From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Tremer To: ipfire-scm@lists.ipfire.org Subject: [git.ipfire.org] IPFire 2.x development tree branch, next, updated. 0d7c058c321283ed7bf090b993037b01a9535c69 Date: Fri, 25 Aug 2023 17:28:54 +0000 Message-ID: <4RXRkv43xCz2xSt@people01.haj.ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============7141239460320249918==" List-Id: --===============7141239460320249918== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "IPFire 2.x development tree". The branch, next has been updated via 0d7c058c321283ed7bf090b993037b01a9535c69 (commit) via 7fb17d735985e037e6e60307b0f129ce98e9f6f4 (commit) via 8d5a43f00b94ab84d3fe3673d2e81f101818348f (commit) via d45c4768f957404167da3595b5663858e9b63dde (commit) from 84d0ccd6bcefd5db00a07e1d533ce0d15663656f (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 0d7c058c321283ed7bf090b993037b01a9535c69 Author: Michael Tremer Date: Fri Aug 25 17:28:37 2023 +0000 core180: Ship SQLite =20 Signed-off-by: Michael Tremer commit 7fb17d735985e037e6e60307b0f129ce98e9f6f4 Author: Adolf Belka Date: Fri Aug 25 13:00:43 2023 +0200 sqlite: Update to version 3430000 =20 - Update from version 3420000 to 3430000 - Update of rootfile not required. - Changelog 3430000 Add support for Contentless-Delete FTS5 Indexes. This is a variety of FT= S5 full-text search index that omits storing the content that is be= ing indexed while also allowing records to be deleted. Enhancements to the date and time functions: Added new time shift modifiers of the form =C2=B1YYYY-MM-DD HH:MM:SS= .SSS. Added the timediff() SQL function. Added the octet_length(X) SQL function. Added the sqlite3_stmt_explain() API. Query planner enhancements: Generalize the LEFT JOIN strength reduction optimization so that it = works for RIGHT and FULL JOINs as well. Rename it to OUTER JOIN streng= th reduction. Enhance the theorem prover in the OUTER JOIN strength reduction opti= mization so that it returns fewer false-negatives. Enhancements to the decimal extension: New function decimal_pow2(N) returns the N-th power of 2 for integer= N between -20000 and +20000. New function decimal_exp(X) works like decimal(X) except that it ret= urns the result in exponential notation - with a "e+NN" at the end. If X is a floating-point value, then the decimal(X) function now doe= s a full expansion of that value into its exact decimal equivalent. Performance enhancements to JSON processing results in a 2x performance improvement for some kinds of processing on large JSON strings. New makefile target "verify-source" checks to ensure that there are no unintentional changes in the source tree. (Works for canonical s= ource code only - not for precompiled amalgamation tarballs.) Added the SQLITE_USE_SEH compile-time option that enables Structured Exc= eption Handling on Windows while working with the memory-mapped shm fil= e that is part of WAL mode processing. This option is enabled by default when buil= ding on Windows using Makefile.msc. The VFS for unix now assumes that the nanosleep() system call is availab= le unless compiled with -DHAVE_NANOSLEEP=3D0. =20 Signed-off-by: Adolf Belka Signed-off-by: Michael Tremer commit 8d5a43f00b94ab84d3fe3673d2e81f101818348f Author: Michael Tremer Date: Fri Aug 25 17:25:23 2023 +0000 dhcpcd: Fix buffer overflow at startup =20 Fixes: #13252 - dhcpcd fails in next Signed-off-by: Michael Tremer commit d45c4768f957404167da3595b5663858e9b63dde Author: Michael Tremer Date: Fri Aug 25 09:42:23 2023 +0000 pakfire: Don't give up mirror search on status code 500 =20 The WWW library seems to report status code 500 for issues like DNS resolving problems and connection timeouts. In that case, we won't go on searching for another functioning mirror, which we should. =20 This patch removes that special break clause. =20 Signed-off-by: Michael Tremer ----------------------------------------------------------------------- Summary of changes: config/rootfiles/core/180/filelists/files | 1 + .../{oldcore/125 =3D> core/180}/filelists/sqlite | 0 lfs/dhcpcd | 2 ++ lfs/sqlite | 4 ++-- src/pakfire/lib/functions.pl | 5 ---- ...-10.0.2-fix-off-by-one-overflow-when-read.patch | 26 ++++++++++++++++++++ ...rivsep-fix-strlcpy-overflow-in-psp-ifname.patch | 28 ++++++++++++++++++++= ++ 7 files changed, 59 insertions(+), 7 deletions(-) copy config/rootfiles/{oldcore/125 =3D> core/180}/filelists/sqlite (100%) create mode 100644 src/patches/dhcpcd-10.0.2-fix-off-by-one-overflow-when-re= ad.patch create mode 100644 src/patches/dhcpcd-10.0.2-privsep-fix-strlcpy-overflow-in= -psp-ifname.patch Difference in files: diff --git a/config/rootfiles/core/180/filelists/files b/config/rootfiles/cor= e/180/filelists/files index 7031204b9..d08a282a6 100644 --- a/config/rootfiles/core/180/filelists/files +++ b/config/rootfiles/core/180/filelists/files @@ -1,2 +1,3 @@ +opt/pakfire/lib/functions.pl srv/web/ipfire/cgi-bin/index.cgi var/ipfire/main/manualpages diff --git a/config/rootfiles/core/180/filelists/sqlite b/config/rootfiles/co= re/180/filelists/sqlite new file mode 120000 index 000000000..4ea569766 --- /dev/null +++ b/config/rootfiles/core/180/filelists/sqlite @@ -0,0 +1 @@ +../../../common/sqlite \ No newline at end of file diff --git a/lfs/dhcpcd b/lfs/dhcpcd index 909de6e57..2323b6104 100644 --- a/lfs/dhcpcd +++ b/lfs/dhcpcd @@ -71,6 +71,8 @@ $(TARGET) : $(patsubst %,$(DIR_DL)/%,$(objects)) @$(PREBUILD) @rm -rf $(DIR_APP) && cd $(DIR_SRC) && tar axf $(DIR_DL)/$(DL_FILE) cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/dhcpcd-10.0.2-Allow-fr= ee-selection-of-MTU-by-the-user.patch + cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/dhcpcd-10.0.2-fix-off-= by-one-overflow-when-read.patch + cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/dhcpcd-10.0.2-privsep-= fix-strlcpy-overflow-in-psp-ifname.patch cd $(DIR_APP) && ./configure \ --prefix=3D"" \ --sysconfdir=3D/var/ipfire/dhcpc \ diff --git a/lfs/sqlite b/lfs/sqlite index d059bb068..01477e47d 100644 --- a/lfs/sqlite +++ b/lfs/sqlite @@ -24,7 +24,7 @@ =20 include Config =20 -VER =3D 3420000 +VER =3D 3430000 =20 THISAPP =3D sqlite-autoconf-$(VER) DL_FILE =3D $(THISAPP).tar.gz @@ -40,7 +40,7 @@ objects =3D $(DL_FILE) =20 $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE) =20 -$(DL_FILE)_BLAKE2 =3D 3c4837952a3d9864f03d7a2c164b303f196ad1deeef2f96056509d= d808108655e1a2b2161b4bd614bd01feaec98bb9f8019237bfbd5901ec9ae06b442175d0f6 +$(DL_FILE)_BLAKE2 =3D dc5a5df76ffe86eb61438031ef3893fbe412f7c7607826dd032293= ced06b2f76dfb5f6b85ba80e857069ea4244a3ec222f3f247faec192778c3ecfcc810faa07 =20 install : $(TARGET) =20 diff --git a/src/pakfire/lib/functions.pl b/src/pakfire/lib/functions.pl index 4ed70308c..e623e8bc3 100644 --- a/src/pakfire/lib/functions.pl +++ b/src/pakfire/lib/functions.pl @@ -205,11 +205,6 @@ sub fetchfile { my $log =3D $response->status_line; logger("DOWNLOAD INFO: HTTP-Status-Code: $code - $log"); =20 - if ( $code eq "500" ) { - message("Giving up: There was no chance to get the file \"$getfile\" from= any available server.\nThere was an error on the way. Please fix it."); - return 0; - } - if ($response->is_success) { if (open(FILE, ">$Conf::tmpdir/$bfile")) { print FILE $final_data; diff --git a/src/patches/dhcpcd-10.0.2-fix-off-by-one-overflow-when-read.patc= h b/src/patches/dhcpcd-10.0.2-fix-off-by-one-overflow-when-read.patch new file mode 100644 index 000000000..9e9cf3695 --- /dev/null +++ b/src/patches/dhcpcd-10.0.2-fix-off-by-one-overflow-when-read.patch @@ -0,0 +1,26 @@ +From f798bf23af8e5a0eae38931912e2b67e1d45aca4 Mon Sep 17 00:00:00 2001 +From: Tobias Heider +Date: Sat, 12 Aug 2023 21:59:21 +0200 +Subject: [PATCH] dhcpcd: Fix off-by-one overflow when read() writes full + BUFSIZ (#236) + +--- + src/dhcpcd.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/src/dhcpcd.c b/src/dhcpcd.c +index e06733d3..688a3a6d 100644 +--- a/src/dhcpcd.c ++++ b/src/dhcpcd.c +@@ -1822,7 +1822,7 @@ dhcpcd_stderr_cb(void *arg, unsigned short events) + if (!(events & ELE_READ)) + return; +=20 +- len =3D read(ctx->stderr_fd, log, sizeof(log)); ++ len =3D read(ctx->stderr_fd, log, sizeof(log) - 1); + if (len =3D=3D -1) { + if (errno !=3D ECONNRESET) + logerr(__func__); +--=20 +2.39.2 + diff --git a/src/patches/dhcpcd-10.0.2-privsep-fix-strlcpy-overflow-in-psp-if= name.patch b/src/patches/dhcpcd-10.0.2-privsep-fix-strlcpy-overflow-in-psp-if= name.patch new file mode 100644 index 000000000..07c87017e --- /dev/null +++ b/src/patches/dhcpcd-10.0.2-privsep-fix-strlcpy-overflow-in-psp-ifname.pa= tch @@ -0,0 +1,28 @@ +From 1bd8fc7d4b34f752a32709d277a897e5ad202d97 Mon Sep 17 00:00:00 2001 +From: Tobias Heider +Date: Tue, 15 Aug 2023 18:06:48 +0200 +Subject: [PATCH] privsep: fix strlcpy overflow in psp_ifname (#239) + +When running our Ubuntu tests with libc6 and strlcpy overflow checks +enabled we found that the wrong size is passed to strlcpy resulting +in a crash because of an overflow. +--- + src/privsep.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/src/privsep.c b/src/privsep.c +index b11c0351..cfe54742 100644 +--- a/src/privsep.c ++++ b/src/privsep.c +@@ -1200,7 +1200,7 @@ ps_newprocess(struct dhcpcd_ctx *ctx, struct ps_id *ps= id) + #endif +=20 + if (!(ctx->options & DHCPCD_MANAGER)) +- strlcpy(psp->psp_ifname, ctx->ifv[0], sizeof(psp->psp_name)); ++ strlcpy(psp->psp_ifname, ctx->ifv[0], sizeof(psp->psp_ifname)); + TAILQ_INSERT_TAIL(&ctx->ps_processes, psp, next); + return psp; + } +--=20 +2.39.2 + hooks/post-receive -- IPFire 2.x development tree --===============7141239460320249918==--