This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree".
The branch, core154 has been created at 8e308e4eb2534c260a29a17bd66700f894a84cb9 (commit)
- Log ----------------------------------------------------------------- commit 8e308e4eb2534c260a29a17bd66700f894a84cb9 Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Feb 5 16:44:41 2021 +0000
Update contributors
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ed900d153ef5452779f8eae0320c424b4216d9b4 Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Feb 5 11:24:50 2021 +0000
core154: Ship lzip
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f407f05a6f0b4a85e7852ac01d71f4d9373940ae Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Feb 4 23:17:22 2021 +0100
lzip: Installation of lzip-1.22
- Installation of lzip-1.22 into IPFire Build system. Required for update of ddrescue addon as gnu only using lzip compression for ddrescue from 2013. - Created rootfiles - Installed lzip into build sequence of make.sh at same location as other compressor packages.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ece62d250091d962f12cbfb8de92ebfc26a0856e Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Feb 4 23:17:08 2021 +0100
ddrescue: Update to 1.25
- Update ddrescue from 1.12 to 1.25 - Updated rootfiles - Since 2013 gnu started to only use lzip for compression of ddrescue Therefore second patch of this series is the installation of lzip in the IPFire Build. - Changelog 2020-02-21 Antonio Diaz Diaz antonio@gnu.org * Version 1.25 released. * block.h: Add default constructors to classes Block and Sblock. (Reported by Rosen Penev). * check.sh: Quote all file name variables to allow names with spaces. (Reported by David Morrison). * In rescue mode, join non-finished subsectors read from mapfile. (Reported by David Burton). * mapbook.cc (update_mapfile): Exclude writing time from intervals. (Reported by David Burton). * rescuebook.cc (extend_outfile_size): Use ftruncate if it works. * Print large numbers in groups of 3 digits separated by underscores. * main.cc: Set a valid invocation_name even if argc == 0. 2019-02-24 Antonio Diaz Diaz antonio@gnu.org * Version 1.24 released. * Added new option '--command-mode'. * Implemented mapfile backup. * ddrescue.texi: Documented final contents of bad areas in outfile. * configure: Accept appending to CXXFLAGS, 'CXXFLAGS+=OPTIONS'. 2018-02-13 Antonio Diaz Diaz antonio@gnu.org * Version 1.23 released. * rescuebook.cc (trim_errors): Fix wrong change to non-scraped. * Added new option '--same-file'. * Added new option '--shift' to ddrescuelog. * fillbook.cc (fill_block): Write location data as one line. * fillbook.cc (read_buffer): Do not require a seekable infile. * ddrescue.texi: Added chapter 'Output'. * check.sh: Added 'combined rescue' test. * io.cc: Added missing '#include <cstdio>'. 2017-02-03 Antonio Diaz Diaz antonio@gnu.org * Version 1.22 released. * Option '-X, --exit-on-error' replaced by '-X, --max-read-errors'. * Added new option '--max-slow-reads'. * Added new option '--delay-slow'. * Added new option '--reset-slow'. * Added new option '--log-events'. * Added new option '--mapfile-interval'. * Added new option '--pause-on-error'. * Option '--pause' has been renamed to '--pause-on-pass'. * Option '--max-errors' has been renamed to '--max-bad-areas'. * Renamed 'errsize' to 'bad_size' and 'errors' to 'bad_areas' * Rescuebook: Show read_errors, error_rate and slow_reads. * Added 'current_pass' field to mapfile. * Added two new passes (3 and 4) to the copying phase. * main.cc (parse_cpass): Accept ranges of passes. * Option '-K, --skip-size' now accepts sizes up to 1 EiB. * Initial skip size now defaults to (infile_size / 100_000). * rescuebook.cc (copy_non_tried): Don't reduce min_read_rate, enable it only for passes 1 and 2. * rescuebook.cc (trim_errors): Don't trim bad edges. * main_common.cc (getnum): Accept 's' after other multiplier. * '--ask', '-vv' now show size along with model and serial number. * non_posix.cc: Add 'device_id' for Cygwin. (Patch written by Christian Franke franke@computer.org). * rescuebook.cc (do_rescue): Show full sizes in domain warning. * Added new option '-A, --annotate-mapfile' to ddrescuelog. 2016-03-17 Antonio Diaz Diaz antonio@gnu.org * Version 1.21 released. * mapbook.cc (Mapbook): Fix iobuf alignment. (Reported by Heikki Tauriainen). * Removed short option names '-1' and '-2'. * Allow only regular files for '--log-rates' and '--log-reads'. * Option '-D, --odirect' now works also in fill mode. * rescuebook.cc (copy_block): Return 1 on unaligned read error. Set e_code on any error if verify_on_error. * Option '-X, --exit-on-error' has been extended to all phases. * Assigned short name '-Z' to option '--max-read-rate'. * mapbook.cc (update_mapfile): 'fsync' the mapfile every 5 minutes. * Rescuebook: Show full range of sizes from non-tried to finished. * rescuebook.cc (show_status): Show percentage rescued. * configure: Avoid warning on some shells when testing for g++. * Makefile.in: Detect the existence of install-info. 2015-09-10 Antonio Diaz Diaz antonio@gnu.org * Version 1.20 released. * 'logfile' has been renamed to 'mapfile' everywhere. * Changed short name of option '--synchronous' to '-y'. * Changed long name of option '-d' to '--idirect'. * Added new option '-D, --odirect'. * Added new option '-J, --verify-on-error'. * Added new option '--max-read-rate'. * rescuebook.cc (copy_block): Copy arbitrary blocks with '--idirect'. * Include only bad-sector blocks in 'errsize'. * rescuebook.cc (show_status): Show the estimated remaining time. * io.cc (format_time): Show time in days, hours, minutes and seconds. * Added per sector location data to fill mode. * mapbook.cc: Added emergency save of the mapfile. * Show device name with '--ask' or '-vv' on Haiku. * mapfile.cc (read_mapfile): Read read-only mapfiles from stdin. * ddrescuelog.cc: Allow multiple mapfiles for '-t, --show-status'. * ddrescuelog.cc (create_mapfile): '-' writes mapfile to stdout. * ddrescue.texi: Added new chapter 'Optical media'. * ddrescue.texi: Documented maximum size of the rescue domain. * configure: Option '--enable-linux' renamed to '--enable-non-posix'. * Makefile.in: Added new targets 'install*-compress'. * File 'ddrescue.h' renamed to 'mapbook.h'. * File 'logbook.cc' renamed to 'mapbook.cc'. * File 'logfile.cc' renamed to 'mapfile.cc'. * Files linux.{h,cc} renamed to non_posix.{h,cc}. 2014-10-03 Antonio Diaz Diaz antonio@gnu.org * Version 1.19 released. * Fixed a race condition at start of run with '--timeout=0'. * Added new option '-P, --data-preview'. * Added new option '-u, --unidirectional'. * Added new option '-X, --exit-on-error'. * Added new option '--ask' to ask for user confirmation. * Added new option '--cpass' to select passes during copying phase. * Added new option '--pause' to insert a pause between passes. * Removed option '-l, --logfile-size'. * Skip on the first error during the copying phase. * rescuebook.cc: Trimming done in one pass, may be run in reverse. * The splitting phase has been replaced by a scraping phase. * Changed long name of option '-n' to '--no-scrape'. * rescuebook.cc: Alternate direction of passes during retrying phase. * Show ATA model and serial number with '--ask' or '-vv' on Linux. * configure: Added new option '--enable-linux'. * New files linux.h linux.cc. * License changed to GPL version 2 or later. 2014-06-10 Antonio Diaz Diaz antonio@gnu.org * Version 1.18.1 released. * ddrescuelog.cc (do_logic_ops): Fixed 'or' and 'xor'. * Added new option '-H, --test-mode' to simulate read errors. * Added new option '-L, --loose-domain' to ddrescue and ddrescuelog. * Added new option '-N, --no-trim' to disable trimming of damaged areas. * Added new option '-O, --reopen-on-error'. * Added new options '-1, --log-rates', '-2, --log-reads'. * Extended '-K, --skip-size' with maximum and disable values. * Changed long name of option '-r' to '--retry-passes'. * Changed short name of option '--generate-mode' to '-G'. * Default value of option '-l, --logfile-size' increased to 10000. * If interrupted, ddrescue terminates by raising the signal received. * rescuebook.cc (copy_non_tried): Don't mark skipped blocks as non-trimmed. Try them in additional passes (before trimming). * rescuebook.cc: Limit the copying phase to 3 passes. * rescuebook.cc: Alternate direction of passes during copying phase. * rescuebook.cc: Smallest blocks are trimmed first. * rescuebook.cc (split_errors): Read largest first if logfile full. * Improved speed when using option '-m, --domain-logfile'. * io.cc (show_status): Show the current total run time. * rescuebook.cc: Show pass number and direction during copying. * rescuebook.cc (show_status): Show block pos instead of current_pos. * main.cc: Show "an unknown number of bytes" for unknown insize. * Added option '-B, --binary-prefixes' to ddrescuelog. * Added new option '-C, --complete-logfile' to ddrescuelog. * Added new option '-P, --compare-as-domain' to ddrescuelog. * Improved speed of logic operations in ddrescuelog. * rescuebook.cc (do_rescue): Show warning when domain is smaller than logfile. * ddrescuelog.cc (do_show_status): Show logfile and domain extents when domain is smaller than logfile. * block.h: Class Block now forces the invariant by itself. * Code reorganization. New class 'Logfile'. * Added status message to rescue logfile. * Many improvements to documentation. * ddrescue.texinfo: Renamed to ddrescue.texi. 2013-07-09 Antonio Diaz Diaz antonio@gnu.org * Version 1.17 released. * Added new option '-l, --logfile-size'. * Added new option '-w, --ignore-write-errors'. * Option '--fill' has been renamed to '--fill-mode'. * Option '--generate-logfile' has been renamed to '--generate-mode'. * Added option '--sector-size' as a synonym of '--block-size'. * Added option '--retries' as a synonym of '--max-retries'. * Added option '--size' as a synonym of '--max-size'. * rescuebook.cc: Trimming is now done from both edges of each non-trimmed block. Largest blocks are trimmed first. * rescuebook.cc: Largest blocks are now split first until logfile reaches '--logfile-size' entries. * logbook.cc (extend_sblock_vector, truncate_vector): Terminate if truncation would discard finished blocks. * rescuebook.cc: Mark failed blocks with 1 sector as bad-sector. * logbook.cc (extend_sblock_vector): Remove last block of logfile if it starts at insize and is not marked as finished. * io.cc (show_status, update_rates): Detect a jump back in time and adjust status. * ddrescue.h (slow_read): Return false for the first 10 seconds. * io.cc (show_status) Leave cursor after message so that ^C does not overwrite it. * main.cc: Don't require '--force' for generate mode. * ddrescue.h (Logbook::logfile_exists): Don't return false if logfile exists but is empty. * ddrescue.texinfo: Added new chapter 'Using ddrescue safely'. * Documented that 'direct disc access' only reads whole sectors. * configure: Options now accept a separate argument. * Makefile.in: Added new target 'install-bin'. 2012-06-11 Antonio Diaz Diaz ant_diaz@teleline.es * Version 1.16 released. * Added new option '-K, --skip-size'. * Added new option '-T, --timeout'. * Changed short name of option '--try-again' to '-A'. * Maximum skip size is now limited to 1% of infile size or 1 GiB (whichever is smaller), rounded to the next multiple of sector size. * Set current_pos to end of block when reading backwards. * The option '-E, --max-error-rate' now checks the rate of actually failed reads, not the growth of error size. * The option '-v, --verbose' now increases verbosity if repeated. * Changed quote characters in messages as advised by GNU Standards. * configure: 'datadir' renamed to 'datarootdir'. * New files rational.h, rational.cc. 2012-01-01 Antonio Diaz Diaz ant_diaz@teleline.es * Version 1.15 released. * Added new option '-a, --min-read-rate'. * Added new option '-I, --verify-input-size'. * Added new option '-x, --extend-outfile'. * main.cc: Verify that infile, outfile and logfile are all different. * Non-tried blocks are now read aligned to cluster-size sectors. * rescuebook.cc: Improved skip algorithm for the split pass. * main.cc: Removed spurious warning about '-D' ignored in fill mode. * ddrescue.texinfo: Improved description of algorithm. * logbook.cc (change_chunk_status): Return an adjust value (-1, 0, 1) to keep "errors" updated without calling count_errors every time. * ddrescue.cc: Renamed to io.cc. * Added 'ddrescuelog', a program for logfile manipulation. 2011-01-10 Antonio Diaz Diaz ant_diaz@teleline.es * Version 1.14 released. * Added new option '-R, --reverse'. * Added new option '-E, --max-error-rate'. * Extended syntax '--max-errors=+N' to specify new errors. * Changed short name of option '--retrim' to '-M'. * Removed spurious warning about 'preallocation not available'. * Code reorganization. New class 'Genbook'. 2010-08-27 Antonio Diaz Diaz ant_diaz@teleline.es * Version 1.13 released. * Non-regular output files are no longer overwritten by default. * Added new option '-f, --force'. * Added new option '-p, --preallocate'. * main.cc (write_logfile_header): Write command line to logfile. * ddrescue.texinfo: Added info about logfile and recoverable formats. * ddrescue.texinfo: Added a couple more warnings to the tutorial. * testsuite: 'test1' renamed to 'test.txt' * Revert to use 'long' instead of 'time_t' for time variables. Ddrescue only needs counting seconds and 'time_t' causes warnings on some systems.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 446b9291f9773ba462da8a561c966e59e48f19cb Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Feb 5 11:23:30 2021 +0000
core154: Ship curl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2e4321c1f49dc3a8b4c5b0357a8b60889d9da89c Author: Matthias Fischer matthias.fischer@ipfire.org Date: Thu Feb 4 17:21:46 2021 +0100
curl: Update to 7.75
For details see: https://curl.se/changes.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8474dc4a7743fc9da0cf1496c76c74c4aaf7cc36 Author: Peter Müller peter.mueller@ipfire.org Date: Thu Feb 4 21:39:32 2021 +0100
Tor: update to 0.4.4.7
Full changelog of this version as per https://gitweb.torproject.org/tor.git/plain/ChangeLog?h=tor-0.4.4.7:
Changes in version 0.4.4.7 - 2021-02-03 Tor 0.4.4.7 backports numerous bugfixes from later releases, including one that made v3 onion services more susceptible to denial-of-service attacks, and a feature that makes some kinds of DoS attacks harder to perform.
o Major bugfixes (onion service v3, backport from 0.4.5.3-rc): - Stop requiring a live consensus for v3 clients and services, and allow a "reasonably live" consensus instead. This allows v3 onion services to work even if the authorities fail to generate a consensus for more than 2 hours in a row. Fixes bug 40237; bugfix on 0.3.5.1-alpha.
o Major feature (exit, backport from 0.4.5.5-rc): - Re-entry into the network is now denied at the Exit level to all relays' ORPorts and authorities' ORPorts and DirPorts. This change should help mitgate a set of denial-of-service attacks. Closes ticket 2667.
o Minor feature (build system, backport from 0.4.5.4-rc): - New "make lsp" command to generate the compile_commands.json file used by the ccls language server. The "bear" program is needed for this. Closes ticket 40227.
o Minor features (compilation, backport from 0.4.5.2-rc): - Disable deprecation warnings when building with OpenSSL 3.0.0 or later. There are a number of APIs newly deprecated in OpenSSL 3.0.0 that Tor still requires. (A later version of Tor will try to stop depending on these APIs.) Closes ticket 40165.
o Minor features (crypto, backport from 0.4.5.3-rc): - Fix undefined behavior on our Keccak library. The bug only appeared on platforms with 32-byte CPU cache lines (e.g. armv5tel) and would result in wrong digests. Fixes bug 40210; bugfix on 0.2.8.1-alpha. Thanks to Bernhard Übelacker, Arnd Bergmann and weasel for diagnosing this.
o Minor bugfixes (compatibility, backport from 0.4.5.1-rc): - Strip '\r' characters when reading text files on Unix platforms. This should resolve an issue where a relay operator migrates a relay from Windows to Unix, but does not change the line ending of Tor's various state files to match the platform, and the CRLF line endings from Windows end up leaking into other files such as the extra-info document. Fixes bug 33781; bugfix on 0.0.9pre5.
o Minor bugfixes (compilation, backport from 0.4.5.3-rc): - Fix a compilation warning about unreachable fallthrough annotations when building with "--enable-all-bugs-are-fatal" on some compilers. Fixes bug 40241; bugfix on 0.3.5.4-alpha.
o Minor bugfixes (SOCKS5, backport from 0.4.5.3-rc): - Handle partial SOCKS5 messages correctly. Previously, our code would send an incorrect error message if it got a SOCKS5 request that wasn't complete. Fixes bug 40190; bugfix on 0.3.5.1-alpha.
o Minor bugfixes (testing, backport from 0.4.5.2-alpha): - Fix the `config/parse_tcp_proxy_line` test so that it works correctly on systems where the DNS provider hijacks invalid queries. Fixes part of bug 40179; bugfix on 0.4.3.1-alpha. - Fix our Python reference-implementation for the v3 onion service handshake so that it works correctly with the version of hashlib provided by Python 3.9. Fixes part of bug 40179; bugfix on 0.3.1.6-rc. - Fix the `tortls/openssl/log_one_error` test to work with OpenSSL 3.0.0. Fixes bug 40170; bugfix on 0.2.8.1-alpha.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8e07deb9839e341bf9841fd08e82c55cd5ab6017 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Thu Feb 4 18:27:21 2021 +0100
clamav: Update to 0.103.1
For details see: https://blog.clamav.net/2021/02/clamav-01031-patch-release.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit fe2c0e0fa0729589488e60eda4aa6dd6f70ee01f Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Feb 5 11:19:34 2021 +0000
core154: Ship pptp
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 74e28f29f8cfe2ab8df905cee1b29cbfe00f81fb Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Feb 4 13:56:39 2021 +0100
pptp: Update to 1.10.0
- Update pptp from 1.7.2 (Jun 2008) to 1.10.0 (Jan 2018) - No change to rootfile - Removal of pptp-1.7.2-compat.patch as all changes to pptp_compat.c are now included in the file in the new tarball.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1116930315418a0dbc410a0c49de22134d68205d Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Feb 5 11:17:54 2021 +0000
core154: Ship less
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 304f647749912c429cee7791d6da8ccd70692868 Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Feb 4 13:56:27 2021 +0100
less: Update to version 563
- Update less from 530 to 563 - No change in rootfile - Changelog Version 563 was released on 21 Oct 2020. These are the differences between version 551 and version 563: Update Unicode tables. Treat Hangul Jamo medial vowels and final consonants as zero width. Display error message immediately when -o is toggled and input is not a pipe. Fix regression: make screen repaint when "squished" and a no-movement command is given. Fix erroneous EOF calculation when F command is interrupted. Make WIN32C version include this fix from 551: Don't count lines in initial screen if using -X with -F. Fix display bug in WIN32C version. Fix memory corruption when built with libtermcap. Fix crash on some systems due to realpath incompatibility. Support libtinfow. Version 551 was released on 11 Jun 2019 551 is the same as 550 except for a few documentation changes. Version 550 was released on 3 Jun 2019. These are the differences between version 530 and version 550: Add --mouse option. Add --wheel-lines option. Add --no-histdups option. Add --save-marks option. Support PCRE2 regular expression library. Redraw screen on SIGWINCH even if screen size doesn't change. Shell-escape filenames in history so they can be used again. Ring bell if user enters invalid long option name. Use PCRE_UTF8 flag for pcre regular expressions when in UTF-8 mode. Windows: use wide-char string to set console title. Don't count lines in initial screen if using -X with -F. Support mingw build system. Fix bug in v command on empty file. Fix bug in v command when filename contains shell metacharacters.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 4306f30b6f80de3c7c0d7b398e42616abdc4d006 Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Feb 5 11:16:58 2021 +0000
core154: Ship findutils
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5de33a38d801a1fb0420efa20d108b9f5312d913 Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Feb 4 13:55:08 2021 +0100
findutils: Update to 4.8.0
- Update findutils from 4.6.0 to 4.8.0 - Remove findutils-4.6.0-glibc2.28.patch from lfs as all patch items are now in the new tarball files. - Remove sed command on gl/lib/mountlist.c from lfs as all fixes are in the mountlist.c file in the new tarball. - Update rootfiles - Changelog Following are major changes. Further detailed info available in changelog file in tarball. * Noteworthy changes in release 4.8.0 (2021-01-09) [stable] ** Changes in xargs 'xargs -t' no longer outputs a trailing blank to stderr after the last argument of each constructed command line to be executed. [#57291] xargs now warns when more than one of the conflicting options --max-lines (-L, -l), --replace (-i/-I) and --max-args (-n) are specified on the command line. [#52137] ** Bug Fixes find no longer crashes when an XFS filesystem is heavily changed during the run. Discussed at: https://lists.gnu.org/r/bug-gnulib/2020-04/msg00068.html find -used works again. This predicate was not working properly since adding the support for sub-second timestamp resolution for various predicates in FINDUTILS_4_3_3-1 back in 2007. Discussed at: https://lists.gnu.org/r/bug-findutils/2019-11/msg00010.html ** Improvements 'find -D exec' now diagnoses all -exec, -execdir, -ok and -okdir runs including the call arguments and the exit code of the launched process. [#59083] ** Documentation Changes The documentation of 'find -printf %Ak' has been improved: it now refers to the strftime(3) documentation for a complete list of supported conversion specifiers, and documents the 'F' conversion specifier ('yyyy-mm-dd'). The man pages (find.1, locate.1, locatedb.5, updatedb.1, and xargs.1) now consistently end with the sections "REPORTING BUGS", "COPYRIGHT" and "SEE ALSO", with the latter referring to the online page on the GNU web server. The "EXAMPLES" section in the find.1 man page now shows the examples in a better structure and uses consistent formatting. Various man page fixes - syntax issues and typos. [#59745, #59330, #59012, #58193, #57807, #57775] Other documentation changes: #58654: doc: clarify that 'find -perm +MODE' is unrelated to umask #58458: doc: improve section 'Hard links', especially fix the description regarding 'find -L -samefile FILE'. #58205: find.1: clarify double dash '--' option #58149: 'xargs --help' now mentions that --replace (-I, -i) splits the input at newline characters. #57025: doc: enhance description of tests accepting numeric arguments in find.1 [see also #49640]. #54730: Add additional valuable example of find -quit #48135: Fix testsuite error on Hurd and BSD related to ln #35253: Clarify descriptions of -printf %f, %h. ** Changes to the build process The configure option --without-fts has been removed. The attempt to use it stopped configure with an error message since 4.5.18 (2015) anyway. * Major changes in release 4.7.0, 2019-08-29 ** Changes to locate / updatedb Support for generating old-format databases (with updatedb --old-format or updatedb --dbformat=old) has been removed. The old database format was deprecated in 2007 (and updatedb has warned about this since that time). The locate program will will read old-format databases, though this support also will be removed. The updatedb script now operates in the C locale only. This means that character encoding issues are now not likely to cause sort to fail. It also honours the TMPDIR environment variable if that was set, and no longer sorts file names case-insensitively. The (unspecified) order in which filenames are stored in the locate database is now different to previous versions. However, you should not rely on locate's output appearing in any particular order in any case. ** Improvements All utilities now only show the full usage text when requested via the --help option. Previously, when the user passed invalid options or arguments, the user's attention to the corresponding error diagnostic was distracted by that lengthy text. find now accepts multiple file type arguments to the -type and -xtype options separated by comma ','. For example, to search for symbolic links and directories simply provide the shorter '-type l,d' instead of the - yet more portable - '( -type l -o -type d )'. find now diagnoses failures returned by readdir(). This bug was inherent in the use of FTS. find now exits in more cases immediately after the error diagnostic, i.e., without the following usage text, to make the former more eye-catching. find now outputs a better hint in case the user passed an unquoted shell- glob pattern to options like -name, i.e., when the offending argument is an existing file. find now supports the debug option '-D all' to include all of the other debug options at once. xargs now supports the -o, --open-tty option to reopen stdin as /dev/tty in the child process before executing the command; useful to run an interactive application. Added for compatibility with BSD. xargs now supports the GNU_FINDUTILS_FD_LEAK_CHECK environment variable to enable/disable fd leak check. 'xargs -t' (--verbose) now properly quotes each part of the command to the executed if needed when printing it to stderr; likewise -p (--interactive). ** Documentation Changes Prefer https:// over http:// links where possible, e.g. for '*.gnu.org' servers. Both find.1 and the find texinfo manual now consistently document all of the 'N', 'L' and '?' possibilities in '-printf %Y' output when the determination of the type of a symlink target fails. find.1 now correctly states the -prune has no effect when the -depth option is given. Before, it wrongly stated that -prune would return false in that case. Some minor documentation improvements are listed in "Bug Fixes" below. ** Bug Fixes #56820: find: improve diagnostic when a global option like -maxdepth is specified after another argument like a test, thus hopefully avoiding translation issues (at least French, German). #56142: doc: fix bug #56142 by specifying which actions inhibit the default -print. #55272: find: improve diagnostic when -name or -iname is used with a pattern containing a directory separator ('/'), suggesting to use -wholename or -iwholename respectively. #54859: doc: fix typo in 'xargs -l' examples in texinfo manual. Change from 'xargs -1' (minus one) to 'xargs -l' (minus El) in 3 places. #54838: doc: fix the examples of the -perm option in the texinfo documentation. The example '-perm -g+w,o+w' was misplaced. Bug present since FINDUTILS_4_2_27-1. #54262: 'find -printf "%Y"' now correctly outputs 'N' for broken symlinks (ENOENT or ENOTDIR). Previously, it output 'l' in such a case. Bug introduced while attempting to fix #29460 in version v4.5.8. #54171: 'find -depth' now outputs the name of unreadable directories. Previously, FTS-based find missed to output those entries. Bug present since the FTS implementation in FINDUTILS_4_3_0-1. #52981: find: the '-delete' action no longer complains about disappeared files when the '-ignore_readdir_race' option is given, too. That action will also returns true in such a case now. #52220: 'find -D' without any further argument no longer crashes. Bug present since the implementation of -D in FINDUTILS_4_3_1-1. #51304: doc: use correct IEC unit prefixes in the documentation of 'find -size'. find(1) uses binary-based units for the suffixes 'k', 'M', and 'G' of the argument of the '-size' option: 1024, 1024*1024 and 1024^3. Therefore, the documentation should use the correct IEC prefixes kibibyte, mebibyte and gibibyte respectively (or their abbreviations 'KiB', 'MiB' and 'GiB'). #50758: doc: fix the description of the -perm examples matching the permission mode "022" in find's texinfo manual: the match is for the file's group and 'other' mode bits instead of for user and group. Bug introduced when adding the -perm examples in FINDUTILS-4.2.11. #50326: find no longer leaks memory for a recently added member in gnulib's mount list structure. #50259: find -printf '%h' now outputs the correct path for arguments with one or more trailing slashes. Previously, it would e.g. output "foo" instead of "." when "foo/" was passed; likewise, it would output "/user/xxx/" instead of "/user" when "/user/xxx//" was passed. Bug introduced in FINDUTILS-4.2.19. #48180: find -noop (an internal option not intended to be exposed to the user) no longer crashes. Bug introduced in FINDUTILS-4.3.1. #48030: find -exec + does not pass all arguments for certain specific filename lengths. After the internal (usually 128k) buffer is full and find(1) executed the given command with these arguments, it would miss to run the command yet another time if only one other file argument has to be processed. Bug introduced in FINDUTILS-4.2.12. #46784: frcode drops last char if no final newline ** Changes to the build process The configure option --enable-id-cache has been removed. It has been a no-op since findnutils-4.5.15. The configure option --enable-debug has been removed. Debugging in find is now controlled by its -D option only. The configure option --enable-silent-rules is the default now. Use --disable-silent-rules or "make V=1" to get verbose build output. "make dist" no longer builds .tar.gz files. xz is portable enough and in wide-enough use that distributing only .tar.xz files is enough. Maintainer builds from the Git repository now derive the version string from the version control system instead of using a fixed string (changed after each release manually). As a result, the inter-release builds can now be distinguished: e.g. "4.6.0.152-fe9c" is the 152th commit after the tag "v4.6.0" and has the Git short hash "fe9c". Builds from an unclean tree are marked with the suffix "-dirty". The translation files in the PO directory are no longer version controlled; instead bootstrap auto-updates them from "translationproject.org" during a maintainer build. A shell-style test framework borrowed from GNU coreutils has been added. This allows better tests with more control over stdin, stdout, stderr, signals, preparatory steps, cleanup, return code verification, root-only tests, etc.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1a4e9c9db4857d0a578bcd5f4d4a60edc5129834 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Feb 4 17:58:08 2021 +0000
fireperf: Add pakfire packaging meta data
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 67fbd255d1f9b609bcdf241b3bc6d30eba46f1d5 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Feb 4 15:57:26 2021 +0000
fireperf: New package
https://lists.ipfire.org/pipermail/development/2021-February/009285.html
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit e514d67f8e6fd3364b3bfa19d68e39435e103a9a Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:50:36 2021 +0000
samba: Update to 4.13.4
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d086a16619c89cd2420a0f6ed80aa93ecb696f73 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:31:02 2021 +0000
Update contributors
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 51605e1b52bac244e3ab8d938010988efa82c232 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:30:37 2021 +0000
Update languages
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 20918d700a49187cbdc4066a978b6c8853802097 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:30:23 2021 +0000
core154: Ship sed
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8928b738d7bbc324cd288fcef2abf7f2bab305d7 Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Feb 3 16:01:48 2021 +0100
sed: Update to 4.8
- Update sed from 4.4 to 4.8 - Updated rootfile - Changelog * Noteworthy changes in release 4.8 (2020-01-14) [stable] ** Bug fixes - "sed -i" now creates temporary files with correct umask (limited to u=rwx). Previously sed would incorrectly set umask on temporary files, resulting in problems under certain fuse-like file systems. [bug introduced in sed 4.2.1] ** Release distribute gzip-compressed tarballs once again ** Improvements a year's worth of gnulib development, including improved DFA performance * Noteworthy changes in release 4.7 (2018-12-20) [stable] ** Bug fixes - Some uses of \b in the C locale and with the DFA matcher would fail, e.g., the following would mistakenly print "123-x" instead of "123": echo 123-x|LC_ALL=C sed 's/.\bx//' - Using a multibyte locale or certain regexp constructs (some ranges, backreferences) would avoid the bug. [bug introduced in sed 4.6] * Noteworthy changes in release 4.6 (2018-12-19) [stable] ** Improvements - sed now prints a clear error message when r/R/w/W (and s///w) commands are missing a filename. Previously, w/W commands would fail with confusing error message, while r/R would be a silent no-op. - sed now uses fully-buffered output (instead of line-buffered) when writing to files. This should noticeably improve performance of "sed -i" and other write commands. Buffering can be disabled (as before) with "sed -u". - sed in non-cygwin windows environments (e.g. mingw) now properly handles '\n' newlines in -b/--binary mode. ** Bug fixes - sed no longer accesses invalid memory (heap overflow) when given invalid backreferences in 's' command [bug#32082, present at least since sed-4.0.6]. - sed no longer adds extraneous NUL when given s/$//n command. [related to bug#32271, present since sed-4.0.7] - sed no longer accesses invalid memory (heap overflow) with s/$//n regexes. [bug#32271, present since sed-4.3]. ** New Features New option, --debug: print the input sed script in canonical form and annotate program execution. * Noteworthy changes in release 4.5 (2018-03-31) [stable] ** Bug fixes - sed now fails when matching very long input lines (>2GB). Before, sed would silently ignore the regex without indicating an error. [Bug present at least since sed-3.02] - sed no longer rejects comments and closing braces after y/// commands. [Bug existed at least since sed-3.02] - sed -E --posix no longer ignores special meaning of '+','?','|' . [Bug introduced in the original implementation of --posix option in v4.1a-5-gba68fb4] - sed -i now creates selinux context based on the context of the symlink instead of the symlink target. [Bug present since at least sed-4.2] - sed -i --follow-symlinks remains unchanged. - sed now treats the sequence '\x5c' (ASCII 92, backslash) as literal backslash character, not as an escape prefix character. [Bug present since sed-3.02.80] Old behavior: $ echo z | sed -E 's/(z)/\x5c1/' # identical to 's/(z)/\1/' z New behavior: $ echo z | sed -E 's/(z)/\x5c1/' \1
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit be184f040f4f18ccb3eca6f0ec38e2d84b350424 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:28:44 2021 +0000
core154: Ship newt
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit fb87d2756e8bb1fee1156b554943c7f25019544c Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Feb 3 16:01:36 2021 +0100
newt: Update to 0.52.21
- Update newt from 0.52.18 to 0.52.21 - Updated rootfile - Changelog 0.52.21 - define env NEWT_NOFLOWCTRL to disable flow control (Robert Gill) - don't leak memory on errors in dialogboxes - fix radio button selection check in snack - fix plural forms in Lithuanian translation (#1568999) - fix parallel build (Émeric Dupont) - allow python versions to be specified with --with-python option 0.52.20 - improve handling of long strings in whiptail menu (#1353792) - support screen resize as hotkey in form (#1432926) 0.52.19 - support --notags in whiptail checklist and radiolist (#1319794) - don't hard-code -I/usr/include/slang in CPPFLAGS (Alex Suykov) - use $(CC) instead of $(CPP) to generate .depend files (Samuel Martin) - update translations from Zanata
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0610914f7b12b5be128dfba90dc4d3460f7350c3 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:26:10 2021 +0000
core154: Ship lvm2
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b84005daaaaa7d0e82d34485c56b0546cc4942d0 Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Feb 3 16:01:21 2021 +0100
lvm2: Update to 2.02.187
- Update lvm2 from 2.02.181 to 2.02.187 - Updated rootfile - Changelog Version 2.02.187 - 24th March 2020 ================================== Avoid running cache input arg validation when creating vdo pool. Prevent raid reshaping of stacked volumes. Ensure minimum required region size on striped RaidLV creation. Fix resize of thin-pool with data and metadata of different segtype. Fix splitting mirror leg in cluster. Fix activation order when removing merged snapshot. Add support for DM_DEVICE_GET_TARGET_VERSION into device_mapper. Add lvextend-raid.sh to check on RaidLV extensions synchronization. Fix lvmetad shutdown and avoid lenghty timeouts when rebooting system. Prevent creating VGs with PVs with different logical block sizes. Pvmove runs in exlusively activating mode for exclusively active LVs. Activate thin-pool layered volume as 'read-only' device. Ignore crypto devices with UUID signature CRYPT-SUBDEV. Enhance validation for thin and cache pool conversion and swapping. Fixed activation on boot - lvm2 no longer activates incomplete VGs. Version 2.02.186 - 27th August 2019 =================================== Improve internal removal of cached devices. Synchronize with udev when dropping snapshot. Add missing device synchronization point before removing pvmove node. Correctly set read_ahead for LVs when pvmove is finished. Fix metadata writes from corrupting with large physical block size. Report no_discard_passdown for cache LVs with lvs -o+kernel_discards. Prevent shared active mirror LVs with lvmlockd. Version 2.02.185 - 13th May 2019 ================================ Fix change of monitoring in clustered volumes. Improve -lXXX%VG modifier which improves cache segment estimation. Add synchronization with udev before removing cached devices. Fix missing growth of _pmspare volume when extending _tmeta volume. Automatically grow thin metadata, when thin data gets too big. Add support for vgsplit with cached devices. Fix signal delivery checking race in libdaemon (lvmetad). Add missing Before=shutdown.target to LVM2 services to fix shutdown ordering. Version 2.02.184 - 22nd March 2019 ================================== Fix (de)activation of RaidLVs with visible SubLVs Change scan_lvs default to 0 so LVs are not scanned for PVs. Add scan_lvs config setting to control if lvm scans LVs for PVs. Fix missing proper initialization of pv_list struct when adding pv. Version 2.02.183 - 07th December 2018 ===================================== Avoid disabling lvmetad when repair does nothing. Fix component detection for md version 0.90. Use sync io if async io_setup fails, or use_aio=0 is set in config. Avoid opening devices to get block size by using existing open fd. Version 2.02.182 - 30th October 2018 ==================================== Fix possible write race between last metadata block and the first extent. Fix filtering of md 1.0 devices so they are not seen as duplicate PVs. Fix lvconvert striped/raid0/raid0_meta -> raid6 regression. Add After=rbdmap.service to {lvm2-activation-net,blk-availability}.service. Fix pvs with lvmetad to avoid too many open files from filter reads. Fix pvscan --cache to avoid too many open files from filter reads. Reduce max concurrent aios to avoid EMFILE with many devices. Fix lvconvert conversion attempts to linear. Fix lvconvert raid0/raid0_meta -> striped regression. Fix lvconvert --splitmirror for mirror type (2.02.178). Do not pair cache policy and cache metadata format. Fix mirrors honoring read_only_volume_list.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5ac4578d2e1ab03a170f31f16ae1b4c46b422aa3 Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Feb 3 16:00:54 2021 +0100
elfutils: Update to 0.182
- Update elfutils from 0.176 to 0.182 - Updated rootfile - From version 0.178 debuginfod client/server capability was added. Additional .configure options required to disable debuginfod and libdebuginfod - Changelog 2020-10-28 Mark Wielaard mark@klomp.org * configure.ac: Set version to 0.182. * NEWS: Add 0.182 section. 2020-10-28 Tom Tromey tom@tromey.com * .gitignore: Add /tests/leb128. 2020-10-01 Frank Ch. Eigler fche@redhat.com PR25461 * configure.ac: Add --enable-debuginfod-urls[=URLS] option. 2020-09-18 Mark Wielaard mark@klomp.org * configure.ac: Check availability of libzstd and zstd. 2020-09-08 Mark Wielaard mark@klomp.org * configure.ac: Set version to 0.181. * NEWS: Add 0.181 section. 2020-08-20 Dmitry V. Levin ldv@altlinux.org * configure.ac (--enable-libdebuginfod): AC_DEFINE ENABLE_LIBDEBUGINFOD. 2020-07-17 Mark Wielaard mark@klomp.org * configure.ac: Set -DBAD_FTS=1 also for CXXFLAGS. 2020-06-19 Mark Wielaard mark@klomp.org * Makefile.am (SUBDIRS): Always add debuginfod. * configure.ac (debuginfod): Split off... (libdebuginfod): ... this. Also add DUMME_DEBUGINFOD. 2020-06-15 Sergei Trofimovich slyfox@gentoo.org * configure.ac: Use READELF in build-id check. 2020-06-11 Mark Wielaard mark@klomp.org * configure.ac: Set version to 0.180. * NEWS: Add 0.180 section. * .gitignore: Update with new generated file. 2020-06-10 Mark Wielaard mark@klomp.org * configure.ac (MODVERSION): Remove. 2020-03-30 Mark Wielaard mark@klomp.org * configure.ac: Set version to 0.179. * NEWS: Add 0.179 section. 2020-03-25 Mark Wielaard mark@klomp.org * README: Update mailinglist subscription info. * CONTRIBUTING: Likewise. 2020-02-03 Frank Ch. Eigler fche@redhat.com * configure.ac: Tolerate CXX= for debuginfod configuration. 2019-12-11 Omar Sandoval osandov@fb.com * configure.ac: Apply -Werror after user-defined CFLAGS in -D_FORTIFY_SOURCE=2 check. 2019-12-06 Mark Wielaard mark@klomp.org * configure.ac: Add ac_cv_buildid check. 2019-11-26 Mark Wielaard mark@klomp.org * configure.ac: Set version to 0.178. NEWS: Add 0.178 section. 2019-11-26 Mark Wielaard mark@klomp.org * configure.ac: Add CXXFLAGS for gcov. 2019-10-28 Aaron Merey amerey@redhat.com * debuginfod/: New directory for debuginfod code. * Makefile.am (SUBDIRS): Recurse there. * configure.ac (--enable-debuginfod): New flag & checks. 2019-08-25 Jonathon Anderson jma14@rice.edu * configure.ac: Add new --enable-valgrind-annotations * configure.ac: Add new --with-valgrind (headers only) 2019-07-05 Omar Sandoval osandov@fb.com * configure.ac: Get rid of --enable-libebl-subdir. * Makefile.am (SUBDIRS): Reorder backends and libcpu before libebl to satisfy build dependencies. 2019-08-13 Mark Wielaard mark@klomp.org * configure.ac: Set version to 0.177. * NEWS: Mention elfclassify, readelf DW_AT_data_member_location and DW_AT_discr_list attribute changes, dwarf.h DW_AT_GNU additions, dwelf_elf_e_machine_string function, dwelf_elf_begin change and C-SKY backend support.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit dae10ab8c51f677860a877b4ab4385227afbe93c Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:23:39 2021 +0000
core154: Ship fcron
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit a87abffc9e2d9fd4ca038ed17bcb582c979663bc Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Feb 3 16:01:07 2021 +0100
fcron: Update to 3.2.1
- Update fcron from 3.2.0 (Jul 2014) to 3.2.1 (Jun 2016 - latest version) - Updated rootfile - Changelog From version 3.2.0 to 3.2.1 * @-line can now be run every second (minimum every 10s previously) * Fixed occasional 1s slippage. This was due to a race condition between when time_to_sleep is run and when we compute how long to sleep for, which could happen in the following second: if that happened we end up sleeping for 1s instead of not sleeping at all. The fix was to replace time_to_sleep() by next_wake_time(). * add From: header to emails. Similarly to other crons, use: "From: %s (fcron)" with %s being either the user the job is run as or the value of MAILFROM. * The installation script now supports systemd fully.
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8ace58e8ac0491aa72f1213841824d284377db0d Author: Adolf Belka adolf.belka@ipfire.org Date: Tue Feb 2 22:46:14 2021 +0100
p7zip: Update to 17.03
- Update p7zip from 16.02 (Jul 2016) to 17.03 (Dec 2020) - Version 16.02 was the last version by the previous dev team. A fork was created in May 2020 with version 17.01 - Rootfile updated - Changelog Version 17.03 ============= - add zstd to zip - add hash algorithm - XXHASH32 - XXHASH64 - MD2 - MD4 - MD5 - sha384 - sha512 - add Lzfse to dmg - add lz5 to 7z - add lizard to 7z - update lz4 to v1.9.3 - add brotli to 7z - update cmake build - fix xz crc64 error - use system local to select OEM code - add rpm install - fix lzma2 and flzma22 call the same algorithm - add 7zr build - fix tar format link file compress and decompress Version 17.02 ============= - p7zip 17.02 is more like 7zip 17.01(only 7za and 7z),The difference from 7zip 17.01 and older version p7zip is the following description - Supports Fast lzma2 1.0.1 compression method - Update Zstd method to 1.4.5 - Add zstd method parameters in 7z format ZSTD parameters NEW name: strategy -> strat fast -> fast long -> long WindowLog -> wlog HashLog -> hlog ChainLog -> clog SearchLog -> slog MinMatch -> slen TargetLen -> tlen OverlapLog -> ovlog LdmHashLog -> ldmhlog LdmSearchLength -> ldmslen LdmBucketSizeLog -> ldmblog LdmHashRateLog -> ldmhevery - Fix symlink files contained inside tar and squashfs as regular file - Add lz4 and Zstd decompress method to squashfs Version 17.01 ============= - Fix BUG CVE-2018-10115 - Fix BUG CVE-2018-5996 - Fix BUG CVE-2017-17969 - Fix BUG CVE-2016-9296 - The bug fixes in version 17.01 address the same CVE bugs as the p7zip-16.02-consolidated_fixes-1.patch Therefore this patch is no longer needed - The patches for CVE-2016-2334 & 2335 were for versions before 16.00 so are no longer needed
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b51d19ece203ecfd20e89f72abf49953e7a4c2ac Author: Adolf Belka adolf.belka@ipfire.org Date: Tue Feb 2 22:46:01 2021 +0100
automake: Update to 1.16.3
- Update automake from 1.16.2 to 1.16.3 - No change to rootfile - New in 1.16.3: * New features added - In the testsuite summary, the "for $(PACKAGE_STRING)" suffix can be overridden with the AM_TESTSUITE_SUMMARY_HEADER variable. * Bugs fixed - Python 3.10 version number no longer considered to be 3.1. - Broken links in manual fixed or removed, and new script contrib/checklinkx (a small modification of W3C checklink) added, with accompany target checklinkx to recheck urls. - install-exec target depends on $(BUILT_SOURCES). - valac argument matching more precise, to avoid garbage in DIST_COMMON. - Support for Vala in VPATH builds fixed so that both freshly-generated and distributed C files work, and operation is more reliable with or without an installed valac. - Dejagnu doesn't break on directories containing spaces. * Distribution - new variable AM_DISTCHECK_DVI_TARGET, to allow overriding the "make dvi" that is done as part of distcheck. * Miscellaneous changes - install-sh tweaks: . new option -p to preserve mtime, i.e., invoke cp -p. . new option -S SUFFIX to attempt backup files using SUFFIX. . no longer unconditionally uses -f when rm is overridden by RMPROG. . does not chown existing directories. - Removed function up_to_date_p in lib/Automake/FileUtils.pm. We believe this function is completely unused. - Support for in-tree Vala libraries improved. - Full change details are in ChangeLog file in tarball
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 278b53e96f8a64585078fac20639bf3444e2e4f5 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:20:18 2021 +0000
core154: Ship acl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 10ad593d83c492f1e5ecab61604c2af14715d859 Author: Adolf Belka adolf.belka@ipfire.org Date: Tue Feb 2 22:45:41 2021 +0100
acl: Update to 2.2.53
- Update acl from 2.2.52 (May 2013) to 2.2.53 (Jun 2018 - latest version) - Rootfile updated - No make rules for install-lib or install-dev in new version. Only for install - Changelog in tarball has 2.2.49 (Nov 2009) as the latest change - Could not find changelog info anywhere else. - Following changelog created by extracting from git commits (thanks for idea Peter Mueller) - include: fix uninstall for `make distcheck` Mike Frysinger - acl.5 man page: Update link to POSIX.1e draft Andreas Gruenbacher - test: add regression test Dmitry V. Levin - Enable large-file support on systems that do not enable it by default Dmitry V. Levin - libacl: Fix acl_from_text() returning NULL on all input Dmitry V. Levin - setfacl --restore: Silence valgrind Andreas Gruenbacher - setfacl: Preserve special mode bits on filesystems without POSIX ACL support Andreas Gruenbacher - setfacl.1: document the meaning of '-' in perms Kamil Dudka - setfacl: Allow more than four characters in the perms field Andreas Gruenbacher - permissions.test: Fix umask Andreas Gruenbacher - Add additional group names for root-specific tests Andreas Gruenbacher - libtestlookup: Add missing EXPORT and static declarations Andreas Gruenbacher - Minor man-page clarifications Andreas Gruenbacher - Remove ACL_ADD and ACL_DELETE Andreas Gruenbacher - test: fixups on SELinux machines for root testcases He Zhe - libacl: Ignore warning in parse_acl_entry() Andreas Gruenbacher - Cleanup visibility of API functions Yury Usishchev - Cleanup internal headers usage Yury Usishchev - Rework config.h usage Yury Usishchev - walk_tree_rec: Add parentheses to clarify code Andreas Gruenbacher - __acl_from_xattr: Set errno for invalid tag types Andreas Gruenbacher - Fix checks for valid permissions in input Corinna Vinschen - use portable AC_C_BIGENDIAN Mike Frysinger - quote: escape literal backslashes Jeff Mahoney - test: Add helper library to fake passwd/group files Jeff Mahoney - ignore configure.lineno Mike Frysinger - walk_tree: mark internal variables as static Dmitry V. Levin - Do not export symbols that are not supposed to be exported Dmitry V. Levin - getfacl: Fix minor resource leak Andreas Gruenbacher - setfacl man page: Minor wording improvements Andreas Gruenbacher - Fix the display block nesting in acl.5 Andreas Gruenbacher - getfacl: Fix memory leak Andreas Gruenbacher - fix compilation with latest xattr git Brice De Bruyne - libacl: acl_set_file: Remove unnecesary racy check Andreas Gruenbacher - cp.test: Check permissions of the right file Andreas Gruenbacher - add __acl_ prefixes to internal symbols Mike Frysinger - mark libmisc funcs as hidden so they are not exported Mike Frysinger - telldir return value and seekdir second parameters are of type long Cristian Rodríguez - read_acl_{comments,seq}: switch to next_line Mike Frysinger - read_acl_{comments,seq}: rename "line" to "lineno" Mike Frysinger - build: ship a pkgconfig file for libacl Mike Frysinger - build: make use of an aux-dir to stow away helper scripts Mike Frysinger - build: drop aclincludedir, use pkgincludedir Mike Frysinger - po: regenerate files after move Mike Frysinger - modernize build system Mike Frysinger - test: make running parallel/out-of-tree safe Mike Frysinger - move gettext logic into misc.h Mike Frysinger - punt debian/rpm packaging logic Mike Frysinger - libacl: fix SIGSEGV of getfacl -e on overly long group name Kamil Dudka - libacl: Make sure that acl_from_text() always sets errno when it fails Andreas Gruenbacher - Use autoreconf rather than autoconf to regenerate the files. Fabrice Bauzac - .gitignore: ignore *~ and config.h.in. Fabrice Bauzac - Bad markup in acl.5 page Eric S. Raymond - Makefile: rename configure.in to configure.ac Mike Frysinger - test: fix insufficient quoting of '' Kamil Dudka - setfacl.1: fix typo 'inclu de' -> 'include' John Bradshaw - Install the libraries to the appropriate directory Brandon Philips
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2e2170bfb541ea1238f1dcc9f026fab1c3f28d51 Author: Arne Fitzenreiter arne_f@ipfire.org Date: Wed Feb 3 19:31:50 2021 +0100
setup: fix field-order at addressconfig for red
i have added the gatewayfield at the line below the IP and Netmask fields but prior this fields so the cursor jumps first the the gateway and after this to the IP. This patch fix the activation order.
Signed-off-by: Arne Fitzenreiter arne_f@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7b476adef33171763c1e764c013c98055d3965b5 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Feb 3 22:15:07 2021 +0000
lynis: Update rootfile
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f1f2a8dbefd8a90622a1de641adb61f6cffc7a5f Author: Peter Müller peter.mueller@ipfire.org Date: Mon Feb 1 19:37:27 2021 +0100
lynis: update to 3.0.3
The changelog of lynis 3.0.3 is available at https://github.com/CISOfy/lynis/releases/tag/3.0.3; all changes since lynis 3.0.1 can be inspected at https://github.com/CISOfy/lynis/releases.
lynis 3.0.2 adds detection for IPFire, so we can hope to have those "unknown operating system" messages omitted in future. :-)
Minor adjustments to LFS and rootfile were necessary to purge unused CI/CD stuff as well as some markdown files (licence, code of conduct, etc. pp.) from the extracted archive.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit e36cd564317a3223192c16aa3b17d42b0aac9fe7 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Feb 2 10:55:21 2021 +0000
core154: Ship unbound.conf
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 89b044918573826c2b52b27293a81d66ac0504e1 Author: Peter Müller peter.mueller@ipfire.org Date: Mon Feb 1 18:47:27 2021 +0100
unbound.conf: do not set defaults again
These are meanwhile set by Unbound upstream as well, so there is no need to do things twice here.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 710b6ef1e828a93e48052adc79f400ac243e63c7 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Feb 1 11:13:24 2021 +0000
Update the kernel's rootfile
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7a3f7634cc10674b2b9610e19995c6bbab36611a Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Feb 1 10:53:25 2021 +0000
make.sh: Do not decrease nice level of build
This was designed to keep a workstation that is compiling IPFire responsive during the build. However, the kernel's scheduler has been improved enough that this is no longer an issue.
Instead of telling the kernel that the build job is something with a lower priority (which it isn't) we now simply run with the nicelevel of the parent process that has called make.sh.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d5eb0e3906782acffd0b6081fbee8a1fe9415254 Author: Peter Müller peter.mueller@ipfire.org Date: Sun Jan 31 21:33:27 2021 +0100
libseccomp: update to 2.5.1
Release notes as per https://github.com/seccomp/libseccomp/releases/tag/v2.5.1:
Version 2.5.1 - November 20, 2020
Fix a bug where seccomp_load() could only be called once Change the notification fd handling to only request a notification fd if the filter has a _NOTIFY action Add documentation about SCMP_ACT_NOTIFY to the seccomp_add_rule(3) manpage Clarify the maintainers' GPG keys
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f453ff84159f2ab28b9f32aaaa299df7ce5683e4 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Feb 1 10:48:29 2021 +0000
core154: Ship hyperscan
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b815ec45d55953a1c89007ba4aef8bc46fc29f9d Author: Peter Müller peter.mueller@ipfire.org Date: Sun Jan 31 20:01:28 2021 +0100
hyperscan: update to 5.4.0
Please refer to https://github.com/intel/hyperscan/releases/tag/v5.4.0 for the (rather length) release announcement.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d06693b487cc80a3d8ed654edde76f407b13fc78 Author: Adolf Belka adolf.belka@ipfire.org Date: Sun Jan 31 18:36:43 2021 +0100
qemu: Update to 5.2.0
- Update qemu from 5.0.0 to 5.2.0 - Changelogs for 5.1.0 and 5.2.0 available at https://wiki.qemu.org/ChangeLog/ - rootfile updated - patch no longer needed as fix built into source. patch was not utilised for 5.0.0 version. Patch line was commented out in previous lfs
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ae94f85b0210b5e2daf7f1ccdbcc7cf3b25388d9 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sun Jan 31 09:06:27 2021 +0100
logwatch 7.5.5: Deleted no longer needed patch for clamav 0.103.0
I've should have read the changelog from opensuse more thoroughly:
... 4a862fa [clamav] Ignore new "Activating the newly loaded database" message ...
Sorry for the noise.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 68fbf256e26c6c3b65bff31dbf13235db087aab4 Author: Adolf Belka adolf.belka@ipfire.org Date: Sat Jan 30 23:40:47 2021 +0100
cups-filters: Update to 1.28.7
- Update cups-filters from 1.27.4 to 1.28.7 - Changelog CHANGES IN V1.28.7 - driverless: Removed the support quality check from Pull request #235 as it takes significant time for each printer being listed, making cups-driverd (`lpinfo -m`) timing out when there are many printers (OpenPrinting CUPS issue #65). - libcupsfilters: In the PPD generator give priority to Apple Raster against PDF (Issue #331). - libcupsfilters: Added NULL check when removing ".Borderless" suffixes from page size names (Issue #314, Pull request #328). - libcupsfilters: In the cupsRasterParseIPPOptions() map the color spaces the same way as in the PPD generator (Issue #326, Pull request #327). - libcupsfilters: Fixed addition of grayscale mode in generated PPD files, to avoid duplicate entries (OpenPrinting CUPS issue #59). CHANGES IN V1.28.6 - libcupsfilters: In generated PPDs add a grayscale mode if there are only color printing modes (from OpenPrinting CUPS). - libcupsfilters: In generated PPDs add an "OutputBin" option also if it has only one choice (OpenPrinting CUPS pull request #18). - libcupsfilters: Generated PPDs could have an "Unknown" default InputSlot (OpenPrinting CUPS issue #44). - cups-browsed: Removed unneeded IPP attribute additions preventing the created local queues from preserving a location or description the user assigns to them (Issue #323). - cups-browsed: Removed all calls of the resolve_uri() function of libcupsfilters, as these are not actually needed and in case the supplied DNS-SD-based URI is not resolvable, the function gets stuck for ~5 seconds. - cups-browsed: Fixed several memory leaks, mainly from the code to merge printer IPP attributes for clusters (Pull request #322). - cups-browsed: Silenced compiler warning. - foomatic-rip: Fix infinite loop and input from file on raw printing (Pull request #318). - foomatic-rip: Remove temporary file created during pdf-to-ps conversion (Pull request #313). CHANGES IN V1.28.5 - cups-browsed: UUID from IPP response was used after its pointer was freed by ippDelete() (Pull request #311). CHANGES IN V1.28.4 - driverless: Avoid duplicate PPD list entries from the same device via UUID - driverless: Reduce ippfind calls by "driverless" and "driverless-fax"called by CUPS. Let "driverless list" list both print and fax PPDs and "driverless-fax list" do nothing. - driverless: Avoid duplicate listings in printer discovery, by "driverless-fax" not listing any URI as "driverless" lists them all already. - driverless: Vastly improve performance by doing only one ippfind call instead of two (IPP, IPPS) as ippfind accepts more than one reg type on the command line. - Sample PPDs: Corrected manufacturer name in Fuji_Xerox-DocuPrint_CM305_df-PDF.ppd. CHANGES IN V1.28.3 - libcupsfilters, cups-browsed: Fixed inconsistency between resolvers for DNS-SD-based URIs, resolve_uri() and ippfind_based_uri_converter(). Now both return a freeable string. - libcupsfilters: Fix uninitialized buffer and parsing ippfind output in ippfind_based_uri_converter() function (Issue #308, Pull request #309). CHANGES IN V1.28.2 - driverless: Free allocated memory, use MAX_OUTPUT_LEN (Pull request #304). - driverless: Make the two ippfind tasks(for IPP and IPPS) run in parallel (Pull request #302, #305, #306). - braille: Support new liblouis tables not containing a display name (Pull request #303) - Build system: Let ./configure not error out when there is more than one DejaVuSans.ttf test font candidate (Issue #300). - cups-browsed: Crash when a remote printer set as default gets removed, due to missing variable in printf() call (Issue #299). - libcupsfilters: Removed all signal handling and global variables from get_printer_attributes() and ippfind_based_uri_converter(). This is overkill for these quick operations and causes problems when shutting down cups-browsed (Issue #298). CHANGES IN V1.28.1 - COPYING: Fixed several typos - libcupsfilters: Fixed typo in log message of get_printer_attributes functions. - cups-browsed: Fixed typos in configuration file and man page - libcupsfilters: Let the PPD generator not suffix page size names with ".Borderless" if all page sizes would get this suffix, for example for printers which generally print borderless. - libcupsfilters: Added "faxPrefix" option for generated IPP Fax Out PPDs, so that this option also appears in print dialogs. - driverless: List addresses for local services correctly when using "--std-ipp-uris" (with "localhost" hostname). - driverless: Make calls of the ippfind utility somewhat faster, setting the timeout of ippfind to automatic. - libcupsfilters: Resolve DNS-SD-based URIs for local services correctly (using hostname "localhost"). - libcupsfilters: In get_printer_attributes() functions do not try to convert URIs which are not DNS-SD-based (Issue #294). - libcupsfilters: In get_printer_attributes() functions also support URIs with "dnssd://..." scheme. - libcupsfilters: Moved signal handling back into main function of the get_printer_attributes() variants, it got moved out accidentally. - driverless: For generating a PPD, independent whether via "driverless URI" or "driverless cat URI", always allow CUPS driver URIs (prefixed with "driverless: " or "driverless-fax:") and pure IPP URIs. - driverless: Accept clean IPP URIs also for 'driverless cat ...' (Issue #295, Pull request #296). - driverless-fax: Do not use fixed path for call of driverless itself (Pull request #293). CHANGES IN V1.28.0 - driverless, driverless-fax, libcupsfilters: Added IPP Fax Out support. Now printer setup tools list an additional fax "driver". A fax queue is created by selecting this driver. Jobs have to be sent with "-o phone=12345" to supply the destination phone number (Pull request #280). - libfontembed: Silenced warning with gcc 10.x (Pull request #287). - cups-browsed: Added ./configure options --enable-saving-created-queues and --with-remote-cups-local-queue-naming (Pull request: #253, #285). - cups-browsed: Fixed several memory leaks, mainly from the code to merge printer IPP attributes for clusters (Pull request #281, #283). - driverless: Added "--std-ipp-uris" command line option to show listed URIs in standard hostname-based form (not the CUPS DNS-SD-service-name-based form. Only for manual call of the utility, for debugging purposes (Pull request #277). - libfontembed: Removed assert() calls which cause crashes when unsupported emoji fonts are installed (Issue #254, Pull request #276). - driverless: Added support for IPPS (use "ipps://..." URIs if possible, Issue #251, Pull request #270, #273). - gstoraster, gstopdf: When converting PostScript to PDF use the "pdfwrite" output device with "-dPDFSETTINGS=/default" instead of with "-dPDFSETTINGS=/printer". This reproduces bitmaps in the PostScript file with their original image quality (Issue #272). - cups-browsed: Limit log file size and add backup file for previous log entries. Introduced the configuration option DebugLogFileSize in cups-browsed.conf to set the actual limit in kilobytes or 0 to get the old behavior of an unlimited size for the log file (Issue #260, Pull request #267). - gstoraster, gstopdf: Do not apply margins when output format is PDF, as then we convert an incoming PostScript file to PDF (pre-pdftopdf) and do not prepare the pages for the printer (post-pdftopdf, Issue #250). - cups-browsed: Do not write any log messages directly to stderr, there were some concerning timeouts on queue creation (Issue #260). - Build system: Fix cross-compilation without DejaVu test font in configure.ac (Issue #262, Pull request #263). - libcupsfilters: Respect the fact that PPD keywords are case-sensitive when adding "*cupsManualCopies: True" in PPD file (Issue #242). - libcupsfilters: Older versions of libcups (< 2.3.1) had the enum name for fold-accordion finishings mistyped. Added a workaround. - cups-browsed: Remove left-over local queues from the previous session more quickly when CUPS legacy browsing is turned on. - cups-browsed: Left-over local queues from the previous session for which the corresponding remote printer did not appear again did not get removed as they were considered externally overwritten. - gstoraster, gstopdf: Add option "-dDoNumCopies" to Ghostscript command line if we are outputting PDF (called via gstopdf wrapper) and the number of copies supplied to CUPS is 1 (4th command line argument). In this case we convert incoming PostScript to PDF and need to respect embedded PostScript commands to implement the number of copies (Issue #255, CUPS Issue #5796, OpenSUSE bug #1173345). - imagetoraster: Potential null dereference fix (when no valid PPD is supplied, Pull request #256). - cups-browsed: Call cupsGetNamedDest() only if "OnlyUnsupportedByCUPS No" - Sample PPDs: Corrected ColorModel default for Generic PWG Raster PPD to Color (Pull request #247). - cups-browsed: Mark the temp queue as cups-browsed-generated during setting printer-is-shared (Pull request #246). - cups-browsed: Remove mentions of README and AUTHORS files in the man page (Pull request #244). - pclmtoraster: Added new filter to extract Raster data from raster-only PDF files, here for the special case of PCLm files (Pull request #243, #257). - Sample PPDs: In Generic-PDF_Printer-PDF.ppd add option to switch between color and grayscale printing (Pull request #237). CHANGES IN V1.27.5 - cups-browsed: Do not remove the created local queues on shutdown, to avoid their re-creation on restart, so that desktops get no cluttered with notifications of new queues being created. One can return to the old behavior via "KeepGeneratedQueuesOnShutdown No" in cups-browsed.conf (Ubuntu bug #1869981, #1878241). - cups-browsed: Do not accept DNS-SD broadcasts of IPPS type of "remote" CUPS queues of another CUPS instance on the local machine. This way we get a local queue pointing to such a printer only in unencrypted version (IPP). For some reason printing from one CUPS server to another on the same machine works only unencrypted. - foomatic-rip: Map two-sided-short-edge to DuplexTumble (Pull request #236) - Build system: In configure.ac use AS_IF instead of AC_CHECK_FILE for font check (Issue #239, Pull request #240) - cups-browsed: Cleaned up code for determining to which CUPS server (host/port/domain socket) to connect, so that connection via DomainSocket cups-browsed.conf directive, CUPS_SERVER and IPP_PORT environment variables and all defaults and methods of libcups, including CUPS' client.conf work. - gstoraster, rastertopdf: Do not pass NULL to fprintf() (Pull request #230). - libcupsfilters: Silence compiler warning (Pull request #229). - rootfile updated
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit aadf0a01e3837fb874748ebb0e32d37c64632605 Author: Adolf Belka adolf.belka@ipfire.org Date: Sat Jan 30 23:40:27 2021 +0100
cifs-utils: Update to 6.12
- Update cifs-utils from 5.9 to 6.12 - Changelog - URL for each change gives more details of changes December, 2020: Release 6.12 get/setcifsacl tools are improved to support changing owner, group and SACLs mount.cifs is enhanced to use SUDO_UID env variable for cruid smbinfo is re-written in Python language https://lists.samba.org/archive/samba-technical/2020-December/136156.html September, 2020: Release 6.11 CVE-2020-14342: mount.cifs: fix shell command injection https://lists.samba.org/archive/samba-technical/2020-September/135747.html December 16, 2019: Release 6.10 smb3 alias/fstype is added smb2-quota tool is added to display quota information smb2-secdesc UI tool to view security descriptors is added smbinfo is enhanced with capabilities to dump session keys and get/set compression of files smbinfo bash completion is supported getcifsacl tool is improved to support multiple files https://lists.samba.org/archive/samba-technical/2019-December/134662.html April 5, 2019: Release 6.9 smbinfo utility is added to query various kinds of information from the server (objectId, snapshots, different FileInfo* classes and other metadata) server IP change is supported by expiring DNS key resolver entries get/setcifsacl tools are improved to handle unexpected behavior share snapshot are allowed to be specified by a GMT token or SMB 100-nanoseconds time various new mount option are documented: bsize, handletimeout, handlecache, rdma, max_credits and others https://lists.samba.org/archive/samba-technical/2019-April/133233.html March 9, 2018: Release 6.8 man pages updates (auto-negotiate protocol version by default) and cleanups (moving to .rst format) setcifsacl: fix security descriptor buffer size mismatch cifscreds: fix a segfault for incorrect usage minor mount.cifs fixes https://lists.samba.org/archive/samba-technical/2018-March/126227.html March 2, 2017: Release 6.7 fixes for regressions from cifs.upcall overhaul mount.cifs cleanups https://lists.samba.org/archive/samba-technical/2017-March/119036.html September 3, 2016: Release 6.6 cleanup/overhaul of cifs.upcall krb5 credcache handling https://lists.samba.org/archive/samba-technical/2016-September/115974.html February 22, 2016: Release 6.5 mount.cifs: ignore x- mount options minor build fixes minor manpage fix https://lists.samba.org/archive/samba-technical/2016-February/112372.html July 11, 2014: Release 6.4 allow PAM directory to be configurable better determination of default keytab file better cifscreds error handling uppercase devicename when retrying mount https://lists.samba.org/archive/samba-technical/2014-July/101132.html January 9, 2014: Release 6.3 fixes for various bugs turned up by Coverity clean unused cruft out of upcall binary add new pam_cifscreds PAM module for establishing NTLM creds on login https://lists.samba.org/archive/samba-technical/2014-January/097124.html October 4, 2013: Release 6.2 setcifsacl can now work without a plugin systemd-ask-password is found using $PATH now cifs.upcall now works with KEYRING: credcaches https://lists.samba.org/archive/samba-technical/2013-October/095287.html July 2, 2013: Release 6.1 minor bugfixes allow cifs.upcall to use dedicated keytab https://lists.samba.org/archive/samba-technical/2013-July/093601.html March 25, 2013: Release 6.0 minor bugfixes and documentation updates support for NFS-style device names removed https://lists.samba.org/archive/samba-technical/2013-March/091169.html - Rootfile updated
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9ab74511dacc7ccc9b1e090552174f06c1b18c1a Author: Adolf Belka adolf.belka@ipfire.org Date: Sat Jan 30 23:40:11 2021 +0100
screen: Update to 4.8.0
- Update screen from 4.2.1 to 4.8.0 - Changelog Version 4.8.0 (05/02/2020) * Improve startup time by only polling for files to close Fixes: - Fix for segfault if termcap doesn't have Km entry - Make screen exit code be 0 when checking --version - Fix potential memory corruption when using OSC 49 Version 4.7.0 (02/10/2019) * Add support for SGR (1006) mouse mode * Add support for OSC 11 * Update Unicode ambiguous and wide tables to 12.1.0 * Fixes: - cross-compilation support (bug #43223) - a lot of manpage fixes and cleanups Version 4.6.2 (23/10/2017): * Fixes: - revert changes to cursor position restore behavour (bug #51832) - set freed pointer to NULL (bug #52133) - documentation fixes - fix windowlist crashes (bug #43054 & #51500) Version 4.6.1 (10/07/2017): * Fixes: - problems with starting session in some cases - parallel make install - segfault when querying info on nonUTF locale (bug #51402) Version 4.6.0 (28/06/2017): * Update Unicode wide tables to 9.0 (bug #50044) * Support more serial speeds * Improved namespaces support * Migrate from fifos to sockets * Start viewing scrollback at first line of output (bug #49377) Version 4.5.1 (25/02/2017): * Fixes: - logfile permissions problem (CVE-2017-5618) - SunOS build problem (bug #50089) - FreeBSD core dumps (bug #50143) Version 4.5.0 (10/12/2016): * Allow specifying logfile's name via command line parameter '-L' * Fixes: - broken handling of "bind u digraph U+" (bug #48691) - crash with long $TERM (bug #48983) - crash when bumping blank window - build for AIX (bug #49149) - %x improperly separating arguments - install with custom DESTDIR (bug #48370) Version 4.4.0 (19/06/2016): * Support up to 24 function keys * Fix runtime issues * 'logfile' command, starts logging into new file upon changing Version 4.3.1 (28/06/2015): * Fix resize bug Version 4.3.0 (13/06/2015): * Introduce Xx string escape showing the executed command of a window * Implement dead/zombie window polling, allowing for auto reconnecting * Allow setting hardstatus on first line New Commands: * 'sort' command sorting windows by title * 'bumpleft', 'bumpright' - manually move windows on window list * 'collapse' removing numbering 'gaps' between windows, by renumbering * 'windows' command now accepts arguments for use with querying - Rootfile updated - Two screen patchfiles deleted as the patch changes are now built into the source files
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 69d90c36cc17a6b475253c29d98f02e26f1adb5e Author: Arne Fitzenreiter arne_f@ipfire.org Date: Sat Jan 30 20:52:42 2021 +0100
network-functions.pl: declare use of smartmatch
perl complains about the use of experimental smartmatch feature if it is not declared.
Signed-off-by: Arne Fitzenreiter arne_f@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit dd401c4d8a666aa57fe6be71cae0e1062dbcebc1 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 30 17:54:11 2021 +0100
libassuan: Update to 2.5.4
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 84371e42dfc6fc7b0c6775cff80c45e869e073a3 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Feb 1 10:38:21 2021 +0000
core154: Ship libgpg-error
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d3d50399244c969adff6cb71fd847bcbf77814c9 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 30 17:51:31 2021 +0100
libgpg-error: Update to 1.41
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f4abc0221fe7968fa49f9b1694ac97ca759455bb Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Feb 1 10:37:51 2021 +0000
core154: Ship libgcrypt
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 47cf62d3b74190c08ec002b6b27d0734ad309925 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 30 17:43:43 2021 +0100
libgcrypt: Update to 1.9.1
For details - especially for this version - see: https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html
Overview: https://dev.gnupg.org/source/libgcrypt/browse/master/NEWS
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f90fd27a70f1acb6304cf3b8a4253f47ef1a8edf Author: Peter Müller peter.mueller@ipfire.org Date: Sat Jan 30 14:26:11 2021 +0100
Postfix: update to 3.5.9
This release adds runtime detection of DNSSEC support; please refer to http://www.postfix.org/announcements/postfix-3.5.9.html for its full announcement.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit bf2ff65e6cd9a7550dec48f214eac310ca24585b Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 30 13:44:54 2021 +0100
logwatch: Update to 7.5.5
For details see: https://build.opensuse.org/package/view_file/server:monitoring/logwatch/Chan...
Plus: deleted no longer need dhcpd-patch.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6106a465d774b9bb983fc4d06104877af1c08e49 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Feb 1 10:36:33 2021 +0000
core154: Ship dma
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b3a4ea2817abaadfab5012d36e2e4a382124f269 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 30 12:42:51 2021 +0100
knot: Update to 3.0.4
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b1f51038991423a9ff0d00a78175cedda1818c1b Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 30 12:41:05 2021 +0100
knot: Cosmetic changes in lfs
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5bc11f39e38b29afe6690e010ceb23e92980b611 Author: Adolf Belka adolf.belka@ipfire.org Date: Fri Jan 29 22:58:23 2021 +0100
dbus: Update to 1.12.20
- Update dbus from 1.11.12 to 1.12.20 (latest in release line 1.13.x is also available but this is the development line and not recommended for production use - Changelog between these two versions is very long (750 lines long) and can be found in the NEWS file in the source tarball. - rootfile updated
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d1efdea0d3ba1a184752181d9c7ac5f470b7cf3a Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Jan 28 21:17:30 2021 +0100
dma: Update to 0.13
- Update dma from 0.12 to 0.13 - No changelog information available - No change to the rootfile
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit fa82a2156ae837b91304a190e10e10d8314d2ece Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Jan 29 14:43:20 2021 +0000
Revert "core154: Ship freetype"
This reverts commit 45063142bed6287d29d21170873d3f67eff2aa50.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 52bf6075d080ae7e1aea21b805378d4bc4efd5fa Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Jan 29 14:43:05 2021 +0000
Revert "freetype: update to 2.10.4"
This reverts commit 5653a45f813f57368bf2a32f9468ba6bd496274a.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9a0e00209806949435105610ad8cb63e9e9ff3db Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Jan 29 11:14:43 2021 +0000
core154: Ship ipset
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit bc19698555838a849c1bf9c5231610899ff9007d Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Jan 28 21:17:00 2021 +0100
ipset: Update to 7.10
- Update ipset from 7.6 to 7.10 - Changelog 7.10 Kernel part changes Fix patch "Handle false warning from -Wstringop-overflow" Backward compatibility: handle renaming nla_strlcpy to nla_strscpy treewide: rename nla_strlcpy to nla_strscpy. (Francis Laniel) netfilter: ipset: fix shift-out-of-bounds in htable_bits() (Vasily Averin) netfilter: ipset: fixes possible oops in mtype_resize (Vasily Averin) Handle false warning from -Wstringop-overflow Backward compatibility: handle missing strscpy with a wrapper of strlcpy. Move compiler specific compatibility support to separated file (broken compatibility support reported by Ed W) 7.9 Userspace changes Fix library versioning (Jan Engelhardt) 7.8 Kernel part changes Complete backward compatibility fix for package copy of <linux/jhash.h> Compatibility: check for kvzalloc() and GFP_KERNEL_ACCOUNT netfilter: ipset: enable memory accounting for ipset allocations (Vasily Averin) netfilter: ipset: prevent uninit-value in hash_ip6_add (Eric Dumazet) Compatibility: use skb_policy() from if_vlan.h if available Compatibility: Check for the fourth arg of list_for_each_entry_rcu() Backward compatibility fix for the package copy of <linux/jhash.h> 7.7 Userspace changes Expose the initval hash parameter to userspace Handle all variable header parts in helper scripts instead ot test tasks Add bucketsize parameter to all hash types Support the -exist flag with the destroy command Kernel part changes Expose the initval hash parameter to userspace Add bucketsize parameter to all hash types Use fallthrough pseudo-keyword in the package copy of too Support the -exist flag with the destroy command netfilter: Use fallthrough pseudo-keyword (Gustavo A. R. Silva) netfilter: Replace zero-length array with flexible-array member (Gustavo A. R. Silva) netfilter: ipset: call ip_set_free() instead of kfree() (Eric Dumazet) netfiler: ipset: fix unaligned atomic access (Russell King) netfilter: ipset: Fix subcounter update skip (Phil Sutter) ipset: Update byte and packet counters regardless of whether they match (Stefano Brivio) netfilter: ipset: Pass lockdep expression to RCU lists (Amol Grover) ip_set: Fix compatibility with kernels between v3.3 and v4.5 (Serhey Popovych) ip_set: Fix build on kernels without INIT_DEFERRABLE_WORK (Serhey Popovych) ipset: Support kernels with at least system_wq support ip_set: Fix build on kernels without system_power_efficient_wq (Serhey Popovych) - Rootfiles updated
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 45063142bed6287d29d21170873d3f67eff2aa50 Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Jan 29 11:14:06 2021 +0000
core154: Ship freetype
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5653a45f813f57368bf2a32f9468ba6bd496274a Author: Peter Müller peter.mueller@ipfire.org Date: Thu Jan 28 19:43:22 2021 +0100
freetype: update to 2.10.4
This fixes a heap buffer overflow in the handling of embedded PNG bitmaps (CVE-2020-15999). Further information is available at https://sourceforge.net/projects/freetype/files/freetype2/2.10.4/ .
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 968ad8ba8d4f730d52da90641539cc38bc92e27f Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Jan 29 11:09:34 2021 +0000
samba: Update rootfiles
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ecf0ba6d127ea594aa02cb8eefe47cbc5f499c93 Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Jan 28 15:55:57 2021 +0100
minicom: Update to 2.8
- Update minicom from 2.7.1 to 2.8 - Changelog for version 2.8 New timestamp mode: Delta to previous line. Add HPA ESC sequence Add alternative window support (ti/te) Fix file name of non-global configuration settings. Update translations: Indonesian, French, Swedish, Spanish, German, Brazilian Portuguese, Vietnamese, Polish, Danish, Norwegian, Serbian New translation: Serbian, Simplified chinese Fix F10 macro key used in current setups Add F11 and F12 for macro use Fixed DTR for recent systems Add support for RS485. Add --capturefile-buffer-mode option Bug fixes - Updated rootfile
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ff5aef9d30241ee170cb42922b9ebbf052376f6a Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Jan 28 15:56:14 2021 +0100
tshark: Update to 3.4.2
- Update tshark from 3.2.6 (Old Stable Release line) to 3.4.2 (Stable Release line) - Changelog at https://www.wireshark.org/docs/relnotes/ - Rootfile updated
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d52d7073815a5576215ebcc3a5fc6ae765574ddc Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 28 16:44:51 2021 +0000
core154: Ship arping
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6b22a5d2fdce2c440e7620f25b414a7173597f1a Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Jan 27 23:17:00 2021 +0100
arping: Update to 2.21
- Update arping from 2.15 to 2.21 - Notable changes from 2.20 to 2.21: * Use more modern pcap API calls, when available * Add payload data to mac ping * chdir(/) after chroot() * Misc minor cleanup - Notable changes from 2.19 to 2.20: * Improved support for cross-compile * Use unveil(2) and pledge(2) where available (i.e. OpenBSD) * Fix false duplicates when destination address is *also* assigned to local interface * Minor typo-level fixes - Notable changes from 2.18 to 2.19: * Added -g to drop privs to alternate user (for Android) * Slightly improved error messages - Notable changes from 2.17 to 2.18: * Make -w/-W work like 'ping' - Notable changes from 2.16 to 2.17: * Add padding to packets to work on Raspberry Pi 3 - Notable changes from 2.15 to 2.16: * VLAN tagging (Nikolay Aleksandrov) * 802.1Q priority (Nikolay Aleksandrov) * Added a bunch of unit tests. * Be more lazy about initializing libnet. This fixes issues where arping would sometimes pick an unsuitable device during arg parsing, if the "first" device on the system is not a "normal" device. - No change to rootfile
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit e2bf0fa529d93ac8172bda53b85c50c4b45432fa Author: Peter Müller peter.mueller@ipfire.org Date: Thu Jan 28 17:00:47 2021 +0100
libloc: ship a more recent database by default
The database we ship by default is meanwhile four weeks old, and since the merge window for Core Update 154 is still open, there is no need to ship data being more outdated than they have to be. :-)
The second version of this patch also updates the checksum for the downloaded database file.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ffe6303b2bfc0feebf60604d41bc9428ba567764 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 27 22:09:34 2021 +0000
core154: Ship tzdata
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 922d881312482049dc67c2c1f4435ae7f7a266bd Author: Peter Müller peter.mueller@ipfire.org Date: Wed Jan 27 22:31:46 2021 +0100
tzdata: update to 2021a
Please refer to https://www.iana.org/time-zones for further information.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 273708295b5553f174b27101a33c7d1402e4eb78 Author: Adolf Belka adolf.belka@ipfire.org Date: Wed Jan 27 21:14:44 2021 +0100
sudo: Upgrade to 1.9.5p2
- Update sudo from 1.9.5p1 to 1.9.5p2 - Major changes between version 1.9.5p2 and 1.9.5p1: Fixed sudo's setprogname(3) emulation on systems that don't provide it. Fixed a problem with the sudoers log server client where a partial write to the server could result the sudo process consuming large amounts of CPU time due to a cycle in the buffer queue. Bug #954. Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes a link error when building sudo statically. The user's KRB5CCNAME environment variable is now preserved when performing PAM authentication. This fixes GSSAPI authentication when the user has a non-default ccache. When invoked as sudoedit, the same set of command line options are now accepted as for sudo -e. The -H and -P options are now rejected for sudoedit and sudo -e which matches the sudo 1.7 behavior. This is part of the fix for CVE-2021-3156. Fixed a potential buffer overflow when unescaping backslashes in the command's arguments. Normally, sudo escapes special characters when running a command via a shell (sudo -s or sudo -i). However, it was also possible to run sudoedit with the -s or -i flags in which case no escaping had actually been done, making a buffer overflow possible. This fixes CVE-2021-3156. - No change to rootfile
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 157d64250a170b905cb440dd6968f7ba6cbaf988 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 7 12:13:30 2021 +0000
misc-progs: addonctrl: Replace all sprintf() with snprintf()
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 37fe3658a04f200732651ae997ff408efd7a92f6 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 14:38:03 2021 +0000
samba: Add helper script to pipe password
It is complicated to set the password in the C helper binary.
Therefore it is being set by a helper script.
This is still not an optimal solution since the password might be exposed to the shell environment, but has the advantage that shell command injection is no longer possible.
Fixes: #12562 Reported-by: Albert Schwarzkopf ipfire@quitesimple.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 354c3e2b45d9b3e51a29c8632bd18deb603a811f Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 12:00:32 2021 +0000
samba: Remove option to chose user group and shell
There is no need for this being implemented and it is dangerous to allow the user to create any shell accounts or users that belong to groups with higher privileges.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 64883513d5940c17afe2fcf1d876feae61921ea9 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:56:08 2021 +0000
misc-progs: sambactrl: Sanitise username
Fixes: #12562 Reported-by: Albert Schwarzkopf ipfire@quitesimple.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8e4b2125ccfd005c30adb9c568f2103bbc36bdb7 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:52:39 2021 +0000
misc-progs: sambactrl: Remove unused smbsafeconfpdc command
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 84de1f087c8a3bb0b5ca58503101f95117a69cf0 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:49:04 2021 +0000
misc-progs: sshctrl: Sanitise runtime for "tempstart"
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 14dc1c68f75b2ea70c0acfc55c1c168cc1ba8dff Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:45:20 2021 +0000
misc-progs: smartctrl: Sanitise device name
Fixes: #12562 Reported-by: Albert Schwarzkopf ipfire@quitesimple.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5efedb5487fa6fcc771c03bb9f15b5cb2412416c Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:42:06 2021 +0000
misc-progs: mpfirectrl: Use new run() function
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit c651dd9b6b2e00fb10d1ca1a99cf9efaec42df19 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:39:46 2021 +0000
misc-progs: extrahdctrl: Use new run() function
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit cf9efe511a403f9dba38340bf9c89bc1d30776f5 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:34:50 2021 +0000
misc-progs: addonctrl: Sanitise add-on names before use
Fixes: #12562 Reported-by: Albert Schwarzkopf ipfire@quitesimple.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit db984059b22a4680046df31579b44fa05c8264d5 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:34:31 2021 +0000
misc-progs: Add functions to sanitise input arguments
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6733d973d663968e1d642c18b3a0fe6526f07252 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:18:33 2021 +0000
misc-progs: pakfire: Use new run() function
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit c33f477f5bf1942f70dfaeff793e3d553afe4960 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:17:53 2021 +0000
misc-progs: backupctrl: Use new run() function
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ca060524a79e6d9d874b82f081e8c98d1abe4ff1 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:15:47 2021 +0000
misc-progs: Introduce run()
This function invokes a new command similar to safe_system() but without launching a shell before.
That way, it is possible to execute commands without any risk of shell command injection from nobody.
Fixes: #12562 Reported-by: Albert Schwarzkopf ipfire@quitesimple.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5d482a74faf4732db7c77ee693a2bc65e0b81a7a Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 16:55:25 2021 +0000
core154: Manually set capabilites for etherwake
The changes are not available in the running instance of pakfire and tar.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d9f9f16366d6a8332d5fd8e864d1a9c552db1387 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 16:01:56 2021 +0000
Drop launch-ether-wake
The helper binary is being dropped and etherwake is enabled for CAP_NET_RAW. This allows execution by unprivileged users as needed by the web user interface (nobody).
Reported-by: Albert Schwarzkopf ipfire@quitesimple.org Fixes: #12562 Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 29156d15f637faa7b5a23c797f0b0cd858a300ff Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 27 18:56:07 2021 +0000
hostapd: Re-add accidentially removed CONFIG_SAE
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1035570fb0ab8b62ed8511f27261fbe609dc3178 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 27 18:43:30 2021 +0000
core154: Do not package libloc database files
This is carried over from Core Update 153
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 85f5656aca91992d8cf135da603d729cc8ac8e0d Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 26 11:15:04 2021 +0000
Revert "make: update to 4.3"
This reverts commit f1d98a1c3fb2459cf481e9330d113a958be35e58.
The new version of make seems to break building u-boot on armv5tel.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 53f04366ed8eff56b11cc4d070fe36ed5ddb376b Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Jan 21 21:17:06 2021 +0100
iptables: Update to version 1.8.7
- Update from 1.8.6 to 1.8.7 Florian Westphal (4): xtables-monitor: fix rule printing xtables-monitor: fix packet family protocol xtables-monitor: print packet first xtables-monitor:
Pablo Neira Ayuso (2): tests: shell: update format of registers in bitwise payloads. configure: bump version for 1.8.7 release
Phil Sutter (21): nft: Optimize class-based IP prefix matches ebtables: Optimize masked MAC address matches tests/shell: Add test for bitwise avoidance fixes ebtables: Fix for broken chain renaming iptables-test.py: Accept multiple test files on commandline iptables-test.py: Try to unshare netns by default libxtables: Extend MAC address printing/parsing support xtables-arp: Don't use ARPT_INV_* xshared: Merge some command option-related code tests/shell: Test for fixed extension registration extensions: dccp: Fix for DCCP type 'INVALID' nft: Fix selective chain compatibility checks nft: cache: Introduce nft_cache_add_chain() nft: Implement nft_chain_foreach() nft: cache: Move nft_chain_find() over nft: Introduce struct nft_chain nft: Introduce a dedicated base chain array nft: cache: Sort custom chains by name tests: shell: Drop any dump sorting in place nft: Avoid pointless table/chain creation tests/shell: Fix nft-only/0009-needless-bitwise_0 - Rootfile updated
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit adc2aa5f67dfcc537bb0c0acc4136b69cd62b8e0 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 25 19:34:16 2021 +0000
core154: Ship updated perl files
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit eea288bc1a55ac99cac868b00367999455cecde5 Author: Leo-Andres Hofmann hofmann@leo-andres.de Date: Sun Jan 17 15:20:04 2021 +0100
network-functions.pl: Improve zone configuration functions
Cache ethernet configuration in public variable "ethernet_settings", add functions to simplify working with the network configuration.
Signed-off-by: Leo-Andres Hofmann hofmann@leo-andres.de Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit abffcc99adab8311e9421c8203a82d65b7c5ea1c Author: Leo-Andres Hofmann hofmann@leo-andres.de Date: Sun Jan 17 15:20:03 2021 +0100
Refactor "get_available_network_zones", move to network-functions.pl
This function nicely translates the ethernet/settings "CONFIG_TYPE" into a list of available zones. Therefore it should be more accessible!
Signed-off-by: Leo-Andres Hofmann hofmann@leo-andres.de Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f1d98a1c3fb2459cf481e9330d113a958be35e58 Author: Arne Fitzenreiter arne_f@ipfire.org Date: Thu Jan 21 14:35:16 2021 +0100
make: update to 4.3
this this needed to build on systems with kernel >=5.5
Signed-off-by: Arne Fitzenreiter arne_f@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 502f6c63a3120a85ca855ec9aaec9c6cb90cbefd Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 18 17:05:46 2021 +0000
network-hotplug-bridges: Fix logical error in STP_PRIORITY check
Reported-by: Daniel Weismüller daniel.weismueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit bb859c27f08b67d05c204455849f173df29cfdf1 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 16 18:11:35 2021 +0100
nano: Update to 5.5
For details see: https://www.nano-editor.org/news.php
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 387d4b5e43fb602c3be6078ce3a2284f07be55ba Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 18 13:06:25 2021 +0000
core154: Ship logrotate
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9f2779d71c9289e0c01da191666eef77062eb91d Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 16 16:57:56 2021 +0100
logrotate: Update to 3.18.0
Exerpt from 'ChangeLog.md':
"## [3.18.0] - 2021-01-08 - allow UIDs and GIDs to be specified numerically (#217) - add support for Zstandard compressed files (#355) - make `delaycompress` not to fail with `rotate 0` (#341)"
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit bcc66365764642ffa529a5bd6623110fa78c44b6 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Jan 16 16:53:07 2021 +0100
htop: Update to 3.0.5
For details see: https://github.com/htop-dev/htop/blob/master/ChangeLog
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 597e584f3dcbec0488f7471f7f657a0d092df627 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 18 13:05:42 2021 +0000
core154: Ship ipsec-interfaces
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0de7cc50ac420b3a635a342197a0174d5eeb4e1d Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 14 18:54:03 2021 +0000
IPsec: Disable XFRM policy lookup for VTI devices
This speeds up throughput slightly
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 37ff8e005db883c8e476dedd1b73e6623e271cc9 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 18 13:04:55 2021 +0000
core154: Ship sudo
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 161613165a64dffeef9a0d5bc545c698dfdda002 Author: Adolf Belka adolf.belka@ipfire.org Date: Thu Jan 14 19:37:11 2021 +0100
sudo: Upgrade to 1.9.5p1
- Upgrade sudo from 1.8.10p3 to 1.9.5p1 - Move sudo from legacy release (1.8) branch to stable release (1.9) branch - Update rootfile - Changelog available at https://www.sudo.ws/changes.html - Tested out on vm testbed and sudo is working correctly
Signed-off-by: Adolf Belka adolf.belka@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 93d540832a2077e276c8c5d8eec14f3aa9fe47a4 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 18 13:02:43 2021 +0000
wpa_supplicant: Update to development version
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5b2fc5d65f85917e906af70f63c2fc238b266420 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 18 13:02:15 2021 +0000
hostapd: Update to development version
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 50f75f88068420c66a64661120ab24f32feda22a Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 11:20:34 2021 +0000
core154: Ship kmod
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5c21f1a0784c73aa9c1cdf387f2940efb11ddf67 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 11:20:09 2021 +0000
kmod: Update to 28
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b14c24ca90e048cf65bd32b5d431c435e24d5610 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Dec 30 17:55:35 2020 +0000
make.sh: Build zstd earlier in stage2
Since programs from the toolchain are linked against this, we need to make this library available in stage 2, too.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5c3f3da55921a8f027d06d69df8bde19fef0c478 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 11:14:30 2021 +0000
core154: Ship SSH initscript
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 675c9ca558f3d354127c4746fed187b3ff4380cd Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 11:12:03 2021 +0000
ssh: Ignore any errors when stopping daemon
The SSH init script only kills the main daemon which leads to any child processes (for remaining connections) being untouched.
killproc returns 4 (unknown error) when not all processes were killed which is not intended here. Therefore we ignore the error and do not pause the shut down process for a minute.
Fixes: #12544 Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0b58804370ce8ee1350b85d30e1577e7dfaec90f Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 10:54:07 2021 +0000
core154: Ship initscript functions
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ad594123b6dd1115138a70ed15e59f3d43a91021 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 10:53:15 2021 +0000
core154: Ship header.pl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 56d37c8dbfe5793212163814e6ca34b9ee6d34e2 Author: Leo-Andres Hofmann hofmann@leo-andres.de Date: Tue Jan 12 19:11:14 2021 +0100
header.pl: Remove duplicate "IpInSubnet" function
This function is deprecated. The commonly used and maintained "IpInSubnet" function can be found in general-functions.pl.
Signed-off-by: Leo-Andres Hofmann hofmann@leo-andres.de Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7fd195938f0e4f48168148e2ca3f16e91d895241 Author: Arne Fitzenreiter arne_f@ipfire.org Date: Thu Jan 7 14:55:59 2021 +0100
strace: update to 5.10
Signed-off-by: Arne Fitzenreiter arne_f@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 80b1dc64f2020c2771fd43460e6a07f348f0b4d9 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 10:44:16 2021 +0000
AWS: Ensure the product UUID is uppercase
Newer kernels seem to return this in lowercase format which makes the comparison to "EC2" fail.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit baa97123726d5e9d58af27595e7c9ad9bafa2a46 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 13 10:42:38 2021 +0000
AWS: Hypervisor UUID has been dropped from newer kernels
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 611c2b7103f6921a2cb11be26c799d7613793cfb Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 12 10:43:52 2021 +0000
iw: Update to 5.9
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit a4cfeae49b531035c17463d2f4ea3db5010bc50a Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 12 10:40:28 2021 +0000
core154: Ship WiFi changes
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0eec4bbe46752aa732132436cf3aaff58be2e855 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 14:43:14 2021 +0000
wpa_supplicant: Import fresh default configuration
This enables some more features that have been added to wpa_supplicant over time. In our case we need SAE for WPA3 support.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 3403eb308c7220cde9c08c555c2d263a1f1501d7 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 14:43:13 2021 +0000
wireless client: Try using SHA256 over SHA1 when possible
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5addf347804340cef0808d6fb119b6092244dec6 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 14:43:12 2021 +0000
wireless client: Add support for WPA3
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0c2be650b04ba40a38e51188bce1821808d2e197 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 12 10:37:17 2021 +0000
core154: Ship setup
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 14cb18a5395cee2c9ff0ed13afdc5feca8d45514 Author: Arne Fitzenreiter arne_f@ipfire.org Date: Sat Jan 9 18:39:00 2021 +0100
setup: move gateway setting to red address setting.
DEFAULT_GATEWAY is used only in RED_STATIC config so it fits better to this menu and is only selectable if red is set to static mode.
Signed-off-by: Arne Fitzenreiter arne_f@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f0b53518e5b74ef7e7b432f1c627772253a5ea3a Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 7 13:52:01 2021 +0000
flashrom: Only build package for x86_64 and i586
The ARM architectures do not seem to be supported
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit acc82ade06f1bf68e3d47630699d9f9745088311 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 7 11:57:53 2021 +0000
core154: Ship unbound initscript
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2b113aebc482389692c9843a289ca489364a0c6f Author: Giovanni Aneloni giovanni.aneloni@live.com Date: Tue Apr 28 00:23:57 2020 +0200
unbound: make local zone transparent
Change local zone to "trasnparent" instead of "typetrasnparent" to avoid NXDOMAIN when querying local hosts
Fixes: #12391 Signed-off-by: Giovanni Aneloni giovanni.aneloni@live.com Reviewed-by: Peter Müller peter.mueller@ipfire.org Acked-by: Michael Tremer michael.tremer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f8e0e85d2ef1231aec962604ea5a9d5814cba293 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 7 11:39:08 2021 +0000
flashrom: Update to 1.2
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit cc62cff43fc8bfba762fce51e48c18a0ceca3e0d Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 7 11:37:01 2021 +0000
firmware-update: It is 2021
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1deb76d7fba31f1a547cd83a5ef99862a02f9f6c Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Jan 7 11:20:09 2021 +0000
firmware-update: Update to version 20200107
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d701756a83e3fcf2fda0b85accc601b9799f7a0a Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 17:27:36 2021 +0000
make.sh: Build gettext earlier
msgmerge is needed by attr
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit eb2cf5d0f3971431d60c0d2e8b5807f8f112a983 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 15:33:36 2021 +0000
core154: Ship ddns.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0562cdb360b28802427fc9f51d2e467788222109 Author: Stefan Schantl stefan.schantl@ipfire.org Date: Wed Jan 6 15:18:27 2021 +0100
ddns.cgi: Make dealing with auth tokens more user-friendly.
If a provider supports authentication with a token, now the username and password fileds will be swapped by some Java Script code in favour of an input field for the token.
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f6557ced12d4e6137c8d2fa6d1a376aefb2a0052 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 15:32:41 2021 +0000
core154: Ship ddns
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7d425e7cfa9767fedc460cf5e452a736163e738a Author: Stefan Schantl stefan.schantl@ipfire.org Date: Wed Jan 6 15:16:41 2021 +0100
ddns: Add latest upstream patches.
* Add patch to support listing of token providers. * Add fix to proper encode python string.
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 211b6bc16e3d1c383e63835572c21d8f7ed63822 Author: Jonatan Schlag jonatan.schlag@ipfire.org Date: Wed Jan 6 10:16:49 2021 +0000
unbound: keep probing when servers are down
Till now when a server was in the "blocking regime" there was one probe made every 15 min, to see if this server is up again. In situations where all servers where down (e.g. because of a massive package loss) it could take up to 15 min to have a working dns again.
This patch changes this behaviour in a way that a server marked down is probed every 2 min.
Fixes: #12557
Signed-off-by: Jonatan Schlag jonatan.schlag@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 02037c964fade3d58b0e4d9a05d3034955e8f5bc Author: Adolf Belka ahb.ipfire@gmail.com Date: Tue Jan 5 15:20:57 2021 +0100
sshfs: Update to 3.7.1
- Update sshfs from 2.2 to 3.7.1 - Changelog is available at https://github.com/libfuse/sshfs/releases - Build had to be changed from autotools to meson/ninja - Change in rootfiles
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6f20cb9688535efaf22cc490ffdcbed99088e67a Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 15:21:32 2021 +0000
core154: Ship fuse
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 35b8dc552ddf08bd3d2290621076e323859b23cd Author: Adolf Belka ahb.ipfire@gmail.com Date: Tue Jan 5 15:21:19 2021 +0100
fuse: Update to 3.10.1
- Update fuse from 2.9.7 to 3.10.1 - Update also required by sshfs update - Changelog is available at https://github.com/libfuse/libfuse/releases - Build had to be changed from autools to meson/ninja - Rootfiles changed - namespace conflict fix patch no longer required. Fix now built into kernel.h
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8468f164abec32309e7c09bf044face0a153c56a Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 15:17:50 2021 +0000
core154: Ship iproute2
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 34866cace5ffbd587bab91a00d763fa18853746b Author: Adolf Belka ahb.ipfire@gmail.com Date: Wed Jan 6 14:43:59 2021 +0100
iproute2: Update to 5.10.0
- Update from 5.8.0 to 5.10.0 - No changelog available - No changes to the rootfiles
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6ae847429ed258ce3f7f50317bec3d4ed3efe6cc Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 15:15:22 2021 +0000
core154: Ship iptables
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 84e4274e59912b854363597c97602432a9a5f615 Author: Adolf Belka ahb.ipfire@gmail.com Date: Wed Jan 6 14:43:27 2021 +0100
iptables: Update to 1.8.6
- Update from 1.8.5 to 1.8.6 - Changelog info Arturo Borrero Gonzalez (1): xtables-translate: don't fail if help was requested
Giuseppe Scrivano (1): iptables: accept lock file name at runtime
Jan Engelhardt (2): doc: document danger of applying REJECT to INVALID CTs build: resolve iptables-apply not getting installed
Maciej Żenczykowski (1): libxtables: compiler warning fixes for NO_SHARED_LIBS
Pablo Neira Ayuso (4): extensions: libxt_conntrack: provide translation for DNAT and SNAT --ctstate iptables: replace libnftnl table list by linux list iptables-nft: fix basechain policy configuration configure: bump version for 1.8.6 release
Phil Sutter (31): xtables-restore: Fix verbose mode table flushing build: Fix for failing 'make uninstall' xtables-translate: Use proper clear_cs function tests: shell: Add help output to run-tests.sh nft: Make table creation purely implicit nft: Be lazy when flushing nft: cache: Drop duplicate chain check nft: Drop pointless nft_xt_builtin_init() call nft: Turn nft_chain_save() into a foreach-callback nft: Use nft_chain_find() in two more places nft: Reorder enum nft_table_type nft: Eliminate table list from cache nft: Fix command name in ip6tables error message tests: shell: Merge and extend return codes test xtables-monitor: Fix ip6tables rule printing nft: Fix for ruleset flush while restoring Makefile: Add missing man pages to CLEANFILES nft: cache: Check consistency with NFT_CL_FAKE, too nft: Extend use of nftnl_chain_list_foreach() nft: Fold nftnl_rule_list_chain_save() into caller nft: Use nft_chain_find() in nft_chain_builtin_init() nft: Fix for broken address mask match detection extensions: libipt_icmp: Fix translation of type 'any' libxtables: Make sure extensions register in revision order libxtables: Simplify pending extension registration libxtables: Register multiple extensions in ascending order nft: Make batch_add_chain() return the added batch object nft: Fix error reporting for refreshed transactions libiptc: Avoid gcc-10 zero-length array warning nft: Fix for concurrent noflush restore calls tests: shell: Improve concurrent noflush restore test a bit - Rootfiles updated
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 248902f8c9a9ea1a8b549aff87344e024e1a1d8d Author: Adolf Belka ahb.ipfire@gmail.com Date: Tue Jan 5 18:35:16 2021 +0100
stunnel: Update to 5.57
- Update of stunnel from 5.56 to 5.57 - Changelog Version 5.57, 2020.10.11, urgency: HIGH Security bugfixes The "redirect" option was fixed to properly handle "verifyChain = yes" (thx to Rob Hoes). OpenSSL DLLs updated to version 1.1.1h. New features New securityLevel configuration file option. FIPS support for RHEL-based distributions. Support for modern PostgreSQL clients (thx to Bram Geron). Windows tooltip texts updated to mention "stunnel". TLS 1.3 configuration updated for better compatibility. Bugfixes Fixed a transfer() loop bug. Fixed memory leaks on configuration reloading errors. DH/ECDH initialization restored for client sections. Delay startup with systemd until network is online. bin\libssp-0.dll removed when uninstalling. A number of testing framework fixes and improvements. - No change to rootfiles
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1a886f57d865e6cb568bb6bfe3e043cdd7c2dd0f Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:51:36 2021 +0000
misc-progs: ipfirereboot: Remove unused cron functions
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 36f253d2911c56715b435acee2c14dd14a7cc828 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:39:32 2021 +0000
configroot: Make extrahd.pl executable
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 81790c8a002363bd4bddf46c3621e051c549f702 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Jan 6 11:19:18 2021 +0000
misc-progs: Set some defaults for CONFIG_ROOT and SNAME
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1a79ef8e43a4e406a79344341055dd9fa79ce57d Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 17:17:33 2021 +0000
misc-progs: Drop unused upnpctrl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f0c39f17390ce71960cf3c6fb06498a20634b263 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 17:15:11 2021 +0000
misc-progs: Drop unused updxsetperms
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7908de2a952edc91b1effa6245dbb6dc80b7dafc Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 17:02:44 2021 +0000
misc-progs: Drop unused ipfiredeath & ipfirerebirth
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5cef36ccb14424270a451c11d235ece4dc3be946 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 16:59:14 2021 +0000
misc-progs: Drop unused applejuicectrl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit b37678e92231a7497820b2f39f040cccacfd808e Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 16:53:36 2021 +0000
Package extended attributes in distro.img and Core Updates
System capabilities are stored in extended file system attributes which are by default not stored in tar balls.
This patch ensures that they are packaged and extracted.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 241bf919fc2d056124c1082a0488bfa4c3fe8298 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Jan 5 16:09:16 2021 +0000
make.sh: Build acl and attr earlier
These libraries are needed to link tar against them for extended attribute support
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d0a16dba2835fc1c27c1d12765d7461a9d48c04c Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Jan 4 10:44:56 2021 +0000
core154: Ship general-functions.pl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5b4e33bc3b754dd14ecc279bc421ec232a489507 Author: Adolf Belka ahb.ipfire@gmail.com Date: Sat Jan 2 13:54:45 2021 +0100
general-functions.pl: Update to fix bug #12428
- Patch of general-functions.pl for implementation of fix provided by Bernhard Bitsch in bug #12428. Had to be modified as that fix gave a failure for single character hostnames. Updated version prevents spaces being put into hostnames and works for single character hostnames - Updated subroutine validfqdn to apply consistent rules for hostname & domain name portions of fqdn - Minor updates for consistency across validhostname, validdomainname & validfqdn - Patch implemented into testbed system and confirmed working for hostnames, domain names and FQDN's.
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 888a21f928d1eb79ae7049bdde394f54ebc39e2c Author: Matthias Fischer matthias.fischer@ipfire.org Date: Fri Jan 1 16:47:54 2021 +0100
wget: Update to 1.21
Sorry, no changelog found, only: https://fossies.org/linux/wget/ChangeLog
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 21970dd75f4f5a00b89f4cec4a56bb5c959c9407 Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Jan 3 11:18:06 2021 +0000
core154: Ship knot
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 3d725ebbec589c137f40c59296662b21583225e1 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Fri Jan 1 10:58:16 2021 +0100
knot: Update to 3.0.3
For details see: https://www.knot-dns.cz/2020-12-15-version-303.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Reviewed-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 86bd9ccc951473f4e9ec3df7748a89b954beda1c Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Jan 3 11:17:28 2021 +0000
Drop unused Asterisk CGI files
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit edd2710520fb2b762b1b4a05a0a34180ad30b7ae Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Jan 3 11:16:22 2021 +0000
Drop unused upnp.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2b4110cd64721eb591a75e7bc0856afff4b4ff93 Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Jan 3 11:15:45 2021 +0000
core154: Ship updated CGI files
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 1d55fccdc58f56c7cea81b9c7c6a96aec89458ae Author: Matthias Fischer matthias.fischer@ipfire.org Date: Tue Dec 29 13:50:11 2020 +0100
Syntax fixes in several CGIs
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 15194c7c52c2438611832cecf4dad24fec304322 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Tue Dec 29 13:36:21 2020 +0100
dhcpcd: Update to 9.4.0
For details see: https://roy.marples.name/archives/dhcpcd-discuss/0003420.html
Former patch for Bug #12552 is now included.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit da310b22465c5147fa5d63bb763d9b1963726eb8 Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Dec 29 10:18:44 2020 +0000
core154: Ship logwatch
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit e49289c9ea0d1ccd1462aa0012d00f434e8ac259 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Fri Dec 25 13:07:18 2020 +0100
logwatch: Fix unmatched entries from clamav
This - cosmetic - patch fixes the unnecessary unmatched "Activating the newly loaded database..."-entries introduced with 'clamav 0.103.0'.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2127c97b8f738a1d2b75d817a42d73145bde257c Author: Michael Tremer michael.tremer@ipfire.org Date: Tue Dec 29 10:17:09 2020 +0000
hostapd: Bump package version
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ed7f8152662d2371b7624fd4f26499f4236c35c2 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Mon Dec 28 14:40:21 2020 +0100
wlanap.cgi: Cosmetic fix - replace 'Save' image with 'Save' button
Fixed syntax for "value"..
Thanks!
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 438fce1f19d6e01058dfa04b0d7fa308d574121a Author: Stéphane Pautrel steph78630@gmail.com Date: Tue Dec 29 10:16:08 2020 +0000
lang: Update French translation
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2abcb7ee5f25becda8056c01c1e98faf80c57807 Author: Adolf Belka ahb.ipfire@gmail.com Date: Sun Dec 27 12:06:27 2020 +0100
bacula: Update to 9.6.7
- Update bacula from 9.6.6 to 9.6.7 This is a minor bug release See https://sourceforge.net/projects/bacula/files/bacula/9.6.7/ReleaseNotes/ - This is the last of the version 9 series. The next update will be the version 11 series. - Update of lfs and rootfiles
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 2b4353a436af758876a043b8cbaa5819ebde3c6a Author: Adolf Belka ahb.ipfire@gmail.com Date: Sun Dec 27 19:59:29 2020 +0100
iperf3: Update to version 3.9
- Update iperf3 from 3.7 to 3.9 - No changes to rootfiles - Update patch file to remove pg flag - Release notes from version 3.8 onwards:-
iperf 3.9 2020-08-17 -------------------- * Notable user-visible changes * A --timestamps flag has been added, which prepends a timestamp to each output line. An optional argument to this flag, which is a format specification to strftime(3), allows for custom timestamp formats (#909, #1028). * A --server-bitrate-limit flag has been added as a server-side command-line argument. It allows a server to enforce a maximum throughput rate; client connections that specify a higher bitrate or exceed this bitrate during a test will be terminated. The bitrate is expressed in bits per second, with an optional trailing slash and integer count that specifies an averaging interval over which to enforce the limit (#999). * A bug that caused increased CPU usage with the --bidir option has been fixed (#1011). * Notable developer-visible changes * Fixed various minor memory leaks (#1023).
iperf 3.8.1 2020-06-10 ---------------------- * Notable user-visible changes * A regression with "make install", where the libiperf shared library files were not getting installed, has been fixed (#1013 / #1014).
iperf 3.8 2020-06-08 -------------------- * Notable user-visible changes * Profiled libraries and binaries are no longer built by default (#950). * A minimal Dockerfile has been added (#824). * A bug with burst mode and unlimited rate has been fixed (#898). * Configuring with the --enable-static-bin flag will now cause a statically-linked iperf3 binary to be built (#989). * Configuring with the --without-sctp flag will now prevent SCTP from being auto-detected (#1008). This flag allows building a static binary (see above item) on a CentOS system with SCTP installed, because no static SCTP libraries are available. * Clock skew between the iperf3 client and server will no longer skew the computation of jitter during UDP tests (#842 / #990). * A possible buffer overflow in the authentication feature has been fixed. This was only relevant when configuration authentication using the libiperf3 API, and did not affect command-line usage. Various other improvements and fixes in this area were also made (#996). * Notable developer-visible changes * The embedded version of cJSON has been updated to 1.7.13 (#978). * Some server authentication functions have been added to the API (#911). * API access has been added to the connection timeout parameter (#1001). * Tests for some authentication functions have been added. * Various compiler errors and warnings have been fixed.
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 382f92fa5b9f2064ccfd204c5fa7aa3b9a4b69a3 Author: Adolf Belka ahb.ipfire@gmail.com Date: Sun Dec 27 19:51:45 2020 +0100
iperf: Update to 2.0.14a
- Update from version 2.0.13 to 2.0.14a - No change in rootfiles - Release notes for change:- o scaling improvements for -P, i.e. improved support for large numbers of traffic threads o major code refactoring (see doc/DESIGN_NOTES) for maintainability, extensibilty, performance, scaling, memory usage o support for full duplex traffic using --full-duplex o support for reverse traffic using --reverse o support for role-reversal character of asterisk in the transfer id o transfer id now an incrementing integer and no longer the socket id o support for TCP connect only tests with --connect-only o isochronous support compiled in by default, must use config to disable o support --isochronous for both UDP or TCP traffic to simulate video streams o use of clock_nanosleep when supported to schedule isochronous burst starts, otherwise use nanosleep delay o support for --trip-times indicating the client and server clocks are synchronized to an accuracy sufficient, note: consider the use of precision time protocol as well as ask your data center to provide access to a GPS disciplined reference time source o support for --trip-times with -d and -r bidirectional tests o output TCP connect times (3WHS) in connect reports o support for application level tcp connect retries via --connect-retries n o rate-limited options of -b and --fq-rate supported for unidirectional, full duplex and reverse traffic o reporter thread designed to automatically cause packet reports to aggregate - mitigating and hopefully removing thread thrashing o support for frame or burst based reporting or sampling vs time based via -i [f|F] (experimental) o support for UDP traffic only from client to server with --no-udp-fin o support for write to read latencies (UDP and TCP) with --trip-times o support for sum only outputs with --sum-only o support for little's law calculations in --trip-time outputs o support for --txstart-time <epoch-time> to schedule client traffic start, timestamp support microseconds, e.g. unix $(expr $(date +%s) + 1).$(date +%N) o support for --txdelay-time to insert delay between TCP three way handshake (3WHS) and data transfer o support for --no-connect-sync which disables transmit traffic start synchronization when -P is used, defaults to synchronized o option of --full-duplex implementation uses a barrier on the client side to synchronize full duplex traffic o no limits to group sum reports, i.e. all clients will get its own sum report per a server o improved report timestamps, e.g. end to end or client and server based timestamps with --trip-times o improved settings messaging o improved messaging for --tcp-congestion or -Z o re-implemented -U for single UDP server with minimal threading interactions o re-implemented -1 or --singleclient where server will serialize traffic runs o warning message if the test were likely CPU bound instead of network i/o bound o fix the case when -P <value> is set on the server such that summing output is displayed o multicast listener will autoset -U (single server), e.g -P > 1 not supported for multicast o multicast listener no longer busy drops multicast packets during traffic test, i.e. only server thread receives them o immediate bail out on mutually exclusive command line options o fix -o or --output using freopen to redirect stdout and stderr to a file o man page updates with examples o tested with 1000's of traffic streams, WiFi, 10G and 100G
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 3a4d52603d6af0c239da3a3ab18c7ed3055cbfa1 Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Dec 27 10:58:37 2020 +0000
core154: Ship new procps
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 50992c73210f05384a976dbe21843c37734b4a3f Author: Adolf Belka ahb.ipfire@gmail.com Date: Sat Dec 26 17:40:32 2020 +0100
procps: Update to 3.3.16
- update from 3.2.8 to 3.3.16 This is also an update from procps to procps-ng The previous version was no longer being maintained. - Added autogen.sh into lfs as ity is needed to create the config script. - Added libdir=/lib line into configure command as default is /usr/lib - Added mv commands for kill, ps & sysctl to place them into the same locations as the previous version of procps - Moved lfsmake2 procps line to after pkg-config in make.sh The autogen line requires autoconf, libtool, gettext and pkg-config to be available so procps moved to after them. - procps-3.2.8-fix_unknown_HZ_value.patch no longer required with new version so removed. - rootfile updated. - libprocps library being maintained by the same people now maitaining this version of procps. - information on the releases from 3.3.13 to 3.3.16 available on https://gitlab.com/procps-ng/procps/-/releases
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 986a116beb92399d9574e1552e0e2a0d6fc614f3 Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Dec 27 10:37:59 2020 +0000
meson: Update MD5 checksum
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit e1616eb4509bda0f4c892f992c3324980c796ebb Author: Stefan Schantl stefan.schantl@ipfire.org Date: Sat Dec 26 18:09:24 2020 +0100
make.sh: Limit ninja to compute paralellism value
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9c51467d05d765fad1788be478b41412192af8d9 Author: Stefan Schantl stefan.schantl@ipfire.org Date: Sat Dec 26 18:09:23 2020 +0100
ninja: Allow to limit the parallel build processes.
When run, ninja normally runs a maximum number of processes in parallel. By default this is the number of cores on the system plus two. In some cases this can overheat a CPU or run a system out of memory. If run from the command line, passing a -jN parameter will limit the number of parallel processes, but some packages embed the execution of ninja and do not pass a -j parameter.
Using this optional procedure allows us to limit the number of parallel processes via an environment variable, NINJAJOBS.
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 814a33ff4d5032e641c673973c66f31c8ebe77eb Author: Stefan Schantl stefan.schantl@ipfire.org Date: Sat Dec 26 17:48:00 2020 +0100
make.sh: Build ninja and meson.
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 630e8601f839c2a0e93900000c10363057b2fe7d Author: Stefan Schantl stefan.schantl@ipfire.org Date: Sat Dec 26 17:47:59 2020 +0100
meson: New package.
More and more packages uses meson as build environment instead of autotools or cmake.
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f8c5644dc5facad5a1b3a0265ff4ff3bf9f6fe49 Author: Stefan Schantl stefan.schantl@ipfire.org Date: Sat Dec 26 17:47:58 2020 +0100
ninja: New package
This tool required to build more and more packages.
Signed-off-by: Stefan Schantl stefan.schantl@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 73a92c604cf27df8b31c3ae15f0d6981e88b504d Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 24 12:01:12 2020 +0000
Run "./make.sh lang"
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 642316370f9cfa65175ae1cbed462a3b6c59622c Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 24 12:00:39 2020 +0000
core154: Ship pakfire.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6666b93d11b3add035baaf5a41a1ef16f4da9e19 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Thu Dec 24 01:09:04 2020 +0100
Update (and cosmetic fixes) for 'pakfire.cgi': Added GUI entry for existing, but unused translation string
While preparing the Core153 update, I found by chance that a language string had been added from Core152 to Core153 which I couldn't find in any CGI-file.
The translation suggested that this string ('Available Updates') could belong to 'pakfire.cgi'.
And I thought that on the pakfire GUI something was actually missing: the heading above the box listing the 'Available Updates'. Don't know why I didn't saw this before.
So tried to add these missing heading. I hope I made it right...
Some cosmetic fixes: I also added some space around the text for 'Available Addons' and 'Installed Addons' because the text lines weren't separated. There is no seen wordwrapping. This required deleting some unwanted '<br />' in the affected translation strings.
I tried this about 4 years ago, but somehow this patch got lost.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0b1d45849f9df9ac145359a02cd383c7baff6c5b Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 24 11:59:46 2020 +0000
core154: Ship country.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f65629dd479a2846e9e4b1af910bf879d133e186 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Thu Dec 24 11:56:13 2020 +0100
country.cgi: Cosmetic fix for 'Back'-button'
While testing Peter's patch for Bug #12560 I noticed that the standard 'back'-button at the end of the page - like in 'ipinfo.cgi' - was implemented as a text string.
I just took the code segment with the 'back'-*image* from 'ipinfo.cgi' to make this link looking similar to the other pages.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 4ed49291c2eb23e7043721ed55f07c0135440dcb Author: Peter Müller peter.mueller@ipfire.org Date: Thu Dec 24 09:19:15 2020 +0100
country.cgi: fix location function call
Fixes: #12560
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d96d979e2a0bb199b5ae7bec75964f4091996268 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Thu Dec 24 00:06:55 2020 +0100
dhcpcd: Update to 9.3.4
For details see: https://roy.marples.name/archives/dhcpcd-discuss/0003334.html
This version contains the official fix from here: https://roy.marples.name/cgit/dhcpcd.git/commit/?id=12cdb2be46e25e1ab99df183...
This should fix Bug #12552 (dhcpcd-9.3.4 crash with bad system call) on 32bit/i686 systems.
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 631b7056acfd21f03b21f446eb6b26e5bd86f699 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Thu Dec 24 01:15:19 2020 +0100
htop: Update to 3.0.4
For details see: https://github.com/htop-dev/htop/blob/master/ChangeLog
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 03bebd2303f560626ed2e465967a6b7846f21644 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Dec 23 14:36:04 2020 +0000
core154: Ship libloc
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f31c8d2adec2f629aedcd7c3db5d15a6bdf42e94 Author: Peter Müller peter.mueller@ipfire.org Date: Wed Dec 23 15:03:32 2020 +0100
libloc: update to 0.9.5 and backport fix for #12554
This patch updates libloc to 0.9.5, deletes the upstream patchset from version 0.9.4, and includes a latest upstream patch to backport a fix for #12554.
Cc: Michael Tremer michael.tremer@ipfire.org Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5189d54a2f3eb30feea999beb42e753b592c0671 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Dec 23 14:32:30 2020 +0000
core154: Ship remote.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 05f68686a0c4259ad2fcb96e2ea3d2fa71e40a77 Author: Peter Müller peter.mueller@ipfire.org Date: Tue Dec 22 17:01:25 2020 +0100
remote.cgi: cosmetic changes
- Swap colour generation to improve readability in case of no active SSH logins - Unify table layout - Improve German "SSH host key" translation to avoid Deppenleerzeichen
This patch does not introduce functional changes.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 79feb120a0827f47df14e6fbb6b32970bc36d04a Author: Peter Müller peter.mueller@ipfire.org Date: Tue Dec 22 12:31:09 2020 +0100
Postfix: update to 3.5.8
Please refer to http://www.postfix.org/announcements/postfix-3.5.8.html for the release announcement of this version.
The second version of this patch should correctly apply against next, while the first did not due to human error and/or lack of coffee. :-/
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit e9fbd9293a8732e8be47eed8d5da85e4a257c897 Author: Peter Müller peter.mueller@ipfire.org Date: Mon Dec 21 22:25:34 2020 +0100
texinfo: update to 6.7
Full changelog as retrieved from https://git.savannah.gnu.org/cgit/texinfo.git/plain/NEWS:
6.7 (23 September 2019) * Language: . support of index subentries and sub-subentries with @subentry . new commands @seeentry and @seealso in index entries . no need to wrap Top node in @ifnottex - omitted automatically when processed with TeX . UTF-8 is the default input encoding
* texi2any . for HTML output, mark index nodes in menus and tables of contents with the 'rel' attribute of the 'a' tag. . TOP_NODE_UP is now only used in HTML if TOP_NODE_UP_URL is set. Also TOP_NODE_UP should now be formatted in the output format. In HTML TOP_NODE_UP should be suitable for inclusion in HTML element attributes, so for instance should not contain elements. . support of noderename.cnf files has been removed . INPUT_PERL_ENCODING, INPUT_ENCODING_NAME, NODE_FILE_EXTENSION, NODE_FILENAMES, SHORTEXTN and TOP_NODE_FILE removed as customization variables. . TOP_NODE_FILE_TARGET now contains the extension. . error messages translated when the XS parser module is in use
* texi2dvi . unconditionally run in --batch mode, i.e. without stopping if there is a TeX error . keep on going after a TeX error if the index files changed . with --tidy (or --build-dir), avoid reading index files from previous runs where --tidy was not used
* info . for a tree search (with M-/), '}' and '{' work as well as 'M-}' and 'M-{' to go through the results
* Distribution: . Several obsolete portability checks removed . gettext 0.20.1, automake 1.16.1
No rootfile changes were necessary.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 6f56c219deda7feb97220dccd525187c0e7151ba Author: Peter Müller peter.mueller@ipfire.org Date: Mon Dec 21 20:02:10 2020 +0100
ccache: update to 3.7.12
Please refer to https://ccache.dev/news.html#2020-10-01 for a list of all release notes since version 3.4.1, it is unfortunately way too long to be added here. :-]
Since ccache is not part of the distribution itself, no rootfile updates were necessary.
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9f87208cd77722c2588822b6a7df028e10fc4a39 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Dec 21 21:33:36 2020 +0000
core154: Ship sshctrl
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit fe0984e07bb48922acae5a4993503455df9dec0d Author: Peter Müller peter.mueller@ipfire.org Date: Mon Dec 21 21:55:43 2020 +0100
sshctrl: when enable or disable AllowTcpForwarding, change PermitOpen accordingly
Fixes: #12546
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7d8a116a41354743de76e989d67fd79f7de8abfe Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Dec 21 21:30:05 2020 +0000
core154: Ship ca-certificates
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 96adf682bcb7640a9ef8e5caab9f93a887bd0271 Author: Peter Müller peter.mueller@ipfire.org Date: Mon Dec 21 21:59:04 2020 +0100
update ca-certificates CA bundle
Update the CA certificates list to what Mozilla NSS ships currently.
The original file can be retrieved from: https://hg.mozilla.org/mozilla-central/raw-file/tip/security/nss/lib/ckfw/bu...
Signed-off-by: Peter Müller peter.mueller@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 4af97be3029bfd4e857d1c5a7d764528e7fbdd5e Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Dec 21 16:48:51 2020 +0000
core154: Ship dhcp.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9dbf3c4936395bebc5db124382209b8cd3fcb241 Author: Adolf Belka ahb.ipfire@gmail.com Date: Wed Dec 16 13:33:22 2020 +0100
Fix for bug 10743
This adds in the option to have "deny known clients" in dhcpd.conf This is applied to the range command so applies to the dynamic addresses given. If you have just a range statement say in blue then if you are not using vlans you could have the situation where a known host in green might end up getting a lease from the blue range. Here a deny known-clients makes sense. Your range in this case would be limited to only unknown clients if deny known-clients was selected. dhcp WUI has been modified to add in this command. Error message has been added to check that a range has been specified if the deny unknown clients checkbox has been selected. Language files updated with additional items (English, German & Dutch).
For more information on the history of this please see the bugzilla entry Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit fef289cef78c9041615eda22180b56294b6354e2 Author: Adolf Belka ahb.ipfire@gmail.com Date: Mon Dec 21 12:23:57 2020 +0100
dehydrated: Update to 0.7.0
- Update dehydrated from 0.6.5 to 0.7.0 - No changes to the rootfiles - This update patch also addresses bug #12425 The changes from the interim patch mentioned in bug #12425 are included into this update - Changes for all releases can be found at https://github.com/dehydrated-io/dehydrated/releases - Changes for this version update Added Support for external account bindings Special support for ZeroSSL Support presets for some CAs instead of requiring URLs Allow requesting preferred chain (--preferred-chain) Added method to show CAs current terms of service (--display-terms) Allow setting path to domains.txt using cli arguments (--domains-txt) Added new cli command --cleanupdelete which deletes old files instead of archiving them
Fixed No more silent failures on broken hook-scripts Better error-handling with KEEP_GOING enabled Check actual order status instead of assuming it's valid Don't include keyAuthorization in challenge validation (RFC compliance)
Changed Using EC secp384r1 as default certificate type Use JSON.sh to parse JSON Use account URL instead of account ID (RFC compliance) Dehydrated now has a new home: https://github.com/dehydrated-io/dehydrated Added OCSP_FETCH and OCSP_DAYS to per-certificate configurable options Cleanup now also removes dangling symlinks
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9cea690a93be0373a01163caf2848e5e526813ae Author: Adolf Belka ahb.ipfire@gmail.com Date: Sun Dec 20 19:47:58 2020 +0100
htop: Update to 3.0.3
- Update htop from 3.0.2 to 3.0.3 See the Change Log for details of changes https://github.com/htop-dev/htop/blob/master/ChangeLog - Rootfiles updated
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 9ee802c508e56415f9150a450affb649b7951cdf Author: Adolf Belka ahb.ipfire@gmail.com Date: Fri Dec 18 22:07:16 2020 +0100
hplip: Update to 3.20.11
- Update from 3.18.6 to 3.20.11 (16 updates) - See Release notes for bug fixes and support for additional printers https://sourceforge.net/p/hplip/news/ - Update of rootfile :-)
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 34081d2f239df9481da9f614dcdbf582f4f44a01 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Fri Dec 18 18:54:31 2020 +0100
bind: Update to 9.11.26
For details see: https://downloads.isc.org/isc/bind9/9.11.26/RELEASE-NOTES-bind-9.11.26.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 60aab42a632b36d01e9fa1c85a910462dd0e1273 Author: Michael Tremer michael.tremer@ipfire.org Date: Sun Dec 20 09:46:16 2020 +0000
Revert "htop: Update to 3.0.3"
This reverts commit ce26b2a364fbf884e2d715349fb6a8d329f99633.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8e3c15e687fa892c8ca167c3242ff1f51747ada7 Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Dec 18 16:49:11 2020 +0000
Revert "dhcpcd: Update to 9.3.4"
This reverts commit 64dfe751428c2cac0c1d700fb71054166973e567.
This version does not run in i686 as reported in #12552.
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit f6ede20a629fc1b56bf4910729819ff4c7716f23 Author: Adolf Belka ahb.ipfire@gmail.com Date: Fri Dec 18 17:35:41 2020 +0100
acpid: Update to 2.0.32
- Update acpid from 2.0.28 to 2.0.32 - Full changelog is available in the source file. 2.0.29 2018-04-16 Ted Felix ted@tedfelix.com - 2.0.29 release (configure.ac) (Ted Felix) - Decouple -d and -f options. Bug #15. (acpid.8 acpid.c acpid.h log.c log.h TESTPLAN) (Casper Ti. Vector) - Rename acpid_debug -> debug_level. (acpid.c event.c log.c log.h) (Ted Felix) - Standards: man page command references. (acpid.8 kacpimon/kacpimon.8) (Ted Felix) - Log missing input layer as a warning. (inotify_handler.c) (Ted Felix) 2.0.30 2018-07-18 Ted Felix ted@tedfelix.com - 2.0.30 release (configure.ac) (Ted Felix) - configure: Don't use AC_FUNC_MALLOC, AC_FUNC_REALLOC. (configure.ac) (Robin Gloster mail@glob.in) - samples: powerbtn: extend the list of known PMS (powerbtn.sh) (Andrey Utkin andrey_utkin@gentoo.org) - samples: powerbtn: fix kde4 power management detection (powerbtn.sh) (Andrey Utkin andrey_utkin@gentoo.org) 2.0.31 2018-11-15 Ted Felix ted@tedfelix.com - 2.0.31 release (configure.ac) (Ted Felix) - Add events for keyboard illumination up/down (input_layer.c) (Lars-Dominik Braun) - kacpimon: Bump connection limit to 100 Debian #909399 (kacpimon/connection_list.c) (Ted Felix) 2.0.32 2019-08-15 Ted Felix ted@tedfelix.com - 2.0.32 release (configure.ac) (Ted Felix) - Remove filename argument from --nosocket option Bug #17 (acpid.c acpid.8) (Ted Felix) - Fix race during startup Bug #18. Debian #933230. (acpid.c input_layer.c) (anomie) - No change to rootfile
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 471407756443b33d82e6d52559399c995aa624fa Author: Adolf Belka ahb.ipfire@gmail.com Date: Thu Dec 17 21:01:59 2020 +0100
bird: Update to 2.0.7
Update bird from 2.0.6 to 2.0.7 Changes from changelog - BGP: Fix reconfiguration with import table *Change of some options requires route refresh, but when import table is active, channel reload is done from it instead of doing full route refresh. So in this case we request it internally. - Doc: Minor documentation fixes - Nest: Handle non-MPLS on MPLS case in recursive route update *When non-MPLS recursive route resolves to MPLS underlying route, then it should get MPLS labels from the the underlying route. - Nest: Handle PtP links in recursive route update *Underlying (IGP) route may lead to PtP link, in this case it does not need gateway. Which is different than direct route without gateway. *When recursive (BGP) route uses PtP route, it should not use recursive next hop as immediate next hop, while for direct routes it should. - Nest: Fix recursive route update *Missing cleanup can lead to dangling pointer to old next hops.
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ce26b2a364fbf884e2d715349fb6a8d329f99633 Author: Adolf Belka ahb.ipfire@gmail.com Date: Thu Dec 17 17:13:28 2020 +0100
htop: Update to 3.0.3
Update htop from 3.0.2 to 3.0.3 See the Change Log for details of changes https://github%5B.%5Dcom/htop-dev/htop/blob/master/ChangeLog Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d7f3843d67b2e913effa57ce19e50e85dbbfeeee Author: Michael Tremer michael.tremer@ipfire.org Date: Fri Dec 18 09:45:32 2020 +0000
core154: Ship sqlite
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 58303fb9f0e7a02ebf1a5f15cef5387f1945e3e0 Author: Adolf Belka ahb.ipfire@gmail.com Date: Wed Dec 16 19:28:05 2020 +0100
sqlite: Update to 3.34.0
-Update sqlite from 3.26.0 to 3.34.0 See https://sqlite%5B.%5Dorg/chronology%5B.%5Dhtml for history between these releases. -Have reviewed all release notes between these two releases and there are no deprecations. -No change to rootfile. Signed-off-by: Adolf Belka ahb.ipfire@gmail.com
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 7e09bcbc45695026592ac4169f9aa18bb8fb811e Author: Arne Fitzenreiter arne_f@ipfire.org Date: Wed Dec 16 16:22:02 2020 +0100
dracut: add hyperv-keyboard module to initrd.
the missing module should be the reason for not responding setup on some hyper-v configurations.
Signed-off-by: Arne Fitzenreiter arne_f@ipfire.org
commit e6575e1a58cce7aeef56b142560890a384eecd2d Merge: b954ae275 c4f1f5615 Author: Michael Tremer michael.tremer@ipfire.org Date: Wed Dec 16 10:33:36 2020 +0000
Merge branch 'master' into next
commit b954ae2750e4d36323cc497563fa7c12420df5e4 Author: Michael Tremer michael.tremer@ipfire.org Date: Mon Dec 14 09:35:37 2020 +0000
core154: Ship libhtp
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ea7a9a4b2fccaa7320702588cd31c919d08f1160 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sat Dec 12 10:18:30 2020 +0100
libhtp: Update to 0.5.36
For details see: https://github.com/OISF/libhtp/releases
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit a410004c610f8b21f9372056523a419085dbb3b7 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 13:18:26 2020 +0000
shairport-sync: Update to 3.3.7
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit c84046215309c2c5dec62f4a87fd86d9e5bf8fb0 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 13:04:38 2020 +0000
core154: Ship PAM
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 904b8b625966c05324e39e5e2d9081555978f92e Author: ummeegge erik.kapfer@ipfire.org Date: Sun Dec 6 10:08:59 2020 +0000
Pam: Update to version 1.5.1
Several fixes and improvements since the current available 1.3.1 version are included. CVE-2020-27780 has also been fixed. For a full release overview --> https://github.com/linux-pam/linux-pam/releases .
Signed-off-by: ummeegge erik.kapfer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit babe22939080474f8285eea24d2abc7ce1b1addc Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 13:02:43 2020 +0000
core154: Ship unbound
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 5fd8c3e1f5e3a470f283485e562a9a41242265bd Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sun Dec 6 10:43:54 2020 +0100
unbound: Update to 1.13.0
For details see: https://lists.nlnetlabs.nl/pipermail/unbound-users/2020-December/007102.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ebbda8ed863ac1eb29c549c015a363dea83fa580 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 13:01:45 2020 +0000
core154: Ship dhcpcd
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 64dfe751428c2cac0c1d700fb71054166973e567 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sun Dec 6 10:39:05 2020 +0100
dhcpcd: Update to 9.3.4
For details see: https://roy.marples.name/blog/dhcpcd-9-3-4-released.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 8d3135455f05de92c6b1f22a4b8b2020903f80a6 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 13:00:51 2020 +0000
core154: Ship bind
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit fde5772fde4f47b923493c558280a70716bd6116 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sun Dec 6 10:34:07 2020 +0100
bind: Update to 9.11.25
For details see: https://downloads.isc.org/isc/bind9/9.11.25/RELEASE-NOTES-bind-9.11.25.html
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d7f93218b154f30a3b603956ebfa0d41aa48fa15 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 13:00:06 2020 +0000
core154: Ship services.cgi
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d978558809285afcee56b2120b10d9107b1b260b Author: Adolf Belka ahb.ipfire@gmail.com Date: Mon Dec 7 15:01:36 2020 +0100
Fix for bug 12539
The installer recognises cups and cups-filters both as cups and puts two instances of cups in the add-on services table. Based on input from Michael Tremer this patch replaces the command returning the second element between hyphens with one that takes what comes after "meta-" using Perl code rather than a shell command. The second find command was changed as per Michael's suggestion.
Tested in my ipfire test bed system and only results in one cups entry. Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 50752f1b61997b60e7850d41d5c633a688ab1353 Author: ummeegge erik.kapfer@ipfire.org Date: Mon Dec 7 14:23:05 2020 +0000
kerberos: Update to version 1.18.3
Since version 1.15.2 several fixes and enhancements has been introduced. For a full overview the release notes can be found in the next lines.
https://web.mit.edu/kerberos/krb5-1.16/ https://web.mit.edu/kerberos/krb5-1.17/ https://web.mit.edu/kerberos/krb5-1.18/
Signed-off-by: ummeegge erik.kapfer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 14baf8472a74b18ff1779a9caf534a8af91e0134 Author: ummeegge erik.kapfer@ipfire.org Date: Sun Dec 6 15:03:45 2020 +0000
tshark: Update to version 3.4.0
- Since tshark uses since 3.4.0 an always enabled asynchronous DNS resolution, c-ares is a needed dependency. - Since the current actual version 3.2.6 a lot of bug fixes, fixed vulnerabilities, updated features, new protocols but also updated protocols has been integrated. A full overview of all changes can be found in here --> Update to version 3.2.7: https://www.wireshark.org/docs/relnotes/wireshark-3.2.7.html Update to version 3.2.8: https://www.wireshark.org/docs/relnotes/wireshark-3.2.8.html Update to version 3.4.0 https://www.wireshark.org/docs/relnotes/wireshark-3.4.0.html
Signed-off-by: ummeegge erik.kapfer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit d44ce7d4c25e9a1d0a8a358c0f16a17d1d417cf1 Author: ummeegge erik.kapfer@ipfire.org Date: Sun Dec 6 15:03:44 2020 +0000
c-ares: New package. Needed as tshark Dependency
- Since tshark uses with version 3.4.0 an always enabled asynchronous DNS resolution c-ares is a needed dependency. - Since curl can also use c-ares --> https://c-ares.haxx.se/ it has been placed in make.sh before curl even no compiletime options has been set to enable this. c-ares has also been placed in packages and not in common which would be needed if it should be used for curl too.
Signed-off-by: ummeegge erik.kapfer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit ca4ce968000125f237da77da6bcf88738ec6b060 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sun Dec 6 10:46:36 2020 +0100
nano: Update to 5.4
For details see: https://www.nano-editor.org/news.php
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 0f4d1a8e6b37a4ac1b9cb64bc34f9d4b31423099 Author: Matthias Fischer matthias.fischer@ipfire.org Date: Sun Dec 6 00:26:21 2020 +0100
monit: Update to 5.27.1
For details see: https://mmonit.com/monit/changes/
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit c2f02d9d5977d7ead634760bc8987bafbfc62370 Author: Adolf Belka ahb.ipfire@gmail.com Date: Sat Dec 5 15:51:11 2020 +0100
bacula: Update to use IPFire initscript
Bacula install used the bacula initscript for starting and stopping bacula. This works fine but results in no pid or memory input in the addons table under services. Using the IPFire initscript also successfully starts and stops bacula with no problems but also provides the pid and memory information in the services addons table. - rootfiles adjusted to remove the reference to bacula-ctl-fd - lfs/bacula adjusted to remove the init.d/bacula link generation remove the "rm -f /root/.rnd" command. This file is not present and I have not seen this command in any other lfs file that I have looked at. - new bacula initscript created
Signed-off-by: Adolf Belka ahb.ipfire@gmail.com Signed-off-by: Michael Tremer michael.tremer@ipfire.org
commit 86a7c165a1a3afdf21734aad5291403440d04d08 Author: Michael Tremer michael.tremer@ipfire.org Date: Thu Dec 10 12:28:12 2020 +0000
Start Core Update 154
Signed-off-by: Michael Tremer michael.tremer@ipfire.org
-----------------------------------------------------------------------
hooks/post-receive -- IPFire 2.x development tree