feed/packages.git
2 years agoyq: Update to 4.24.5
Tianling Shen [Fri, 15 Apr 2022 16:33:35 +0000 (00:33 +0800)]
yq: Update to 4.24.5

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit bedad061071aaf5b229db323eb3cdf01b5bb064b)

2 years agoyq: Update to 4.24.4
Tianling Shen [Wed, 13 Apr 2022 17:39:47 +0000 (01:39 +0800)]
yq: Update to 4.24.4

Updated GO_PKG due to upstream changes.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 07a29d211a74fd6663dbc9b7f1e9d7cfc89e22e1)

2 years agoprometheus-node-exporter-lua: fix ubnt-manager collector
Nick Hainke [Mon, 4 Apr 2022 13:51:29 +0000 (15:51 +0200)]
prometheus-node-exporter-lua: fix ubnt-manager collector

Update the version and add ubnt-manager to the build section.

Fixes: 76f27975a9eb (" prometheus-node-exporter-lua: add ubnt-manager collector ")
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 42e841039bba1daa2af11b3b3cebe367e2a3d7c3)

2 years agoprometheus-node-exporter-lua: add ubnt-manager collector
Nick Hainke [Sun, 3 Apr 2022 10:07:40 +0000 (12:07 +0200)]
prometheus-node-exporter-lua: add ubnt-manager collector

Ubnt-manager-collector collects statistics from airos devices configured
in ubnt-manager.

Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 76f27975a9ebcbff3fbaeeda0d83bba6573cf578)

2 years agoubnt-manager: add ubnt-manager
Nick Hainke [Sun, 3 Apr 2022 10:03:52 +0000 (12:03 +0200)]
ubnt-manager: add ubnt-manager

This app makes it easier to work with AirOS devices. So far, only monitoring is implemented.

Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit e4a8d3fc29d8f7f00089b14564d5248694e12638)

2 years agopdns-recursor: add patch for CVE-2022-27227
Peter van Dijk [Thu, 14 Apr 2022 17:57:58 +0000 (19:57 +0200)]
pdns-recursor: add patch for CVE-2022-27227

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2 years agopdns: add patch for CVE-2022-27227
Peter van Dijk [Thu, 14 Apr 2022 17:57:03 +0000 (19:57 +0200)]
pdns: add patch for CVE-2022-27227

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2 years agoMerge pull request #18284 from mhei/21.02-php7-pecl-redis-update
Michael Heimpold [Mon, 11 Apr 2022 18:34:33 +0000 (20:34 +0200)]
Merge pull request #18284 from mhei/21.02-php7-pecl-redis-update

[21.02] php7-pecl-redis: update to 5.3.7

2 years agohaveged: update to 1.9.18
Hannu Nyman [Mon, 11 Apr 2022 15:24:28 +0000 (18:24 +0300)]
haveged: update to 1.9.18

Update haveged to version 1.9.18

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 8579494bbbfaf5c47049e9365ccfb7b553621d15)

2 years agophp7-pecl-redis: update to 5.3.7 18284/head
Michael Heimpold [Sun, 10 Apr 2022 13:57:12 +0000 (15:57 +0200)]
php7-pecl-redis: update to 5.3.7

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
2 years agoMerge pull request #18279 from mhei/21.02-php8-update
Michael Heimpold [Sun, 10 Apr 2022 13:53:53 +0000 (15:53 +0200)]
Merge pull request #18279 from mhei/21.02-php8-update

[21.02] php8: update to 8.0.17

2 years agoMerge pull request #18280 from mhei/21.02-php7-pecl-http-update
Michael Heimpold [Sun, 10 Apr 2022 13:53:34 +0000 (15:53 +0200)]
Merge pull request #18280 from mhei/21.02-php7-pecl-http-update

[21.02] php7-pecl-http: update to 3.2.5

2 years agophp7-pecl-http: update to 3.2.5 18280/head
Michael Heimpold [Sat, 9 Apr 2022 11:50:53 +0000 (13:50 +0200)]
php7-pecl-http: update to 3.2.5

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
2 years agophp8: update to 8.0.17 18279/head
Michael Heimpold [Thu, 24 Mar 2022 21:38:04 +0000 (22:38 +0100)]
php8: update to 8.0.17

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
2 years agotelegraf: Update to version 1.22.1
Jonathan Pagel [Sat, 9 Apr 2022 04:33:30 +0000 (06:33 +0200)]
telegraf: Update to version 1.22.1

Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
(cherry picked from commit 86b8b30683cb7e338324c4cba5bee69cc6f1dcd6)
Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
2 years agokeepalived: fix libip6tc dependency
Florian Eckert [Wed, 6 Apr 2022 09:39:28 +0000 (11:39 +0200)]
keepalived: fix libip6tc dependency

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Rebase commit: nftables is not available
(cherry picked from commit eed4277d5cc923c41ae2c4e182fc7449bb44b090)

2 years agokeepalived: add missing CONFIG_ prefix to PKG_CONFIG_DEPENDS elements
Florian Eckert [Wed, 6 Apr 2022 07:53:10 +0000 (09:53 +0200)]
keepalived: add missing CONFIG_ prefix to PKG_CONFIG_DEPENDS elements

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Rebase commit: nftables is not available
(cherry picked from commit 209bcc649ad0f74534a4d288849180c9119380a1)

2 years agoMerge pull request #18229 from jamesmacwhite/adguardhome-v0.107.5-21.02
Jeffery To [Thu, 7 Apr 2022 17:18:04 +0000 (01:18 +0800)]
Merge pull request #18229 from jamesmacwhite/adguardhome-v0.107.5-21.02

[21.02] Update adguardhome to latest stable v0.107.5

2 years agoMerge pull request #18225 from rs/nextdns-1.37.11-openwrt-21.02
Alexandru Ardelean [Wed, 6 Apr 2022 06:08:13 +0000 (09:08 +0300)]
Merge pull request #18225 from rs/nextdns-1.37.11-openwrt-21.02

[21.02] nextdns: Update to version 1.37.11

2 years agoadguardhome: Update adguardhome to v0.107.5 18229/head
James White [Sat, 5 Mar 2022 08:14:27 +0000 (08:14 +0000)]
adguardhome: Update adguardhome to v0.107.5

Signed-off-by: James White <james@jmwhite.co.uk>
(cherry picked from commit b08aa72bad4deeba83e036c909e26bb8b6dbe241)

2 years agoadguardhome: Bump adguardhome to v0.107.3 stable
James White [Wed, 26 Jan 2022 09:05:02 +0000 (09:05 +0000)]
adguardhome: Bump adguardhome to v0.107.3 stable

Signed-off-by: James White <james@jmwhite.co.uk>
(cherry picked from commit 435733a89985dd855c9342c334b1ff379fef7060)

2 years agoadguardhome: Update to v0.107.2 stable
James White [Sat, 1 Jan 2022 16:48:55 +0000 (16:48 +0000)]
adguardhome: Update to v0.107.2 stable

Signed-off-by: James White <james@jmwhite.co.uk>
(cherry picked from commit a02d4f646f4b46903e42c88120b200bcd1119e5e)

2 years agonextdns: Update to version 1.37.11 18225/head
Olivier Poitrey [Sat, 2 Apr 2022 20:59:22 +0000 (20:59 +0000)]
nextdns: Update to version 1.37.11

Signed-off-by: Olivier Poitrey <rs@nextdns.io>
2 years agoyq: Update to 4.24.2
Tianling Shen [Mon, 28 Mar 2022 17:22:29 +0000 (01:22 +0800)]
yq: Update to 4.24.2

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 3cbdc7e4224be4e637550e0714af96ac4023fa91)

2 years agoksmbd-tools: revert update to 3.4.4
Rosen Penev [Fri, 1 Apr 2022 19:16:57 +0000 (12:16 -0700)]
ksmbd-tools: revert update to 3.4.4

This reverts commit 362c8c4df30f9a15c0ba02579fb35af3e144d2e3.

This does not work with the kmod in tree.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agozerotier: revert to 1.8.4
Moritz Warning [Wed, 30 Mar 2022 11:03:56 +0000 (13:03 +0200)]
zerotier: revert to 1.8.4

This reverts commit 89cea2a6e7b7172dc3c995449ae40a71d2d587ab.
Zerotier 1.8.6 is broken on ipq806x.

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agovala: update to version 0.56.0 (LTS version)
Josef Schlehofer [Mon, 28 Mar 2022 14:39:33 +0000 (16:39 +0200)]
vala: update to version 0.56.0 (LTS version)

According, to the project website [1], we were not using long-term
version, but stable one. Let's use LTS version.

Changelog can be found on their GitLab [2].

[1] https://wiki.gnome.org/Projects/Vala
[2] https://gitlab.gnome.org/GNOME/vala/raw/0.56/NEWS

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 189f078a35eaf07fa5fe32945b49100579df0aef)

2 years agovala: update to version 0.54.8
Josef Schlehofer [Sat, 26 Mar 2022 14:39:02 +0000 (15:39 +0100)]
vala: update to version 0.54.8

Changelog:
https://gitlab.gnome.org/GNOME/vala/raw/0.54/NEWS

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 474414dff131d485b30bc49f820fb58a43dcaf87)

2 years agovala: update to 0.54.2
Rosen Penev [Tue, 19 Oct 2021 05:50:31 +0000 (22:50 -0700)]
vala: update to 0.54.2

Remove shared libraries. Allows removing rpath hacks.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 575776cfa59e45940b01e89cc61d404127194f94)

2 years agovala: update to 0.52.3
Rosen Penev [Wed, 2 Jun 2021 01:04:32 +0000 (18:04 -0700)]
vala: update to 0.52.3

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit f42b5288f9245e3428321f261cd0611fc252230e)

2 years agovala: update to 0.52.1
Rosen Penev [Mon, 12 Apr 2021 05:35:12 +0000 (22:35 -0700)]
vala: update to 0.52.1

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit d0b93ea2244468973d7d8b584c1a7c60790832c6)

2 years agopynacl: fix build with updated sodium-minimal patch
Daniel Golle [Sun, 10 Oct 2021 21:47:34 +0000 (22:47 +0100)]
pynacl: fix build with updated sodium-minimal patch

Commit 3da874371 ("libsodium: include ed25519_core in minimal build")
broke the build of PyNaCl. Add patch to always include all ed25519
functions which are now always covered even if libsodium is built with
the MINIMAL option.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit ccd3b6c0a5e15822b66b07524639b24753f7aea3)

2 years agopython3: Update to 3.9.12
Jeffery To [Sun, 27 Mar 2022 18:23:19 +0000 (02:23 +0800)]
python3: Update to 3.9.12

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2 years agotelegraf: Update to version 1.22.0 to openwrt 21.02
Jonathan Pagel [Thu, 24 Mar 2022 01:41:31 +0000 (02:41 +0100)]
telegraf: Update to version 1.22.0 to openwrt 21.02

Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
(cherry picked from commit 2c9c48582209a97e2e3ce9452e4cb15e9820886c)
Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
2 years agorclone: Update to 1.58.0
Tianling Shen [Sat, 19 Mar 2022 08:25:17 +0000 (16:25 +0800)]
rclone: Update to 1.58.0

Added missing call for rclone-config.

Refreshed patches.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 546af5266b63ef0cd52cb11879fce96fc4e8537d)

2 years agognunet-fuse: update to 0.16.0
Daniel Golle [Wed, 28 Apr 2021 17:19:25 +0000 (18:19 +0100)]
gnunet-fuse: update to 0.16.0

Only notable change since 0.14.0 is that pthread_mutexattr_setkind_np()
is now no longer used.
pthread_mutexattr_setkind_np() is deprecated and non-standard.
The standard version is called pthread_mutexattr_settype()

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commits
 05eac1796d gnunet-fuse: update to version 0.14.0
 d59731ba61 gnunet-fuse: update to 0.16.0
)

2 years agognunet: update to version 0.16.2
Daniel Golle [Wed, 21 Apr 2021 23:00:08 +0000 (00:00 +0100)]
gnunet: update to version 0.16.2

Sync GNUnet package with master branch.
This is a new major release. It breaks protocol compatibility with the
0.15.x versions. Please be aware that Git master is thus henceforth
(and has been for a while) INCOMPATIBLE with the 0.15.x GNUnet network,
and interactions between old and new peers will result in issues.
0.15.x peers will be able to communicate with Git master or 0.16.x
peers, but some services - in particular GNS - will not be compatible.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commits
 deafd6cf3f gnunet: update to v0.14.1
 746bb95552 gnunet: update to version 0.15.3
 23b5b516ae gnunet: fix compilation with big endian
 c3c6a2ff1d gnunet: several improvements
 23f722f905 gnunet: packaging fixes
 2f8e696189 gnunet: update to 0.16.1
 f951f61005 gnunet: improve init script
 033744ac59 gnunet: update to 0.16.2
 65f5f850f3 gnunet: work-around sysupgrade restore missing file ownerships
)

2 years agolibsodium: update maintainer email address
Damiano Renfer [Sat, 9 Oct 2021 13:13:14 +0000 (15:13 +0200)]
libsodium: update maintainer email address

Signed-off-by: Damiano Renfer <x9w2n7xnu@relay.firefox.com>
(cherry picked from commit 7c529bab916572d981fd6063b6db353e77b45b36)

2 years agolibsodium: include ed25519_core in minimal build
Daniel Golle [Sat, 9 Oct 2021 00:25:21 +0000 (01:25 +0100)]
libsodium: include ed25519_core in minimal build

Functions from ed25519_core are needed for GNUnet to build.
Include them in the minimal build of libsodium so we don't need to
switch to the full build just for that.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit 3da874371b0d3e95110fbcff025caa16b577c73c)

2 years agoMerge pull request #18145 from hauke/samba4
Josef Schlehofer [Sat, 26 Mar 2022 19:46:04 +0000 (20:46 +0100)]
Merge pull request #18145 from hauke/samba4

[21.02] Samba4 backports from master (Fix CVEs)

2 years agosamba4: update to 4.14.12 18145/head
Andy Walsh [Tue, 1 Feb 2022 11:35:40 +0000 (12:35 +0100)]
samba4: update to 4.14.12

* update to 4.14.12
* fixes: CVE-2021-44142, CVE-2022-0336

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
(cherry picked from commit 1fa70d6a3c68bc49bdeae4d505f2e41ff3a0b906)

2 years agosamba4: update to 4.14.11; fix AD_DC build
Andy Walsh [Fri, 28 Jan 2022 09:03:42 +0000 (10:03 +0100)]
samba4: update to 4.14.11; fix AD_DC build

* update to 4.14.11
* fix AD_DC build
* add vfs_widelinks to defaults
* refresh patches
* fixes: #16697, #17692
* fixes: CVE-2016-2124, CVE-2020-25717, CVE-2020-25718, CVE-2020-25719, CVE-2020-25721, CVE-2020-25722, CVE-2021-3738, CVE-2021-23192

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
(cherry picked from commit 7730a65d300fd515e4633c0a8bdb5857c42146b3)
[Do not add dependency to python3-markdown and python3-dns]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
2 years agonano: provide nano-full with most features enabled
Hannu Nyman [Tue, 22 Mar 2022 15:59:48 +0000 (17:59 +0200)]
nano: provide nano-full with most features enabled

Provide a new variant, nano-full, that enables almost
all functionality of nano. Only libmagic file type detection
has been left out.

Ship with a minimal /etc/nanorc that the user can modify.
nanorc documentation at
https://www.nano-editor.org/dist/latest/nanorc.5.html

Provide color highlighting for the uci config files.

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 6a51794638a64e5d72a2c0b69d70b8402fc316aa)

2 years agonetatalk: update to version 3.1.13
Daniel Golle [Thu, 24 Mar 2022 17:34:44 +0000 (17:34 +0000)]
netatalk: update to version 3.1.13

Please update to this latest release as soon as possible as this
releases fixes the following major security issues: CVE-2021-31439,
CVE-2022-23121, CVE-2022-23122, CVE-2022-23123, CVE-2022-23124,
CVE-2022-23125 and CVE-2022-0194.

Local patch '010-gcc10.patch' has been applied upstream and was hence
removed.

For a summary of news and a detailed list of changes see the
ReleaseNotes[1].

[1]: https://netatalk.sourceforge.io/3.1/ReleaseNotes3.1.13.html
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
2 years agoMerge pull request #18125 from 1715173329/x2
Josef Schlehofer [Thu, 24 Mar 2022 07:40:00 +0000 (08:40 +0100)]
Merge pull request #18125 from 1715173329/x2

[openwrt-21.02] xray-core: Update to 1.5.4

2 years agoMerge pull request #18124 from 1715173329/y2
Josef Schlehofer [Thu, 24 Mar 2022 07:39:51 +0000 (08:39 +0100)]
Merge pull request #18124 from 1715173329/y2

[openwrt-21.02] yq: Update to 4.23.1

2 years agoMerge pull request #18123 from jefferyto/python-3.9.11-openwrt-21.02
Josef Schlehofer [Wed, 23 Mar 2022 08:11:14 +0000 (09:11 +0100)]
Merge pull request #18123 from jefferyto/python-3.9.11-openwrt-21.02

[openwrt-21.02] python3: Update to 3.9.11, refresh patches

2 years agoxray-core: Update to 1.5.4 18125/head
Tianling Shen [Sun, 20 Mar 2022 17:34:14 +0000 (01:34 +0800)]
xray-core: Update to 1.5.4

Updated geodata to latest version while at it.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit f8fa16f40d04499783b98b2f98d373e32260927c)

2 years agoyq: Update to 4.23.1 18124/head
Tianling Shen [Sun, 20 Mar 2022 17:36:02 +0000 (01:36 +0800)]
yq: Update to 4.23.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 8d7b7fbfb46c59a1c64c3a060f4903911bae6a4f)

2 years agopython3: Update to 3.9.11, refresh patches 18123/head
Jeffery To [Mon, 21 Mar 2022 14:03:05 +0000 (22:03 +0800)]
python3: Update to 3.9.11, refresh patches

Includes fixes for:
* Windows builds updated to bzip2 1.0.8 to mitigate CVE-2016-3189 and
  CVE-2019-12900
* CVE-2022-26488: Escalation of privilege via Windows Installer

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2 years agousteer: add package
David Bauer [Sun, 20 Mar 2022 23:12:15 +0000 (00:12 +0100)]
usteer: add package

This commits adds the new usteer package to the packages feed.

usteer is a daemon for steering wireless clients across frequency
bands as well as between multiple access points on a network.

Signed-off-by: David Bauer <mail@david-bauer.net>
2 years agozerotier: update to 1.8.6
Moritz Warning [Tue, 8 Mar 2022 14:55:58 +0000 (15:55 +0100)]
zerotier: update to 1.8.6

* remove upstreamed gcc10 and cerrno patches
* disable SSO and OIDC as it needs Rust/Cargo support

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agozerotier: update to 1.8.4
Moritz Warning [Mon, 6 Dec 2021 22:09:12 +0000 (23:09 +0100)]
zerotier: update to 1.8.4

Also remove patch to fix uClibc-ng,
since it is not in openwrt anymore.

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agozerotier: update to 1.8.3
Moritz Warning [Tue, 23 Nov 2021 20:11:50 +0000 (21:11 +0100)]
zerotier: update to 1.8.3

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agozerotier: update to 1.8.2
Moritz Warning [Sun, 14 Nov 2021 23:52:10 +0000 (00:52 +0100)]
zerotier: update to 1.8.2

Update und switch back to release source package.

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agozerotier: update to 1.8.1
Oskari Rauta [Fri, 5 Nov 2021 03:34:58 +0000 (05:34 +0200)]
zerotier: update to 1.8.1

Release notes:

1.8.0
 - Upgrade json.hpp dependency to version 3.10.2
 - Check if DNS servers need to be applied on macOS
 - Set MAC address before bringing up Linux TAP link
 - Stop binding to temporary IPv6 addresses
 - Fix for mistakenly using v6 source addresses for v4 routes on some platforms
 - Fix for MacOS MTU capping issue on feth devices
 - Implement a workaround for one potential source of a "coma" bug, which can occur if buggy NATs/routers stop allowing the service to communicate on a given port. ZeroTier now reassigns a new secondary port if it's offline for a while unless a secondary port is manually specified in local.conf. Working around crummy buggy routers is an ongoing effort.
 - A completely rewritten desktop UI for Mac and Windows!

1.8.1
 - Fix an issue that could cause clobbering of MacOS IP route settings on restart.
 - Added additional hardening against address impersonation on networks (also in 1.6.6).
 - MacOS IPv6 no longer binds to temporary addresses as these can cause interruptions if they expire.
 - Remove support for REALLY ancient 1.1.6 or earlier network controllers.
 - Fix numerous UI issues from 1.8.0 (never fully released).

Changed to git as source and added $(AUTORELEASE)

Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
2 years agozerotier: add respawn procd param
Chao Liu [Wed, 13 Oct 2021 13:27:34 +0000 (21:27 +0800)]
zerotier: add respawn procd param

Signed-off-by: Chao Liu <git@expiron.dev>
2 years agozerotier: add option to copy config
Moritz Warning [Sun, 19 Sep 2021 13:15:12 +0000 (15:15 +0200)]
zerotier: add option to copy config

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agozerotier: fix cross compile in macOS
Liangbin Lian [Sat, 2 Oct 2021 15:16:23 +0000 (23:16 +0800)]
zerotier: fix cross compile in macOS

zerotier's Makefile use `uname` to detect target when cross compile
uname should always be 'linux'

Signed-off-by: Liangbin Lian <jjm2473@gmail.com>
2 years agoMerge pull request #18103 from BKPepe/21.02-haproxy
Josef Schlehofer [Sat, 19 Mar 2022 03:02:05 +0000 (04:02 +0100)]
Merge pull request #18103 from BKPepe/21.02-haproxy

haproxy: update to version 2.2.22

2 years agohaproxy: update to version 2.2.22 18103/head
Josef Schlehofer [Fri, 18 Mar 2022 19:56:47 +0000 (20:56 +0100)]
haproxy: update to version 2.2.22

Fixes:
CVE-2022-0711

Changelog:
https://git.haproxy.org/?p=haproxy-2.2.git;a=blob;f=CHANGELOG;h=bfc5d6495e39ace56581663ce820e6909039a286;hb=bfc5d6495e39ace56581663ce820e6909039a286

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
2 years agotree: bump to 2.0.2
John Audia [Fri, 18 Feb 2022 18:45:03 +0000 (13:45 -0500)]
tree: bump to 2.0.2

Update to latest upstream release.

Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B

Signed-off-by: John Audia <graysky@archlinux.us>
(cherry picked from commit c333a5b8c547076720b83dd02ae831a9e6efb138)

2 years agocurl: Fix compiling curl wolfSSL IPv6 disabled
Chris Osgood [Fri, 18 Mar 2022 14:48:07 +0000 (10:48 -0400)]
curl: Fix compiling curl wolfSSL IPv6 disabled

Fixes #18082

Signed-off-by: Chris Osgood <chris_github@functionalfuture.com>
(cherry picked from commit 4eb08bacf309d336f03ad001194b9c8c1847ac2b)

2 years agobind: bump to 9.18.1
Noah Meyerhans [Fri, 18 Mar 2022 01:32:38 +0000 (18:32 -0700)]
bind: bump to 9.18.1

Fixes multiple security issues:

 * CVE-2022-0667 -- An assertion could occur in resume_dslookup() if the
                    fetch had been shut down earlier
 * CVE-2022-0635 -- Lookups involving a DNAME could trigger an INSIST when
                    "synth-from-dnssec" was enabled
 * CVE-2022-0396 -- A synchronous call to closehandle_cb() caused
                    isc__nm_process_sock_buffer() to be called recursively,
                    which in turn left TCP connections hanging in the CLOSE_WAIT
                    state blocking indefinitely when out-of-order processing was
                    disabled.
 * CVE-2021-25220 -- The rules for acceptance of records into the cache
                     have been tightened to prevent the possibility of
                     poisoning if forwarders send records outside the
                     configured bailiwick

Signed-off-by: Noah Meyerhans <frodo@morgul.net>
(cherry picked from commit 4c6ea5379c02c97e49fde6e62cf0dad278f64313)

2 years agolibnetfilter-log: update to 1.0.2
Rosen Penev [Thu, 16 Dec 2021 04:36:17 +0000 (20:36 -0800)]
libnetfilter-log: update to 1.0.2

Remove all patches as they have been upstreamed.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 28c1c0d24c0bcdc55ee3c83c478513a1552114c6)

2 years agoMerge pull request #18083 from mhei/21.02-libxml2-update
Michael Heimpold [Thu, 17 Mar 2022 20:06:52 +0000 (21:06 +0100)]
Merge pull request #18083 from mhei/21.02-libxml2-update

libxml2: update to 2.9.13

2 years agolibxml2: update to 2.9.13 18083/head
Michael Heimpold [Tue, 15 Mar 2022 20:24:32 +0000 (21:24 +0100)]
libxml2: update to 2.9.13

This fixes CVE-2022-23308.

Also switch to GNOME as download source and xz tarball.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 81fd836f97aee93c8cfcb4ebbf901c2a99c3525c)

2 years agoauc: don't segfault on invalid URL
Daniel Golle [Sun, 13 Mar 2022 23:48:28 +0000 (23:48 +0000)]
auc: don't segfault on invalid URL

Show error message instead of segfaulting in case of an invalid URL
being read from UCI config.

Fixes: #17971
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit c0d2c82528e19a304164dade96e9b019114b8fb0)

2 years agoauc: fall back to 'sdcard' image
Daniel Golle [Mon, 14 Feb 2022 14:24:21 +0000 (14:24 +0000)]
auc: fall back to 'sdcard' image

Fallback to use 'sdcard' image in case there is neither 'sysupgrade'
nor 'combined' image available.
This allows using 'auc' on targets where 'sdcard' image is also used
for sysupgrade (such as some mvebu-based devices with eMMC).

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit 6b041752a00d125a4e651aa56f6abae0e06a59b6)

2 years agoauc: accept both 'y' and 'Y' as confirmation from user
Daniel Golle [Wed, 9 Feb 2022 17:41:49 +0000 (17:41 +0000)]
auc: accept both 'y' and 'Y' as confirmation from user

Accept both 'y' and 'Y' as positive confirmation when asking the user
if auc should proceed with requesting and installing an upgrade.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit d27ecdcc49f2d91a8758ff4c416385d6d57cf2e6)

2 years agoauc: add '-n' parameter for dry-run
Daniel Golle [Thu, 27 Jan 2022 16:45:36 +0000 (16:45 +0000)]
auc: add '-n' parameter for dry-run

Add option to allow only requesting an image but not actually download
or sysupgrade anything.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit 19c135685f7b9eefbf75b5a96b780f4fa2b46f19)

2 years agoattendedsysupgrade-common: update to 2021
Paul Spooren [Thu, 29 Apr 2021 21:09:22 +0000 (23:09 +0200)]
attendedsysupgrade-common: update to 2021

* Use SPDX
* Use CA (ucert) public key
* Update repo link
* Update maintainer email
* Format description

Signed-off-by: Paul Spooren <mail@aparcar.org>
(cherry picked from commit a54b9570ad6abc0b3e1079e881d1dbe9a475e33d)
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
2 years agoMerge pull request #18010 from stangri/openwrt-21.02-curl
Stan Grishin [Mon, 14 Mar 2022 21:29:14 +0000 (14:29 -0700)]
Merge pull request #18010 from stangri/openwrt-21.02-curl

[21.02] curl: update to 7.82.0

2 years agoMerge pull request #18037 from M95D/openwrt-21.02
Josef Schlehofer [Mon, 14 Mar 2022 16:57:29 +0000 (17:57 +0100)]
Merge pull request #18037 from M95D/openwrt-21.02

tvheadend: bind to LAN IP by default

2 years agoyq: Update to 4.22.1
Tianling Shen [Thu, 10 Mar 2022 12:08:35 +0000 (20:08 +0800)]
yq: Update to 4.22.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit b31615c63c7ce4b2e17e566d31167ee54fd2c4d8)

2 years agoyq: Update to 4.21.1
Tianling Shen [Mon, 28 Feb 2022 06:55:54 +0000 (14:55 +0800)]
yq: Update to 4.21.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 5529031602d26659eccb5072e30b0e1c4ea87cea)

2 years agosyslog-ng: update to version 3.36.1
Josef Schlehofer [Thu, 10 Mar 2022 15:19:19 +0000 (16:19 +0100)]
syslog-ng: update to version 3.36.1

- Bump version in config file

Release notes:
https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-3.36.1

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 110d46eb370b9ea5962944386fb06c2abd1d50f1)

2 years agotvheadend: bind to LAN IP by default 18037/head
Marius Dinu [Fri, 18 Feb 2022 20:50:02 +0000 (22:50 +0200)]
tvheadend: bind to LAN IP by default

If config parameter is not set, tvheadend will bind to LAN IP address by default.
Fixes issue #16500 without requiring user modifications to config file. It's also more secure if firewall becomes disabled.

Signed-off-by: Marius Dinu <m95d+git@psihoexpert.ro>
(cherry picked from commit 95cbfe893b259433ec06f5a22bac7c047d1db517)

2 years agodockerd: fix compilation with glibc
Liang Yang [Sun, 27 Feb 2022 12:11:39 +0000 (20:11 +0800)]
dockerd: fix compilation with glibc

Signed-off-by: Liang Yang <ggg17226@gmail.com>
2 years agodocker: fix compilation with glibc
Liang Yang [Sun, 27 Feb 2022 12:09:27 +0000 (20:09 +0800)]
docker: fix compilation with glibc

Signed-off-by: Liang Yang <ggg17226@gmail.com>
2 years agoyggdrasil: bump to 0.4.3
George Iv [Sun, 20 Feb 2022 12:00:46 +0000 (07:00 -0500)]
yggdrasil: bump to 0.4.3

Signed-off-by: George Iv <zhoreeq@users.noreply.github.com>
(cherry picked from commit ed49a0bd3a5b482bf35310c9dfdcbb9bf8cefd26)

2 years agoi2pd: Update package
R4SAS I2P [Mon, 21 Feb 2022 19:52:44 +0000 (19:52 +0000)]
i2pd: Update package

* Update to 2.41.0
* Added use AUTORELEASE

Signed-off-by: R4SAS I2P <r4sas@i2pmail.org>
(cherry picked from commit c08bb2df62297967b3bced182bd77fcebac8fc9f)

2 years agoi2pd: add service reload support
R4SAS I2P [Mon, 7 Feb 2022 19:19:14 +0000 (19:19 +0000)]
i2pd: add service reload support

Signed-off-by: R4SAS I2P <r4sas@i2pmail.org>
(cherry picked from commit b9000cf231b166bf0f098785188ad61319b7019b)

2 years agocoova-chilli: remove kmod dep on binary package
Thibaut VARÈNE [Mon, 7 Mar 2022 12:02:15 +0000 (13:02 +0100)]
coova-chilli: remove kmod dep on binary package

There is no reason for the kmod to depend on the binary package
itself, neither for building nor for installing.

That dependency prevents phase1 from building the kmod even though
support is enabled in the binary.

Signed-off-by: Thibaut VARÈNE <hacks@slashdirt.org>
(cherry picked from commit 385923321bf0625b28b62f9e2538b2a3377c74bb)

2 years agocache-domains: Fixed hotplug script not running
Gerard Ryan [Tue, 8 Mar 2022 12:33:52 +0000 (22:33 +1000)]
cache-domains: Fixed hotplug script not running

Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
2 years agoMerge pull request #18019 from rs/nextdns-1.37.10-openwrt-21.02
Stan Grishin [Mon, 7 Mar 2022 21:35:41 +0000 (13:35 -0800)]
Merge pull request #18019 from rs/nextdns-1.37.10-openwrt-21.02

[21.02] nextdns: Update to version 1.37.10

2 years agoMerge pull request #18012 from jefferyto/golang-1.17.8-openwrt-21.02
Josef Schlehofer [Mon, 7 Mar 2022 20:40:24 +0000 (21:40 +0100)]
Merge pull request #18012 from jefferyto/golang-1.17.8-openwrt-21.02

[openwrt-21.02] golang: Update to 1.17.8

2 years agonextdns: Update to version 1.37.10 18019/head
Olivier Poitrey [Mon, 7 Mar 2022 19:48:05 +0000 (19:48 +0000)]
nextdns: Update to version 1.37.10

Signed-off-by: Olivier Poitrey <rs@nextdns.io>
2 years agogolang: Update to 1.17.8 18012/head
Jeffery To [Sun, 6 Mar 2022 19:34:27 +0000 (03:34 +0800)]
golang: Update to 1.17.8

Includes fix for CVE-2022-24921 (regexp: stack overflow (process exit)
handling deeply nested regexp).

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 9704e900da348449bdbc76228a56da19936d605c)

2 years agocurl: update to 7.82.0 18010/head
Stan Grishin [Sun, 6 Mar 2022 18:54:17 +0000 (18:54 +0000)]
curl: update to 7.82.0

* changelog: https://curl.se/changes.html#7_82_0

Signed-off-by: Stan Grishin <stangri@melmac.ca>
(cherry picked from commit 38b3a5f857a8b282328cb1e0ada48793bd4bcce5)

2 years agopython-twisted: Update to 22.2.0
Jeffery To [Sun, 6 Mar 2022 20:01:16 +0000 (04:01 +0800)]
python-twisted: Update to 22.2.0

Includes fix for CVE-2022-21716 (The Twisted SSH client and server
implementation naively accepted an infinite amount of data for the
peer's SSH version identifier.)

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 630d6800f284eef77426ad3980977b2e9b7896d3)

2 years agopython-twisted: Update to 22.1.0, refresh patches
Jeffery To [Tue, 15 Feb 2022 13:28:16 +0000 (21:28 +0800)]
python-twisted: Update to 22.1.0, refresh patches

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 9f3816d1c6230076db33658d29c44b0dc5c849d1)

2 years agomdnsresponder: Fix nullpointer dereference while parsing interface list
Maarten Aertsen [Fri, 25 Feb 2022 20:46:53 +0000 (21:46 +0100)]
mdnsresponder: Fix nullpointer dereference while parsing interface list

This patch was backported from https://github.com/IETF-Hackathon/mDNSResponder/commit/1fb07b9524b4afed3a826c087db4dc48a7bfdb8

(cherry picked from commit a4b33ab169a3ca60cd12c2eb5155e899779d3570)
Signed-off-by: Maarten Aertsen <spam-github@rtsn.nl>
2 years agoMerge pull request #17986 from CyberMind-FR/crowdsec-firewall-bouncer-remove-crowdsec...
Josef Schlehofer [Fri, 4 Mar 2022 13:12:25 +0000 (14:12 +0100)]
Merge pull request #17986 from CyberMind-FR/crowdsec-firewall-bouncer-remove-crowdsec-depency

[21.02] crowdsec-firewall-bouncer: remove crowdsec package dependency

2 years agocrowdsec-firewall-bouncer: remove crowdsec package dependency 17986/head
Kerma Gérald [Tue, 21 Dec 2021 12:34:15 +0000 (13:34 +0100)]
crowdsec-firewall-bouncer: remove crowdsec package dependency

Remove un-necessary crowdsec package dependency, to be able to use
crowdsec-firewall-bouncer independently from crowdsec local installation.
(with remote API)

Fix issue: https://github.com/openwrt/packages/issues/17406

Description:
  using crowdsec-firewall-bouncer on many OpenWRT devices connected
  with my domain LAPI server (which collect many crowdsec machines,
  mostly nginx), it works great. Actually, crowdsec package is not
  mandatory for that usage, it would be great if it was not a dependency.

Signed-off-by: Kerma Gérald <gandalf@gk2.net>
(cherry picked from commit ffd97e173c913e89fcb0d2ab683fac87d03d92b4)
Signed-off-by: Kerma Gérald <gandalf@gk2.net>
2 years agokcptun: bump to v20210922
Chao Liu [Tue, 1 Mar 2022 16:35:44 +0000 (00:35 +0800)]
kcptun: bump to v20210922

Signed-off-by: Chao Liu <git@expiron.dev>
2 years agosamplicator: fix Wformat warning
Rosen Penev [Mon, 28 Feb 2022 07:25:28 +0000 (23:25 -0800)]
samplicator: fix Wformat warning

Wrong type.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 97cbb3d20a50bb22d271665af7f8837c11e267ea)

2 years agoocserv: updated to 1.1.6
Nikos Mavrogiannopoulos [Fri, 25 Feb 2022 22:53:10 +0000 (23:53 +0100)]
ocserv: updated to 1.1.6

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
2 years agoopenconnect: updated to 8.20
Nikos Mavrogiannopoulos [Fri, 25 Feb 2022 21:29:37 +0000 (22:29 +0100)]
openconnect: updated to 8.20

Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
2 years agoyq: Update to 4.20.2
Tianling Shen [Tue, 22 Feb 2022 15:00:42 +0000 (23:00 +0800)]
yq: Update to 4.20.2

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 7254169b12a9250538d1425644dd5e6c60463598)