bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-24 01:42:58 +02:00

Author	SHA1	Message	Date
Michael Tremer	80fbd89949	ipsec: Add block rules to avoid conntrack entries If an IPsec VPN connections is not established, there are rare cases when packets are supposed to be sent through that said tunnel and incorrectly handled. Those packets are sent to the default gateway an entry for this connection is created in the connection tracking table (usually only happens to UDP). All following packets are sent the same route even after the tunnel has been brought up. That leads to SIP phones not being able to register among other things. This patch adds firewall rules that these packets are rejected. That will sent a notification to the client that the tunnel is not up and avoid the connection to be added to the connection tracking table. Apart from a small performance penalty there should be no other side-effects. Fixes: #10908 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Cc: tomvend@rymes.com Cc: daniel.weismueller@ipfire.org Cc: morlix@morlix.de Reviewed-by: Timo Eissler <timo.eissler@ipfire.org>	2015-10-15 22:44:47 +01:00
Stefan Schantl	a9a28430b5	tor.cgi: Fix missing country flag icons. The CGI now is using the GeoIP::get_flag_icon function provided by the geoip-functions.pl, which takes care of the changed flag icons shipped by core update 90. Fixes #10919. Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org> Tested-by: Jan Paul Tuecking <jan.paul.tuecking@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-15 15:42:44 +01:00
Arne Fitzenreiter	0171486695	sox: Disable parallel build Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-04 16:01:33 +02:00
Michael Tremer	8235f17df5	strongswan: Update to 5.3.3 ChaCha is disabled since our kernel does not support it yet Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-03 19:17:01 +01:00
Michael Tremer	75ccb6a693	krb5: Disable parallel build Builds of this package crash randomly on all architectures which might be related to the parallel build. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-10-02 19:00:13 +01:00
Arne Fitzenreiter	1f011c6594	backports: add Tevii S482 patch Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-10-01 11:14:58 +02:00
Arne Fitzenreiter	16016ff2b0	Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next	2015-09-28 18:42:57 +02:00
Arne Fitzenreiter	db151fde63	igb: update to 5.3.3.2 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-28 18:39:26 +02:00
Arne Fitzenreiter	1d664fe1db	e1000e: update to 3.2.4.2 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-28 18:38:55 +02:00
Michael Tremer	dfe630f77c	Merge remote-tracking branch 'ms/experimental-vlan-hotplugging' into next	2015-09-28 14:33:49 +01:00
Arne Fitzenreiter	c9f0174979	kernel: update to 3.14.53 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-27 12:58:22 +02:00
Arne Fitzenreiter	1f2bda9ba3	backports: enable build on x86_64. backports 4.1.1-1 is not stable so we need to stay on the older version. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-27 11:27:40 +02:00
Michael Tremer	ed5fee308f	core94: Ship changed CGI files Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-21 16:46:21 +01:00
Arne Fitzenreiter	4d4f36ef55	kernel: Update pcengines apu led patch for x86_64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-20 12:46:12 +02:00
Matthias Fischer	9b3ffc7457	iproute2: Update to 4.2.0 List of changes can be seen at http://git.kernel.org/cgit/linux/kernel/git/shemminger/iproute2.git/log/ Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-19 18:49:24 +01:00
Arne Fitzenreiter	6d7aff4a53	qemu: some features need disabled PaX RANDMMAP.	2015-09-18 19:23:56 +02:00
Arne Fitzenreiter	d2d9172b75	qemu: disable PaX mProtect on more binaries.	2015-09-17 19:17:44 +02:00
Arne Fitzenreiter	7f16eac4a4	qemu: update to 2.4.0 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-17 12:57:31 +02:00
Arne Fitzenreiter	40baf26143	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2015-09-16 20:28:53 +02:00
Arne Fitzenreiter	c97dda34de	qemu: enabled x86_64 for build and as target. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-16 20:27:52 +02:00
Arne Fitzenreiter	0d77b70188	memtest: use precompiled memtest binary on x86_64 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-15 20:58:24 +02:00
Arne Fitzenreiter	bfc3e1f340	Revert "cdrom: Disable memtest on x86_64" This reverts commit `5d1c3aca0a`.	2015-09-15 20:46:37 +02:00
Michael Tremer	1ca232eb4c	Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next	2015-09-14 23:32:51 +01:00
Matthias Fischer	f62ac3224c	dnsmasq: latest upstream patches dnsmasq: latest upstream patches Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-14 23:30:32 +01:00
Arne Fitzenreiter	d9c6f56c2e	pakfire: use correct tree on x86_64. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2015-09-14 19:50:13 +02:00
Michael Tremer	1e4dbfbdf9	dma: Remove package variables since dma is not a package Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-14 13:49:40 +01:00
Alexander Marx	37b2466d2b	DMA: add empty mail.conf needed by WIO Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-14 13:49:29 +01:00
Michael Tremer	71ca2447bf	ccache: Update to version 3.2.3 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-14 13:36:32 +01:00
Michael Tremer	ef4580b9be	cyrus-imapd: Fix searching for missing header Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-14 13:07:22 +01:00
Michael Tremer	6b3c55d4b4	cyrus-imapd: Disable build which fails on all architectures Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-14 12:56:43 +01:00
Arne Fitzenreiter	11fbf1fab0	binutils: fix build on arm. MACHINE env variable is needed to be clear.	2015-09-13 18:02:27 +02:00
Matthias Fischer	67cafd240f	libgpg-error: Update to 1.20 * configure.ac: Set LT version to C16/A16/R0. Add new version macros. * src/gpg-error.h.in (GPGRT_VERSION): New. (GPGRT_VERSION_NUMBER): New. (GPG_ERROR_VERSION, GPG_ERROR_VERSION_NUMBER): Move to top of file. Add macro GPGRT_INLINE and avoid -Wundef warnings. * src/gpg-error.h.in (GPG_ERR_INLINE): Use #if defined for possible undefined macros to avoid warning with GCC's -Wundef option. (GPGRT_INLINE): New. Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-12 15:53:18 +01:00
Matthias Fischer	09f13f8366	libgcrypt: Update to 1.6.4 * configure.ac: Change LT version to C20/A0/R4. w32: Avoid a few compiler warnings. * cipher/cipher-selftest.c (_gcry_selftest_helper_cbc) (_gcry_selftest_helper_cfb, _gcry_selftest_helper_ctr): Mark variable as unused. * random/rndw32.c (slow_gatherer): Avoid signed pointer mismatch warning. * src/secmem.c (init_pool): Avoid unused variable warning. * tests/random.c (writen, readn): Include on if needed. Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-12 15:52:45 +01:00
Matthias Fischer	623ad1cf94	bind: Update to 9.10.2-P4 Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-12 15:52:23 +01:00
Michael Tremer	27957a3f2b	Merge remote-tracking branch 'ms/x86_64' into next	2015-09-11 15:06:09 +01:00
Michael Tremer	ba58389215	kernel: Add a preliminary kernel from the i586 PAE configuration Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-11 00:20:08 +02:00
Michael Tremer	ebf9683b4d	grub: Build for x86_64 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-11 00:18:41 +02:00
Michael Tremer	65e8786c3d	cpufrequtils: Build for x86_64 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-11 00:17:40 +02:00
Michael Tremer	7c111f7d49	acpid: Build for x86_64 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-11 00:16:41 +02:00
Michael Tremer	257ce821ee	fireinfo: Import upstream fixes Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-09 15:32:09 +01:00
Michael Tremer	5d1c3aca0a	cdrom: Disable memtest on x86_64 memtest does currently not build on x86_64 and we can leave it out for a moment until that has been fixed to be able to master an ISO image	2015-09-05 10:15:15 +02:00
Michael Tremer	59e68d1b7a	ipfire-netboot: Enable to be built on x86_64 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-05 10:14:34 +02:00
Michael Tremer	f076a3d551	syslinux: Enable to be built on x86_64 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-05 10:14:13 +02:00
Matthias Fischer	bc7cb3eaeb	squid 3.4.14: removed duplicate configure-option in lfs-file Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-04 22:06:50 +01:00
Michael Tremer	71940784ef	fireinfo: Import upstream patch Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-09-01 00:12:31 +01:00
matthias.fischer@ipfire.org	f10a246946	squid 3.4.14: Import latest patch from upstream Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-08-31 23:26:38 +01:00
Alexander Marx	0f14446a89	Squid-accounting: New Version using dma mailservice Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-08-28 12:42:53 +01:00
Michael Tremer	6f19cb139c	cyrus-imapd: Disable build for x86_64 This won't build on x86_64 and needs to be updated soon Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-08-26 23:58:36 +02:00
Michael Tremer	8d9967d955	netpbm: Fix build on x86_64 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-08-26 23:47:33 +02:00
Michael Tremer	95f093570f	vdr_epgsearch: Apply CFLAGS Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2015-08-26 23:42:19 +02:00

1 2 3 4 5 ...

4087 Commits