webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-14 13:02:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
11,478 Commits 2 Branches 1 Tag
53929f5ae8a2edc8dff4484b4d293fcba5dd50af
Commit Graph

5035 Commits

Author SHA1 Message Date
Michael Tremer
9434bffaf2 Merge branch 'openssl-11' into next 2018-02-21 12:21:10 +00:00
Michael Tremer
ea3b9a4f88 strongswan: Update to 5.6.2 
Fixed a DoS vulnerability in the parser for PKCS#1 RSASSA-PSS
signatures that was caused by insufficient input validation.
One of the configurable parameters in algorithm identifier
structures for RSASSA-PSS signatures is the mask generation
function (MGF). Only MGF1 is currently specified for this purpose.
However, this in turn takes itself a parameter that specifies
the underlying hash function. strongSwan's parser did not
correctly handle the case of this parameter being absent,
causing an undefined data read.

This vulnerability has been registered as CVE-2018-6459.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-19 23:46:17 +00:00
Michael Tremer
e36a7e3cf2 haproxy: Link against libatomic on ARM 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-17 13:36:37 +00:00
Michael Tremer
429af17883 i2c-tools: New package 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-16 20:01:55 +00:00
Michael Tremer
0f354672a2 flac: Update to 1.3.2 
The previous version fails to build on i586

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-16 19:14:33 +00:00
Michael Tremer
909ba0ad4a nagios-plugins: Update rootfiles 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-13 16:30:24 +00:00
Michael Tremer
97b5588cf3 zlib: Fix name of logfile in toolchain build 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-13 10:24:04 +00:00
Michael Tremer
05551f7bdb sslh: Build without tcpwrappers 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-13 10:23:54 +00:00
Michael Tremer
54d5414848 toolchain: Add zlib 
ccache needs this and usually comes with an own bundled
version but fails to build in version 3.4.1.

Since this is a small library only and we really want
ccache to use compression, we will build this indepently
and let ccache use it from the system.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 14:24:12 +00:00
Michael Tremer
2dd9f3b379 Cleanup toolchain scripts 
No functional changes, just some tidy up

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 12:44:37 +00:00
Michael Tremer
d32233aa1b ccache: Update to 3.4.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 12:12:08 +00:00
Michael Tremer
71196131be PAM: Drop shipped configuration 
This is outdated, broken and has hardcoded passwords.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 12:09:22 +00:00
Michael Tremer
71cf8c8a6f Drop perl-DBD-mysql 
This package is not used by anything and depends on MySQL
which has been dropped, too.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 12:07:29 +00:00
Michael Tremer
2d5940daca Drop MySQL 
This is outdated and still on 5.0.x and nobody volunteered to
update this package.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 12:05:46 +00:00
Michael Tremer
c4713705d1 asterisk: Do not depend on MySQL any more 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 12:02:51 +00:00
Michael Tremer
4fcf8acfea postfix: Don't depend on amavis 
This can be used together but there is no need to
always install amavis when someone wants to use postfix

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:52:07 +00:00
Michael Tremer
db116a33d6 postfix: Don't depend on MySQL any more 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:51:46 +00:00
Michael Tremer
abf2b05474 postfix: Don't ship our own configuration 
This is outdated and half of it is not maintained any more.

Users should configure postfix themselves based on the
default configuration.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:50:51 +00:00
Michael Tremer
3e8ce0dd86 Drop pammysql 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:44:28 +00:00
Michael Tremer
e3e17107ba Drop tcpwrapper 
This library has been unused for quite a while

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:42:47 +00:00
Michael Tremer
a350ea6dea Drop mISDN userspace tools 
This is unsupported for quite a while and nobody should be using this.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:41:50 +00:00
Michael Tremer
922ec43f99 Drop capi4k-utils 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:33:51 +00:00
Erik Kapfer
bd42f9f968 CRL updater: Update script for OpenVPNs CRL 
Update script for OpenVPNs CRL cause OpenVPN refactors the CRL handling since v.2.4.0 .
    Script checks the next update field from the CRL and executes an update before it expires.
    Script is placed under fcron.daily for daily checks.

Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:20:28 +00:00
Michael Tremer
59d77d2eae openssl: Properly pass CFLAGS and LDFLAGS to build 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
11e78f38b9 Package openssl-compat (1.0.2.n) 
This is provided for compatibility with binaries that have
been compiled against this version of OpenSSL.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Erik Kapfer
3b83dffc19 OpenVPN: Update to version 2.4.4 
Changed LFS and ROOTFILE for OpenVPN 2.4.4 update.

Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
8b87254a02 python-m2crypto: Install in correct directory 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
1b7cb0484c openssl: Enable engines 
Some tools that depend on openssl won't compile without it

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
a46b159a8d wget: Link against GnuTLS instead of OpenSSL 
This version does not seem to be compatible with OpenSSL 1.1
and might be changed back to OpenSSL when ever it will compile.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
fd07dae7a4 python-m2crypto: Update to 0.27.0 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
5c82a9f040 python-typing: Required for m2crypto 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
7e63e4f806 transmission: Patch to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
0d0fe16e22 net-snmp: Patch to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
3b10b31303 elinks: Patch to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
2ab923bb8e ncat: Update to 7.60 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
5809552f2f krb5: Update to 1.15.2 to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
07b8dcd0b2 openssh: Update to 7.6p1 and patch against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
a82d85131b Net-SSLeay: Update to 1.82 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
f8ee1cfcfc cyrus-sasl: Disable OTP to build against OpenSSL 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
5a9bbaa93d openssl: Update to version 1.1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 22:19:45 +00:00
Michael Tremer
e9e3dd9fee qemu: Make it build with newer glibcs 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
c19196e1c5 nfs: Fix building with newer glibcs 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
59a6d4e439 glibc: Enable obsolete NSL 
This will re-activate the deprecated NIS code on which lots of
software relies on so that we can have some extra time to migrate.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
c0878e43e1 Config: Set PREFIX either to TOOLS_DIR or /usr 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
ce7f9c3a0e libtirpc: Fix build against newer glibcs 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
25e33293bd binutils: Update to 2.30 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
f794504ec6 dma: Don't only use TLSv1 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
b349f4da63 postfix: Temporarily disable NIS 
This makes postfix FTBFS because glibc has removed their
RPC headers.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
65a75e0ddf glibc: Update to 2.27 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00
Michael Tremer
f1a5a25a40 flex: Patch against SEGV with newer glibc 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-11 20:56:12 +00:00