From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Tremer To: ipfire-scm@lists.ipfire.org Subject: [git.ipfire.org] IPFire 2.x development tree branch, core154, created. 8e308e4eb2534c260a29a17bd66700f894a84cb9 Date: Fri, 05 Feb 2021 16:45:05 +0000 Message-ID: <4DXLr15G6Dz2xcJ@people01.haj.ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============4458218738061437278==" List-Id: --===============4458218738061437278== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree". The branch, core154 has been created at 8e308e4eb2534c260a29a17bd66700f894a84cb9 (commit) - Log ----------------------------------------------------------------- commit 8e308e4eb2534c260a29a17bd66700f894a84cb9 Author: Michael Tremer Date: Fri Feb 5 16:44:41 2021 +0000 Update contributors =20 Signed-off-by: Michael Tremer commit ed900d153ef5452779f8eae0320c424b4216d9b4 Author: Michael Tremer Date: Fri Feb 5 11:24:50 2021 +0000 core154: Ship lzip =20 Signed-off-by: Michael Tremer commit f407f05a6f0b4a85e7852ac01d71f4d9373940ae Author: Adolf Belka Date: Thu Feb 4 23:17:22 2021 +0100 lzip: Installation of lzip-1.22 =20 - Installation of lzip-1.22 into IPFire Build system. Required for update of ddrescue addon as gnu only using lzip compression for ddrescue from 2013. - Created rootfiles - Installed lzip into build sequence of make.sh at same location as other compressor packages. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit ece62d250091d962f12cbfb8de92ebfc26a0856e Author: Adolf Belka Date: Thu Feb 4 23:17:08 2021 +0100 ddrescue: Update to 1.25 =20 - Update ddrescue from 1.12 to 1.25 - Updated rootfiles - Since 2013 gnu started to only use lzip for compression of ddrescue Therefore second patch of this series is the installation of lzip in the IPFire Build. - Changelog 2020-02-21 Antonio Diaz Diaz * Version 1.25 released. * block.h: Add default constructors to classes Block and Sblock. (Reported by Rosen Penev). * check.sh: Quote all file name variables to allow names with spaces. (Reported by David Morrison). * In rescue mode, join non-finished subsectors read from mapfile. (Reported by David Burton). * mapbook.cc (update_mapfile): Exclude writing time from intervals. (Reported by David Burton). * rescuebook.cc (extend_outfile_size): Use ftruncate if it works. * Print large numbers in groups of 3 digits separated by underscores. * main.cc: Set a valid invocation_name even if argc =3D=3D 0. 2019-02-24 Antonio Diaz Diaz * Version 1.24 released. * Added new option '--command-mode'. * Implemented mapfile backup. * ddrescue.texi: Documented final contents of bad areas in outfile. * configure: Accept appending to CXXFLAGS, 'CXXFLAGS+=3DOPTIONS'. 2018-02-13 Antonio Diaz Diaz * Version 1.23 released. * rescuebook.cc (trim_errors): Fix wrong change to non-scraped. * Added new option '--same-file'. * Added new option '--shift' to ddrescuelog. * fillbook.cc (fill_block): Write location data as one line. * fillbook.cc (read_buffer): Do not require a seekable infile. * ddrescue.texi: Added chapter 'Output'. * check.sh: Added 'combined rescue' test. * io.cc: Added missing '#include '. 2017-02-03 Antonio Diaz Diaz * Version 1.22 released. * Option '-X, --exit-on-error' replaced by '-X, --max-read-errors'. * Added new option '--max-slow-reads'. * Added new option '--delay-slow'. * Added new option '--reset-slow'. * Added new option '--log-events'. * Added new option '--mapfile-interval'. * Added new option '--pause-on-error'. * Option '--pause' has been renamed to '--pause-on-pass'. * Option '--max-errors' has been renamed to '--max-bad-areas'. * Renamed 'errsize' to 'bad_size' and 'errors' to 'bad_areas' * Rescuebook: Show read_errors, error_rate and slow_reads. * Added 'current_pass' field to mapfile. * Added two new passes (3 and 4) to the copying phase. * main.cc (parse_cpass): Accept ranges of passes. * Option '-K, --skip-size' now accepts sizes up to 1 EiB. * Initial skip size now defaults to (infile_size / 100_000). * rescuebook.cc (copy_non_tried): Don't reduce min_read_rate, enable it only for passes 1 and 2. * rescuebook.cc (trim_errors): Don't trim bad edges. * main_common.cc (getnum): Accept 's' after other multiplier. * '--ask', '-vv' now show size along with model and serial number. * non_posix.cc: Add 'device_id' for Cygwin. (Patch written by Christian Franke ). * rescuebook.cc (do_rescue): Show full sizes in domain warning. * Added new option '-A, --annotate-mapfile' to ddrescuelog. 2016-03-17 Antonio Diaz Diaz * Version 1.21 released. * mapbook.cc (Mapbook): Fix iobuf alignment. (Reported by Heikki Tauriainen). * Removed short option names '-1' and '-2'. * Allow only regular files for '--log-rates' and '--log-reads'. * Option '-D, --odirect' now works also in fill mode. * rescuebook.cc (copy_block): Return 1 on unaligned read error. Set e_code on any error if verify_on_error. * Option '-X, --exit-on-error' has been extended to all phases. * Assigned short name '-Z' to option '--max-read-rate'. * mapbook.cc (update_mapfile): 'fsync' the mapfile every 5 minutes. * Rescuebook: Show full range of sizes from non-tried to finished. * rescuebook.cc (show_status): Show percentage rescued. * configure: Avoid warning on some shells when testing for g++. * Makefile.in: Detect the existence of install-info. 2015-09-10 Antonio Diaz Diaz * Version 1.20 released. * 'logfile' has been renamed to 'mapfile' everywhere. * Changed short name of option '--synchronous' to '-y'. * Changed long name of option '-d' to '--idirect'. * Added new option '-D, --odirect'. * Added new option '-J, --verify-on-error'. * Added new option '--max-read-rate'. * rescuebook.cc (copy_block): Copy arbitrary blocks with '--idirect'. * Include only bad-sector blocks in 'errsize'. * rescuebook.cc (show_status): Show the estimated remaining time. * io.cc (format_time): Show time in days, hours, minutes and seconds. * Added per sector location data to fill mode. * mapbook.cc: Added emergency save of the mapfile. * Show device name with '--ask' or '-vv' on Haiku. * mapfile.cc (read_mapfile): Read read-only mapfiles from stdin. * ddrescuelog.cc: Allow multiple mapfiles for '-t, --show-status'. * ddrescuelog.cc (create_mapfile): '-' writes mapfile to stdout. * ddrescue.texi: Added new chapter 'Optical media'. * ddrescue.texi: Documented maximum size of the rescue domain. * configure: Option '--enable-linux' renamed to '--enable-non-posix'. * Makefile.in: Added new targets 'install*-compress'. * File 'ddrescue.h' renamed to 'mapbook.h'. * File 'logbook.cc' renamed to 'mapbook.cc'. * File 'logfile.cc' renamed to 'mapfile.cc'. * Files linux.{h,cc} renamed to non_posix.{h,cc}. 2014-10-03 Antonio Diaz Diaz * Version 1.19 released. * Fixed a race condition at start of run with '--timeout=3D0'. * Added new option '-P, --data-preview'. * Added new option '-u, --unidirectional'. * Added new option '-X, --exit-on-error'. * Added new option '--ask' to ask for user confirmation. * Added new option '--cpass' to select passes during copying phase. * Added new option '--pause' to insert a pause between passes. * Removed option '-l, --logfile-size'. * Skip on the first error during the copying phase. * rescuebook.cc: Trimming done in one pass, may be run in reverse. * The splitting phase has been replaced by a scraping phase. * Changed long name of option '-n' to '--no-scrape'. * rescuebook.cc: Alternate direction of passes during retrying phase. * Show ATA model and serial number with '--ask' or '-vv' on Linux. * configure: Added new option '--enable-linux'. * New files linux.h linux.cc. * License changed to GPL version 2 or later. 2014-06-10 Antonio Diaz Diaz * Version 1.18.1 released. * ddrescuelog.cc (do_logic_ops): Fixed 'or' and 'xor'. * Added new option '-H, --test-mode' to simulate read errors. * Added new option '-L, --loose-domain' to ddrescue and ddrescuelog. * Added new option '-N, --no-trim' to disable trimming of damaged areas. * Added new option '-O, --reopen-on-error'. * Added new options '-1, --log-rates', '-2, --log-reads'. * Extended '-K, --skip-size' with maximum and disable values. * Changed long name of option '-r' to '--retry-passes'. * Changed short name of option '--generate-mode' to '-G'. * Default value of option '-l, --logfile-size' increased to 10000. * If interrupted, ddrescue terminates by raising the signal received. * rescuebook.cc (copy_non_tried): Don't mark skipped blocks as non-trimmed. Try them in additional passes (before trimming). * rescuebook.cc: Limit the copying phase to 3 passes. * rescuebook.cc: Alternate direction of passes during copying phase. * rescuebook.cc: Smallest blocks are trimmed first. * rescuebook.cc (split_errors): Read largest first if logfile full. * Improved speed when using option '-m, --domain-logfile'. * io.cc (show_status): Show the current total run time. * rescuebook.cc: Show pass number and direction during copying. * rescuebook.cc (show_status): Show block pos instead of current_pos. * main.cc: Show "an unknown number of bytes" for unknown insize. * Added option '-B, --binary-prefixes' to ddrescuelog. * Added new option '-C, --complete-logfile' to ddrescuelog. * Added new option '-P, --compare-as-domain' to ddrescuelog. * Improved speed of logic operations in ddrescuelog. * rescuebook.cc (do_rescue): Show warning when domain is smaller than logfile. * ddrescuelog.cc (do_show_status): Show logfile and domain extents when domain is smaller than logfile. * block.h: Class Block now forces the invariant by itself. * Code reorganization. New class 'Logfile'. * Added status message to rescue logfile. * Many improvements to documentation. * ddrescue.texinfo: Renamed to ddrescue.texi. 2013-07-09 Antonio Diaz Diaz * Version 1.17 released. * Added new option '-l, --logfile-size'. * Added new option '-w, --ignore-write-errors'. * Option '--fill' has been renamed to '--fill-mode'. * Option '--generate-logfile' has been renamed to '--generate-mode'. * Added option '--sector-size' as a synonym of '--block-size'. * Added option '--retries' as a synonym of '--max-retries'. * Added option '--size' as a synonym of '--max-size'. * rescuebook.cc: Trimming is now done from both edges of each non-trimmed block. Largest blocks are trimmed first. * rescuebook.cc: Largest blocks are now split first until logfile reaches '--logfile-size' entries. * logbook.cc (extend_sblock_vector, truncate_vector): Terminate if truncation would discard finished blocks. * rescuebook.cc: Mark failed blocks with 1 sector as bad-sector. * logbook.cc (extend_sblock_vector): Remove last block of logfile if it starts at insize and is not marked as finished. * io.cc (show_status, update_rates): Detect a jump back in time and adjust status. * ddrescue.h (slow_read): Return false for the first 10 seconds. * io.cc (show_status) Leave cursor after message so that ^C does not overwrite it. * main.cc: Don't require '--force' for generate mode. * ddrescue.h (Logbook::logfile_exists): Don't return false if logfile exists but is empty. * ddrescue.texinfo: Added new chapter 'Using ddrescue safely'. * Documented that 'direct disc access' only reads whole sectors. * configure: Options now accept a separate argument. * Makefile.in: Added new target 'install-bin'. 2012-06-11 Antonio Diaz Diaz * Version 1.16 released. * Added new option '-K, --skip-size'. * Added new option '-T, --timeout'. * Changed short name of option '--try-again' to '-A'. * Maximum skip size is now limited to 1% of infile size or 1 GiB (whichever is smaller), rounded to the next multiple of sector size. * Set current_pos to end of block when reading backwards. * The option '-E, --max-error-rate' now checks the rate of actually failed reads, not the growth of error size. * The option '-v, --verbose' now increases verbosity if repeated. * Changed quote characters in messages as advised by GNU Standards. * configure: 'datadir' renamed to 'datarootdir'. * New files rational.h, rational.cc. 2012-01-01 Antonio Diaz Diaz * Version 1.15 released. * Added new option '-a, --min-read-rate'. * Added new option '-I, --verify-input-size'. * Added new option '-x, --extend-outfile'. * main.cc: Verify that infile, outfile and logfile are all different. * Non-tried blocks are now read aligned to cluster-size sectors. * rescuebook.cc: Improved skip algorithm for the split pass. * main.cc: Removed spurious warning about '-D' ignored in fill mode. * ddrescue.texinfo: Improved description of algorithm. * logbook.cc (change_chunk_status): Return an adjust value (-1, 0, 1) to keep "errors" updated without calling count_errors every time. * ddrescue.cc: Renamed to io.cc. * Added 'ddrescuelog', a program for logfile manipulation. 2011-01-10 Antonio Diaz Diaz * Version 1.14 released. * Added new option '-R, --reverse'. * Added new option '-E, --max-error-rate'. * Extended syntax '--max-errors=3D+N' to specify new errors. * Changed short name of option '--retrim' to '-M'. * Removed spurious warning about 'preallocation not available'. * Code reorganization. New class 'Genbook'. 2010-08-27 Antonio Diaz Diaz * Version 1.13 released. * Non-regular output files are no longer overwritten by default. * Added new option '-f, --force'. * Added new option '-p, --preallocate'. * main.cc (write_logfile_header): Write command line to logfile. * ddrescue.texinfo: Added info about logfile and recoverable formats. * ddrescue.texinfo: Added a couple more warnings to the tutorial. * testsuite: 'test1' renamed to 'test.txt' * Revert to use 'long' instead of 'time_t' for time variables. Ddrescue only needs counting seconds and 'time_t' causes warnings on some systems. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 446b9291f9773ba462da8a561c966e59e48f19cb Author: Michael Tremer Date: Fri Feb 5 11:23:30 2021 +0000 core154: Ship curl =20 Signed-off-by: Michael Tremer commit 2e4321c1f49dc3a8b4c5b0357a8b60889d9da89c Author: Matthias Fischer Date: Thu Feb 4 17:21:46 2021 +0100 curl: Update to 7.75 =20 For details see: https://curl.se/changes.html =20 Signed-off-by: Matthias Fischer Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 8474dc4a7743fc9da0cf1496c76c74c4aaf7cc36 Author: Peter M=C3=BCller Date: Thu Feb 4 21:39:32 2021 +0100 Tor: update to 0.4.4.7 =20 Full changelog of this version as per https://gitweb.torproject.org/tor.git/plain/ChangeLog?h=3Dtor-0.4.4.7: =20 Changes in version 0.4.4.7 - 2021-02-03 Tor 0.4.4.7 backports numerous bugfixes from later releases, including one that made v3 onion services more susceptible to denial-of-service attacks, and a feature that makes some kinds of DoS attacks harder to perform. =20 o Major bugfixes (onion service v3, backport from 0.4.5.3-rc): - Stop requiring a live consensus for v3 clients and services, and allow a "reasonably live" consensus instead. This allows v3 onion services to work even if the authorities fail to generate a consensus for more than 2 hours in a row. Fixes bug 40237; bugfix on 0.3.5.1-alpha. =20 o Major feature (exit, backport from 0.4.5.5-rc): - Re-entry into the network is now denied at the Exit level to all relays' ORPorts and authorities' ORPorts and DirPorts. This change should help mitgate a set of denial-of-service attacks. Closes ticket 2667. =20 o Minor feature (build system, backport from 0.4.5.4-rc): - New "make lsp" command to generate the compile_commands.json file used by the ccls language server. The "bear" program is needed for this. Closes ticket 40227. =20 o Minor features (compilation, backport from 0.4.5.2-rc): - Disable deprecation warnings when building with OpenSSL 3.0.0 or later. There are a number of APIs newly deprecated in OpenSSL 3.0.0 that Tor still requires. (A later version of Tor will try to stop depending on these APIs.) Closes ticket 40165. =20 o Minor features (crypto, backport from 0.4.5.3-rc): - Fix undefined behavior on our Keccak library. The bug only appeared on platforms with 32-byte CPU cache lines (e.g. armv5tel) and would result in wrong digests. Fixes bug 40210; bugfix on 0.2.8.1-alpha. Thanks to Bernhard =C3=9Cbelacker, Arnd Bergmann and weasel for diagnosing this. =20 o Minor bugfixes (compatibility, backport from 0.4.5.1-rc): - Strip '\r' characters when reading text files on Unix platforms. This should resolve an issue where a relay operator migrates a relay from Windows to Unix, but does not change the line ending of Tor's various state files to match the platform, and the CRLF line endings from Windows end up leaking into other files such as the extra-info document. Fixes bug 33781; bugfix on 0.0.9pre5. =20 o Minor bugfixes (compilation, backport from 0.4.5.3-rc): - Fix a compilation warning about unreachable fallthrough annotations when building with "--enable-all-bugs-are-fatal" on some compilers. Fixes bug 40241; bugfix on 0.3.5.4-alpha. =20 o Minor bugfixes (SOCKS5, backport from 0.4.5.3-rc): - Handle partial SOCKS5 messages correctly. Previously, our code would send an incorrect error message if it got a SOCKS5 request that wasn't complete. Fixes bug 40190; bugfix on 0.3.5.1-alpha. =20 o Minor bugfixes (testing, backport from 0.4.5.2-alpha): - Fix the `config/parse_tcp_proxy_line` test so that it works correctly on systems where the DNS provider hijacks invalid queries. Fixes part of bug 40179; bugfix on 0.4.3.1-alpha. - Fix our Python reference-implementation for the v3 onion service handshake so that it works correctly with the version of hashlib provided by Python 3.9. Fixes part of bug 40179; bugfix on 0.3.1.6-rc. - Fix the `tortls/openssl/log_one_error` test to work with OpenSSL 3.0.0. Fixes bug 40170; bugfix on 0.2.8.1-alpha. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 8e07deb9839e341bf9841fd08e82c55cd5ab6017 Author: Matthias Fischer Date: Thu Feb 4 18:27:21 2021 +0100 clamav: Update to 0.103.1 =20 For details see: https://blog.clamav.net/2021/02/clamav-01031-patch-release.html =20 Signed-off-by: Matthias Fischer Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit fe2c0e0fa0729589488e60eda4aa6dd6f70ee01f Author: Michael Tremer Date: Fri Feb 5 11:19:34 2021 +0000 core154: Ship pptp =20 Signed-off-by: Michael Tremer commit 74e28f29f8cfe2ab8df905cee1b29cbfe00f81fb Author: Adolf Belka Date: Thu Feb 4 13:56:39 2021 +0100 pptp: Update to 1.10.0 =20 - Update pptp from 1.7.2 (Jun 2008) to 1.10.0 (Jan 2018) - No change to rootfile - Removal of pptp-1.7.2-compat.patch as all changes to pptp_compat.c are now included in the file in the new tarball. =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 1116930315418a0dbc410a0c49de22134d68205d Author: Michael Tremer Date: Fri Feb 5 11:17:54 2021 +0000 core154: Ship less =20 Signed-off-by: Michael Tremer commit 304f647749912c429cee7791d6da8ccd70692868 Author: Adolf Belka Date: Thu Feb 4 13:56:27 2021 +0100 less: Update to version 563 =20 - Update less from 530 to 563 - No change in rootfile - Changelog Version 563 was released on 21 Oct 2020. These are the differences between version 551 and version 563: Update Unicode tables. Treat Hangul Jamo medial vowels and final consonants as zero width. Display error message immediately when -o is toggled and input is n= ot a pipe. Fix regression: make screen repaint when "squished" and a no-moveme= nt command is given. Fix erroneous EOF calculation when F command is interrupted. Make WIN32C version include this fix from 551: Don't count lines in= initial screen if using -X with -F. Fix display bug in WIN32C version. Fix memory corruption when built with libtermcap. Fix crash on some systems due to realpath incompatibility. Support libtinfow. Version 551 was released on 11 Jun 2019 551 is the same as 550 except for a few documentation changes. Version 550 was released on 3 Jun 2019. These are the differences between version 530 and version 550: Add --mouse option. Add --wheel-lines option. Add --no-histdups option. Add --save-marks option. Support PCRE2 regular expression library. Redraw screen on SIGWINCH even if screen size doesn't change. Shell-escape filenames in history so they can be used again. Ring bell if user enters invalid long option name. Use PCRE_UTF8 flag for pcre regular expressions when in UTF-8 mode. Windows: use wide-char string to set console title. Don't count lines in initial screen if using -X with -F. Support mingw build system. Fix bug in v command on empty file. Fix bug in v command when filename contains shell metacharacters. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 4306f30b6f80de3c7c0d7b398e42616abdc4d006 Author: Michael Tremer Date: Fri Feb 5 11:16:58 2021 +0000 core154: Ship findutils =20 Signed-off-by: Michael Tremer commit 5de33a38d801a1fb0420efa20d108b9f5312d913 Author: Adolf Belka Date: Thu Feb 4 13:55:08 2021 +0100 findutils: Update to 4.8.0 =20 - Update findutils from 4.6.0 to 4.8.0 - Remove findutils-4.6.0-glibc2.28.patch from lfs as all patch items are = now in the new tarball files. - Remove sed command on gl/lib/mountlist.c from lfs as all fixes are in t= he mountlist.c file in the new tarball. - Update rootfiles - Changelog Following are major changes. Further detailed info available in changelog file in tarball. * Noteworthy changes in release 4.8.0 (2021-01-09) [stable] ** Changes in xargs 'xargs -t' no longer outputs a trailing blank to stderr after the last = argument of each constructed command line to be executed. [#57291] xargs now warns when more than one of the conflicting options --max-lin= es (-L, -l), --replace (-i/-I) and --max-args (-n) are specified on the command= line. [#52137] ** Bug Fixes find no longer crashes when an XFS filesystem is heavily changed during= the run. Discussed at: find -used works again. This predicate was not working properly since = adding the support for sub-second timestamp resolution for various predicates = in FINDUTILS_4_3_3-1 back in 2007. Discussed at: ** Improvements 'find -D exec' now diagnoses all -exec, -execdir, -ok and -okdir runs i= ncluding the call arguments and the exit code of the launched process. [#59083] ** Documentation Changes The documentation of 'find -printf %Ak' has been improved: it now refer= s to the strftime(3) documentation for a complete list of supported conversion specifiers, and documents the 'F' conversion specifier ('yyyy-mm-dd'). The man pages (find.1, locate.1, locatedb.5, updatedb.1, and xargs.1) n= ow consistently end with the sections "REPORTING BUGS", "COPYRIGHT" and "S= EE ALSO", with the latter referring to the online page on the GNU web server. The "EXAMPLES" section in the find.1 man page now shows the examples in= a better structure and uses consistent formatting. Various man page fixes - syntax issues and typos. [#59745, #59330, #59012, #58193, #57807, #57775] Other documentation changes: #58654: doc: clarify that 'find -perm +MODE' is unrelated to umask #58458: doc: improve section 'Hard links', especially fix the descripti= on regarding 'find -L -samefile FILE'. #58205: find.1: clarify double dash '--' option #58149: 'xargs --help' now mentions that --replace (-I, -i) splits the = input at newline characters. #57025: doc: enhance description of tests accepting numeric arguments i= n find.1 [see also #49640]. #54730: Add additional valuable example of find -quit #48135: Fix testsuite error on Hurd and BSD related to ln #35253: Clarify descriptions of -printf %f, %h. ** Changes to the build process The configure option --without-fts has been removed. The attempt to use it stopped configure with an error message since 4.5.18 (2015) anyway. * Major changes in release 4.7.0, 2019-08-29 ** Changes to locate / updatedb Support for generating old-format databases (with updatedb --old-format or updatedb --dbformat=3Dold) has been removed. The old database format was deprecated in 2007 (and updatedb has warned about this since that time). The locate program will will read old-format databases, though this support also will be removed. The updatedb script now operates in the C locale only. This means that character encoding issues are now not likely to cause sort to fail. It also honours the TMPDIR environment variable if that was set, and no longer sorts file names case-insensitively. The (unspecified) order in which filenames are stored in the locate database is now different to previous versions. However, you should not rely on locate's output appearing in any particular order in any case. ** Improvements All utilities now only show the full usage text when requested via the --help option. Previously, when the user passed invalid options or arguments, the user's attention to the corresponding error diagnostic was distracted by that lengthy text. find now accepts multiple file type arguments to the -type and -xtype options separated by comma ','. For example, to search for symbolic links and directories simply provide the shorter '-type l,d' instead of the - yet more portable - '( -type l -o -type d )'. find now diagnoses failures returned by readdir(). This bug was inhere= nt in the use of FTS. find now exits in more cases immediately after the error diagnostic, i.= e., without the following usage text, to make the former more eye-catching. find now outputs a better hint in case the user passed an unquoted shel= l- glob pattern to options like -name, i.e., when the offending argument is an existing file. find now supports the debug option '-D all' to include all of the other debug options at once. xargs now supports the -o, --open-tty option to reopen stdin as /dev/tty in the child process before executing the command; useful to run an interactive application. Added for compatibility with BSD. xargs now supports the GNU_FINDUTILS_FD_LEAK_CHECK environment variable to enable/disable fd leak check. 'xargs -t' (--verbose) now properly quotes each part of the command to = the executed if needed when printing it to stderr; likewise -p (--interacti= ve). ** Documentation Changes Prefer https:// over http:// links where possible, e.g. for '*.gnu.org'= servers. Both find.1 and the find texinfo manual now consistently document all o= f the 'N', 'L' and '?' possibilities in '-printf %Y' output when the determin= ation of the type of a symlink target fails. find.1 now correctly states the -prune has no effect when the -depth op= tion is given. Before, it wrongly stated that -prune would return false in tha= t case. Some minor documentation improvements are listed in "Bug Fixes" below. ** Bug Fixes #56820: find: improve diagnostic when a global option like -maxdepth is specified after another argument like a test, thus hopefully av= oiding translation issues (at least French, German). #56142: doc: fix bug #56142 by specifying which actions inhibit the default -print. #55272: find: improve diagnostic when -name or -iname is used with a pa= ttern containing a directory separator ('/'), suggesting to use -whol= ename or -iwholename respectively. #54859: doc: fix typo in 'xargs -l' examples in texinfo manual. Change from 'xargs -1' (minus one) to 'xargs -l' (minus El) in = 3 places. #54838: doc: fix the examples of the -perm option in the texinfo docume= ntation. The example '-perm -g+w,o+w' was misplaced. Bug present since FINDUTILS_4_2_27-1. #54262: 'find -printf "%Y"' now correctly outputs 'N' for broken symlin= ks (ENOENT or ENOTDIR). Previously, it output 'l' in such a case. Bug introduced while attempting to fix #29460 in version v4.5.8. #54171: 'find -depth' now outputs the name of unreadable directories. Previously, FTS-based find missed to output those entries. Bug present since the FTS implementation in FINDUTILS_4_3_0-1. #52981: find: the '-delete' action no longer complains about disappeare= d files when the '-ignore_readdir_race' option is given, too. That act= ion will also returns true in such a case now. #52220: 'find -D' without any further argument no longer crashes. Bug present since the implementation of -D in FINDUTILS_4_3_1-1. #51304: doc: use correct IEC unit prefixes in the documentation of 'fin= d -size'. find(1) uses binary-based units for the suffixes 'k', 'M', and = 'G' of the argument of the '-size' option: 1024, 1024*1024 and 1024^3. Therefore, the documentation should use the correct IEC prefixes kibibyte, mebibyte and gibibyte respectively (or their abbrevia= tions 'KiB', 'MiB' and 'GiB'). #50758: doc: fix the description of the -perm examples matching the per= mission mode "022" in find's texinfo manual: the match is for the file'= s group and 'other' mode bits instead of for user and group. Bug introduced when adding the -perm examples in FINDUTILS-4.2.= 11. #50326: find no longer leaks memory for a recently added member in gnul= ib's mount list structure. #50259: find -printf '%h' now outputs the correct path for arguments wi= th one or more trailing slashes. Previously, it would e.g. output "foo" = instead of "." when "foo/" was passed; likewise, it would output "/user= /xxx/" instead of "/user" when "/user/xxx//" was passed. Bug introduced in FINDUTILS-4.2.19. #48180: find -noop (an internal option not intended to be exposed to th= e user) no longer crashes. Bug introduced in FINDUTILS-4.3.1. #48030: find -exec + does not pass all arguments for certain specific f= ilename lengths. After the internal (usually 128k) buffer is full and = find(1) executed the given command with these arguments, it would miss = to run the command yet another time if only one other file argument ha= s to be processed. Bug introduced in FINDUTILS-4.2.12. #46784: frcode drops last char if no final newline ** Changes to the build process The configure option --enable-id-cache has been removed. It has been a no-op since findnutils-4.5.15. The configure option --enable-debug has been removed. Debugging in find is now controlled by its -D option only. The configure option --enable-silent-rules is the default now. Use --disable-silent-rules or "make V=3D1" to get verbose build output. "make dist" no longer builds .tar.gz files. xz is portable enough and in wide-enough use that distributing only .tar.xz files is enough. Maintainer builds from the Git repository now derive the version string= from the version control system instead of using a fixed string (changed aft= er each release manually). As a result, the inter-release builds can now be distinguished: e.g. "4.6.0.152-fe9c" is the 152th commit after the tag = "v4.6.0" and has the Git short hash "fe9c". Builds from an unclean tree are mar= ked with the suffix "-dirty". The translation files in the PO directory are no longer version control= led; instead bootstrap auto-updates them from "translationproject.org" durin= g a maintainer build. A shell-style test framework borrowed from GNU coreutils has been added. This allows better tests with more control over stdin, stdout, stderr, signals, preparatory steps, cleanup, return code verification, root-only tests, etc. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 1a4e9c9db4857d0a578bcd5f4d4a60edc5129834 Author: Michael Tremer Date: Thu Feb 4 17:58:08 2021 +0000 fireperf: Add pakfire packaging meta data =20 Signed-off-by: Michael Tremer commit 67fbd255d1f9b609bcdf241b3bc6d30eba46f1d5 Author: Michael Tremer Date: Thu Feb 4 15:57:26 2021 +0000 fireperf: New package =20 https://lists.ipfire.org/pipermail/development/2021-February/009285.html =20 Signed-off-by: Michael Tremer commit e514d67f8e6fd3364b3bfa19d68e39435e103a9a Author: Michael Tremer Date: Wed Feb 3 22:50:36 2021 +0000 samba: Update to 4.13.4 =20 Signed-off-by: Michael Tremer commit d086a16619c89cd2420a0f6ed80aa93ecb696f73 Author: Michael Tremer Date: Wed Feb 3 22:31:02 2021 +0000 Update contributors =20 Signed-off-by: Michael Tremer commit 51605e1b52bac244e3ab8d938010988efa82c232 Author: Michael Tremer Date: Wed Feb 3 22:30:37 2021 +0000 Update languages =20 Signed-off-by: Michael Tremer commit 20918d700a49187cbdc4066a978b6c8853802097 Author: Michael Tremer Date: Wed Feb 3 22:30:23 2021 +0000 core154: Ship sed =20 Signed-off-by: Michael Tremer commit 8928b738d7bbc324cd288fcef2abf7f2bab305d7 Author: Adolf Belka Date: Wed Feb 3 16:01:48 2021 +0100 sed: Update to 4.8 =20 - Update sed from 4.4 to 4.8 - Updated rootfile - Changelog * Noteworthy changes in release 4.8 (2020-01-14) [stable] ** Bug fixes - "sed -i" now creates temporary files with correct umask (limited to u= =3Drwx). Previously sed would incorrectly set umask on temporary files, result= ing in problems under certain fuse-like file systems. [bug introduced in sed 4.2.1] ** Release distribute gzip-compressed tarballs once again ** Improvements a year's worth of gnulib development, including improved DFA performa= nce * Noteworthy changes in release 4.7 (2018-12-20) [stable] ** Bug fixes - Some uses of \b in the C locale and with the DFA matcher would fail, = e.g., the following would mistakenly print "123-x" instead of "123": echo 123-x|LC_ALL=3DC sed 's/.\bx//' - Using a multibyte locale or certain regexp constructs (some ranges, backreferences) would avoid the bug. [bug introduced in sed 4.6] * Noteworthy changes in release 4.6 (2018-12-19) [stable] ** Improvements - sed now prints a clear error message when r/R/w/W (and s///w) commands are missing a filename. Previously, w/W commands would fail with conf= using error message, while r/R would be a silent no-op. - sed now uses fully-buffered output (instead of line-buffered) when writing to files. This should noticeably improve performance of "sed = -i" and other write commands. Buffering can be disabled (as before) with "sed -u". - sed in non-cygwin windows environments (e.g. mingw) now properly hand= les '\n' newlines in -b/--binary mode. ** Bug fixes - sed no longer accesses invalid memory (heap overflow) when given inva= lid backreferences in 's' command [bug#32082, present at least since sed-= 4.0.6]. - sed no longer adds extraneous NUL when given s/$//n command. [related to bug#32271, present since sed-4.0.7] - sed no longer accesses invalid memory (heap overflow) with s/$//n reg= exes. [bug#32271, present since sed-4.3]. ** New Features New option, --debug: print the input sed script in canonical form and annotate program execution. * Noteworthy changes in release 4.5 (2018-03-31) [stable] ** Bug fixes - sed now fails when matching very long input lines (>2GB). Before, sed would silently ignore the regex without indicating an error. [Bug present at least since sed-3.02] - sed no longer rejects comments and closing braces after y/// commands. [Bug existed at least since sed-3.02] - sed -E --posix no longer ignores special meaning of '+','?','|' . [Bug introduced in the original implementation of --posix option in v4.1a-5-gba68fb4] - sed -i now creates selinux context based on the context of the symlink instead of the symlink target. [Bug present since at least sed-4.2] - sed -i --follow-symlinks remains unchanged. - sed now treats the sequence '\x5c' (ASCII 92, backslash) as literal backslash character, not as an escape prefix character. [Bug present since sed-3.02.80] Old behavior: $ echo z | sed -E 's/(z)/\x5c1/' # identical to 's/(z)/\1/' z New behavior: $ echo z | sed -E 's/(z)/\x5c1/' \1 =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit be184f040f4f18ccb3eca6f0ec38e2d84b350424 Author: Michael Tremer Date: Wed Feb 3 22:28:44 2021 +0000 core154: Ship newt =20 Signed-off-by: Michael Tremer commit fb87d2756e8bb1fee1156b554943c7f25019544c Author: Adolf Belka Date: Wed Feb 3 16:01:36 2021 +0100 newt: Update to 0.52.21 =20 - Update newt from 0.52.18 to 0.52.21 - Updated rootfile - Changelog 0.52.21 - define env NEWT_NOFLOWCTRL to disable flow control (Robert Gill) - don't leak memory on errors in dialogboxes - fix radio button selection check in snack - fix plural forms in Lithuanian translation (#1568999) - fix parallel build (=C3=89meric Dupont) - allow python versions to be specified with --with-python option 0.52.20 - improve handling of long strings in whiptail menu (#1353792) - support screen resize as hotkey in form (#1432926) 0.52.19 - support --notags in whiptail checklist and radiolist (#1319794) - don't hard-code -I/usr/include/slang in CPPFLAGS (Alex Suykov) - use $(CC) instead of $(CPP) to generate .depend files (Samuel Martin) - update translations from Zanata =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 0610914f7b12b5be128dfba90dc4d3460f7350c3 Author: Michael Tremer Date: Wed Feb 3 22:26:10 2021 +0000 core154: Ship lvm2 =20 Signed-off-by: Michael Tremer commit b84005daaaaa7d0e82d34485c56b0546cc4942d0 Author: Adolf Belka Date: Wed Feb 3 16:01:21 2021 +0100 lvm2: Update to 2.02.187 =20 - Update lvm2 from 2.02.181 to 2.02.187 - Updated rootfile - Changelog Version 2.02.187 - 24th March 2020 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Avoid running cache input arg validation when creating vdo pool. Prevent raid reshaping of stacked volumes. Ensure minimum required region size on striped RaidLV creation. Fix resize of thin-pool with data and metadata of different segtype. Fix splitting mirror leg in cluster. Fix activation order when removing merged snapshot. Add support for DM_DEVICE_GET_TARGET_VERSION into device_mapper. Add lvextend-raid.sh to check on RaidLV extensions synchronization. Fix lvmetad shutdown and avoid lenghty timeouts when rebooting system. Prevent creating VGs with PVs with different logical block sizes. Pvmove runs in exlusively activating mode for exclusively active LVs. Activate thin-pool layered volume as 'read-only' device. Ignore crypto devices with UUID signature CRYPT-SUBDEV. Enhance validation for thin and cache pool conversion and swapping. Fixed activation on boot - lvm2 no longer activates incomplete VGs. Version 2.02.186 - 27th August 2019 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Improve internal removal of cached devices. Synchronize with udev when dropping snapshot. Add missing device synchronization point before removing pvmove node. Correctly set read_ahead for LVs when pvmove is finished. Fix metadata writes from corrupting with large physical block size. Report no_discard_passdown for cache LVs with lvs -o+kernel_discards. Prevent shared active mirror LVs with lvmlockd. Version 2.02.185 - 13th May 2019 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D Fix change of monitoring in clustered volumes. Improve -lXXX%VG modifier which improves cache segment estimation. Add synchronization with udev before removing cached devices. Fix missing growth of _pmspare volume when extending _tmeta volume. Automatically grow thin metadata, when thin data gets too big. Add support for vgsplit with cached devices. Fix signal delivery checking race in libdaemon (lvmetad). Add missing Before=3Dshutdown.target to LVM2 services to fix shutdown = ordering. Version 2.02.184 - 22nd March 2019 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Fix (de)activation of RaidLVs with visible SubLVs Change scan_lvs default to 0 so LVs are not scanned for PVs. Add scan_lvs config setting to control if lvm scans LVs for PVs. Fix missing proper initialization of pv_list struct when adding pv. Version 2.02.183 - 07th December 2018 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Avoid disabling lvmetad when repair does nothing. Fix component detection for md version 0.90. Use sync io if async io_setup fails, or use_aio=3D0 is set in config. Avoid opening devices to get block size by using existing open fd. Version 2.02.182 - 30th October 2018 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Fix possible write race between last metadata block and the first exte= nt. Fix filtering of md 1.0 devices so they are not seen as duplicate PVs. Fix lvconvert striped/raid0/raid0_meta -> raid6 regression. Add After=3Drbdmap.service to {lvm2-activation-net,blk-availability}.s= ervice. Fix pvs with lvmetad to avoid too many open files from filter reads. Fix pvscan --cache to avoid too many open files from filter reads. Reduce max concurrent aios to avoid EMFILE with many devices. Fix lvconvert conversion attempts to linear. Fix lvconvert raid0/raid0_meta -> striped regression. Fix lvconvert --splitmirror for mirror type (2.02.178). Do not pair cache policy and cache metadata format. Fix mirrors honoring read_only_volume_list. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 5ac4578d2e1ab03a170f31f16ae1b4c46b422aa3 Author: Adolf Belka Date: Wed Feb 3 16:00:54 2021 +0100 elfutils: Update to 0.182 =20 - Update elfutils from 0.176 to 0.182 - Updated rootfile - From version 0.178 debuginfod client/server capability was added. Additional .configure options required to disable debuginfod and libdebuginfod - Changelog 2020-10-28 Mark Wielaard * configure.ac: Set version to 0.182. * NEWS: Add 0.182 section. 2020-10-28 Tom Tromey * .gitignore: Add /tests/leb128. 2020-10-01 Frank Ch. Eigler PR25461 * configure.ac: Add --enable-debuginfod-urls[=3DURLS] option. 2020-09-18 Mark Wielaard * configure.ac: Check availability of libzstd and zstd. 2020-09-08 Mark Wielaard * configure.ac: Set version to 0.181. * NEWS: Add 0.181 section. 2020-08-20 Dmitry V. Levin * configure.ac (--enable-libdebuginfod): AC_DEFINE ENABLE_LIBDEBUGINFOD. 2020-07-17 Mark Wielaard * configure.ac: Set -DBAD_FTS=3D1 also for CXXFLAGS. 2020-06-19 Mark Wielaard * Makefile.am (SUBDIRS): Always add debuginfod. * configure.ac (debuginfod): Split off... (libdebuginfod): ... this. Also add DUMME_DEBUGINFOD. 2020-06-15 Sergei Trofimovich * configure.ac: Use READELF in build-id check. 2020-06-11 Mark Wielaard * configure.ac: Set version to 0.180. * NEWS: Add 0.180 section. * .gitignore: Update with new generated file. 2020-06-10 Mark Wielaard * configure.ac (MODVERSION): Remove. 2020-03-30 Mark Wielaard * configure.ac: Set version to 0.179. * NEWS: Add 0.179 section. 2020-03-25 Mark Wielaard * README: Update mailinglist subscription info. * CONTRIBUTING: Likewise. 2020-02-03 Frank Ch. Eigler * configure.ac: Tolerate CXX=3D for debuginfod configuration. 2019-12-11 Omar Sandoval * configure.ac: Apply -Werror after user-defined CFLAGS in -D_FORTIFY_SOURCE=3D2 check. 2019-12-06 Mark Wielaard * configure.ac: Add ac_cv_buildid check. 2019-11-26 Mark Wielaard * configure.ac: Set version to 0.178. NEWS: Add 0.178 section. 2019-11-26 Mark Wielaard * configure.ac: Add CXXFLAGS for gcov. 2019-10-28 Aaron Merey * debuginfod/: New directory for debuginfod code. * Makefile.am (SUBDIRS): Recurse there. * configure.ac (--enable-debuginfod): New flag & checks. 2019-08-25 Jonathon Anderson * configure.ac: Add new --enable-valgrind-annotations * configure.ac: Add new --with-valgrind (headers only) 2019-07-05 Omar Sandoval * configure.ac: Get rid of --enable-libebl-subdir. * Makefile.am (SUBDIRS): Reorder backends and libcpu before libebl to satisfy build dependencies. 2019-08-13 Mark Wielaard * configure.ac: Set version to 0.177. * NEWS: Mention elfclassify, readelf DW_AT_data_member_location and DW_AT_discr_list attribute changes, dwarf.h DW_AT_GNU additions, dwelf_elf_e_machine_string function, dwelf_elf_begin change and C-SKY backend support. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit dae10ab8c51f677860a877b4ab4385227afbe93c Author: Michael Tremer Date: Wed Feb 3 22:23:39 2021 +0000 core154: Ship fcron =20 Signed-off-by: Michael Tremer commit a87abffc9e2d9fd4ca038ed17bcb582c979663bc Author: Adolf Belka Date: Wed Feb 3 16:01:07 2021 +0100 fcron: Update to 3.2.1 =20 - Update fcron from 3.2.0 (Jul 2014) to 3.2.1 (Jun 2016 - latest version) - Updated rootfile - Changelog From version 3.2.0 to 3.2.1 * @-line can now be run every second (minimum every 10s previously) * Fixed occasional 1s slippage. This was due to a race condition between when time_to_sleep is run and when we compute how long to sleep for, which could happen in the following second: if that happened we end up sleeping for 1s instead of not sleeping at all. The fix was to replace time_to_sleep() by next_wake_time(). * add From: header to emails. Similarly to other crons, use: "From: %s (fcron)" with %s being either the user the job is run as or the value of MAILFROM. * The installation script now supports systemd fully. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 8ace58e8ac0491aa72f1213841824d284377db0d Author: Adolf Belka Date: Tue Feb 2 22:46:14 2021 +0100 p7zip: Update to 17.03 =20 - Update p7zip from 16.02 (Jul 2016) to 17.03 (Dec 2020) - Version 16.02 was the last version by the previous dev team. A fork was created in May 2020 with version 17.01 - Rootfile updated - Changelog Version 17.03 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D - add zstd to zip - add hash algorithm - XXHASH32 - XXHASH64 - MD2 - MD4 - MD5 - sha384 - sha512 - add Lzfse to dmg - add lz5 to 7z - add lizard to 7z - update lz4 to v1.9.3 - add brotli to 7z - update cmake build - fix xz crc64 error - use system local to select OEM code - add rpm install - fix lzma2 and flzma22 call the same algorithm - add 7zr build - fix tar format link file compress and decompress Version 17.02 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D - p7zip 17.02 is more like 7zip 17.01(only 7za and 7z),The difference = from 7zip 17.01 and older version p7zip is the following description - Supports Fast lzma2 1.0.1 compression method - Update Zstd method to 1.4.5 - Add zstd method parameters in 7z format ZSTD parameters NEW name: strategy -> strat fast -> fast long -> long WindowLog -> wlog HashLog -> hlog ChainLog -> clog SearchLog -> slog MinMatch -> slen TargetLen -> tlen OverlapLog -> ovlog LdmHashLog -> ldmhlog LdmSearchLength -> ldmslen LdmBucketSizeLog -> ldmblog LdmHashRateLog -> ldmhevery - Fix symlink files contained inside tar and squashfs as regular file - Add lz4 and Zstd decompress method to squashfs Version 17.01 =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D - Fix BUG CVE-2018-10115 - Fix BUG CVE-2018-5996 - Fix BUG CVE-2017-17969 - Fix BUG CVE-2016-9296 - The bug fixes in version 17.01 address the same CVE bugs as the p7zip-16.02-consolidated_fixes-1.patch Therefore this patch is no longer= needed - The patches for CVE-2016-2334 & 2335 were for versions before 16.00 so = are no longer needed =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit b51d19ece203ecfd20e89f72abf49953e7a4c2ac Author: Adolf Belka Date: Tue Feb 2 22:46:01 2021 +0100 automake: Update to 1.16.3 =20 - Update automake from 1.16.2 to 1.16.3 - No change to rootfile - New in 1.16.3: * New features added - In the testsuite summary, the "for $(PACKAGE_STRING)" suffix can be overridden with the AM_TESTSUITE_SUMMARY_HEADER variable. * Bugs fixed - Python 3.10 version number no longer considered to be 3.1. - Broken links in manual fixed or removed, and new script contrib/checklinkx (a small modification of W3C checklink) added, with accompany target checklinkx to recheck urls. - install-exec target depends on $(BUILT_SOURCES). - valac argument matching more precise, to avoid garbage in DIST_COMMO= N. - Support for Vala in VPATH builds fixed so that both freshly-generate= d and distributed C files work, and operation is more reliable with or wit= hout an installed valac. - Dejagnu doesn't break on directories containing spaces. * Distribution - new variable AM_DISTCHECK_DVI_TARGET, to allow overriding the "make dvi" that is done as part of distcheck. * Miscellaneous changes - install-sh tweaks: . new option -p to preserve mtime, i.e., invoke cp -p. . new option -S SUFFIX to attempt backup files using SUFFIX. . no longer unconditionally uses -f when rm is overridden by RMPROG. . does not chown existing directories. - Removed function up_to_date_p in lib/Automake/FileUtils.pm. We believe this function is completely unused. - Support for in-tree Vala libraries improved. - Full change details are in ChangeLog file in tarball =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 278b53e96f8a64585078fac20639bf3444e2e4f5 Author: Michael Tremer Date: Wed Feb 3 22:20:18 2021 +0000 core154: Ship acl =20 Signed-off-by: Michael Tremer commit 10ad593d83c492f1e5ecab61604c2af14715d859 Author: Adolf Belka Date: Tue Feb 2 22:45:41 2021 +0100 acl: Update to 2.2.53 =20 - Update acl from 2.2.52 (May 2013) to 2.2.53 (Jun 2018 - latest version) - Rootfile updated - No make rules for install-lib or install-dev in new version. Only for i= nstall - Changelog in tarball has 2.2.49 (Nov 2009) as the latest change - Could not find changelog info anywhere else. - Following changelog created by extracting from git commits (thanks for = idea Peter Mueller) - include: fix uninstall for `make distcheck` Mike Frysinger - acl.5 man page: Update link to POSIX.1e draft Andreas Gruenbacher - test: add regression test Dmitry V. Levin - Enable large-file support on systems that do not enable it by default = Dmitry V. Levin - libacl: Fix acl_from_text() returning NULL on all input Dmitry V. Levin - setfacl --restore: Silence valgrind Andreas Gruenbacher - setfacl: Preserve special mode bits on filesystems without POSIX ACL s= upport Andreas Gruenbacher - setfacl.1: document the meaning of '-' in perms Kamil Dudka - setfacl: Allow more than four characters in the perms field Andreas Gr= uenbacher - permissions.test: Fix umask Andreas Gruenbacher - Add additional group names for root-specific tests Andreas Gruenbacher - libtestlookup: Add missing EXPORT and static declarations Andreas Grue= nbacher - Minor man-page clarifications Andreas Gruenbacher - Remove ACL_ADD and ACL_DELETE Andreas Gruenbacher - test: fixups on SELinux machines for root testcases He Zhe - libacl: Ignore warning in parse_acl_entry() Andreas Gruenbacher - Cleanup visibility of API functions Yury Usishchev - Cleanup internal headers usage Yury Usishchev - Rework config.h usage Yury Usishchev - walk_tree_rec: Add parentheses to clarify code Andreas Gruenbacher - __acl_from_xattr: Set errno for invalid tag types Andreas Gruenbacher - Fix checks for valid permissions in input Corinna Vinschen - use portable AC_C_BIGENDIAN Mike Frysinger - quote: escape literal backslashes Jeff Mahoney - test: Add helper library to fake passwd/group files Jeff Mahoney - ignore configure.lineno Mike Frysinger - walk_tree: mark internal variables as static Dmitry V. Levin - Do not export symbols that are not supposed to be exported Dmitry V. L= evin - getfacl: Fix minor resource leak Andreas Gruenbacher - setfacl man page: Minor wording improvements Andreas Gruenbacher - Fix the display block nesting in acl.5 Andreas Gruenbacher - getfacl: Fix memory leak Andreas Gruenbacher - fix compilation with latest xattr git Brice De Bruyne - libacl: acl_set_file: Remove unnecesary racy check Andreas Gruenbacher - cp.test: Check permissions of the right file Andreas Gruenbacher - add __acl_ prefixes to internal symbols Mike Frysinger - mark libmisc funcs as hidden so they are not exported Mike Frysinger - telldir return value and seekdir second parameters are of type long Cr= istian Rodr=C3=ADguez - read_acl_{comments,seq}: switch to next_line Mike Frysinger - read_acl_{comments,seq}: rename "line" to "lineno" Mike Frysinger - build: ship a pkgconfig file for libacl Mike Frysinger - build: make use of an aux-dir to stow away helper scripts Mike Frysing= er - build: drop aclincludedir, use pkgincludedir Mike Frysinger - po: regenerate files after move Mike Frysinger - modernize build system Mike Frysinger - test: make running parallel/out-of-tree safe Mike Frysinger - move gettext logic into misc.h Mike Frysinger - punt debian/rpm packaging logic Mike Frysinger - libacl: fix SIGSEGV of getfacl -e on overly long group name Kamil Dudka - libacl: Make sure that acl_from_text() always sets errno when it fails= Andreas Gruenbacher - Use autoreconf rather than autoconf to regenerate the files. Fabrice B= auzac - .gitignore: ignore *~ and config.h.in. Fabrice Bauzac - Bad markup in acl.5 page Eric S. Raymond - Makefile: rename configure.in to configure.ac Mike Frysinger - test: fix insufficient quoting of '\' Kamil Dudka - setfacl.1: fix typo 'inclu de' -> 'include' John Bradshaw - Install the libraries to the appropriate directory Brandon Philips =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 2e2170bfb541ea1238f1dcc9f026fab1c3f28d51 Author: Arne Fitzenreiter Date: Wed Feb 3 19:31:50 2021 +0100 setup: fix field-order at addressconfig for red =20 i have added the gatewayfield at the line below the IP and Netmask fields but prior this fields so the cursor jumps first the the gateway and after this to the IP. This patch fix the activation order. =20 Signed-off-by: Arne Fitzenreiter Signed-off-by: Michael Tremer commit 7b476adef33171763c1e764c013c98055d3965b5 Author: Michael Tremer Date: Wed Feb 3 22:15:07 2021 +0000 lynis: Update rootfile =20 Signed-off-by: Michael Tremer commit f1f2a8dbefd8a90622a1de641adb61f6cffc7a5f Author: Peter M=C3=BCller Date: Mon Feb 1 19:37:27 2021 +0100 lynis: update to 3.0.3 =20 The changelog of lynis 3.0.3 is available at https://github.com/CISOfy/lynis/releases/tag/3.0.3; all changes since lynis 3.0.1 can be inspected at https://github.com/CISOfy/lynis/releases. =20 lynis 3.0.2 adds detection for IPFire, so we can hope to have those "unknown operating system" messages omitted in future. :-) =20 Minor adjustments to LFS and rootfile were necessary to purge unused CI/CD stuff as well as some markdown files (licence, code of conduct, etc. pp.) from the extracted archive. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit e36cd564317a3223192c16aa3b17d42b0aac9fe7 Author: Michael Tremer Date: Tue Feb 2 10:55:21 2021 +0000 core154: Ship unbound.conf =20 Signed-off-by: Michael Tremer commit 89b044918573826c2b52b27293a81d66ac0504e1 Author: Peter M=C3=BCller Date: Mon Feb 1 18:47:27 2021 +0100 unbound.conf: do not set defaults again =20 These are meanwhile set by Unbound upstream as well, so there is no need to do things twice here. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 710b6ef1e828a93e48052adc79f400ac243e63c7 Author: Michael Tremer Date: Mon Feb 1 11:13:24 2021 +0000 Update the kernel's rootfile =20 Signed-off-by: Michael Tremer commit 7a3f7634cc10674b2b9610e19995c6bbab36611a Author: Michael Tremer Date: Mon Feb 1 10:53:25 2021 +0000 make.sh: Do not decrease nice level of build =20 This was designed to keep a workstation that is compiling IPFire responsive during the build. However, the kernel's scheduler has been improved enough that this is no longer an issue. =20 Instead of telling the kernel that the build job is something with a lower priority (which it isn't) we now simply run with the nicelevel of the parent process that has called make.sh. =20 Signed-off-by: Michael Tremer commit d5eb0e3906782acffd0b6081fbee8a1fe9415254 Author: Peter M=C3=BCller Date: Sun Jan 31 21:33:27 2021 +0100 libseccomp: update to 2.5.1 =20 Release notes as per https://github.com/seccomp/libseccomp/releases/tag/v= 2.5.1: =20 Version 2.5.1 - November 20, 2020 =20 Fix a bug where seccomp_load() could only be called once Change the notification fd handling to only request a notification fd= if the filter has a _NOTIFY action Add documentation about SCMP_ACT_NOTIFY to the seccomp_add_rule(3) ma= npage Clarify the maintainers' GPG keys =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit f453ff84159f2ab28b9f32aaaa299df7ce5683e4 Author: Michael Tremer Date: Mon Feb 1 10:48:29 2021 +0000 core154: Ship hyperscan =20 Signed-off-by: Michael Tremer commit b815ec45d55953a1c89007ba4aef8bc46fc29f9d Author: Peter M=C3=BCller Date: Sun Jan 31 20:01:28 2021 +0100 hyperscan: update to 5.4.0 =20 Please refer to https://github.com/intel/hyperscan/releases/tag/v5.4.0 for the (rather length) release announcement. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit d06693b487cc80a3d8ed654edde76f407b13fc78 Author: Adolf Belka Date: Sun Jan 31 18:36:43 2021 +0100 qemu: Update to 5.2.0 =20 - Update qemu from 5.0.0 to 5.2.0 - Changelogs for 5.1.0 and 5.2.0 available at https://wiki.qemu.org/Chang= eLog/ - rootfile updated - patch no longer needed as fix built into source. patch was not utilised for 5.0.0 version. Patch line was commented out in previous lfs =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit ae94f85b0210b5e2daf7f1ccdbcc7cf3b25388d9 Author: Matthias Fischer Date: Sun Jan 31 09:06:27 2021 +0100 logwatch 7.5.5: Deleted no longer needed patch for clamav 0.103.0 =20 I've should have read the changelog from opensuse more thoroughly: =20 ... 4a862fa [clamav] Ignore new "Activating the newly loaded database" message ... =20 Sorry for the noise. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 68fbf256e26c6c3b65bff31dbf13235db087aab4 Author: Adolf Belka Date: Sat Jan 30 23:40:47 2021 +0100 cups-filters: Update to 1.28.7 =20 - Update cups-filters from 1.27.4 to 1.28.7 - Changelog CHANGES IN V1.28.7 - driverless: Removed the support quality check from Pull request #235 as it takes significant time for each printer being listed, making cups-driverd (`lpinfo -m`) timing out when there are many printers (OpenPrinting CUPS issue #65). - libcupsfilters: In the PPD generator give priority to Apple Raster against PDF (Issue #331). - libcupsfilters: Added NULL check when removing ".Borderless" suffixes from page size names (Issue #314, Pull request #328). - libcupsfilters: In the cupsRasterParseIPPOptions() map the color spaces the same way as in the PPD generator (Issue #326, Pull request #327). - libcupsfilters: Fixed addition of grayscale mode in generated PPD files, to avoid duplicate entries (OpenPrinting CUPS issue #59). CHANGES IN V1.28.6 - libcupsfilters: In generated PPDs add a grayscale mode if there are only color printing modes (from OpenPrinting CUPS). - libcupsfilters: In generated PPDs add an "OutputBin" option also if it has only one choice (OpenPrinting CUPS pull request #18). - libcupsfilters: Generated PPDs could have an "Unknown" default InputSlot (OpenPrinting CUPS issue #44). - cups-browsed: Removed unneeded IPP attribute additions preventing the created local queues from preserving a location or description the user assigns to them (Issue #323). - cups-browsed: Removed all calls of the resolve_uri() function of libcupsfilters, as these are not actually needed and in case the supplied DNS-SD-based URI is not resolvable, the function gets stuck for ~5 seconds. - cups-browsed: Fixed several memory leaks, mainly from the code to merge printer IPP attributes for clusters (Pull request #322). - cups-browsed: Silenced compiler warning. - foomatic-rip: Fix infinite loop and input from file on raw printing (Pull request #318). - foomatic-rip: Remove temporary file created during pdf-to-ps conversion (Pull request #313). CHANGES IN V1.28.5 - cups-browsed: UUID from IPP response was used after its pointer was freed by ippDelete() (Pull request #311). CHANGES IN V1.28.4 - driverless: Avoid duplicate PPD list entries from the same device via UUID - driverless: Reduce ippfind calls by "driverless" and "driverless-fax"called by CUPS. Let "driverless list" list both print and fax PPDs and "driverless-fax list" do nothing. - driverless: Avoid duplicate listings in printer discovery, by "driverless-fax" not listing any URI as "driverless" lists them all already. - driverless: Vastly improve performance by doing only one ippfind call instead of two (IPP, IPPS) as ippfind accepts more than one reg type on the command line. - Sample PPDs: Corrected manufacturer name in Fuji_Xerox-DocuPrint_CM305_df-PDF.ppd. CHANGES IN V1.28.3 - libcupsfilters, cups-browsed: Fixed inconsistency between resolvers for DNS-SD-based URIs, resolve_uri() and ippfind_based_uri_converter(). Now both return a freeable string. - libcupsfilters: Fix uninitialized buffer and parsing ippfind output in ippfind_based_uri_converter() function (Issue #308, Pull request #309). CHANGES IN V1.28.2 - driverless: Free allocated memory, use MAX_OUTPUT_LEN (Pull request #304). - driverless: Make the two ippfind tasks(for IPP and IPPS) run in parallel (Pull request #302, #305, #306). - braille: Support new liblouis tables not containing a display name (Pull request #303) - Build system: Let ./configure not error out when there is more than one DejaVuSans.ttf test font candidate (Issue #300). - cups-browsed: Crash when a remote printer set as default gets removed, due to missing variable in printf() call (Issue #299). - libcupsfilters: Removed all signal handling and global variables from get_printer_attributes() and ippfind_based_uri_converter(). This is overkill for these quick operations and causes problems when shutting down cups-browsed (Issue #298). CHANGES IN V1.28.1 - COPYING: Fixed several typos - libcupsfilters: Fixed typo in log message of get_printer_attributes functions. - cups-browsed: Fixed typos in configuration file and man page - libcupsfilters: Let the PPD generator not suffix page size names with ".Borderless" if all page sizes would get this suffix, for example for printers which generally print borderless. - libcupsfilters: Added "faxPrefix" option for generated IPP Fax Out PPDs, so that this option also appears in print dialogs. - driverless: List addresses for local services correctly when using "--std-ipp-uris" (with "localhost" hostname). - driverless: Make calls of the ippfind utility somewhat faster, setting the timeout of ippfind to automatic. - libcupsfilters: Resolve DNS-SD-based URIs for local services correctly (using hostname "localhost"). - libcupsfilters: In get_printer_attributes() functions do not try to convert URIs which are not DNS-SD-based (Issue #294). - libcupsfilters: In get_printer_attributes() functions also support URIs with "dnssd://..." scheme. - libcupsfilters: Moved signal handling back into main function of the get_printer_attributes() variants, it got moved out accidentally. - driverless: For generating a PPD, independent whether via "driverless URI" or "driverless cat URI", always allow CUPS driver URIs (prefixed with "driverless: " or "driverless-fax:") and pure IPP URIs. - driverless: Accept clean IPP URIs also for 'driverless cat ...' (Issue #295, Pull request #296). - driverless-fax: Do not use fixed path for call of driverless itself (Pull request #293). CHANGES IN V1.28.0 - driverless, driverless-fax, libcupsfilters: Added IPP Fax Out support. Now printer setup tools list an additional fax "driver". A fax queue is created by selecting this driver. Jobs have to be sent with "-o phone=3D12345" to supply the destination phone number (Pull request #280). - libfontembed: Silenced warning with gcc 10.x (Pull request #287). - cups-browsed: Added ./configure options --enable-saving-created-queues and --with-remote-cups-local-queue-naming (Pull request: #253, #285). - cups-browsed: Fixed several memory leaks, mainly from the code to merge printer IPP attributes for clusters (Pull request #281, #283). - driverless: Added "--std-ipp-uris" command line option to show listed URIs in standard hostname-based form (not the CUPS DNS-SD-service-name-based form. Only for manual call of the utility, for debugging purposes (Pull request #277). - libfontembed: Removed assert() calls which cause crashes when unsupported emoji fonts are installed (Issue #254, Pull request #276). - driverless: Added support for IPPS (use "ipps://..." URIs if possible, Issue #251, Pull request #270, #273). - gstoraster, gstopdf: When converting PostScript to PDF use the "pdfwrite" output device with "-dPDFSETTINGS=3D/default" instead of with "-dPDFSETTINGS=3D/printer". This reproduces bitmaps in the PostScript file with their original image quality (Issue #272). - cups-browsed: Limit log file size and add backup file for previous log entries. Introduced the configuration option DebugLogFileSize in cups-browsed.conf to set the actual limit in kilobytes or 0 to get the old behavior of an unlimited size for the log file (Issue #260, Pull request #267). - gstoraster, gstopdf: Do not apply margins when output format is PDF, as then we convert an incoming PostScript file to PDF (pre-pdftopdf) and do not prepare the pages for the printer (post-pdftopdf, Issue #250). - cups-browsed: Do not write any log messages directly to stderr, there were some concerning timeouts on queue creation (Issue #260). - Build system: Fix cross-compilation without DejaVu test font in configure.ac (Issue #262, Pull request #263). - libcupsfilters: Respect the fact that PPD keywords are case-sensitive when adding "*cupsManualCopies: True" in PPD file (Issue #242). - libcupsfilters: Older versions of libcups (< 2.3.1) had the enum name for fold-accordion finishings mistyped. Added a workaround. - cups-browsed: Remove left-over local queues from the previous session more quickly when CUPS legacy browsing is turned on. - cups-browsed: Left-over local queues from the previous session for which the corresponding remote printer did not appear again did not get removed as they were considered externally overwritten. - gstoraster, gstopdf: Add option "-dDoNumCopies" to Ghostscript command line if we are outputting PDF (called via gstopdf wrapper) and the number of copies supplied to CUPS is 1 (4th command line argument). In this case we convert incoming PostScript to PDF and need to respect embedded PostScript commands to implement the number of copies (Issue #255, CUPS Issue #5796, OpenSUSE bug #1173345). - imagetoraster: Potential null dereference fix (when no valid PPD is supplied, Pull request #256). - cups-browsed: Call cupsGetNamedDest() only if "OnlyUnsupportedByCUPS No" - Sample PPDs: Corrected ColorModel default for Generic PWG Raster PPD to Color (Pull request #247). - cups-browsed: Mark the temp queue as cups-browsed-generated during setting printer-is-shared (Pull request #246). - cups-browsed: Remove mentions of README and AUTHORS files in the man page (Pull request #244). - pclmtoraster: Added new filter to extract Raster data from raster-only PDF files, here for the special case of PCLm files (Pull request #243, #257). - Sample PPDs: In Generic-PDF_Printer-PDF.ppd add option to switch between color and grayscale printing (Pull request #237). CHANGES IN V1.27.5 - cups-browsed: Do not remove the created local queues on shutdown, to avoid their re-creation on restart, so that desktops get no cluttered with notifications of new queues being created. One can return to the old behavior via "KeepGeneratedQueuesOnShutdown No" in cups-browsed.conf (Ubuntu bug #1869981, #1878241). - cups-browsed: Do not accept DNS-SD broadcasts of IPPS type of "remote" CUPS queues of another CUPS instance on the local machine. This way we get a local queue pointing to such a printer only in unencrypted version (IPP). For some reason printing from one CUPS server to another on the same machine works only unencrypted. - foomatic-rip: Map two-sided-short-edge to DuplexTumble (Pull request #236) - Build system: In configure.ac use AS_IF instead of AC_CHECK_FILE for font check (Issue #239, Pull request #240) - cups-browsed: Cleaned up code for determining to which CUPS server (host/port/domain socket) to connect, so that connection via DomainSocket cups-browsed.conf directive, CUPS_SERVER and IPP_PORT environment variables and all defaults and methods of libcups, including CUPS' client.conf work. - gstoraster, rastertopdf: Do not pass NULL to fprintf() (Pull request #230). - libcupsfilters: Silence compiler warning (Pull request #229). - rootfile updated =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit aadf0a01e3837fb874748ebb0e32d37c64632605 Author: Adolf Belka Date: Sat Jan 30 23:40:27 2021 +0100 cifs-utils: Update to 6.12 =20 - Update cifs-utils from 5.9 to 6.12 - Changelog - URL for each change gives more details of changes December, 2020: Release 6.12 get/setcifsacl tools are improved to support changing owner, group a= nd SACLs mount.cifs is enhanced to use SUDO_UID env variable for cruid smbinfo is re-written in Python language https://lists.samba.org/archive/samba-technical/2020-December/136156= .html September, 2020: Release 6.11 CVE-2020-14342: mount.cifs: fix shell command injection https://lists.samba.org/archive/samba-technical/2020-September/13574= 7.html December 16, 2019: Release 6.10 smb3 alias/fstype is added smb2-quota tool is added to display quota information smb2-secdesc UI tool to view security descriptors is added smbinfo is enhanced with capabilities to dump session keys and get/s= et compression of files smbinfo bash completion is supported getcifsacl tool is improved to support multiple files https://lists.samba.org/archive/samba-technical/2019-December/134662= .html April 5, 2019: Release 6.9 smbinfo utility is added to query various kinds of information from = the server (objectId, snapshots, different FileInfo* classes and other metada= ta) server IP change is supported by expiring DNS key resolver entries get/setcifsacl tools are improved to handle unexpected behavior share snapshot are allowed to be specified by a GMT token or SMB 100= -nanoseconds time various new mount option are documented: bsize, handletimeout, handl= ecache, rdma, max_credits and others https://lists.samba.org/archive/samba-technical/2019-April/133233.ht= ml March 9, 2018: Release 6.8 man pages updates (auto-negotiate protocol version by default) and c= leanups (moving to .rst format) setcifsacl: fix security descriptor buffer size mismatch cifscreds: fix a segfault for incorrect usage minor mount.cifs fixes https://lists.samba.org/archive/samba-technical/2018-March/126227.ht= ml March 2, 2017: Release 6.7 fixes for regressions from cifs.upcall overhaul mount.cifs cleanups https://lists.samba.org/archive/samba-technical/2017-March/119036.ht= ml September 3, 2016: Release 6.6 cleanup/overhaul of cifs.upcall krb5 credcache handling https://lists.samba.org/archive/samba-technical/2016-September/11597= 4.html February 22, 2016: Release 6.5 mount.cifs: ignore x- mount options minor build fixes minor manpage fix https://lists.samba.org/archive/samba-technical/2016-February/112372= .html July 11, 2014: Release 6.4 allow PAM directory to be configurable better determination of default keytab file better cifscreds error handling uppercase devicename when retrying mount https://lists.samba.org/archive/samba-technical/2014-July/101132.html January 9, 2014: Release 6.3 fixes for various bugs turned up by Coverity clean unused cruft out of upcall binary add new pam_cifscreds PAM module for establishing NTLM creds on login https://lists.samba.org/archive/samba-technical/2014-January/097124.= html October 4, 2013: Release 6.2 setcifsacl can now work without a plugin systemd-ask-password is found using $PATH now cifs.upcall now works with KEYRING: credcaches https://lists.samba.org/archive/samba-technical/2013-October/095287.= html July 2, 2013: Release 6.1 minor bugfixes allow cifs.upcall to use dedicated keytab https://lists.samba.org/archive/samba-technical/2013-July/093601.html March 25, 2013: Release 6.0 minor bugfixes and documentation updates support for NFS-style device names removed https://lists.samba.org/archive/samba-technical/2013-March/091169.ht= ml - Rootfile updated =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 9ab74511dacc7ccc9b1e090552174f06c1b18c1a Author: Adolf Belka Date: Sat Jan 30 23:40:11 2021 +0100 screen: Update to 4.8.0 =20 - Update screen from 4.2.1 to 4.8.0 - Changelog Version 4.8.0 (05/02/2020) * Improve startup time by only polling for files to close Fixes: - Fix for segfault if termcap doesn't have Km entry - Make screen exit code be 0 when checking --version - Fix potential memory corruption when using OSC 49 Version 4.7.0 (02/10/2019) * Add support for SGR (1006) mouse mode * Add support for OSC 11 * Update Unicode ambiguous and wide tables to 12.1.0 * Fixes: - cross-compilation support (bug #43223) - a lot of manpage fixes and cleanups Version 4.6.2 (23/10/2017): * Fixes: - revert changes to cursor position restore behavour (bug #51832) - set freed pointer to NULL (bug #52133) - documentation fixes - fix windowlist crashes (bug #43054 & #51500) Version 4.6.1 (10/07/2017): * Fixes: - problems with starting session in some cases - parallel make install - segfault when querying info on nonUTF locale (bug #51402) Version 4.6.0 (28/06/2017): * Update Unicode wide tables to 9.0 (bug #50044) * Support more serial speeds * Improved namespaces support * Migrate from fifos to sockets * Start viewing scrollback at first line of output (bug #49377) Version 4.5.1 (25/02/2017): * Fixes: - logfile permissions problem (CVE-2017-5618) - SunOS build problem (bug #50089) - FreeBSD core dumps (bug #50143) Version 4.5.0 (10/12/2016): * Allow specifying logfile's name via command line parameter '-L' * Fixes: - broken handling of "bind u digraph U+" (bug #48691) - crash with long $TERM (bug #48983) - crash when bumping blank window - build for AIX (bug #49149) - %x improperly separating arguments - install with custom DESTDIR (bug #48370) Version 4.4.0 (19/06/2016): * Support up to 24 function keys * Fix runtime issues * 'logfile' command, starts logging into new file upon changing Version 4.3.1 (28/06/2015): * Fix resize bug Version 4.3.0 (13/06/2015): * Introduce Xx string escape showing the executed command of a window * Implement dead/zombie window polling, allowing for auto reconnecting * Allow setting hardstatus on first line New Commands: * 'sort' command sorting windows by title * 'bumpleft', 'bumpright' - manually move windows on window list * 'collapse' removing numbering 'gaps' between windows, by renumbering * 'windows' command now accepts arguments for use with querying - Rootfile updated - Two screen patchfiles deleted as the patch changes are now built into the source files =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 69d90c36cc17a6b475253c29d98f02e26f1adb5e Author: Arne Fitzenreiter Date: Sat Jan 30 20:52:42 2021 +0100 network-functions.pl: declare use of smartmatch =20 perl complains about the use of experimental smartmatch feature if it is not declared. =20 Signed-off-by: Arne Fitzenreiter Signed-off-by: Michael Tremer commit dd401c4d8a666aa57fe6be71cae0e1062dbcebc1 Author: Matthias Fischer Date: Sat Jan 30 17:54:11 2021 +0100 libassuan: Update to 2.5.4 =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 84371e42dfc6fc7b0c6775cff80c45e869e073a3 Author: Michael Tremer Date: Mon Feb 1 10:38:21 2021 +0000 core154: Ship libgpg-error =20 Signed-off-by: Michael Tremer commit d3d50399244c969adff6cb71fd847bcbf77814c9 Author: Matthias Fischer Date: Sat Jan 30 17:51:31 2021 +0100 libgpg-error: Update to 1.41 =20 Signed-off-by: Matthias Fischer Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit f4abc0221fe7968fa49f9b1694ac97ca759455bb Author: Michael Tremer Date: Mon Feb 1 10:37:51 2021 +0000 core154: Ship libgcrypt =20 Signed-off-by: Michael Tremer commit 47cf62d3b74190c08ec002b6b27d0734ad309925 Author: Matthias Fischer Date: Sat Jan 30 17:43:43 2021 +0100 libgcrypt: Update to 1.9.1 =20 For details - especially for this version - see: https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html =20 Overview: https://dev.gnupg.org/source/libgcrypt/browse/master/NEWS =20 Signed-off-by: Matthias Fischer Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit f90fd27a70f1acb6304cf3b8a4253f47ef1a8edf Author: Peter M=C3=BCller Date: Sat Jan 30 14:26:11 2021 +0100 Postfix: update to 3.5.9 =20 This release adds runtime detection of DNSSEC support; please refer to http://www.postfix.org/announcements/postfix-3.5.9.html for its full announcement. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit bf2ff65e6cd9a7550dec48f214eac310ca24585b Author: Matthias Fischer Date: Sat Jan 30 13:44:54 2021 +0100 logwatch: Update to 7.5.5 =20 For details see: https://build.opensuse.org/package/view_file/server:monitoring/logwatch/C= hangeLog?expand=3D1 =20 Plus: deleted no longer need dhcpd-patch. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 6106a465d774b9bb983fc4d06104877af1c08e49 Author: Michael Tremer Date: Mon Feb 1 10:36:33 2021 +0000 core154: Ship dma =20 Signed-off-by: Michael Tremer commit b3a4ea2817abaadfab5012d36e2e4a382124f269 Author: Matthias Fischer Date: Sat Jan 30 12:42:51 2021 +0100 knot: Update to 3.0.4 =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit b1f51038991423a9ff0d00a78175cedda1818c1b Author: Matthias Fischer Date: Sat Jan 30 12:41:05 2021 +0100 knot: Cosmetic changes in lfs =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 5bc11f39e38b29afe6690e010ceb23e92980b611 Author: Adolf Belka Date: Fri Jan 29 22:58:23 2021 +0100 dbus: Update to 1.12.20 =20 - Update dbus from 1.11.12 to 1.12.20 (latest in release line 1.13.x is also available but this is the development line and not recommended for production use - Changelog between these two versions is very long (750 lines long) and can be found in the NEWS file in the source tarball. - rootfile updated =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit d1efdea0d3ba1a184752181d9c7ac5f470b7cf3a Author: Adolf Belka Date: Thu Jan 28 21:17:30 2021 +0100 dma: Update to 0.13 =20 - Update dma from 0.12 to 0.13 - No changelog information available - No change to the rootfile =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit fa82a2156ae837b91304a190e10e10d8314d2ece Author: Michael Tremer Date: Fri Jan 29 14:43:20 2021 +0000 Revert "core154: Ship freetype" =20 This reverts commit 45063142bed6287d29d21170873d3f67eff2aa50. =20 Signed-off-by: Michael Tremer commit 52bf6075d080ae7e1aea21b805378d4bc4efd5fa Author: Michael Tremer Date: Fri Jan 29 14:43:05 2021 +0000 Revert "freetype: update to 2.10.4" =20 This reverts commit 5653a45f813f57368bf2a32f9468ba6bd496274a. =20 Signed-off-by: Michael Tremer commit 9a0e00209806949435105610ad8cb63e9e9ff3db Author: Michael Tremer Date: Fri Jan 29 11:14:43 2021 +0000 core154: Ship ipset =20 Signed-off-by: Michael Tremer commit bc19698555838a849c1bf9c5231610899ff9007d Author: Adolf Belka Date: Thu Jan 28 21:17:00 2021 +0100 ipset: Update to 7.10 =20 - Update ipset from 7.6 to 7.10 - Changelog 7.10 Kernel part changes Fix patch "Handle false warning from -Wstringop-overflow" Backward compatibility: handle renaming nla_strlcpy to nla_strscpy treewide: rename nla_strlcpy to nla_strscpy. (Francis Laniel) netfilter: ipset: fix shift-out-of-bounds in htable_bits() (Vasil= y Averin) netfilter: ipset: fixes possible oops in mtype_resize (Vasily Ave= rin) Handle false warning from -Wstringop-overflow Backward compatibility: handle missing strscpy with a wrapper of = strlcpy. Move compiler specific compatibility support to separated file (b= roken compatibility support reported by Ed W) 7.9 Userspace changes Fix library versioning (Jan Engelhardt) 7.8 Kernel part changes Complete backward compatibility fix for package copy of Compatibility: check for kvzalloc() and GFP_KERNEL_ACCOUNT netfilter: ipset: enable memory accounting for ipset allocations = (Vasily Averin) netfilter: ipset: prevent uninit-value in hash_ip6_add (Eric Duma= zet) Compatibility: use skb_policy() from if_vlan.h if available Compatibility: Check for the fourth arg of list_for_each_entry_rc= u() Backward compatibility fix for the package copy of 7.7 Userspace changes Expose the initval hash parameter to userspace Handle all variable header parts in helper scripts instead ot tes= t tasks Add bucketsize parameter to all hash types Support the -exist flag with the destroy command Kernel part changes Expose the initval hash parameter to userspace Add bucketsize parameter to all hash types Use fallthrough pseudo-keyword in the package copy of too Support the -exist flag with the destroy command netfilter: Use fallthrough pseudo-keyword (Gustavo A. R. Silva) netfilter: Replace zero-length array with flexible-array member (= Gustavo A. R. Silva) netfilter: ipset: call ip_set_free() instead of kfree() (Eric Dum= azet) netfiler: ipset: fix unaligned atomic access (Russell King) netfilter: ipset: Fix subcounter update skip (Phil Sutter) ipset: Update byte and packet counters regardless of whether they= match (Stefano Brivio) netfilter: ipset: Pass lockdep expression to RCU lists (Amol Grov= er) ip_set: Fix compatibility with kernels between v3.3 and v4.5 (Ser= hey Popovych) ip_set: Fix build on kernels without INIT_DEFERRABLE_WORK (Serhey= Popovych) ipset: Support kernels with at least system_wq support ip_set: Fix build on kernels without system_power_efficient_wq (S= erhey Popovych) - Rootfiles updated =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 45063142bed6287d29d21170873d3f67eff2aa50 Author: Michael Tremer Date: Fri Jan 29 11:14:06 2021 +0000 core154: Ship freetype =20 Signed-off-by: Michael Tremer commit 5653a45f813f57368bf2a32f9468ba6bd496274a Author: Peter M=C3=BCller Date: Thu Jan 28 19:43:22 2021 +0100 freetype: update to 2.10.4 =20 This fixes a heap buffer overflow in the handling of embedded PNG bitmaps (CVE-2020-15999). Further information is available at https://sourceforge.net/projects/freetype/files/freetype2/2.10.4/ . =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 968ad8ba8d4f730d52da90641539cc38bc92e27f Author: Michael Tremer Date: Fri Jan 29 11:09:34 2021 +0000 samba: Update rootfiles =20 Signed-off-by: Michael Tremer commit ecf0ba6d127ea594aa02cb8eefe47cbc5f499c93 Author: Adolf Belka Date: Thu Jan 28 15:55:57 2021 +0100 minicom: Update to 2.8 =20 - Update minicom from 2.7.1 to 2.8 - Changelog for version 2.8 New timestamp mode: Delta to previous line. Add HPA ESC sequence Add alternative window support (ti/te) Fix file name of non-global configuration settings. Update translations: Indonesian, French, Swedish, Spanish, German, Brazi= lian Portuguese, Vietnamese, Polish, Danish, Norwegian, Serbian New translation: Serbian, Simplified chinese Fix F10 macro key used in current setups Add F11 and F12 for macro use Fixed DTR for recent systems Add support for RS485. Add --capturefile-buffer-mode option Bug fixes - Updated rootfile =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit ff5aef9d30241ee170cb42922b9ebbf052376f6a Author: Adolf Belka Date: Thu Jan 28 15:56:14 2021 +0100 tshark: Update to 3.4.2 =20 - Update tshark from 3.2.6 (Old Stable Release line) to 3.4.2 (Stable Rel= ease line) - Changelog at https://www.wireshark.org/docs/relnotes/ - Rootfile updated =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit d52d7073815a5576215ebcc3a5fc6ae765574ddc Author: Michael Tremer Date: Thu Jan 28 16:44:51 2021 +0000 core154: Ship arping =20 Signed-off-by: Michael Tremer commit 6b22a5d2fdce2c440e7620f25b414a7173597f1a Author: Adolf Belka Date: Wed Jan 27 23:17:00 2021 +0100 arping: Update to 2.21 =20 - Update arping from 2.15 to 2.21 - Notable changes from 2.20 to 2.21: * Use more modern pcap API calls, when available * Add payload data to mac ping * chdir(/) after chroot() * Misc minor cleanup - Notable changes from 2.19 to 2.20: * Improved support for cross-compile * Use unveil(2) and pledge(2) where available (i.e. OpenBSD) * Fix false duplicates when destination address is *also* assigned to lo= cal interface * Minor typo-level fixes - Notable changes from 2.18 to 2.19: * Added -g to drop privs to alternate user (for Android) * Slightly improved error messages - Notable changes from 2.17 to 2.18: * Make -w/-W work like 'ping' - Notable changes from 2.16 to 2.17: * Add padding to packets to work on Raspberry Pi 3 - Notable changes from 2.15 to 2.16: * VLAN tagging (Nikolay Aleksandrov) * 802.1Q priority (Nikolay Aleksandrov) * Added a bunch of unit tests. * Be more lazy about initializing libnet. This fixes issues where arping would sometimes pick an unsuitable device during arg parsing, if the "first" device on the system is not a "normal" device. - No change to rootfile =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit e2bf0fa529d93ac8172bda53b85c50c4b45432fa Author: Peter M=C3=BCller Date: Thu Jan 28 17:00:47 2021 +0100 libloc: ship a more recent database by default =20 The database we ship by default is meanwhile four weeks old, and since the merge window for Core Update 154 is still open, there is no need to ship data being more outdated than they have to be. :-) =20 The second version of this patch also updates the checksum for the downloaded database file. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit ffe6303b2bfc0feebf60604d41bc9428ba567764 Author: Michael Tremer Date: Wed Jan 27 22:09:34 2021 +0000 core154: Ship tzdata =20 Signed-off-by: Michael Tremer commit 922d881312482049dc67c2c1f4435ae7f7a266bd Author: Peter M=C3=BCller Date: Wed Jan 27 22:31:46 2021 +0100 tzdata: update to 2021a =20 Please refer to https://www.iana.org/time-zones for further information. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 273708295b5553f174b27101a33c7d1402e4eb78 Author: Adolf Belka Date: Wed Jan 27 21:14:44 2021 +0100 sudo: Upgrade to 1.9.5p2 =20 - Update sudo from 1.9.5p1 to 1.9.5p2 - Major changes between version 1.9.5p2 and 1.9.5p1: Fixed sudo's setprogname(3) emulation on systems that don't provide i= t. Fixed a problem with the sudoers log server client where a partial wr= ite to the server could result the sudo process consuming large amounts of CP= U time due to a cycle in the buffer queue. Bug #954. Added a missing dependency on libsudo_util in libsudo_eventlog. Fixes= a link error when building sudo statically. The user's KRB5CCNAME environment variable is now preserved when perf= orming PAM authentication. This fixes GSSAPI authentication when the user has= a non-default ccache. When invoked as sudoedit, the same set of command line options are no= w accepted as for sudo -e. The -H and -P options are now rejected for sudoedi= t and sudo -e which matches the sudo 1.7 behavior. This is part of the fix fo= r CVE-2021-3156. Fixed a potential buffer overflow when unescaping backslashes in the = command's arguments. Normally, sudo escapes special characters when running a= command via a shell (sudo -s or sudo -i). However, it was also possible to r= un sudoedit with the -s or -i flags in which case no escaping had actually be= en done, making a buffer overflow possible. This fixes CVE-2021-3156. - No change to rootfile =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 157d64250a170b905cb440dd6968f7ba6cbaf988 Author: Michael Tremer Date: Thu Jan 7 12:13:30 2021 +0000 misc-progs: addonctrl: Replace all sprintf() with snprintf() =20 Signed-off-by: Michael Tremer commit 37fe3658a04f200732651ae997ff408efd7a92f6 Author: Michael Tremer Date: Wed Jan 6 14:38:03 2021 +0000 samba: Add helper script to pipe password =20 It is complicated to set the password in the C helper binary. =20 Therefore it is being set by a helper script. =20 This is still not an optimal solution since the password might be exposed to the shell environment, but has the advantage that shell command injection is no longer possible. =20 Fixes: #12562 Reported-by: Albert Schwarzkopf Signed-off-by: Michael Tremer commit 354c3e2b45d9b3e51a29c8632bd18deb603a811f Author: Michael Tremer Date: Wed Jan 6 12:00:32 2021 +0000 samba: Remove option to chose user group and shell =20 There is no need for this being implemented and it is dangerous to allow the user to create any shell accounts or users that belong to groups with higher privileges. =20 Signed-off-by: Michael Tremer commit 64883513d5940c17afe2fcf1d876feae61921ea9 Author: Michael Tremer Date: Wed Jan 6 11:56:08 2021 +0000 misc-progs: sambactrl: Sanitise username =20 Fixes: #12562 Reported-by: Albert Schwarzkopf Signed-off-by: Michael Tremer commit 8e4b2125ccfd005c30adb9c568f2103bbc36bdb7 Author: Michael Tremer Date: Wed Jan 6 11:52:39 2021 +0000 misc-progs: sambactrl: Remove unused smbsafeconfpdc command =20 Signed-off-by: Michael Tremer commit 84de1f087c8a3bb0b5ca58503101f95117a69cf0 Author: Michael Tremer Date: Wed Jan 6 11:49:04 2021 +0000 misc-progs: sshctrl: Sanitise runtime for "tempstart" =20 Signed-off-by: Michael Tremer commit 14dc1c68f75b2ea70c0acfc55c1c168cc1ba8dff Author: Michael Tremer Date: Wed Jan 6 11:45:20 2021 +0000 misc-progs: smartctrl: Sanitise device name =20 Fixes: #12562 Reported-by: Albert Schwarzkopf Signed-off-by: Michael Tremer commit 5efedb5487fa6fcc771c03bb9f15b5cb2412416c Author: Michael Tremer Date: Wed Jan 6 11:42:06 2021 +0000 misc-progs: mpfirectrl: Use new run() function =20 Signed-off-by: Michael Tremer commit c651dd9b6b2e00fb10d1ca1a99cf9efaec42df19 Author: Michael Tremer Date: Wed Jan 6 11:39:46 2021 +0000 misc-progs: extrahdctrl: Use new run() function =20 Signed-off-by: Michael Tremer commit cf9efe511a403f9dba38340bf9c89bc1d30776f5 Author: Michael Tremer Date: Wed Jan 6 11:34:50 2021 +0000 misc-progs: addonctrl: Sanitise add-on names before use =20 Fixes: #12562 Reported-by: Albert Schwarzkopf Signed-off-by: Michael Tremer commit db984059b22a4680046df31579b44fa05c8264d5 Author: Michael Tremer Date: Wed Jan 6 11:34:31 2021 +0000 misc-progs: Add functions to sanitise input arguments =20 Signed-off-by: Michael Tremer commit 6733d973d663968e1d642c18b3a0fe6526f07252 Author: Michael Tremer Date: Wed Jan 6 11:18:33 2021 +0000 misc-progs: pakfire: Use new run() function =20 Signed-off-by: Michael Tremer commit c33f477f5bf1942f70dfaeff793e3d553afe4960 Author: Michael Tremer Date: Wed Jan 6 11:17:53 2021 +0000 misc-progs: backupctrl: Use new run() function =20 Signed-off-by: Michael Tremer commit ca060524a79e6d9d874b82f081e8c98d1abe4ff1 Author: Michael Tremer Date: Wed Jan 6 11:15:47 2021 +0000 misc-progs: Introduce run() =20 This function invokes a new command similar to safe_system() but without launching a shell before. =20 That way, it is possible to execute commands without any risk of shell command injection from nobody. =20 Fixes: #12562 Reported-by: Albert Schwarzkopf Signed-off-by: Michael Tremer commit 5d482a74faf4732db7c77ee693a2bc65e0b81a7a Author: Michael Tremer Date: Tue Jan 5 16:55:25 2021 +0000 core154: Manually set capabilites for etherwake =20 The changes are not available in the running instance of pakfire and tar. =20 Signed-off-by: Michael Tremer commit d9f9f16366d6a8332d5fd8e864d1a9c552db1387 Author: Michael Tremer Date: Tue Jan 5 16:01:56 2021 +0000 Drop launch-ether-wake =20 The helper binary is being dropped and etherwake is enabled for CAP_NET_RAW. This allows execution by unprivileged users as needed by the web user interface (nobody). =20 Reported-by: Albert Schwarzkopf Fixes: #12562 Signed-off-by: Michael Tremer commit 29156d15f637faa7b5a23c797f0b0cd858a300ff Author: Michael Tremer Date: Wed Jan 27 18:56:07 2021 +0000 hostapd: Re-add accidentially removed CONFIG_SAE =20 Signed-off-by: Michael Tremer commit 1035570fb0ab8b62ed8511f27261fbe609dc3178 Author: Michael Tremer Date: Wed Jan 27 18:43:30 2021 +0000 core154: Do not package libloc database files =20 This is carried over from Core Update 153 =20 Signed-off-by: Michael Tremer commit 85f5656aca91992d8cf135da603d729cc8ac8e0d Author: Michael Tremer Date: Tue Jan 26 11:15:04 2021 +0000 Revert "make: update to 4.3" =20 This reverts commit f1d98a1c3fb2459cf481e9330d113a958be35e58. =20 The new version of make seems to break building u-boot on armv5tel. =20 Signed-off-by: Michael Tremer commit 53f04366ed8eff56b11cc4d070fe36ed5ddb376b Author: Adolf Belka Date: Thu Jan 21 21:17:06 2021 +0100 iptables: Update to version 1.8.7 =20 - Update from 1.8.6 to 1.8.7 Florian Westphal (4): xtables-monitor: fix rule printing xtables-monitor: fix packet family protocol xtables-monitor: print packet first xtables-monitor: =20 Pablo Neira Ayuso (2): tests: shell: update format of registers in bitwise payloads. configure: bump version for 1.8.7 release =20 Phil Sutter (21): nft: Optimize class-based IP prefix matches ebtables: Optimize masked MAC address matches tests/shell: Add test for bitwise avoidance fixes ebtables: Fix for broken chain renaming iptables-test.py: Accept multiple test files on commandline iptables-test.py: Try to unshare netns by default libxtables: Extend MAC address printing/parsing support xtables-arp: Don't use ARPT_INV_* xshared: Merge some command option-related code tests/shell: Test for fixed extension registration extensions: dccp: Fix for DCCP type 'INVALID' nft: Fix selective chain compatibility checks nft: cache: Introduce nft_cache_add_chain() nft: Implement nft_chain_foreach() nft: cache: Move nft_chain_find() over nft: Introduce struct nft_chain nft: Introduce a dedicated base chain array nft: cache: Sort custom chains by name tests: shell: Drop any dump sorting in place nft: Avoid pointless table/chain creation tests/shell: Fix nft-only/0009-needless-bitwise_0 - Rootfile updated =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit adc2aa5f67dfcc537bb0c0acc4136b69cd62b8e0 Author: Michael Tremer Date: Mon Jan 25 19:34:16 2021 +0000 core154: Ship updated perl files =20 Signed-off-by: Michael Tremer commit eea288bc1a55ac99cac868b00367999455cecde5 Author: Leo-Andres Hofmann Date: Sun Jan 17 15:20:04 2021 +0100 network-functions.pl: Improve zone configuration functions =20 Cache ethernet configuration in public variable "ethernet_settings", add functions to simplify working with the network configuration. =20 Signed-off-by: Leo-Andres Hofmann Signed-off-by: Michael Tremer commit abffcc99adab8311e9421c8203a82d65b7c5ea1c Author: Leo-Andres Hofmann Date: Sun Jan 17 15:20:03 2021 +0100 Refactor "get_available_network_zones", move to network-functions.pl =20 This function nicely translates the ethernet/settings "CONFIG_TYPE" into a list of available zones. Therefore it should be more accessible! =20 Signed-off-by: Leo-Andres Hofmann Signed-off-by: Michael Tremer commit f1d98a1c3fb2459cf481e9330d113a958be35e58 Author: Arne Fitzenreiter Date: Thu Jan 21 14:35:16 2021 +0100 make: update to 4.3 =20 this this needed to build on systems with kernel >=3D5.5 =20 Signed-off-by: Arne Fitzenreiter Signed-off-by: Michael Tremer commit 502f6c63a3120a85ca855ec9aaec9c6cb90cbefd Author: Michael Tremer Date: Mon Jan 18 17:05:46 2021 +0000 network-hotplug-bridges: Fix logical error in STP_PRIORITY check =20 Reported-by: Daniel Weism=C3=BCller Signed-off-by: Michael Tremer commit bb859c27f08b67d05c204455849f173df29cfdf1 Author: Matthias Fischer Date: Sat Jan 16 18:11:35 2021 +0100 nano: Update to 5.5 =20 For details see: https://www.nano-editor.org/news.php =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 387d4b5e43fb602c3be6078ce3a2284f07be55ba Author: Michael Tremer Date: Mon Jan 18 13:06:25 2021 +0000 core154: Ship logrotate =20 Signed-off-by: Michael Tremer commit 9f2779d71c9289e0c01da191666eef77062eb91d Author: Matthias Fischer Date: Sat Jan 16 16:57:56 2021 +0100 logrotate: Update to 3.18.0 =20 Exerpt from 'ChangeLog.md': =20 "## [3.18.0] - 2021-01-08 - allow UIDs and GIDs to be specified numerically (#217) - add support for Zstandard compressed files (#355) - make `delaycompress` not to fail with `rotate 0` (#341)" =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit bcc66365764642ffa529a5bd6623110fa78c44b6 Author: Matthias Fischer Date: Sat Jan 16 16:53:07 2021 +0100 htop: Update to 3.0.5 =20 For details see: https://github.com/htop-dev/htop/blob/master/ChangeLog =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 597e584f3dcbec0488f7471f7f657a0d092df627 Author: Michael Tremer Date: Mon Jan 18 13:05:42 2021 +0000 core154: Ship ipsec-interfaces =20 Signed-off-by: Michael Tremer commit 0de7cc50ac420b3a635a342197a0174d5eeb4e1d Author: Michael Tremer Date: Thu Jan 14 18:54:03 2021 +0000 IPsec: Disable XFRM policy lookup for VTI devices =20 This speeds up throughput slightly =20 Signed-off-by: Michael Tremer commit 37ff8e005db883c8e476dedd1b73e6623e271cc9 Author: Michael Tremer Date: Mon Jan 18 13:04:55 2021 +0000 core154: Ship sudo =20 Signed-off-by: Michael Tremer commit 161613165a64dffeef9a0d5bc545c698dfdda002 Author: Adolf Belka Date: Thu Jan 14 19:37:11 2021 +0100 sudo: Upgrade to 1.9.5p1 =20 - Upgrade sudo from 1.8.10p3 to 1.9.5p1 - Move sudo from legacy release (1.8) branch to stable release (1.9) bran= ch - Update rootfile - Changelog available at https://www.sudo.ws/changes.html - Tested out on vm testbed and sudo is working correctly =20 Signed-off-by: Adolf Belka Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 93d540832a2077e276c8c5d8eec14f3aa9fe47a4 Author: Michael Tremer Date: Mon Jan 18 13:02:43 2021 +0000 wpa_supplicant: Update to development version =20 Signed-off-by: Michael Tremer commit 5b2fc5d65f85917e906af70f63c2fc238b266420 Author: Michael Tremer Date: Mon Jan 18 13:02:15 2021 +0000 hostapd: Update to development version =20 Signed-off-by: Michael Tremer commit 50f75f88068420c66a64661120ab24f32feda22a Author: Michael Tremer Date: Wed Jan 13 11:20:34 2021 +0000 core154: Ship kmod =20 Signed-off-by: Michael Tremer commit 5c21f1a0784c73aa9c1cdf387f2940efb11ddf67 Author: Michael Tremer Date: Wed Jan 13 11:20:09 2021 +0000 kmod: Update to 28 =20 Signed-off-by: Michael Tremer commit b14c24ca90e048cf65bd32b5d431c435e24d5610 Author: Michael Tremer Date: Wed Dec 30 17:55:35 2020 +0000 make.sh: Build zstd earlier in stage2 =20 Since programs from the toolchain are linked against this, we need to make this library available in stage 2, too. =20 Signed-off-by: Michael Tremer commit 5c3f3da55921a8f027d06d69df8bde19fef0c478 Author: Michael Tremer Date: Wed Jan 13 11:14:30 2021 +0000 core154: Ship SSH initscript =20 Signed-off-by: Michael Tremer commit 675c9ca558f3d354127c4746fed187b3ff4380cd Author: Michael Tremer Date: Wed Jan 13 11:12:03 2021 +0000 ssh: Ignore any errors when stopping daemon =20 The SSH init script only kills the main daemon which leads to any child processes (for remaining connections) being untouched. =20 killproc returns 4 (unknown error) when not all processes were killed which is not intended here. Therefore we ignore the error and do not pause the shut down process for a minute. =20 Fixes: #12544 Signed-off-by: Michael Tremer commit 0b58804370ce8ee1350b85d30e1577e7dfaec90f Author: Michael Tremer Date: Wed Jan 13 10:54:07 2021 +0000 core154: Ship initscript functions =20 Signed-off-by: Michael Tremer commit ad594123b6dd1115138a70ed15e59f3d43a91021 Author: Michael Tremer Date: Wed Jan 13 10:53:15 2021 +0000 core154: Ship header.pl =20 Signed-off-by: Michael Tremer commit 56d37c8dbfe5793212163814e6ca34b9ee6d34e2 Author: Leo-Andres Hofmann Date: Tue Jan 12 19:11:14 2021 +0100 header.pl: Remove duplicate "IpInSubnet" function =20 This function is deprecated. The commonly used and maintained "IpInSubnet= " function can be found in general-functions.pl. =20 Signed-off-by: Leo-Andres Hofmann Signed-off-by: Michael Tremer commit 7fd195938f0e4f48168148e2ca3f16e91d895241 Author: Arne Fitzenreiter Date: Thu Jan 7 14:55:59 2021 +0100 strace: update to 5.10 =20 Signed-off-by: Arne Fitzenreiter Signed-off-by: Michael Tremer commit 80b1dc64f2020c2771fd43460e6a07f348f0b4d9 Author: Michael Tremer Date: Wed Jan 13 10:44:16 2021 +0000 AWS: Ensure the product UUID is uppercase =20 Newer kernels seem to return this in lowercase format which makes the comparison to "EC2" fail. =20 Signed-off-by: Michael Tremer commit baa97123726d5e9d58af27595e7c9ad9bafa2a46 Author: Michael Tremer Date: Wed Jan 13 10:42:38 2021 +0000 AWS: Hypervisor UUID has been dropped from newer kernels =20 Signed-off-by: Michael Tremer commit 611c2b7103f6921a2cb11be26c799d7613793cfb Author: Michael Tremer Date: Tue Jan 12 10:43:52 2021 +0000 iw: Update to 5.9 =20 Signed-off-by: Michael Tremer commit a4cfeae49b531035c17463d2f4ea3db5010bc50a Author: Michael Tremer Date: Tue Jan 12 10:40:28 2021 +0000 core154: Ship WiFi changes =20 Signed-off-by: Michael Tremer commit 0eec4bbe46752aa732132436cf3aaff58be2e855 Author: Michael Tremer Date: Wed Jan 6 14:43:14 2021 +0000 wpa_supplicant: Import fresh default configuration =20 This enables some more features that have been added to wpa_supplicant over time. In our case we need SAE for WPA3 support. =20 Signed-off-by: Michael Tremer commit 3403eb308c7220cde9c08c555c2d263a1f1501d7 Author: Michael Tremer Date: Wed Jan 6 14:43:13 2021 +0000 wireless client: Try using SHA256 over SHA1 when possible =20 Signed-off-by: Michael Tremer commit 5addf347804340cef0808d6fb119b6092244dec6 Author: Michael Tremer Date: Wed Jan 6 14:43:12 2021 +0000 wireless client: Add support for WPA3 =20 Signed-off-by: Michael Tremer commit 0c2be650b04ba40a38e51188bce1821808d2e197 Author: Michael Tremer Date: Tue Jan 12 10:37:17 2021 +0000 core154: Ship setup =20 Signed-off-by: Michael Tremer commit 14cb18a5395cee2c9ff0ed13afdc5feca8d45514 Author: Arne Fitzenreiter Date: Sat Jan 9 18:39:00 2021 +0100 setup: move gateway setting to red address setting. =20 DEFAULT_GATEWAY is used only in RED_STATIC config so it fits better to this menu and is only selectable if red is set to static mode. =20 Signed-off-by: Arne Fitzenreiter Signed-off-by: Michael Tremer commit f0b53518e5b74ef7e7b432f1c627772253a5ea3a Author: Michael Tremer Date: Thu Jan 7 13:52:01 2021 +0000 flashrom: Only build package for x86_64 and i586 =20 The ARM architectures do not seem to be supported =20 Signed-off-by: Michael Tremer commit acc82ade06f1bf68e3d47630699d9f9745088311 Author: Michael Tremer Date: Thu Jan 7 11:57:53 2021 +0000 core154: Ship unbound initscript =20 Signed-off-by: Michael Tremer commit 2b113aebc482389692c9843a289ca489364a0c6f Author: Giovanni Aneloni Date: Tue Apr 28 00:23:57 2020 +0200 unbound: make local zone transparent =20 Change local zone to "trasnparent" instead of "typetrasnparent" to avoid = NXDOMAIN when querying local hosts =20 Fixes: #12391 Signed-off-by: Giovanni Aneloni Reviewed-by: Peter M=C3=BCller Acked-by: Michael Tremer Signed-off-by: Michael Tremer commit f8e0e85d2ef1231aec962604ea5a9d5814cba293 Author: Michael Tremer Date: Thu Jan 7 11:39:08 2021 +0000 flashrom: Update to 1.2 =20 Signed-off-by: Michael Tremer commit cc62cff43fc8bfba762fce51e48c18a0ceca3e0d Author: Michael Tremer Date: Thu Jan 7 11:37:01 2021 +0000 firmware-update: It is 2021 =20 Signed-off-by: Michael Tremer commit 1deb76d7fba31f1a547cd83a5ef99862a02f9f6c Author: Michael Tremer Date: Thu Jan 7 11:20:09 2021 +0000 firmware-update: Update to version 20200107 =20 Signed-off-by: Michael Tremer commit d701756a83e3fcf2fda0b85accc601b9799f7a0a Author: Michael Tremer Date: Wed Jan 6 17:27:36 2021 +0000 make.sh: Build gettext earlier =20 msgmerge is needed by attr =20 Signed-off-by: Michael Tremer commit eb2cf5d0f3971431d60c0d2e8b5807f8f112a983 Author: Michael Tremer Date: Wed Jan 6 15:33:36 2021 +0000 core154: Ship ddns.cgi =20 Signed-off-by: Michael Tremer commit 0562cdb360b28802427fc9f51d2e467788222109 Author: Stefan Schantl Date: Wed Jan 6 15:18:27 2021 +0100 ddns.cgi: Make dealing with auth tokens more user-friendly. =20 If a provider supports authentication with a token, now the username and password fileds will be swapped by some Java Script code in favour of an input field for the token. =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit f6557ced12d4e6137c8d2fa6d1a376aefb2a0052 Author: Michael Tremer Date: Wed Jan 6 15:32:41 2021 +0000 core154: Ship ddns =20 Signed-off-by: Michael Tremer commit 7d425e7cfa9767fedc460cf5e452a736163e738a Author: Stefan Schantl Date: Wed Jan 6 15:16:41 2021 +0100 ddns: Add latest upstream patches. =20 * Add patch to support listing of token providers. * Add fix to proper encode python string. =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit 211b6bc16e3d1c383e63835572c21d8f7ed63822 Author: Jonatan Schlag Date: Wed Jan 6 10:16:49 2021 +0000 unbound: keep probing when servers are down =20 Till now when a server was in the "blocking regime" there was one probe made every 15 min, to see if this server is up again. In situations where all servers where down (e.g. because of a massive package loss) it could take up to 15 min to have a working dns again. =20 This patch changes this behaviour in a way that a server marked down is probed every 2 min. =20 Fixes: #12557 =20 Signed-off-by: Jonatan Schlag Signed-off-by: Michael Tremer commit 02037c964fade3d58b0e4d9a05d3034955e8f5bc Author: Adolf Belka Date: Tue Jan 5 15:20:57 2021 +0100 sshfs: Update to 3.7.1 =20 - Update sshfs from 2.2 to 3.7.1 - Changelog is available at https://github.com/libfuse/sshfs/releases - Build had to be changed from autotools to meson/ninja - Change in rootfiles =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 6f20cb9688535efaf22cc490ffdcbed99088e67a Author: Michael Tremer Date: Wed Jan 6 15:21:32 2021 +0000 core154: Ship fuse =20 Signed-off-by: Michael Tremer commit 35b8dc552ddf08bd3d2290621076e323859b23cd Author: Adolf Belka Date: Tue Jan 5 15:21:19 2021 +0100 fuse: Update to 3.10.1 =20 - Update fuse from 2.9.7 to 3.10.1 - Update also required by sshfs update - Changelog is available at https://github.com/libfuse/libfuse/releases - Build had to be changed from autools to meson/ninja - Rootfiles changed - namespace conflict fix patch no longer required. Fix now built into ker= nel.h =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 8468f164abec32309e7c09bf044face0a153c56a Author: Michael Tremer Date: Wed Jan 6 15:17:50 2021 +0000 core154: Ship iproute2 =20 Signed-off-by: Michael Tremer commit 34866cace5ffbd587bab91a00d763fa18853746b Author: Adolf Belka Date: Wed Jan 6 14:43:59 2021 +0100 iproute2: Update to 5.10.0 =20 - Update from 5.8.0 to 5.10.0 - No changelog available - No changes to the rootfiles =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 6ae847429ed258ce3f7f50317bec3d4ed3efe6cc Author: Michael Tremer Date: Wed Jan 6 15:15:22 2021 +0000 core154: Ship iptables =20 Signed-off-by: Michael Tremer commit 84e4274e59912b854363597c97602432a9a5f615 Author: Adolf Belka Date: Wed Jan 6 14:43:27 2021 +0100 iptables: Update to 1.8.6 =20 - Update from 1.8.5 to 1.8.6 - Changelog info Arturo Borrero Gonzalez (1): xtables-translate: don't fail if help was requested =20 Giuseppe Scrivano (1): iptables: accept lock file name at runtime =20 Jan Engelhardt (2): doc: document danger of applying REJECT to INVALID CTs build: resolve iptables-apply not getting installed =20 Maciej =C5=BBenczykowski (1): libxtables: compiler warning fixes for NO_SHARED_LIBS =20 Pablo Neira Ayuso (4): extensions: libxt_conntrack: provide translation for DNAT and SNAT = --ctstate iptables: replace libnftnl table list by linux list iptables-nft: fix basechain policy configuration configure: bump version for 1.8.6 release =20 Phil Sutter (31): xtables-restore: Fix verbose mode table flushing build: Fix for failing 'make uninstall' xtables-translate: Use proper clear_cs function tests: shell: Add help output to run-tests.sh nft: Make table creation purely implicit nft: Be lazy when flushing nft: cache: Drop duplicate chain check nft: Drop pointless nft_xt_builtin_init() call nft: Turn nft_chain_save() into a foreach-callback nft: Use nft_chain_find() in two more places nft: Reorder enum nft_table_type nft: Eliminate table list from cache nft: Fix command name in ip6tables error message tests: shell: Merge and extend return codes test xtables-monitor: Fix ip6tables rule printing nft: Fix for ruleset flush while restoring Makefile: Add missing man pages to CLEANFILES nft: cache: Check consistency with NFT_CL_FAKE, too nft: Extend use of nftnl_chain_list_foreach() nft: Fold nftnl_rule_list_chain_save() into caller nft: Use nft_chain_find() in nft_chain_builtin_init() nft: Fix for broken address mask match detection extensions: libipt_icmp: Fix translation of type 'any' libxtables: Make sure extensions register in revision order libxtables: Simplify pending extension registration libxtables: Register multiple extensions in ascending order nft: Make batch_add_chain() return the added batch object nft: Fix error reporting for refreshed transactions libiptc: Avoid gcc-10 zero-length array warning nft: Fix for concurrent noflush restore calls tests: shell: Improve concurrent noflush restore test a bit - Rootfiles updated =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 248902f8c9a9ea1a8b549aff87344e024e1a1d8d Author: Adolf Belka Date: Tue Jan 5 18:35:16 2021 +0100 stunnel: Update to 5.57 =20 - Update of stunnel from 5.56 to 5.57 - Changelog Version 5.57, 2020.10.11, urgency: HIGH Security bugfixes The "redirect" option was fixed to properly handle "verifyChain = =3D yes" (thx to Rob Hoes). OpenSSL DLLs updated to version 1.1.1h. New features New securityLevel configuration file option. FIPS support for RHEL-based distributions. Support for modern PostgreSQL clients (thx to Bram Geron). Windows tooltip texts updated to mention "stunnel". TLS 1.3 configuration updated for better compatibility. Bugfixes Fixed a transfer() loop bug. Fixed memory leaks on configuration reloading errors. DH/ECDH initialization restored for client sections. Delay startup with systemd until network is online. bin\libssp-0.dll removed when uninstalling. A number of testing framework fixes and improvements. - No change to rootfiles =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 1a886f57d865e6cb568bb6bfe3e043cdd7c2dd0f Author: Michael Tremer Date: Wed Jan 6 11:51:36 2021 +0000 misc-progs: ipfirereboot: Remove unused cron functions =20 Signed-off-by: Michael Tremer commit 36f253d2911c56715b435acee2c14dd14a7cc828 Author: Michael Tremer Date: Wed Jan 6 11:39:32 2021 +0000 configroot: Make extrahd.pl executable =20 Signed-off-by: Michael Tremer commit 81790c8a002363bd4bddf46c3621e051c549f702 Author: Michael Tremer Date: Wed Jan 6 11:19:18 2021 +0000 misc-progs: Set some defaults for CONFIG_ROOT and SNAME =20 Signed-off-by: Michael Tremer commit 1a79ef8e43a4e406a79344341055dd9fa79ce57d Author: Michael Tremer Date: Tue Jan 5 17:17:33 2021 +0000 misc-progs: Drop unused upnpctrl =20 Signed-off-by: Michael Tremer commit f0c39f17390ce71960cf3c6fb06498a20634b263 Author: Michael Tremer Date: Tue Jan 5 17:15:11 2021 +0000 misc-progs: Drop unused updxsetperms =20 Signed-off-by: Michael Tremer commit 7908de2a952edc91b1effa6245dbb6dc80b7dafc Author: Michael Tremer Date: Tue Jan 5 17:02:44 2021 +0000 misc-progs: Drop unused ipfiredeath & ipfirerebirth =20 Signed-off-by: Michael Tremer commit 5cef36ccb14424270a451c11d235ece4dc3be946 Author: Michael Tremer Date: Tue Jan 5 16:59:14 2021 +0000 misc-progs: Drop unused applejuicectrl =20 Signed-off-by: Michael Tremer commit b37678e92231a7497820b2f39f040cccacfd808e Author: Michael Tremer Date: Tue Jan 5 16:53:36 2021 +0000 Package extended attributes in distro.img and Core Updates =20 System capabilities are stored in extended file system attributes which are by default not stored in tar balls. =20 This patch ensures that they are packaged and extracted. =20 Signed-off-by: Michael Tremer commit 241bf919fc2d056124c1082a0488bfa4c3fe8298 Author: Michael Tremer Date: Tue Jan 5 16:09:16 2021 +0000 make.sh: Build acl and attr earlier =20 These libraries are needed to link tar against them for extended attribute support =20 Signed-off-by: Michael Tremer commit d0a16dba2835fc1c27c1d12765d7461a9d48c04c Author: Michael Tremer Date: Mon Jan 4 10:44:56 2021 +0000 core154: Ship general-functions.pl =20 Signed-off-by: Michael Tremer commit 5b4e33bc3b754dd14ecc279bc421ec232a489507 Author: Adolf Belka Date: Sat Jan 2 13:54:45 2021 +0100 general-functions.pl: Update to fix bug #12428 =20 - Patch of general-functions.pl for implementation of fix provided by Bernhard Bitsch in bug #12428. Had to be modified as that fix gave a failure for single character hostn= ames. Updated version prevents spaces being put into hostnames and works for s= ingle character hostnames - Updated subroutine validfqdn to apply consistent rules for hostname & d= omain name portions of fqdn - Minor updates for consistency across validhostname, validdomainname & v= alidfqdn - Patch implemented into testbed system and confirmed working for hostnam= es, domain names and FQDN's. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 888a21f928d1eb79ae7049bdde394f54ebc39e2c Author: Matthias Fischer Date: Fri Jan 1 16:47:54 2021 +0100 wget: Update to 1.21 =20 Sorry, no changelog found, only: https://fossies.org/linux/wget/ChangeLog =20 Signed-off-by: Matthias Fischer Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 21970dd75f4f5a00b89f4cec4a56bb5c959c9407 Author: Michael Tremer Date: Sun Jan 3 11:18:06 2021 +0000 core154: Ship knot =20 Signed-off-by: Michael Tremer commit 3d725ebbec589c137f40c59296662b21583225e1 Author: Matthias Fischer Date: Fri Jan 1 10:58:16 2021 +0100 knot: Update to 3.0.3 =20 For details see: https://www.knot-dns.cz/2020-12-15-version-303.html =20 Signed-off-by: Matthias Fischer Reviewed-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 86bd9ccc951473f4e9ec3df7748a89b954beda1c Author: Michael Tremer Date: Sun Jan 3 11:17:28 2021 +0000 Drop unused Asterisk CGI files =20 Signed-off-by: Michael Tremer commit edd2710520fb2b762b1b4a05a0a34180ad30b7ae Author: Michael Tremer Date: Sun Jan 3 11:16:22 2021 +0000 Drop unused upnp.cgi =20 Signed-off-by: Michael Tremer commit 2b4110cd64721eb591a75e7bc0856afff4b4ff93 Author: Michael Tremer Date: Sun Jan 3 11:15:45 2021 +0000 core154: Ship updated CGI files =20 Signed-off-by: Michael Tremer commit 1d55fccdc58f56c7cea81b9c7c6a96aec89458ae Author: Matthias Fischer Date: Tue Dec 29 13:50:11 2020 +0100 Syntax fixes in several CGIs =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 15194c7c52c2438611832cecf4dad24fec304322 Author: Matthias Fischer Date: Tue Dec 29 13:36:21 2020 +0100 dhcpcd: Update to 9.4.0 =20 For details see: https://roy.marples.name/archives/dhcpcd-discuss/0003420.html =20 Former patch for Bug #12552 is now included. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit da310b22465c5147fa5d63bb763d9b1963726eb8 Author: Michael Tremer Date: Tue Dec 29 10:18:44 2020 +0000 core154: Ship logwatch =20 Signed-off-by: Michael Tremer commit e49289c9ea0d1ccd1462aa0012d00f434e8ac259 Author: Matthias Fischer Date: Fri Dec 25 13:07:18 2020 +0100 logwatch: Fix unmatched entries from clamav =20 This - cosmetic - patch fixes the unnecessary unmatched "Activating the n= ewly loaded database..."-entries introduced with 'clamav 0.103.0'. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 2127c97b8f738a1d2b75d817a42d73145bde257c Author: Michael Tremer Date: Tue Dec 29 10:17:09 2020 +0000 hostapd: Bump package version =20 Signed-off-by: Michael Tremer commit ed7f8152662d2371b7624fd4f26499f4236c35c2 Author: Matthias Fischer Date: Mon Dec 28 14:40:21 2020 +0100 wlanap.cgi: Cosmetic fix - replace 'Save' image with 'Save' button =20 Fixed syntax for "value".. =20 Thanks! =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 438fce1f19d6e01058dfa04b0d7fa308d574121a Author: St=C3=A9phane Pautrel Date: Tue Dec 29 10:16:08 2020 +0000 lang: Update French translation =20 Signed-off-by: Michael Tremer commit 2abcb7ee5f25becda8056c01c1e98faf80c57807 Author: Adolf Belka Date: Sun Dec 27 12:06:27 2020 +0100 bacula: Update to 9.6.7 =20 - Update bacula from 9.6.6 to 9.6.7 This is a minor bug release See https://sourceforge.net/projects/bacula/files/bacula/9.6.7/ReleaseNo= tes/ - This is the last of the version 9 series. The next update will be the v= ersion 11 series. - Update of lfs and rootfiles =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 2b4353a436af758876a043b8cbaa5819ebde3c6a Author: Adolf Belka Date: Sun Dec 27 19:59:29 2020 +0100 iperf3: Update to version 3.9 =20 - Update iperf3 from 3.7 to 3.9 - No changes to rootfiles - Update patch file to remove pg flag - Release notes from version 3.8 onwards:- =20 iperf 3.9 2020-08-17 -------------------- * Notable user-visible changes * A --timestamps flag has been added, which prepends a timestamp to each output line. An optional argument to this flag, which is a format specification to strftime(3), allows for custom timestamp formats (#909, #1028). * A --server-bitrate-limit flag has been added as a server-side command-line argument. It allows a server to enforce a maximum throughput rate; client connections that specify a higher bitrate or exceed this bitrate during a test will be terminated. The bitrate is expressed in bits per second, with an optional trailing slash and integer count that specifies an averaging interval over which to enforce the limit (#999). * A bug that caused increased CPU usage with the --bidir option has been fixed (#1011). * Notable developer-visible changes * Fixed various minor memory leaks (#1023). =20 iperf 3.8.1 2020-06-10 ---------------------- * Notable user-visible changes * A regression with "make install", where the libiperf shared library files were not getting installed, has been fixed (#1013 / #1014). =20 iperf 3.8 2020-06-08 -------------------- * Notable user-visible changes * Profiled libraries and binaries are no longer built by default (#950). * A minimal Dockerfile has been added (#824). * A bug with burst mode and unlimited rate has been fixed (#898). * Configuring with the --enable-static-bin flag will now cause a statically-linked iperf3 binary to be built (#989). * Configuring with the --without-sctp flag will now prevent SCTP from being auto-detected (#1008). This flag allows building a static binary (see above item) on a CentOS system with SCTP installed, because no static SCTP libraries are available. * Clock skew between the iperf3 client and server will no longer skew the computation of jitter during UDP tests (#842 / #990). * A possible buffer overflow in the authentication feature has been fixed. This was only relevant when configuration authentication using the libiperf3 API, and did not affect command-line usage. Various other improvements and fixes in this area were also made (#996). * Notable developer-visible changes * The embedded version of cJSON has been updated to 1.7.13 (#978). * Some server authentication functions have been added to the API (#911). * API access has been added to the connection timeout parameter (#1001). * Tests for some authentication functions have been added. * Various compiler errors and warnings have been fixed. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 382f92fa5b9f2064ccfd204c5fa7aa3b9a4b69a3 Author: Adolf Belka Date: Sun Dec 27 19:51:45 2020 +0100 iperf: Update to 2.0.14a =20 - Update from version 2.0.13 to 2.0.14a - No change in rootfiles - Release notes for change:- o scaling improvements for -P, i.e. improved support for large numbers o= f traffic threads o major code refactoring (see doc/DESIGN_NOTES) for maintainability, ext= ensibilty, performance, scaling, memory usage o support for full duplex traffic using --full-duplex o support for reverse traffic using --reverse o support for role-reversal character of asterisk in the transfer id o transfer id now an incrementing integer and no longer the socket id o support for TCP connect only tests with --connect-only o isochronous support compiled in by default, must use config to disable o support --isochronous for both UDP or TCP traffic to simulate video st= reams o use of clock_nanosleep when supported to schedule isochronous burst st= arts, otherwise use nanosleep delay o support for --trip-times indicating the client and server clocks are s= ynchronized to an accuracy sufficient, note: consider the use of precision ti= me protocol as well as ask your data center to provide access to a GPS discip= lined reference time source o support for --trip-times with -d and -r bidirectional tests o output TCP connect times (3WHS) in connect reports o support for application level tcp connect retries via --connect-retrie= s n o rate-limited options of -b and --fq-rate supported for unidirectional,= full duplex and reverse traffic o reporter thread designed to automatically cause packet reports to aggr= egate - mitigating and hopefully removing thread thrashing o support for frame or burst based reporting or sampling vs time based v= ia -i [f|F] (experimental) o support for UDP traffic only from client to server with --no-udp-fin o support for write to read latencies (UDP and TCP) with --trip-times o support for sum only outputs with --sum-only o support for little's law calculations in --trip-time outputs o support for --txstart-time to schedule client traffic sta= rt, timestamp support microseconds, e.g. unix $(expr $(date +%s) + 1).$(date = +%N) o support for --txdelay-time to insert delay between TCP three way hands= hake (3WHS) and data transfer o support for --no-connect-sync which disables transmit traffic start sy= nchronization when -P is used, defaults to synchronized o option of --full-duplex implementation uses a barrier on the client si= de to synchronize full duplex traffic o no limits to group sum reports, i.e. all clients will get its own sum = report per a server o improved report timestamps, e.g. end to end or client and server based= timestamps with --trip-times o improved settings messaging o improved messaging for --tcp-congestion or -Z o re-implemented -U for single UDP server with minimal threading interac= tions o re-implemented -1 or --singleclient where server will serialize traffi= c runs o warning message if the test were likely CPU bound instead of network i= /o bound o fix the case when -P is set on the server such that summing ou= tput is displayed o multicast listener will autoset -U (single server), e.g -P > 1 not sup= ported for multicast o multicast listener no longer busy drops multicast packets during traff= ic test, i.e. only server thread receives them o immediate bail out on mutually exclusive command line options o fix -o or --output using freopen to redirect stdout and stderr to a fi= le o man page updates with examples o tested with 1000's of traffic streams, WiFi, 10G and 100G =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 3a4d52603d6af0c239da3a3ab18c7ed3055cbfa1 Author: Michael Tremer Date: Sun Dec 27 10:58:37 2020 +0000 core154: Ship new procps =20 Signed-off-by: Michael Tremer commit 50992c73210f05384a976dbe21843c37734b4a3f Author: Adolf Belka Date: Sat Dec 26 17:40:32 2020 +0100 procps: Update to 3.3.16 =20 - update from 3.2.8 to 3.3.16 This is also an update from procps to procps-ng The previous version was no longer being maintained. - Added autogen.sh into lfs as ity is needed to create the config script. - Added libdir=3D/lib line into configure command as default is /usr/lib - Added mv commands for kill, ps & sysctl to place them into the same loc= ations as the previous version of procps - Moved lfsmake2 procps line to after pkg-config in make.sh The autogen line requires autoconf, libtool, gettext and pkg-config to be available so procps moved to after them. - procps-3.2.8-fix_unknown_HZ_value.patch no longer required with new version so removed. - rootfile updated. - libprocps library being maintained by the same people now maitaining th= is version of procps. - information on the releases from 3.3.13 to 3.3.16 available on https://gitlab.com/procps-ng/procps/-/releases =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 986a116beb92399d9574e1552e0e2a0d6fc614f3 Author: Michael Tremer Date: Sun Dec 27 10:37:59 2020 +0000 meson: Update MD5 checksum =20 Signed-off-by: Michael Tremer commit e1616eb4509bda0f4c892f992c3324980c796ebb Author: Stefan Schantl Date: Sat Dec 26 18:09:24 2020 +0100 make.sh: Limit ninja to compute paralellism value =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit 9c51467d05d765fad1788be478b41412192af8d9 Author: Stefan Schantl Date: Sat Dec 26 18:09:23 2020 +0100 ninja: Allow to limit the parallel build processes. =20 When run, ninja normally runs a maximum number of processes in parallel. By default this is the number of cores on the system plus two. In some ca= ses this can overheat a CPU or run a system out of memory. If run from the command lin= e, passing a -jN parameter will limit the number of parallel processes, but some packa= ges embed the execution of ninja and do not pass a -j parameter. =20 Using this optional procedure allows us to limit the number of parallel p= rocesses via an environment variable, NINJAJOBS. =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit 814a33ff4d5032e641c673973c66f31c8ebe77eb Author: Stefan Schantl Date: Sat Dec 26 17:48:00 2020 +0100 make.sh: Build ninja and meson. =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit 630e8601f839c2a0e93900000c10363057b2fe7d Author: Stefan Schantl Date: Sat Dec 26 17:47:59 2020 +0100 meson: New package. =20 More and more packages uses meson as build environment instead of autotools or cmake. =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit f8c5644dc5facad5a1b3a0265ff4ff3bf9f6fe49 Author: Stefan Schantl Date: Sat Dec 26 17:47:58 2020 +0100 ninja: New package =20 This tool required to build more and more packages. =20 Signed-off-by: Stefan Schantl Signed-off-by: Michael Tremer commit 73a92c604cf27df8b31c3ae15f0d6981e88b504d Author: Michael Tremer Date: Thu Dec 24 12:01:12 2020 +0000 Run "./make.sh lang" =20 Signed-off-by: Michael Tremer commit 642316370f9cfa65175ae1cbed462a3b6c59622c Author: Michael Tremer Date: Thu Dec 24 12:00:39 2020 +0000 core154: Ship pakfire.cgi =20 Signed-off-by: Michael Tremer commit 6666b93d11b3add035baaf5a41a1ef16f4da9e19 Author: Matthias Fischer Date: Thu Dec 24 01:09:04 2020 +0100 Update (and cosmetic fixes) for 'pakfire.cgi': Added GUI entry for existi= ng, but unused translation string =20 While preparing the Core153 update, I found by chance that a language str= ing had been added from Core152 to Core153 which I couldn't find in any CGI-file. =20 The translation suggested that this string ('Available Updates') could be= long to 'pakfire.cgi'. =20 And I thought that on the pakfire GUI something was actually missing: the= heading above the box listing the 'Available Updates'. Don't know why I didn't saw this bef= ore. =20 So tried to add these missing heading. I hope I made it right... =20 Some cosmetic fixes: I also added some space around the text for 'Available Addons' and 'Insta= lled Addons' because the text lines weren't separated. There is no seen wordwrapping. = This required deleting some unwanted '
' in the affected translation strings. =20 I tried this about 4 years ago, but somehow this patch got lost. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 0b1d45849f9df9ac145359a02cd383c7baff6c5b Author: Michael Tremer Date: Thu Dec 24 11:59:46 2020 +0000 core154: Ship country.cgi =20 Signed-off-by: Michael Tremer commit f65629dd479a2846e9e4b1af910bf879d133e186 Author: Matthias Fischer Date: Thu Dec 24 11:56:13 2020 +0100 country.cgi: Cosmetic fix for 'Back'-button' =20 While testing Peter's patch for Bug #12560 I noticed that the standard 'b= ack'-button at the end of the page - like in 'ipinfo.cgi' - was implemented as a text= string. =20 I just took the code segment with the 'back'-*image* from 'ipinfo.cgi' to= make this link looking similar to the other pages. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 4ed49291c2eb23e7043721ed55f07c0135440dcb Author: Peter M=C3=BCller Date: Thu Dec 24 09:19:15 2020 +0100 country.cgi: fix location function call =20 Fixes: #12560 =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit d96d979e2a0bb199b5ae7bec75964f4091996268 Author: Matthias Fischer Date: Thu Dec 24 00:06:55 2020 +0100 dhcpcd: Update to 9.3.4 =20 For details see: https://roy.marples.name/archives/dhcpcd-discuss/0003334.html =20 This version contains the official fix from here: https://roy.marples.name/cgit/dhcpcd.git/commit/?id=3D12cdb2be46e25e1ab99= df18324b787ad8749dff7 =20 This should fix Bug #12552 (dhcpcd-9.3.4 crash with bad system call) on 32bit/i686 systems. =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 631b7056acfd21f03b21f446eb6b26e5bd86f699 Author: Matthias Fischer Date: Thu Dec 24 01:15:19 2020 +0100 htop: Update to 3.0.4 =20 For details see: https://github.com/htop-dev/htop/blob/master/ChangeLog =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 03bebd2303f560626ed2e465967a6b7846f21644 Author: Michael Tremer Date: Wed Dec 23 14:36:04 2020 +0000 core154: Ship libloc =20 Signed-off-by: Michael Tremer commit f31c8d2adec2f629aedcd7c3db5d15a6bdf42e94 Author: Peter M=C3=BCller Date: Wed Dec 23 15:03:32 2020 +0100 libloc: update to 0.9.5 and backport fix for #12554 =20 This patch updates libloc to 0.9.5, deletes the upstream patchset from version 0.9.4, and includes a latest upstream patch to backport a fix for #12554. =20 Cc: Michael Tremer Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 5189d54a2f3eb30feea999beb42e753b592c0671 Author: Michael Tremer Date: Wed Dec 23 14:32:30 2020 +0000 core154: Ship remote.cgi =20 Signed-off-by: Michael Tremer commit 05f68686a0c4259ad2fcb96e2ea3d2fa71e40a77 Author: Peter M=C3=BCller Date: Tue Dec 22 17:01:25 2020 +0100 remote.cgi: cosmetic changes =20 - Swap colour generation to improve readability in case of no active SSH = logins - Unify table layout - Improve German "SSH host key" translation to avoid Deppenleerzeichen =20 This patch does not introduce functional changes. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 79feb120a0827f47df14e6fbb6b32970bc36d04a Author: Peter M=C3=BCller Date: Tue Dec 22 12:31:09 2020 +0100 Postfix: update to 3.5.8 =20 Please refer to http://www.postfix.org/announcements/postfix-3.5.8.html for the release announcement of this version. =20 The second version of this patch should correctly apply against next, while the first did not due to human error and/or lack of coffee. :-/ =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit e9fbd9293a8732e8be47eed8d5da85e4a257c897 Author: Peter M=C3=BCller Date: Mon Dec 21 22:25:34 2020 +0100 texinfo: update to 6.7 =20 Full changelog as retrieved from https://git.savannah.gnu.org/cgit/texinf= o.git/plain/NEWS: =20 6.7 (23 September 2019) * Language: . support of index subentries and sub-subentries with @subentry . new commands @seeentry and @seealso in index entries . no need to wrap Top node in @ifnottex - omitted automatically when processed with TeX . UTF-8 is the default input encoding =20 * texi2any . for HTML output, mark index nodes in menus and tables of contents with the 'rel' attribute of the 'a' tag. . TOP_NODE_UP is now only used in HTML if TOP_NODE_UP_URL is set. Also TOP_NODE_UP should now be formatted in the output format. In HTML TOP_NODE_UP should be suitable for inclusion in HTML element attributes, so for instance should not contain elements. . support of noderename.cnf files has been removed . INPUT_PERL_ENCODING, INPUT_ENCODING_NAME, NODE_FILE_EXTENSION, NODE_FILENAMES, SHORTEXTN and TOP_NODE_FILE removed as customization variables. . TOP_NODE_FILE_TARGET now contains the extension. . error messages translated when the XS parser module is in use =20 * texi2dvi . unconditionally run in --batch mode, i.e. without stopping if there is a TeX error . keep on going after a TeX error if the index files changed . with --tidy (or --build-dir), avoid reading index files from previous runs where --tidy was not used =20 * info . for a tree search (with M-/), '}' and '{' work as well as 'M-}' and 'M-{' to go through the results =20 * Distribution: . Several obsolete portability checks removed . gettext 0.20.1, automake 1.16.1 =20 No rootfile changes were necessary. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 6f56c219deda7feb97220dccd525187c0e7151ba Author: Peter M=C3=BCller Date: Mon Dec 21 20:02:10 2020 +0100 ccache: update to 3.7.12 =20 Please refer to https://ccache.dev/news.html#2020-10-01 for a list of all release notes since version 3.4.1, it is unfortunately way too long to be added here. :-] =20 Since ccache is not part of the distribution itself, no rootfile updates were necessary. =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 9f87208cd77722c2588822b6a7df028e10fc4a39 Author: Michael Tremer Date: Mon Dec 21 21:33:36 2020 +0000 core154: Ship sshctrl =20 Signed-off-by: Michael Tremer commit fe0984e07bb48922acae5a4993503455df9dec0d Author: Peter M=C3=BCller Date: Mon Dec 21 21:55:43 2020 +0100 sshctrl: when enable or disable AllowTcpForwarding, change PermitOpen acc= ordingly =20 Fixes: #12546 =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 7d8a116a41354743de76e989d67fd79f7de8abfe Author: Michael Tremer Date: Mon Dec 21 21:30:05 2020 +0000 core154: Ship ca-certificates =20 Signed-off-by: Michael Tremer commit 96adf682bcb7640a9ef8e5caab9f93a887bd0271 Author: Peter M=C3=BCller Date: Mon Dec 21 21:59:04 2020 +0100 update ca-certificates CA bundle =20 Update the CA certificates list to what Mozilla NSS ships currently. =20 The original file can be retrieved from: https://hg.mozilla.org/mozilla-central/raw-file/tip/security/nss/lib/ckfw= /builtins/certdata.txt =20 Signed-off-by: Peter M=C3=BCller Signed-off-by: Michael Tremer commit 4af97be3029bfd4e857d1c5a7d764528e7fbdd5e Author: Michael Tremer Date: Mon Dec 21 16:48:51 2020 +0000 core154: Ship dhcp.cgi =20 Signed-off-by: Michael Tremer commit 9dbf3c4936395bebc5db124382209b8cd3fcb241 Author: Adolf Belka Date: Wed Dec 16 13:33:22 2020 +0100 Fix for bug 10743 =20 This adds in the option to have "deny known clients" in dhcpd.conf This is applied to the range command so applies to the dynamic addresses given. If you have just a range statement say in blue then if you are not using vlans you could have the situation where a known host in green might end up getting a lease from the blue range. Here a deny known-clients makes sense. Your range in this case would be limited to only unknown clients if deny known-clients was selected. dhcp WUI has been modified to add in this command. Error message has been added to check that a range has been specified if the deny unknown clients checkbox has been selected. Language files updated with additional items (English, German & Dutch). =20 For more information on the history of this please see the bugzilla entry Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit fef289cef78c9041615eda22180b56294b6354e2 Author: Adolf Belka Date: Mon Dec 21 12:23:57 2020 +0100 dehydrated: Update to 0.7.0 =20 - Update dehydrated from 0.6.5 to 0.7.0 - No changes to the rootfiles - This update patch also addresses bug #12425 The changes from the interim patch mentioned in bug #12425 are included = into this update - Changes for all releases can be found at https://github.com/dehydrated-= io/dehydrated/releases - Changes for this version update Added Support for external account bindings Special support for ZeroSSL Support presets for some CAs instead of requiring URLs Allow requesting preferred chain (--preferred-chain) Added method to show CAs current terms of service (--display-terms) Allow setting path to domains.txt using cli arguments (--domains-txt) Added new cli command --cleanupdelete which deletes old files instead of= archiving them =20 Fixed No more silent failures on broken hook-scripts Better error-handling with KEEP_GOING enabled Check actual order status instead of assuming it's valid Don't include keyAuthorization in challenge validation (RFC compliance) =20 Changed Using EC secp384r1 as default certificate type Use JSON.sh to parse JSON Use account URL instead of account ID (RFC compliance) Dehydrated now has a new home: https://github.com/dehydrated-io/dehydrat= ed Added OCSP_FETCH and OCSP_DAYS to per-certificate configurable options Cleanup now also removes dangling symlinks =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 9cea690a93be0373a01163caf2848e5e526813ae Author: Adolf Belka Date: Sun Dec 20 19:47:58 2020 +0100 htop: Update to 3.0.3 =20 - Update htop from 3.0.2 to 3.0.3 See the Change Log for details of changes https://github.com/htop-dev/htop/blob/master/ChangeLog - Rootfiles updated =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 9ee802c508e56415f9150a450affb649b7951cdf Author: Adolf Belka Date: Fri Dec 18 22:07:16 2020 +0100 hplip: Update to 3.20.11 =20 - Update from 3.18.6 to 3.20.11 (16 updates) - See Release notes for bug fixes and support for additional printers https://sourceforge.net/p/hplip/news/ - Update of rootfile :-) =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 34081d2f239df9481da9f614dcdbf582f4f44a01 Author: Matthias Fischer Date: Fri Dec 18 18:54:31 2020 +0100 bind: Update to 9.11.26 =20 For details see: https://downloads.isc.org/isc/bind9/9.11.26/RELEASE-NOTES-bind-9.11.26.ht= ml =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 60aab42a632b36d01e9fa1c85a910462dd0e1273 Author: Michael Tremer Date: Sun Dec 20 09:46:16 2020 +0000 Revert "htop: Update to 3.0.3" =20 This reverts commit ce26b2a364fbf884e2d715349fb6a8d329f99633. =20 Signed-off-by: Michael Tremer commit 8e3c15e687fa892c8ca167c3242ff1f51747ada7 Author: Michael Tremer Date: Fri Dec 18 16:49:11 2020 +0000 Revert "dhcpcd: Update to 9.3.4" =20 This reverts commit 64dfe751428c2cac0c1d700fb71054166973e567. =20 This version does not run in i686 as reported in #12552. =20 Signed-off-by: Michael Tremer commit f6ede20a629fc1b56bf4910729819ff4c7716f23 Author: Adolf Belka Date: Fri Dec 18 17:35:41 2020 +0100 acpid: Update to 2.0.32 =20 - Update acpid from 2.0.28 to 2.0.32 - Full changelog is available in the source file. 2.0.29 2018-04-16 Ted Felix - 2.0.29 release (configure.ac) (Ted Felix) - Decouple -d and -f options. Bug #15. (acpid.8 acpid.c acpid.h log.c log.h TESTPLAN) (Casper Ti. Ve= ctor) - Rename acpid_debug -> debug_level. (acpid.c event.c log.c log.h) (Ted Felix) - Standards: man page command references. (acpid.8 kacpimon/kacpimon.8) (Ted Felix) - Log missing input layer as a warning. (inotify_handler.c) (Ted Felix) 2.0.30 2018-07-18 Ted Felix - 2.0.30 release (configure.ac) (Ted Felix) - configure: Don't use AC_FUNC_MALLOC, AC_FUNC_REALLOC. (configure.ac) (Robin Gloster ) - samples: powerbtn: extend the list of known PMS (powerbtn.sh) (Andrey Utkin ) - samples: powerbtn: fix kde4 power management detection (powerbtn.sh) (Andrey Utkin ) 2.0.31 2018-11-15 Ted Felix - 2.0.31 release (configure.ac) (Ted Felix) - Add events for keyboard illumination up/down (input_layer.c) (Lars-Dominik Braun) - kacpimon: Bump connection limit to 100 Debian #909399 (kacpimon/connection_list.c) (Ted Felix) 2.0.32 2019-08-15 Ted Felix - 2.0.32 release (configure.ac) (Ted Felix) - Remove filename argument from --nosocket option Bug #17 (acpid.c acpid.8) (Ted Felix) - Fix race during startup Bug #18. Debian #933230. (acpid.c input_layer.c) (anomie) - No change to rootfile =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 471407756443b33d82e6d52559399c995aa624fa Author: Adolf Belka Date: Thu Dec 17 21:01:59 2020 +0100 bird: Update to 2.0.7 =20 Update bird from 2.0.6 to 2.0.7 Changes from changelog - BGP: Fix reconfiguration with import table *Change of some options requires route refresh, but when import ta= ble is active, channel reload is done from it instead of doing full route refresh. So in this case we request it internally. - Doc: Minor documentation fixes - Nest: Handle non-MPLS on MPLS case in recursive route update *When non-MPLS recursive route resolves to MPLS underlying route, then it should get MPLS labels from the the underlying route. - Nest: Handle PtP links in recursive route update *Underlying (IGP) route may lead to PtP link, in this case it does= not need gateway. Which is different than direct route without gateway. *When recursive (BGP) route uses PtP route, it should not use recu= rsive next hop as immediate next hop, while for direct routes it should. - Nest: Fix recursive route update *Missing cleanup can lead to dangling pointer to old next hops. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit ce26b2a364fbf884e2d715349fb6a8d329f99633 Author: Adolf Belka Date: Thu Dec 17 17:13:28 2020 +0100 htop: Update to 3.0.3 =20 Update htop from 3.0.2 to 3.0.3 See the Change Log for details of changes https://github[.]com/htop-dev/htop/blob/master/ChangeLog Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit d7f3843d67b2e913effa57ce19e50e85dbbfeeee Author: Michael Tremer Date: Fri Dec 18 09:45:32 2020 +0000 core154: Ship sqlite =20 Signed-off-by: Michael Tremer commit 58303fb9f0e7a02ebf1a5f15cef5387f1945e3e0 Author: Adolf Belka Date: Wed Dec 16 19:28:05 2020 +0100 sqlite: Update to 3.34.0 =20 -Update sqlite from 3.26.0 to 3.34.0 See https://sqlite[.]org/chronology[.]html for history between these releases. -Have reviewed all release notes between these two releases and there are no deprecations. -No change to rootfile. Signed-off-by: Adolf Belka =20 Signed-off-by: Michael Tremer commit 7e09bcbc45695026592ac4169f9aa18bb8fb811e Author: Arne Fitzenreiter Date: Wed Dec 16 16:22:02 2020 +0100 dracut: add hyperv-keyboard module to initrd. =20 the missing module should be the reason for not responding setup on some hyper-v configurations. =20 Signed-off-by: Arne Fitzenreiter commit e6575e1a58cce7aeef56b142560890a384eecd2d Merge: b954ae275 c4f1f5615 Author: Michael Tremer Date: Wed Dec 16 10:33:36 2020 +0000 Merge branch 'master' into next commit b954ae2750e4d36323cc497563fa7c12420df5e4 Author: Michael Tremer Date: Mon Dec 14 09:35:37 2020 +0000 core154: Ship libhtp =20 Signed-off-by: Michael Tremer commit ea7a9a4b2fccaa7320702588cd31c919d08f1160 Author: Matthias Fischer Date: Sat Dec 12 10:18:30 2020 +0100 libhtp: Update to 0.5.36 =20 For details see: https://github.com/OISF/libhtp/releases =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit a410004c610f8b21f9372056523a419085dbb3b7 Author: Michael Tremer Date: Thu Dec 10 13:18:26 2020 +0000 shairport-sync: Update to 3.3.7 =20 Signed-off-by: Michael Tremer commit c84046215309c2c5dec62f4a87fd86d9e5bf8fb0 Author: Michael Tremer Date: Thu Dec 10 13:04:38 2020 +0000 core154: Ship PAM =20 Signed-off-by: Michael Tremer commit 904b8b625966c05324e39e5e2d9081555978f92e Author: ummeegge Date: Sun Dec 6 10:08:59 2020 +0000 Pam: Update to version 1.5.1 =20 Several fixes and improvements since the current available 1.3.1 version = are included. CVE-2020-27780 has also been fixed. For a full release overview --> https://github.com/linux-pam/linux-pam/re= leases . =20 Signed-off-by: ummeegge Signed-off-by: Michael Tremer commit babe22939080474f8285eea24d2abc7ce1b1addc Author: Michael Tremer Date: Thu Dec 10 13:02:43 2020 +0000 core154: Ship unbound =20 Signed-off-by: Michael Tremer commit 5fd8c3e1f5e3a470f283485e562a9a41242265bd Author: Matthias Fischer Date: Sun Dec 6 10:43:54 2020 +0100 unbound: Update to 1.13.0 =20 For details see: https://lists.nlnetlabs.nl/pipermail/unbound-users/2020-December/007102.h= tml =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit ebbda8ed863ac1eb29c549c015a363dea83fa580 Author: Michael Tremer Date: Thu Dec 10 13:01:45 2020 +0000 core154: Ship dhcpcd =20 Signed-off-by: Michael Tremer commit 64dfe751428c2cac0c1d700fb71054166973e567 Author: Matthias Fischer Date: Sun Dec 6 10:39:05 2020 +0100 dhcpcd: Update to 9.3.4 =20 For details see: https://roy.marples.name/blog/dhcpcd-9-3-4-released.html =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 8d3135455f05de92c6b1f22a4b8b2020903f80a6 Author: Michael Tremer Date: Thu Dec 10 13:00:51 2020 +0000 core154: Ship bind =20 Signed-off-by: Michael Tremer commit fde5772fde4f47b923493c558280a70716bd6116 Author: Matthias Fischer Date: Sun Dec 6 10:34:07 2020 +0100 bind: Update to 9.11.25 =20 For details see: https://downloads.isc.org/isc/bind9/9.11.25/RELEASE-NOTES-bind-9.11.25.ht= ml =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit d7f93218b154f30a3b603956ebfa0d41aa48fa15 Author: Michael Tremer Date: Thu Dec 10 13:00:06 2020 +0000 core154: Ship services.cgi =20 Signed-off-by: Michael Tremer commit d978558809285afcee56b2120b10d9107b1b260b Author: Adolf Belka Date: Mon Dec 7 15:01:36 2020 +0100 Fix for bug 12539 =20 The installer recognises cups and cups-filters both as cups and puts two instances of cups in the add-on services table. Based on input from Michael Tremer this patch replaces the command returning the second element between hyphens with one that takes what comes after "meta-" using Perl code rather than a shell command. The second find command was changed as per Michael's suggestion. =20 Tested in my ipfire test bed system and only results in one cups entry. Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 50752f1b61997b60e7850d41d5c633a688ab1353 Author: ummeegge Date: Mon Dec 7 14:23:05 2020 +0000 kerberos: Update to version 1.18.3 =20 Since version 1.15.2 several fixes and enhancements has been introduced. For a full overview the release notes can be found in the next lines. =20 https://web.mit.edu/kerberos/krb5-1.16/ https://web.mit.edu/kerberos/krb5-1.17/ https://web.mit.edu/kerberos/krb5-1.18/ =20 Signed-off-by: ummeegge Signed-off-by: Michael Tremer commit 14baf8472a74b18ff1779a9caf534a8af91e0134 Author: ummeegge Date: Sun Dec 6 15:03:45 2020 +0000 tshark: Update to version 3.4.0 =20 - Since tshark uses since 3.4.0 an always enabled asynchronous DNS resolution, c-ares is a needed dependency. - Since the current actual version 3.2.6 a lot of bug fixes, fixed vulnerabilities, updated features, new protocols but also updated protocols has been integrated. A full overview of all changes can be found in here --> Update to version 3.2.7: https://www.wireshark.org/docs/relnotes/wireshark-3.2.7.html Update to version 3.2.8: https://www.wireshark.org/docs/relnotes/wireshark-3.2.8.html Update to version 3.4.0 https://www.wireshark.org/docs/relnotes/wireshark-3.4.0.html =20 Signed-off-by: ummeegge Signed-off-by: Michael Tremer commit d44ce7d4c25e9a1d0a8a358c0f16a17d1d417cf1 Author: ummeegge Date: Sun Dec 6 15:03:44 2020 +0000 c-ares: New package. Needed as tshark Dependency =20 - Since tshark uses with version 3.4.0 an always enabled asynchronous DNS resolution c-ares is a needed dependency. - Since curl can also use c-ares --> https://c-ares.haxx.se/ it has been placed in make.sh before curl even no compiletime options has been set to enable this. c-ares has also been placed in packages and not in common which would be needed if it should be used for curl too. =20 Signed-off-by: ummeegge Signed-off-by: Michael Tremer commit ca4ce968000125f237da77da6bcf88738ec6b060 Author: Matthias Fischer Date: Sun Dec 6 10:46:36 2020 +0100 nano: Update to 5.4 =20 For details see: https://www.nano-editor.org/news.php =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit 0f4d1a8e6b37a4ac1b9cb64bc34f9d4b31423099 Author: Matthias Fischer Date: Sun Dec 6 00:26:21 2020 +0100 monit: Update to 5.27.1 =20 For details see: https://mmonit.com/monit/changes/ =20 Signed-off-by: Matthias Fischer Signed-off-by: Michael Tremer commit c2f02d9d5977d7ead634760bc8987bafbfc62370 Author: Adolf Belka Date: Sat Dec 5 15:51:11 2020 +0100 bacula: Update to use IPFire initscript =20 Bacula install used the bacula initscript for starting and stopping bacul= a. This works fine but results in no pid or memory input in the addons table under services. Using the IPFire initscript also successfully starts and stops bacula with no problems but also provides the pid and memory information in the servi= ces addons table. - rootfiles adjusted to remove the reference to bacula-ctl-fd - lfs/bacula adjusted to remove the init.d/bacula link generation remove the "rm -f /root/.rnd" command. This file is not pres= ent and I have not seen this command in any other lfs file that I have looked at. - new bacula initscript created =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 86a7c165a1a3afdf21734aad5291403440d04d08 Author: Michael Tremer Date: Thu Dec 10 12:28:12 2020 +0000 Start Core Update 154 =20 Signed-off-by: Michael Tremer ----------------------------------------------------------------------- hooks/post-receive -- IPFire 2.x development tree --===============4458218738061437278==--