sandboxctl is a tool to interact with chroot-based sandboxes.
The sandboxctl tool provides an automated mechanism to create and
interact with chroot-based sandboxes. These sandboxes can be transient
(e.g. to run a single command within them) or long-lived (e.g. to run a
system service in a safe manner).
Sandboxes can be created using multiple mechanisms, which range from
extracting fresh distribution sets to bind-mounting the outer file
systems inside the sandbox. The specific mechanism depends on the
features supported by the underlying operating system and the chosen
sandbox type. Currently, sandboxctl includes support for FreeBSD,
Linux, macOS (Darwin), and NetBSD.
Each sandbox is defined via a configuration file provided by the user
and a system-specific template provided by this package. The user
configuration is simple and semantically-rich, allowing the system
administrator to not worry about the environment-specific details.
This package is primarily targetted at supporting pkgtools/pkg_comp
but is provided as a standalone tool for flexibility.
- server: Fixed a rare but serious issue where Consul servers could
panic when performing a large delete operation followed by a specific
sequence of other updates to related parts of the state store (affects
KV, sessions, prepared queries, and the catalog).
- Metricbeat: Fix go routine leak in docker module.
- Packetbeat: Fix error in the NFS sample dashboard.
- Winlogbeat: Fix error in the Winlogbeat sample dashboard.
D-Bus 1.10.16 (2017-02-16)
==
The “super digging powers” release.
The fixes in this release are arguably security fixes, but if they
affect you, please take this opportunity to rethink how you are
configuring dbus.
Enhancements:
• Do the Travis-CI build in Docker containers for Ubuntu LTS, Debian
stable and Debian testing in addition to the older Ubuntu that is
the default (fd.o #98889, Simon McVittie)
Fixes:
• Prevent symlink attacks in the nonce-tcp transport on Unix that could
allow an attacker to overwrite a file named "nonce", in a directory
that the user running dbus-daemon can write, with a random value
known only to the user running dbus-daemon. This is unlikely to be
exploitable in practice, particularly since the nonce-tcp transport
is really only useful on Windows.
On Unix systems we strongly recommend using only the unix: and systemd:
transports, together with EXTERNAL authentication. These are the only
transports and authentication mechanisms enabled by default,
(fd.o #99828, Simon McVittie)
• Avoid symlink attacks in the "embedded tests", which are not enabled
by default and should never be enabled in production builds of dbus.
(fd.o #99828, Simon McVittie)
ChangeLog:
2017-02-15 Martin Mares <mj@ucw.cz>
* Released as 3.5.3.
* When lspci looks for Linux kernel modules, it uses the default
path to module directory provided by libkmod. Previously,
it tried to construct the path explicitly, which need not
work on all systems.
* Improved formatting of memory and I/O ranges behind a bridge.
* PCIe link capabilities now display GEN4 speed (16GT/s).
* PCIe device capabilities now show bits related to atomic operations.
Thanks to Satanand Burla for a patch.
* As usually, updated pci.ids to the current snapshot of the database.
==== Bugfixes
Affecting all Beats
- Fix overwriting explicit empty config sections.
Filebeat
- Fix alignment issue were Filebeat compiled with Go 1.7.4 was crashing
on 32 bits system.
Metricbeat
- Fix service times-out at startup.
- Kafka module case sensitive host name matching.
- Fix interface conversion panic in couchbase module
Packetbeat
- Fix issue where some Cassandra visualizations were showing data from
all protocols.
==== Added
Affecting all Beats
- Add support for passing list and dictionary settings via -E flag.
- Support for parsing list and dictionary setting from environment
variables.
- Added new flags to import_dashboards (-cacert, -cert, -key,
-insecure).
- The limit for the number of fields is increased via the mapping
template.
- Updated to Go 1.7.4.
- Added a NOTICE file containing the notices and licenses of the
dependencies.
Heartbeat
- First release, containing monitors for ICMP, TCP, and HTTP.
Filebeat
- Add enabled config option to prospectors.
- Add target option for decoded_json_field.
Metricbeat
- Kafka module broker matching enhancements.
- Add a couchbase module with metricsets for node, cluster and bucket.
- Export number of cores for CPU module.
- Experimental Prometheus module.
- Add system socket module that reports all TCP sockets.
- Kafka consumer groups metricset.
Winlogbeat
- Reduced amount of memory allocated while reading event log records.
- agent: Integrated gopsutil library to use built in host UUID as node ID,
if available, instead of a randomly generated UUID. This makes it easier
for other applications on the same host to generate the same node ID
without coordinating with Consul.
- agent: Added a configuration option, tls_min_version, for setting the
minimum allowed TLS version used for the HTTP API and RPC.
- agent: Added a relay-factor option to keyring operations to allow nodes
to relay their response through N randomly-chosen other nodes in the
cluster.
- build: Consul is now built with Go 1.7.5.
- dns: Add ability to lookup Consul agents by either their Node ID or Node
Name through the node interface (e.g. DNS (node-id|node-name).node.consul).
- dns: Fixed an issue where SRV lookups for services on a node registered
with non-IP addresses were missing the CNAME record in the additional
section of the response.
Changelog (abridged):
- rsyslog now builds on AIX
- mmdblookup: new maxminddb lookup message modify plugin
- mmrm1stspace: new module; removes first space in MSG if present
- KSI signature provider: file permissions can now be specified
- omzmq: new features
- change: when the hostname is empty, we now use "localhost-empty-hostname"
- omelasticsearch: remove "asyncrepl" config parameter
- omfwd: Add support for bind-to-device (see below on same for imudp)
- imudp: Add support for bind-to-device
- imudp: limit rcvbufsize parameter to max 1GiB
- rainerscript: implement new "call_indirect" statement
- bugfix imjournal: make state file handling more robust
- bugfix core: lookup table reload was not properly integrated
- bugfix core: potential dealock on shutdown
- bugfix ommongodb: did not work in v8 due to invalid indirection
- bugfix ommongodb: fix tryResume handling
- bugfix omfwd: retry processing was not done correctly, could stall
- bugfix imuxsock: segfault non shutdown when $OmitLocalLogging is on
Solaris 11 patch; supports latest version of FreeBSD 11.0-CURRENT; adjusts
for a missing bool typdef on i386 FreeBSD 10.0; fixes Linux UNIX socket
search by name bug; adds Linux display of UNIX socket endpoint information;
makes vm defintiions once again visible on FreeBSD 11.
the checksum on any of the master sites.
Fix thys by switching to the ".tar.xz" file which is smaller and provide a
correct checksum. I've compared the SHA256 checksum my copy of against the
one list in the file "sha256sums.asc" on the master site and they match.
unburden-home-dir allows users to move cache files from browsers,
etc. off their (nfs or ssd based) home directory, i.e. on a local
harddisk or tmpfs and replace them with a symbolic link to the new
location (e.g. on /tmp/ or /scratch/) upon login.
Optionally the contents of these directories and files can be removed
instead of moved.
-------------------------------------
(from RELEASE-NOTE, some 170 lines, sorry)
-----------------------------------------
E2fsprogs 1.43.4 (January 31, 2017)
===================================
Fix e2fsck to require that the system.data extended attribute is
always present even for files smaller than 60 bytes, to be consistent
with the kernel.
Fix a bug which was causing mke2fs -d and fuse2fs to improperly handle
Posix ACL's.
Fix a bug which could cause mke2fs -d to fail if there is an
zero-length file in source directory tree.
Clarify the default for the "proceed?" question printed by mke2fs and
tune2fs. (Addresses Debian Bug: #852727)
Debugfs will now display project quota information.
Debugfs's do_set_xattr now uses C strings to parse extended attribute
values, and will print the extended attributes using either C strings
or hex bytes when using debugfs's do_get_xattr command. It will now
allow developers to see the contents of the system.data extended
attribute.
Fix a bug in mke2fs where I/O errors weren't getting properly reported
to the user.
Fix multiblock writes in the unaligned Direct I/O fallback code.
(Which is rarely needed on Linux systems, but which is required on
Freebsd systems.)
Make sure the default mke2fs.conf file includes the uninit_bg feature
flag. (Which was accidentally dropped in v1.43).
Fix a bug in resize2fs when operating on very large file systems which
have a block size different from the VM page size.
If the reported device size is absurdly large, mke2fs will now report
an error instead looping forever or crashing.
Fix various Coverity warnings and other memory leaks in fuse2fs and
extended attribute manipulation functions.
Replace a test file but which had a "non-commercial use-only"
copyright permission file with a newer version from the Cyrus imapd
package which now has a 4-clause BSD license, which was making some
lawyers nervous, even though the test file in question was only used
in lib/et's regression testing and was never included in any compiled
binary. (Addresses Debian Bug: #840733)
Stop installing mkfs.ext4dev and fsck.ext4dev
Update Chinese, Czech, Polish, Serbian, and Spanish translations and
add the Finnish and Malay translation. (Addresses-Debian-Bug: #774379)
Update various man pages (Addresses-Debian-Bug: #852726)
Programming notes
-----------------
Fix more FreeBSD-11 compatibility bugs, including some unmasked by
FreeBSD 11-rc2.
Fix the Mac build.
Fix build failure on RHEL 5.x systems caused by an old version of
libmagic.
Fix a number of bugs reported by ASAN that can cause some (mostly
harmless) memory dereferences beyond allocated memory.
E2fsprogs 1.43.3 (September 4, 2016)
====================================
Fix e2fsck's handling of timestamps on 32-bit systems.
E2fsck will now check, and if necessary repair the extra isize fields
in the inode and superblock.
Fix crashes on architectures such as sparc64 that are sensitive to
unaligned pointer derferences in the journal recovery code when
journal checksums are enabled.
Programming notes
-----------------
Support reproducible builds by not capturing the build directory into
the mk_cmds and compile_et scripts. Also fix debian build rules to
ensure build reproducibility.
Fix debian build rules to ensure build reproducibility and to avoid
hiding the linker flags for e2fsck.static so the build hardening log
scanner can properly audit the build.
Fix compatibility with FreeBSD's pmake and teach the configure script
to force the creation of pmake-compatible Makefiles if the
FORCE_NATIVE_MAKE environment variable is set to a non-empty value.
E2fsprogs 1.43.2 (September 1, 2016)
====================================
Fix resize2fs so it will not crash if there is an extended attribute
block but it doesn't need to migate any blocks during an off-line
resize
Fix a crash when mke2fs or debugfs tries to copy in a directory
hierarchy containing an empty directory
Mke2fs will now use a larger journal by default for filesystems
greater than 128 GB. (1GB instead of 128 MB.)
Fix an alignment bug in e2fsck which caused sparc64 architectures to
crash when replaying the journal on file systems with a 64-bit block
number.
Clarify the message printed by tune2fs message when the user needs to
run e2fsck so it's clear that the -f flag to e2fsck is needed to
force a full e2fsck scan. (Addresses Debian Bug: #828022)
Fix a bug in e2fsck caused by a power failure during e2fsck's journal
replay could leave the file system in a state where if the file system
is mounted without doing a full e2fsck scan, the file system could get
corrupted
Fix the logic in e2fsck which decides when to repair legacy negative
timestamp encodings.
Add a command to debugfs to copy the inode structure from one inode to
another.
Fix a typo in debugfs's stat command when printing out the dtime field
on file systems with an extended timestamp.
Fix big endian bugs in the e2undo program. (Addresses Red Hat Bug
#1344636)
Debugfs's logdump can now properly handle journals larger than 2GB.
Avoid installing the man page for fuse2fs if it has not been built.
Update the Catalan, Chinese, Danish, Dutch, French, German, Polish,
Swedish, Ukrainian translations and added new translations for
Hugarian and Serbian.
Programming notes
-----------------
Fix portability problems in fuse2fs. Previously it wouldn't build on
systems with older glibc versions where clock_gettime() is only
available in the librt library, and if libintl is not bundled into the
C library.
Remove complicated logic which caused a static code analyzer to flag a
false positive. (A static code analyzer also found a valid bug in
deciding when to repair a legacy negative timestamp encoding, so
eliminating false positives is important.)
Fixed a bug where the ext2fs library cloud provoke when a
extfs2_zero_blocks() is used (via fallocation, initializing a file
system, uninitialized uninitialized inode table blocks) after a
different file system which also used ext2fs_zero_blocks().
Enable the unix_io manager in the ext2fs library so it can accept the
use of a file descriptor. This is helpful in cases where the file
descriptor comes from temporary file created using O_TMPFILE, or
passed in from a unix domain socket.
Fix a Windows64 portability bug.
------------------------------------
Changes found in NEWS file is too lengthy, just quote the first part of it.
vifm v0.8.2
-----------
This release brings a bit of user-friendliness in form of key suggestions and
various descriptions provided in the interface. Matching of files has been
extended in many ways and become significantly more powerful than before.
Menu mode also got several enhancements.
--------------------------------------
---- Changes since 1.590 ----
The titles for existing clone modules can now be changed on the Module
Titles page.
---- Changes since 1.610 ----
- Added a page for viewing and running Webmin scheduled functions.
- Added a section to the Sending Email page to verify that the
configured mail server settings work.
---- Changes since 1.620 ----
Added a setting to the Web Server Options page to control if redirects
use just a path, or the full URL.
---- Changes since 1.640 ----
Actions on the Webmin Scheduled Functions page can now be clicked on
to change the time the function runs at.
---- Changes since 1.650 ----
Added an SSL option to use only ciphers with perfect forward secrecy.
Added support for two-factor authentication using Authy or Google Authenticator.
---- Changes since 1.660 ----
Updated the UI on several pages to use the standard Webmin library,
for a more consistent look.
---- Changes since 1.730 ----
Added an option to use an SSL connection when Webmin sends email, for
connecting to remote mail servers like Gmail that don't allow
unencrypted SMTP.
---- Changes since 1.770 ----
An SSL certificate can now be requested from Let's Encrypt using a new
tab on the SSL Encryption page.
---- Changes since 1.780 ----
Added an option for automatically renewing Let's Encrypt certificates.
If the Let's Encrypt client is not installed, Webmin will use its own
built-in client code to request a certificate.
---- Changes since 1.800 ----
Added an option to the logging page for sending Webmin action log
messages via email.
---- Changes since 1.810 ----
The Let's Encrypt key size can now be customized.
When Perfect Forward Secrecy ciphers are selected, the required DH
params file is now created and used by Webmin.
Added devel/p5-File-Flock version 2014.01
Added devel/p5-Data-Structure-Util version 0.16
Added devel/p5-TheSchwartz version 1.12
Added devel/p5-Eval-LineNumbers version 0.1
Added sysutils/p5-Daemon-Generic version 0.84
Daemon::Generic provides a framework for starting, stopping, reconfiguring
daemon-like programs. The framework provides for standard commands that
work for as init.d files and as apachectl-like commands.
Programs that use Daemon::Generic subclass Daemon::Generic to override its
behavior. Almost everything that Genric::Daemon does can be overridden as
needed.
FEATURES:
- KV Import/Export CLI: consul kv export and consul kv import can be
used to move parts of the KV tree between disconnected consul
clusters, using JSON as the intermediate representation.
- Node Metadata: Support for assigning user-defined metadata key/value
pairs to nodes has been added.
- Node Identifiers: Consul agents can now be configured with a unique
identifier, or they will generate one at startup that will persist
across agent restarts.
- Improved Blocking Queries: Consul's blocking query implementation was
improved to provide a much more fine-grained mechanism for detecting
changes.
- GCE auto-discovery: New -retry-join-gce configuration options added to
allow bootstrapping by automatically discovering Google Cloud
instances with a given tag at startup.
IMPROVEMENTS:
- build: Consul is now built with Go 1.7.4.
- cli: consul kv get now has a -base64 flag to base 64 encode the value.
- cli: consul kv put now has a -base64 flag for setting values which are
base 64 encoded.
- ui: Added a notice that JS is required when viewing the web UI with JS
disabled.
BUG FIXES:
- agent: Redacted the AWS access key and secret key ID from the
/v1/agent/self output so they are not disclosed.
- agent: Fixed a rare startup panic due to a Raft/Serf race condition.
- cli: Fixed a panic when an empty quoted argument was given to consul
kv put.
- tests: Fixed a race condition with check mock's map usage.
