librespeed-cli: add package

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit bb33b55354f6a9b51f445c117c5fdb5fca0b5a44)

nextdns: initialize nextdns from /etc/uci-defaults

Signed-off-by: Marc Benoit <marcb62185@gmail.com>
(cherry picked from commit e54247a6fa9c03f286d38460c425d6dbd622b657)

nextdns: Update to version 1.38.0

Signed-off-by: Olivier Poitrey <rs@nextdns.io>

nano: update to 7.0

Update nano to version 7.0.

Add a patch to fix the plus variant.
Upstream discussion and patch in
https://savannah.gnu.org/bugs/?63372

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit 4a89a577a71adffc6cbad99971b4c064193b3566)

ariang: update to 1.3.2

Signed-off-by: van waholtz <brvphoenix@gmail.com>
(cherry picked from commit 99315b516f5cfcb6825ca4afdfd5ee14799ee370)

ariang: update to 1.2.4

Changelog: https://github.com/mayswind/AriaNg/releases

Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit aee5b7db55c3eb7a84b4fc9e90994a1fdef8cd41)

ariang: update to 1.2.3

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 4a400ed105e59430f2fd16f592a1f4d8deef3d41)

ariang: update to 1.2.2

Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit ae09a31ffed9e2b5fa72b075d30455916eb82157)

ariang: update to 1.2.1

Use original main repo's releases instead

Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit 3bcab30f2051720049d8c7605cc4288204bea472)

yq: Update to 4.30.4

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 8762261112c8235f7f85a6f57dbf342cf17093b9)

Merge pull request #19914 from mhei/21.02-php8-update-8.0.25

[21.02] php8: update to 8.0.25

Merge pull request #19913 from mhei/21.02-php7-update-7.4.33

[21.02] php7: update to 7.4.33

Merge pull request #19648 from nemesisdesign/openwrt-21.02

[21.02] Backport fixes for modem-manager and its dependencies

php7: update to 7.4.33

This fixes:
    - CVE-2022-31630
    - CVE-2022-37454

Signed-off-by: Michael Heimpold <mhei@heimpold.de>

php8: update to 8.0.25

This fixes:
    - CVE-2022-31630
    - CVE-2022-37454

Signed-off-by: Michael Heimpold <mhei@heimpold.de>

zerotier: update to 1.10.2

Signed-off-by: Moritz Warning <moritzwarning@web.de>

zerotier: update to 1.10.1

Signed-off-by: Moritz Warning <moritzwarning@web.de>

zerotier: update to 1.8.9

Replace patch with Makefile options
to disable Rust components that
cannot be build with OpenWrt.

Signed-off-by: Moritz Warning <moritzwarning@web.de>

zerotier: fix segfault on ARM platforms

Signed-off-by: Moritz Warning <moritzwarning@web.de>

zerotier: update to 1.8.8

Signed-off-by: Moritz Warning <moritzwarning@web.de>

zerotier: update to 1.8.6

* remove upstreamed gcc10 and cerrno patches
* disable SSO and OIDC as it needs Rust/Cargo support

Signed-off-by: Moritz Warning <moritzwarning@web.de>

yq: Update to 4.30.2

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 4d667ec8e8ffb23e2d42a42c58f0318b3d248dff)

yq: Update to 4.30.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 2cba6e5f73326bfa91f3b5d0f432f85064255ee4)

treewide: fix procd service inactive

Exit directly will result procd service inactive and uci
configuration changes are no longer monitored.

Reported-by: Lvc Revincx <revincx233@gmail.com>
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit b1651c5d5444b990b58180a26d6e76779cbb88a9)

v2raya: Update to 1.5.9.1698.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 3c43f65ae90fd7de6a5bb91d1560917db1b281dd)

v2raya: Update to 1.5.8.1

1. Switched to use prebuilt web files to get rid of massive Node.js.
2. Increased nofile limitation to avoid "too many open files" error.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit d629a6f8b2b3e37a98540b5ec043949d2069cb88)

v2rayA: Update to 1.5.7

- Removed an upstreamed patch
- Move logs to /var/log in accordance with FHS 3.0

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit ff8f25cb98ce3117fac28020f96f3e7f49ff6106)

v2raya: fix panic in go 1.18

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 7aa127e208262e44b81fbbf7fe023b9cfdc6fdf7)

v2rayA: Update to 1.5.6.2

Manually added new env variable `XDG_DATA_HOME` which won't be passed
by procd by default.

Removed upstreamed patch.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit c7b5e7ed67e1465da775e59e96b872a69a0452f5)

v2raya: init: convert arguments into env variables

Suggested by upstream, to provide forward compatibility.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 8465053a58ce6efcdfe59f834e9d373496d02f64)

v2rayA: Update to 1.5.5

Breaking changes:
The database has been replaced with boltdb to try to solve the problem
of database corruption.

Note that the data will not be migrated, but the previous data will be
retained. If you need the previous data, just downgrade v2rayA (v1.5.4).

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 21e98e952f5c03a590b30c65c2419e4dc8e5910f)

v2raya: Update to 1.5.4

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit d48b22fb9011311e78dc71b1a09b7219aecaba1d)

v2raya: Update to 1.5.3

- Added missing conffiles
- Refreshed init srcipt to adapt the new arguments
- Renamed package name to lowercase (suggestion from upstream)
- Updated dependencies and license

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 16e453e4acc39eb0a3bc403f37697cd4083cdf14)

v2rayA: Update to 1.5.2

Refreshed init script to adapt new arguments accepted by the program.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 60c917089fb616d9c071023091e40bdb1f4c12f0)

v2rayA: add new package

v2rayA is a Linux web GUI client of Project V which supports V2Ray,
Xray, Shadowsocks, ShadowsocksR, Trojan and Pingtunnel.

Wiki: https://github.com/v2rayA/v2rayA/wiki

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 90ec599f9ef7aa011febe5528ba8b0b2016bfe02)

xray-core: Update to 1.6.3

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 4194268e3f4c931e122dd66ca6196f6262f35c78)
[Update geodata to latest version, based on e5c3c3409]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>

xray-core: Update to 1.6.2

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit e606ea7e78c8f294e3d30df01aa82b3346dbeffe)

xray-core: Update to 1.6.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit b16b07409f8dae2356d0cb97f6e541218360fd80)

xray-core: Update to 1.6.0

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit a0126b15c58f7527ed21dbcb659d51072ad1f5fc)
[Update geodata to latest version, based on f8c25627ebe1d9]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 05d1265cb7efc186ecc6b44232c6a4aca0ba0392)

xray-core: Update to 1.5.10

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit ddd4082d30f843e522fc69ecaa5e91d6bb65365c)

syncthing: Update to 1.19.2

Includes patch based on upstream change[1] to fix compilation with Go
1.18.

Fixes https://github.com/openwrt/packages/issues/18267.

[1]: https://github.com/syncthing/syncthing/commit/e30898ddb3e51225d4bda8661a1510c5cc9afe08

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 4b7ff2df5eea9688e9652b552a92f7ecd5ebf1ea)
(cherry picked from commit 961c73ca7cc03c60d2a2fb7449327c8ab7c60563)

golang: update to version 1.18.8

Fixes following CVEs:
- CVE-2022-32189 (version 1.18.5 [1]]
- CVE-2022-27664 (version 1.18.6 [2])
- CVE-2022-32190 (version 1.18.6 [2])
- CVE-2022-2879 (version 1.18.7 [3])
- CVE-2022-2880 (version 1.18.7 [3])
- CVE-2022-41715 (version 1.18.7 [3])
- CVE-2022-41716 (version 1.18.8 [4])

and refreshed patch

[1] https://groups.google.com/g/golang-announce/c/YqYYG87xB10
[2] https://groups.google.com/g/golang-announce/c/x49AQzIVX-s
[3] https://groups.google.com/g/golang-announce/c/xtuG5faxtaU
[4] https://groups.google.com/g/golang-announce/c/mbHY1UY3BaM

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit c33c2d886918cfbc1af8d60cbb530ba563084b67)

ffmpeg: libffmpeg-full package should provide libffmpeg package, too

The previous solution overwrote the provide from ``define
Package/libffmpeg/Default``, but that's not what was wanted.
Thus libffmpeg-full should provide three packages libffmpeg,
libffmpeg-mini and libffmpeg-audio-dec

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit c333c0e5229b7c4f14dd831e2c75709d0de1615e)

golang: Update to 1.18.4

Includes fixes for:

* CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding
  header
* CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions
* CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip
* CVE-2022-30630: io/fs: stack exhaustion in Glob
* CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read
* CVE-2022-30632: path/filepath: stack exhaustion in Glob
* CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal
* CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode
* CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit
  X-Forwarded-For not working

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 60168651a2c7279a4a169be6b3d61be57e871e55)

golang: Update to 1.18.3

Includes fix for CVE-2022-30634 (crypto/rand: Read hangs when passed
buffer larger than 1<<32 - 1).

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 112cf0903125837bc7990813105cbe7ce23f5ece)

golang: Update to 1.18.2

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 659f87d5d4a72507b16dca5b2962ff21580e1ff3)

golang: Update to 1.18.1

Includes fixes for:
* CVE-2022-24675 - encoding/pem: stack overflow
* CVE-2022-28327 - crypto/elliptic: generic P-256 panic when scalar has
  too many leading zeroes

This also adds -buildvcs=false to omit VCS information in Go programs.

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 8c0477a89525422f633e9693cc1fe6192db785df)

golang: Update to 1.18, update patch

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit 478666b00b8caeccf1d51c44ebb71788b0ca4388)

golang: update to version 1.17.13

Fixes:
CVE-2022-32189

Release notes:
https://groups.google.com/g/golang-announce/c/YqYYG87xB10?pli=1

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>

tailscale: update to version 1.24.2

Signed-off-by: Magnus Kessler <Magnus.Kessler@gmx.net>
(cherry picked from commit b557e9f0d14e59435506fae0a31dfc908175dde4)

tailscale: update to 1.18.2

Signed-off-by: Wes Morgan <git@wesmorgan.me>
(cherry picked from commit efb908b032995d80edfeea500691a1e8a616166b)

pulseadio: fix conffiles for pulseadio-daemon-avahi package

Fixes: 60ac7dd751240fa096a85794023b18f26a8317da ("pulseaudio: simplify
and rework Makefile")

Reported-by: Hannu Nyman <hannu.nyman@iki.fi>
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 7ae66ec7cac3cbfc94fc30149418698f15406543)

pulseaudio: change homepage URLs to freedesktop.org

The previous used domain http(s)://pulseaudio.org redirects to
https://www.freedesktop.org/wiki/Software/PulseAudio/

This change enforces to use HTTPS everywhere for homepage URLs

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 00e3918069c5be726bcd5af80a093c0753d9d6e5)

pulseaudio: use AUTORELEASE variable

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 364054fbe749a6121d0b6ff4e2bdda80f17389e7)

pulseaudio: daemons should conflict to each other

It should not be possible to install pulseaudio-daemon and
pulseadio-daemon-avahi at the same time as they have the same files.
Let's avoid that situation by adding conflict.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 5a5bb15949f7cf0abb717245bc23508af2c48ed9)

pulseaudio: simplify and rework Makefile

There were two conffiles sections and both of them were same, but for
different variants. We can have just one conffile section and use it also
for the other variant.

The same applies for the install section for different variants.
- We have two install sections, but we call the first one with the same
  files and then add something more for the second variant.

- While at it to make it easier, let's change those three rows for
  copying packages into the single one to make sure that I did not miss
anything. Also, we create a directory first and then move files.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 60ac7dd751240fa096a85794023b18f26a8317da)

mpd: depend the full variant on pulseaudio instead of pulseaudio-daemon

The full variant of mpd depends on pulseaudio-daemon, so it was not
possible to use the other pulseaudio variant with avahi.

Both pulseaudio daemons provides package pulseaudio, so users can choose
which variant suits them best.
Let's change the dependency to pulseaudio.

Fixes: #19187
Fixes: 2ed62adc5914 ("mpd: enable pulseaudio in full package")
Signed-off-by: Szabolcs Hubai <szab.hu@gmail.com>
(cherry picked from commit abe35e89f60efb99dee76c53a1ebdc2bd48f73a1)

rclone: Update to 1.60.0

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 90e037b5e59043e70118eeb2675e22bef1ffe4e4)

yq: Update to 4.29.2

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit d1f2b96b7eb17fc990765ae5fd47fe0d99c07c88)

zabbix: add variants for SSL support
opkg does not offer ssl varients:
zabbix-agentd
zabbix-sender
zabbix-get
zabbix-proxy
zabbix-server

resolve this by adding ssl varients.

Signed-off-by: Scott Roberts <ttocsr@gmail.com>
(cherry picked from commit cd48d03f01917af2fd525955b6fd8b8498ad3d6f)
(cherry picked from commit e0502e477c88f5430ea6277780354a2cdda2ebee)

coova-chili: fix compilation with kernel 5.10

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit eba4abb65d9e12982a8c0f9e4674bcf5307e22de)

ptunnel-ng: fix compilation with kernel 5.15

Some header change requires to include musl's headers first.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 468863128f1d4d47effa37bd69de69ae5aff29b7)

libpfring: update to 8.0.0

Fixes compilation with kernel 5.15

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit f8f2146b1b754495eca6cf821eaa730462429972)

coova-chilli: update to 1.6

Remove usptreamed patches.

Switch to AUTORELEASE for simplicity.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit c05077a499a1522a105f7d4cf72f64e8e098fe1f)

xtables-addons: update to 3.19

Fixes compilation with kernel 5.15.

Fixed changed binary name.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit e5af50679587bf39fec31f4af75f7aa8efd498a0)
(cherry picked from commit 4a5633b6b5dc7663d22e317072764fbefe35877c)

ffmpeg: add conflicts and provides

Motivation of this change is that full variants provides the mini
variant and as well audio-dec package, thus you can not install both as
it fails with the following output:

Collected errors:
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavcodec.so.58
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavcodec.so.58.91.100
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavdevice.so.58
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavdevice.so.58.10.100
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavformat.so.58
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavformat.so.58.45.100
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavutil.so.56
But that file is already provided by package  * libffmpeg-full
 * check_data_file_clashes: Package libffmpeg-audio-dec wants to install file /usr/lib/libavutil.so.56.51.100
But that file is already provided by package  * libffmpeg-full
 * opkg_install_cmd: Cannot install package libffmpeg-audio-dec.

Let's change it to:
Installing libffmpeg-audio-dec (4.3.4-1) to root...
Collected errors:
 * check_conflicts_for: The following packages conflict with libffmpeg-audio-dec:
 * check_conflicts_for:         libffmpeg-full *
 * opkg_install_cmd: Cannot install package libffmpeg-audio-dec.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 9693bd47c5a67def43577c082d8ece34ffaf5113)

libqmi: bump to 1.30.8

Signed-off-by: Federico Capoano <f.capoano@openwisp.io>

libqmi: remove unknown configure option

The configure option --enable-more-warnings is not recognized by
configure.

Buildlog:
configure: WARNING: unrecognized options: --disable-nls, --enable-more-warnings

Therefore this configure option is removed with this commit.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit a42f526b0ced3457ffae919c55229a4a12734e50)

libqmi: bump to 1.30.4

Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit 244e1c7cfb97fde264f46224a5127bbd6ac8cb71)

libqmi: bump to 1.30.2

Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit 88895e362b26de502899f49370c198e863810001)

libqmi: switch to autorelease

Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit daeb94469b74be7db9c19e2a7a8dab3705e4bd0c)

libmbim: remove unknown configure option

The configure option --enable-more-warnings and --without-udev are not
recognized by configure.

Buildlog:
configure: WARNING: unrecognized options: --disable-nls,
--enable-more-warnings, --without-udev

Therefore this unkown configure options are removed with this commit.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit f0b5589ef037358ac14a5a2e215233b0683798fa)

libmbim: bump to 1.26.2

Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit 89d6fc71e0d59fe26540b60d1b9ce22e28bc456d)

libmbim: switch to autorelease

Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit 80b47a11b1c15558f2750aef5663c4f9a2a0744f)

libmbim: bump to 1.26.0

Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit 46e6cb7d1521deb4fd0681d5d9ffb597d25da64d)

modemmanager: fix mm_log() invocations in 25-modemmanager* files

Definition of mm_log() was changed in
45a56a889943b437f78fa2bfca3d5d8ac555c77e but 25-modemmanager* weren't
changed.

Signed-off-by: Arkadiusz Drabczyk <arkadiusz@drabczyk.org>
(cherry picked from commit cdbc7a67fc17e6472ef9a1344d85f0137e8c2c59)

modemmanager: explicitly disconnect even if no bearers found

A network restart where netifd is cleanly restarted involves bringing
the network interfaces down. The 'modemmanager' protocol handler will
run a mmcli --simple-disconnect in this case, but only if there are
bearer objects found.

If the network restart happened *during* the connection attempt
procedure, while the modem is e.g. being registered in the network, no
bearer objects exist yet, and so, we would skip doing anything during
the interface teardown operation. This would lead to the original
connection attempt succeeding, so leaving the modem in ModemManager
in connected state, while the associated interface in netifd is
reported down.

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit c15e94f6c5fbbaedd41fd74b930a2a205f80afc0)

modemmanager: report network initiated disconnections to netifd

The new connection dispatcher scripts support integrated in
ModemManager 1.18.8 allows us to provide a openwrt-specific dispatcher
script used to report netifd that the underlying network connection is
down.

See also https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/merge_requests/775

Fixes https://github.com/openwrt/openwrt/issues/8368
Fixes https://github.com/openwrt/packages/issues/14096

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit bc754f31cfdb004eefa43038f8f0827922107fc6)

modemmanager: install available FCC unlock scripts

The FCC unlock scripts are installed but not enabled by default.

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit e430420aa176af672e913a2e50c5911e3ea70ef3)

modemmanager: bump to 1.18.12

Signed-off-by: Federico Capoano <f.capoano@openwisp.io>

modemmanager: bump to 1.18.6

Remove upstreamed patch.

Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit de9fce568b4d1a2a12cd67312449b0825880c89b)

modemmanager: bump to 1.18.4 with patch

The included patch corrects an issue preventing udev rules from
being parsed correctly. [1][2]

This patch should not be needed after the next release. [3]

More information:
[1] https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/commit/e9f254ba3f923248efffe4fd458dc5e5469e0f73
[2] https://lists.freedesktop.org/archives/modemmanager-devel/2021-December/009024.html
[3] https://lists.freedesktop.org/archives/modemmanager-devel/2021-December/009022.html

Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit 8a878440bf4a4b699b1aefa53c364a18e66f6d7f)

modemmanager: remove 2s timeout before reporting cached events

When ModemManager is started on boot we may end up with hotplug events
reported directly to the daemon, plus some others already cached in
the cache file before the daemon was started.

If the cached events correspond to the same device that is still
notifying ports directly, we may end up with a modem object created
before the cached events have been emitted, so the modem may not
handle all control/data ports it should.

E.g.:

  - modem detected
  - hotplug event for wwan0 port, cached as MM not running
  - hotplug event for cdc-wdm0 port, cached as MM not running
  - hotplug event for ttyUSB0, cached as MM not running
  - MM starts
  - hotplug event for ttyUSB1, directly processed as MM is running
  - hotplug event for ttyUSB2, directly processed as MM is running
  - modem object created with ttyUSB1 and ttyUSB2
  - 2s after MM starts, cached events for wwan0, cdc-wdm0 and ttyUSB0
    happen, but are ignored because the modem object has already been
    created

MM expects that ports of the same device are reported with less than
1500ms in between ports. In other words, if ports are reported more
than 1500ms after the last reported port, they may get ignored.

If we remove the 2s timeout, the report of the cached events will
happen as soon as MM starts, which makes it much more likely to happen
in the timeslot that MM expects for ports of the same device reported.
The logic is still not perfect, and we may also need to increase that
1500ms timeout inside MM, but removing the 2s timeout right away here
makes sense.

This 2s timeout was introduced along with the new wrapper launcher for
the daemon, it didn't exist before.

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit ab061c8ddd9ea3d903ca171b0989ad8f557516bb)

modemmanager: refactoring hotplug debug logging

The output of the hotplug is very chatty and floods the log with
messages that are not necessary in functioning operation.

So that the log can be filtered. A log level was added to each message
as the first opiton on mm_log function call.

In addition, the facility of the hotplug script has been set to daemon,
which in my view fits better than user.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit 45a56a889943b437f78fa2bfca3d5d8ac555c77e)

ModemManager: add service options

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit dc7095baff0172760090a4c9f88bca11f6f38838)

ModemManager: refactoring procd init script

The way the init script is written now, we get a bad output when calling
the ubus service backend.

ubus call service list "{'verbose':true,'name':'modemmanager'}"
>{
>        "modemmanager": {
>                "instances": {
>                        "instance1": {
>                                "running": true,
>                                "pid": 20511,
>                                "command": [
>                                        "sh",
>                                        "-c",
>                                        ".
>/usr/share/ModemManager/modemmanager.common;    \t
>mkdir -m 0755 -p /var/run/modemmanager;          \t
>mm_cleanup_interfaces;                            \t
>( mm_report_events_from_cache ) >/dev/null 2>&1 & \t
>/usr/sbin/ModemManager"
>                                ],
>                                "term_timeout": 5,
>                                "respawn": {
>                                        "threshold": 3600,
>                                        "timeout": 5,
>                                        "retry": 5
>                                },
>                                "pidfile":"/var/run/modemmanager/modemmanager.pid"
>                        }
>                }
>        }
>}"

I also get the output in the log that the PID file cannot be created.

> daemon.err procd: Failed to remove pidfile: :No such file or directory

The changes in this commit fixes this issues, by moving startup into a
wrapper script.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit 0b027b131c97ec901c3b3dc9211ee434d21291dc)

modemmanager: add support for wwan subsystem in hotplug

WWAN devices may now be exposed in the new 'wwan' subsystem in the
kernel (since 5.13), initially applicable to devices exposed in PCIe
(no USB), but at some point may also apply to USB devices that until
now were exposed via other subsystems (e.g. usbmisc, tty).

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit 2a31359c478025850a9feeb684b758ede62bf9c4)

modemmanager: bump to 1.18.2

Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
(cherry picked from commit 2937f0024b598b5b9bdbeb5475866f2396833523)

modemmanager: switch to autorelease

Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit c7ec9ec410d8fdaff2b749ff5932ba20d8f2522d)

modemmanager: bump to 1.16.10

Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit 858d61b1483ebcbb4ef5e6a8be54e92c957e640d)

atlas-probe: fix SIGSEGV error on 32bit system

Changes to time_t cause SIGSEGV error on 32bit system and cause ripe
atlas malfunction. (registration successful but no traffic)
Also introduce minor patch to fix some compilation warning.

While at it move PKG_RELEASE to AUTORELEASE macro.

Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
(cherry picked from commit 14c5dfe4c10f6550b7c4aab4419e0f64ef1abda4)

libwebsockets: fix recursive dependency

While running `make menuconfig`, it was discovered then there is a
recursive dependency like this:
tmp/.config-package.in:59138:error: recursive dependency detected!
tmp/.config-package.in:59138: symbol PACKAGE_libwebsockets-openssl is selected by PACKAGE_libwebsockets-mbedtls
tmp/.config-package.in:59122: symbol PACKAGE_libwebsockets-mbedtls depends on PACKAGE_libwebsockets-openssl

It is not possible with the recently added conflicts that two packages
(OpenSSL and full variant, which uses OpenSSL as well), which are almost the same
provides the same named package libwebsockets as their conflict - Mbed
TLS.

Fixes: 676c5c72b5eeb583da2603e399fac085fa442c59 ("libwebsockets: OpenSSL
and mbedTLS variants should conflict")

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit a4e8cbb89a48729b3c3ad615765549628d495b0f)

libwebsockets: OpenSSL and mbedTLS variants should conflict

They provide the same files, but they don't conflict to each other, this
means that users can install them side by side.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 676c5c72b5eeb583da2603e399fac085fa442c59)

libwebsockets: full variant provides OpenSSL

For some time, it is not possible to install ttyd and mosquitto-ssl at the
same time, so let's solve it that libwebsockets-full provides
libwebsockets-openssl. This allows to install ttyd and mosquitto at
the same time.

Also, we need to add conflict, because we should not have installed
libwebsockets-openssl and libwebsockets-full at the same time as they
provides the same files.

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 77e682a11c53f4dcd0e76bdea5ee82de77eaacfe)

lighttpd: backport patch to fix dummy Sec-WebSocket-Key

It was requested in https://gitlab.nic.cz/turris/os/packages/-/issues/873

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit de49362d35a4baaa36ca8cab3fa874f3ca8cb6ad)

mariadb: Drop unused rundir fix socket dir perms

We had been creating "rundir" but it was never used, probably leftover
from some removed function. At the same time, we were setting quite
strict rights to the socket directory (while comments sugested
otherwise).

Signed-off-by: Michal Hrusecky <michal@hrusecky.net>
(cherry picked from commit 8f6831b64b89243e7c1be5948f33e6737f7ddfc3)

Merge pull request #19667 from miska/mariadb-21.02

[21.02] mariadb: Update to the latest version 10.4.26

python3: update to version 3.9.15

Release notes:
- https://www.python.org/downloads/release/python-3915/

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>

mariadb: Update to the latest version 10.4.26

Keeping the major version, bumping just a minor version. It includes
various bug fixes and security fixes.  For details, see:

* https://mariadb.com/kb/en/mariadb-10426-release-notes/
* https://mariadb.com/kb/en/mariadb-10425-release-notes/
* https://mariadb.com/kb/en/mariadb-10424-release-notes/
* https://mariadb.com/kb/en/mariadb-10423-release-notes/

While at it, also switching to AUTORELEASE and refreshing patches.

Signed-off-by: Michal Hrusecky <michal@hrusecky.net>

ddns-scripts: fix cloudflare&digitalocean provides

Fixes mistake in dbe79e409d4d772d607364b47116a108508bb466, the
cloudflare PROVIDES got mixed up with digitalocean.

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit 001564ed8356398c0e61dec12063604127b290e7)
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Remove PKG_RELEASE version bump