ipfire-2.x.git
6 weeks agogrub: fix cloudhelper permissions core159 master v2.27-core159
Arne Fitzenreiter [Mon, 2 Aug 2021 05:38:43 +0000 (07:38 +0200)] 
grub: fix cloudhelper permissions

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agogrub: fix cloud helper installation
Arne Fitzenreiter [Sun, 1 Aug 2021 15:08:46 +0000 (17:08 +0200)] 
grub: fix cloud helper installation

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agocups: Bump package version
Michael Tremer [Wed, 28 Jul 2021 11:09:18 +0000 (11:09 +0000)] 
cups: Bump package version

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agogrub cloud: Add kernel release to boot ID
Michael Tremer [Tue, 27 Jul 2021 10:07:10 +0000 (10:07 +0000)] 
grub cloud: Add kernel release to boot ID

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoflash-image: Enable GRUB_FIRST_BOOT setting
Michael Tremer [Tue, 27 Jul 2021 10:07:09 +0000 (10:07 +0000)] 
flash-image: Enable GRUB_FIRST_BOOT setting

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agogrub: Add file with cloud helping stuff
Michael Tremer [Tue, 27 Jul 2021 10:07:08 +0000 (10:07 +0000)] 
grub: Add file with cloud helping stuff

This file will detect whether to do certain actions depending on the
environment it is running on.

Currently this detects whether IPFire is booting up on AWS EC2 and
selects the serial console boot entry.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoflash-images: Label serial console option as "serial"
Michael Tremer [Tue, 27 Jul 2021 10:07:07 +0000 (10:07 +0000)] 
flash-images: Label serial console option as "serial"

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoset version to 2.27
Arne Fitzenreiter [Sun, 1 Aug 2021 09:51:14 +0000 (11:51 +0200)] 
set version to 2.27

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agokernel: update to 5.10.55
Arne Fitzenreiter [Sun, 1 Aug 2021 09:50:25 +0000 (11:50 +0200)] 
kernel: update to 5.10.55

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agoMerge branch 'next' of git.ipfire.org:/pub/git/ipfire-3.x into next
Arne Fitzenreiter [Sat, 31 Jul 2021 16:52:02 +0000 (18:52 +0200)] 
Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-3.x into next

7 weeks agocore159: add libusb
Arne Fitzenreiter [Sat, 31 Jul 2021 16:51:22 +0000 (18:51 +0200)] 
core159: add libusb

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agoRevert "libusb: update to 0.0.24"
Arne Fitzenreiter [Sat, 31 Jul 2021 11:27:54 +0000 (13:27 +0200)] 
Revert "libusb: update to 0.0.24"

This reverts commit 937d8dbcb19fcfbdfc0d914b769c93b5cffdba65.

7 weeks agou-boot-friendlyarm: add armv6l rootfile
Arne Fitzenreiter [Fri, 30 Jul 2021 19:58:56 +0000 (19:58 +0000)] 
u-boot-friendlyarm: add armv6l rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agou-boot: remove uneeded cflags and a unused rpi patch
Arne Fitzenreiter [Fri, 30 Jul 2021 11:29:18 +0000 (11:29 +0000)] 
u-boot: remove uneeded cflags and a unused rpi patch

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agou-boot-friendlyarm: update to 5e8607b
Arne Fitzenreiter [Fri, 30 Jul 2021 11:28:03 +0000 (11:28 +0000)] 
u-boot-friendlyarm: update to 5e8607b

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agokernel: update to 5.10.54
Arne Fitzenreiter [Wed, 28 Jul 2021 20:42:51 +0000 (22:42 +0200)] 
kernel: update to 5.10.54

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agokernel: update to 5.10.53
Arne Fitzenreiter [Sun, 25 Jul 2021 21:48:58 +0000 (23:48 +0200)] 
kernel: update to 5.10.53

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoglib: update to 2.69.0
Arne Fitzenreiter [Fri, 23 Jul 2021 11:47:07 +0000 (13:47 +0200)] 
glib: update to 2.69.0

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agocups: Reload dbus to load/unload policy
Michael Tremer [Wed, 21 Jul 2021 14:41:58 +0000 (14:41 +0000)] 
cups: Reload dbus to load/unload policy

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoavahi: Reload dbus to load/unload policy
Michael Tremer [Wed, 21 Jul 2021 14:41:57 +0000 (14:41 +0000)] 
avahi: Reload dbus to load/unload policy

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agodbus: Add reload to initscript
Michael Tremer [Wed, 21 Jul 2021 14:41:56 +0000 (14:41 +0000)] 
dbus: Add reload to initscript

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agocore159: Fix permissions after extraction
Michael Tremer [Wed, 21 Jul 2021 15:45:00 +0000 (15:45 +0000)] 
core159: Fix permissions after extraction

There seems to be a bug in tar (which should be gone by now), but on
affected systems, we might need to reset directory permissions just in
case.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agovdr: cleanup unused patch
Arne Fitzenreiter [Fri, 23 Jul 2021 06:11:48 +0000 (06:11 +0000)] 
vdr: cleanup unused patch

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agovdr: bump package version
Arne Fitzenreiter [Thu, 22 Jul 2021 18:22:14 +0000 (18:22 +0000)] 
vdr: bump package version

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agopcengines-apu-firmware: update to 4.14.0.2
Arne Fitzenreiter [Thu, 22 Jul 2021 08:48:47 +0000 (10:48 +0200)] 
pcengines-apu-firmware: update to 4.14.0.2

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agovdr: update to 2.4.7
Arne Fitzenreiter [Wed, 21 Jul 2021 19:49:19 +0000 (21:49 +0200)] 
vdr: update to 2.4.7

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agokernel: update to 5.10.52
Arne Fitzenreiter [Wed, 21 Jul 2021 16:09:59 +0000 (18:09 +0200)] 
kernel: update to 5.10.52

Signen-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agotshark: update to 3.4.7
Arne Fitzenreiter [Mon, 19 Jul 2021 22:46:54 +0000 (22:46 +0000)] 
tshark: update to 3.4.7

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoREADME: Update installation URL
Michael Tremer [Mon, 19 Jul 2021 10:54:50 +0000 (10:54 +0000)] 
README: Update installation URL

Reported-by: Konrad Panzlaff <konrad.panzlaff@pa-bu.de>
Fixes: #12661
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agotshark: Update to version 3.4.6
Adolf Belka [Wed, 14 Jul 2021 20:41:39 +0000 (22:41 +0200)] 
tshark: Update to version 3.4.6

- Update from 3.4.3 to 3.4.6
- Update rootfile
- Changelog
   Wireshark 3.4.6 Release Notes
    What’s New
     The Windows installers now ship with Npcap 1.31. They previously
      shipped with Npcap 1.10.
     The Windows installers now ship with Qt 5.15.2. They previously
      shipped with Qt 5.12.1.
     Bug Fixes
        • wnpa-sec-2021-04[1] DVB-S2-BB dissector infinite loop
     The following bugs have been fixed:
        • Macro filters can’t handle escaped characters Issue 17160[2].
        • Display filter crashes Wireshark Issue 17316[3].
        • IEEE-1588 Signalling Unicast TLV incorrectly reported as being
          malformed Issue 17355[4].
        • IETF QUIC TLS decryption error with extraneous packets during the
          handshake Issue 17383[5].
        • Statistics → Resolved Addresses: multi-protocol (TCP/UDP/…​)
          ports not displayed Issue 17395[6].
     New and Updated Features
      New Protocol Support
       There are no new protocols in this release.
      Updated Protocol Support
       DNP, DVB-S2-BB, ProtoBuf, PTP, QUIC, RANAP, and TACACS
      New and Updated Capture File Support
       Ascend, ERF, K12, NetScaler, and pcapng
   Wireshark 3.4.5 Release Notes
    What’s New
     Bug Fixes
      The following vulnerabilities have been fixed:
        • wnpa-sec-2021-04[1] MS-WSP dissector excessive memory
          consumption. Issue 17331[2].
      The following bugs have been fixed:
        • TShark does not print GeoIP information Issue 14691[3].
        • TShark error when piping to "head" Issue 16192[4].
        • Parts of ASCII representation in Packet Bytes pane are missing
          Issue 17087[5].
        • Buildbot crash output: fuzz-2021-02-22-1012761.pcap Issue
          17254[6].
        • NDPE attribute of NAN packet is not dissected Issue 17278[7].
        • TECMP: reserved flag interpreted as part of timestamp Issue
          17279[8].
        • Master branch does not compile at least with gcc-11 Issue
          17281[9].
        • DNS IXFR/AXFR multiple response Issue 17293[10].
        • File too large Issue 17301[11].
        • Build fails with CMake 3.20 Issue 17314[12].
     New and Updated Features
      New Protocol Support
       There are no new protocols in this release.
      Updated Protocol Support
       DECT, DNS, EAP, Kerberos, LDAP, MS-WSP, SMB2, Sysdig, TECMP, and WiFi
        NAN
      New and Updated Capture File Support
       pcapng
   Wireshark 3.4.4 Release Notes
    What’s New
     Bug Fixes
      The following vulnerabilities have been fixed:
        • wnpa-sec-2021-03[1] Wireshark could open unsafe URLs. Issue
          17232[2]. CVE-2021-22191[3].
      The following bugs have been fixed:
        • NTP Version 3 Client Decode PDML output issue (Reference ID
          Issue) Issue 17112[4].
        • 3.4.2: public wireshark include files are including build time
          "config.h" Issue 17190[5].
        • wireshark-3.4.3/epan/dissectors/packet-s7comm.c:3521: bad array
          index ? Issue 17198[6].
        • SIP protocol: P-Called-Party-ID header mixed up with
          P-Charge-Info header Issue 17215[7].
        • Asterix CAT010 Decode Error Issue 17226[8].
        • _ws.expert columns not populated for IPv4 Issue 17228[9].
        • Buildbot crash output: fuzz-2021-02-12-1651908.pcap Issue
          17233[10].
        • gQUIC: Wireshark 3.4.3 fails to dissect a packet (gQUIC q024)
          that v3.2.6 succeeds. Issue 17250[11].
     New and Updated Features
      New Protocol Support
       There are no new protocols in this release.
      Updated Protocol Support
       ASTERIX, Frame Relay, GQUIC, NTP, NVMe Fabrics RDMA, S7COMM, and SIP
      New and Updated Capture File Support
       iSeries

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agotftpd: Update to version 5.2
Adolf Belka [Wed, 14 Jul 2021 20:41:23 +0000 (22:41 +0200)] 
tftpd: Update to version 5.2

- Update from 0.48 (2007) to 5.2 (2011)
   Version 5.2 is the last update made to this program
- Update to rootfile
- Changelog
   Changes in 5.2:
Fix breakage on newer Linux when a single interface has
         multiple IP addresses.
   Changes in 5.1:
Add -P option to write a PID file.  Patch by Ferenc Wagner.
Bounce the syslog socket in standalone mode, in case the
         syslog daemon has been restarted.  Patch by Ferenc Wagner.
Build fixes.
Fix handling of block number wraparound after a successful
         options negotiation.
Fix a buffer overflow in option parsing.
   Changes in 5.0:
Try to on platforms with getaddrinfo() without AI_ADDRCONFIG or
         AI_CANONNAME.
Implement the "rollover" option, for clients which want block
         number to rollover to anything other than zero.
Correctly disable PMTU in standalone mode.  Patch by Florian
         Lohoff.
   Changes in 0.49:
Add IPv6 support.  Patch by Karsten Keil.
Support systems with editline instead of readline.
Support long options in the server.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agosamba: Update version to 4.14.6
Adolf Belka [Wed, 14 Jul 2021 11:37:12 +0000 (13:37 +0200)] 
samba: Update version to 4.14.6

- Update from 4.14.4 to 4.14.6
- Update of rootfile not required
- Changelog
   Release Notes for Samba 4.14.6
        * BUG 14722: s3: lib: Fix talloc heirarcy error in parent_smb_fname().
        * BUG 14732: smbd: Fix pathref unlinking in create_file_unixpath().
        * BUG 14734: s3: VFS: default: Add proc_fd's fallback for vfswrap_fchown().
        * BUG 14736: s3: smbd: Remove erroneous TALLOC_FREE(smb_fname_parent) in
          change_file_owner_to_parent() error path.
        * BUG 14730: NT_STATUS_FILE_IS_A_DIRECTORY error messages when using
          glusterfs VFS module.
        * BUG 14734: s3/modules: fchmod: Fallback to path based chmod if pathref.
        * BUG 14740: Spotlight RPC service doesn't work with vfs_glusterfs.
        * BUG 14750: gensec_krb5: Restore ipv6 support for kpasswd.
        * BUG 14752: smbXsrv_{open,session,tcon}: protect
          smbXsrv_{open,session,tcon}_global_traverse_fn against invalid records.
        * BUG 14027: samba-tool domain backup offline doesn't work against bind DLZ
          backend.
        * BUG 14669: netcmd: Use next_free_rid() function to calculate a SID for
          restoring a backup.
   Release Notes for Samba 4.14.5
        * BUG 14696: s3: smbd: SMB1 SMBsplwr doesn't send a reply packet on success.
        * BUG 14708: s3: smbd: Ensure POSIX default ACL is mapped into returned
          Windows ACL for directory handles.
        * BUG 14721: s3: smbd: Fix uninitialized memory read in
          process_symlink_open() when used with vfs_shadow_copy2().
        * BUG 14689: docs: Expand the "log level" docs on audit logging.
        * BUG 14714: smbd: Correctly initialize close timestamp fields.
        * BUG 14699: Fix gcc11 compiler issues.
        * BUG 14718: docs-xml: Update smbcacls manpage.
        * BUG 14719: docs: Update list of available commands in rpcclient.
        * BUG 14475: ctdb: Fix a crash in run_proc_signal_handler().
        * BUG 14695: s3:winbind: For 'security = ADS' require realm/workgroup to be
          set.
        * BUG 14699: lib:replace: Do not build strndup test with gcc 11 or newer.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore159: add mountkernfs script to update
Arne Fitzenreiter [Mon, 19 Jul 2021 18:21:49 +0000 (18:21 +0000)] 
core159: add mountkernfs script to update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agolibvirtd: Enable required cgroups
Michael Tremer [Fri, 16 Jul 2021 11:14:13 +0000 (11:14 +0000)] 
libvirtd: Enable required cgroups

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agomountkernfs: Mount cgroup2 hierarchy
Michael Tremer [Fri, 16 Jul 2021 11:14:12 +0000 (11:14 +0000)] 
mountkernfs: Mount cgroup2 hierarchy

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agolibcdada: Patch file to allow build to work with GCC 11 and update version to 0.3.5
Adolf Belka [Fri, 16 Jul 2021 11:12:58 +0000 (13:12 +0200)] 
libcdada: Patch file to allow build to work with GCC 11 and update version to 0.3.5

- Update from 0.3.4 to 0.3.5
- Created libcdada-0.3.5-Werror.patch based on the gentoo 0.3.5 patch to remove -Werror
   flags from the configure. This was flagging up warnings as errors and stopping
   the build
- Removed the SUP_ARCH line to allow it to build again
- Added --without-tests and --without-checks to the ./configure statement. This prevents
   the test and checks being built
- Removed libcdada-0.3.4-use-shared-library-for-tests-and-examples-build.patch as no
   longer needed with the tests and checks no longer being built
- No update required for rootfile
- Changelog
   v0.3.5 (20th April 2021)
    New
     - Improved public API documentation
     - build: add --without-tests --without-examples build options
    Bug fix
     - Fix `E_EMPTY` return codes set/map/list/stack/queue
     - Fix `make check` when valgrind is not installed

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agopmacct: Patch file to allow build to work with GCC 11
Adolf Belka [Fri, 16 Jul 2021 11:12:57 +0000 (13:12 +0200)] 
pmacct: Patch file to allow build to work with GCC 11

- Created pmacct-1.7.6-Werror.patch to remove -Werror flags from the configure
   This was flagging up warnings as errors and stopping the build
- Removed the SUP_ARCH line to allow it to build again
- No update required to the rootfile

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agokernel: update to 5.10.51
Arne Fitzenreiter [Mon, 19 Jul 2021 12:08:08 +0000 (14:08 +0200)] 
kernel: update to 5.10.51

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agokernel: update to 5.10.50
Arne Fitzenreiter [Thu, 15 Jul 2021 20:41:51 +0000 (22:41 +0200)] 
kernel: update to 5.10.50

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocpufrequtils: enable build on all arches
Arne Fitzenreiter [Wed, 14 Jul 2021 18:04:02 +0000 (20:04 +0200)] 
cpufrequtils: enable build on all arches

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocpufrequtils: add some patches from the debian patchset
Arne Fitzenreiter [Wed, 14 Jul 2021 17:57:58 +0000 (19:57 +0200)] 
cpufrequtils: add some patches from the debian patchset

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoMerge remote-tracking branch 'origin/master' into next
Arne Fitzenreiter [Wed, 14 Jul 2021 11:16:04 +0000 (13:16 +0200)] 
Merge remote-tracking branch 'origin/master' into next

2 months agomake.sh: Explicitely call zstd to extract toolchain
Michael Tremer [Sun, 11 Jul 2021 13:12:15 +0000 (14:12 +0100)] 
make.sh: Explicitely call zstd to extract toolchain

Some older versions of tar do not recognise Zstandard, yet.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Tested-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocdrom: Compress file system image using Zstandard
Michael Tremer [Tue, 13 Jul 2021 16:27:59 +0000 (16:27 +0000)] 
cdrom: Compress file system image using Zstandard

This patch uses the new Zstandard algorithm to compress the file system
image on the ISO image. This comes with these advantages:

* Compression is about twice as fast than XZ with the parameters we have
  selected here
* We use a lot less memory during compression and can therefore utilise
  all processor cores of the build machines
* Decompression (when installing IPFire and when creating the
  flash-image) is substantically faster

The downside is that the generated ISO image is slighty larger (~10MiB)
which I am okay with as a trade-off for the points mentioned above.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoinstaller: Fix reading /proc/cmdline when launched by GRUB
Michael Tremer [Tue, 13 Jul 2021 15:44:20 +0000 (15:44 +0000)] 
installer: Fix reading /proc/cmdline when launched by GRUB

The installer was reading the kernel command line and was looking for
certain values which configured the installer.

GRUB appended a trailing newline character which was not accounted for
and caused that the last parameter was not correctly compared to the
list of possible keys.

Fixes: #12656 - core 157: unattended installation don't work as expected on EFI
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoaws: Enable serial console by default
Michael Tremer [Tue, 13 Jul 2021 10:11:31 +0000 (10:11 +0000)] 
aws: Enable serial console by default

AWS for some time now has a serial console feature which is enabled by
default on all systems. The VGA console is not enabled for any new
non-x86 instance types and not interactive.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore159: add makegraphs and hddshutdown cronjob
Arne Fitzenreiter [Wed, 14 Jul 2021 08:20:23 +0000 (10:20 +0200)] 
core159: add makegraphs and hddshutdown cronjob

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocrontab: dont run makegraphs and hddshutdown to the same time
Arne Fitzenreiter [Wed, 14 Jul 2021 06:14:21 +0000 (08:14 +0200)] 
crontab: dont run makegraphs and hddshutdown to the same time

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agomakegraphs: fix status collection for hddshutdown
Arne Fitzenreiter [Wed, 14 Jul 2021 06:12:16 +0000 (08:12 +0200)] 
makegraphs: fix status collection for hddshutdown

with kernel 5.10.x also the reading of s.m.a.r.t. data to update
the temperatur graphs is countet as disk read so update the stored
value after reading.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agostrip: Silence any warnings for files without capabilities v2.25-core158
Michael Tremer [Tue, 13 Jul 2021 15:34:59 +0000 (15:34 +0000)] 
strip: Silence any warnings for files without capabilities

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agovpnmain.cgi: Join certificate output before &Header::cleanhtml();
Michael Tremer [Tue, 13 Jul 2021 15:30:53 +0000 (15:30 +0000)] 
vpnmain.cgi: Join certificate output before &Header::cleanhtml();

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agoPartially revert "vpnmain.cgi: Use new system methods"
Michael Tremer [Tue, 13 Jul 2021 15:30:52 +0000 (15:30 +0000)] 
Partially revert "vpnmain.cgi: Use new system methods"

This reverts commit a81cbf61273536ee36f3d26504aabdcd65d39cca.

It was no longer possible to generate the root/host certificates.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agoovpnmain.cgi: Join certificate output before &Header::cleanhtml();
Michael Tremer [Tue, 13 Jul 2021 15:30:51 +0000 (15:30 +0000)] 
ovpnmain.cgi: Join certificate output before &Header::cleanhtml();

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agocore158: Ship etherwake
Michael Tremer [Mon, 12 Jul 2021 16:23:54 +0000 (16:23 +0000)] 
core158: Ship etherwake

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agodnsdist: build only for x86_64
Arne Fitzenreiter [Sat, 10 Jul 2021 17:53:08 +0000 (17:53 +0000)] 
dnsdist: build only for x86_64

32bit archs fail because time_t is only 4 bytes and
aarch64 not build on builders with 2GB ram.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoMerge remote-tracking branch 'origin/master' into next
Arne Fitzenreiter [Sat, 10 Jul 2021 17:51:41 +0000 (17:51 +0000)] 
Merge remote-tracking branch 'origin/master' into next

2 months agostripper: Handle capabilities
Michael Tremer [Fri, 9 Jul 2021 16:17:43 +0000 (16:17 +0000)] 
stripper: Handle capabilities

During the build process, we set capabilities to elevate privileges of
certain progrems (e.g. ping). These have been removed during the build
process because of strip.

This patch collects any capabilities from all files that are being
stripped and restores them after calling strip.

Fixes: #12652
Reported-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Acked-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agocore158: Run sshctrl
Michael Tremer [Fri, 9 Jul 2021 15:24:33 +0000 (15:24 +0000)] 
core158: Run sshctrl

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agoPakfire: call "sync" in function.sh after having extracted archives
Peter Müller [Wed, 7 Jul 2021 17:27:14 +0000 (19:27 +0200)] 
Pakfire: call "sync" in function.sh after having extracted archives

After upgrading to Core Update 157, a few number of users reported their
systems to be unworkable after a reboot. Most of them (the systems, not
the users) were apparently missing the new Linux kernel in their Grub
configuration, causing a non-functional bootloader written to disk.

While we seem to be able to rule out issues related to poor storage
(SDDs, flash cards, etc.) or very high I/O load, it occurred to me we
are not calling "sync" after having extracted a Core Update's .tar.gz
file.

This patch therefore proposes to do so. It is a somewhat homeopathic
approach, though, but might ensure all parts of the system to have
properly processed the contents of an extracted archive. While we cannot
even reasonably guess it will solve the problem(s) mentioned initially,
doing so cannot hurt either.

See also:
https://community.ipfire.org/t/after-update-ipfire-to-157-no-boot/5641/45

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agocore158: Ship pakfire functions.sh
Michael Tremer [Fri, 9 Jul 2021 13:25:41 +0000 (13:25 +0000)] 
core158: Ship pakfire functions.sh

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agopakfire: Do not delay directory restore
Michael Tremer [Fri, 9 Jul 2021 13:25:00 +0000 (13:25 +0000)] 
pakfire: Do not delay directory restore

https://www.gnu.org/software/tar/manual/tar.html#Directory-Modification-Times-and-Permissions

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agopakfire: Put tar options into an array
Michael Tremer [Fri, 9 Jul 2021 13:23:56 +0000 (13:23 +0000)] 
pakfire: Put tar options into an array

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agopakfire.cgi: Sleep after running a pakfire command
Michael Tremer [Fri, 9 Jul 2021 13:19:08 +0000 (13:19 +0000)] 
pakfire.cgi: Sleep after running a pakfire command

This is required to have better chances in the race of showing the log
output afterwards.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agopakfire.cgi: Remove confusing dots in install message
Michael Tremer [Fri, 9 Jul 2021 13:05:13 +0000 (13:05 +0000)] 
pakfire.cgi: Remove confusing dots in install message

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agopakfire.cgi: Pass packages to install/uninstall as array
Michael Tremer [Fri, 9 Jul 2021 13:04:14 +0000 (13:04 +0000)] 
pakfire.cgi: Pass packages to install/uninstall as array

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agofireinfo.cgi: Fix kernel version
Michael Tremer [Fri, 9 Jul 2021 12:56:17 +0000 (12:56 +0000)] 
fireinfo.cgi: Fix kernel version

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agoclamav: Update to 0.103.3
Matthias Fischer [Tue, 22 Jun 2021 16:13:44 +0000 (18:13 +0200)] 
clamav: Update to 0.103.3

For details see:
https://blog.clamav.net/2021/06/clamav-01033-patch-release.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Reviewed-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agodnsdist: Fix FTBFS with GCC 11
Michael Tremer [Wed, 7 Jul 2021 20:18:29 +0000 (20:18 +0000)] 
dnsdist: Fix FTBFS with GCC 11

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore159: add collect and libstatgrab
Arne Fitzenreiter [Fri, 9 Jul 2021 06:12:53 +0000 (06:12 +0000)] 
core159: add collect and libstatgrab

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocollectd: Use libstatgrab to read disk stats
Michael Tremer [Thu, 8 Jul 2021 11:20:05 +0000 (11:20 +0000)] 
collectd: Use libstatgrab to read disk stats

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agomake.sh: Build libstatgrab before collectd
Michael Tremer [Thu, 8 Jul 2021 11:20:03 +0000 (11:20 +0000)] 
make.sh: Build libstatgrab before collectd

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agolibstatgrab: Make it part of the core system
Michael Tremer [Thu, 8 Jul 2021 11:20:04 +0000 (11:20 +0000)] 
libstatgrab: Make it part of the core system

collectd will be using this

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agou-boot: uppdate to 2021.07
Arne Fitzenreiter [Thu, 8 Jul 2021 10:38:52 +0000 (10:38 +0000)] 
u-boot: uppdate to 2021.07

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoddns.cgi: Fix sanity check logic.
Stefan Schantl [Tue, 6 Jul 2021 16:08:29 +0000 (18:08 +0200)] 
ddns.cgi: Fix sanity check logic.

The input validation did not work in the proper way. It allways
reported "No password" when using a provider which supports token and
the token has been given.

This of course is wrong and leaded to unuseable providers.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
2 months agostrace: enable on aarch64
Arne Fitzenreiter [Wed, 7 Jul 2021 05:47:36 +0000 (05:47 +0000)] 
strace: enable on aarch64

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoopenvmtools: update to stable-11.3.0
Arne Fitzenreiter [Tue, 6 Jul 2021 16:44:02 +0000 (18:44 +0200)] 
openvmtools: update to stable-11.3.0

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoglibc: fix for older i?86 cpu's
Arne Fitzenreiter [Tue, 6 Jul 2021 04:18:09 +0000 (06:18 +0200)] 
glibc: fix for older i?86 cpu's

with such cpu the libc fails with CPU ISA level is lower than required. So this disable
ISA support.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore159: started
Arne Fitzenreiter [Mon, 5 Jul 2021 05:45:43 +0000 (07:45 +0200)] 
core159: started

this update is based on core-kerneltest in arne_f/kernel-5.10

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore-kerneltest: add pafire functions.pl
Arne Fitzenreiter [Sat, 3 Jul 2021 15:10:15 +0000 (15:10 +0000)] 
core-kerneltest: add pafire functions.pl

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agopakfire: switch 32bit arm to armv6l
Arne Fitzenreiter [Sat, 3 Jul 2021 15:05:37 +0000 (15:05 +0000)] 
pakfire: switch 32bit arm to armv6l

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agokernel: armv6l rootfile update
Arne Fitzenreiter [Sat, 3 Jul 2021 15:02:48 +0000 (15:02 +0000)] 
kernel: armv6l rootfile update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoarmv6l: update toolchain rootfiles
Arne Fitzenreiter [Fri, 2 Jul 2021 13:07:09 +0000 (13:07 +0000)] 
armv6l: update toolchain rootfiles

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore-kerneltest: add python3 32bit symlinks
Arne Fitzenreiter [Fri, 2 Jul 2021 11:25:39 +0000 (13:25 +0200)] 
core-kerneltest: add python3 32bit symlinks

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agogcc: fix i586 rootfile
Arne Fitzenreiter [Fri, 2 Jul 2021 11:24:38 +0000 (13:24 +0200)] 
gcc: fix i586 rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agomake.sh: fix toolchain extension at md5 check
Arne Fitzenreiter [Fri, 2 Jul 2021 12:47:52 +0000 (14:47 +0200)] 
make.sh: fix toolchain extension at md5 check

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore-kerneltest: break on armv5tel
Arne Fitzenreiter [Fri, 2 Jul 2021 06:04:18 +0000 (08:04 +0200)] 
core-kerneltest: break on armv5tel

Armv5tel is not supported anymore.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agofirewall: remove conntrack_gre helper
Arne Fitzenreiter [Fri, 2 Jul 2021 05:53:24 +0000 (07:53 +0200)] 
firewall: remove conntrack_gre helper

this is not exist in kernel-5.10

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore-kerneltest: add libxcrypt
Arne Fitzenreiter [Fri, 2 Jul 2021 05:06:54 +0000 (07:06 +0200)] 
core-kerneltest: add libxcrypt

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agodisable paks that not compile with gcc-11
Arne Fitzenreiter [Fri, 2 Jul 2021 05:02:55 +0000 (07:02 +0200)] 
disable paks that not compile with gcc-11

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agokernel: update to 5.10.47
Arne Fitzenreiter [Thu, 1 Jul 2021 16:01:29 +0000 (18:01 +0200)] 
kernel: update to 5.10.47

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agolibxcrypt: update to 4.4.23
Arne Fitzenreiter [Thu, 1 Jul 2021 13:44:58 +0000 (15:44 +0200)] 
libxcrypt: update to 4.4.23

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agomake.sh bump toolchain version
Arne Fitzenreiter [Thu, 1 Jul 2021 07:13:32 +0000 (09:13 +0200)] 
make.sh bump toolchain version

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agocore-kerneltest: add toolchain upates to updater
Arne Fitzenreiter [Thu, 1 Jul 2021 06:57:24 +0000 (08:57 +0200)] 
core-kerneltest: add toolchain upates to updater

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agokernel: update to 5.10.46
Arne Fitzenreiter [Thu, 1 Jul 2021 06:56:26 +0000 (08:56 +0200)] 
kernel: update to 5.10.46

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoi586: toolchain rootfile update
Arne Fitzenreiter [Thu, 1 Jul 2021 06:52:36 +0000 (08:52 +0200)] 
i586: toolchain rootfile update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoaarch64: toolchain rootfile update
Arne Fitzenreiter [Thu, 1 Jul 2021 06:50:51 +0000 (08:50 +0200)] 
aarch64: toolchain rootfile update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoarmv6: switch march to armv6zk+fp to use the FPU.
Arne Fitzenreiter [Thu, 1 Jul 2021 06:43:47 +0000 (08:43 +0200)] 
armv6: switch march to armv6zk+fp to use the FPU.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agogcc: remove CCFLAGS only in pass1 of the toolchain
Arne Fitzenreiter [Thu, 1 Jul 2021 06:42:36 +0000 (08:42 +0200)] 
gcc: remove CCFLAGS only in pass1 of the toolchain

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agomake.sh: fix CCACHE path at toolchain build
Arne Fitzenreiter [Thu, 1 Jul 2021 06:39:13 +0000 (08:39 +0200)] 
make.sh: fix CCACHE path at toolchain build

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agozlib: use correct gcc at toolchain build
Arne Fitzenreiter [Thu, 1 Jul 2021 06:31:45 +0000 (08:31 +0200)] 
zlib: use correct gcc at toolchain build

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>