bpfire

mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-25 10:22:59 +02:00

Author	SHA1	Message	Date
Peter Müller	66980c9e00	hwdata: update PCI/USB databases PCI IDs: 2019-07-25 03:15:02 USB IDs: 2019-07-27 20:34:05 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:38:48 +00:00
Matthias Fischer	4bb1d994b0	knot: Update to 2.8.3 For details see: https://www.knot-dns.cz/2019-07-16-version-283.html Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:38:19 +00:00
Matthias Fischer	6817d23a01	bind: Update to 9.11.9 For details see: https://downloads.isc.org/isc/bind9/9.11.9/RELEASE-NOTES-bind-9.11.9.html "Security Fixes A race condition could trigger an assertion failure when a large number of incoming packets were being rejected. This flaw is disclosed in CVE-2019-6471. [GL #942]" Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:37:26 +00:00
Matthias Fischer	e83393146f	apache: Update to 2.4.41 For details see: http://mirror.dkd.de/apache//httpd/CHANGES_2.4.41 Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:36:48 +00:00
Matthias Fischer	0184e5806d	dhcpcd: Update to 8.0.2 For details see: https://roy.marples.name/ "NetBSD: Can be build without ARP support but listen to kernel DaD ND6: Removed NA support from SMALL builds ND6: Remove and warn about NA issues on OS's other than NetBSD and Linux script: /tmp files are now cleaned up for systems without open_memstream(3) configure: open_memstream(3) detected on recent glibc DHCP: Avoid duplicate read of UDP socket when BPF is also open IP: Avoid adding address if already exists on OS other than Linux IP6: Avoid adding address is already exists on Solaris route: Fixed a NULL de-reference error on statically configured routes DHCP6: Move to REQUEST when any IA has error no-binding in RENEW/REBIND DragonFlyBSD: Now compiles and works for IP: Accept packets with IP header options" Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:36:39 +00:00
Peter Müller	f3900bc44b	Postfix: update to 3.4.6 See http://www.postfix.org/announcements/postfix-3.4.6.html for release notes. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:36:26 +00:00
Peter Müller	6fd6ab5e6f	patch: update to 2.7.6 Note: This does not fix CVE-2019-13636 and CVE-2019-13638 as fixes did not make it into upstream vanilla patch, yet. See also: https://www.debian.org/security/2019/dsa-4489 Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:36:19 +00:00
Peter Müller	8de132b53d	update ca-certificates CA bundle Update the CA certificates list to what Mozilla NSS ships currently. The original file can be retrieved from: https://hg.mozilla.org/mozilla-central/raw-file/tip/security/nss/lib/ckfw/builtins/certdata.txt Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:35:54 +00:00
Arne Fitzenreiter	70571361da	core136: Ship updated firewall script Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:23:34 +00:00
Peter Müller	8ee3a13552	firewall: raise log rate limit to 10 packets per second Previous setting was to log 10 packets per minute for each event logging is turned on. This made debugging much harder, as the limit was rather strict and chances of dropping a packet without logging it were good. This patch changes the log rate limit to 10 packets per second per event, to avoid DoS attacks against the log file. I plan to drop log rate limit entirely in future changes, if a better solution for this attack vector is available. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Cc: Tim FitzGeorge <ipfr@tfitzgeorge.me.uk> Cc: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:22:48 +00:00
Michael Tremer	d111587cc3	gcc: Build the Go compiler Signed-off-by: Michael Tremer <michael.tremer@ipfire.org> Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-20 17:21:08 +00:00
Michael Tremer	c4ab9992c0	freeradius: Update rootfile This removes all SSL modules. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-18 17:55:35 +01:00
Michael Tremer	f53d80f60d	tshark: Fix parallel build The variable name was incorrect and therefore a parallel build was never attempted. This this package already takes a lot of time to build, even more is being saved now. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-18 17:54:01 +01:00
Michael Tremer	071d7754f7	freeradius: Build without SSL The version check is entirely broken. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-10 03:48:49 +01:00
Michael Tremer	6580bdeb6b	freeradius: Build package without generating certificates Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-10 03:12:04 +01:00
Michael Tremer	a0cc5faf71	freeradius: Disable openssl version check freeradius seems to care about which version it has been compiled with and refuses to start. This switch disables this behaviour. Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-10 03:12:04 +01:00
Michael Tremer	1282a2e1af	keepalived: Enable auto-start Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-10 03:12:04 +01:00
Michael Tremer	4a53156001	keepalived: Backup the whole configuration directory Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-08-10 03:12:04 +01:00
Arne Fitzenreiter	fa8b3ea7d3	installer: fix grub.conf root uuid entry grub-mkconfig has written the device name instead of uuid's because the /dev/disk-by-uuid node of the new filesystem was missing run "udevadm trigger" to create this nodes before install grub. fixes: #12116 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-13 15:21:02 +02:00
Arne Fitzenreiter	7c30831ad2	initskripts: move unbound down after network down this remove a bunch of unbound errors at shutdown because network down try to reconfigure unbond. (e.g. disable forwarders) Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-11 11:09:40 +02:00
Arne Fitzenreiter	85dfdf5d25	start core136 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-11 10:54:14 +02:00
Arne Fitzenreiter	be60bc8914	close core135 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-09 23:50:15 +02:00
Arne Fitzenreiter	520e6a1dd4	kernel: update to 4.14.138 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-09 23:47:55 +02:00
Arne Fitzenreiter	793a273ab5	dhcpcd: add noip4ll parameter to config Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-09 12:31:46 +02:00
Arne Fitzenreiter	559e94bafb	initskripts: smt: hide error on cpu's that not support smt at all Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-09 08:14:29 +02:00
Arne Fitzenreiter	99f2c69511	partresize: check for apu only if dmi is present Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-09 08:02:19 +02:00
Arne Fitzenreiter	10dd2afd6d	sysctl: add seperate sysctl-x86_64.conf and move x86_64 only parameters Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-08 09:30:49 +02:00
Arne Fitzenreiter	c0f4a53034	core135: add updated leds initskript to updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-07 20:56:49 +00:00
Arne Fitzenreiter	236bb27320	core135: add u-boot changes to updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-07 20:53:58 +00:00
Arne Fitzenreiter	00d7bb9f96	core135: add missing kernel rootfiles	2019-08-07 20:52:50 +00:00
Arne Fitzenreiter	66eb3fd8b8	core135: add kernel to updater Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-07 20:46:07 +00:00
Arne Fitzenreiter	3b415347bb	kernel: update to 4.14.137 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-07 20:38:25 +00:00
Arne Fitzenreiter	c934c5ff19	clamav: update to 0.101.3 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-07 22:16:46 +02:00
Arne Fitzenreiter	dc362263f4	setup: add ignore to all no nic assigned errors	2019-08-06 10:51:45 +00:00
Arne Fitzenreiter	6836e528e5	u-boot-friendlyarm: add u-boot for nanopi-r1 to boot from eMMC this is a heavy patched version and should replaced when stock u-boot is able to boot from h3 eMMC. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-06 04:32:22 +00:00
Arne Fitzenreiter	e47e01f60c	u-boot: enable boot from additional mmc device Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-04 13:43:44 +00:00
Arne Fitzenreiter	fd9fa1d894	u-boot: switch default sunxi dtb to nanopi-r1 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-01 07:22:04 +00:00
Arne Fitzenreiter	ca75ec5278	led initskript: add nanopi-r1 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-01 07:18:20 +00:00
Arne Fitzenreiter	fa5e921ccb	partresize: add copy of broadcom firmware settings for nanopi-r1 I added this to partresize like the APU scon enable because this is the only script that runs on flashimage at first boot only and remount root writeable. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-08-01 07:09:34 +00:00
Arne Fitzenreiter	a6859d889e	rpi-firmware: create copy of RPI3 brcm 43430 configfile. the AP21xx need a different config so store the rpi version as backup. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-31 11:03:33 +00:00
Arne Fitzenreiter	2e65d316a7	kernel: remove old modules folder before kernel build the build fails at creating source symlinks for external modules build if it already exists. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-30 18:28:57 +00:00
Arne Fitzenreiter	53ece8f1f7	kernel: update arm-multi patchset this add FriendlyElec nanopi-r1 devicetree file. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-30 18:27:43 +00:00
Arne Fitzenreiter	1fd34bd2ec	pcenginges-firmware: skip build on arm Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-24 12:37:10 +02:00
Michael Tremer	efc5cb1d34	bird: Update to 2.0.4 Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>	2019-07-22 21:12:20 +01:00
Arne Fitzenreiter	c7ad4315ea	pcengines-firmware: rootfile update Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-17 17:19:01 +02:00
Arne Fitzenreiter	eb5cd9fa57	pcengines-firmware: update to 4.9.0.7 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-17 17:16:25 +02:00
Arne Fitzenreiter	de8810fbaa	iperf3: update to 3.7 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-17 13:15:33 +02:00
Arne Fitzenreiter	e4e1b8718e	iperf: update to 2.0.13 Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-17 13:15:01 +02:00
Arne Fitzenreiter	fd7c2f3a9e	initskripts: fix i586 rootfile	2019-07-17 13:12:46 +02:00
Arne Fitzenreiter	3ec3329dff	unbound: rework dns-forwader handling add check if red interface has an IPv4 address before test the servers at red up and simply remove forwarders at down process. This also fix the hung at dhcpd shutdown. Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>	2019-07-16 19:20:48 +02:00

1 2 3 4 5 ...

13623 Commits