From 19995f4345f41e50387c149e2ccd7be10c772a04 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Wed, 14 Aug 2024 20:24:24 +0200
Subject: [PATCH 01/12] fix typo in varchar length of selector field of new
 panel_2fa_tokens table, thx to Davidd

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 index.php                                  | 3 +++
 install/froxlor.sql.php                    | 4 ++--
 install/updates/froxlor/update_2.2.inc.php | 9 +++++++++
 lib/Froxlor/Froxlor.php                    | 2 +-
 4 files changed, 15 insertions(+), 3 deletions(-)

diff --git a/index.php b/index.php
index 3ee8b9427d..4251ff9eea 100644
--- a/index.php
+++ b/index.php
@@ -394,6 +394,9 @@
 					}
 					exit();
 				}
+				// not found or invalid, this cookie is useless, get rid of it
+				unset($_COOKIE['frx_2fa_remember']);
+				setcookie('frx_2fa_remember', "", time()-3600);
 			}
 
 			// redirect to code-enter-page
diff --git a/install/froxlor.sql.php b/install/froxlor.sql.php
index 65769e2017..701cb58812 100644
--- a/install/froxlor.sql.php
+++ b/install/froxlor.sql.php
@@ -731,7 +731,7 @@
 	('panel', 'settings_mode', '0'),
 	('panel', 'menu_collapsed', '1'),
 	('panel', 'version', '2.2.0-rc3'),
-	('panel', 'db_version', '202407200');
+	('panel', 'db_version', '202408140');
 
 
 DROP TABLE IF EXISTS `panel_tasks`;
@@ -1054,7 +1054,7 @@
 DROP TABLE IF EXISTS `panel_2fa_tokens`;
 CREATE TABLE `panel_2fa_tokens` (
   `id` int(11) NOT NULL auto_increment,
-  `selector` varchar(20) NOT NULL,
+  `selector` varchar(200) NOT NULL,
   `token` varchar(200) NOT NULL,
   `userid` int(11) NOT NULL default '0',
   `valid_until` int(15) NOT NULL,
diff --git a/install/updates/froxlor/update_2.2.inc.php b/install/updates/froxlor/update_2.2.inc.php
index e84786c371..27dc4d1581 100644
--- a/install/updates/froxlor/update_2.2.inc.php
+++ b/install/updates/froxlor/update_2.2.inc.php
@@ -150,3 +150,12 @@
 	Update::showUpdateStep("Updating from 2.2.0-rc2 to 2.2.0-rc3", false);
 	Froxlor::updateToVersion('2.2.0-rc3');
 }
+
+if (Froxlor::isDatabaseVersion('202407200')) {
+
+	Update::showUpdateStep("Adjusting field in 2fa-token table");
+	Database::query("ALTER TABLE `panel_2fa_tokens` CHANGE COLUMN `selector` `selector` varchar(200) NOT NULL;");
+	Update::lastStepStatus(0);
+
+	Froxlor::updateToDbVersion('202408140');
+}
diff --git a/lib/Froxlor/Froxlor.php b/lib/Froxlor/Froxlor.php
index aa06a15d7f..78894a6bb4 100644
--- a/lib/Froxlor/Froxlor.php
+++ b/lib/Froxlor/Froxlor.php
@@ -34,7 +34,7 @@ final class Froxlor
 	const VERSION = '2.2.0-rc3';
 
 	// Database version (YYYYMMDDC where C is a daily counter)
-	const DBVERSION = '202407200';
+	const DBVERSION = '202408140';
 
 	// Distribution branding-tag (used for Debian etc.)
 	const BRANDING = '';

From 54cda098c1cd9fdaa09145951a0b3b4fc9ca81e1 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Thu, 15 Aug 2024 20:11:28 +0200
Subject: [PATCH 02/12] correctly get target filename for jqSpeciallogfileNote
 action call via ajax, fixes #1267

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 templates/Froxlor/assets/js/jquery/domains.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/templates/Froxlor/assets/js/jquery/domains.js b/templates/Froxlor/assets/js/jquery/domains.js
index 9e3766ec09..2322c8bd6d 100644
--- a/templates/Froxlor/assets/js/jquery/domains.js
+++ b/templates/Froxlor/assets/js/jquery/domains.js
@@ -41,8 +41,9 @@ export default function () {
 				$('#speciallogfilenote').remove();
 				$('#speciallogfile').removeClass('is-invalid');
 				$('#speciallogverified').val(0);
+				const cFileName = window.location.pathname.substring(window.location.pathname.lastIndexOf("/")+1);
 				$.ajax({
-					url: window.location.pathname.substring(1) + "?page=overview&action=jqSpeciallogfileNote",
+					url: cFileName + "?page=overview&action=jqSpeciallogfileNote",
 					type: "POST",
 					data: {
 						id: $('input[name=id]').val(), newval: +$('#speciallogfile').is(':checked')

From 15d3dd4234d3bf9493814265e80139aa1d50b116 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Fri, 23 Aug 2024 09:21:54 +0200
Subject: [PATCH 03/12] set version to 2.2.0 for upcoming release

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 install/froxlor.sql.php                    | 2 +-
 install/updates/froxlor/update_2.2.inc.php | 5 +++++
 lib/Froxlor/Froxlor.php                    | 2 +-
 3 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/install/froxlor.sql.php b/install/froxlor.sql.php
index 701cb58812..9c45c5d79f 100644
--- a/install/froxlor.sql.php
+++ b/install/froxlor.sql.php
@@ -730,7 +730,7 @@
 	('panel', 'logo_overridecustom', '0'),
 	('panel', 'settings_mode', '0'),
 	('panel', 'menu_collapsed', '1'),
-	('panel', 'version', '2.2.0-rc3'),
+	('panel', 'version', '2.2.0'),
 	('panel', 'db_version', '202408140');
 
 
diff --git a/install/updates/froxlor/update_2.2.inc.php b/install/updates/froxlor/update_2.2.inc.php
index 27dc4d1581..8dcf41783a 100644
--- a/install/updates/froxlor/update_2.2.inc.php
+++ b/install/updates/froxlor/update_2.2.inc.php
@@ -159,3 +159,8 @@
 
 	Froxlor::updateToDbVersion('202408140');
 }
+
+if (Froxlor::isFroxlorVersion('2.2.0-rc3')) {
+	Update::showUpdateStep("Updating from 2.2.0-rc3 to 2.2.0 stable", false);
+	Froxlor::updateToVersion('2.2.0');
+}
diff --git a/lib/Froxlor/Froxlor.php b/lib/Froxlor/Froxlor.php
index 78894a6bb4..907e580751 100644
--- a/lib/Froxlor/Froxlor.php
+++ b/lib/Froxlor/Froxlor.php
@@ -31,7 +31,7 @@ final class Froxlor
 {
 
 	// Main version variable
-	const VERSION = '2.2.0-rc3';
+	const VERSION = '2.2.0';
 
 	// Database version (YYYYMMDDC where C is a daily counter)
 	const DBVERSION = '202408140';

From bacc6fe0738ebf03811151f5242f6acc803f36f0 Mon Sep 17 00:00:00 2001
From: Lukas Bableck <lukas@bableck.dev>
Date: Fri, 23 Aug 2024 11:03:33 +0200
Subject: [PATCH 04/12] Add |raw to h5 in formfields template (#1268)

---
 templates/Froxlor/form/formfields.html.twig | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/templates/Froxlor/form/formfields.html.twig b/templates/Froxlor/form/formfields.html.twig
index 712ef61cbf..f93b203814 100644
--- a/templates/Froxlor/form/formfields.html.twig
+++ b/templates/Froxlor/form/formfields.html.twig
@@ -3,7 +3,7 @@
 		{% if norow == false and (field.type != 'hidden' or (field.type == 'hidden' and field.display is defined and field.display is not empty)) %}
 			<div class="row g-0 formfield d-flex align-items-center">
 				{% if field.prior_infotext is defined and field.prior_infotext|length > 0 %}
-					<h5>{{ field.prior_infotext }}</h5>
+					<h5>{{ field.prior_infotext|raw }}</h5>
 				{% endif %}
 				{% if field.label is iterable %}
 					<label for="{{ id }}" class="col-sm-6 col-form-label pe-3">

From 94046ae6c719fe33205c25d0edd4744fb7df91ab Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Sat, 24 Aug 2024 01:15:33 +0200
Subject: [PATCH 05/12] fix storing multiple-choice-select values, thx to
 21MILEX on Discord, fixes #1269

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 lib/Froxlor/Validate/Form/Data.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/Froxlor/Validate/Form/Data.php b/lib/Froxlor/Validate/Form/Data.php
index 76dbd74b3d..619a21441a 100644
--- a/lib/Froxlor/Validate/Form/Data.php
+++ b/lib/Froxlor/Validate/Form/Data.php
@@ -232,7 +232,7 @@ public static function validateFormFieldSelect($fieldname, $fielddata, $newfield
 	{
 		$returnvalue = true;
 
-		if (isset($fielddata['option_mode']) && $fielddata['option_mode'] == 'multiple') {
+		if (isset($fielddata['select_mode']) && $fielddata['select_mode'] == 'multiple') {
 			$options = explode(',', $newfieldvalue);
 			foreach ($options as $option) {
 				$returnvalue = ($returnvalue && isset($fielddata['select_var'][$option]));
@@ -247,7 +247,7 @@ public static function validateFormFieldSelect($fieldname, $fielddata, $newfield
 			if (isset($fielddata['option_emptyallowed']) && $fielddata['option_emptyallowed']) {
 				return true;
 			}
-			return 'not in option';
+			return 'not in option (field: ' . $fieldname . ')';
 		}
 	}
 

From d18a9c9d87a9712098d71b2c6363855a795c18f1 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Sat, 24 Aug 2024 19:08:24 +0200
Subject: [PATCH 06/12] show antispam options for email-editing only if enabled

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 lib/formfields/customer/email/formfield.emails_edit.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/lib/formfields/customer/email/formfield.emails_edit.php b/lib/formfields/customer/email/formfield.emails_edit.php
index 7a03ef6939..3068054392 100644
--- a/lib/formfields/customer/email/formfield.emails_edit.php
+++ b/lib/formfields/customer/email/formfield.emails_edit.php
@@ -103,18 +103,21 @@
 						]
 					],
 					'spam_tag_level' => [
+						'visible' => Settings::Get('antispam.activated') == '1',
 						'label' => lng('antispam.spam_tag_level'),
 						'type' => 'text',
 						'string_regexp' => '/^\d{1,}(\.\d{1,2})?$/',
 						'value' => $result['spam_tag_level']
 					],
 					'spam_kill_level' => [
+						'visible' => Settings::Get('antispam.activated') == '1',
 						'label' => lng('antispam.spam_kill_level'),
 						'type' => 'text',
 						'string_regexp' => '/^\d{1,}(\.\d{1,2})?$/',
 						'value' => $result['spam_kill_level']
 					],
 					'bypass_spam' => [
+						'visible' => Settings::Get('antispam.activated') == '1',
 						'label' => lng('antispam.bypass_spam'),
 						'type' => 'label',
 						'value' => ((int)$result['bypass_spam'] == 0 ? lng('panel.no') : lng('panel.yes')),
@@ -128,6 +131,7 @@
 						]
 					],
 					'policy_greylist' => [
+						'visible' => Settings::Get('antispam.activated') == '1',
 						'label' => lng('antispam.policy_greylist'),
 						'type' => 'label',
 						'value' => ((int)$result['policy_greylist'] == 0 ? lng('panel.no') : lng('panel.yes')),

From a1b6125c1409ab4333fc809c6c0d1ff3276f1e87 Mon Sep 17 00:00:00 2001
From: Florian Moker <info@florianmoker.de>
Date: Thu, 29 Aug 2024 08:10:59 +0200
Subject: [PATCH 07/12] Fix missing proftpd-mod-wrap installation (#1272)

Missing Package Installation on Ubuntu Noble 24.04 - proftpd-mod-wrap, fixes #1271
---
 lib/configfiles/noble.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/configfiles/noble.xml b/lib/configfiles/noble.xml
index e1d5a3f470..58726403ee 100644
--- a/lib/configfiles/noble.xml
+++ b/lib/configfiles/noble.xml
@@ -2121,7 +2121,7 @@ action = "no action";
 			<service type="ftp" title="{{lng.admin.configfiles.ftp}}">
 				<!-- Proftpd -->
 				<daemon name="proftpd" title="ProFTPd" default="true">
-					<install><![CDATA[apt-get install proftpd-basic proftpd-mod-mysql proftpd-mod-crypto]]></install>
+					<install><![CDATA[apt-get install proftpd-basic proftpd-mod-mysql proftpd-mod-crypto proftpd-mod-wrap]]></install>
 					<file name="/etc/proftpd/create-cert.sh" chown="root:0"
 						chmod="0700">
 						<content><![CDATA[#!/bin/bash

From 197eb7954a244c321dd28f0d358658bb9d4bdbe7 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Thu, 29 Aug 2024 08:17:54 +0200
Subject: [PATCH 08/12] dont generate dhparam file as fallback but use defined
 FFDHE4096 group; fixes #1270

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 lib/Froxlor/Api/Commands/SysLog.php      |  2 +-
 lib/Froxlor/Cron/Http/Apache.php         |  4 ++--
 lib/Froxlor/Cron/Http/HttpConfigBase.php | 20 ++++++++++++++++++++
 lib/Froxlor/Cron/Http/Lighttpd.php       |  4 ++--
 lib/Froxlor/Cron/Http/Nginx.php          |  2 +-
 5 files changed, 26 insertions(+), 6 deletions(-)

diff --git a/lib/Froxlor/Api/Commands/SysLog.php b/lib/Froxlor/Api/Commands/SysLog.php
index a753fd4fe7..ccbca20de5 100644
--- a/lib/Froxlor/Api/Commands/SysLog.php
+++ b/lib/Froxlor/Api/Commands/SysLog.php
@@ -225,7 +225,7 @@ public function delete()
 			}
 			$params['trunc'] = $truncatedate;
 			Database::pexecute($result_stmt, $params, true, true);
-			$this->logger()->logAction($this->isAdmin() ? FroxlorLogger::ADM_ACTION : FroxlorLogger::USR_ACTION, LOG_WARNING, "[API] truncated the froxlor syslog");
+			$this->logger()->logAction(FroxlorLogger::ADM_ACTION, LOG_WARNING, "[API] truncated the froxlor syslog");
 			return $this->response(true);
 		}
 		throw new Exception("Not allowed to execute given command.", 403);
diff --git a/lib/Froxlor/Cron/Http/Apache.php b/lib/Froxlor/Cron/Http/Apache.php
index 609f916489..563fac3ab6 100644
--- a/lib/Froxlor/Cron/Http/Apache.php
+++ b/lib/Froxlor/Cron/Http/Apache.php
@@ -441,7 +441,7 @@ public function createIpPort()
 								if (!empty(Settings::Get('system.dhparams_file'))) {
 									$dhparams = FileDir::makeCorrectFile(Settings::Get('system.dhparams_file'));
 									if (!file_exists($dhparams)) {
-										FileDir::safe_exec('openssl dhparam -out ' . escapeshellarg($dhparams) . ' 4096');
+										file_put_contents($dhparams, self::FFDHE4096);
 									}
 									$this->virtualhosts_data[$vhosts_filename] .= ' SSLOpenSSLConfCmd DHParameters "' . $dhparams . '"' . "\n";
 								}
@@ -754,7 +754,7 @@ protected function getVhostContent($domain, $ssl_vhost = false)
 					if (!empty(Settings::Get('system.dhparams_file'))) {
 						$dhparams = FileDir::makeCorrectFile(Settings::Get('system.dhparams_file'));
 						if (!file_exists($dhparams)) {
-							FileDir::safe_exec('openssl dhparam -out ' . escapeshellarg($dhparams) . ' 4096');
+							file_put_contents($dhparams, self::FFDHE4096);
 						}
 						$vhost_content .= '  SSLOpenSSLConfCmd DHParameters "' . $dhparams . '"' . "\n";
 					}
diff --git a/lib/Froxlor/Cron/Http/HttpConfigBase.php b/lib/Froxlor/Cron/Http/HttpConfigBase.php
index 712f625e9e..3bd6e431f2 100644
--- a/lib/Froxlor/Cron/Http/HttpConfigBase.php
+++ b/lib/Froxlor/Cron/Http/HttpConfigBase.php
@@ -45,6 +45,26 @@
 class HttpConfigBase
 {
 
+	/**
+	 * Pre-defined DHE groups to use as fallback if dhparams_file
+	 * is given, but non-existent, see also https://github.com/froxlor/Froxlor/issues/1270
+	 */
+	const FFDHE4096 = <<<EOC
+-----BEGIN DH PARAMETERS-----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=
+-----END DH PARAMETERS-----
+EOC;
+
 	public function init()
 	{
 		// if Let's Encrypt is activated, run it before regeneration of webserver configfiles
diff --git a/lib/Froxlor/Cron/Http/Lighttpd.php b/lib/Froxlor/Cron/Http/Lighttpd.php
index 92478a9424..6cd0e86b08 100644
--- a/lib/Froxlor/Cron/Http/Lighttpd.php
+++ b/lib/Froxlor/Cron/Http/Lighttpd.php
@@ -273,7 +273,7 @@ public function createIpPort()
 						if (!empty(Settings::Get('system.dhparams_file'))) {
 							$dhparams = FileDir::makeCorrectFile(Settings::Get('system.dhparams_file'));
 							if (!file_exists($dhparams)) {
-								FileDir::safe_exec('openssl dhparam -out ' . escapeshellarg($dhparams) . ' 4096');
+								file_put_contents($dhparams, self::FFDHE4096);
 							}
 							$this->lighttpd_data[$vhost_filename] .= 'ssl.dh-file = "' . $dhparams . '"' . "\n";
 							$this->lighttpd_data[$vhost_filename] .= 'ssl.ec-curve = "secp384r1"' . "\n";
@@ -756,7 +756,7 @@ protected function getSslSettings($domain, $ssl_vhost)
 				if (!empty(Settings::Get('system.dhparams_file'))) {
 					$dhparams = FileDir::makeCorrectFile(Settings::Get('system.dhparams_file'));
 					if (!file_exists($dhparams)) {
-						FileDir::safe_exec('openssl dhparam -out ' . escapeshellarg($dhparams) . ' 4096');
+						file_put_contents($dhparams, self::FFDHE4096);
 					}
 					$ssl_settings .= 'ssl.dh-file = "' . $dhparams . '"' . "\n";
 					$ssl_settings .= 'ssl.ec-curve = "secp384r1"' . "\n";
diff --git a/lib/Froxlor/Cron/Http/Nginx.php b/lib/Froxlor/Cron/Http/Nginx.php
index fe951784c7..ffe153ee6b 100644
--- a/lib/Froxlor/Cron/Http/Nginx.php
+++ b/lib/Froxlor/Cron/Http/Nginx.php
@@ -399,7 +399,7 @@ protected function composeSslSettings($domain_or_ip)
 				if (!empty(Settings::Get('system.dhparams_file'))) {
 					$dhparams = FileDir::makeCorrectFile(Settings::Get('system.dhparams_file'));
 					if (!file_exists($dhparams)) {
-						FileDir::safe_exec('openssl dhparam -out ' . escapeshellarg($dhparams) . ' 4096');
+						file_put_contents($dhparams, self::FFDHE4096);
 					}
 					$sslsettings .= "\t" . 'ssl_dhparam ' . $dhparams . ';' . "\n";
 				}

From 3367f6dbd8976e2376522f5500ec431e7aa33ab7 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Thu, 29 Aug 2024 08:19:45 +0200
Subject: [PATCH 09/12] add condition to the remember-me checkbox for updaters
 when the token-table does not exist yet

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 index.php                                  | 1 +
 lng/ca.lng.php                             | 4 ++--
 lng/cz.lng.php                             | 2 +-
 lng/de.lng.php                             | 2 +-
 lng/en.lng.php                             | 2 +-
 lng/es.lng.php                             | 4 ++--
 lng/fr.lng.php                             | 4 +---
 lng/it.lng.php                             | 2 +-
 lng/nl.lng.php                             | 2 +-
 lng/pt.lng.php                             | 4 +---
 templates/Froxlor/login/enter2fa.html.twig | 2 ++
 11 files changed, 14 insertions(+), 15 deletions(-)

diff --git a/index.php b/index.php
index 4251ff9eea..a115713414 100644
--- a/index.php
+++ b/index.php
@@ -62,6 +62,7 @@
 	// show template to enter code
 	UI::view('login/enter2fa.html.twig', [
 		'pagetitle' => lng('login.2fa'),
+		'remember_me' => (Settings::Get('panel.db_version') >= 202407200) ? true : false,
 		'message' => $message
 	]);
 } elseif ($action == '2fa_verify') {
diff --git a/lng/ca.lng.php b/lng/ca.lng.php
index ecbefcc4c9..e267fe19da 100644
--- a/lng/ca.lng.php
+++ b/lng/ca.lng.php
@@ -1143,7 +1143,8 @@
 		]
 	],
 	'message' => [
-		'norecipients' => 'No s\'ha enviat cap correu electrònic perquè no hi ha destinataris a la base de dades'
+		'norecipients' => 'No s\'ha enviat cap correu electrònic perquè no hi ha destinataris a la base de dades',
+		'success' => 'Missatge enviat correctament als destinataris de %s',
 	],
 	'mysql' => [
 		'databasename' => 'Usuari/Nom de la base de dades',
@@ -2169,7 +2170,6 @@
 		'issuer' => 'Emissor'
 	],
 	'success' => [
-		'messages_success' => 'Missatge enviat correctament als destinataris de %s',
 		'success' => 'Informació',
 		'clickheretocontinue' => 'Feu clic aquí per a continuar',
 		'settingssaved' => 'La configuració s\'ha guardat correctament.',
diff --git a/lng/cz.lng.php b/lng/cz.lng.php
index 3fd1694857..e3d5371328 100644
--- a/lng/cz.lng.php
+++ b/lng/cz.lng.php
@@ -1213,6 +1213,7 @@
 	],
 	'message' => [
 		'norecipients' => 'Nebyl odeslán žádný e-mail, protože v databázi nejsou žádní příjemci',
+		'success' => 'Zpráva byla úspěšně odeslána příjemcům %s',
 	],
 	'mysql' => [
 		'databasename' => 'Uživatel/Jméno databáze',
@@ -2273,7 +2274,6 @@
 		'issuer' => 'Vydavatel',
 	],
 	'success' => [
-		'messages_success' => 'Zpráva byla úspěšně odeslána příjemcům %s',
 		'success' => 'Informace',
 		'clickheretocontinue' => 'Klikněte zde pro pokračování',
 		'settingssaved' => 'Nastavení bylo úspěšně uloženo.',
diff --git a/lng/de.lng.php b/lng/de.lng.php
index 2f2c74dd90..627bef2a8e 100644
--- a/lng/de.lng.php
+++ b/lng/de.lng.php
@@ -1141,6 +1141,7 @@
 	],
 	'message' => [
 		'norecipients' => 'Es wurde keine E-Mail versendet, da sich keine Empfänger in der Datenbank befinden',
+		'success' => 'Nachricht erfolgreich an "%s" Empfänger gesendet',
 	],
 	'mysql' => [
 		'databasename' => 'Benutzer-/Datenbankname',
@@ -2139,7 +2140,6 @@
 		'dmarc_entry' => 'DMARC-Eintrag für alle Domains',
 	],
 	'success' => [
-		'messages_success' => 'Nachricht erfolgreich an "%s" Empfänger gesendet',
 		'success' => 'Information',
 		'clickheretocontinue' => 'Hier klicken, um fortzufahren',
 		'settingssaved' => 'Die Einstellungen wurden erfolgreich gespeichert.',
diff --git a/lng/en.lng.php b/lng/en.lng.php
index e784528eb0..48fb799cbf 100644
--- a/lng/en.lng.php
+++ b/lng/en.lng.php
@@ -1213,6 +1213,7 @@
 	],
 	'message' => [
 		'norecipients' => 'No e-mail has been sent because there are no recipients in the database',
+		'success' => 'Successfully sent message to %s recipients',
 	],
 	'mysql' => [
 		'databasename' => 'User/Database name',
@@ -2273,7 +2274,6 @@
 		'issuer' => 'Issuer',
 	],
 	'success' => [
-		'messages_success' => 'Successfully sent message to %s recipients',
 		'success' => 'Information',
 		'clickheretocontinue' => 'Click here to continue',
 		'settingssaved' => 'The settings have been successfully saved.',
diff --git a/lng/es.lng.php b/lng/es.lng.php
index 29704088d9..003b05c968 100644
--- a/lng/es.lng.php
+++ b/lng/es.lng.php
@@ -1132,7 +1132,8 @@
 		]
 	],
 	'message' => [
-		'norecipients' => 'No se ha enviado ningún correo electrónico porque no hay destinatarios en la base de datos'
+		'norecipients' => 'No se ha enviado ningún correo electrónico porque no hay destinatarios en la base de datos',
+		'success' => 'Mensaje enviado correctamente a los destinatarios de %s',
 	],
 	'mysql' => [
 		'databasename' => 'Usuario/Nombre de la base de datos',
@@ -2152,7 +2153,6 @@
 		'issuer' => 'Emisor'
 	],
 	'success' => [
-		'messages_success' => 'Mensaje enviado correctamente a los destinatarios de %s',
 		'success' => 'Información',
 		'clickheretocontinue' => 'Haga clic aquí para continuar',
 		'settingssaved' => 'La configuración se ha guardado correctamente.',
diff --git a/lng/fr.lng.php b/lng/fr.lng.php
index 44d9d6eb38..154d7af317 100644
--- a/lng/fr.lng.php
+++ b/lng/fr.lng.php
@@ -466,6 +466,7 @@
 	],
 	'message' => [
 		'norecipients' => 'Aucun e-mail n\'a été envoyé car il n\'existe aucun destinataire dans la base de données',
+		'success' => 'Le message a été envoyé aux destinataires "%s"',
 	],
 	'mysql' => [
 		'databasename' => 'Nom de la base de données',
@@ -749,9 +750,6 @@
 			'description' => 'Les administrateurs / revendeurs peuvent réinitialiser leurs mots de passe et il sera envoyé à leurs propres adresses e-mails',
 		],
 	],
-	'success' => [
-		'messages_success' => 'Le message a été envoyé aux destinataires "%s"',
-	],
 	'traffic' => [
 		'month' => 'Mois',
 		'day' => 'Jour',
diff --git a/lng/it.lng.php b/lng/it.lng.php
index df13353f5d..1c9ae6189e 100644
--- a/lng/it.lng.php
+++ b/lng/it.lng.php
@@ -1043,6 +1043,7 @@
 	],
 	'message' => [
 		'norecipients' => 'Nessuna e-mail è stata inviata perch¸ non ci sono i destinatari nel database',
+		'success' => 'Inviato correttamente il messaggio a %s recipients',
 	],
 	'mysql' => [
 		'description' => 'Qui puoi creare e modificare il tuo database MySQL<br />Le modifiche sono istantanee e puoi usare subito il database.<br />Nel menù a sinistra trovi phpMyAdmin con cui puoi amministrare il tuo database.<br /><br />Per usare i database nei tuoi script php usa le seguenti impostazioni: (Le parole in <i>corsivo</i> devono essere modificate con quello che hai scritto!)<br />Hostname: <b><SQL_HOST></b><br />Utente: <b><i>Nome database</i></b><br />Password: <b><i>La password che hai scelto</i></b><br />Database: <b><i>Nome database</i></b>',
@@ -1703,7 +1704,6 @@
 		'spf_entry' => 'Impostazioni SPF per tutti i domini',
 	],
 	'success' => [
-		'messages_success' => 'Inviato correttamente il messaggio a %s recipients',
 		'success' => 'Informazioni',
 		'clickheretocontinue' => 'Clicca qui per continuare',
 		'settingssaved' => 'Le impostazioni sono state salvate con successo.',
diff --git a/lng/nl.lng.php b/lng/nl.lng.php
index 396ed4102f..056b436fe4 100644
--- a/lng/nl.lng.php
+++ b/lng/nl.lng.php
@@ -619,6 +619,7 @@
 	],
 	'message' => [
 		'norecipients' => 'Er is geen email verstuurd omdat er geen ontvangers in de database zijn',
+		'success' => 'Bericht verzonden naar ontvangers %s',
 	],
 	'mysql' => [
 		'databasename' => 'gebruiker/database naam',
@@ -1069,7 +1070,6 @@
 		'spf_entry' => 'SPF regel voor alle domeinen',
 	],
 	'success' => [
-		'messages_success' => 'Bericht verzonden naar ontvangers %s',
 		'success' => 'Informatie',
 		'clickheretocontinue' => 'Klik hier om verder te gaan',
 		'settingssaved' => 'De instellingen zijn opgeslagen.',
diff --git a/lng/pt.lng.php b/lng/pt.lng.php
index 30a9f88594..c6111d84e9 100644
--- a/lng/pt.lng.php
+++ b/lng/pt.lng.php
@@ -554,6 +554,7 @@
 	],
 	'message' => [
 		'norecipients' => 'Email não enviado porque não tem destinatário no banco de dados',
+		'success' => 'Mensagens enviadas para %s destinatários com sucesso',
 	],
 	'mysql' => [
 		'description' => 'Aqui você pode criar e alterar seus bancos de dados MySQL.<br />As alterações são instantâneas e podem ser utilizadas imediatamente depois de salvas.<br />No menu do lado esquerdo você pode encontrar a ferramenta phpMyAdmin e com ela facilmente administrar seus bancos de dados.<br /><br />Para usar seu banco de dados com scripts em PHP use as seguintes configurações: (Os dados em <i>italico</i> devem ser substituidos pelo equivalente do banco de dados que você criou!)<br />Hostname: <b><SQL_HOST></b><br />Usuario: <b><i>Nome do banco de dadose</i></b><br />Senha: <b><i>a senha que você escolheu</i></b><br />Banco de dados: <b><i>Nome do banco de dados',
@@ -880,9 +881,6 @@
 			'description' => 'Se ativado você pode trocar o cliente de um domínio para administração de outro.<br /><b>Attention:</b> Froxlor não troca nenhum caminho. Isto pode fazer com que domínios parem de funcionar',
 		],
 	],
-	'success' => [
-		'messages_success' => 'Mensagens enviadas para %s destinatários com sucesso',
-	],
 	'traffic' => [
 		'month' => 'Mês',
 		'day' => 'Diariamente',
diff --git a/templates/Froxlor/login/enter2fa.html.twig b/templates/Froxlor/login/enter2fa.html.twig
index 37cc3d6687..5f2ad72517 100644
--- a/templates/Froxlor/login/enter2fa.html.twig
+++ b/templates/Froxlor/login/enter2fa.html.twig
@@ -22,6 +22,7 @@
 							<input class="form-control" type="text" name="2fa_code" id="2fa_code" value="" autocomplete="off" autofocus required/>
 						</div>
 
+						{% if remember_me %}
 						<div class="mb-3">
 							<div class="form-check form-switch">
 								<input type="hidden" name="2fa_remember" value="0"/>
@@ -29,6 +30,7 @@
 								<label class="form-check-label" for="2fa_remember">{{ lng('login.2faremember') }}</label>
 							</div>
 						</div>
+						{% endif %}
 
 					</div>
 

From 4ea7e10304393a97ccb318e1c468f646647581e8 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Fri, 30 Aug 2024 10:06:26 +0200
Subject: [PATCH 10/12] set version to 2.2.1 for upcoming release

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 install/froxlor.sql.php                    | 2 +-
 install/updates/froxlor/update_2.2.inc.php | 5 +++++
 lib/Froxlor/Froxlor.php                    | 2 +-
 3 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/install/froxlor.sql.php b/install/froxlor.sql.php
index 9c45c5d79f..21add8c97c 100644
--- a/install/froxlor.sql.php
+++ b/install/froxlor.sql.php
@@ -730,7 +730,7 @@
 	('panel', 'logo_overridecustom', '0'),
 	('panel', 'settings_mode', '0'),
 	('panel', 'menu_collapsed', '1'),
-	('panel', 'version', '2.2.0'),
+	('panel', 'version', '2.2.1'),
 	('panel', 'db_version', '202408140');
 
 
diff --git a/install/updates/froxlor/update_2.2.inc.php b/install/updates/froxlor/update_2.2.inc.php
index 8dcf41783a..ccabd89150 100644
--- a/install/updates/froxlor/update_2.2.inc.php
+++ b/install/updates/froxlor/update_2.2.inc.php
@@ -164,3 +164,8 @@
 	Update::showUpdateStep("Updating from 2.2.0-rc3 to 2.2.0 stable", false);
 	Froxlor::updateToVersion('2.2.0');
 }
+
+if (Froxlor::isFroxlorVersion('2.2.0')) {
+	Update::showUpdateStep("Updating from 2.2.0 to 2.2.1", false);
+	Froxlor::updateToVersion('2.2.1');
+}
diff --git a/lib/Froxlor/Froxlor.php b/lib/Froxlor/Froxlor.php
index 907e580751..92eb1b7048 100644
--- a/lib/Froxlor/Froxlor.php
+++ b/lib/Froxlor/Froxlor.php
@@ -31,7 +31,7 @@ final class Froxlor
 {
 
 	// Main version variable
-	const VERSION = '2.2.0';
+	const VERSION = '2.2.1';
 
 	// Database version (YYYYMMDDC where C is a daily counter)
 	const DBVERSION = '202408140';

From 05ca08c5c383d0273719b68c82257c69925c4973 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Fri, 30 Aug 2024 16:26:55 +0200
Subject: [PATCH 11/12] do not overwrite needed userinfo to avoid successful
 login when using email 2fa

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 index.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/index.php b/index.php
index a115713414..73b0fff3a6 100644
--- a/index.php
+++ b/index.php
@@ -111,7 +111,7 @@
 		// when using email-2fa, remove the one-time-code
 		if ($userinfo['type_2fa'] == '1') {
 			$del_stmt = Database::prepare("UPDATE " . $table . " SET `data_2fa` = '' WHERE `" . $field . "` = :uid");
-			$userinfo = Database::pexecute_first($del_stmt, [
+			Database::pexecute_first($del_stmt, [
 				'uid' => $uid
 			]);
 		}

From 16d77a03cb90a1370f9ca7bc76348b045419c3a2 Mon Sep 17 00:00:00 2001
From: Michael Kaufmann <d00p@froxlor.org>
Date: Sat, 31 Aug 2024 08:41:09 +0200
Subject: [PATCH 12/12] fix timestamp matching regex, add lmtp to receving
 service regex and skip lines not including the main target service name in
 maillog parser

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>
---
 lib/Froxlor/MailLogParser.php | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/lib/Froxlor/MailLogParser.php b/lib/Froxlor/MailLogParser.php
index 0d6fb9251b..41f36d2e6e 100644
--- a/lib/Froxlor/MailLogParser.php
+++ b/lib/Froxlor/MailLogParser.php
@@ -104,6 +104,10 @@ private function parsePostfixLog($logFile)
 			unset($matches);
 			$line = fgets($file_handle);
 
+			if (strpos($line, 'postfix') === false) {
+				continue;
+			}
+
 			$timestamp = $this->getLogTimestamp($line);
 			if ($this->startTime < $timestamp) {
 				if (preg_match("/postfix\/qmgr.*(?::|\])\s([A-Z\d]+).*from=<?(?:.*\@([a-zA-Z\d\.\-]+))?>?, size=(\d+),/", $line, $matches)) {
@@ -112,7 +116,7 @@ private function parsePostfixLog($logFile)
 						"domainFrom" => strtolower($matches[2]),
 						"size" => $matches[3]
 					];
-				} elseif (preg_match("/postfix\/(?:pipe|smtp).*(?::|\])\s([A-Z\d]+).*to=<?(?:.*\@([a-zA-Z\d\.\-]+))?>?,/", $line, $matches)) {
+				} elseif (preg_match("/postfix\/(?:pipe|smtp|lmtp).*(?::|\])\s([A-Z\d]+).*to=<?(?:.*\@([a-zA-Z\d\.\-]+))?>?,/", $line, $matches)) {
 					// Postfix to
 					if (array_key_exists($matches[1], $this->mails)) {
 						$this->mails[$matches[1]]["domainTo"] = strtolower($matches[2]);
@@ -149,7 +153,7 @@ private function parsePostfixLog($logFile)
 	private function getLogTimestamp($line)
 	{
 		$matches = null;
-		if (preg_match("/((?:[A-Z]{3}\s{1,2}\d{1,2}|\d{4}-\d{2}-\d{2}) \d{2}:\d{2}:\d{2})/i", $line, $matches)) {
+		if (preg_match("/((?:[A-Z]{3}\s{1,2}\d{1,2}|\d{4}-\d{2}-\d{2}).\d{2}:\d{2}:\d{2})/i", $line, $matches)) {
 			$timestamp = strtotime($matches[1]);
 			if ($timestamp > ($this->startTime + 60 * 60 * 24)) {
 				return strtotime($matches[1] . " -1 year");
@@ -258,6 +262,10 @@ private function parseDovecotLog($logFile)
 			unset($matches);
 			$line = fgets($file_handle);
 
+			if (strpos($line, 'dovecot') === false) {
+				continue;
+			}
+
 			$timestamp = $this->getLogTimestamp($line);
 			if ($this->startTime < $timestamp) {
 				if (preg_match("/dovecot.*(?::|\]) imap\(.*@([a-z0-9\.\-]+)\)(<\d+><[a-z0-9+\/=]+>)?:.*(?:in=(\d+) out=(\d+)|bytes=(\d+)\/(\d+))/i", $line, $matches)) {