On 64 bit systems, the installation fails if a previous XFS FS
is detected on the partition an EXT4 FS should be formatted.
This does not happen on 32 bit systems.
Fixes: #11091
Reported-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Tested-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
* Fix auto-callout (?# comment bug.
* Fix negated POSIX class within negated overall class UCP bug.
* Fix bug for isolated \E between an item and its qualifier
when auto callout is set.
* Give error for regexec with pmatch=NULL and REG_STARTEND set.
* Allow for up to 32-bit numbers in the ordin() function in pcregrep.
* Fix \Q\E before qualifier bug when auto callouts are enabled.
* Fix /x bug when pattern starts with white space and (?-x).
* Fix copy named substring bug.
* Fix (by hacking) another length computation issue.
* Fix get_substring_list() bug when \K is used in an assertion.
* Fix pcretest bad behaviour for callout in lookbehind.
* Fix workspace overflow for (*ACCEPT) with deeply nested parentheses.
* Yet another duplicate name bugfix by overestimating the
memory needed (i.e. another hack - PCRE2 has this "properly" fixed).
* Fix pcretest loop for global matching with an ovector size less than 2.
* Fix non-diagnosis of missing assertion after (?(?C).
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
http://www.squid-cache.org/Advisories/SQUID-2016_3.txt
Due to a buffer overrun Squid pinger binary is vulnerable to
denial of service or information leak attack when processing
ICMPv6 packets.
This bug also permits the server response to manipulate other
ICMP and ICMPv6 queries processing to cause information leak.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
without this igb can bring the whole userspace to hung
with "cpu_stuck for more than 22s". I don't understand
why this bug is set to "wont-fix" at the bugtracker.
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
1. Added patch 005 because of the discussion on the dnsmasq-list:
"I've noticed that replies which get their TTL from the dhcp-ttl
option always get the TTL specified in dhcp-ttl. I'd prefer
something like max(0, min(<dhcp-ttl>, <lease-expire-time> -
<now>)). Otherwise, dns might hand out a high TTL for a dhcp-lease
which expires one second later.
...
Seems a sensible addition.
Cheers,
Simon."
2. Fixed several line numbers and patch lines in
'dnsmasq-Add-support-to-read-ISC-DHCP-lease-file.patch'. On the last build
I got some "Hunk failed" messages. Patches are now applied exactly at the
given lines.
3. Nevertheless, I still get some warnings:
...
dnsmasq.c: In function 'main':
dnsmasq.c:55:7: warning: unused variable 'did_bind' [-Wunused-variable]
int did_bind = 0;
^
dnsmasq.c:54:9: warning: unused variable 'bound_device' [-Wunused-variable]
char *bound_device = NULL;
^
...
isc.c: In function 'dhcp_lease_new':
isc.c:40:3: warning: ignoring return value of 'asprintf', declared with attribute warn_unused_result [-Wunused-result]
asprintf(&lease->fqdn, "%s.%s", hostname, daemon->domain_suffix);
^
Asking about these warnings in the dnsmasq-list showed no reaction - no one answered.
Best,
Matthias
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
The 512MB raspberry pi reserve some memory for buffers and gpu
so there are a bit less than 490 MB free.
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
Telekom gateways (e.g.) don't answer 'pings', therefor '/etc/ppp/ip-up'
uses 'ping.ipfire.org' for the 'gateway Graph' in 'Status / Network (other'.
After moving the infrastructure, several IP addresses were changed.
'178.63.73.246' doesn't work anymore for 'ping.ipfire.org', its now '81.3.27.38'.
Signed-off-by: Matthias Fischer <matthias.fischer@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
Packets destined for the firewall coming in from the blue
device where accepted too early to be processed by the
firewall input chain rules.
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
