ipfire-2.x.git
5 years agoMerge remote-tracking branch 'origin/next' into install-raid
Michael Tremer [Wed, 20 Aug 2014 19:46:49 +0000 (21:46 +0200)] 
Merge remote-tracking branch 'origin/next' into install-raid

5 years agoRootfile update
Michael Tremer [Wed, 20 Aug 2014 19:45:12 +0000 (21:45 +0200)] 
Rootfile update

5 years agodracut: Move configuration into right directory
Michael Tremer [Wed, 20 Aug 2014 19:44:47 +0000 (21:44 +0200)] 
dracut: Move configuration into right directory

5 years agodracut: Remove switch_root.c
Michael Tremer [Wed, 20 Aug 2014 19:43:17 +0000 (21:43 +0200)] 
dracut: Remove switch_root.c

5 years agodracut: Update dracut.conf
Michael Tremer [Wed, 20 Aug 2014 19:42:49 +0000 (21:42 +0200)] 
dracut: Update dracut.conf

5 years agomake.sh: Build mdadm before dracut
Michael Tremer [Wed, 20 Aug 2014 19:25:24 +0000 (21:25 +0200)] 
make.sh: Build mdadm before dracut

5 years agomake.sh: Build libsmooth after newt
Michael Tremer [Wed, 20 Aug 2014 19:25:11 +0000 (21:25 +0200)] 
make.sh: Build libsmooth after newt

5 years agoinstaller: Make umounting more reliable
Michael Tremer [Wed, 20 Aug 2014 19:16:25 +0000 (21:16 +0200)] 
installer: Make umounting more reliable

5 years agoppp: update to 2.4.7.
Arne Fitzenreiter [Tue, 19 Aug 2014 14:17:13 +0000 (16:17 +0200)] 
ppp: update to 2.4.7.

Fix for ms-chap-v2.
fixes #10575.

5 years agoinstaller: Pretify the interface a little bit
Michael Tremer [Thu, 14 Aug 2014 13:19:42 +0000 (15:19 +0200)] 
installer: Pretify the interface a little bit

5 years agoinstaller: Use full locale strings for locale selection
Michael Tremer [Thu, 14 Aug 2014 12:22:39 +0000 (14:22 +0200)] 
installer: Use full locale strings for locale selection

5 years agocdrom: Strip all binaries put into the installer ramdisk
Michael Tremer [Thu, 14 Aug 2014 12:21:55 +0000 (14:21 +0200)] 
cdrom: Strip all binaries put into the installer ramdisk

5 years agofirstsetup: Fix path to setup
Michael Tremer [Thu, 14 Aug 2014 12:07:44 +0000 (14:07 +0200)] 
firstsetup: Fix path to setup

5 years agolibsmooth+install: Fix output redirection
Michael Tremer [Thu, 14 Aug 2014 12:07:13 +0000 (14:07 +0200)] 
libsmooth+install: Fix output redirection

5 years agoinstaller: Really include /etc/profile.d
Michael Tremer [Thu, 14 Aug 2014 11:40:09 +0000 (13:40 +0200)] 
installer: Really include /etc/profile.d

5 years agomdadm isn't an add-on any more
Michael Tremer [Thu, 14 Aug 2014 10:59:10 +0000 (12:59 +0200)] 
mdadm isn't an add-on any more

5 years agoRootfile update.
Michael Tremer [Thu, 14 Aug 2014 10:55:26 +0000 (12:55 +0200)] 
Rootfile update.

5 years agonewt: Update to 0.52.17
Michael Tremer [Thu, 14 Aug 2014 10:55:01 +0000 (12:55 +0200)] 
newt: Update to 0.52.17

5 years agoslang: Update to 2.2.4
Michael Tremer [Thu, 14 Aug 2014 10:54:10 +0000 (12:54 +0200)] 
slang: Update to 2.2.4

5 years agosetup: Fix path to probenic.sh script
Michael Tremer [Thu, 14 Aug 2014 10:52:11 +0000 (12:52 +0200)] 
setup: Fix path to probenic.sh script

5 years agocore82: Add changed files
Michael Tremer [Thu, 14 Aug 2014 10:45:37 +0000 (12:45 +0200)] 
core82: Add changed files

5 years agoMove core updates 80 and 81 to oldcore.
Michael Tremer [Thu, 14 Aug 2014 10:27:56 +0000 (12:27 +0200)] 
Move core updates 80 and 81 to oldcore.

5 years agoCreate empty core update 82.
Michael Tremer [Thu, 14 Aug 2014 10:27:15 +0000 (12:27 +0200)] 
Create empty core update 82.

5 years agoinstaller: Try harder to stop pre-existing software raids.
Michael Tremer [Wed, 13 Aug 2014 10:04:08 +0000 (12:04 +0200)] 
installer: Try harder to stop pre-existing software raids.

5 years agoinstaller: Mark the GRUB boot partition as bootable on GPT.
Michael Tremer [Tue, 12 Aug 2014 13:17:29 +0000 (15:17 +0200)] 
installer: Mark the GRUB boot partition as bootable on GPT.

5 years agoinstaller: Fix filesystem selection.
Michael Tremer [Tue, 12 Aug 2014 13:16:37 +0000 (15:16 +0200)] 
installer: Fix filesystem selection.

When the user selected the OK button, the installation aborted
instead of continuing.

5 years agoinstaller: Flush all disk buffers after the installation has finished.
Michael Tremer [Tue, 12 Aug 2014 13:15:52 +0000 (15:15 +0200)] 
installer: Flush all disk buffers after the installation has finished.

5 years agoinstaller: Downgrade RAID metadata format to 1.0.
Michael Tremer [Tue, 12 Aug 2014 13:14:45 +0000 (15:14 +0200)] 
installer: Downgrade RAID metadata format to 1.0.

5 years agoinstaller: Change separator in disk description to dash.
Michael Tremer [Tue, 12 Aug 2014 13:12:25 +0000 (15:12 +0200)] 
installer: Change separator in disk description to dash.

5 years agoinstaller: Rewrite language selection.
Michael Tremer [Tue, 12 Aug 2014 13:09:47 +0000 (15:09 +0200)] 
installer: Rewrite language selection.

5 years agoinstaller: Drop user to an emergency shell if the installer crashes.
Michael Tremer [Tue, 12 Aug 2014 12:58:13 +0000 (14:58 +0200)] 
installer: Drop user to an emergency shell if the installer crashes.

5 years agoinstaller: Wipe first bytes of partitions and disks before partitioning.
Michael Tremer [Tue, 12 Aug 2014 12:57:23 +0000 (14:57 +0200)] 
installer: Wipe first bytes of partitions and disks before partitioning.

5 years agoinstaller: Umount everything right away.
Michael Tremer [Tue, 12 Aug 2014 12:47:32 +0000 (14:47 +0200)] 
installer: Umount everything right away.

5 years agomisc-progs: Dynamically link against libsmooth.
Michael Tremer [Tue, 12 Aug 2014 10:23:44 +0000 (12:23 +0200)] 
misc-progs: Dynamically link against libsmooth.

5 years agosetup: Migrate to autotool and use gettext.
Michael Tremer [Tue, 12 Aug 2014 10:19:10 +0000 (12:19 +0200)] 
setup: Migrate to autotool and use gettext.

5 years agomdadm: Update to 3.3.1.
Michael Tremer [Tue, 12 Aug 2014 09:10:37 +0000 (11:10 +0200)] 
mdadm: Update to 3.3.1.

5 years agoproxy: Allow HTTP Basic authentication against Active Directory servers
Michael Tremer [Mon, 11 Aug 2014 09:49:31 +0000 (11:49 +0200)] 
proxy: Allow HTTP Basic authentication against Active Directory servers

Some clients may not support NTLMv2. Basic authentication can
now be activated. This is dangerous as it sends the credentials
in cleartext to the proxy server.

5 years agogeneral-functions.pl: validdomainname misinterprets RFC1035
Axel Gembe [Mon, 11 Aug 2014 04:23:58 +0000 (12:23 +0800)] 
general-functions.pl: validdomainname misinterprets RFC1035

The function validdomainname checks that each part of a domain name is at least
2 characters in length, but RFC1035 only makes a restriction on a "label" being
at most 63 characters in length. This change allows reverse DNS zones like
2.168.192.in-addr.arpa to be added to the DNS forward configuration, which was
incorrectly prevented before.

Signed-off-by: Axel Gembe <ago@multipixs.com>
5 years agofirewall: updated rootfiles
Timo Eissler [Thu, 7 Aug 2014 18:11:22 +0000 (20:11 +0200)] 
firewall: updated rootfiles

5 years agofirewall: fix faulty masquerading packets
Timo Eissler [Thu, 7 Aug 2014 17:00:58 +0000 (19:00 +0200)] 
firewall: fix faulty masquerading packets

5 years agoMerge branch 'master' into next
Arne Fitzenreiter [Fri, 8 Aug 2014 06:51:53 +0000 (08:51 +0200)] 
Merge branch 'master' into next

5 years agocore81: set need reboot flag and restart apache. core81
Arne Fitzenreiter [Fri, 8 Aug 2014 06:14:29 +0000 (08:14 +0200)] 
core81: set need reboot flag and restart apache.

5 years agoMerge remote-tracking branch 'ms/ddns.cgi-fixes' into next
Michael Tremer [Thu, 7 Aug 2014 19:06:13 +0000 (21:06 +0200)] 
Merge remote-tracking branch 'ms/ddns.cgi-fixes' into next

Conflicts:
html/cgi-bin/ddns.cgi

5 years agoddns.cgi: Support hostname details without seperating dots.
Stefan Schantl [Sat, 26 Jul 2014 16:26:37 +0000 (18:26 +0200)] 
ddns.cgi: Support hostname details without seperating dots.

To keep compatiblity with the settings file of the old DDNS update script
(setddns.pl) we keept the storrage of the hostname information in
two parts (hostname and domain) and connected both with a dot to get a valid
FQDN again. OpenDNS and may some other providers do not use a dotted format
for this information, so one of these two values were empty.

We now can handle such cases in a right way.

5 years agoddns.cgi: Fix CGI clearing all settings.
Michael Tremer [Thu, 7 Aug 2014 18:58:33 +0000 (20:58 +0200)] 
ddns.cgi: Fix CGI clearing all settings.

5 years agoddns.cgi: Fix coding style.
Michael Tremer [Thu, 7 Aug 2014 18:40:14 +0000 (20:40 +0200)] 
ddns.cgi: Fix coding style.

5 years agoddns.cgi: Allow enabling/disabling entries.
Michael Tremer [Thu, 7 Aug 2014 18:33:10 +0000 (20:33 +0200)] 
ddns.cgi: Allow enabling/disabling entries.

5 years agoMerge remote-tracking branch 'amarx/ACCOUNTING' into next
Michael Tremer [Thu, 7 Aug 2014 13:11:47 +0000 (15:11 +0200)] 
Merge remote-tracking branch 'amarx/ACCOUNTING' into next

5 years agosquid-accounting: get trafficdata from LAST month, when month has changed
Alexander Marx [Thu, 7 Aug 2014 13:10:11 +0000 (15:10 +0200)] 
squid-accounting: get trafficdata from LAST month, when month has changed

5 years agoMerge remote-tracking branch 'amarx/ACCOUNTING' into next
Michael Tremer [Thu, 7 Aug 2014 12:59:17 +0000 (14:59 +0200)] 
Merge remote-tracking branch 'amarx/ACCOUNTING' into next

Conflicts:
make.sh

5 years agoMerge remote-tracking branch 'ms/firewall-no-nat' into next
Michael Tremer [Thu, 7 Aug 2014 12:50:42 +0000 (14:50 +0200)] 
Merge remote-tracking branch 'ms/firewall-no-nat' into next

Conflicts:
doc/language_issues.nl
doc/language_issues.tr

5 years agoAdd batctl and libnl-3.
Michael Tremer [Thu, 7 Aug 2014 12:49:50 +0000 (14:49 +0200)] 
Add batctl and libnl-3.

5 years agocore81: change updatescript for core81.
Arne Fitzenreiter [Thu, 7 Aug 2014 02:31:58 +0000 (04:31 +0200)] 
core81: change updatescript for core81.

5 years agocore81: add changes to core81 updater. v2.15-core81
Arne Fitzenreiter [Wed, 6 Aug 2014 22:58:21 +0000 (00:58 +0200)] 
core81: add changes to core81 updater.

5 years agoopenssl: update to 1.0.1i.
Arne Fitzenreiter [Wed, 6 Aug 2014 22:57:23 +0000 (00:57 +0200)] 
openssl: update to 1.0.1i.

5 years agoddns: rootfile update.
Arne Fitzenreiter [Wed, 6 Aug 2014 18:26:08 +0000 (20:26 +0200)] 
ddns: rootfile update.

5 years agocheck_mk_agent: extract backup include before uninstall.
Arne Fitzenreiter [Wed, 6 Aug 2014 16:05:14 +0000 (18:05 +0200)] 
check_mk_agent: extract backup include before uninstall.

5 years agosquid-accounting: create billpreview file as temporary file
Alexander Marx [Wed, 6 Aug 2014 13:10:41 +0000 (15:10 +0200)] 
squid-accounting: create billpreview file as temporary file

5 years agofirewall-no-nat: Use network masks to identify the subnets.
Michael Tremer [Wed, 6 Aug 2014 12:37:21 +0000 (14:37 +0200)] 
firewall-no-nat: Use network masks to identify the subnets.

In the POSTROUTING chains of the NAT table, there is
no more information about on which interface the packet
has arrived (green0, etc.).

5 years agosquid-accounting: changed permissions on acct-lib.pl
Alexander Marx [Wed, 6 Aug 2014 11:50:42 +0000 (13:50 +0200)] 
squid-accounting: changed permissions on acct-lib.pl

5 years agosquid-accounting: change permissions and reread languagefiles on uninstall
Alexander Marx [Wed, 6 Aug 2014 11:41:54 +0000 (13:41 +0200)] 
squid-accounting: change permissions and reread languagefiles on uninstall

5 years agoPer-PDF-API2: new perl module used by squid-accounting
Alexander Marx [Wed, 6 Aug 2014 06:59:43 +0000 (08:59 +0200)] 
Per-PDF-API2: new perl module used by squid-accounting

5 years agocheck_mk_agent: Bump release version to 4.
Michael Tremer [Wed, 6 Aug 2014 08:30:44 +0000 (10:30 +0200)] 
check_mk_agent: Bump release version to 4.

5 years agoMerge remote-tracking branch 'morlix/check_mk'
Michael Tremer [Wed, 6 Aug 2014 08:28:57 +0000 (10:28 +0200)] 
Merge remote-tracking branch 'morlix/check_mk'

5 years agoMerge branch 'master' of git.ipfire.org:/pub/git/ipfire-2.x
Arne Fitzenreiter [Wed, 6 Aug 2014 07:36:31 +0000 (09:36 +0200)] 
Merge branch 'master' of git.ipfire.org:/pub/git/ipfire-2.x

5 years agolzo: Downgrade to 2.0.6 (CVE-2014-4607 patched).
Arne Fitzenreiter [Wed, 6 Aug 2014 07:30:13 +0000 (09:30 +0200)] 
lzo: Downgrade to 2.0.6 (CVE-2014-4607 patched).

openvpn fails at lzo_init with lzo-2.07 and 2.08 on armv5tel.

5 years agoSquid-accounting: new addon for measuring proxy traffic per user/ip
Alexander Marx [Wed, 6 Aug 2014 06:58:43 +0000 (08:58 +0200)] 
Squid-accounting: new addon for measuring proxy traffic per user/ip

5 years agoddns.cgi: Fix enable/disable handling of entries.
Stefan Schantl [Tue, 5 Aug 2014 19:24:44 +0000 (21:24 +0200)] 
ddns.cgi: Fix enable/disable handling of entries.

When the "enabled" checkbox is checked a "on" will be returned,
if the box is unchecked checkboxes will return nothing.

As a result of this behaviour the ddns.conf contained entries which have been disabled in the WUI.

We now check if the checkbox returns a "on", otherwise we will set the "enabled" value to "off" to
prevent from this problem.

5 years agoddns: Update to 004.
Michael Tremer [Tue, 5 Aug 2014 17:49:28 +0000 (19:49 +0200)] 
ddns: Update to 004.

5 years agofirewall: add more pscan matches and filter INVALID conntrack packages.
Arne Fitzenreiter [Tue, 29 Jul 2014 19:57:07 +0000 (21:57 +0200)] 
firewall: add more pscan matches and filter INVALID conntrack packages.

5 years agoOpenVPN: Added a check for empty 'CERT_NAME' field.
Erik Kapfer [Thu, 31 Jul 2014 06:43:24 +0000 (08:43 +0200)] 
OpenVPN: Added a check for empty 'CERT_NAME' field.

Fixes: #10581

5 years agotor: Update to 0.2.4.23
Michael Tremer [Mon, 4 Aug 2014 17:39:16 +0000 (19:39 +0200)] 
tor: Update to 0.2.4.23

http://www.heise.de/security/meldung/Erfolgreicher-Angriff-auf-Tor-Anonymisierung-2278774.html

5 years agoddns.cgi: Check for valid FQDN before doing nslookup.
Stefan Schantl [Thu, 31 Jul 2014 19:45:38 +0000 (21:45 +0200)] 
ddns.cgi: Check for valid FQDN before doing nslookup.

We now check if the used hostname is a valid FQDN before doing the nslookup to
determine if a DDNS host is up do date.

5 years agoddns.cgi: Fix token auth for provider regfish.com.
Stefan Schantl [Fri, 1 Aug 2014 17:56:52 +0000 (19:56 +0200)] 
ddns.cgi: Fix token auth for provider regfish.com.

In the past the regfish.com auth token was stored as username similar than freedns.afraid.com. We now expected
the token key stored as password, to keep compatiblity with old installations I've added some compatible code
to prevent users from various issues.

5 years agoOpenVPN: Added a check for empty 'CERT_NAME' field.
Erik Kapfer [Thu, 31 Jul 2014 06:43:24 +0000 (08:43 +0200)] 
OpenVPN: Added a check for empty 'CERT_NAME' field.

Fixes: #10581

5 years agoinstaller: Go on when OK button is hit in FS selection
Michael Tremer [Wed, 30 Jul 2014 21:15:25 +0000 (23:15 +0200)] 
installer: Go on when OK button is hit in FS selection

Hitting just the enter key proceeded. Navigating to the
OK button and hitting that one aborted the installation.

5 years agoinstaller: Improve formatting of disk vendors/models.
Michael Tremer [Wed, 30 Jul 2014 21:14:17 +0000 (23:14 +0200)] 
installer: Improve formatting of disk vendors/models.

5 years agoinstaller: Center root line and help line.
Michael Tremer [Wed, 30 Jul 2014 20:37:16 +0000 (22:37 +0200)] 
installer: Center root line and help line.

5 years agoMove installer to its own directory.
Michael Tremer [Wed, 30 Jul 2014 20:04:35 +0000 (22:04 +0200)] 
Move installer to its own directory.

5 years agoMove setup to an own directory.
Michael Tremer [Wed, 30 Jul 2014 20:03:55 +0000 (22:03 +0200)] 
Move setup to an own directory.

5 years agolibsmooth: Make it its own package.
Michael Tremer [Wed, 30 Jul 2014 20:02:35 +0000 (22:02 +0200)] 
libsmooth: Make it its own package.

5 years agoMerge remote-tracking branch 'dweismueller/owncloud-7' into next
Michael Tremer [Wed, 30 Jul 2014 11:15:33 +0000 (13:15 +0200)] 
Merge remote-tracking branch 'dweismueller/owncloud-7' into next

5 years agoids.cgi fix snort rules download url. core80 v2.15-core80
Erik Kapfer [Tue, 29 Jul 2014 20:29:28 +0000 (22:29 +0200)] 
ids.cgi fix snort rules download url.

fixes: 10579

5 years agoMerge remote-tracking branch 'origin/master' into next
Arne Fitzenreiter [Tue, 29 Jul 2014 20:01:19 +0000 (22:01 +0200)] 
Merge remote-tracking branch 'origin/master' into next

Conflicts:
config/cfgroot/general-functions.pl

5 years agofirewall: add more pscan matches and filter INVALID conntrack packages.
Arne Fitzenreiter [Tue, 29 Jul 2014 19:57:07 +0000 (21:57 +0200)] 
firewall: add more pscan matches and filter INVALID conntrack packages.

5 years agoowncloud: updatet to version 7.0.0
Daniel Weismüller [Tue, 29 Jul 2014 13:55:36 +0000 (15:55 +0200)] 
owncloud: updatet to version 7.0.0

5 years agoRevert "General-functions.pl: rewrite IpInSubnet replace inet_ntoa"
Michael Tremer [Tue, 29 Jul 2014 10:14:23 +0000 (12:14 +0200)] 
Revert "General-functions.pl: rewrite IpInSubnet replace inet_ntoa"

This reverts commit ab92dc0c84cc6c11f90e753439567d80bac23e2b.

See comment in last commit

5 years agoRevert "General-functions.pl: rewrite getnetworkip without inet_aton"
Michael Tremer [Tue, 29 Jul 2014 10:12:38 +0000 (12:12 +0200)] 
Revert "General-functions.pl: rewrite getnetworkip without inet_aton"

This reverts commit 1be398ae381d4d0cdbd50272bff4434121d36f65.

Some users reported some issues with the generated firewall ruleset
with the new function:
  http://forum.ipfire.org/index.php?topic=11124.0

5 years agorngd: Silence initscript when rngd is already started.
Michael Tremer [Tue, 29 Jul 2014 10:07:02 +0000 (12:07 +0200)] 
rngd: Silence initscript when rngd is already started.

When a hardware random number generator is found by udev
it will start rngd automatically which is what we also do
by default in the initialisation sequence of the system
(e.g. for RDRAND).
The user will then see an error message that rngd has
already been started which was confusing.

5 years agoRootfile update.
Michael Tremer [Sun, 27 Jul 2014 22:27:08 +0000 (00:27 +0200)] 
Rootfile update.

5 years agoinstaller: Fix typo which caused to always use GPT.
Michael Tremer [Sun, 27 Jul 2014 22:26:46 +0000 (00:26 +0200)] 
installer: Fix typo which caused to always use GPT.

5 years agoinstaller: Ship some helpful tools like df, ps, top
Michael Tremer [Sun, 27 Jul 2014 22:26:21 +0000 (00:26 +0200)] 
installer: Ship some helpful tools like df, ps, top

5 years agocdrom: Fix build error.
Michael Tremer [Sun, 27 Jul 2014 22:26:04 +0000 (00:26 +0200)] 
cdrom: Fix build error.

5 years agogeneral-functions.pl: Replace lots of broken network code.
Michael Tremer [Sun, 27 Jul 2014 20:46:20 +0000 (22:46 +0200)] 
general-functions.pl: Replace lots of broken network code.

The state of some code especially in general-functions.pl
is in such a bad shape and faulty.
This is a first step that replaces some of the network
functions with those who have been tested and work for
undefined inputs.

The old functions have been left in place as stubs
and must be removed at some time.

5 years agoCreate initramfs images in lfs/linux
Michael Tremer [Sun, 27 Jul 2014 17:17:44 +0000 (19:17 +0200)] 
Create initramfs images in lfs/linux

5 years agodracut: Remove unused modules.
Michael Tremer [Sun, 27 Jul 2014 17:12:43 +0000 (19:12 +0200)] 
dracut: Remove unused modules.

5 years agoinstaller: Increase height of RAID confirmation window
Michael Tremer [Sun, 27 Jul 2014 17:12:25 +0000 (19:12 +0200)] 
installer: Increase height of RAID confirmation window

5 years agoinstaller: Write fstab
Michael Tremer [Sun, 27 Jul 2014 17:12:12 +0000 (19:12 +0200)] 
installer: Write fstab

5 years agoinstaller: Add support for XFS.
Michael Tremer [Sun, 27 Jul 2014 16:00:00 +0000 (18:00 +0200)] 
installer: Add support for XFS.

5 years agoinstaller: Pass partition sizes to parted in bytes.
Michael Tremer [Sun, 27 Jul 2014 15:59:02 +0000 (17:59 +0200)] 
installer: Pass partition sizes to parted in bytes.