cpufrequtils: hide output on disabled cores. We disable cores if the are affected by some cpu vulnerabilities this cores report errors if you try to change the settings. So only print the output for core0 and hide it for all cores. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
cpufrequtils: fix initskript for amd-pstate the initskript loads a test-modul for amd-pstate (which traces on intel) and off course reports errors if firmware settings are missing. this also fix the error at start because also amd-pstate doesn't support ondemand mode. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
freeradius: Increment PAK_VER & ship freeradius to link to the updated libssl version - OpenSSL was updated to 3.1.4 in CU181 and to 3.2.1 in CU183 but in both cases freeradius was not incremented to cause it to be shipped. - This patch increments the freeradius PAK_VER to ensure it will be shipped. Fixes: Bug#13590 Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
graphs.pl: Fixes graph failure when the DROP_HOSTILE directory is missing - If a fresh install is done then only the DROP_HOSTILE_IN & DROP_HOSTILE_OUT rrd directories are created. - With the DROP_HOSTILE directory missing then when the fwhits graph is updated an error message is caused by the inability to open the required files. - This patch adds an if/else loop into the fwhits graph code to deal with the two cases of the DROP_HOSTILE being present or not depending on the history and if a backup with logs has been restored from when DROP_HOSTILE was in use. - Tested on vm testbed and created a historical line for the hostile data when it was not split - There might be a simpler or better approach than this but it was the only option I could identify. I couldn't find anything about being able to use if loops within the RRD::Graph loop Tested-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Adolf Belka <adolf.belka@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
unbound: Update to 1.19.1 For details see: https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-1 "Bug Fixes Fix CVE-2023-50387, DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers. Fix CVE-2023-50868, NSEC3 closest encloser proof can exhaust CPU." Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
bind: Update to 9.16.48 For details see: https://downloads.isc.org/isc/bind9/9.16.48/doc/arm/html/notes.html#notes-for-bind-9-16-48 Fixes several CVEs. Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Merge branch 'next'
installer: Fail if the bootloader could not be installed If GRUB could not be installed during installation, the installer continued without reporting the error to the user. This change will make the installer fail. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>