hplip-3.23.12/sendfax.html
-#usr/share/doc/hplip-3.23.12/setup.html
-#usr/share/doc/hplip-3.23.12/styles
-#usr/share/doc/hplip-3.23.12/styles/css.css
-#usr/share/doc/hplip-3.23.12/systray.html
-#usr/share/doc/hplip-3.23.12/troubleshooting.html
-#usr/share/doc/hplip-3.23.12/uninstalling.html
-#usr/share/doc/hplip-3.23.12/upgrading.html
+#usr/share/doc/hplip-3.24.4
+#usr/share/doc/hplip-3.24.4/COPYING
+#usr/share/doc/hplip-3.24.4/README_LIBJPG
+#usr/share/doc/hplip-3.24.4/commandline.html
+#usr/share/doc/hplip-3.24.4/copying.html
+#usr/share/doc/hplip-3.24.4/copyright
+#usr/share/doc/hplip-3.24.4/devicemanager.html
+#usr/share/doc/hplip-3.24.4/faxtrouble.html
+#usr/share/doc/hplip-3.24.4/gettinghelp.html
+#usr/share/doc/hplip-3.24.4/hpscan.html
+#usr/share/doc/hplip-3.24.4/images
+#usr/share/doc/hplip-3.24.4/images/favicon.ico
+#usr/share/doc/hplip-3.24.4/images/print.png
+#usr/share/doc/hplip-3.24.4/images/toolbox_actions.png
+#usr/share/doc/hplip-3.24.4/images/toolbox_fax.png
+#usr/share/doc/hplip-3.24.4/images/toolbox_print_control.png
+#usr/share/doc/hplip-3.24.4/images/toolbox_print_settings.png
+#usr/share/doc/hplip-3.24.4/images/toolbox_status.png
+#usr/share/doc/hplip-3.24.4/images/toolbox_supplies.png
+#usr/share/doc/hplip-3.24.4/images/xsane.png
+#usr/share/doc/hplip-3.24.4/index.html
+#usr/share/doc/hplip-3.24.4/mainttask.html
+#usr/share/doc/hplip-3.24.4/plugins.html
+#usr/share/doc/hplip-3.24.4/print.html
+#usr/share/doc/hplip-3.24.4/printing.html
+#usr/share/doc/hplip-3.24.4/printoptions.html
+#usr/share/doc/hplip-3.24.4/printtroubleshooting.html
+#usr/share/doc/hplip-3.24.4/scanning.html
+#usr/share/doc/hplip-3.24.4/scantrouble.html
+#usr/share/doc/hplip-3.24.4/sendfax.html
+#usr/share/doc/hplip-3.24.4/setup.html
+#usr/share/doc/hplip-3.24.4/styles
+#usr/share/doc/hplip-3.24.4/styles/css.css
+#usr/share/doc/hplip-3.24.4/systray.html
+#usr/share/doc/hplip-3.24.4/troubleshooting.html
+#usr/share/doc/hplip-3.24.4/uninstalling.html
+#usr/share/doc/hplip-3.24.4/upgrading.html
#usr/share/hplip
usr/share/hplip/dat2drv
usr/share/hplip/locatedriver
@@ -1064,6 +1064,10 @@ usr/share/ppd/HP
#usr/share/ppd/HP/hp-officejet_8010_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_8020_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_8040_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_8120_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_8120e_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_8130_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_8130e_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_8700.ppd.gz
#usr/share/ppd/HP/hp-officejet_9010_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_9100_series-pcl3.ppd.gz
@@ -1111,6 +1115,10 @@ usr/share/ppd/HP
#usr/share/ppd/HP/hp-officejet_pro_8020_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_8030_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_8100.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_8120_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_8120e_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_8130_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_8130e_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_8210-ps.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_8500_a909a.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_8500_a909g.ppd.gz
@@ -1132,6 +1140,10 @@ usr/share/ppd/HP
#usr/share/ppd/HP/hp-officejet_pro_9110b_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_9120b_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_9130b_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_9720_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_9720e_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_9730_series.ppd.gz
+#usr/share/ppd/HP/hp-officejet_pro_9730e_series.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_k5300.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_k5400.ppd.gz
#usr/share/ppd/HP/hp-officejet_pro_k550.ppd.gz
diff --git a/lfs/hplip b/lfs/hplip
index f56f9576b..968bb5efa 100644
--- a/lfs/hplip
+++ b/lfs/hplip
@@ -26,7 +26,7 @@ include Config
SUMMARY = HP's Printing, Scanning, and Faxing Software
-VER = 3.23.12
+VER = 3.24.4
THISAPP = hplip-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = hplip
-PAK_VER = 11
+PAK_VER = 12
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 752a5b75855677e4f8b5b8738181d40c426268be4e393e5df7565c78efca68389e86d92f21002a733c0b2d5d62913bef3986e4bedd36a9f35f205c11e6027e7a
+$(DL_FILE)_BLAKE2 = 0b5c93465f6d9e30916bf57fd7f2d490d2f04ef80ed1654a7d2c6adc57a5293e358720a71bbb76757a1496d9f7ca05f077f6e9ea62cfa243319fe9d551440710
install : $(TARGET)
@@ -82,12 +82,11 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
$(UPDATE_AUTOMAKE)
- cd $(DIR_APP) && ./configure \
- --prefix=/usr \
- --enable-hpijs-only-build \
- --disable-network-build \
- --disable-scan-build
-
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr \
+ --enable-hpijs-only-build \
+ --disable-network-build \
+ --disable-scan-build
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] iperf: Update to version 2.2.0
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (6 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] hplip: Update to version 3.24.4 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] keepalived: Update to version 2.3.1 Adolf Belka
` (4 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 8649 bytes --]
- Update from version 2.1.8 to 2.2.0
- Update of rootfile not required
- Changelog
2.2.0
o new ./configure --enable-summing-debug option to help with summing debug
o select ahead of writes slow down UDP performance. support ./configure
--disable-write-select
o support fo -b 0 with UDP, unlimited load or no delay between writes
o support for --sync-transfer-id so client and server will match the ids and
give a remap message
o support --dscp command line option
o support for application level retries and minimum retry interval of the TCP
connect() syscall via --connect-retry-time and --connect-retry-timer,
repsectively
o support for --ignore-shutdown so test will end on writes vs the BDP drain and
TCP close/shutdown, recommended not to use this but in rare cases
o support for --fq-rate-step and --fq-rate-step-interval
o CCAs per --tcp-cca, --tcp-congestion, etc neeed to be case sensitive
o support for both packets and bytes inflight taken from tcp_info struct amd pkt
calc of (tcp_info_buf.tcpi_unacked - tcp_info_buf.tcpi_sacked -
tcp_info_buf.tcpi_lost + tcp_info_buf.tcpi_retrans)
o man page updates and -h to reflect new options, better descriptions
o lots of work around summing with parallel threads, new implementation based on
interval or slot counters, hopefully should work reliably
o --bounceback tests are much more reliable and robust
o Improve event handling around select timeouts, helps with larger -P values and
summing
o use the getsockopt IP_TOS for the displayed output, warn when set and get
don't match
o better tos byte output, include dscp and ecn fields individually
o better tos setting code for both v6 and v4, so they behave the same around
checks and warnings
o much better NULL events to help with reporter processing even when traffic is
not flowing
o support for a new string report
o python flows work around CDF based tests
o rate limit fflush calls to a max of one every millisecond or 1000 per sec
o remove superfulous fflush calls
o reports when P = 1 and --sum-only need sum outputs
o enable summing with --incr-dstip
o add macro TIME_GET_NOW to set a struct timeval in a portable manner
o code readability improvements with enums, bools, etc.
o fix for TCP rate limited and -l less than min burst size
o only use linux/tcp.h when absolutely needed, otherwise use netinet/tcp.h
o print bounceback OWD tx/rx in interval reports
o add flows Makefiles for tarball or make dist-all
o support interval reports for bounceback histograms
o support for TCP working loads and UDP primary flows, including UDP
isochronous, per ticket 283
o fix working-load with isoch so working-load streams are capacity seeking
o exit when CCA not supported or read of the current CCA doesn't match requested
CCA
o add more make check tests
o add support for omit string (omit code not ready for this release)
o pyflows qdisc settings and outputs
o add first send pacing with --tx-starttime so listener threads udp_accept has
time to perform udp_accept() between the client threads
o adjust the sender time per the client delay and the client first write, i.e.
subtract out this delay in the calculations
o fixes for small packets and --tx-starttime
o use more modern multicast socket options (now in src/iperf_multicast_api.c)
o warn on bind port not sent with --incr-srcport
o display fq-rate values in outputs when --fq-rate is used
o add support for --test-exchange-timeout
o fixes around wait_tick
o add support for TCP_TX_DELAY via --tcp-tx-delay <val ms> option on both client
and server
o pass the CCA from client to server
o support burst-size with different write sizes and don't require --burst-period
o output traffic thread send scheduling error stats in final ouput
o output clock unsync stats with --bounceback
o add warn message on MSG_CTRUNC
o UDP select fixes
o enable TCP_NOTSENTLOWAT and set to a default small value with --tcp-write-times
o default histogram max binning to 10 seconds
o add a max timestamp to histogram outputs so user can find packets in pcaps or
equivalent
o autoconf change for struct ip_mreqn
o print errno on writen fail
2.1.9
o fixed traffic setitimer to use uintmax_t vs int, supporting large values
o --bounceback officially supported (including Windows) for repsonsiveness test
scenarios
o deprecated --bounceback-congest introduced in 2.1.8, replaced by --working-loads
o --working-loads support generalized; works with --bounceback, --connect-only &
--burst-period
o default TCP_NOTSENT_LOWAT with the --working-loads concurrent traffic
o add support for GMT time formatting via --utc option
o --trip-times will auto set TCP_NOTSENT_LOWAT
o CSV output fixes for reverse
o CSV output regressions fixed per sum outputs using negative transfer ids
o CSV output support with --enhanced
o Fix to isoch wait_tick with Windows
o fix support for --txstart-time with --bounceback
o Add support for summing histograms in histogram sum outputs
o Multiple sum report fixes per threading & needing mutex protections
o Jitter packet IPG calcluations ignore inter frame gaps
o Isoch jitter output to use running value vs sampled value
o Add support for --jitter-histograms
o man page content updates
o output isoch scheduling errors at end of isoch run
o PRIdMAX fix for ARM systems
o better work around in isochronous with Windows per early return of
WaitForSingleObject()
o fix SO_BINDTODEVICE regression
o fix v6 source port parsing with -B and brackets
o fix malloc error with --hideips
o fixes for rate limited TCP with --trip-times
o add support for TCL_NOTSENT_LOWAT with rate limited TCP
o permit key now supports -P using listen() with a backlog, no longer single
thread limited
o fixes for zero valued permit-key
o fixes for multiple permit-key regressions
o fix token bucket delay with TCP await write
o fix isMulticast test for ipv4 - previous logic indicate true for 240.x.x.x
which is not multicast
o fix regression on jitter calc - starts on second transit time
o add cmsg for loop with UDP rx timestamp, cmsg processing best to use loop w/test
o use stdout and exit(0) for -h and -v (vs stderr and exit(1))
o add python facetime scripts
o Fix single thread compile breakage
o fix windows cross compile
o multiple spelling error fixes in comments and man page
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/iperf | 11 ++++++-----
1 file changed, 6 insertions(+), 5 deletions(-)
diff --git a/lfs/iperf b/lfs/iperf
index e3f78173f..31ea623a9 100644
--- a/lfs/iperf
+++ b/lfs/iperf
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,7 +26,7 @@ include Config
SUMMARY = A tool to measure network performance
-VER = 2.1.8
+VER = 2.2.0
THISAPP = iperf-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = iperf
-PAK_VER = 7
+PAK_VER = 8
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = a3e9f214b4c00911d1d6221f17cf54602169f2787125b54b86486cb07e5dcc118c9a7c0ba743ae643e060a06316e1c4e85d349dd6b97263986e194115c924f0d
+$(DL_FILE)_BLAKE2 = 9dacd6146ddff7eda2a3e9402c2d4be06b8793816f93064ada6ab1897ea0e89037ef104a445028376e7be556ea635ab6bea4329664846c8ceae8f221dc162ab8
install : $(TARGET)
@@ -82,7 +82,8 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
$(UPDATE_AUTOMAKE)
- cd $(DIR_APP) && ./configure --prefix=/usr
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
@rm -rf $(DIR_APP)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] keepalived: Update to version 2.3.1
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (7 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] iperf: Update to version 2.2.0 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] ncat: Update to version 7.95 Adolf Belka
` (3 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 14921 bytes --]
- Update from version 2.2.8 to 2.3.1
- Update of rootfile not required
- Changelog
2.3.1
This is minutes release to quickly fix minor regression.
Fixes
conf: fix secondary config file location when using –prefix=/usr Commit
42a746c - “configure: ${prefix} defaults to NONE which messes up
DEFAULT_CONFIG_FILE” broke the checking of whether a secondary default
config file location is required
2.3.0
This release brings improvements and fix some minor issues reported. Yearly
release.
New
vrrp: For use_vmac and use_ipvlan, copy the group from the base interface.
It is useful in many instances to set up firewall rules based on
interface groups so that sets of interfaces may be aggregated by group and
matched with a single rule rather than by listing them all. Prior to this
change, when use_vmac or use_ipvlan is used, new interfaces are created
with the default group, which breaks this ability. Further complicating the
issue is that nftables resolves interface names to ifindex at load time.
This is problematic with keepalived’s interface creation, which usually
comes after the firewall loading, forcing the use of iifname, oifname
instead (similar to iptables -i, -o). By copying the group value, such
firewall rules can continue to work regardless of the use_vmac or
use_ipvlan settings, since packets may now arrive on, or be routed out
from, the new interfaces.
vrrp: Addd name option for use_vmac and use_ipvlan. This is to allow an
interface name of “bridge” etc.
vrrp: Add interface group option for VMACs and ipvlans. Now that the
interface group of a VMAC or ipvlan is set, by default, to match its parent
interface, this option now allows the group of the VMAC or ipvlan to be
explicitly configured and set.
ipvs: Add snmp_rs_stats_update_interval. This compliments
snmp_vs_stats_update_interval, and also real server stats are now only
fetched from the kernel when there is an SNMP request for them; i.e. VS
stats and RS stats are updated separately.
conf: Add global keyword use_symlink_paths. By default keepalived resolves
all symbolic links in path names of scripts to the real path. This commit
adds the use_symlink_paths option to maintain the symlinks in paths, so
that users can update symlinks in order to update the scripts being called.
doc: Add documentation for MH and TWOS schedulers.
global: Add per process gprof profiling.
systemd: Add KEEPALIVED_OPTION for non-root service file.
systemd: Add comment in non-root service file for old systemds.
Improvements
vrrp: Remove extraneous log message for netlink interface message.
vrrp: Allow DBus to work with VRRP instances without configured interface.
keepalived uses “none” for the interface in the DBus path if a VRRP
instance has no configured interface. However, it was not checking
explicitly for “none” when a query was received. This commit now adds a
specific check.
vrrp: Allow specification of string used by DBus for no interface.
vrrp: check prefix length when checking if deleted address is a VIP. It is
possible, for example, to configure both 10.1.0.3/32 and 10.1.0.3/24 on the
same interface. When checking whether an address deleted from an interface
is one of our VIPs, we need to also check the prefix length.
vrrp: Set sysctl arp_ignore to 1 on IPv6 VMACs. Setting arp_ignore to 1
ensures that the VMAC interface does not respond to ARP requests for IPv4
addresses not configured on the VMAC.
vrrp: Go to fault state if fail to add IPv6 link-local address to VMAC. If
an IPv6 VRRP instance uses a VMAC, but adding a link-local address to the
interface fails, then the vrrp instance now transitions to fault state,
just as happens if the link-local address is removed after it has been added.
vrrp: Don’t send IPv6 advert from interface with no address. If an interface
has no IPv6 address, no advert can be sent. Rather that logging an error
when the send fails, simply don’t send the advert.
vrrp: Check interface for static routes if deleted. vrrp: Check interface
for static routes if deleted route_is_ours() checked the outgoing interface
for virtual routes but not for static routes. This commit now adds checking
of the outgoing interface for static routes, and now moves the code to
compare routes into a separate function used for both virtual and static
routes.
vrrp: remove logging on status output. A message is output to the log each
time the status is queried. This is not necessary and can therefore be
omitted.
vrrp: Use addattr32() for setting link group. Set link group for ipvlan
interfaces, just like for VMACs.
ipvs: ping check extension. use consistent ICMP id and fix sequence number
By keeping the sockets used for pings open, the ICMP id field now remains
the same for each echo request. The sequence number is now per ping check,
and is now sent in big endian order.
ipvs: Reduce logging of activating health checkers. Don’t log activating
checkers after a reload if they are already active.
ipvs: Remove checkers_queue. A configuration with 2277 virtual servers, with
a total of 37205 real servers with each real server having one checker was
taking 132 seconds to reload. This commit reduces the reload time to 0.24
seconds, a reduction of 99.8%! The problem was due to every real server
iterating through all checkers, 37205 * 37205 = 1,384,212,025 iterations,
not only once but several times. The code now maintains a list of checkers
for each real server. The disadvantage of this is that to iterate through
all checkers requires iterating through all virtual servers, and all their
real servers and then for each real server the list of checkers. If there
are relatively few checkers compared to real servers, this will take longer
than using the checkers_queue, but using a queue per real server is still
fast, and the only time the code iterates through all the checkers is at
startup/reload, other than dumping the configuration.
ipvs: don’t call protocol_to_index() unless using auto fwmarks.
protocol_to_index() must only be called when there is an index. This is
when the virtual server uses a virtual server group that is using auto
fwmarks.
ipvs: add set and alive status for sorry servers in keepalived_check.data.
ipvs: Reinstate non-failed real servers if remove sorry server. When there
is no sorry server, the quorum is not used, and real servers are only
removed if a checker fails. On the other hand if there is a sorry server,
if the number of alive real servers falls below the quorum, all non-failed
real servers are removed when the sorry server is added. If the sorry
server is remomed from the configuration, non-failed real servers need to
be reinstated.
ipvs: don’t remove sorry server if inhibit added but server is alive.
ipvs: inhibit extensions: If inhibit is changed on a failed real server,
add/remove it. If inhibit is added to inactive sorry server set weight 0.
If inhibit cleared for inactive sorry server, clear s_svr->set.
ipvs: Add snmp_vs_stats_update_interval for updating SNMP stats. The timer
for updating VS and RS stats for SNMP was hard coded to 5 seconds. This
commit still deffaults to 5 seconds but allows the timer to be configured.
ipvs: Misc SNMP updates and extensions. Don’t duplicate storage of 32 bit
SNMP stats. Use correct variable for returning 64 bit stats for SNMP. Add
counter64 options for 64 bit SNMP stats. Use SNMP variable3/4/7 instead of
variable8 where appropriate. streamline SNMP real server code when no sorry
server. Merge several SNMP functions that were doing nearly the same thing.
Streamline finding VS group entry for SNMP. Streamline finding RS for SNMP.
Streamline finding VS for SNMP. set var_len = 0 when returning an error to
SNMP. fix building with SNMP support without using netlink interface.
systemd: Change NotifyAccess to be main rather than all for non-root.
doc: Clarify documentation for “weight” in track_process. The default value
for weight should be 0, and not 1 as previously stated.
doc: update description for v3_checksum_as_v2.
Fixes
vrrp: Stop link local VMAC address responging to neighbour solicit. When an
IPv6 VRRP instance using VMAC is in backup state, the link local address
configured on the VMAC interface is the same as the link local address on
the parent interface of the VMAC. This causes a problem with switches
learning the MAC address of the VMAC is now on the backup. This causes
packets meant to be sent to the master being sent to the backup. This
commit uses nftables/iptables to stop neighbour advertisements for the link
local address of the VMAC interface and its parent interface being sent
from the VMAC interface.
vrrp: fix global skip_check_adv_addr and strict_mode parsing.
skip_check_adv_addr and strict_mode take an option parameter, but
keepalived wasn’t parsing it, and assumed it was set on/true/yes.
vrrp: work around missing promiscuous netlink notifications. If the base
interface does not implement IFF_UNICAST_FLT, for example it is a bridge
interface, no netlink notification is sent by the kernel when promiscuity
is set on the base interface. The promiscuous state of the base interface
is correct in the kernel but it is in incorrect in daemons that listen to
the interface netlink messages (eg. DPDK). The issue is still there in
kernel 6.4.6. Force a notification by re-setting IFLA_GROUP for the base
interface.
vrrp: Fix specifying netlink_notify_msg for VMAC when name set. Trying to
specify a VMAC name as well as netlink_notify_msg did not work for use_vmac.
ipvs: fix issue in reload process when using virtual server groups. issue:
when using virtual server groups, remove vs entry in configure file and
then do reload, vs entry can not be removed. And add vs entry in configure
file and the do reload, rs with 0 port will be set. fix: in reload process
do the same action with ipvs_group_cmd. set rs port with vs port and update
live state
ipvs: add/remove sorry server of group server when reload. issue: when using
virtual server groups, if all rs down and sorry server up, at this time
remove/add vs entry in configure file and then do reload, vs entry can not
be removed. fix: add/remove sorry server same as normal rs when reload
server groups
check: if lost misc check child register checker agagin. issue: misc
check_child_thread timeout and remove child_pid form rb_data, timeout
callback of check_child_thread is not be called, if at this time misc
script done and exit, and child termination will do nothing because
child_pid was remove form rb_data. in this case timeou callback will not
register checker again, the checker will lost. fix: if lost misc check
child register checker again
lib: Stop setting MAGIC_PRESERVE_ATIME flag. On RedHat systems setting
MAGIC_PRESERVE_ATIME caused SELinux errors.
core: make startup/shutdown scripts work when not using –dont-fork.
check_start_stop_script_secure() checks that the parent process has not
changed while it is doing its checks, so we need to set the pid of the
parent process (main_pid) before calling the function. There is a further
complication that called getppid() too soon after a fork() with the parent
process exiting after the fork means that we don’t get the pid of the new
parent, so we need to loop until getppid() returns a diffweent pid.
core: initialise script structure in start_validate_reload_conf_child(). Due
to the path field not being set to NULL, it was attempting to exec a random
string when reload_check_config was configured.
systemd: Fix snmp option in non-root service file.
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/keepalived | 14 ++++++++------
1 file changed, 8 insertions(+), 6 deletions(-)
diff --git a/lfs/keepalived b/lfs/keepalived
index fbb60a2ff..ed1ad87d3 100644
--- a/lfs/keepalived
+++ b/lfs/keepalived
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,7 +26,7 @@ include Config
SUMMARY = A keepalive facility for Linux
-VER = 2.2.8
+VER = 2.3.1
THISAPP = keepalived-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = keepalived
-PAK_VER = 15
+PAK_VER = 16
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 3d8d738a0c4e6f00ea8dc3603813d21e52e259d301872f2db16c3373c3a034bedcf3f02e19d1b50855d90bbfece863e710d75a67e2d6dd057dfe451608a73fcb
+$(DL_FILE)_BLAKE2 = f4e0de6147f0a33d2d87f12da4dda014fa820ba3502fd8f92eaaa4a8e56d26ea4bb1902df5c7ee13e4b81336e3b237d1ddc8247e443ea351646259c9e1ddb90b
install : $(TARGET)
@@ -81,8 +81,10 @@ $(subst %,%_BLAKE2,$(objects)) :
$(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE)
- cd $(DIR_APP) && ./configure --prefix=/usr --sysconfdir=/etc \
- --with-kernel-dir=/usr
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr \
+ --sysconfdir=/etc \
+ --with-kernel-dir=/usr
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] ncat: Update to version 7.95
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (8 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] keepalived: Update to version 2.3.1 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] nmap: " Adolf Belka
` (2 subsequent siblings)
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 42705 bytes --]
- Update from version 7.94 to 7.95
- Update of rootfile
- Changelog
7.95
o [Windows] Upgraded Npcap (our Windows raw packet capturing and
transmission driver) from version 1.75 to the latest version 1.79. It
includes many performance improvements, bug fixes and feature
enhancements described at https://npcap.com/changelog.
o Integrated over 4000 IPv4 OS fingerprints submitted since June 2020. Added
336 fingerprints, bringing the new total to 6036. Additions include iOS 15 &
16, macOS Ventura & Monterey, Linux 6.1, OpenBSD 7.1, and lwIP 2.2
o Integrated over 2500 service/version detection fingerprints submitted since
June 2020. The signature count went up 1.4% to 12089, including 9 new
softmatches. We now detect 1246 protocols, including new additions of grpc,
mysqlx, essnet, remotemouse, and tuya.
o [NSE] Four new scripts from the DINA community
(https://github.com/DINA-community)
for querying industrial control systems:
+ hartip-info reads device information from devices using the Highway
Addressable Remote Transducer protocol
+ iec61850-mms queries devices using Manufacturing Message Specification
requests. [Dennis Rösch, Max Helbig]
+ multicast-profinet-discovery Sends a multicast PROFINET DCP Identify All
message and prints the responses. [Stefan Eiwanger, DINA-community]
+ profinet-cm-lookup queries the DCERPC endpoint mapper exposed via the
PNIO-CM service.
o Upgraded included libraries: Lua 5.4.6, libpcre2 10.43, zlib 1.3.1,
libssh2 1.11.0, liblinear 2.47
o [GH#2639] Upgraded OpenSSL binaries (for the Windows builds and for
RPMs) to version 3.0.13. CVEs resolved in this update include only 2
moderate-severity issues which we do not believe affect Nmap:
CVE-2023-5363 and CVE-2023-2650
o [Zenmap][Ndiff][GH#2649] Zenmap and Ndiff now use setuptools, not distutils
for packaging.
o [Ncat][GH#2685] Fixed Ncat UDP server mode to not quit after EOF on stdin.
Reported as Debian bug:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039613
o [GH#2672] Fixed an issue where TCP Connect scan (-sT) on Windows would fail to
open any sockets, leading to scans that never finish. [Daniel Miller]
o [NSE] ssh-auth-methods will now print the pre-authentication banner text when
available. Requires libssh2 1.11.0 or later. [Daniel Miller]
o [Zenmap][GH#2739] Fix a crash in Zenmap when changing a host comment.
o [NSE][GH#2766] Fix TLS 1.2 signature algorithms for EdDSA.
[Daniel Roethlisberger]
o [Zenmap][GH#2706] RPM spec files now correctly require the python3 package,
not python>=3
o Improvements to OS detection fingerprint matching, including a syntax change
for nmap-os-db that allows ranges within the TCP Options string. This leads
to more concise and maintainable fingerprints. [Daniel Miller]
o Improved the OS detection engine by using a new source port for each retry.
Scans from systems such as Windows that do not send RST for unsolicited
SYN|ACK responses were previously unable to get a response in subsequent
tries. [Daniel Miller]
o Several profile-guided optimizations of the port scan engine. [Daniel Miller]
o [GH#2731] Fix an out-of-bounds read which led to out-of-memory errors when
duplicate addresses were used with --exclude
o [GH#2609] Fixed a memory leak in Nsock: compiled pcap filters were not freed.
o [GH#2658] Fixed a crash when using service name wildcards with -p, as in -p
"http*"
o [NSE] Fixed DNS TXT record parsing which caused asn-query to fail in Nmap
7.80 and later. [David Fifield, Mike Pattrick]
o [NSE][GH#2727][GH#2728] Fixed packet size testing in KNX scripts [f0rw4rd]
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
config/rootfiles/packages/ncat | 846 ++++++++++++++++++++++++++++++++-
lfs/ncat | 25 +-
2 files changed, 853 insertions(+), 18 deletions(-)
diff --git a/config/rootfiles/packages/ncat b/config/rootfiles/packages/ncat
index f1cf714b7..5f660dd9f 100644
--- a/config/rootfiles/packages/ncat
+++ b/config/rootfiles/packages/ncat
@@ -1,5 +1,841 @@
-usr/bin/nc
-usr/bin/ncat
-#usr/share/man/man1/ncat.1
-#usr/share/ncat
-#usr/share/ncat/ca-bundle.crt
+usr/bin/nmap
+usr/bin/nping
+#usr/share/man/de/man1/nmap.1
+#usr/share/man/es/man1
+#usr/share/man/es/man1/nmap.1
+#usr/share/man/fr/man1/nmap.1
+#usr/share/man/hr/man1/nmap.1
+#usr/share/man/hu
+#usr/share/man/hu/man1
+#usr/share/man/hu/man1/nmap.1
+#usr/share/man/it/man1/nmap.1
+#usr/share/man/ja
+#usr/share/man/ja/man1
+#usr/share/man/ja/man1/nmap.1
+#usr/share/man/man1/nmap.1
+#usr/share/man/man1/nping.1
+#usr/share/man/pl/man1
+#usr/share/man/pl/man1/nmap.1
+#usr/share/man/pt_BR/man1/nmap.1
+#usr/share/man/pt_PT
+#usr/share/man/pt_PT/man1
+#usr/share/man/pt_PT/man1/nmap.1
+#usr/share/man/ro/man1/nmap.1
+#usr/share/man/ru/man1/nmap.1
+#usr/share/man/sk
+#usr/share/man/sk/man1
+#usr/share/man/sk/man1/nmap.1
+#usr/share/man/zh
+#usr/share/man/zh/man1
+#usr/share/man/zh/man1/nmap.1
+#usr/share/nmap
+usr/share/nmap/nmap-mac-prefixes
+usr/share/nmap/nmap-os-db
+usr/share/nmap/nmap-protocols
+usr/share/nmap/nmap-rpc
+usr/share/nmap/nmap-service-probes
+usr/share/nmap/nmap-services
+usr/share/nmap/nmap.dtd
+usr/share/nmap/nmap.xsl
+usr/share/nmap/nse_main.lua
+#usr/share/nmap/nselib
+usr/share/nmap/nselib/afp.lua
+usr/share/nmap/nselib/ajp.lua
+usr/share/nmap/nselib/amqp.lua
+usr/share/nmap/nselib/anyconnect.lua
+usr/share/nmap/nselib/asn1.lua
+usr/share/nmap/nselib/base32.lua
+usr/share/nmap/nselib/base64.lua
+usr/share/nmap/nselib/bin.lua
+usr/share/nmap/nselib/bitcoin.lua
+usr/share/nmap/nselib/bits.lua
+usr/share/nmap/nselib/bittorrent.lua
+usr/share/nmap/nselib/bjnp.lua
+usr/share/nmap/nselib/brute.lua
+usr/share/nmap/nselib/cassandra.lua
+usr/share/nmap/nselib/citrixxml.lua
+usr/share/nmap/nselib/coap.lua
+usr/share/nmap/nselib/comm.lua
+usr/share/nmap/nselib/creds.lua
+usr/share/nmap/nselib/cvs.lua
+#usr/share/nmap/nselib/data
+usr/share/nmap/nselib/data/dns-srv-names
+usr/share/nmap/nselib/data/drupal-modules.lst
+usr/share/nmap/nselib/data/drupal-themes.lst
+usr/share/nmap/nselib/data/enterprise_numbers.txt
+usr/share/nmap/nselib/data/favicon-db
+usr/share/nmap/nselib/data/http-default-accounts-fingerprints.lua
+usr/share/nmap/nselib/data/http-devframework-fingerprints.lua
+usr/share/nmap/nselib/data/http-fingerprints.lua
+usr/share/nmap/nselib/data/http-folders.txt
+usr/share/nmap/nselib/data/http-sql-errors.lst
+usr/share/nmap/nselib/data/http-web-files-extensions.lst
+usr/share/nmap/nselib/data/idnaMappings.lua
+usr/share/nmap/nselib/data/ike-fingerprints.lua
+#usr/share/nmap/nselib/data/jdwp-class
+#usr/share/nmap/nselib/data/jdwp-class/JDWPExecCmd.class
+#usr/share/nmap/nselib/data/jdwp-class/JDWPExecCmd.java
+#usr/share/nmap/nselib/data/jdwp-class/JDWPSystemInfo.class
+#usr/share/nmap/nselib/data/jdwp-class/JDWPSystemInfo.java
+#usr/share/nmap/nselib/data/jdwp-class/README.txt
+usr/share/nmap/nselib/data/mgroupnames.db
+usr/share/nmap/nselib/data/mysql-cis.audit
+usr/share/nmap/nselib/data/oracle-default-accounts.lst
+usr/share/nmap/nselib/data/oracle-sids
+usr/share/nmap/nselib/data/packetdecoders.lua
+usr/share/nmap/nselib/data/passwords.lst
+#usr/share/nmap/nselib/data/pixel.gif
+#usr/share/nmap/nselib/data/psexec
+#usr/share/nmap/nselib/data/psexec/README
+usr/share/nmap/nselib/data/psexec/backdoor.lua
+usr/share/nmap/nselib/data/psexec/default.lua
+usr/share/nmap/nselib/data/psexec/drives.lua
+usr/share/nmap/nselib/data/psexec/examples.lua
+usr/share/nmap/nselib/data/psexec/experimental.lua
+usr/share/nmap/nselib/data/psexec/network.lua
+usr/share/nmap/nselib/data/psexec/nmap_service.c
+usr/share/nmap/nselib/data/psexec/nmap_service.vcproj
+usr/share/nmap/nselib/data/psexec/pwdump.lua
+usr/share/nmap/nselib/data/publickeydb
+usr/share/nmap/nselib/data/rtsp-urls.txt
+usr/share/nmap/nselib/data/snmpcommunities.lst
+usr/share/nmap/nselib/data/ssl-fingerprints
+usr/share/nmap/nselib/data/targets-ipv6-wordlist
+usr/share/nmap/nselib/data/tftp-fingerprints.lua
+usr/share/nmap/nselib/data/tftplist.txt
+usr/share/nmap/nselib/data/usernames.lst
+usr/share/nmap/nselib/data/vhosts-default.lst
+usr/share/nmap/nselib/data/vhosts-full.lst
+usr/share/nmap/nselib/data/wp-plugins.lst
+usr/share/nmap/nselib/data/wp-themes.lst
+usr/share/nmap/nselib/datafiles.lua
+usr/share/nmap/nselib/datetime.lua
+usr/share/nmap/nselib/dhcp.lua
+usr/share/nmap/nselib/dhcp6.lua
+usr/share/nmap/nselib/dicom.lua
+usr/share/nmap/nselib/dns.lua
+usr/share/nmap/nselib/dnsbl.lua
+usr/share/nmap/nselib/dnssd.lua
+usr/share/nmap/nselib/drda.lua
+usr/share/nmap/nselib/eap.lua
+usr/share/nmap/nselib/eigrp.lua
+usr/share/nmap/nselib/formulas.lua
+usr/share/nmap/nselib/ftp.lua
+usr/share/nmap/nselib/geoip.lua
+usr/share/nmap/nselib/giop.lua
+usr/share/nmap/nselib/gps.lua
+usr/share/nmap/nselib/http.lua
+usr/share/nmap/nselib/httpspider.lua
+usr/share/nmap/nselib/iax2.lua
+usr/share/nmap/nselib/idna.lua
+usr/share/nmap/nselib/iec61850mms.lua
+usr/share/nmap/nselib/ike.lua
+usr/share/nmap/nselib/imap.lua
+usr/share/nmap/nselib/informix.lua
+usr/share/nmap/nselib/ipOps.lua
+usr/share/nmap/nselib/ipmi.lua
+usr/share/nmap/nselib/ipp.lua
+usr/share/nmap/nselib/irc.lua
+usr/share/nmap/nselib/iscsi.lua
+usr/share/nmap/nselib/isns.lua
+usr/share/nmap/nselib/jdwp.lua
+usr/share/nmap/nselib/json.lua
+usr/share/nmap/nselib/knx.lua
+usr/share/nmap/nselib/ldap.lua
+usr/share/nmap/nselib/lfs.luadoc
+usr/share/nmap/nselib/libssh2-utility.lua
+usr/share/nmap/nselib/libssh2.luadoc
+usr/share/nmap/nselib/listop.lua
+usr/share/nmap/nselib/lpeg-utility.lua
+usr/share/nmap/nselib/lpeg.luadoc
+usr/share/nmap/nselib/ls.lua
+usr/share/nmap/nselib/match.lua
+usr/share/nmap/nselib/membase.lua
+usr/share/nmap/nselib/mobileme.lua
+usr/share/nmap/nselib/mongodb.lua
+usr/share/nmap/nselib/mqtt.lua
+usr/share/nmap/nselib/msrpc.lua
+usr/share/nmap/nselib/msrpcperformance.lua
+usr/share/nmap/nselib/msrpctypes.lua
+usr/share/nmap/nselib/mssql.lua
+usr/share/nmap/nselib/multicast.lua
+usr/share/nmap/nselib/mysql.lua
+usr/share/nmap/nselib/natpmp.lua
+usr/share/nmap/nselib/nbd.lua
+usr/share/nmap/nselib/ncp.lua
+usr/share/nmap/nselib/ndmp.lua
+usr/share/nmap/nselib/netbios.lua
+usr/share/nmap/nselib/nmap.luadoc
+usr/share/nmap/nselib/nrpc.lua
+usr/share/nmap/nselib/nsedebug.lua
+usr/share/nmap/nselib/omp2.lua
+usr/share/nmap/nselib/oops.lua
+usr/share/nmap/nselib/openssl.luadoc
+usr/share/nmap/nselib/ospf.lua
+usr/share/nmap/nselib/outlib.lua
+usr/share/nmap/nselib/packet.lua
+usr/share/nmap/nselib/pgsql.lua
+usr/share/nmap/nselib/pop3.lua
+usr/share/nmap/nselib/pppoe.lua
+usr/share/nmap/nselib/proxy.lua
+usr/share/nmap/nselib/punycode.lua
+usr/share/nmap/nselib/rand.lua
+usr/share/nmap/nselib/rdp.lua
+usr/share/nmap/nselib/re.lua
+usr/share/nmap/nselib/redis.lua
+usr/share/nmap/nselib/rmi.lua
+usr/share/nmap/nselib/rpc.lua
+usr/share/nmap/nselib/rpcap.lua
+usr/share/nmap/nselib/rsync.lua
+usr/share/nmap/nselib/rtsp.lua
+usr/share/nmap/nselib/sasl.lua
+usr/share/nmap/nselib/shortport.lua
+usr/share/nmap/nselib/sip.lua
+usr/share/nmap/nselib/slaxml.lua
+usr/share/nmap/nselib/smb.lua
+usr/share/nmap/nselib/smb2.lua
+usr/share/nmap/nselib/smbauth.lua
+usr/share/nmap/nselib/smtp.lua
+usr/share/nmap/nselib/snmp.lua
+usr/share/nmap/nselib/socks.lua
+usr/share/nmap/nselib/srvloc.lua
+usr/share/nmap/nselib/ssh1.lua
+usr/share/nmap/nselib/ssh2.lua
+usr/share/nmap/nselib/sslcert.lua
+usr/share/nmap/nselib/sslv2.lua
+usr/share/nmap/nselib/stdnse.lua
+usr/share/nmap/nselib/strbuf.lua
+usr/share/nmap/nselib/strict.lua
+usr/share/nmap/nselib/stringaux.lua
+usr/share/nmap/nselib/stun.lua
+usr/share/nmap/nselib/tab.lua
+usr/share/nmap/nselib/tableaux.lua
+usr/share/nmap/nselib/target.lua
+usr/share/nmap/nselib/tftp.lua
+usr/share/nmap/nselib/tls.lua
+usr/share/nmap/nselib/tn3270.lua
+usr/share/nmap/nselib/tns.lua
+usr/share/nmap/nselib/unicode.lua
+usr/share/nmap/nselib/unittest.lua
+usr/share/nmap/nselib/unpwdb.lua
+usr/share/nmap/nselib/upnp.lua
+usr/share/nmap/nselib/url.lua
+usr/share/nmap/nselib/versant.lua
+usr/share/nmap/nselib/vnc.lua
+usr/share/nmap/nselib/vulns.lua
+usr/share/nmap/nselib/vuzedht.lua
+usr/share/nmap/nselib/wsdd.lua
+usr/share/nmap/nselib/xdmcp.lua
+usr/share/nmap/nselib/xmpp.lua
+usr/share/nmap/nselib/zlib.luadoc
+#usr/share/nmap/scripts
+usr/share/nmap/scripts/acarsd-info.nse
+usr/share/nmap/scripts/address-info.nse
+usr/share/nmap/scripts/afp-brute.nse
+usr/share/nmap/scripts/afp-ls.nse
+usr/share/nmap/scripts/afp-path-vuln.nse
+usr/share/nmap/scripts/afp-serverinfo.nse
+usr/share/nmap/scripts/afp-showmount.nse
+usr/share/nmap/scripts/ajp-auth.nse
+usr/share/nmap/scripts/ajp-brute.nse
+usr/share/nmap/scripts/ajp-headers.nse
+usr/share/nmap/scripts/ajp-methods.nse
+usr/share/nmap/scripts/ajp-request.nse
+usr/share/nmap/scripts/allseeingeye-info.nse
+usr/share/nmap/scripts/amqp-info.nse
+usr/share/nmap/scripts/asn-query.nse
+usr/share/nmap/scripts/auth-owners.nse
+usr/share/nmap/scripts/auth-spoof.nse
+usr/share/nmap/scripts/backorifice-brute.nse
+usr/share/nmap/scripts/backorifice-info.nse
+usr/share/nmap/scripts/bacnet-info.nse
+usr/share/nmap/scripts/banner.nse
+usr/share/nmap/scripts/bitcoin-getaddr.nse
+usr/share/nmap/scripts/bitcoin-info.nse
+usr/share/nmap/scripts/bitcoinrpc-info.nse
+usr/share/nmap/scripts/bittorrent-discovery.nse
+usr/share/nmap/scripts/bjnp-discover.nse
+usr/share/nmap/scripts/broadcast-ataoe-discover.nse
+usr/share/nmap/scripts/broadcast-avahi-dos.nse
+usr/share/nmap/scripts/broadcast-bjnp-discover.nse
+usr/share/nmap/scripts/broadcast-db2-discover.nse
+usr/share/nmap/scripts/broadcast-dhcp-discover.nse
+usr/share/nmap/scripts/broadcast-dhcp6-discover.nse
+usr/share/nmap/scripts/broadcast-dns-service-discovery.nse
+usr/share/nmap/scripts/broadcast-dropbox-listener.nse
+usr/share/nmap/scripts/broadcast-eigrp-discovery.nse
+usr/share/nmap/scripts/broadcast-hid-discoveryd.nse
+usr/share/nmap/scripts/broadcast-igmp-discovery.nse
+usr/share/nmap/scripts/broadcast-jenkins-discover.nse
+usr/share/nmap/scripts/broadcast-listener.nse
+usr/share/nmap/scripts/broadcast-ms-sql-discover.nse
+usr/share/nmap/scripts/broadcast-netbios-master-browser.nse
+usr/share/nmap/scripts/broadcast-networker-discover.nse
+usr/share/nmap/scripts/broadcast-novell-locate.nse
+usr/share/nmap/scripts/broadcast-ospf2-discover.nse
+usr/share/nmap/scripts/broadcast-pc-anywhere.nse
+usr/share/nmap/scripts/broadcast-pc-duo.nse
+usr/share/nmap/scripts/broadcast-pim-discovery.nse
+usr/share/nmap/scripts/broadcast-ping.nse
+usr/share/nmap/scripts/broadcast-pppoe-discover.nse
+usr/share/nmap/scripts/broadcast-rip-discover.nse
+usr/share/nmap/scripts/broadcast-ripng-discover.nse
+usr/share/nmap/scripts/broadcast-sonicwall-discover.nse
+usr/share/nmap/scripts/broadcast-sybase-asa-discover.nse
+usr/share/nmap/scripts/broadcast-tellstick-discover.nse
+usr/share/nmap/scripts/broadcast-upnp-info.nse
+usr/share/nmap/scripts/broadcast-versant-locate.nse
+usr/share/nmap/scripts/broadcast-wake-on-lan.nse
+usr/share/nmap/scripts/broadcast-wpad-discover.nse
+usr/share/nmap/scripts/broadcast-wsdd-discover.nse
+usr/share/nmap/scripts/broadcast-xdmcp-discover.nse
+usr/share/nmap/scripts/cassandra-brute.nse
+usr/share/nmap/scripts/cassandra-info.nse
+usr/share/nmap/scripts/cccam-version.nse
+usr/share/nmap/scripts/cics-enum.nse
+usr/share/nmap/scripts/cics-info.nse
+usr/share/nmap/scripts/cics-user-brute.nse
+usr/share/nmap/scripts/cics-user-enum.nse
+usr/share/nmap/scripts/citrix-brute-xml.nse
+usr/share/nmap/scripts/citrix-enum-apps-xml.nse
+usr/share/nmap/scripts/citrix-enum-apps.nse
+usr/share/nmap/scripts/citrix-enum-servers-xml.nse
+usr/share/nmap/scripts/citrix-enum-servers.nse
+usr/share/nmap/scripts/clamav-exec.nse
+usr/share/nmap/scripts/clock-skew.nse
+usr/share/nmap/scripts/coap-resources.nse
+usr/share/nmap/scripts/couchdb-databases.nse
+usr/share/nmap/scripts/couchdb-stats.nse
+usr/share/nmap/scripts/creds-summary.nse
+usr/share/nmap/scripts/cups-info.nse
+usr/share/nmap/scripts/cups-queue-info.nse
+usr/share/nmap/scripts/cvs-brute-repository.nse
+usr/share/nmap/scripts/cvs-brute.nse
+usr/share/nmap/scripts/daap-get-library.nse
+usr/share/nmap/scripts/daytime.nse
+usr/share/nmap/scripts/db2-das-info.nse
+usr/share/nmap/scripts/deluge-rpc-brute.nse
+usr/share/nmap/scripts/dhcp-discover.nse
+usr/share/nmap/scripts/dicom-brute.nse
+usr/share/nmap/scripts/dicom-ping.nse
+usr/share/nmap/scripts/dict-info.nse
+usr/share/nmap/scripts/distcc-cve2004-2687.nse
+usr/share/nmap/scripts/dns-blacklist.nse
+usr/share/nmap/scripts/dns-brute.nse
+usr/share/nmap/scripts/dns-cache-snoop.nse
+usr/share/nmap/scripts/dns-check-zone.nse
+usr/share/nmap/scripts/dns-client-subnet-scan.nse
+usr/share/nmap/scripts/dns-fuzz.nse
+usr/share/nmap/scripts/dns-ip6-arpa-scan.nse
+usr/share/nmap/scripts/dns-nsec-enum.nse
+usr/share/nmap/scripts/dns-nsec3-enum.nse
+usr/share/nmap/scripts/dns-nsid.nse
+usr/share/nmap/scripts/dns-random-srcport.nse
+usr/share/nmap/scripts/dns-random-txid.nse
+usr/share/nmap/scripts/dns-recursion.nse
+usr/share/nmap/scripts/dns-service-discovery.nse
+usr/share/nmap/scripts/dns-srv-enum.nse
+usr/share/nmap/scripts/dns-update.nse
+usr/share/nmap/scripts/dns-zeustracker.nse
+usr/share/nmap/scripts/dns-zone-transfer.nse
+usr/share/nmap/scripts/docker-version.nse
+usr/share/nmap/scripts/domcon-brute.nse
+usr/share/nmap/scripts/domcon-cmd.nse
+usr/share/nmap/scripts/domino-enum-users.nse
+usr/share/nmap/scripts/dpap-brute.nse
+usr/share/nmap/scripts/drda-brute.nse
+usr/share/nmap/scripts/drda-info.nse
+usr/share/nmap/scripts/duplicates.nse
+usr/share/nmap/scripts/eap-info.nse
+usr/share/nmap/scripts/enip-info.nse
+usr/share/nmap/scripts/epmd-info.nse
+usr/share/nmap/scripts/eppc-enum-processes.nse
+usr/share/nmap/scripts/fcrdns.nse
+usr/share/nmap/scripts/finger.nse
+usr/share/nmap/scripts/fingerprint-strings.nse
+usr/share/nmap/scripts/firewalk.nse
+usr/share/nmap/scripts/firewall-bypass.nse
+usr/share/nmap/scripts/flume-master-info.nse
+usr/share/nmap/scripts/fox-info.nse
+usr/share/nmap/scripts/freelancer-info.nse
+usr/share/nmap/scripts/ftp-anon.nse
+usr/share/nmap/scripts/ftp-bounce.nse
+usr/share/nmap/scripts/ftp-brute.nse
+usr/share/nmap/scripts/ftp-libopie.nse
+usr/share/nmap/scripts/ftp-proftpd-backdoor.nse
+usr/share/nmap/scripts/ftp-syst.nse
+usr/share/nmap/scripts/ftp-vsftpd-backdoor.nse
+usr/share/nmap/scripts/ftp-vuln-cve2010-4221.nse
+usr/share/nmap/scripts/ganglia-info.nse
+usr/share/nmap/scripts/giop-info.nse
+usr/share/nmap/scripts/gkrellm-info.nse
+usr/share/nmap/scripts/gopher-ls.nse
+usr/share/nmap/scripts/gpsd-info.nse
+usr/share/nmap/scripts/hadoop-datanode-info.nse
+usr/share/nmap/scripts/hadoop-jobtracker-info.nse
+usr/share/nmap/scripts/hadoop-namenode-info.nse
+usr/share/nmap/scripts/hadoop-secondary-namenode-info.nse
+usr/share/nmap/scripts/hadoop-tasktracker-info.nse
+usr/share/nmap/scripts/hartip-info.nse
+usr/share/nmap/scripts/hbase-master-info.nse
+usr/share/nmap/scripts/hbase-region-info.nse
+usr/share/nmap/scripts/hddtemp-info.nse
+usr/share/nmap/scripts/hnap-info.nse
+usr/share/nmap/scripts/hostmap-bfk.nse
+usr/share/nmap/scripts/hostmap-crtsh.nse
+usr/share/nmap/scripts/hostmap-robtex.nse
+usr/share/nmap/scripts/http-adobe-coldfusion-apsa1301.nse
+usr/share/nmap/scripts/http-affiliate-id.nse
+usr/share/nmap/scripts/http-apache-negotiation.nse
+usr/share/nmap/scripts/http-apache-server-status.nse
+usr/share/nmap/scripts/http-aspnet-debug.nse
+usr/share/nmap/scripts/http-auth-finder.nse
+usr/share/nmap/scripts/http-auth.nse
+usr/share/nmap/scripts/http-avaya-ipoffice-users.nse
+usr/share/nmap/scripts/http-awstatstotals-exec.nse
+usr/share/nmap/scripts/http-axis2-dir-traversal.nse
+usr/share/nmap/scripts/http-backup-finder.nse
+usr/share/nmap/scripts/http-barracuda-dir-traversal.nse
+usr/share/nmap/scripts/http-bigip-cookie.nse
+usr/share/nmap/scripts/http-brute.nse
+usr/share/nmap/scripts/http-cakephp-version.nse
+usr/share/nmap/scripts/http-chrono.nse
+usr/share/nmap/scripts/http-cisco-anyconnect.nse
+usr/share/nmap/scripts/http-coldfusion-subzero.nse
+usr/share/nmap/scripts/http-comments-displayer.nse
+usr/share/nmap/scripts/http-config-backup.nse
+usr/share/nmap/scripts/http-cookie-flags.nse
+usr/share/nmap/scripts/http-cors.nse
+usr/share/nmap/scripts/http-cross-domain-policy.nse
+usr/share/nmap/scripts/http-csrf.nse
+usr/share/nmap/scripts/http-date.nse
+usr/share/nmap/scripts/http-default-accounts.nse
+usr/share/nmap/scripts/http-devframework.nse
+usr/share/nmap/scripts/http-dlink-backdoor.nse
+usr/share/nmap/scripts/http-dombased-xss.nse
+usr/share/nmap/scripts/http-domino-enum-passwords.nse
+usr/share/nmap/scripts/http-drupal-enum-users.nse
+usr/share/nmap/scripts/http-drupal-enum.nse
+usr/share/nmap/scripts/http-enum.nse
+usr/share/nmap/scripts/http-errors.nse
+usr/share/nmap/scripts/http-exif-spider.nse
+usr/share/nmap/scripts/http-favicon.nse
+usr/share/nmap/scripts/http-feed.nse
+usr/share/nmap/scripts/http-fetch.nse
+usr/share/nmap/scripts/http-fileupload-exploiter.nse
+usr/share/nmap/scripts/http-form-brute.nse
+usr/share/nmap/scripts/http-form-fuzzer.nse
+usr/share/nmap/scripts/http-frontpage-login.nse
+usr/share/nmap/scripts/http-generator.nse
+usr/share/nmap/scripts/http-git.nse
+usr/share/nmap/scripts/http-gitweb-projects-enum.nse
+usr/share/nmap/scripts/http-google-malware.nse
+usr/share/nmap/scripts/http-grep.nse
+usr/share/nmap/scripts/http-headers.nse
+usr/share/nmap/scripts/http-hp-ilo-info.nse
+usr/share/nmap/scripts/http-huawei-hg5xx-vuln.nse
+usr/share/nmap/scripts/http-icloud-findmyiphone.nse
+usr/share/nmap/scripts/http-icloud-sendmsg.nse
+usr/share/nmap/scripts/http-iis-short-name-brute.nse
+usr/share/nmap/scripts/http-iis-webdav-vuln.nse
+usr/share/nmap/scripts/http-internal-ip-disclosure.nse
+usr/share/nmap/scripts/http-joomla-brute.nse
+usr/share/nmap/scripts/http-jsonp-detection.nse
+usr/share/nmap/scripts/http-litespeed-sourcecode-download.nse
+usr/share/nmap/scripts/http-ls.nse
+usr/share/nmap/scripts/http-majordomo2-dir-traversal.nse
+usr/share/nmap/scripts/http-malware-host.nse
+usr/share/nmap/scripts/http-mcmp.nse
+usr/share/nmap/scripts/http-method-tamper.nse
+usr/share/nmap/scripts/http-methods.nse
+usr/share/nmap/scripts/http-mobileversion-checker.nse
+usr/share/nmap/scripts/http-ntlm-info.nse
+usr/share/nmap/scripts/http-open-proxy.nse
+usr/share/nmap/scripts/http-open-redirect.nse
+usr/share/nmap/scripts/http-passwd.nse
+usr/share/nmap/scripts/http-php-version.nse
+usr/share/nmap/scripts/http-phpmyadmin-dir-traversal.nse
+usr/share/nmap/scripts/http-phpself-xss.nse
+usr/share/nmap/scripts/http-proxy-brute.nse
+usr/share/nmap/scripts/http-put.nse
+usr/share/nmap/scripts/http-qnap-nas-info.nse
+usr/share/nmap/scripts/http-referer-checker.nse
+usr/share/nmap/scripts/http-rfi-spider.nse
+usr/share/nmap/scripts/http-robots.txt.nse
+usr/share/nmap/scripts/http-robtex-reverse-ip.nse
+usr/share/nmap/scripts/http-robtex-shared-ns.nse
+usr/share/nmap/scripts/http-sap-netweaver-leak.nse
+usr/share/nmap/scripts/http-security-headers.nse
+usr/share/nmap/scripts/http-server-header.nse
+usr/share/nmap/scripts/http-shellshock.nse
+usr/share/nmap/scripts/http-sitemap-generator.nse
+usr/share/nmap/scripts/http-slowloris-check.nse
+usr/share/nmap/scripts/http-slowloris.nse
+usr/share/nmap/scripts/http-sql-injection.nse
+usr/share/nmap/scripts/http-stored-xss.nse
+usr/share/nmap/scripts/http-svn-enum.nse
+usr/share/nmap/scripts/http-svn-info.nse
+usr/share/nmap/scripts/http-title.nse
+usr/share/nmap/scripts/http-tplink-dir-traversal.nse
+usr/share/nmap/scripts/http-trace.nse
+usr/share/nmap/scripts/http-traceroute.nse
+usr/share/nmap/scripts/http-trane-info.nse
+usr/share/nmap/scripts/http-unsafe-output-escaping.nse
+usr/share/nmap/scripts/http-useragent-tester.nse
+usr/share/nmap/scripts/http-userdir-enum.nse
+usr/share/nmap/scripts/http-vhosts.nse
+usr/share/nmap/scripts/http-virustotal.nse
+usr/share/nmap/scripts/http-vlcstreamer-ls.nse
+usr/share/nmap/scripts/http-vmware-path-vuln.nse
+usr/share/nmap/scripts/http-vuln-cve2006-3392.nse
+usr/share/nmap/scripts/http-vuln-cve2009-3960.nse
+usr/share/nmap/scripts/http-vuln-cve2010-0738.nse
+usr/share/nmap/scripts/http-vuln-cve2010-2861.nse
+usr/share/nmap/scripts/http-vuln-cve2011-3192.nse
+usr/share/nmap/scripts/http-vuln-cve2011-3368.nse
+usr/share/nmap/scripts/http-vuln-cve2012-1823.nse
+usr/share/nmap/scripts/http-vuln-cve2013-0156.nse
+usr/share/nmap/scripts/http-vuln-cve2013-6786.nse
+usr/share/nmap/scripts/http-vuln-cve2013-7091.nse
+usr/share/nmap/scripts/http-vuln-cve2014-2126.nse
+usr/share/nmap/scripts/http-vuln-cve2014-2127.nse
+usr/share/nmap/scripts/http-vuln-cve2014-2128.nse
+usr/share/nmap/scripts/http-vuln-cve2014-2129.nse
+usr/share/nmap/scripts/http-vuln-cve2014-3704.nse
+usr/share/nmap/scripts/http-vuln-cve2014-8877.nse
+usr/share/nmap/scripts/http-vuln-cve2015-1427.nse
+usr/share/nmap/scripts/http-vuln-cve2015-1635.nse
+usr/share/nmap/scripts/http-vuln-cve2017-1001000.nse
+usr/share/nmap/scripts/http-vuln-cve2017-5638.nse
+usr/share/nmap/scripts/http-vuln-cve2017-5689.nse
+usr/share/nmap/scripts/http-vuln-cve2017-8917.nse
+usr/share/nmap/scripts/http-vuln-misfortune-cookie.nse
+usr/share/nmap/scripts/http-vuln-wnr1000-creds.nse
+usr/share/nmap/scripts/http-waf-detect.nse
+usr/share/nmap/scripts/http-waf-fingerprint.nse
+usr/share/nmap/scripts/http-webdav-scan.nse
+usr/share/nmap/scripts/http-wordpress-brute.nse
+usr/share/nmap/scripts/http-wordpress-enum.nse
+usr/share/nmap/scripts/http-wordpress-users.nse
+usr/share/nmap/scripts/http-xssed.nse
+usr/share/nmap/scripts/https-redirect.nse
+usr/share/nmap/scripts/iax2-brute.nse
+usr/share/nmap/scripts/iax2-version.nse
+usr/share/nmap/scripts/icap-info.nse
+usr/share/nmap/scripts/iec-identify.nse
+usr/share/nmap/scripts/iec61850-mms.nse
+usr/share/nmap/scripts/ike-version.nse
+usr/share/nmap/scripts/imap-brute.nse
+usr/share/nmap/scripts/imap-capabilities.nse
+usr/share/nmap/scripts/imap-ntlm-info.nse
+usr/share/nmap/scripts/impress-remote-discover.nse
+usr/share/nmap/scripts/informix-brute.nse
+usr/share/nmap/scripts/informix-query.nse
+usr/share/nmap/scripts/informix-tables.nse
+usr/share/nmap/scripts/ip-forwarding.nse
+usr/share/nmap/scripts/ip-geolocation-geoplugin.nse
+usr/share/nmap/scripts/ip-geolocation-ipinfodb.nse
+usr/share/nmap/scripts/ip-geolocation-map-bing.nse
+usr/share/nmap/scripts/ip-geolocation-map-google.nse
+usr/share/nmap/scripts/ip-geolocation-map-kml.nse
+usr/share/nmap/scripts/ip-geolocation-maxmind.nse
+usr/share/nmap/scripts/ip-https-discover.nse
+usr/share/nmap/scripts/ipidseq.nse
+usr/share/nmap/scripts/ipmi-brute.nse
+usr/share/nmap/scripts/ipmi-cipher-zero.nse
+usr/share/nmap/scripts/ipmi-version.nse
+usr/share/nmap/scripts/ipv6-multicast-mld-list.nse
+usr/share/nmap/scripts/ipv6-node-info.nse
+usr/share/nmap/scripts/ipv6-ra-flood.nse
+usr/share/nmap/scripts/irc-botnet-channels.nse
+usr/share/nmap/scripts/irc-brute.nse
+usr/share/nmap/scripts/irc-info.nse
+usr/share/nmap/scripts/irc-sasl-brute.nse
+usr/share/nmap/scripts/irc-unrealircd-backdoor.nse
+usr/share/nmap/scripts/iscsi-brute.nse
+usr/share/nmap/scripts/iscsi-info.nse
+usr/share/nmap/scripts/isns-info.nse
+usr/share/nmap/scripts/jdwp-exec.nse
+usr/share/nmap/scripts/jdwp-info.nse
+usr/share/nmap/scripts/jdwp-inject.nse
+usr/share/nmap/scripts/jdwp-version.nse
+usr/share/nmap/scripts/knx-gateway-discover.nse
+usr/share/nmap/scripts/knx-gateway-info.nse
+usr/share/nmap/scripts/krb5-enum-users.nse
+usr/share/nmap/scripts/ldap-brute.nse
+usr/share/nmap/scripts/ldap-novell-getpass.nse
+usr/share/nmap/scripts/ldap-rootdse.nse
+usr/share/nmap/scripts/ldap-search.nse
+usr/share/nmap/scripts/lexmark-config.nse
+usr/share/nmap/scripts/llmnr-resolve.nse
+usr/share/nmap/scripts/lltd-discovery.nse
+usr/share/nmap/scripts/lu-enum.nse
+usr/share/nmap/scripts/maxdb-info.nse
+usr/share/nmap/scripts/mcafee-epo-agent.nse
+usr/share/nmap/scripts/membase-brute.nse
+usr/share/nmap/scripts/membase-http-info.nse
+usr/share/nmap/scripts/memcached-info.nse
+usr/share/nmap/scripts/metasploit-info.nse
+usr/share/nmap/scripts/metasploit-msgrpc-brute.nse
+usr/share/nmap/scripts/metasploit-xmlrpc-brute.nse
+usr/share/nmap/scripts/mikrotik-routeros-brute.nse
+usr/share/nmap/scripts/mmouse-brute.nse
+usr/share/nmap/scripts/mmouse-exec.nse
+usr/share/nmap/scripts/modbus-discover.nse
+usr/share/nmap/scripts/mongodb-brute.nse
+usr/share/nmap/scripts/mongodb-databases.nse
+usr/share/nmap/scripts/mongodb-info.nse
+usr/share/nmap/scripts/mqtt-subscribe.nse
+usr/share/nmap/scripts/mrinfo.nse
+usr/share/nmap/scripts/ms-sql-brute.nse
+usr/share/nmap/scripts/ms-sql-config.nse
+usr/share/nmap/scripts/ms-sql-dac.nse
+usr/share/nmap/scripts/ms-sql-dump-hashes.nse
+usr/share/nmap/scripts/ms-sql-empty-password.nse
+usr/share/nmap/scripts/ms-sql-hasdbaccess.nse
+usr/share/nmap/scripts/ms-sql-info.nse
+usr/share/nmap/scripts/ms-sql-ntlm-info.nse
+usr/share/nmap/scripts/ms-sql-query.nse
+usr/share/nmap/scripts/ms-sql-tables.nse
+usr/share/nmap/scripts/ms-sql-xp-cmdshell.nse
+usr/share/nmap/scripts/msrpc-enum.nse
+usr/share/nmap/scripts/mtrace.nse
+usr/share/nmap/scripts/multicast-profinet-discovery.nse
+usr/share/nmap/scripts/murmur-version.nse
+usr/share/nmap/scripts/mysql-audit.nse
+usr/share/nmap/scripts/mysql-brute.nse
+usr/share/nmap/scripts/mysql-databases.nse
+usr/share/nmap/scripts/mysql-dump-hashes.nse
+usr/share/nmap/scripts/mysql-empty-password.nse
+usr/share/nmap/scripts/mysql-enum.nse
+usr/share/nmap/scripts/mysql-info.nse
+usr/share/nmap/scripts/mysql-query.nse
+usr/share/nmap/scripts/mysql-users.nse
+usr/share/nmap/scripts/mysql-variables.nse
+usr/share/nmap/scripts/mysql-vuln-cve2012-2122.nse
+usr/share/nmap/scripts/nat-pmp-info.nse
+usr/share/nmap/scripts/nat-pmp-mapport.nse
+usr/share/nmap/scripts/nbd-info.nse
+usr/share/nmap/scripts/nbns-interfaces.nse
+usr/share/nmap/scripts/nbstat.nse
+usr/share/nmap/scripts/ncp-enum-users.nse
+usr/share/nmap/scripts/ncp-serverinfo.nse
+usr/share/nmap/scripts/ndmp-fs-info.nse
+usr/share/nmap/scripts/ndmp-version.nse
+usr/share/nmap/scripts/nessus-brute.nse
+usr/share/nmap/scripts/nessus-xmlrpc-brute.nse
+usr/share/nmap/scripts/netbus-auth-bypass.nse
+usr/share/nmap/scripts/netbus-brute.nse
+usr/share/nmap/scripts/netbus-info.nse
+usr/share/nmap/scripts/netbus-version.nse
+usr/share/nmap/scripts/nexpose-brute.nse
+usr/share/nmap/scripts/nfs-ls.nse
+usr/share/nmap/scripts/nfs-showmount.nse
+usr/share/nmap/scripts/nfs-statfs.nse
+usr/share/nmap/scripts/nje-node-brute.nse
+usr/share/nmap/scripts/nje-pass-brute.nse
+usr/share/nmap/scripts/nntp-ntlm-info.nse
+usr/share/nmap/scripts/nping-brute.nse
+usr/share/nmap/scripts/nrpe-enum.nse
+usr/share/nmap/scripts/ntp-info.nse
+usr/share/nmap/scripts/ntp-monlist.nse
+usr/share/nmap/scripts/omp2-brute.nse
+usr/share/nmap/scripts/omp2-enum-targets.nse
+usr/share/nmap/scripts/omron-info.nse
+usr/share/nmap/scripts/openflow-info.nse
+usr/share/nmap/scripts/openlookup-info.nse
+usr/share/nmap/scripts/openvas-otp-brute.nse
+usr/share/nmap/scripts/openwebnet-discovery.nse
+usr/share/nmap/scripts/oracle-brute-stealth.nse
+usr/share/nmap/scripts/oracle-brute.nse
+usr/share/nmap/scripts/oracle-enum-users.nse
+usr/share/nmap/scripts/oracle-sid-brute.nse
+usr/share/nmap/scripts/oracle-tns-version.nse
+usr/share/nmap/scripts/ovs-agent-version.nse
+usr/share/nmap/scripts/p2p-conficker.nse
+usr/share/nmap/scripts/path-mtu.nse
+usr/share/nmap/scripts/pcanywhere-brute.nse
+usr/share/nmap/scripts/pcworx-info.nse
+usr/share/nmap/scripts/pgsql-brute.nse
+usr/share/nmap/scripts/pjl-ready-message.nse
+usr/share/nmap/scripts/pop3-brute.nse
+usr/share/nmap/scripts/pop3-capabilities.nse
+usr/share/nmap/scripts/pop3-ntlm-info.nse
+usr/share/nmap/scripts/port-states.nse
+usr/share/nmap/scripts/pptp-version.nse
+usr/share/nmap/scripts/profinet-cm-lookup.nse
+usr/share/nmap/scripts/puppet-naivesigning.nse
+usr/share/nmap/scripts/qconn-exec.nse
+usr/share/nmap/scripts/qscan.nse
+usr/share/nmap/scripts/quake1-info.nse
+usr/share/nmap/scripts/quake3-info.nse
+usr/share/nmap/scripts/quake3-master-getservers.nse
+usr/share/nmap/scripts/rdp-enum-encryption.nse
+usr/share/nmap/scripts/rdp-ntlm-info.nse
+usr/share/nmap/scripts/rdp-vuln-ms12-020.nse
+usr/share/nmap/scripts/realvnc-auth-bypass.nse
+usr/share/nmap/scripts/redis-brute.nse
+usr/share/nmap/scripts/redis-info.nse
+usr/share/nmap/scripts/resolveall.nse
+usr/share/nmap/scripts/reverse-index.nse
+usr/share/nmap/scripts/rexec-brute.nse
+usr/share/nmap/scripts/rfc868-time.nse
+usr/share/nmap/scripts/riak-http-info.nse
+usr/share/nmap/scripts/rlogin-brute.nse
+usr/share/nmap/scripts/rmi-dumpregistry.nse
+usr/share/nmap/scripts/rmi-vuln-classloader.nse
+usr/share/nmap/scripts/rpc-grind.nse
+usr/share/nmap/scripts/rpcap-brute.nse
+usr/share/nmap/scripts/rpcap-info.nse
+usr/share/nmap/scripts/rpcinfo.nse
+usr/share/nmap/scripts/rsa-vuln-roca.nse
+usr/share/nmap/scripts/rsync-brute.nse
+usr/share/nmap/scripts/rsync-list-modules.nse
+usr/share/nmap/scripts/rtsp-methods.nse
+usr/share/nmap/scripts/rtsp-url-brute.nse
+usr/share/nmap/scripts/rusers.nse
+usr/share/nmap/scripts/s7-info.nse
+usr/share/nmap/scripts/samba-vuln-cve-2012-1182.nse
+usr/share/nmap/scripts/script.db
+usr/share/nmap/scripts/servicetags.nse
+usr/share/nmap/scripts/shodan-api.nse
+usr/share/nmap/scripts/sip-brute.nse
+usr/share/nmap/scripts/sip-call-spoof.nse
+usr/share/nmap/scripts/sip-enum-users.nse
+usr/share/nmap/scripts/sip-methods.nse
+usr/share/nmap/scripts/skypev2-version.nse
+usr/share/nmap/scripts/smb-brute.nse
+usr/share/nmap/scripts/smb-double-pulsar-backdoor.nse
+usr/share/nmap/scripts/smb-enum-domains.nse
+usr/share/nmap/scripts/smb-enum-groups.nse
+usr/share/nmap/scripts/smb-enum-processes.nse
+usr/share/nmap/scripts/smb-enum-services.nse
+usr/share/nmap/scripts/smb-enum-sessions.nse
+usr/share/nmap/scripts/smb-enum-shares.nse
+usr/share/nmap/scripts/smb-enum-users.nse
+usr/share/nmap/scripts/smb-flood.nse
+usr/share/nmap/scripts/smb-ls.nse
+usr/share/nmap/scripts/smb-mbenum.nse
+usr/share/nmap/scripts/smb-os-discovery.nse
+usr/share/nmap/scripts/smb-print-text.nse
+usr/share/nmap/scripts/smb-protocols.nse
+usr/share/nmap/scripts/smb-psexec.nse
+usr/share/nmap/scripts/smb-security-mode.nse
+usr/share/nmap/scripts/smb-server-stats.nse
+usr/share/nmap/scripts/smb-system-info.nse
+usr/share/nmap/scripts/smb-vuln-conficker.nse
+usr/share/nmap/scripts/smb-vuln-cve-2017-7494.nse
+usr/share/nmap/scripts/smb-vuln-cve2009-3103.nse
+usr/share/nmap/scripts/smb-vuln-ms06-025.nse
+usr/share/nmap/scripts/smb-vuln-ms07-029.nse
+usr/share/nmap/scripts/smb-vuln-ms08-067.nse
+usr/share/nmap/scripts/smb-vuln-ms10-054.nse
+usr/share/nmap/scripts/smb-vuln-ms10-061.nse
+usr/share/nmap/scripts/smb-vuln-ms17-010.nse
+usr/share/nmap/scripts/smb-vuln-regsvc-dos.nse
+usr/share/nmap/scripts/smb-vuln-webexec.nse
+usr/share/nmap/scripts/smb-webexec-exploit.nse
+usr/share/nmap/scripts/smb2-capabilities.nse
+usr/share/nmap/scripts/smb2-security-mode.nse
+usr/share/nmap/scripts/smb2-time.nse
+usr/share/nmap/scripts/smb2-vuln-uptime.nse
+usr/share/nmap/scripts/smtp-brute.nse
+usr/share/nmap/scripts/smtp-commands.nse
+usr/share/nmap/scripts/smtp-enum-users.nse
+usr/share/nmap/scripts/smtp-ntlm-info.nse
+usr/share/nmap/scripts/smtp-open-relay.nse
+usr/share/nmap/scripts/smtp-strangeport.nse
+usr/share/nmap/scripts/smtp-vuln-cve2010-4344.nse
+usr/share/nmap/scripts/smtp-vuln-cve2011-1720.nse
+usr/share/nmap/scripts/smtp-vuln-cve2011-1764.nse
+usr/share/nmap/scripts/sniffer-detect.nse
+usr/share/nmap/scripts/snmp-brute.nse
+usr/share/nmap/scripts/snmp-hh3c-logins.nse
+usr/share/nmap/scripts/snmp-info.nse
+usr/share/nmap/scripts/snmp-interfaces.nse
+usr/share/nmap/scripts/snmp-ios-config.nse
+usr/share/nmap/scripts/snmp-netstat.nse
+usr/share/nmap/scripts/snmp-processes.nse
+usr/share/nmap/scripts/snmp-sysdescr.nse
+usr/share/nmap/scripts/snmp-win32-services.nse
+usr/share/nmap/scripts/snmp-win32-shares.nse
+usr/share/nmap/scripts/snmp-win32-software.nse
+usr/share/nmap/scripts/snmp-win32-users.nse
+usr/share/nmap/scripts/socks-auth-info.nse
+usr/share/nmap/scripts/socks-brute.nse
+usr/share/nmap/scripts/socks-open-proxy.nse
+usr/share/nmap/scripts/ssh-auth-methods.nse
+usr/share/nmap/scripts/ssh-brute.nse
+usr/share/nmap/scripts/ssh-hostkey.nse
+usr/share/nmap/scripts/ssh-publickey-acceptance.nse
+usr/share/nmap/scripts/ssh-run.nse
+usr/share/nmap/scripts/ssh2-enum-algos.nse
+usr/share/nmap/scripts/sshv1.nse
+usr/share/nmap/scripts/ssl-ccs-injection.nse
+usr/share/nmap/scripts/ssl-cert-intaddr.nse
+usr/share/nmap/scripts/ssl-cert.nse
+usr/share/nmap/scripts/ssl-date.nse
+usr/share/nmap/scripts/ssl-dh-params.nse
+usr/share/nmap/scripts/ssl-enum-ciphers.nse
+usr/share/nmap/scripts/ssl-heartbleed.nse
+usr/share/nmap/scripts/ssl-known-key.nse
+usr/share/nmap/scripts/ssl-poodle.nse
+usr/share/nmap/scripts/sslv2-drown.nse
+usr/share/nmap/scripts/sslv2.nse
+usr/share/nmap/scripts/sstp-discover.nse
+usr/share/nmap/scripts/stun-info.nse
+usr/share/nmap/scripts/stun-version.nse
+usr/share/nmap/scripts/stuxnet-detect.nse
+usr/share/nmap/scripts/supermicro-ipmi-conf.nse
+usr/share/nmap/scripts/svn-brute.nse
+usr/share/nmap/scripts/targets-asn.nse
+usr/share/nmap/scripts/targets-ipv6-map4to6.nse
+usr/share/nmap/scripts/targets-ipv6-multicast-echo.nse
+usr/share/nmap/scripts/targets-ipv6-multicast-invalid-dst.nse
+usr/share/nmap/scripts/targets-ipv6-multicast-mld.nse
+usr/share/nmap/scripts/targets-ipv6-multicast-slaac.nse
+usr/share/nmap/scripts/targets-ipv6-wordlist.nse
+usr/share/nmap/scripts/targets-sniffer.nse
+usr/share/nmap/scripts/targets-traceroute.nse
+usr/share/nmap/scripts/targets-xml.nse
+usr/share/nmap/scripts/teamspeak2-version.nse
+usr/share/nmap/scripts/telnet-brute.nse
+usr/share/nmap/scripts/telnet-encryption.nse
+usr/share/nmap/scripts/telnet-ntlm-info.nse
+usr/share/nmap/scripts/tftp-enum.nse
+usr/share/nmap/scripts/tftp-version.nse
+usr/share/nmap/scripts/tls-alpn.nse
+usr/share/nmap/scripts/tls-nextprotoneg.nse
+usr/share/nmap/scripts/tls-ticketbleed.nse
+usr/share/nmap/scripts/tn3270-screen.nse
+usr/share/nmap/scripts/tor-consensus-checker.nse
+usr/share/nmap/scripts/traceroute-geolocation.nse
+usr/share/nmap/scripts/tso-brute.nse
+usr/share/nmap/scripts/tso-enum.nse
+usr/share/nmap/scripts/ubiquiti-discovery.nse
+usr/share/nmap/scripts/unittest.nse
+usr/share/nmap/scripts/unusual-port.nse
+usr/share/nmap/scripts/upnp-info.nse
+usr/share/nmap/scripts/uptime-agent-info.nse
+usr/share/nmap/scripts/url-snarf.nse
+usr/share/nmap/scripts/ventrilo-info.nse
+usr/share/nmap/scripts/versant-info.nse
+usr/share/nmap/scripts/vmauthd-brute.nse
+usr/share/nmap/scripts/vmware-version.nse
+usr/share/nmap/scripts/vnc-brute.nse
+usr/share/nmap/scripts/vnc-info.nse
+usr/share/nmap/scripts/vnc-title.nse
+usr/share/nmap/scripts/voldemort-info.nse
+usr/share/nmap/scripts/vtam-enum.nse
+usr/share/nmap/scripts/vulners.nse
+usr/share/nmap/scripts/vuze-dht-info.nse
+usr/share/nmap/scripts/wdb-version.nse
+usr/share/nmap/scripts/weblogic-t3-info.nse
+usr/share/nmap/scripts/whois-domain.nse
+usr/share/nmap/scripts/whois-ip.nse
+usr/share/nmap/scripts/wsdd-discover.nse
+usr/share/nmap/scripts/x11-access.nse
+usr/share/nmap/scripts/xdmcp-discover.nse
+usr/share/nmap/scripts/xmlrpc-methods.nse
+usr/share/nmap/scripts/xmpp-brute.nse
+usr/share/nmap/scripts/xmpp-info.nse
diff --git a/lfs/ncat b/lfs/ncat
index 9bbbeff3d..4e5b05180 100644
--- a/lfs/ncat
+++ b/lfs/ncat
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,7 +26,7 @@ include Config
SUMMARY = Network tool to concatenate and redirect sockets
-VER = 7.94
+VER = 7.95
THISAPP = ncat-$(VER)
DL_FILE = nmap-$(VER).tar.bz2
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/nmap-$(VER)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = ncat
-PAK_VER = 10
+PAK_VER = 11
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 5819b458b50e33f6a507ad3c32a731c13e730c40d31a61731c3cfcd41fad8e3fdfcbb721ef46b05a80e406d0a646d0966d4b645551711144822551ef374a443a
+$(DL_FILE)_BLAKE2 = 4ab4912468f6c1cf7517090bc94b1bb34e665fe1b3db973e1c7bb2d05cb885545cdf3ca5c7fb548ff0012b800f5dd60ed2f2010fc9fb62ba7d6a28537287193c
install : $(TARGET)
@@ -83,15 +83,14 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar jxf $(DIR_DL)/$(DL_FILE)
$(UPDATE_AUTOMAKE)
cd $(DIR_APP) && mkdir -p build
- cd $(DIR_APP) && ./configure \
- --prefix=/usr \
- --without-nmapfe \
- --without-zenmap \
- --without-ndiff \
- --without-nping \
- --without-liblua \
- --without-nmap-update
-
+ cd $(DIR_APP) && ./configure \
+ --prefix=/usr \
+ --without-nmapfe \
+ --without-zenmap \
+ --without-ndiff \
+ --without-nping \
+ --without-liblua \
+ --without-nmap-update
cd $(DIR_APP) && make $(MAKETUNING) $(EXTRA_MAKE)
cd $(DIR_APP)/ncat && make install
ln -f -s /usr/bin/ncat /usr/bin/nc
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] nmap: Update to version 7.95
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (9 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] ncat: Update to version 7.95 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] pmacct: Update to version 1.7.9 Adolf Belka
2024-08-12 15:38 ` [PATCH] stunnel: Update to version 5.72 Adolf Belka
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 8939 bytes --]
- Update from version 7.94 to 7.95
- Update of rootfile
- Changelog
7.95
o [Windows] Upgraded Npcap (our Windows raw packet capturing and
transmission driver) from version 1.75 to the latest version 1.79. It
includes many performance improvements, bug fixes and feature
enhancements described at https://npcap.com/changelog.
o Integrated over 4000 IPv4 OS fingerprints submitted since June 2020. Added
336 fingerprints, bringing the new total to 6036. Additions include iOS 15 &
16, macOS Ventura & Monterey, Linux 6.1, OpenBSD 7.1, and lwIP 2.2
o Integrated over 2500 service/version detection fingerprints submitted since
June 2020. The signature count went up 1.4% to 12089, including 9 new
softmatches. We now detect 1246 protocols, including new additions of grpc,
mysqlx, essnet, remotemouse, and tuya.
o [NSE] Four new scripts from the DINA community
(https://github.com/DINA-community)
for querying industrial control systems:
+ hartip-info reads device information from devices using the Highway
Addressable Remote Transducer protocol
+ iec61850-mms queries devices using Manufacturing Message Specification
requests. [Dennis Rösch, Max Helbig]
+ multicast-profinet-discovery Sends a multicast PROFINET DCP Identify All
message and prints the responses. [Stefan Eiwanger, DINA-community]
+ profinet-cm-lookup queries the DCERPC endpoint mapper exposed via the
PNIO-CM service.
o Upgraded included libraries: Lua 5.4.6, libpcre2 10.43, zlib 1.3.1,
libssh2 1.11.0, liblinear 2.47
o [GH#2639] Upgraded OpenSSL binaries (for the Windows builds and for
RPMs) to version 3.0.13. CVEs resolved in this update include only 2
moderate-severity issues which we do not believe affect Nmap:
CVE-2023-5363 and CVE-2023-2650
o [Zenmap][Ndiff][GH#2649] Zenmap and Ndiff now use setuptools, not distutils
for packaging.
o [Ncat][GH#2685] Fixed Ncat UDP server mode to not quit after EOF on stdin.
Reported as Debian bug:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1039613
o [GH#2672] Fixed an issue where TCP Connect scan (-sT) on Windows would fail to
open any sockets, leading to scans that never finish. [Daniel Miller]
o [NSE] ssh-auth-methods will now print the pre-authentication banner text when
available. Requires libssh2 1.11.0 or later. [Daniel Miller]
o [Zenmap][GH#2739] Fix a crash in Zenmap when changing a host comment.
o [NSE][GH#2766] Fix TLS 1.2 signature algorithms for EdDSA.
[Daniel Roethlisberger]
o [Zenmap][GH#2706] RPM spec files now correctly require the python3 package,
not python>=3
o Improvements to OS detection fingerprint matching, including a syntax change
for nmap-os-db that allows ranges within the TCP Options string. This leads
to more concise and maintainable fingerprints. [Daniel Miller]
o Improved the OS detection engine by using a new source port for each retry.
Scans from systems such as Windows that do not send RST for unsolicited
SYN|ACK responses were previously unable to get a response in subsequent
tries. [Daniel Miller]
o Several profile-guided optimizations of the port scan engine. [Daniel Miller]
o [GH#2731] Fix an out-of-bounds read which led to out-of-memory errors when
duplicate addresses were used with --exclude
o [GH#2609] Fixed a memory leak in Nsock: compiled pcap filters were not freed.
o [GH#2658] Fixed a crash when using service name wildcards with -p, as in -p
"http*"
o [NSE] Fixed DNS TXT record parsing which caused asn-query to fail in Nmap
7.80 and later. [David Fifield, Mike Pattrick]
o [NSE][GH#2727][GH#2728] Fixed packet size testing in KNX scripts [f0rw4rd]
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
config/rootfiles/packages/nmap | 8 +++++---
lfs/nmap | 22 +++++++++++-----------
2 files changed, 16 insertions(+), 14 deletions(-)
diff --git a/config/rootfiles/packages/nmap b/config/rootfiles/packages/nmap
index b7627c97f..5f660dd9f 100644
--- a/config/rootfiles/packages/nmap
+++ b/config/rootfiles/packages/nmap
@@ -1,7 +1,6 @@
usr/bin/nmap
usr/bin/nping
#usr/share/man/de/man1/nmap.1
-#usr/share/man/es
#usr/share/man/es/man1
#usr/share/man/es/man1/nmap.1
#usr/share/man/fr/man1/nmap.1
@@ -15,7 +14,6 @@ usr/bin/nping
#usr/share/man/ja/man1/nmap.1
#usr/share/man/man1/nmap.1
#usr/share/man/man1/nping.1
-#usr/share/man/pl
#usr/share/man/pl/man1
#usr/share/man/pl/man1/nmap.1
#usr/share/man/pt_BR/man1/nmap.1
@@ -130,6 +128,7 @@ usr/share/nmap/nselib/http.lua
usr/share/nmap/nselib/httpspider.lua
usr/share/nmap/nselib/iax2.lua
usr/share/nmap/nselib/idna.lua
+usr/share/nmap/nselib/iec61850mms.lua
usr/share/nmap/nselib/ike.lua
usr/share/nmap/nselib/imap.lua
usr/share/nmap/nselib/informix.lua
@@ -175,7 +174,6 @@ usr/share/nmap/nselib/openssl.luadoc
usr/share/nmap/nselib/ospf.lua
usr/share/nmap/nselib/outlib.lua
usr/share/nmap/nselib/packet.lua
-usr/share/nmap/nselib/pcre.luadoc
usr/share/nmap/nselib/pgsql.lua
usr/share/nmap/nselib/pop3.lua
usr/share/nmap/nselib/pppoe.lua
@@ -378,6 +376,7 @@ usr/share/nmap/scripts/hadoop-jobtracker-info.nse
usr/share/nmap/scripts/hadoop-namenode-info.nse
usr/share/nmap/scripts/hadoop-secondary-namenode-info.nse
usr/share/nmap/scripts/hadoop-tasktracker-info.nse
+usr/share/nmap/scripts/hartip-info.nse
usr/share/nmap/scripts/hbase-master-info.nse
usr/share/nmap/scripts/hbase-region-info.nse
usr/share/nmap/scripts/hddtemp-info.nse
@@ -524,6 +523,7 @@ usr/share/nmap/scripts/iax2-brute.nse
usr/share/nmap/scripts/iax2-version.nse
usr/share/nmap/scripts/icap-info.nse
usr/share/nmap/scripts/iec-identify.nse
+usr/share/nmap/scripts/iec61850-mms.nse
usr/share/nmap/scripts/ike-version.nse
usr/share/nmap/scripts/imap-brute.nse
usr/share/nmap/scripts/imap-capabilities.nse
@@ -600,6 +600,7 @@ usr/share/nmap/scripts/ms-sql-tables.nse
usr/share/nmap/scripts/ms-sql-xp-cmdshell.nse
usr/share/nmap/scripts/msrpc-enum.nse
usr/share/nmap/scripts/mtrace.nse
+usr/share/nmap/scripts/multicast-profinet-discovery.nse
usr/share/nmap/scripts/murmur-version.nse
usr/share/nmap/scripts/mysql-audit.nse
usr/share/nmap/scripts/mysql-brute.nse
@@ -662,6 +663,7 @@ usr/share/nmap/scripts/pop3-capabilities.nse
usr/share/nmap/scripts/pop3-ntlm-info.nse
usr/share/nmap/scripts/port-states.nse
usr/share/nmap/scripts/pptp-version.nse
+usr/share/nmap/scripts/profinet-cm-lookup.nse
usr/share/nmap/scripts/puppet-naivesigning.nse
usr/share/nmap/scripts/qconn-exec.nse
usr/share/nmap/scripts/qscan.nse
diff --git a/lfs/nmap b/lfs/nmap
index 36a348be4..cee8fa2a9 100644
--- a/lfs/nmap
+++ b/lfs/nmap
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2007-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,7 +26,7 @@ include Config
SUMMARY = Network exploration tool and security scanner
-VER = 7.94
+VER = 7.95
THISAPP = nmap-$(VER)
DL_FILE = $(THISAPP).tar.bz2
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = nmap
-PAK_VER = 18
+PAK_VER = 19
DEPS =
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 5819b458b50e33f6a507ad3c32a731c13e730c40d31a61731c3cfcd41fad8e3fdfcbb721ef46b05a80e406d0a646d0966d4b645551711144822551ef374a443a
+$(DL_FILE)_BLAKE2 = 4ab4912468f6c1cf7517090bc94b1bb34e665fe1b3db973e1c7bb2d05cb885545cdf3ca5c7fb548ff0012b800f5dd60ed2f2010fc9fb62ba7d6a28537287193c
install : $(TARGET)
@@ -82,13 +82,13 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar jxf $(DIR_DL)/$(DL_FILE)
$(UPDATE_AUTOMAKE)
- cd $(DIR_APP) && PYTHON=python3 \
- ./configure \
- --prefix=/usr \
- --without-nmapfe \
- --without-zenmap \
- --without-ncat \
- --without-ndiff
+ cd $(DIR_APP) && PYTHON=python3 \
+ ./configure \
+ --prefix=/usr \
+ --without-nmapfe \
+ --without-zenmap \
+ --without-ncat \
+ --without-ndiff
cd $(DIR_APP) && make $(MAKETUNING) $(EXTRA_MAKE)
cd $(DIR_APP) && make install
@rm -rf $(DIR_APP)
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] pmacct: Update to version 1.7.9
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (10 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] nmap: " Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
2024-08-12 15:38 ` [PATCH] stunnel: Update to version 5.72 Adolf Belka
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 12482 bytes --]
- Update from version commit 5a5e272 to 1.7.9
- Update of rootfile not required
- Changelog
The keys used are:
!: fixed/modified feature, -: deleted feature, +: new feature
1.7.9
+ pmtelemetryd: gRPC data collection functionalities were added to
the daemon. https://github.com/scuzzilla/mdt-dialout-collector is
the library linked to add the functions required to collect data
via gRPC dialout. Thanks to Salvatore Cuzzilla ( @scuzzilla ) for
this contribution, along with the ninja support of Marc Sune
( @msune ).
+ BMP daemon: HA support introduced: in order to add redundancy at
data collection, let multiple collectors to establish indentical
BMP session, while only one is sending data to the backend. Thanks
to Zhuoyao Lin ( @Zephyre777 ) and Leonardo Rodoni ( @rodonile )
for this contribution.
+ nfacctd: developed a more robust and streamlined NetFlow v9/
IPFIX template handling framework based on libcdada structures,
hence dropping the previous ad-hoc home-grown memory structures.
+ nfacctd: introduced support for sampling rate calculation based
on IANA entities IE309 (samplingSize), IE310 (samplingPopulation),
which are being exported in IPFIX sampling options for a random-n-
out-of-N sampler. Also, support for 16-bit and 32-bit selectorID
is added as well. Thanks to Leonardo Rodoni ( @rodonile ) for this
contribution.
+ nfacctd: extended the support of IE130 (exporterIPv4Address) and
IE131 (exporterIPv6Address) for when this info is contained in
data packets. Thanks to Leonardo Rodoni ( @rodonile ) for this
contribution.
+ nfacctd: added nfacctd_ignore_exporter_address config knob to
not honour IE130 (exporterIPv4Address), IE131 (exporterIPv6Address)
and use the socket address instead.
+ nfacctd: improved support for Route Distinguisher (RD): added the
case where the RD information has finer-grained scope in Option
packets; also RD in IPFIX Options can now be used for correlating
data against BGP/BMP. Finally priority of supplied RD info is
streamlined as: RD in flow_to_rd.map > RD in IPFIX/NFv9 data
packet > RD in IPFIX/NFv9 option packets. Thanks to Leonardo
Rodoni ( @rodonile ) for these contributions.
+ nfacctd: added IEs 44 (sourceIPv4Prefix), 170 (sourceIPv6Prefix),
45 (destinationIPv4Prefix), and 169 (destinationIPv6Prefix) to
flow heuristics.
+ nfacctd: as part of src_mac, dst_mac primitives, added support
for IEs 365 (staMacAddress) and 366 (staIPv4Address).
+ nfacctd: introduced support for IE497 (srhSegmentIPv6ListSection),
The SRv6 Segment List as defined in Section 2 of [RFC8754] as a
series of octets in IPFIX. Also added Path Delay measurements
PathDelay{Mean,Min,Max,Sum}DeltaUsecs.
+ nfacctd: tunnel primitives (tunnel_src_host, tunnel_dst_host,
tunnel_proto, tunnel_tos, tunnel_src_port, tunnel_dst_port and
tunnel_tcpflags) were linked to SRv6 code. Also, in this context,
support for repeating IEs has been added. Thanks to Uwe Storbeck
( @ustorbeck ) for this contribution.
+ nfacctd: extended IE89 (forwardingStatus) support to be 2 or 4
bytes long. Also introduced support for IE31 (flowLabelIPv6).
Thanks to Uwe Storbeck ( @ustorbeck ) for these contributions.
+ nfacctd: a new primitive 'nvgre' is defined representing the
Tenant Network Identifier (TNI) for NVGRE L2 tunnels, which is
encoded in IANA IE351 (layer2SegmentId) with MSB 0x02. Thanks to
Leonardo Rodoni ( @rodonile ) for this contribution.
+ sfacctd: added support for accounting for ARP packets via a new
aggregate_unknown_etype config knob.
+ nfacctd, sfacctd, pmacctd: added new 'in_cvlan' and 'out_cvlan'
primitives. It identifies the VLAN to which the frame belongs to
when it is transmitted in the customer network.
+ BGP daemon: added support for "Only to Customer" OTC attribute,
RFC9234.
+ BGP daemon: extend MP nexthop length to support 48 bytes to fit
the BGP VPNv6 nexthop length. Thanks to @FRIDM636 for this
contribution.
+ BGP daemon: as specified by RFC8950, routers cannot advertise
IPv4 or VPNV4 routes with an IPv6 next hop without an extra
capability advertisement (Extended Next Hop Encoding). This has
been added so that the daemon can reply with this capability to
the remote peer. Thanks to Leonardo Rodoni ( @rodonile ) for
this contribution.
+ BGP, BMP daemons: Two new configuration keys are introduced:
bgp_comms_encode_as_array and as_path_encode_as_array to allow
to specify that BGP communities and AS_PATH are encoded as an
array in JSON or AVRO encodings.
+ BMP daemon: a new bmp_dump_exclude_stats config knob has been
added: if enabled, BMP Stats messages are not going to be cached
and thus not being included in the regular dump.
+ All daemons: added a -T / dry_run config knob. With the 'config'
argument only configuration is validated; with the 'setup' one
the daemon and its plugins are also instantiated and validated.
+ Kafka plugin: allowing to configure sub-minute historical time
bins (ie. kafka_history, etc.).
+ pre_tag_map: introduced pre_tag_map_dont_recirculate config knob
to explicitely disable v4/v6 recirculation of entries without an
'ip' key specified. Also if 'ip' key is not defined, still define
the address family (AF) so to be memory-savvy and avoid creating
duplicate entries in case of v4/v6 recirculation.
+ nDPI support: updated API calls to compile against nDPI 4.6. Also
dropped support for previous versions of the library.
! fix, nfacctd: treat the result of (SysUptime - fstime) as signed
to avoid a underflow in the case where fstime > SysUptime in
NetFlow v9. Thanks to Jim Westfall ( @jwestfall69 ) for this
contribution.
! fix, nfacctd: addressed a memory leak in handling NetFlow/IPFIX
templates. Also performed code re-factoring to better encapsulate
the template functionality, add a template header file, separate
the module interface from local functions and reduce the scope of
local functions. Thanks to Uwe Storbeck ( @ustorbeck ) for these
contributions.
! fix, nfacctd: parsing of IPFIX/NetFlow data when a template does
contain multiple padding octet fields IE 210 (paddingOctets) with
different length. Thanks to Uwe Storbeck ( @ustorbeck ) for this
contribution.
! fix, nfacctd: 4 bytes long IE95 (applicationID) is now supported;
as part of this work the setup of nDPI and NBAR classifiers have
been harmonized.
! fix, sfacctd: mispelled daemon type in sampling_direction handler
was causing counters not to print.
! fix, pmacctd: restored packet data pointer for correct collection
of ICMPv6 data.
! fix, uacctd: the daemon was crashing upon receipt an ICMP Echo
Request packet (as a result, for example, of a ping). Thanks to
Alexei A Smekalkine ( @ikle ) for this contribution.
! fix, pmtelemetryd: when no backend dump method is configured (and
telemetry_dump_time_slots is not set) pmtelemetryd was crashing
with SIGFPE. Also fixed the dump interval calculation when time
slots are used. Thanks to Uwe Storbeck ( @ustorbeck ) for these
contributions.
! fix, pmtelemetryd: restored ability of the daemon re-loading maps
via SIGUSR2 signal. Thanks to Salvatore Cuzzilla ( @scuzzilla )
for this contribution.
! fix, BGP, BMP daemons: the hash function used to distribute per-
peer information attached to RIB entries was enriched with the
addition of Route Distinguisher (RD) data in order to minimize
collisions. It is in fact crucial to have an efficient hash-table
to perform data correlation between BGP/BMP & IPFIX. Thanks to
Salvatore Cuzzilla ( @scuzzilla ), Leonardo Rodoni ( @rodonile )
for this contribution.
! fix, BMP daemon: finer grained control on support of ADD-PATH
capability as part of the Peer Up message in order to support
the case of remote peer receive-only scenario.
! fix, SQL plugins: 'in_vlan' primitive is not muxed anymore on
'vlan' keyword at configure time. Also, 'out_vlan' primitive is
now properly handled if sql_optimize_clauses left false.
! fix, MySQL plugin: if timestamps_utc is set to true, enforce UTC
for the current session.
! fix, tee plugin: missing variable definition when BSD definition
is on was preventing the code to compile correctly.
! fix, pre_tag_map: check added to avoid daemon hanging if 'next'
label was mentioned as part of the last map entry.
! fix, Redis: avoid to create a new file descriptor for every
reconnect. Use redisReconnect instead of redisConnect. Thanks to
Uwe Storbeck ( @ustorbeck ) for this contribution.
! fix, util.c: weekly time roundoff has been made consistent by
correctly including the first day of the week.
! fix, util.c: when pidfile is specified, use mkdir_multilevel() to
build dir structure if needed.
! fix, plugins_hook.c: when processing a pcap_savefile, perform an
inter-buffer sleep of 1ms only if using home-grown buffering as
ZeroMQ (plugin_pipe_zmq) would instead do fine absorbing the data
burst.
! fix, rpki_msg.c: missing json_decref() in rpki_roas_file_load()
was leaking memory on map reload. Also, solved a SEGV observed at
times when reloading rpki_roas_file. Finally free'd the output of
aspath_make_str_count() in rpki_roas_file_load().
- pmtelemetryd: removed legacy Python decoders and associated utils,
also removed support for Kafka and ZeroMQ telemetry collection.
- pre_tag_map: obsoleted 'fwdstatus' key.
- GeoIP support: removed support for Maxmind API v1.
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/pmacct | 18 +++++++++---------
1 file changed, 9 insertions(+), 9 deletions(-)
diff --git a/lfs/pmacct b/lfs/pmacct
index 038777646..5348c2add 100644
--- a/lfs/pmacct
+++ b/lfs/pmacct
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2019-2023 IPFire Team <info(a)ipfire.org> #
+# Copyright (C) 2019-2024 IPFire Team <info(a)ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -26,7 +26,7 @@ include Config
SUMMARY = Accounting and aggregation toolsuite for IPv4 and IPv6
-VER = 5a5e272
+VER = 1.7.9
THISAPP = pmacct-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -34,7 +34,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = pmacct
-PAK_VER = 7
+PAK_VER = 8
DEPS = libcdada
@@ -48,7 +48,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 7b86189cde0bcfd1756a03dbcdccde17a5780b3c3f2616a917609ba617de2ad6e08e16ae00f81c90233944157f19ec995bd43c06030ab70da869bb523f0433a7
+$(DL_FILE)_BLAKE2 = 70bca376e76d774527ef81f5688ed8f33723989d5a4627532e1bfa66789933ff7cb95848d9347763ce86c2fd34887916d60c40db309ec48fe9fa8d2f084e4e0a
install : $(TARGET)
@@ -83,11 +83,11 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
cd $(DIR_APP) && ./autogen.sh
cd $(DIR_APP) && ./configure \
- --prefix=/usr \
- --sysconfdir=/etc/pmacct \
- --enable-sqlite3 \
- --enable-l2 \
- --enable-jansson
+ --prefix=/usr \
+ --sysconfdir=/etc/pmacct \
+ --enable-sqlite3 \
+ --enable-l2 \
+ --enable-jansson
# Add directory for plugins and pipes
-mkdir -v /var/spool/pmacct
# Add configuration folder and copy conf file to it
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
* [PATCH] stunnel: Update to version 5.72
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
` (11 preceding siblings ...)
2024-08-12 15:38 ` [PATCH] pmacct: Update to version 1.7.9 Adolf Belka
@ 2024-08-12 15:38 ` Adolf Belka
12 siblings, 0 replies; 14+ messages in thread
From: Adolf Belka @ 2024-08-12 15:38 UTC (permalink / raw)
To: development
[-- Attachment #1: Type: text/plain, Size: 1831 bytes --]
- Update from version 5.71 to 5.72
- Update of rootfile not required
- Changelog
5.72
* Security bugfixes
- OpenSSL DLLs updated to version 3.2.1.
* Bugfixes
- Fixed SSL_CTX_new() errors handling.
- Fixed OPENSSL_NO_PSK builds.
- Android build updated for NDK r23c.
- stunnel.nsi updated for Debian 12.
- Fixed tests with OpenSSL older than 1.0.2.
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
lfs/stunnel | 12 ++++++------
1 file changed, 6 insertions(+), 6 deletions(-)
diff --git a/lfs/stunnel b/lfs/stunnel
index 61d1fe4a1..977b1ae71 100644
--- a/lfs/stunnel
+++ b/lfs/stunnel
@@ -24,7 +24,7 @@
include Config
-VER = 5.71
+VER = 5.72
SUMMARY = Universal TLS Tunnel
THISAPP = stunnel-$(VER)
@@ -33,7 +33,7 @@ DL_FROM = $(URL_IPFIRE)
DIR_APP = $(DIR_SRC)/$(THISAPP)
TARGET = $(DIR_INFO)/$(THISAPP)
PROG = stunnel
-PAK_VER = 12
+PAK_VER = 13
DEPS =
@@ -47,7 +47,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = d323363c7bfdd6c0b7931b84a6069cf9a8337e967c31e14d15976d7932f0c0d6f40f7a1cbf5abbdff0e9edc52176cdcead4f848653088193b2debf4e77443b42
+$(DL_FILE)_BLAKE2 = 2b4c6400cf25522592e237f35700f81c0092a827526155cb02f503a9b3af50242aea63c3b5389a62d002d6a2ec9e852f80cc9c48318f23d3f9d12ff42cbe5978
install : $(TARGET)
@@ -81,9 +81,9 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects))
@$(PREBUILD)
@rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar zxf $(DIR_DL)/$(DL_FILE)
cd $(DIR_APP) && ./configure \
- --prefix=/usr \
- --sysconfdir=/etc \
- --localstatedir=/var
+ --prefix=/usr \
+ --sysconfdir=/etc \
+ --localstatedir=/var
cd $(DIR_APP) && make $(MAKETUNING)
cd $(DIR_APP) && make install
--
2.46.0
^ permalink raw reply [flat|nested] 14+ messages in thread
end of thread, other threads:[~2024-08-12 15:38 UTC | newest]
Thread overview: 14+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2024-08-12 15:37 [PATCH] bwm-ng: Update to version 0.6.3 Adolf Belka
2024-08-12 15:37 ` [PATCH] cups: Update to version 2.4.10 Adolf Belka
2024-08-12 15:37 ` [PATCH] fetchmail: Update to version 6.4.39 Adolf Belka
2024-08-12 15:37 ` [PATCH] fping: Update to version 5.2 Adolf Belka
2024-08-12 15:37 ` [PATCH] freeradius: Update to version 3.2.5 Adolf Belka
2024-08-12 15:38 ` [PATCH] frr: Update to version 10.1 Adolf Belka
2024-08-12 15:38 ` [PATCH] haproxy: Update to version 3.0.3 Adolf Belka
2024-08-12 15:38 ` [PATCH] hplip: Update to version 3.24.4 Adolf Belka
2024-08-12 15:38 ` [PATCH] iperf: Update to version 2.2.0 Adolf Belka
2024-08-12 15:38 ` [PATCH] keepalived: Update to version 2.3.1 Adolf Belka
2024-08-12 15:38 ` [PATCH] ncat: Update to version 7.95 Adolf Belka
2024-08-12 15:38 ` [PATCH] nmap: " Adolf Belka
2024-08-12 15:38 ` [PATCH] pmacct: Update to version 1.7.9 Adolf Belka
2024-08-12 15:38 ` [PATCH] stunnel: Update to version 5.72 Adolf Belka
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox