Peter Stadler [Thu, 28 Oct 2021 08:36:00 +0000 (10:36 +0200)]
uwsgi: bump version and use less workarounds
* adopt pypi name and line numbers in patches
* remove custom tar command and patch for using python3 (changed upstream)
Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
(cherry picked from commit
545629e38601846b4b79bc3ac932355f0621d750)
Tianling Shen [Tue, 22 Nov 2022 08:57:37 +0000 (16:57 +0800)]
librespeed-go: add new package
Go backend for LibreSpeed.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
a157e382df81ba1d40ba275730d7adf627508004)
Maxim Anisimov [Sat, 26 Mar 2022 08:45:59 +0000 (11:45 +0300)]
libmbim: switch to meson build tools
Using https://gitlab.freedesktop.org/mobile-broadband/libmbim.git to download the source code.
Enabled lto and additional gcc flags for perfomance and less size.
Modified to use meson as upstream has abandoned autotools.
Removed BUILD_PARALLEL options. These are default with ninja/meson.
Signed-off-by: Maxim Anisimov <maxim.anisimov.ua@gmail.com>
(cherry picked from commit
fea19c23994dcc84332dfaeb9d585df46a847b10)
Tianling Shen [Mon, 14 Nov 2022 10:17:46 +0000 (18:17 +0800)]
sqlite3: Update to 3.40.0
1. Added a new option for SQLITE3_COLUMN_METADATA.
2. Minor cleanup Makefile and fixed 2 typo errors.
Fixes: CVE-2022-35737
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
a4a0f0793bf7016d813b67a413ee4010917270c0)
Marius Dinu [Tue, 21 Dec 2021 19:56:08 +0000 (21:56 +0200)]
sqlite: update to v3.37 (2021-11-27)
Signed-off-by: Marius Dinu <m95d+git@psihoexpert.ro>
(cherry picked from commit
b2309dc25e5080bfb49d21e1a4bd751460c9465d)
Jan Hoffmann [Thu, 4 Feb 2021 19:41:50 +0000 (20:41 +0100)]
sqlite3: add option for batch-atomic write support
This allows to build SQLite with support for the batch-atomic write
optimization. It makes use of atomic write support provided by the
underlying file system. Currently, this is only supported on F2FS. It
it does not work with overlayfs.
Signed-off-by: Jan Hoffmann <jan@3e8.eu>
(cherry picked from commit
4bc7ba7fe82563dd64db57317c52824039ab8209)
Josef Schlehofer [Wed, 23 Nov 2022 13:31:56 +0000 (14:31 +0100)]
libmbim: fix hash for 1.26.4 tarball
This corrects the hash by using sha256sum for downloaded tarball from
freedesktop. After that, package libmbim was successfully compiled.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Ivan Pavlov [Thu, 23 Jun 2022 03:06:44 +0000 (06:06 +0300)]
xtables-addons: update to 3.21
updated to kernel 5.10.121+ changes
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
(cherry picked from commit
69e4ed4b6f2e0fe33367ea13871d5ac227aaf922)
Nick Hainke [Wed, 1 Jun 2022 06:27:59 +0000 (08:27 +0200)]
xtables-addons: update to 3.20
866bc7f Xtables-addons 3.20
aa70669 doc: move changelog to rST
d7de2a9 doc: remove old changelog entries
d7e49a8 build: bump supported kernel version to 5.17
966fa43 extensions: replace PDE_DATA
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
c3141dc16aaf6ec0d9262a921a41a69e96241be8)
Eneas U de Queiroz [Wed, 11 May 2022 22:37:12 +0000 (19:37 -0300)]
audit: remove host build
The audit package in the packages feed share the same sources as the
libaudit package in the base repo. libaudit performs a host build, used
only by libsemanage in base.
There is no package depending on 'audit/host', so we can remove it to
avoid possible confusion.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
1d54defb0fe7a964a19e3aa36e35a8159bcc2262)
Eneas U de Queiroz [Wed, 11 May 2022 22:08:13 +0000 (19:08 -0300)]
audit: avoid interferece with base libaudit build
Both audit in the packages feed and libaudito from the base repo use the
same sources.
Have 'audit' use a different build directory than 'libaudit' package to
avoid interference between them.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
c0f26f4980cfb6d2abb1b1548530cee41c5f92aa)
Aleksander Morgado [Wed, 4 May 2022 11:35:54 +0000 (13:35 +0200)]
libmbim: bump to 1.26.4
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit
1d2ef5abbbdff8528ec225d4bc499643bc29ea12)
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
[only version bump]
Eric Luehrsen [Sat, 19 Nov 2022 22:24:27 +0000 (17:24 -0500)]
unbound: update to 1.17.0
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
(cherry picked from commit
6bc0293a73f5a1d86a951ebd4c00cbc7b09e4529)
(cherry picked from commit
0de8e969e30db87d4af6bc2a67c59c0d8ed2378f)
Josef Schlehofer [Sun, 25 Sep 2022 10:00:55 +0000 (12:00 +0200)]
unbound: update to version 1.16.3
Changelog: https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-16-3
- Fixes: CVE-2022-3204
Refreshed one patch
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
027533f9a23bbedd0b7c988405a9b5fd433da502)
(cherry picked from commit
a9423d8946a3d40fdcca0264a2149338d5621055)
Pascal Ernster [Tue, 2 Aug 2022 02:26:38 +0000 (04:26 +0200)]
unbound: update to 1.16.2, fix CVE-2022-30698, CVE-2022-30699
Maintainer: @EricLuehrsen
Compile tested: x86/64
Run tested: x86/64
Description: Update to 1.16.2, fix CVE-2022-30698 and CVE-2022-30699.
Signed-off-by: Pascal Ernster <git@hardfalcon.net>
(cherry picked from commit
2179432991fd69ba790225c7959b080986ce363d)
(cherry picked from commit
eaefde9a4a6aa649df6ea2152b09d641eca007c3)
Pascal Ernster [Mon, 11 Jul 2022 15:27:30 +0000 (17:27 +0200)]
unbound: update to 1.16.1
Maintainer: @EricLuehrsen
Compile tested: realtek/rtl838x, x86/64
Run tested: realtek/rtl838x, x86/64
Description: Update to 1.16.1
Signed-off-by: Pascal Ernster <git@hardfalcon.net>
(cherry picked from commit
e702a6605805b1160341bfc949ec1de4687af06d)
(cherry picked from commit
2e878763dfb54ae9daba068a441e47c6b954d774)
Tianling Shen [Wed, 16 Nov 2022 09:12:13 +0000 (17:12 +0800)]
ooniprobe: Update to 3.16.5
Fix build with Go 1.19.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
1c6570dcc7c4ce9843b763e8863baf92277fa008)
Michal Vasilek [Mon, 21 Nov 2022 12:49:20 +0000 (13:49 +0100)]
librespeed-cli: rename binary to librespeed-cli
upstream names the binary librespeed-cli and this avoids a conflict with
python3-speedtest-cli
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
c2ad338b0f0fb5df4c84770fa6408f18bd347671)
Tianling Shen [Mon, 21 Nov 2022 11:06:31 +0000 (19:06 +0800)]
rclone: Update to 1.60.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
88a1535d00e1047041cb9328a6f6eac310af1714)
Tianling Shen [Fri, 18 Nov 2022 11:18:56 +0000 (19:18 +0800)]
xray-core: Update to 1.6.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d36c34f9847d20450f61c955ccab745a5c90e90f)
Michal Vasilek [Wed, 2 Nov 2022 15:08:08 +0000 (16:08 +0100)]
librespeed-cli: add package
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
bb33b55354f6a9b51f445c117c5fdb5fca0b5a44)
Marc Benoit [Mon, 5 Sep 2022 18:52:07 +0000 (14:52 -0400)]
nextdns: initialize nextdns from /etc/uci-defaults
Signed-off-by: Marc Benoit <marcb62185@gmail.com>
(cherry picked from commit
e54247a6fa9c03f286d38460c425d6dbd622b657)
Olivier Poitrey [Wed, 16 Nov 2022 16:04:29 +0000 (16:04 +0000)]
nextdns: Update to version 1.38.0
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Hannu Nyman [Thu, 17 Nov 2022 16:17:29 +0000 (18:17 +0200)]
nano: update to 7.0
Update nano to version 7.0.
Add a patch to fix the plus variant.
Upstream discussion and patch in
https://savannah.gnu.org/bugs/?63372
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
4a89a577a71adffc6cbad99971b4c064193b3566)
van waholtz [Wed, 16 Nov 2022 11:10:02 +0000 (19:10 +0800)]
ariang: update to 1.3.2
Signed-off-by: van waholtz <brvphoenix@gmail.com>
(cherry picked from commit
99315b516f5cfcb6825ca4afdfd5ee14799ee370)
Van Waholtz [Sun, 14 Aug 2022 02:24:50 +0000 (10:24 +0800)]
ariang: update to 1.2.4
Changelog: https://github.com/mayswind/AriaNg/releases
Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit
aee5b7db55c3eb7a84b4fc9e90994a1fdef8cd41)
Rosen Penev [Thu, 16 Dec 2021 06:00:04 +0000 (22:00 -0800)]
ariang: update to 1.2.3
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
4a400ed105e59430f2fd16f592a1f4d8deef3d41)
Van Waholtz [Wed, 16 Jun 2021 12:47:40 +0000 (20:47 +0800)]
ariang: update to 1.2.2
Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit
ae09a31ffed9e2b5fa72b075d30455916eb82157)
Van Waholtz [Sun, 13 Jun 2021 09:08:17 +0000 (17:08 +0800)]
ariang: update to 1.2.1
Use original main repo's releases instead
Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit
3bcab30f2051720049d8c7605cc4288204bea472)
Tianling Shen [Wed, 16 Nov 2022 11:57:19 +0000 (19:57 +0800)]
yq: Update to 4.30.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
8762261112c8235f7f85a6f57dbf342cf17093b9)
Michael Heimpold [Thu, 17 Nov 2022 07:07:47 +0000 (08:07 +0100)]
Merge pull request #19914 from mhei/21.02-php8-update-8.0.25
[21.02] php8: update to 8.0.25
Michael Heimpold [Thu, 17 Nov 2022 07:07:33 +0000 (08:07 +0100)]
Merge pull request #19913 from mhei/21.02-php7-update-7.4.33
[21.02] php7: update to 7.4.33
Josef Schlehofer [Wed, 16 Nov 2022 20:48:31 +0000 (21:48 +0100)]
Merge pull request #19648 from nemesisdesign/openwrt-21.02
[21.02] Backport fixes for modem-manager and its dependencies
Michael Heimpold [Wed, 16 Nov 2022 14:31:56 +0000 (15:31 +0100)]
php7: update to 7.4.33
This fixes:
- CVE-2022-31630
- CVE-2022-37454
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Michael Heimpold [Wed, 16 Nov 2022 14:30:09 +0000 (15:30 +0100)]
php8: update to 8.0.25
This fixes:
- CVE-2022-31630
- CVE-2022-37454
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Moritz Warning [Wed, 2 Nov 2022 18:24:47 +0000 (19:24 +0100)]
zerotier: update to 1.10.2
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Sun, 3 Jul 2022 22:14:40 +0000 (00:14 +0200)]
zerotier: update to 1.10.1
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Sat, 30 Apr 2022 15:38:25 +0000 (17:38 +0200)]
zerotier: update to 1.8.9
Replace patch with Makefile options
to disable Rust components that
cannot be build with OpenWrt.
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Wed, 13 Apr 2022 19:19:38 +0000 (21:19 +0200)]
zerotier: fix segfault on ARM platforms
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Wed, 13 Apr 2022 19:00:01 +0000 (21:00 +0200)]
zerotier: update to 1.8.8
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Tue, 8 Mar 2022 14:55:58 +0000 (15:55 +0100)]
zerotier: update to 1.8.6
* remove upstreamed gcc10 and cerrno patches
* disable SSO and OIDC as it needs Rust/Cargo support
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Tianling Shen [Sun, 13 Nov 2022 14:30:25 +0000 (22:30 +0800)]
yq: Update to 4.30.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
4d667ec8e8ffb23e2d42a42c58f0318b3d248dff)
Tianling Shen [Sat, 12 Nov 2022 15:28:26 +0000 (23:28 +0800)]
yq: Update to 4.30.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
2cba6e5f73326bfa91f3b5d0f432f85064255ee4)
Tianling Shen [Mon, 17 Oct 2022 12:46:28 +0000 (20:46 +0800)]
treewide: fix procd service inactive
Exit directly will result procd service inactive and uci
configuration changes are no longer monitored.
Reported-by: Lvc Revincx <revincx233@gmail.com>
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
b1651c5d5444b990b58180a26d6e76779cbb88a9)
Tianling Shen [Fri, 5 Aug 2022 13:58:06 +0000 (21:58 +0800)]
v2raya: Update to 1.5.9.1698.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
3c43f65ae90fd7de6a5bb91d1560917db1b281dd)
Tianling Shen [Sat, 18 Jun 2022 18:02:08 +0000 (02:02 +0800)]
v2raya: Update to 1.5.8.1
1. Switched to use prebuilt web files to get rid of massive Node.js.
2. Increased nofile limitation to avoid "too many open files" error.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d629a6f8b2b3e37a98540b5ec043949d2069cb88)
Tianling Shen [Wed, 20 Apr 2022 19:01:39 +0000 (03:01 +0800)]
v2rayA: Update to 1.5.7
- Removed an upstreamed patch
- Move logs to /var/log in accordance with FHS 3.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
ff8f25cb98ce3117fac28020f96f3e7f49ff6106)
Tianling Shen [Sat, 26 Mar 2022 14:16:03 +0000 (22:16 +0800)]
v2raya: fix panic in go 1.18
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
7aa127e208262e44b81fbbf7fe023b9cfdc6fdf7)
Tianling Shen [Fri, 4 Feb 2022 09:26:22 +0000 (17:26 +0800)]
v2rayA: Update to 1.5.6.2
Manually added new env variable `XDG_DATA_HOME` which won't be passed
by procd by default.
Removed upstreamed patch.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
c7b5e7ed67e1465da775e59e96b872a69a0452f5)
Tianling Shen [Fri, 4 Feb 2022 10:12:09 +0000 (18:12 +0800)]
v2raya: init: convert arguments into env variables
Suggested by upstream, to provide forward compatibility.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
8465053a58ce6efcdfe59f834e9d373496d02f64)
Tianling Shen [Fri, 10 Dec 2021 10:56:00 +0000 (18:56 +0800)]
v2rayA: Update to 1.5.5
Breaking changes:
The database has been replaced with boltdb to try to solve the problem
of database corruption.
Note that the data will not be migrated, but the previous data will be
retained. If you need the previous data, just downgrade v2rayA (v1.5.4).
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
21e98e952f5c03a590b30c65c2419e4dc8e5910f)
Tianling Shen [Sat, 2 Oct 2021 02:48:24 +0000 (10:48 +0800)]
v2raya: Update to 1.5.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d48b22fb9011311e78dc71b1a09b7219aecaba1d)
Tianling Shen [Wed, 15 Sep 2021 19:15:04 +0000 (03:15 +0800)]
v2raya: Update to 1.5.3
- Added missing conffiles
- Refreshed init srcipt to adapt the new arguments
- Renamed package name to lowercase (suggestion from upstream)
- Updated dependencies and license
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
16e453e4acc39eb0a3bc403f37697cd4083cdf14)
Tianling Shen [Mon, 30 Aug 2021 05:31:37 +0000 (13:31 +0800)]
v2rayA: Update to 1.5.2
Refreshed init script to adapt new arguments accepted by the program.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
60c917089fb616d9c071023091e40bdb1f4c12f0)
Tianling Shen [Thu, 26 Aug 2021 13:13:59 +0000 (21:13 +0800)]
v2rayA: add new package
v2rayA is a Linux web GUI client of Project V which supports V2Ray,
Xray, Shadowsocks, ShadowsocksR, Trojan and Pingtunnel.
Wiki: https://github.com/v2rayA/v2rayA/wiki
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
90ec599f9ef7aa011febe5528ba8b0b2016bfe02)
Tianling Shen [Thu, 10 Nov 2022 12:47:05 +0000 (20:47 +0800)]
xray-core: Update to 1.6.3
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
4194268e3f4c931e122dd66ca6196f6262f35c78)
[Update geodata to latest version, based on
e5c3c3409]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 3 Nov 2022 08:20:16 +0000 (16:20 +0800)]
xray-core: Update to 1.6.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
e606ea7e78c8f294e3d30df01aa82b3346dbeffe)
Tianling Shen [Wed, 26 Oct 2022 06:18:04 +0000 (14:18 +0800)]
xray-core: Update to 1.6.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
b16b07409f8dae2356d0cb97f6e541218360fd80)
Tianling Shen [Mon, 19 Sep 2022 02:45:48 +0000 (10:45 +0800)]
xray-core: Update to 1.6.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
a0126b15c58f7527ed21dbcb659d51072ad1f5fc)
[Update geodata to latest version, based on
f8c25627ebe1d9]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
05d1265cb7efc186ecc6b44232c6a4aca0ba0392)
Tianling Shen [Tue, 30 Aug 2022 06:49:28 +0000 (14:49 +0800)]
xray-core: Update to 1.5.10
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
ddd4082d30f843e522fc69ecaa5e91d6bb65365c)
Jeffery To [Sun, 10 Apr 2022 08:44:30 +0000 (16:44 +0800)]
syncthing: Update to 1.19.2
Includes patch based on upstream change[1] to fix compilation with Go
1.18.
Fixes https://github.com/openwrt/packages/issues/18267.
[1]: https://github.com/syncthing/syncthing/commit/
e30898ddb3e51225d4bda8661a1510c5cc9afe08
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
4b7ff2df5eea9688e9652b552a92f7ecd5ebf1ea)
(cherry picked from commit
961c73ca7cc03c60d2a2fb7449327c8ab7c60563)
Josef Schlehofer [Wed, 9 Nov 2022 13:51:30 +0000 (14:51 +0100)]
golang: update to version 1.18.8
Fixes following CVEs:
- CVE-2022-32189 (version 1.18.5 [1]]
- CVE-2022-27664 (version 1.18.6 [2])
- CVE-2022-32190 (version 1.18.6 [2])
- CVE-2022-2879 (version 1.18.7 [3])
- CVE-2022-2880 (version 1.18.7 [3])
- CVE-2022-41715 (version 1.18.7 [3])
- CVE-2022-41716 (version 1.18.8 [4])
and refreshed patch
[1] https://groups.google.com/g/golang-announce/c/YqYYG87xB10
[2] https://groups.google.com/g/golang-announce/c/x49AQzIVX-s
[3] https://groups.google.com/g/golang-announce/c/xtuG5faxtaU
[4] https://groups.google.com/g/golang-announce/c/mbHY1UY3BaM
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
c33c2d886918cfbc1af8d60cbb530ba563084b67)
Josef Schlehofer [Wed, 9 Nov 2022 14:11:00 +0000 (15:11 +0100)]
ffmpeg: libffmpeg-full package should provide libffmpeg package, too
The previous solution overwrote the provide from ``define
Package/libffmpeg/Default``, but that's not what was wanted.
Thus libffmpeg-full should provide three packages libffmpeg,
libffmpeg-mini and libffmpeg-audio-dec
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
c333c0e5229b7c4f14dd831e2c75709d0de1615e)
Jeffery To [Mon, 18 Jul 2022 09:35:11 +0000 (17:35 +0800)]
golang: Update to 1.18.4
Includes fixes for:
* CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding
header
* CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions
* CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip
* CVE-2022-30630: io/fs: stack exhaustion in Glob
* CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read
* CVE-2022-30632: path/filepath: stack exhaustion in Glob
* CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal
* CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode
* CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit
X-Forwarded-For not working
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
60168651a2c7279a4a169be6b3d61be57e871e55)
Jeffery To [Mon, 6 Jun 2022 08:24:05 +0000 (16:24 +0800)]
golang: Update to 1.18.3
Includes fix for CVE-2022-30634 (crypto/rand: Read hangs when passed
buffer larger than 1<<32 - 1).
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
112cf0903125837bc7990813105cbe7ce23f5ece)
Jeffery To [Sat, 14 May 2022 18:11:51 +0000 (02:11 +0800)]
golang: Update to 1.18.2
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
659f87d5d4a72507b16dca5b2962ff21580e1ff3)
Jeffery To [Fri, 15 Apr 2022 15:27:14 +0000 (23:27 +0800)]
golang: Update to 1.18.1
Includes fixes for:
* CVE-2022-24675 - encoding/pem: stack overflow
* CVE-2022-28327 - crypto/elliptic: generic P-256 panic when scalar has
too many leading zeroes
This also adds -buildvcs=false to omit VCS information in Go programs.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
8c0477a89525422f633e9693cc1fe6192db785df)
Jeffery To [Fri, 25 Mar 2022 19:46:25 +0000 (03:46 +0800)]
golang: Update to 1.18, update patch
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
478666b00b8caeccf1d51c44ebb71788b0ca4388)
Josef Schlehofer [Wed, 9 Nov 2022 11:00:33 +0000 (12:00 +0100)]
golang: update to version 1.17.13
Fixes:
CVE-2022-32189
Release notes:
https://groups.google.com/g/golang-announce/c/YqYYG87xB10?pli=1
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Magnus Kessler [Thu, 12 May 2022 05:13:52 +0000 (07:13 +0200)]
tailscale: update to version 1.24.2
Signed-off-by: Magnus Kessler <Magnus.Kessler@gmx.net>
(cherry picked from commit
b557e9f0d14e59435506fae0a31dfc908175dde4)
Wes Morgan [Thu, 16 Dec 2021 19:54:32 +0000 (12:54 -0700)]
tailscale: update to 1.18.2
Signed-off-by: Wes Morgan <git@wesmorgan.me>
(cherry picked from commit
efb908b032995d80edfeea500691a1e8a616166b)
Josef Schlehofer [Thu, 3 Nov 2022 07:58:23 +0000 (08:58 +0100)]
pulseadio: fix conffiles for pulseadio-daemon-avahi package
Fixes: 60ac7dd751240fa096a85794023b18f26a8317da ("pulseaudio: simplify
and rework Makefile")
Reported-by: Hannu Nyman <hannu.nyman@iki.fi>
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
7ae66ec7cac3cbfc94fc30149418698f15406543)
Josef Schlehofer [Sun, 30 Oct 2022 08:07:50 +0000 (09:07 +0100)]
pulseaudio: change homepage URLs to freedesktop.org
The previous used domain http(s)://pulseaudio.org redirects to
https://www.freedesktop.org/wiki/Software/PulseAudio/
This change enforces to use HTTPS everywhere for homepage URLs
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
00e3918069c5be726bcd5af80a093c0753d9d6e5)
Josef Schlehofer [Sat, 29 Oct 2022 21:42:12 +0000 (23:42 +0200)]
pulseaudio: use AUTORELEASE variable
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
364054fbe749a6121d0b6ff4e2bdda80f17389e7)
Josef Schlehofer [Sat, 29 Oct 2022 21:41:11 +0000 (23:41 +0200)]
pulseaudio: daemons should conflict to each other
It should not be possible to install pulseaudio-daemon and
pulseadio-daemon-avahi at the same time as they have the same files.
Let's avoid that situation by adding conflict.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
5a5bb15949f7cf0abb717245bc23508af2c48ed9)
Josef Schlehofer [Sat, 29 Oct 2022 21:37:09 +0000 (23:37 +0200)]
pulseaudio: simplify and rework Makefile
There were two conffiles sections and both of them were same, but for
different variants. We can have just one conffile section and use it also
for the other variant.
The same applies for the install section for different variants.
- We have two install sections, but we call the first one with the same
files and then add something more for the second variant.
- While at it to make it easier, let's change those three rows for
copying packages into the single one to make sure that I did not miss
anything. Also, we create a directory first and then move files.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
60ac7dd751240fa096a85794023b18f26a8317da)
Szabolcs Hubai [Sat, 29 Oct 2022 09:28:13 +0000 (11:28 +0200)]
mpd: depend the full variant on pulseaudio instead of pulseaudio-daemon
The full variant of mpd depends on pulseaudio-daemon, so it was not
possible to use the other pulseaudio variant with avahi.
Both pulseaudio daemons provides package pulseaudio, so users can choose
which variant suits them best.
Let's change the dependency to pulseaudio.
Fixes: #19187
Fixes: 2ed62adc5914 ("mpd: enable pulseaudio in full package")
Signed-off-by: Szabolcs Hubai <szab.hu@gmail.com>
(cherry picked from commit
abe35e89f60efb99dee76c53a1ebdc2bd48f73a1)
Tianling Shen [Mon, 31 Oct 2022 04:54:58 +0000 (12:54 +0800)]
rclone: Update to 1.60.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
90e037b5e59043e70118eeb2675e22bef1ffe4e4)
Tianling Shen [Mon, 31 Oct 2022 04:56:33 +0000 (12:56 +0800)]
yq: Update to 4.29.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d1f2b96b7eb17fc990765ae5fd47fe0d99c07c88)
Scott Roberts [Thu, 6 Oct 2022 12:44:03 +0000 (06:44 -0600)]
zabbix: add variants for SSL support
opkg does not offer ssl varients:
zabbix-agentd
zabbix-sender
zabbix-get
zabbix-proxy
zabbix-server
resolve this by adding ssl varients.
Signed-off-by: Scott Roberts <ttocsr@gmail.com>
(cherry picked from commit
cd48d03f01917af2fd525955b6fd8b8498ad3d6f)
(cherry picked from commit
e0502e477c88f5430ea6277780354a2cdda2ebee)
Rosen Penev [Sat, 20 Mar 2021 21:58:49 +0000 (14:58 -0700)]
coova-chili: fix compilation with kernel 5.10
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
eba4abb65d9e12982a8c0f9e4674bcf5307e22de)
Rosen Penev [Thu, 31 Mar 2022 03:25:12 +0000 (20:25 -0700)]
ptunnel-ng: fix compilation with kernel 5.15
Some header change requires to include musl's headers first.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
468863128f1d4d47effa37bd69de69ae5aff29b7)
Rosen Penev [Mon, 28 Mar 2022 22:47:36 +0000 (15:47 -0700)]
libpfring: update to 8.0.0
Fixes compilation with kernel 5.15
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
f8f2146b1b754495eca6cf821eaa730462429972)
Rosen Penev [Mon, 22 Feb 2021 01:56:33 +0000 (17:56 -0800)]
coova-chilli: update to 1.6
Remove usptreamed patches.
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
c05077a499a1522a105f7d4cf72f64e8e098fe1f)
Rosen Penev [Sun, 3 Apr 2022 02:43:09 +0000 (19:43 -0700)]
xtables-addons: update to 3.19
Fixes compilation with kernel 5.15.
Fixed changed binary name.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
e5af50679587bf39fec31f4af75f7aa8efd498a0)
(cherry picked from commit
4a5633b6b5dc7663d22e317072764fbefe35877c)
Josef Schlehofer [Mon, 24 Oct 2022 12:40:11 +0000 (14:40 +0200)]
ffmpeg: add conflicts and provides
Motivation of this change is that full variants provides the mini
variant and as well audio-dec package, thus you can not install both as
it fails with the following output:
Collected errors:
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavcodec.so.58
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavcodec.so.58.91.100
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavdevice.so.58
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavdevice.so.58.10.100
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavformat.so.58
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavformat.so.58.45.100
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavutil.so.56
But that file is already provided by package * libffmpeg-full
* check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavutil.so.56.51.100
But that file is already provided by package * libffmpeg-full
* opkg_install_cmd: Cannot install package libffmpeg-audio-dec.
Let's change it to:
Installing libffmpeg-audio-dec (4.3.4-1) to root...
Collected errors:
* check_conflicts_for: The following packages conflict with libffmpeg-audio-dec:
* check_conflicts_for: libffmpeg-full *
* opkg_install_cmd: Cannot install package libffmpeg-audio-dec.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
9693bd47c5a67def43577c082d8ece34ffaf5113)
Federico Capoano [Tue, 18 Oct 2022 22:03:51 +0000 (19:03 -0300)]
libqmi: bump to 1.30.8
Signed-off-by: Federico Capoano <f.capoano@openwisp.io>
Florian Eckert [Mon, 13 Dec 2021 13:11:33 +0000 (14:11 +0100)]
libqmi: remove unknown configure option
The configure option --enable-more-warnings is not recognized by
configure.
Buildlog:
configure: WARNING: unrecognized options: --disable-nls, --enable-more-warnings
Therefore this configure option is removed with this commit.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
a42f526b0ced3457ffae919c55229a4a12734e50)
Kuan-Yi Li [Thu, 3 Mar 2022 18:44:22 +0000 (02:44 +0800)]
libqmi: bump to 1.30.4
Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit
244e1c7cfb97fde264f46224a5127bbd6ac8cb71)
Kuan-Yi Li [Mon, 20 Sep 2021 13:52:00 +0000 (21:52 +0800)]
libqmi: bump to 1.30.2
Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit
88895e362b26de502899f49370c198e863810001)
Nicholas Smith [Sun, 22 Aug 2021 06:12:08 +0000 (16:12 +1000)]
libqmi: switch to autorelease
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
daeb94469b74be7db9c19e2a7a8dab3705e4bd0c)
Florian Eckert [Mon, 13 Dec 2021 13:33:19 +0000 (14:33 +0100)]
libmbim: remove unknown configure option
The configure option --enable-more-warnings and --without-udev are not
recognized by configure.
Buildlog:
configure: WARNING: unrecognized options: --disable-nls,
--enable-more-warnings, --without-udev
Therefore this unkown configure options are removed with this commit.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
f0b5589ef037358ac14a5a2e215233b0683798fa)
Kuan-Yi Li [Thu, 3 Mar 2022 18:44:38 +0000 (02:44 +0800)]
libmbim: bump to 1.26.2
Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit
89d6fc71e0d59fe26540b60d1b9ce22e28bc456d)
Nicholas Smith [Sun, 22 Aug 2021 06:12:20 +0000 (16:12 +1000)]
libmbim: switch to autorelease
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
80b47a11b1c15558f2750aef5663c4f9a2a0744f)
Nicholas Smith [Sun, 22 Aug 2021 05:50:14 +0000 (15:50 +1000)]
libmbim: bump to 1.26.0
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
46e6cb7d1521deb4fd0681d5d9ffb597d25da64d)
Arkadiusz Drabczyk [Wed, 13 Jul 2022 12:35:34 +0000 (14:35 +0200)]
modemmanager: fix mm_log() invocations in 25-modemmanager* files
Definition of mm_log() was changed in
45a56a889943b437f78fa2bfca3d5d8ac555c77e but 25-modemmanager* weren't
changed.
Signed-off-by: Arkadiusz Drabczyk <arkadiusz@drabczyk.org>
(cherry picked from commit
cdbc7a67fc17e6472ef9a1344d85f0137e8c2c59)
Aleksander Morgado [Mon, 13 Jun 2022 10:24:43 +0000 (12:24 +0200)]
modemmanager: explicitly disconnect even if no bearers found
A network restart where netifd is cleanly restarted involves bringing
the network interfaces down. The 'modemmanager' protocol handler will
run a mmcli --simple-disconnect in this case, but only if there are
bearer objects found.
If the network restart happened *during* the connection attempt
procedure, while the modem is e.g. being registered in the network, no
bearer objects exist yet, and so, we would skip doing anything during
the interface teardown operation. This would lead to the original
connection attempt succeeding, so leaving the modem in ModemManager
in connected state, while the associated interface in netifd is
reported down.
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit
c15e94f6c5fbbaedd41fd74b930a2a205f80afc0)
Aleksander Morgado [Wed, 4 May 2022 12:01:57 +0000 (14:01 +0200)]
modemmanager: report network initiated disconnections to netifd
The new connection dispatcher scripts support integrated in
ModemManager 1.18.8 allows us to provide a openwrt-specific dispatcher
script used to report netifd that the underlying network connection is
down.
See also https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/merge_requests/775
Fixes https://github.com/openwrt/openwrt/issues/8368
Fixes https://github.com/openwrt/packages/issues/14096
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit
bc754f31cfdb004eefa43038f8f0827922107fc6)
Aleksander Morgado [Tue, 29 Mar 2022 11:12:43 +0000 (13:12 +0200)]
modemmanager: install available FCC unlock scripts
The FCC unlock scripts are installed but not enabled by default.
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit
e430420aa176af672e913a2e50c5911e3ea70ef3)
Federico Capoano [Mon, 17 Oct 2022 22:24:42 +0000 (19:24 -0300)]
modemmanager: bump to 1.18.12
Signed-off-by: Federico Capoano <f.capoano@openwisp.io>