]> git.ipfire.org Git - ipfire-2.x.git/log
ipfire-2.x.git
4 years agoiproute2: fix rootfile
Arne Fitzenreiter [Thu, 30 Apr 2020 22:38:20 +0000 (00:38 +0200)] 
iproute2: fix rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add vnstat changes
Arne Fitzenreiter [Thu, 30 Apr 2020 15:26:59 +0000 (15:26 +0000)] 
core145: add vnstat changes

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add libwww-perl
Arne Fitzenreiter [Thu, 30 Apr 2020 15:15:24 +0000 (15:15 +0000)] 
core145: add libwww-perl

4 years agolibwww-perl: update to 6.43
Peter Müller [Sat, 11 Apr 2020 14:14:44 +0000 (16:14 +0200)] 
libwww-perl: update to 6.43

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add pakfire functions.pl
Arne Fitzenreiter [Thu, 30 Apr 2020 15:13:37 +0000 (15:13 +0000)] 
core145: add pakfire functions.pl

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoPakfire: do not leak upstream proxy password in log messages
Peter Müller [Sat, 11 Apr 2020 10:20:01 +0000 (12:20 +0200)] 
Pakfire: do not leak upstream proxy password in log messages

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoPakfire: fix upstream proxy usage
Peter Müller [Sat, 11 Apr 2020 10:19:20 +0000 (12:19 +0200)] 
Pakfire: fix upstream proxy usage

This patch ensures Pakfire will download updates via the configured
upstream proxy (if any) for both HTTP and HTTPS.

Fixes: #12357
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add system.cgi
Arne Fitzenreiter [Thu, 30 Apr 2020 15:10:08 +0000 (15:10 +0000)] 
core145: add system.cgi

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agosystem.cgi: correctly translate CPU frequency
Peter Müller [Sat, 11 Apr 2020 09:02:26 +0000 (11:02 +0200)] 
system.cgi: correctly translate CPU frequency

The CPU frequency diagram used the same "translation" as the CPU load,
which was confusing. This patch introduces a dedicated translation for
"CPU frequency", which makes things a little bit better but still does
not solve a Deppenleerzeichen ("CPU-Frequenz Diagramm") in the German
translation.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolang: fix typo (MacVTtap != MacVTap)
Peter Müller [Sat, 11 Apr 2020 08:25:29 +0000 (10:25 +0200)] 
lang: fix typo (MacVTtap != MacVTap)

Fixes: #12339
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoborgbackup: Fixes DEP error. Update to 1.1.11
Erik Kapfer [Sat, 11 Apr 2020 05:26:58 +0000 (07:26 +0200)] 
borgbackup: Fixes DEP error. Update to 1.1.11

Fixes #12356

Several fixes but also new features has been added with this version.
Full changelog can be found in here --> https://github.com/borgbackup/borg/blob/1.1.11/docs/changes.rst#version-1111-2020-03-08 .

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Reviewed-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agovnstat 2.6: Added status section for initscript
Matthias Fischer [Sat, 11 Apr 2020 17:08:38 +0000 (19:08 +0200)] 
vnstat 2.6: Added status section for initscript

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agovnstat 2.6: Fix for initskript
Matthias Fischer [Sat, 11 Apr 2020 16:37:38 +0000 (18:37 +0200)] 
vnstat 2.6: Fix for initskript

Removed 'sleep 2'

Added exit status in 'stop'-section

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agovnstat 2.6: Fix for rootfile
Matthias Fischer [Fri, 10 Apr 2020 19:41:42 +0000 (21:41 +0200)] 
vnstat 2.6: Fix for rootfile

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agomakegraphs: 'vnstat -u' is no longer supported/needed
Matthias Fischer [Fri, 10 Apr 2020 17:17:11 +0000 (19:17 +0200)] 
makegraphs: 'vnstat -u' is no longer supported/needed

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agovnstat 2.6: New initscript
Matthias Fischer [Fri, 10 Apr 2020 17:17:10 +0000 (19:17 +0200)] 
vnstat 2.6: New initscript

Added the  new 'vnstatd' daemon to 'start' and 'stop' section.

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agotraffic.cgi: Changed time interval for vnstat graphs from 5 to 1 minute
Matthias Fischer [Fri, 10 Apr 2020 17:17:09 +0000 (19:17 +0200)] 
traffic.cgi: Changed time interval for vnstat graphs from 5 to 1 minute

This keeps the graphs a bit more "updated".

From 'man vnstat':
'-c (--cache-time) => Update output file only if at least *time* minutes
have passed since the previous file update.

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agovnstat: Update to 2.6
Matthias Fischer [Fri, 10 Apr 2020 17:17:08 +0000 (19:17 +0200)] 
vnstat: Update to 2.6

For details see:
https://humdi[dot]net/vnstat/CHANGES

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add gzip
Arne Fitzenreiter [Thu, 30 Apr 2020 14:54:07 +0000 (14:54 +0000)] 
core145: add gzip

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agogzip: ship zgrep, zless and zmore
Peter Müller [Fri, 10 Apr 2020 08:00:37 +0000 (10:00 +0200)] 
gzip: ship zgrep, zless and zmore

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add iproute2
Arne Fitzenreiter [Thu, 30 Apr 2020 14:52:11 +0000 (14:52 +0000)] 
core145: add iproute2

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoiproute2: Update to version 5.6.0
Erik Kapfer [Wed, 8 Apr 2020 09:12:18 +0000 (11:12 +0200)] 
iproute2: Update to version 5.6.0

Several fixes and new enhancements, including new binaries (devlink, rdma, tipc) has been added.
For all commits, take a look in here --> https://git.kernel.org/pub/scm/network/iproute2/iproute2.git/log/ .

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add ipset
Arne Fitzenreiter [Thu, 30 Apr 2020 14:50:14 +0000 (14:50 +0000)] 
core145: add ipset

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoipset: Update to version 7.6
Erik Kapfer [Wed, 8 Apr 2020 08:56:17 +0000 (10:56 +0200)] 
ipset: Update to version 7.6

Update includes several userspace and kernel part changes.
For an overview, take a look into the changelog http://ipset.netfilter.org/changelog.html

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add firewall initskript
Arne Fitzenreiter [Thu, 30 Apr 2020 14:45:03 +0000 (14:45 +0000)] 
core145: add firewall initskript

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agofirewall initscript: slightly improve comments
Peter Müller [Tue, 7 Apr 2020 15:07:18 +0000 (17:07 +0200)] 
firewall initscript: slightly improve comments

This patch corrects some typos and does not introduce functional changes.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agogcc: disable parallel build
Peter Müller [Wed, 29 Apr 2020 14:15:27 +0000 (16:15 +0200)] 
gcc: disable parallel build

Cc: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Acked-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agomotion: Update to 4.3.0
Matthias Fischer [Sun, 5 Apr 2020 13:27:10 +0000 (15:27 +0200)] 
motion: Update to 4.3.0

For details see:
https://github.com/Motion-Project/motion/releases

This update is needed for 'ffmpeg 4.2.2' and 'libmicrohttpd 0.9.70' (new package).

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add libpng
Arne Fitzenreiter [Sun, 26 Apr 2020 07:45:16 +0000 (07:45 +0000)] 
core145: add libpng

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibshout: Update to 2.4.3
Matthias Fischer [Sun, 5 Apr 2020 13:54:27 +0000 (15:54 +0200)] 
libshout: Update to 2.4.3

For details see:
http://icecast.org/news/libshout-release-2_4_3/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoffmpeg: Update to 4.4.2
Matthias Fischer [Tue, 7 Apr 2020 16:49:54 +0000 (18:49 +0200)] 
ffmpeg: Update to 4.4.2

(Correction of the v2-patch)

For details see:
http://ffmpeg.org/download.html#release_4.2

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoxvid: Update to 1.3.7
Matthias Fischer [Sun, 5 Apr 2020 14:14:14 +0000 (16:14 +0200)] 
xvid: Update to 1.3.7

For details see:
https://www.videohelp.com/software/XviD-Codec/version-history

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agotaglib: Update to 1.11.1
Matthias Fischer [Sun, 5 Apr 2020 14:09:31 +0000 (16:09 +0200)] 
taglib: Update to 1.11.1

For details see:
https://taglib.org/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agosox: Update to 14.4.2
Matthias Fischer [Sun, 5 Apr 2020 14:07:13 +0000 (16:07 +0200)] 
sox: Update to 14.4.2

For details see:
http://sox.sourceforge.net/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoopus: Update to 1.3.1
Matthias Fischer [Sun, 5 Apr 2020 14:03:42 +0000 (16:03 +0200)] 
opus: Update to 1.3.1

Fordetails see:
http://opus-codec.org/downloads/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibvorbis: Update to 1.3.6
Matthias Fischer [Sun, 5 Apr 2020 14:01:26 +0000 (16:01 +0200)] 
libvorbis: Update to 1.3.6

For details see:
https://github.com/xiph/vorbis/blob/master/CHANGES

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibtiff: Update to 4.1.0
Matthias Fischer [Sun, 5 Apr 2020 13:59:34 +0000 (15:59 +0200)] 
libtiff: Update to 4.1.0

For details see:
https://gitlab.com/libtiff/libtiff/blob/master/ChangeLog

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibmpeg2: Update to 0.4.1
Matthias Fischer [Sun, 5 Apr 2020 13:50:40 +0000 (15:50 +0200)] 
libmpeg2: Update to 0.4.1

For details see:
http://libmpeg2.sourceforge.net/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibogg: Update to 1.3.4
Matthias Fischer [Sun, 5 Apr 2020 13:46:00 +0000 (15:46 +0200)] 
libogg: Update to 1.3.4

Changelog:

"Version 1.3.4 (2019 August 30)

* Faster slice-by-8 CRC32 implementation.
  see https://lwn.net/Articles/453931/ for motivation.
* Add CMake build.
* Deprecate Visual Studio project files in favor of CMake.
* configure --disable-crc option for fuzzing.
* Various build fixes.
* Documentation and example code fixes.

Version 1.3.3 (2017 November 7)

* Fix an issue with corrupt continued packet handling.
* Update Windows projects and build settings.
* Remove Mac OS 9 build support.

Version 1.3.2 (2014 May 27)

* Fix an bug in oggpack_writecopy().

Version 1.3.1 (2013 May 12)

* Guard against very large packets.
* Respect the configure --docdir override.
* Documentation fixes.
* More Windows build fixes."

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolame: Update to 3.100
Matthias Fischer [Sun, 5 Apr 2020 13:40:27 +0000 (15:40 +0200)] 
lame: Update to 3.100

For details see:
https://svn.code.sf.net/p/lame/svn/trunk/lame/doc/html/history.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoNew package: 'libmicrohttpd', needed for 'motion'
Matthias Fischer [Sun, 5 Apr 2020 13:33:36 +0000 (15:33 +0200)] 
New package: 'libmicrohttpd', needed for 'motion'

For details see:
https://www.gnu.org/software/libmicrohttpd/

"GNU libmicrohttpd is a small C library that is supposed to make it
easy to run an HTTP server as part of another application."

Changes:
https://github.com/Karlson2k/libmicrohttpd/blob/master/ChangeLog

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibpng: Update to 1.6.37
Matthias Fischer [Sun, 5 Apr 2020 13:22:03 +0000 (15:22 +0200)] 
libpng: Update to 1.6.37

For details see:
http://www[dot]libpng[dot]org/pub/png/libpng[dot]html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agonetpbm: remove WANT_SSE = Y from config.mk
Arne Fitzenreiter [Sat, 25 Apr 2020 13:59:15 +0000 (15:59 +0200)] 
netpbm: remove WANT_SSE = Y from config.mk

SSE is not available on armv5tel,aarch64 and i586 so we
cannot general enable it.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years ago'make.sh':'libarchive' and 'cmake' now need to be built prior to 'libjepeg'
Matthias Fischer [Sun, 5 Apr 2020 13:20:06 +0000 (15:20 +0200)] 
'make.sh':'libarchive' and 'cmake' now need to be built prior to 'libjepeg'

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore145: add libjpeg
Arne Fitzenreiter [Sat, 25 Apr 2020 09:39:34 +0000 (09:39 +0000)] 
core145: add libjpeg

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agolibjpeg: Update to 2.0.4
Matthias Fischer [Sun, 5 Apr 2020 13:17:33 +0000 (15:17 +0200)] 
libjpeg: Update to 2.0.4

For details see:
https://sourceforge.net/projects/libjpeg-turbo/files/2.0.4/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocmake: Update to 3.17.0
Matthias Fischer [Sun, 5 Apr 2020 13:14:52 +0000 (15:14 +0200)] 
cmake: Update to 3.17.0

For details see:
https://cmake.org/cmake/help/v3.17/release/3.17.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agonetpbm: Update to 10.73.31
Matthias Fischer [Sun, 5 Apr 2020 12:20:09 +0000 (14:20 +0200)] 
netpbm: Update to 10.73.31

For details see:
https://sourceforge.net/p/netpbm/code/HEAD/tree/super_stable/doc/HISTORY

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agofaad2: Update to 2.8.8
Matthias Fischer [Sun, 5 Apr 2020 12:17:18 +0000 (14:17 +0200)] 
faad2: Update to 2.8.8

For details see:
https://www.audiocoding.com/archive.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agostrace: Update to version 5.5
Erik Kapfer [Thu, 2 Apr 2020 11:21:44 +0000 (13:21 +0200)] 
strace: Update to version 5.5

The version jump from 4.7 to 5.5 includes several bugfixes and improvements.
For a full overview --> https://github.com/strace/strace/releases .

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agofping: Update to version 4.2
Erik Kapfer [Thu, 2 Apr 2020 11:14:40 +0000 (13:14 +0200)] 
fping: Update to version 4.2

Some bugfixes but also features are included.
The changelog can be found in here --> https://github.com/schweikert/fping/releases/tag/v4.2 .

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agostart core145
Arne Fitzenreiter [Sat, 25 Apr 2020 08:55:14 +0000 (08:55 +0000)] 
start core145

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: add calamaris core144 v2.25-core144
Arne Fitzenreiter [Thu, 23 Apr 2020 17:57:01 +0000 (19:57 +0200)] 
core144: add calamaris

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoMerge remote-tracking branch 'origin/master' into next
Arne Fitzenreiter [Wed, 22 Apr 2020 10:17:05 +0000 (10:17 +0000)] 
Merge remote-tracking branch 'origin/master' into next

4 years agobind: update rootfile
Arne Fitzenreiter [Wed, 22 Apr 2020 00:41:49 +0000 (02:41 +0200)] 
bind: update rootfile

4 years agocore144: restart squid
Arne Fitzenreiter [Tue, 21 Apr 2020 19:16:53 +0000 (19:16 +0000)] 
core144: restart squid

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: add bind
Arne Fitzenreiter [Tue, 21 Apr 2020 19:14:58 +0000 (19:14 +0000)] 
core144: add bind

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agobind: Update to 9.11.18
Matthias Fischer [Tue, 21 Apr 2020 19:02:38 +0000 (21:02 +0200)] 
bind: Update to 9.11.18

For details see:
https://downloads.isc.org/isc/bind9/9.11.18/RELEASE-NOTES-bind-9.11.18.html

"Security Fixes

DNS rebinding protection was ineffective when BIND 9 is configured as a forwarding
DNS server. Found and responsibly reported by Tobias Klein. [GL #1574]

Known Issues

We have received reports that in some circumstances, receipt of an IXFR can cause
the processing of queries to slow significantly. Some of these were related to RPZ
processing, which has been fixed in this release (see below). Others appear to occur
where there are NSEC3-related changes (such as an operator changing the NSEC3 salt
used in the hash calculation). These are being investigated. [GL #1685]"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: add squid
Arne Fitzenreiter [Tue, 21 Apr 2020 19:13:33 +0000 (19:13 +0000)] 
core144: add squid

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agosquid: Update to 4.11
Matthias Fischer [Tue, 21 Apr 2020 18:55:51 +0000 (20:55 +0200)] 
squid: Update to 4.11

For details see:
http://www.squid-cache.org/Versions/v4/changesets/

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agodhcpcd: Update to 9.0.2
Matthias Fischer [Tue, 21 Apr 2020 18:49:58 +0000 (20:49 +0200)] 
dhcpcd: Update to 9.0.2

For details see:
https://roy.marples.name/archives/dhcpcd-discuss/0002941.html

"* Control sockets are not opened in test mode
* privsep: no longer aborts if protocol not available
* inet6: Don't regen temporary addresses without a state
* inet6: Reduce RA log spam
* dhcp6: Don't log when things consitently fail
* inet6: Add temporary directive to slaac option [1]
* Ensure current interface flags persist when setting a flag
* DHCP via BPF is now aligned correctly
* CMSG buffers are now aligned correctly
* hostnames are no longer clobbered when being forced and a RA is recieved"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoopenssl: update rootfile
Arne Fitzenreiter [Tue, 21 Apr 2020 14:51:53 +0000 (16:51 +0200)] 
openssl: update rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: ship /etc/os-release
Arne Fitzenreiter [Tue, 21 Apr 2020 13:52:01 +0000 (13:52 +0000)] 
core144: ship /etc/os-release

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: add openssl
Arne Fitzenreiter [Tue, 21 Apr 2020 13:50:43 +0000 (13:50 +0000)] 
core144: add openssl

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoopenssl: update to 1.1.1g
Arne Fitzenreiter [Tue, 21 Apr 2020 13:43:38 +0000 (15:43 +0200)] 
openssl: update to 1.1.1g

CVE-2020-1967 (OpenSSL advisory) [High severity] 21 April 2020:
    Server or client applications that call the SSL_check_chain()
    function during or after a TLS 1.3 handshake may crash due
    to a NULL pointer dereference as a result of incorrect handling
    of the "signature_algorithms_cert" TLS extension.
    The crash occurs if an invalid or unrecognised signature algorithm
    is received from the peer. This could be exploited by a malicious
    peer in a Denial of Service attack.
https://www.openssl.org/news/secadv/20200421.txt

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: remove gcc go binary and libs
Arne Fitzenreiter [Mon, 20 Apr 2020 15:41:09 +0000 (15:41 +0000)] 
core144: remove gcc go binary and libs

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agotoolchain: Do not attempt to strip anything in /dev, /proc, /sys and /tmp
Michael Tremer [Tue, 14 Apr 2020 15:01:00 +0000 (15:01 +0000)] 
toolchain: Do not attempt to strip anything in /dev, /proc, /sys and /tmp

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoAdd /etc/os-release
Michael Tremer [Thu, 9 Apr 2020 20:45:16 +0000 (20:45 +0000)] 
Add /etc/os-release

This file is being read by some packages to find out on what
distribution they are running on.

This file needs to be included in every Core Update.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agogcc: Drop Go on i586
Michael Tremer [Thu, 16 Apr 2020 19:27:14 +0000 (19:27 +0000)] 
gcc: Drop Go on i586

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agogcc: Drop Go on armv5tel
Michael Tremer [Thu, 16 Apr 2020 19:27:13 +0000 (19:27 +0000)] 
gcc: Drop Go on armv5tel

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agogcc: Drop Go on aarch64
Michael Tremer [Thu, 16 Apr 2020 19:27:12 +0000 (19:27 +0000)] 
gcc: Drop Go on aarch64

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoamazon-ssm-agent: Bump version to ship package built with golang
Michael Tremer [Thu, 16 Apr 2020 19:27:11 +0000 (19:27 +0000)] 
amazon-ssm-agent: Bump version to ship package built with golang

gccgo compiles this, but unfortunately the binaries malfunction
sometimes. golang generates a bug-free binary.

https://github.com/aws/amazon-ssm-agent/issues/271

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoamazon-ssm-agent: Remove temporary shared files
Michael Tremer [Thu, 16 Apr 2020 19:27:10 +0000 (19:27 +0000)] 
amazon-ssm-agent: Remove temporary shared files

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agostrip: Do not try to strip Go binaries
Michael Tremer [Thu, 16 Apr 2020 19:27:09 +0000 (19:27 +0000)] 
strip: Do not try to strip Go binaries

There is loads of stuff for PowerPC and other architectures
in the directory which we cannot strip. Therefore we ignore
the whole directory.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoPackage the official Go compiler
Michael Tremer [Thu, 16 Apr 2020 19:27:08 +0000 (19:27 +0000)] 
Package the official Go compiler

Since Go has a horrible build system which requires a Go
compiler to build the Go compiler and takes a very long
time to compile, we are following Rust and are using the
"official" pre-compiled release tarball.

We no longer ship the Go runtime, which mitigates the
risk of shipping any malware.

Because we currently only have one package using this
and which is only being compiled for x86_64, we are
only making Go available on this architecture.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agogcc: Drop support for Go
Michael Tremer [Thu, 16 Apr 2020 19:27:07 +0000 (19:27 +0000)] 
gcc: Drop support for Go

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoConfig: Set some Go environment variables
Michael Tremer [Thu, 16 Apr 2020 19:27:06 +0000 (19:27 +0000)] 
Config: Set some Go environment variables

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: add apache
Arne Fitzenreiter [Mon, 20 Apr 2020 15:22:57 +0000 (15:22 +0000)] 
core144: add apache

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoapache: Update to 2.4.43
Matthias Fischer [Sun, 12 Apr 2020 12:29:19 +0000 (14:29 +0200)] 
apache: Update to 2.4.43

For details see:
http://mirror.dkd.de/apache//httpd/CHANGES_2.4.43

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: add dhcpcd initskript and user
Arne Fitzenreiter [Sun, 19 Apr 2020 17:37:28 +0000 (17:37 +0000)] 
core144: add dhcpcd initskript and user

this commit also re/create the user after backup restore.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agodhcpcd: create dhcpcd user and chroot folder
Arne Fitzenreiter [Sun, 19 Apr 2020 17:18:04 +0000 (19:18 +0200)] 
dhcpcd: create dhcpcd user and chroot folder

dhcpcd 9.x adds privelege seperation by creating a chroot
and running parts of the client not as root.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agodhcpcd: new pid path for dhcpcd 9.x
Arne Fitzenreiter [Sun, 19 Apr 2020 13:24:02 +0000 (15:24 +0200)] 
dhcpcd: new pid path for dhcpcd 9.x

dhcpcd 9.x move the path of the pids to an own folder.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agodhcpcd: Update to 9.0.1
Matthias Fischer [Wed, 15 Apr 2020 16:19:03 +0000 (18:19 +0200)] 
dhcpcd: Update to 9.0.1

For details see:
https://roy.marples.name/archives/dhcpcd-discuss/0002921.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agohaproxy: update config file core143 v2.25-core143
Arne Fitzenreiter [Tue, 14 Apr 2020 15:30:51 +0000 (15:30 +0000)] 
haproxy: update config file

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agohaproxy: Update to 2.1.4
Michael Tremer [Tue, 14 Apr 2020 11:54:15 +0000 (11:54 +0000)] 
haproxy: Update to 2.1.4

This is a security release:
  https://www.mail-archive.com/haproxy@formilux.org/msg36876.html

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore143: disable vnstat ramdisk before clean tag file
Arne Fitzenreiter [Tue, 14 Apr 2020 09:55:29 +0000 (09:55 +0000)] 
core143: disable vnstat ramdisk before clean tag file

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoMerge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next
Arne Fitzenreiter [Sun, 12 Apr 2020 06:25:40 +0000 (08:25 +0200)] 
Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next

4 years agocore144: add dhcpcd
Arne Fitzenreiter [Sun, 12 Apr 2020 06:18:51 +0000 (08:18 +0200)] 
core144: add dhcpcd

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agodhcpcd: update to 9.00
Arne Fitzenreiter [Sun, 12 Apr 2020 06:16:28 +0000 (08:16 +0200)] 
dhcpcd: update to 9.00

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore144: start update
Arne Fitzenreiter [Sun, 12 Apr 2020 06:14:26 +0000 (08:14 +0200)] 
core144: start update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoOpenSSH: fix login on i?86
Arne Fitzenreiter [Fri, 10 Apr 2020 19:41:14 +0000 (21:41 +0200)] 
OpenSSH: fix login on i?86

glibc calls clock_nanosleep_time64 syscall even if it not defined in
the headers for this arch and the seccomp filter kills the process
with because an unknown syscall.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoRevert "Revert "OpenSSH: update to 8.2p1""
Arne Fitzenreiter [Fri, 10 Apr 2020 14:23:09 +0000 (16:23 +0200)] 
Revert "Revert "OpenSSH: update to 8.2p1""

This reverts commit e7fcf874e7f36d82e5e8c5fd54d8ea321b852186.

4 years agoRevert "OpenSSH: update to 8.2p1"
Arne Fitzenreiter [Thu, 9 Apr 2020 20:26:33 +0000 (20:26 +0000)] 
Revert "OpenSSH: update to 8.2p1"

ssh skips login before asking for credentials at i586.

This reverts commit 3fd3f4de44df53d631937ec137078eb8c0328bd4.

4 years agounbound: skip empty domains at local-data import
Michael Tremer [Thu, 9 Apr 2020 20:24:42 +0000 (20:24 +0000)] 
unbound: skip empty domains at local-data import

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agosuricata: disable dns flood protection
Arne Fitzenreiter [Wed, 8 Apr 2020 15:48:20 +0000 (15:48 +0000)] 
suricata: disable dns flood protection

this causes errors in unbound and also other linux clients if
a dns rule triggers.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agosuricata: update ET rulesets sources for suricata 5
Arne Fitzenreiter [Wed, 8 Apr 2020 15:43:35 +0000 (15:43 +0000)] 
suricata: update ET rulesets sources for suricata 5

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agoicinga: bump PAKVER
Arne Fitzenreiter [Wed, 8 Apr 2020 05:44:45 +0000 (07:44 +0200)] 
icinga: bump PAKVER

some installations has a copy installed that still try to include
perl-5.12.3 libs.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agocore143: touch need reboot flag
Arne Fitzenreiter [Wed, 8 Apr 2020 05:43:50 +0000 (07:43 +0200)] 
core143: touch need reboot flag

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agopcengines-apu-firmware: update rootfile
Arne Fitzenreiter [Tue, 7 Apr 2020 13:14:39 +0000 (15:14 +0200)] 
pcengines-apu-firmware: update rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 years agopcengines-apu-firmware: fix lfs file
Arne Fitzenreiter [Tue, 7 Apr 2020 09:15:03 +0000 (11:15 +0200)] 
pcengines-apu-firmware: fix lfs file

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>