Debian Patches
Status for opensnitch/1.6.9-3
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 1000-installed-kernel-headers.patch | Changed how ebpf build find kernel headers from running to installed version. The installed kernel do not match running kernel in chroots and containers. | Petter Reinholdtsen <pere@hungry.com> | yes | 2025-04-20 | ||
| 1020-ebpf-armv8l.patch | Added ebpf build rule mapping for armv8 to work with more armhf machines. | Petter Reinholdtsen <pere@hungry.com> | yes | 2025-04-20 | ||
| 1030-systemd-service-earlier.patch | Start firewall rules before network is brought up. Also protect the firewall daemon from the kernel OOM killer. Partly based on proposal from https://github.com/evilsocket/opensnitch/pull/1019/. diff --git a/daemon/opensnitchd.service b/daemon/opensnitchd.service index 3f05fad2..3bfd94d6 100644 |
Petter Reinholdtsen <pere@hungry.com> | yes | 2025-04-20 | ||
| 1050-ebpf-s390x.patch | Added ebpf build rule mapping for s390x to s390. This ensure the kernel headers are found during compilation. | Petter Reinholdtsen <pere@hungry.com> | yes | 2025-04-25 | ||
| 2000-apt-not-pip.patch | Do not propose use of pip on Debian Dependencies should be fetched from the curated Debian archive. | Petter Reinholdtsen <pere@debian.org> | not-needed | 2025-04-19 | ||
| 2010-no-tcp-flush-on-restart.patch | Tell opensnitch daemon to not flush al TCP connections on restart. This avoid killing connections like SSH and IRC when upgrading or restarting the service. See discussion in https://github.com/evilsocket/opensnitch/issues/1329 . |
Petter Reinholdtsen <pere@hungry.com> | not-needed | debian | 2025-05-26 |