webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-05-11 09:48:24 +02:00
Code Issues Packages Projects Releases Wiki Activity
21,558 Commits 2 Branches 1 Tag
67231124987d0f9d9a8d5995928bbdc78a35e039
Commit Graph

1482 Commits

Author SHA1 Message Date
Matthias Fischer
a6cd8b9b5d dnsmasq: 2.76test10 with latest patch (005) and some fixes 
1. Added patch 005 because of the discussion on the dnsmasq-list:
"I've noticed that replies which get their TTL from the dhcp-ttl
option always get the TTL specified in dhcp-ttl. I'd prefer
something like max(0, min(<dhcp-ttl>, <lease-expire-time> -
<now>)). Otherwise, dns might hand out a high TTL for a dhcp-lease
which expires one second later.
...
Seems a sensible addition.

Cheers,

Simon."

2. Fixed several line numbers and patch lines in
'dnsmasq-Add-support-to-read-ISC-DHCP-lease-file.patch'. On the last build
I got some "Hunk failed" messages. Patches are now applied exactly at the
given lines.

3. Nevertheless, I still get some warnings:
...
dnsmasq.c: In function 'main':
dnsmasq.c:55:7: warning: unused variable 'did_bind' [-Wunused-variable]
   int did_bind = 0;
       ^
dnsmasq.c:54:9: warning: unused variable 'bound_device' [-Wunused-variable]
   char *bound_device = NULL;
         ^
...
isc.c: In function 'dhcp_lease_new':
isc.c:40:3: warning: ignoring return value of 'asprintf', declared with attribute warn_unused_result [-Wunused-result]
   asprintf(&lease->fqdn, "%s.%s", hostname, daemon->domain_suffix);
   ^

Asking about these warnings in the dnsmasq-list showed no reaction - no one answered.

Best,
Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-02-28 12:15:18 -08:00
Matthias Fischer
3b9815eb87 dnsmasq: 2.76test10 with latest patches (001-004) 
This is 'dnsmasq 2.76test10', based on current 'next', containing latest patches.

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-02-28 12:15:11 -08:00
Arne Fitzenreiter
802b916d10 Merge remote-tracking branch 'origin/master' into next 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>

Conflicts:
	make.sh
 2016-02-17 19:47:50 +01:00
Arne Fitzenreiter
bb330e25e9 glibc: new RHEL6 patches / fix CVE-2015-7547 and more 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-02-17 12:46:11 +01:00
Matthias Fischer
fd3b90c875 squid 3.4.14: Bugfix for #4431 (C code is not compiled with CFLAGS) 
For details see: http://bugs.squid-cache.org/show_bug.cgi?id=4431

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-02-13 18:51:08 +00:00
Arne Fitzenreiter
235888599a backports: update to 4.2.6 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-01-28 13:02:09 +01:00
Michael Tremer
02a60a9b9e squid: Actually make --with-filedescriptors work 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-01-23 01:49:37 +00:00
Michael Tremer
41410d197b Merge branch 'hyper-v-fixes' into next 2016-01-22 00:49:15 +00:00
Matthias Fischer
db017b4b6e ntp 4.2.8p5: removed obsolete patch file 
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-01-10 21:18:22 +00:00
Arne Fitzenreiter
2eb67894ef binutils: update to 2.24 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-01-07 17:41:16 +01:00
Matthias Fischer
c3b4c861f5 dnsmasq 2.75: latest patches from upstream 
Same procedure as... :-)

Best to all for xmas and 2016!

Matthias

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-28 15:35:34 +01:00
Arne Fitzenreiter
aa66842358 kernel: apply arm-multi grsecurity fixes only at arm-multi build 2015-12-23 10:14:26 +01:00
Michael Tremer
6138d53bdd lua: New package 
Simple scripting language. Supposed to be fast. Needed for dnsdist.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-22 22:27:39 +00:00
Michael Tremer
a7b0967db4 linux: Backport Hyper-V network driver 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-22 14:47:43 +00:00
Michael Tremer
f295ca0cf7 kernel: Add grsecurity compile fix 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-22 13:58:46 +00:00
Michael Tremer
8675b78af9 gcc: Update to version 4.9.3 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-22 12:43:51 +00:00
Michael Tremer
9098b1e1c0 glibc: Fix headers to build with new GCC 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-22 12:40:38 +00:00
Michael Tremer
4d7f9a81ac strongswan: Update to 5.3.5 
Also ships a fix for #853 upstream.

Fixes #10998

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-19 14:09:10 +00:00
Matthias Fischer
44fb4620ee grub 2.00: Bugfix for CVE-2015-8370 
See: http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html

"A vulnerability in Grub2 has been found. Versions from 1.98 (December, 2009)
to 2.02 (December, 2015) are affected. The vulnerability can be exploited
under certain circumstances, allowing local attackers to bypass any kind of
authentication (plain or hashed passwords). And so, the attacker may take
control of the computer."

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-18 23:40:00 +00:00
Matthias Fischer
1e1b03d581 dnsmasq 2.75: latest upstream patches ;-) 
The neverending story continues...

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-18 15:02:30 +00:00
Matthias Fischer
fbcc3cb784 dnsmasq 2.75: latest upstream patches 
Since 'Makefile' was affected, I had to rewrite
'dnsmasq-Add-support-to-read-ISC-DHCP-lease-file.patch', too.

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-18 15:02:26 +00:00
Michael Tremer
93d6eed9a4 ntp: Fix syncing with local clock 
This is a bug that was introduced with the latest release
from upstream

Fixes #10997
Upstream: http://bugs.ntp.org/show_bug.cgi?id=2965

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-15 12:39:19 +00:00
Michael Tremer
b1372c3bef dma: Import patch for better authentication 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-10 16:35:09 +00:00
Matthias Fischer
40e1bbda54 dnsmasq 2.75: latest upstream patches 
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-01 22:35:21 +00:00
Arne Fitzenreiter
c88002c48b ipset: fix build om arm. 
Never hardcode KVER-ipfire in any patches because on arm there is no KVER-ipfire kernel.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-11-07 09:11:27 +01:00
Erik Kapfer
63cbd2c1df ipset: New package 
Signed-off-by: Erik Kapfer <erik.kapfer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-11-05 11:47:14 +00:00
Arne Fitzenreiter
bd64e2a02a kernel: genksyms fix empty symbol crc. 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-10-27 16:57:24 +01:00
Arne Fitzenreiter
038169b894 kernel: uppdate to 3.14.55 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-10-23 11:00:03 +02:00
Arne Fitzenreiter
52daacc5c4 kernel: update to 3.14.54 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-10-21 18:48:32 +02:00
Arne Fitzenreiter
1f011c6594 backports: add Tevii S482 patch 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-10-01 11:14:58 +02:00
Arne Fitzenreiter
1f2bda9ba3 backports: enable build on x86_64. 
backports 4.1.1-1 is not stable so we need to stay on the older version.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-09-27 11:27:40 +02:00
Arne Fitzenreiter
4d4f36ef55 kernel: Update pcengines apu led patch for x86_64 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-09-20 12:46:12 +02:00
Matthias Fischer
f62ac3224c dnsmasq: latest upstream patches 
dnsmasq: latest upstream patches

Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-09-14 23:30:32 +01:00
Michael Tremer
27957a3f2b Merge remote-tracking branch 'ms/x86_64' into next 2015-09-11 15:06:09 +01:00
Michael Tremer
257ce821ee fireinfo: Import upstream fixes 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-09-09 15:32:09 +01:00
Michael Tremer
71940784ef fireinfo: Import upstream patch 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-09-01 00:12:31 +01:00
matthias.fischer@ipfire.org
f10a246946 squid 3.4.14: Import latest patch from upstream 
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-31 23:26:38 +01:00
Michael Tremer
377eaee288 openssl: Fix build on x86_64 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-22 23:29:45 +02:00
Michael Tremer
612c14d58b glibc: Fix build with make version 4.0 and greater 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-22 17:22:16 +01:00
Michael Tremer
191976efbd pcre: Fix more buffer overflows 
This reverts commit cec620efdf.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-21 21:29:46 +01:00
Michael Tremer
cec620efdf Revert "pcre: Fix more buffer overflows" 
This reverts commit b62425e3e3.
 2015-08-19 20:30:50 +01:00
Michael Tremer
b62425e3e3 pcre: Fix more buffer overflows 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-17 23:36:36 +01:00
Matthias Fischer
f831e573d4 dnsmasq: latest upstream patches 
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-17 20:53:21 +01:00
Michael Tremer
9eb008dc92 glibc: Import security fixes from upstream 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-17 20:49:34 +01:00
Michael Tremer
e628f99413 Remove left-over squid patch file 2015-08-07 20:37:53 +01:00
Michael Tremer
d08045eaa6 dnsmasq: Update to 2.75 
Rather severe regression in handling DNSSEC with CNAMEs.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-01 20:23:34 +01:00
Michael Tremer
a722eae9dd ddns: Update to version 008 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-07-16 12:02:08 +02:00
Michael Tremer
b720e70288 cups: Update to 1.7.5 and fix for CVE-2015-1158 and CVE-2015-1159 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-07-14 17:15:00 +02:00
Michael Tremer
5929298ea1 pcre: Fix CVE-2015-5073 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-07-14 17:14:13 +02:00
Arne Fitzenreiter
c9ab30c5d3 kernel: fix trim dataloss on some solid state discs 
disable trim on SuperSSpeed S238
update queued trim blacklist from kernel 4.2rc1
(add Samsung SSD 8xx and some Crucial and Micron SSD)
 2015-07-13 22:00:57 +02:00