people/pmueller/ipfire-2.x.git
4 weeks agomake.sh: fix tmpfs build on 32bit machines master
Arne Fitzenreiter [Wed, 18 Sep 2019 16:31:26 +0000 (16:31 +0000)] 
make.sh: fix tmpfs build on 32bit machines

the inode count of tmpfs defaults on availbable low memory page count
which is too low on 32bit machines

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 weeks agoglibc: enbable parallel build for locales
Arne Fitzenreiter [Wed, 18 Sep 2019 16:30:49 +0000 (16:30 +0000)] 
glibc: enbable parallel build for locales

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 weeks agoIO-Socket-SSL: Update to version 2.066
Erik Kapfer [Wed, 18 Sep 2019 04:54:51 +0000 (06:54 +0200)] 
IO-Socket-SSL: Update to version 2.066

Fix for "Undefined subroutine &IO::Socket::SSL::set_client_defaults called at /usr/libexec/git-core/git-send-email" problem.

Signed-off-by: Erik Kapfer <ummeegge@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 weeks agocore136: apply local sshd config and restart sshd at update
Arne Fitzenreiter [Sat, 14 Sep 2019 18:13:21 +0000 (18:13 +0000)] 
core136: apply local sshd config and restart sshd at update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 weeks agocore136: fix typo at GeoIP update
Arne Fitzenreiter [Sat, 14 Sep 2019 16:20:27 +0000 (16:20 +0000)] 
core136: fix typo at GeoIP update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 weeks agocore136: ship perl-CGI and perl-Switch
Arne Fitzenreiter [Sat, 14 Sep 2019 15:21:41 +0000 (15:21 +0000)] 
core136: ship perl-CGI and perl-Switch

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
4 weeks agocore136: ship updated perl scripts
Arne Fitzenreiter [Sat, 14 Sep 2019 15:18:29 +0000 (15:18 +0000)] 
core136: ship updated perl scripts

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoMerge branch 'next'
Arne Fitzenreiter [Thu, 12 Sep 2019 10:57:09 +0000 (12:57 +0200)] 
Merge branch 'next'

5 weeks agofinish core136
Arne Fitzenreiter [Thu, 12 Sep 2019 10:54:35 +0000 (12:54 +0200)] 
finish core136

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoupdate contributor list
Arne Fitzenreiter [Thu, 12 Sep 2019 10:53:28 +0000 (12:53 +0200)] 
update contributor list

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agocore136: ship updated zoneconf.cgi
Arne Fitzenreiter [Thu, 12 Sep 2019 10:20:45 +0000 (10:20 +0000)] 
core136: ship updated zoneconf.cgi

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agozoneconf: reduce the width of inputs for vlanid
Alex Koch [Sun, 1 Sep 2019 22:47:29 +0000 (00:47 +0200)] 
zoneconf: reduce the width of inputs for vlanid

The inputs for the vlanids are overlapping the borders of their cells (using a recent Firefox on Linux Mint, Android or Windows 7). This patch fixes this by limiting the width to a fixed value.

Signed-off-by: Alex Koch <ipfire@starkstromkonsument.de>
Signed-off-by: Alex Koch <ipfire@starkstromkonsument.de>
Acked-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoopenssl: update to 1.1.1d
Arne Fitzenreiter [Wed, 11 Sep 2019 17:57:35 +0000 (17:57 +0000)] 
openssl: update to 1.1.1d

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agocore136: update logwatch crontab entry
Arne Fitzenreiter [Wed, 11 Sep 2019 17:38:32 +0000 (17:38 +0000)] 
core136: update logwatch crontab entry

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoBUG 12036: logwatch now starts at 00:05am to avoid conflicts with logrotate
Matthias Fischer [Sat, 31 Aug 2019 20:13:19 +0000 (22:13 +0200)] 
BUG 12036: logwatch now starts at 00:05am to avoid conflicts with logrotate

Problem:
Every once in a while 'logwatch' creates an empty log file with 0 Bytes.

Probably 'logwatch' conflicts with the logrotate job which is
launched at the same time.

To avoid this in the future, the start of logwatch was postponed for
four minutes.

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agocore136: ship logrotate
Arne Fitzenreiter [Wed, 11 Sep 2019 16:57:20 +0000 (16:57 +0000)] 
core136: ship logrotate

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agologrotate: Update to 3.5.1
Matthias Fischer [Sun, 1 Sep 2019 07:37:26 +0000 (09:37 +0200)] 
logrotate: Update to 3.5.1

For details see:
https://github.com/logrotate/logrotate/releases

"use correct create mode in examples/btmp (#257)"
=> https://github.com/logrotate/logrotate/pull/257

"fix several bugs found by fuzzing (#254)"
=> https://github.com/logrotate/logrotate/issues/254

"do not abort globbing on a broken symlink (#251)"
=> https://github.com/logrotate/logrotate/issues/251

"rearrange logrotate.8 man page to improve readability (#248)"
=> https://github.com/logrotate/logrotate/pull/248

"encourage admins to use the su directive in logrotate.8 man page (#236)"
=> https://github.com/logrotate/logrotate/pull/236

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoTor: fix permission of /var/ipfire/tor/settings
peter.mueller@ipfire.org [Sat, 7 Sep 2019 17:52:00 +0000 (17:52 +0000)] 
Tor: fix permission of /var/ipfire/tor/settings

The settings file must be writeable for group "nobody" so
users can change their Tor settings via WebUI. Since other
files in /var/ipfire/tor/ does not need this workaround, only
the settings file permissions are changed.

Sorry for the late fix; this was reported by various people
in the forum, too (I was unaware of so many Tor users in our
community).

Fixes #12117

Reported-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agocore136: ship changed log.dat
Arne Fitzenreiter [Wed, 11 Sep 2019 16:52:23 +0000 (16:52 +0000)] 
core136: ship changed log.dat

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoWUI log-section Mail: add support for postfix addon
Alex Koch [Sat, 31 Aug 2019 18:53:00 +0000 (20:53 +0200)] 
WUI log-section Mail: add support for postfix addon

Expand the regex for the section dmi ("Mail") for /var/log/mail to include the log contents of postfix, in case the addon is installed.

Signed-off-by: Alex Koch <ipfire@starkstromkonsument.de>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoWUI log-section Mail: bugfix for dma
Alex Koch [Sat, 31 Aug 2019 18:52:59 +0000 (20:52 +0200)] 
WUI log-section Mail: bugfix for dma

The prefix for dmi in /var/log/mail seems to have changed from "dma[<PID>]: " to "dma: ". This results in a bug where no lines are being shown at all in the WUI.

Signed-off-by: Alex Koch <ipfire@starkstromkonsument.de>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agocore136: ship openssh
Arne Fitzenreiter [Wed, 11 Sep 2019 16:46:19 +0000 (16:46 +0000)] 
core136: ship openssh

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
5 weeks agoopenssh: update to 8.0p1
Peter Müller [Tue, 30 Jul 2019 19:38:00 +0000 (19:38 +0000)] 
openssh: update to 8.0p1

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoBUG12156: fixed wrong permissions in install script
sfeddersen [Tue, 3 Sep 2019 20:45:48 +0000 (22:45 +0200)] 
BUG12156: fixed wrong permissions in install script

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoBUG12156: GUI cosmetic to show woi logs cleaner
sfeddersen [Tue, 3 Sep 2019 20:45:47 +0000 (22:45 +0200)] 
BUG12156: GUI cosmetic to show woi logs cleaner

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoBUG12156: increased paket number
sfeddersen [Tue, 3 Sep 2019 20:45:46 +0000 (22:45 +0200)] 
BUG12156: increased paket number

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoBUG12156: added wio rrd files to backup
sfeddersen [Tue, 3 Sep 2019 20:45:45 +0000 (22:45 +0200)] 
BUG12156: added wio rrd files to backup

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoBUG12156: changed wio.cgi to fix broken Web GUI
sfeddersen [Tue, 3 Sep 2019 20:45:44 +0000 (22:45 +0200)] 
BUG12156: changed wio.cgi to fix broken Web GUI

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agohaproxy: Update to 2.0.5
Michael Tremer [Tue, 3 Sep 2019 15:13:35 +0000 (15:13 +0000)] 
haproxy: Update to 2.0.5

This release brings a couple of new features and this
patch enables using the PCRE Jit.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agocore136: ship usb_modswitch and data
Arne Fitzenreiter [Wed, 4 Sep 2019 14:17:19 +0000 (14:17 +0000)] 
core136: ship usb_modswitch and data

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agousb-modeswitch-data: fix rootfile
Arne Fitzenreiter [Wed, 4 Sep 2019 14:15:35 +0000 (14:15 +0000)] 
usb-modeswitch-data: fix rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoMerge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next
Arne Fitzenreiter [Tue, 3 Sep 2019 11:33:06 +0000 (11:33 +0000)] 
Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next

6 weeks agousb_modeswitch_data: update to 20170806
Ramax Lo [Mon, 5 Aug 2019 16:21:52 +0000 (00:21 +0800)] 
usb_modeswitch_data: update to 20170806

Signed-off-by: Ramax Lo <ramaxlo@gmail.com>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agousb_modeswitch: update to 1.5.2
Ramax Lo [Mon, 5 Aug 2019 16:21:51 +0000 (00:21 +0800)] 
usb_modeswitch: update to 1.5.2

Signed-off-by: Ramax Lo <ramaxlo@gmail.com>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agocore136: ship unbound
Arne Fitzenreiter [Mon, 2 Sep 2019 20:21:27 +0000 (20:21 +0000)] 
core136: ship unbound

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agounbound: Update to 1.9.3
Matthias Fischer [Sat, 31 Aug 2019 11:07:56 +0000 (13:07 +0200)] 
unbound: Update to 1.9.3

For details see:
https://nlnetlabs.nl/pipermail/unbound-users/2019-August/011765.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agozabbix_agentd: Update to 4.2.6
Alex Koch [Sun, 1 Sep 2019 21:34:58 +0000 (23:34 +0200)] 
zabbix_agentd: Update to 4.2.6

Release Notes: https://www.zabbix.com/rn/rn4.2.6

Signed-off-by: Alex Koch <ipfire@starkstromkonsument.de>
Reviewed-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoRevert "freeradius: Build without SSL"
Michael Tremer [Mon, 2 Sep 2019 18:41:39 +0000 (18:41 +0000)] 
Revert "freeradius: Build without SSL"

This reverts commit 071d7754f7b955b28f7e3b5f3eb44fbaa93eb4e9.

Fixes: #12139

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agofreeradius: Update to 3.0.19
Michael Tremer [Mon, 2 Sep 2019 18:41:38 +0000 (18:41 +0000)] 
freeradius: Update to 3.0.19

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agohaproxy: Update to 1.8.21
Michael Tremer [Mon, 2 Sep 2019 18:32:57 +0000 (18:32 +0000)] 
haproxy: Update to 1.8.21

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agopcengines-apu-firmware: rootfile update
Arne Fitzenreiter [Sun, 1 Sep 2019 16:07:14 +0000 (17:07 +0100)] 
pcengines-apu-firmware: rootfile update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agopcengines-apu.firmware: Update to 4.10.0.0
Arne Fitzenreiter [Sun, 1 Sep 2019 15:36:27 +0000 (16:36 +0100)] 
pcengines-apu.firmware: Update to 4.10.0.0

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
6 weeks agoperl-Net-LibIDN: add module for Amavisd
Arne Fitzenreiter [Sat, 31 Aug 2019 09:08:07 +0000 (11:08 +0200)] 
perl-Net-LibIDN: add module for Amavisd

fixes: #12138

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agodhcpcd: Update to 8.0.3
Matthias Fischer [Fri, 23 Aug 2019 16:53:39 +0000 (18:53 +0200)] 
dhcpcd: Update to 8.0.3

https://roy.marples.name/blog/dhcpcd-8-0-3-released

"DHCP: Work with IP headers with options
script: Assert that env string are correctly terminated
script: Terminate env strings with no value
script: Don't attempt to use an invalid env string
route: Fix NULL deference error when using static routes
ARP: Respect IFF_NOARP
DHCP: Add support for ARPHRD_NONE interfaces
DHCP: Allow full DHCP support for PtP interfaces, but not by default
DragonFlyBSD: 500704 announces IPv6 address flag changes
control: sends correct buffer to listeners"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agoclamav: Update to 0.101.4
Matthias Fischer [Fri, 23 Aug 2019 16:49:04 +0000 (18:49 +0200)] 
clamav: Update to 0.101.4

For details see:
https://blog.clamav.net/2019/08/clamav-01014-security-patch-release-has.html

"An out of bounds write was possible within ClamAV's NSIS bzip2
library when attempting decompression in cases where the number
of selectors exceeded the max limit set by the library (CVE-2019-12900).
The issue has been resolved by respecting that limit.

Thanks to Martin Simmons for reporting the issue here.

The zip bomb vulnerability mitigated in 0.101.3 has been assigned
the CVE identifier CVE-2019-12625. Unfortunately, a workaround for
the zip-bomb mitigation was immediately identified. To remediate
the zip-bomb scan time issue, a scan time limit has been introduced
in 0.101.4.
This limit now resolves ClamAV's vulnerability to CVE-2019-12625."

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agobind: Update to 9.11.10
Matthias Fischer [Fri, 23 Aug 2019 16:42:43 +0000 (18:42 +0200)] 
bind: Update to 9.11.10

For details see:
https://downloads.isc.org/isc/bind9/9.11.10/RELEASE-NOTES-bind-9.11.10.html

"Security Fixes

A race condition could trigger an assertion failure when a large
number of incoming packets were being rejected.
This flaw is disclosed in CVE-2019-6471. [GL #942]"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agofreeradius: Add a logrotate configuration file
Michael Tremer [Thu, 22 Aug 2019 21:45:29 +0000 (21:45 +0000)] 
freeradius: Add a logrotate configuration file

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agodnsdist: Increase number of open files to 64k
Michael Tremer [Thu, 22 Aug 2019 21:09:24 +0000 (21:09 +0000)] 
dnsdist: Increase number of open files to 64k

dnsdist might need to open large number of connections
and therefore the default limit of 1024 needs to be
raised.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agoaarch64: rootfile updates
Arne Fitzenreiter [Mon, 26 Aug 2019 10:12:56 +0000 (10:12 +0000)] 
aarch64: rootfile updates

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: touch "need reboot" flag
Arne Fitzenreiter [Sun, 25 Aug 2019 15:11:29 +0000 (17:11 +0200)] 
core136: touch "need reboot" flag

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: run xt_geoip_update
Arne Fitzenreiter [Sun, 25 Aug 2019 15:10:44 +0000 (17:10 +0200)] 
core136: run xt_geoip_update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: restart apache2
Arne Fitzenreiter [Sun, 25 Aug 2019 15:09:03 +0000 (17:09 +0200)] 
core136: restart apache2

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: remove old perl files
Arne Fitzenreiter [Sun, 25 Aug 2019 15:05:55 +0000 (17:05 +0200)] 
core136: remove old perl files

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship geoip-generator
Arne Fitzenreiter [Sun, 25 Aug 2019 14:40:49 +0000 (16:40 +0200)] 
core136: ship geoip-generator

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship hwdata
Arne Fitzenreiter [Sun, 25 Aug 2019 14:37:19 +0000 (16:37 +0200)] 
core136: ship hwdata

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship knot
Arne Fitzenreiter [Sun, 25 Aug 2019 14:35:45 +0000 (16:35 +0200)] 
core136: ship knot

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship bind
Arne Fitzenreiter [Sun, 25 Aug 2019 14:34:37 +0000 (16:34 +0200)] 
core136: ship bind

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship apache2
Arne Fitzenreiter [Sun, 25 Aug 2019 14:33:30 +0000 (16:33 +0200)] 
core136: ship apache2

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship dhcpcd
Arne Fitzenreiter [Sun, 25 Aug 2019 14:31:29 +0000 (16:31 +0200)] 
core136: ship dhcpcd

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship patch
Arne Fitzenreiter [Sun, 25 Aug 2019 14:28:41 +0000 (16:28 +0200)] 
core136: ship patch

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship ca-certificates
Arne Fitzenreiter [Sun, 25 Aug 2019 14:27:29 +0000 (16:27 +0200)] 
core136: ship ca-certificates

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: ship gcc with go compiler
Arne Fitzenreiter [Sun, 25 Aug 2019 14:25:11 +0000 (16:25 +0200)] 
core136: ship gcc with go compiler

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agocore136: add perl and common modules to update
Arne Fitzenreiter [Sun, 25 Aug 2019 10:17:41 +0000 (12:17 +0200)] 
core136: add perl and common modules to update

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agoxt_geoip_update: fix date and add maxmind copyright to GeoIP.dat
Arne Fitzenreiter [Sat, 24 Aug 2019 13:42:27 +0000 (15:42 +0200)] 
xt_geoip_update: fix date and add maxmind copyright to GeoIP.dat

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agoperl-NetAddr-IP: move to core
Arne Fitzenreiter [Sat, 24 Aug 2019 09:33:45 +0000 (11:33 +0200)] 
perl-NetAddr-IP: move to core

I had added this for spamassassin but now the geoip-converter needs it too.
It was not pushed yet so there is no need to remove it from pakfire databases.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
7 weeks agogeoip-generator: added to build legacy GeoIP.dat file
Arne Fitzenreiter [Sat, 24 Aug 2019 09:29:01 +0000 (11:29 +0200)] 
geoip-generator: added to build legacy GeoIP.dat file

program and scripts based on debian geoip packages.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoMerge remote-tracking branch 'arne_f/perl-5.30' into next
Arne Fitzenreiter [Tue, 20 Aug 2019 17:43:53 +0000 (17:43 +0000)] 
Merge remote-tracking branch 'arne_f/perl-5.30' into next

8 weeks agohwdata: update PCI/USB databases
Peter Müller [Tue, 30 Jul 2019 20:10:00 +0000 (20:10 +0000)] 
hwdata: update PCI/USB databases

PCI IDs: 2019-07-25 03:15:02
USB IDs: 2019-07-27 20:34:05

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoknot: Update to 2.8.3
Matthias Fischer [Tue, 23 Jul 2019 17:09:05 +0000 (19:09 +0200)] 
knot: Update to 2.8.3

For details see:
https://www.knot-dns.cz/2019-07-16-version-283.html

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agobind: Update to 9.11.9
Matthias Fischer [Tue, 23 Jul 2019 17:04:17 +0000 (19:04 +0200)] 
bind: Update to 9.11.9

For details see:
https://downloads.isc.org/isc/bind9/9.11.9/RELEASE-NOTES-bind-9.11.9.html

"Security Fixes

   A race condition could trigger an assertion failure when a large
   number of incoming packets were being rejected.
   This flaw is disclosed in CVE-2019-6471. [GL #942]"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoapache: Update to 2.4.41
Matthias Fischer [Thu, 15 Aug 2019 19:03:05 +0000 (21:03 +0200)] 
apache: Update to 2.4.41

For details see:
http://mirror.dkd.de/apache//httpd/CHANGES_2.4.41

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agodhcpcd: Update to 8.0.2
Matthias Fischer [Thu, 8 Aug 2019 18:06:05 +0000 (20:06 +0200)] 
dhcpcd: Update to 8.0.2

For details see:
https://roy.marples.name/

"NetBSD: Can be build without ARP support but listen to kernel DaD
ND6: Removed NA support from SMALL builds
ND6: Remove and warn about NA issues on OS's other than NetBSD and Linux
script: /tmp files are now cleaned up for systems without open_memstream(3)
configure: open_memstream(3) detected on recent glibc
DHCP: Avoid duplicate read of UDP socket when BPF is also open
IP: Avoid adding address if already exists on OS other than Linux
IP6: Avoid adding address is already exists on Solaris
route: Fixed a NULL de-reference error on statically configured routes
DHCP6: Move to REQUEST when any IA has error no-binding in RENEW/REBIND
DragonFlyBSD: Now compiles and works for
IP: Accept packets with IP header options"

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoPostfix: update to 3.4.6
Peter Müller [Tue, 30 Jul 2019 20:23:00 +0000 (20:23 +0000)] 
Postfix: update to 3.4.6

See http://www.postfix.org/announcements/postfix-3.4.6.html
for release notes.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agopatch: update to 2.7.6
Peter Müller [Tue, 30 Jul 2019 20:20:00 +0000 (20:20 +0000)] 
patch: update to 2.7.6

Note: This does not fix CVE-2019-13636 and CVE-2019-13638
as fixes did not make it into upstream vanilla patch, yet.

See also: https://www.debian.org/security/2019/dsa-4489

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agoupdate ca-certificates CA bundle
Peter Müller [Tue, 30 Jul 2019 20:00:00 +0000 (20:00 +0000)] 
update ca-certificates CA bundle

Update the CA certificates list to what Mozilla NSS ships currently.

The original file can be retrieved from:
https://hg.mozilla.org/mozilla-central/raw-file/tip/security/nss/lib/ckfw/builtins/certdata.txt

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agocore136: Ship updated firewall script
Arne Fitzenreiter [Tue, 20 Aug 2019 17:23:34 +0000 (17:23 +0000)] 
core136: Ship updated firewall script

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agofirewall: raise log rate limit to 10 packets per second
Peter Müller [Mon, 29 Jul 2019 20:00:00 +0000 (20:00 +0000)] 
firewall: raise log rate limit to 10 packets per second

Previous setting was to log 10 packets per minute for each
event logging is turned on. This made debugging much harder,
as the limit was rather strict and chances of dropping a
packet without logging it were good.

This patch changes the log rate limit to 10 packets per
second per event, to avoid DoS attacks against the log file.
I plan to drop log rate limit entirely in future changes,
if a better solution for this attack vector is available.

Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Cc: Tim FitzGeorge <ipfr@tfitzgeorge.me.uk>
Cc: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agogcc: Build the Go compiler
Michael Tremer [Tue, 20 Aug 2019 17:10:35 +0000 (17:10 +0000)] 
gcc: Build the Go compiler

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
8 weeks agofreeradius: Update rootfile
Michael Tremer [Sun, 18 Aug 2019 16:55:35 +0000 (17:55 +0100)] 
freeradius: Update rootfile

This removes all SSL modules.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
8 weeks agotshark: Fix parallel build
Michael Tremer [Sun, 18 Aug 2019 16:54:01 +0000 (17:54 +0100)] 
tshark: Fix parallel build

The variable name was incorrect and therefore a parallel
build was never attempted.

This this package already takes a lot of time to build, even
more is being saved now.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
8 weeks agodhcp.cgi: fix typo
Arne Fitzenreiter [Sun, 18 Aug 2019 15:59:49 +0000 (17:59 +0200)] 
dhcp.cgi: fix typo

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agorootfiles: replace x86_64 with MACHINE
Arne Fitzenreiter [Sat, 17 Aug 2019 14:47:34 +0000 (16:47 +0200)] 
rootfiles: replace x86_64 with MACHINE

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoUnix-syslog: fix rootfile
Arne Fitzenreiter [Sat, 17 Aug 2019 08:51:18 +0000 (10:51 +0200)] 
Unix-syslog: fix rootfile

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agorootfiles: perl 5.30 needs the autosplit.ix files
Arne Fitzenreiter [Sat, 17 Aug 2019 08:42:43 +0000 (10:42 +0200)] 
rootfiles: perl 5.30 needs the autosplit.ix files

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl: remove unused patches
Arne Fitzenreiter [Fri, 16 Aug 2019 19:33:52 +0000 (21:33 +0200)] 
perl: remove unused patches

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl: fix installation at toolchain build
Arne Fitzenreiter [Fri, 16 Aug 2019 19:32:56 +0000 (21:32 +0200)] 
perl: fix installation at toolchain build

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl: changes on make.sh
Arne Fitzenreiter [Fri, 16 Aug 2019 11:00:47 +0000 (13:00 +0200)] 
perl: changes on make.sh

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agorootfile update and bump of all addons with perl modules
Arne Fitzenreiter [Fri, 16 Aug 2019 10:59:46 +0000 (12:59 +0200)] 
rootfile update and bump of all addons with perl modules

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agorootfile update for all common perl modules.
Arne Fitzenreiter [Fri, 16 Aug 2019 10:50:19 +0000 (12:50 +0200)] 
rootfile update for all common perl modules.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agospamassassin: update to 3.4.2
Arne Fitzenreiter [Fri, 16 Aug 2019 10:48:25 +0000 (12:48 +0200)] 
spamassassin: update to 3.4.2

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agognump3d: update for new perl path
Arne Fitzenreiter [Fri, 16 Aug 2019 10:47:05 +0000 (12:47 +0200)] 
gnump3d: update for new perl path

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agompfire: update to new perl path
Arne Fitzenreiter [Fri, 16 Aug 2019 10:45:14 +0000 (12:45 +0200)] 
mpfire: update to new perl path

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoMIME-Tools: update to 5.509
Arne Fitzenreiter [Fri, 16 Aug 2019 10:42:01 +0000 (12:42 +0200)] 
MIME-Tools: update to 5.509

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl-Authen-SASL: fix build and bump for new perl
Arne Fitzenreiter [Fri, 16 Aug 2019 10:40:22 +0000 (12:40 +0200)] 
perl-Authen-SASL: fix build and bump for new perl

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl-NetAddr-IP: add addon module
Arne Fitzenreiter [Fri, 16 Aug 2019 10:38:01 +0000 (12:38 +0200)] 
perl-NetAddr-IP: add addon module

perl-NetAddr-IP is needed for Spamassassin

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl-Switch: add module
Arne Fitzenreiter [Fri, 16 Aug 2019 10:36:20 +0000 (12:36 +0200)] 
perl-Switch: add module

perl-Switch was removed from perl core distribution

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl-CGI: add perl-CGI module.
Arne Fitzenreiter [Fri, 16 Aug 2019 10:35:01 +0000 (12:35 +0200)] 
perl-CGI: add perl-CGI module.

perl-CGI was remoced from perl core distribution

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl: update to 5.30
Arne Fitzenreiter [Fri, 16 Aug 2019 10:33:40 +0000 (12:33 +0200)] 
perl: update to 5.30

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agoperl-scripts: suppress smartmatch experimental warning
Arne Fitzenreiter [Fri, 16 Aug 2019 10:21:26 +0000 (12:21 +0200)] 
perl-scripts: suppress smartmatch experimental warning

smartmatch was introduced with perl 5.10 and was marked
as experimental in 5.14

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
2 months agotexinfo: update to 6.6
Arne Fitzenreiter [Fri, 16 Aug 2019 10:17:51 +0000 (12:17 +0200)] 
texinfo: update to 6.6

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>