James White [Mon, 30 May 2022 08:04:53 +0000 (09:04 +0100)]
adguardhome: Increase init start value to avoid network race conditions
Signed-off-by: James White <james@jmwhite.co.uk>
(cherry picked from commit
cd4c7b3ac32838fa8987095bc1ecef2d7c6007b5)
YiZhen Choo [Fri, 7 Oct 2022 15:47:50 +0000 (23:47 +0800)]
AdGuardHome: update to v0.107.16
Signed-off-by: YiZhen Choo <yizhen.c02@gmail.com>
(cherry picked from commit
64dabe2d681f013c834f447496ad57b413790b0b)
YiZhen Choo [Wed, 7 Sep 2022 16:05:16 +0000 (00:05 +0800)]
AdGuardHome: update to v0.107.12
Signed-off-by: YiZhen Choo <yizhen.c02@gmail.com>
(cherry picked from commit
e806d85e46ae563e9fd334972dcb019a88442cbd)
YiZhen Choo [Fri, 19 Aug 2022 15:31:46 +0000 (23:31 +0800)]
AdGuardHome: update to v0.107.11
Signed-off-by: YiZhen Choo <yizhen.c02@gmail.com>
(cherry picked from commit
79acc3c21f48b5d38f9e43d802d7dcdfee9f6606)
Alexandru Ardelean [Wed, 21 Dec 2022 17:53:26 +0000 (19:53 +0200)]
Merge pull request #20144 from turris-cz/openwrt-21.02/python3-update
[21.02] python3: update to version 3.9.16
Josef Schlehofer [Tue, 20 Dec 2022 22:59:44 +0000 (23:59 +0100)]
python3: update to version 3.9.16
Release notes:
https://www.python.org/downloads/release/python-3916/
Fixes:
CVE-2022-43680
CVE-2022-37454
CVE-2022-45061
CVE-2022-42919
CVE-2015-20107
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Daniel Golle [Mon, 5 Dec 2022 01:18:43 +0000 (01:18 +0000)]
snowflake: update to version 2.4.1
Changes in version v2.4.1 - 2022-12-01
- Issue 40224: Bug fix in utls roundtripper
Changes in version v2.4.0 - 2022-11-29
- Fix proxy command line help output
- Issue 40123: Reduce multicast DNS candidates
- Add ICE ephemeral ports range setting
- Reformat using Go 1.19
- Update CI tests to include latest and minimum Go versions
- Issue 40184: Use fixed unit for bandwidth logging
- Update gorilla/websocket to v1.5.0
- Issue 40175: Server performance improvements
- Issue 40183: Change snowflake proxy log verbosity
- Issue 40117: Display proxy NAT type in logs
- Issue 40198: Add a `orport-srcaddr` server transport option
- Add gofmt output to CI test
- Issue 40185: Change bandwidth type from int to int64 to prevent overflow
- Add version output support to snowflake
- Issue 40229: Change regexes for ipv6 addresses to catch url-encoded addresses
- Issue 40220: Close stale connections in standalone proxy
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
f60f11f9277ee30fa0699cdf1aded5a0bc50aac6)
Michal Vasilek [Thu, 15 Dec 2022 10:18:00 +0000 (11:18 +0100)]
apr-util: disable parallel build
Build reliably fails with -j20
crypto/apr_passwd.c:200:1: fatal error: error closing -: Broken pipe
200 | }
| ^
compilation terminated.
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
bd9e119d68fba792a1f760525540c0e0cf10e63f)
Hannu Nyman [Thu, 15 Dec 2022 15:54:26 +0000 (17:54 +0200)]
nano: update to 7.1
Update nano editor to version 7.1
* drop the backported upstream fix for 7.0
* drop AUTORELEASE
* disable justify from 'plus'. Rarely needed with OpenWrt
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
89dc1b17e9d8234c8085ffdb4fbe00d0e9093725)
Luiz Angelo Daros de Luca [Mon, 12 Dec 2022 17:32:10 +0000 (14:32 -0300)]
ruby: update to 3.0.5
This release includes a security fix.
- CVE-2021-33621: HTTP response splitting in CGI
For more details:
- https://www.ruby-lang.org/en/news/2022/11/24/ruby-3-0-5-released/
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
Josef Schlehofer [Fri, 9 Dec 2022 10:53:45 +0000 (11:53 +0100)]
Merge pull request #20038 from
1715173329/g1189
[openwrt-21.02] golang: Update to 1.18.9
Alois Klink [Wed, 23 Nov 2022 18:37:01 +0000 (18:37 +0000)]
github-ci: error on any shell errors
Enable `errexit` and `nounset` [POSIX shell options][1]
in `.github/workflows/entrypoint.sh` so that the script fails
if any command within the script fails.
[1]: https://pubs.opengroup.org/onlinepubs/
9699919799//utilities/V3_chap02.html#set
Reported-by: Marius Dinu <m95d+git@psihoexpert.ro>
Fixes: https://github.com/openwrt/packages/issues/19953
Signed-off-by: Alois Klink <alois@aloisklink.com>
(cherry picked from commit
18d3c529fa4ab8dafcf6c147cf3cb55792d8ca10)
Daniel Golle [Thu, 6 Oct 2022 15:48:23 +0000 (16:48 +0100)]
snowflake: update to version 2.3.1
03b2b56f Fix broker race condition
36f03dfd Record proxy type for proxy relay stats
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
15fdb5fa166c1d41236c519821cad6e92fbb8e68)
Josef Schlehofer [Wed, 7 Dec 2022 21:08:42 +0000 (22:08 +0100)]
Merge pull request #19445 from PolynomialDivision/21-02-snowflake
[21.02] snowflake: add package
Tianling Shen [Wed, 7 Dec 2022 17:39:32 +0000 (01:39 +0800)]
golang: Update to 1.18.9
go1.18.9 (released 2022-12-06) includes security fixes to the net/http
and os packages, as well as bug fixes to cgo, the compiler, the runtime,
and the crypto/x509 and os/exec packages.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Alexandru Ardelean [Wed, 7 Dec 2022 08:01:48 +0000 (10:01 +0200)]
django: reset PKG_RELEASE to 1
Omitted during review.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Alexandru Ardelean [Wed, 7 Dec 2022 07:55:58 +0000 (09:55 +0200)]
Merge pull request #20034 from peter-stadler/openwrt-21.02
django: bump version 3.2.16
Liangbin Lian [Thu, 24 Nov 2022 10:05:50 +0000 (18:05 +0800)]
samba4: support both user map and valid users on same time
Signed-off-by: Liangbin Lian <jjm2473@gmail.com>
(cherry picked from commit
e04e523a01f5144a60541e6468a9f4451f26c8ab)
Peter Stadler [Fri, 2 Dec 2022 22:14:38 +0000 (23:14 +0100)]
django: bump version 3.2.16
fix CVE-2022-41323
Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
Josef Schlehofer [Sun, 4 Dec 2022 17:46:50 +0000 (18:46 +0100)]
Merge pull request #19997 from TDT-AG/pr/owrt-21.02-fix-libqmi-build
libqmi: fix build regressions
Maxim Anisimov [Mon, 12 Sep 2022 07:16:37 +0000 (10:16 +0300)]
libqmi: bump to 1.30.8
Signed-off-by: Maxim Anisimov <maxim.anisimov.ua@gmail.com>
(cherry picked from commit
0b0d8163d53efdfd6abd7d9cbb57a770273c5319)
Aleksander Morgado [Wed, 4 May 2022 11:36:28 +0000 (13:36 +0200)]
libqmi: bump to 1.30.6
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit
45e8d072ee2d52b5d8f0b053d706ce6a2ae06aae)
(cherry picked from commit
b8a8dd53c7996f289aefbcd4fb0d4747f7f8bb48)
Maxim Anisimov [Tue, 29 Mar 2022 08:38:57 +0000 (11:38 +0300)]
libqmi: polish Makefile
PKG_VERSION replaced by PKG_SOURCE_VERSION.
Simplify for collection selection.
Removed unneeded python3/host dep.
Signed-off-by: Maxim Anisimov <maxim.anisimov.ua@gmail.com>
(cherry picked from commit
ff5837ee8f483bb425d33b18c1185586507d495c)
(cherry picked from commit
94b824423bc0f668a2f607497d26cc00f47e521e)
Maxim Anisimov [Sat, 26 Mar 2022 09:04:26 +0000 (12:04 +0300)]
libqmi: switch to meson build tools
Using https://gitlab.freedesktop.org/mobile-broadband/libqmi.git to download the source code.
Enabled lto and additional gcc flags for perfomance and less size.
Added support for selecting qmi message collection.
Selected basic qmi message collection by default (modemmanager requires it).
Modified to use meson as upstream has abandoned autotools.
Removed BUILD_PARALLEL options. These are default with ninja/meson.
Signed-off-by: Maxim Anisimov <maxim.anisimov.ua@gmail.com>
(cherry picked from commit
f7cbd445408756b7a44764080063a9a4158988ed)
(cherry picked from commit
1683d7c96373948d4c25266f9aaedcf85f13695e)
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Update meson include dir for branch openwrt-21.02.
Florian Eckert [Wed, 30 Nov 2022 09:38:03 +0000 (10:38 +0100)]
Revert "libqmi: bump to 1.30.8"
The libqmi version 1.30.8 uses meson. In order to cherry-pick the
last changes cleanly, this commit must first be reverted.
This reverts commit
0cccbcb0c76f2d2fe74fc0acae02c69aee0d8c52.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Glenn Strauss [Wed, 30 Nov 2022 03:22:14 +0000 (22:22 -0500)]
lighttpd: lighttpd.conf vars, comments, guidance
lighttpd.conf variables, documentation comments, configuration guidance
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(cherry picked from commit
c862b524fb879f416705e85fa31539472aeff2d8)
Glenn Strauss [Sun, 27 Nov 2022 20:39:24 +0000 (15:39 -0500)]
lighttpd: print stderr trace if validation fails
lighttpd.init validate_conf(): print stderr trace if validation fails
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(cherry picked from commit
38ffa02e422bac544eee9578830a8b6a49265be1)
Tianling Shen [Mon, 28 Nov 2022 18:32:01 +0000 (02:32 +0800)]
v2raya: backports upstream fixes and add 3 new options
It may take a long time waiting for a new tag, so backport these
important bug fixes for now.
While at it, added 3 new options provided by upstream, and deprecated
the usage of `$(AUTORELEASE)`.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
17362ce57c88da583c039d81b800b3edad5a6053)
Tianling Shen [Mon, 28 Nov 2022 16:19:15 +0000 (00:19 +0800)]
xray-core: Update to 1.6.5
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
b3e453f33517747ef9fb48536cced4e42f7abc99)
[updated geodata, based on
664ecae4e63799]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Mon, 28 Nov 2022 16:18:21 +0000 (00:18 +0800)]
yq: Update to 4.30.5
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
255d19a007ab9a0dbefab88f0be934f6cffe5ed5)
Peter Stadler [Thu, 28 Oct 2021 08:36:00 +0000 (10:36 +0200)]
uwsgi: bump version and use less workarounds
* adopt pypi name and line numbers in patches
* remove custom tar command and patch for using python3 (changed upstream)
Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
(cherry picked from commit
545629e38601846b4b79bc3ac932355f0621d750)
Tianling Shen [Tue, 22 Nov 2022 08:57:37 +0000 (16:57 +0800)]
librespeed-go: add new package
Go backend for LibreSpeed.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
a157e382df81ba1d40ba275730d7adf627508004)
Maxim Anisimov [Sat, 26 Mar 2022 08:45:59 +0000 (11:45 +0300)]
libmbim: switch to meson build tools
Using https://gitlab.freedesktop.org/mobile-broadband/libmbim.git to download the source code.
Enabled lto and additional gcc flags for perfomance and less size.
Modified to use meson as upstream has abandoned autotools.
Removed BUILD_PARALLEL options. These are default with ninja/meson.
Signed-off-by: Maxim Anisimov <maxim.anisimov.ua@gmail.com>
(cherry picked from commit
fea19c23994dcc84332dfaeb9d585df46a847b10)
Tianling Shen [Mon, 14 Nov 2022 10:17:46 +0000 (18:17 +0800)]
sqlite3: Update to 3.40.0
1. Added a new option for SQLITE3_COLUMN_METADATA.
2. Minor cleanup Makefile and fixed 2 typo errors.
Fixes: CVE-2022-35737
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
a4a0f0793bf7016d813b67a413ee4010917270c0)
Marius Dinu [Tue, 21 Dec 2021 19:56:08 +0000 (21:56 +0200)]
sqlite: update to v3.37 (2021-11-27)
Signed-off-by: Marius Dinu <m95d+git@psihoexpert.ro>
(cherry picked from commit
b2309dc25e5080bfb49d21e1a4bd751460c9465d)
Jan Hoffmann [Thu, 4 Feb 2021 19:41:50 +0000 (20:41 +0100)]
sqlite3: add option for batch-atomic write support
This allows to build SQLite with support for the batch-atomic write
optimization. It makes use of atomic write support provided by the
underlying file system. Currently, this is only supported on F2FS. It
it does not work with overlayfs.
Signed-off-by: Jan Hoffmann <jan@3e8.eu>
(cherry picked from commit
4bc7ba7fe82563dd64db57317c52824039ab8209)
Josef Schlehofer [Wed, 23 Nov 2022 13:31:56 +0000 (14:31 +0100)]
libmbim: fix hash for 1.26.4 tarball
This corrects the hash by using sha256sum for downloaded tarball from
freedesktop. After that, package libmbim was successfully compiled.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Ivan Pavlov [Thu, 23 Jun 2022 03:06:44 +0000 (06:06 +0300)]
xtables-addons: update to 3.21
updated to kernel 5.10.121+ changes
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
(cherry picked from commit
69e4ed4b6f2e0fe33367ea13871d5ac227aaf922)
Nick Hainke [Wed, 1 Jun 2022 06:27:59 +0000 (08:27 +0200)]
xtables-addons: update to 3.20
866bc7f Xtables-addons 3.20
aa70669 doc: move changelog to rST
d7de2a9 doc: remove old changelog entries
d7e49a8 build: bump supported kernel version to 5.17
966fa43 extensions: replace PDE_DATA
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
c3141dc16aaf6ec0d9262a921a41a69e96241be8)
Eneas U de Queiroz [Wed, 11 May 2022 22:37:12 +0000 (19:37 -0300)]
audit: remove host build
The audit package in the packages feed share the same sources as the
libaudit package in the base repo. libaudit performs a host build, used
only by libsemanage in base.
There is no package depending on 'audit/host', so we can remove it to
avoid possible confusion.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
1d54defb0fe7a964a19e3aa36e35a8159bcc2262)
Eneas U de Queiroz [Wed, 11 May 2022 22:08:13 +0000 (19:08 -0300)]
audit: avoid interferece with base libaudit build
Both audit in the packages feed and libaudito from the base repo use the
same sources.
Have 'audit' use a different build directory than 'libaudit' package to
avoid interference between them.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
c0f26f4980cfb6d2abb1b1548530cee41c5f92aa)
Aleksander Morgado [Wed, 4 May 2022 11:35:54 +0000 (13:35 +0200)]
libmbim: bump to 1.26.4
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
(cherry picked from commit
1d2ef5abbbdff8528ec225d4bc499643bc29ea12)
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
[only version bump]
Eric Luehrsen [Sat, 19 Nov 2022 22:24:27 +0000 (17:24 -0500)]
unbound: update to 1.17.0
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
(cherry picked from commit
6bc0293a73f5a1d86a951ebd4c00cbc7b09e4529)
(cherry picked from commit
0de8e969e30db87d4af6bc2a67c59c0d8ed2378f)
Josef Schlehofer [Sun, 25 Sep 2022 10:00:55 +0000 (12:00 +0200)]
unbound: update to version 1.16.3
Changelog: https://www.nlnetlabs.nl/projects/unbound/download/#unbound-1-16-3
- Fixes: CVE-2022-3204
Refreshed one patch
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
027533f9a23bbedd0b7c988405a9b5fd433da502)
(cherry picked from commit
a9423d8946a3d40fdcca0264a2149338d5621055)
Pascal Ernster [Tue, 2 Aug 2022 02:26:38 +0000 (04:26 +0200)]
unbound: update to 1.16.2, fix CVE-2022-30698, CVE-2022-30699
Maintainer: @EricLuehrsen
Compile tested: x86/64
Run tested: x86/64
Description: Update to 1.16.2, fix CVE-2022-30698 and CVE-2022-30699.
Signed-off-by: Pascal Ernster <git@hardfalcon.net>
(cherry picked from commit
2179432991fd69ba790225c7959b080986ce363d)
(cherry picked from commit
eaefde9a4a6aa649df6ea2152b09d641eca007c3)
Pascal Ernster [Mon, 11 Jul 2022 15:27:30 +0000 (17:27 +0200)]
unbound: update to 1.16.1
Maintainer: @EricLuehrsen
Compile tested: realtek/rtl838x, x86/64
Run tested: realtek/rtl838x, x86/64
Description: Update to 1.16.1
Signed-off-by: Pascal Ernster <git@hardfalcon.net>
(cherry picked from commit
e702a6605805b1160341bfc949ec1de4687af06d)
(cherry picked from commit
2e878763dfb54ae9daba068a441e47c6b954d774)
Tianling Shen [Wed, 16 Nov 2022 09:12:13 +0000 (17:12 +0800)]
ooniprobe: Update to 3.16.5
Fix build with Go 1.19.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
1c6570dcc7c4ce9843b763e8863baf92277fa008)
Michal Vasilek [Mon, 21 Nov 2022 12:49:20 +0000 (13:49 +0100)]
librespeed-cli: rename binary to librespeed-cli
upstream names the binary librespeed-cli and this avoids a conflict with
python3-speedtest-cli
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
c2ad338b0f0fb5df4c84770fa6408f18bd347671)
Tianling Shen [Mon, 21 Nov 2022 11:06:31 +0000 (19:06 +0800)]
rclone: Update to 1.60.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
88a1535d00e1047041cb9328a6f6eac310af1714)
Tianling Shen [Fri, 18 Nov 2022 11:18:56 +0000 (19:18 +0800)]
xray-core: Update to 1.6.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d36c34f9847d20450f61c955ccab745a5c90e90f)
Michal Vasilek [Wed, 2 Nov 2022 15:08:08 +0000 (16:08 +0100)]
librespeed-cli: add package
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
bb33b55354f6a9b51f445c117c5fdb5fca0b5a44)
Marc Benoit [Mon, 5 Sep 2022 18:52:07 +0000 (14:52 -0400)]
nextdns: initialize nextdns from /etc/uci-defaults
Signed-off-by: Marc Benoit <marcb62185@gmail.com>
(cherry picked from commit
e54247a6fa9c03f286d38460c425d6dbd622b657)
Olivier Poitrey [Wed, 16 Nov 2022 16:04:29 +0000 (16:04 +0000)]
nextdns: Update to version 1.38.0
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Hannu Nyman [Thu, 17 Nov 2022 16:17:29 +0000 (18:17 +0200)]
nano: update to 7.0
Update nano to version 7.0.
Add a patch to fix the plus variant.
Upstream discussion and patch in
https://savannah.gnu.org/bugs/?63372
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
4a89a577a71adffc6cbad99971b4c064193b3566)
van waholtz [Wed, 16 Nov 2022 11:10:02 +0000 (19:10 +0800)]
ariang: update to 1.3.2
Signed-off-by: van waholtz <brvphoenix@gmail.com>
(cherry picked from commit
99315b516f5cfcb6825ca4afdfd5ee14799ee370)
Van Waholtz [Sun, 14 Aug 2022 02:24:50 +0000 (10:24 +0800)]
ariang: update to 1.2.4
Changelog: https://github.com/mayswind/AriaNg/releases
Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit
aee5b7db55c3eb7a84b4fc9e90994a1fdef8cd41)
Rosen Penev [Thu, 16 Dec 2021 06:00:04 +0000 (22:00 -0800)]
ariang: update to 1.2.3
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
4a400ed105e59430f2fd16f592a1f4d8deef3d41)
Van Waholtz [Wed, 16 Jun 2021 12:47:40 +0000 (20:47 +0800)]
ariang: update to 1.2.2
Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit
ae09a31ffed9e2b5fa72b075d30455916eb82157)
Van Waholtz [Sun, 13 Jun 2021 09:08:17 +0000 (17:08 +0800)]
ariang: update to 1.2.1
Use original main repo's releases instead
Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>
(cherry picked from commit
3bcab30f2051720049d8c7605cc4288204bea472)
Tianling Shen [Wed, 16 Nov 2022 11:57:19 +0000 (19:57 +0800)]
yq: Update to 4.30.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
8762261112c8235f7f85a6f57dbf342cf17093b9)
Michael Heimpold [Thu, 17 Nov 2022 07:07:47 +0000 (08:07 +0100)]
Merge pull request #19914 from mhei/21.02-php8-update-8.0.25
[21.02] php8: update to 8.0.25
Michael Heimpold [Thu, 17 Nov 2022 07:07:33 +0000 (08:07 +0100)]
Merge pull request #19913 from mhei/21.02-php7-update-7.4.33
[21.02] php7: update to 7.4.33
Josef Schlehofer [Wed, 16 Nov 2022 20:48:31 +0000 (21:48 +0100)]
Merge pull request #19648 from nemesisdesign/openwrt-21.02
[21.02] Backport fixes for modem-manager and its dependencies
Michael Heimpold [Wed, 16 Nov 2022 14:31:56 +0000 (15:31 +0100)]
php7: update to 7.4.33
This fixes:
- CVE-2022-31630
- CVE-2022-37454
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Michael Heimpold [Wed, 16 Nov 2022 14:30:09 +0000 (15:30 +0100)]
php8: update to 8.0.25
This fixes:
- CVE-2022-31630
- CVE-2022-37454
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Moritz Warning [Wed, 2 Nov 2022 18:24:47 +0000 (19:24 +0100)]
zerotier: update to 1.10.2
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Sun, 3 Jul 2022 22:14:40 +0000 (00:14 +0200)]
zerotier: update to 1.10.1
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Sat, 30 Apr 2022 15:38:25 +0000 (17:38 +0200)]
zerotier: update to 1.8.9
Replace patch with Makefile options
to disable Rust components that
cannot be build with OpenWrt.
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Wed, 13 Apr 2022 19:19:38 +0000 (21:19 +0200)]
zerotier: fix segfault on ARM platforms
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Wed, 13 Apr 2022 19:00:01 +0000 (21:00 +0200)]
zerotier: update to 1.8.8
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Moritz Warning [Tue, 8 Mar 2022 14:55:58 +0000 (15:55 +0100)]
zerotier: update to 1.8.6
* remove upstreamed gcc10 and cerrno patches
* disable SSO and OIDC as it needs Rust/Cargo support
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Tianling Shen [Sun, 13 Nov 2022 14:30:25 +0000 (22:30 +0800)]
yq: Update to 4.30.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
4d667ec8e8ffb23e2d42a42c58f0318b3d248dff)
Tianling Shen [Sat, 12 Nov 2022 15:28:26 +0000 (23:28 +0800)]
yq: Update to 4.30.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
2cba6e5f73326bfa91f3b5d0f432f85064255ee4)
Tianling Shen [Mon, 17 Oct 2022 12:46:28 +0000 (20:46 +0800)]
treewide: fix procd service inactive
Exit directly will result procd service inactive and uci
configuration changes are no longer monitored.
Reported-by: Lvc Revincx <revincx233@gmail.com>
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
b1651c5d5444b990b58180a26d6e76779cbb88a9)
Tianling Shen [Fri, 5 Aug 2022 13:58:06 +0000 (21:58 +0800)]
v2raya: Update to 1.5.9.1698.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
3c43f65ae90fd7de6a5bb91d1560917db1b281dd)
Tianling Shen [Sat, 18 Jun 2022 18:02:08 +0000 (02:02 +0800)]
v2raya: Update to 1.5.8.1
1. Switched to use prebuilt web files to get rid of massive Node.js.
2. Increased nofile limitation to avoid "too many open files" error.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d629a6f8b2b3e37a98540b5ec043949d2069cb88)
Tianling Shen [Wed, 20 Apr 2022 19:01:39 +0000 (03:01 +0800)]
v2rayA: Update to 1.5.7
- Removed an upstreamed patch
- Move logs to /var/log in accordance with FHS 3.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
ff8f25cb98ce3117fac28020f96f3e7f49ff6106)
Tianling Shen [Sat, 26 Mar 2022 14:16:03 +0000 (22:16 +0800)]
v2raya: fix panic in go 1.18
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
7aa127e208262e44b81fbbf7fe023b9cfdc6fdf7)
Tianling Shen [Fri, 4 Feb 2022 09:26:22 +0000 (17:26 +0800)]
v2rayA: Update to 1.5.6.2
Manually added new env variable `XDG_DATA_HOME` which won't be passed
by procd by default.
Removed upstreamed patch.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
c7b5e7ed67e1465da775e59e96b872a69a0452f5)
Tianling Shen [Fri, 4 Feb 2022 10:12:09 +0000 (18:12 +0800)]
v2raya: init: convert arguments into env variables
Suggested by upstream, to provide forward compatibility.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
8465053a58ce6efcdfe59f834e9d373496d02f64)
Tianling Shen [Fri, 10 Dec 2021 10:56:00 +0000 (18:56 +0800)]
v2rayA: Update to 1.5.5
Breaking changes:
The database has been replaced with boltdb to try to solve the problem
of database corruption.
Note that the data will not be migrated, but the previous data will be
retained. If you need the previous data, just downgrade v2rayA (v1.5.4).
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
21e98e952f5c03a590b30c65c2419e4dc8e5910f)
Tianling Shen [Sat, 2 Oct 2021 02:48:24 +0000 (10:48 +0800)]
v2raya: Update to 1.5.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
d48b22fb9011311e78dc71b1a09b7219aecaba1d)
Tianling Shen [Wed, 15 Sep 2021 19:15:04 +0000 (03:15 +0800)]
v2raya: Update to 1.5.3
- Added missing conffiles
- Refreshed init srcipt to adapt the new arguments
- Renamed package name to lowercase (suggestion from upstream)
- Updated dependencies and license
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
16e453e4acc39eb0a3bc403f37697cd4083cdf14)
Tianling Shen [Mon, 30 Aug 2021 05:31:37 +0000 (13:31 +0800)]
v2rayA: Update to 1.5.2
Refreshed init script to adapt new arguments accepted by the program.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
60c917089fb616d9c071023091e40bdb1f4c12f0)
Tianling Shen [Thu, 26 Aug 2021 13:13:59 +0000 (21:13 +0800)]
v2rayA: add new package
v2rayA is a Linux web GUI client of Project V which supports V2Ray,
Xray, Shadowsocks, ShadowsocksR, Trojan and Pingtunnel.
Wiki: https://github.com/v2rayA/v2rayA/wiki
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
90ec599f9ef7aa011febe5528ba8b0b2016bfe02)
Tianling Shen [Thu, 10 Nov 2022 12:47:05 +0000 (20:47 +0800)]
xray-core: Update to 1.6.3
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
4194268e3f4c931e122dd66ca6196f6262f35c78)
[Update geodata to latest version, based on
e5c3c3409]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 3 Nov 2022 08:20:16 +0000 (16:20 +0800)]
xray-core: Update to 1.6.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
e606ea7e78c8f294e3d30df01aa82b3346dbeffe)
Tianling Shen [Wed, 26 Oct 2022 06:18:04 +0000 (14:18 +0800)]
xray-core: Update to 1.6.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
b16b07409f8dae2356d0cb97f6e541218360fd80)
Tianling Shen [Mon, 19 Sep 2022 02:45:48 +0000 (10:45 +0800)]
xray-core: Update to 1.6.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
a0126b15c58f7527ed21dbcb659d51072ad1f5fc)
[Update geodata to latest version, based on
f8c25627ebe1d9]
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
05d1265cb7efc186ecc6b44232c6a4aca0ba0392)
Tianling Shen [Tue, 30 Aug 2022 06:49:28 +0000 (14:49 +0800)]
xray-core: Update to 1.5.10
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
ddd4082d30f843e522fc69ecaa5e91d6bb65365c)
Jeffery To [Sun, 10 Apr 2022 08:44:30 +0000 (16:44 +0800)]
syncthing: Update to 1.19.2
Includes patch based on upstream change[1] to fix compilation with Go
1.18.
Fixes https://github.com/openwrt/packages/issues/18267.
[1]: https://github.com/syncthing/syncthing/commit/
e30898ddb3e51225d4bda8661a1510c5cc9afe08
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
4b7ff2df5eea9688e9652b552a92f7ecd5ebf1ea)
(cherry picked from commit
961c73ca7cc03c60d2a2fb7449327c8ab7c60563)
Josef Schlehofer [Wed, 9 Nov 2022 13:51:30 +0000 (14:51 +0100)]
golang: update to version 1.18.8
Fixes following CVEs:
- CVE-2022-32189 (version 1.18.5 [1]]
- CVE-2022-27664 (version 1.18.6 [2])
- CVE-2022-32190 (version 1.18.6 [2])
- CVE-2022-2879 (version 1.18.7 [3])
- CVE-2022-2880 (version 1.18.7 [3])
- CVE-2022-41715 (version 1.18.7 [3])
- CVE-2022-41716 (version 1.18.8 [4])
and refreshed patch
[1] https://groups.google.com/g/golang-announce/c/YqYYG87xB10
[2] https://groups.google.com/g/golang-announce/c/x49AQzIVX-s
[3] https://groups.google.com/g/golang-announce/c/xtuG5faxtaU
[4] https://groups.google.com/g/golang-announce/c/mbHY1UY3BaM
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
c33c2d886918cfbc1af8d60cbb530ba563084b67)
Josef Schlehofer [Wed, 9 Nov 2022 14:11:00 +0000 (15:11 +0100)]
ffmpeg: libffmpeg-full package should provide libffmpeg package, too
The previous solution overwrote the provide from ``define
Package/libffmpeg/Default``, but that's not what was wanted.
Thus libffmpeg-full should provide three packages libffmpeg,
libffmpeg-mini and libffmpeg-audio-dec
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
c333c0e5229b7c4f14dd831e2c75709d0de1615e)
Jeffery To [Mon, 18 Jul 2022 09:35:11 +0000 (17:35 +0800)]
golang: Update to 1.18.4
Includes fixes for:
* CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding
header
* CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions
* CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip
* CVE-2022-30630: io/fs: stack exhaustion in Glob
* CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read
* CVE-2022-30632: path/filepath: stack exhaustion in Glob
* CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal
* CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode
* CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit
X-Forwarded-For not working
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
60168651a2c7279a4a169be6b3d61be57e871e55)
Jeffery To [Mon, 6 Jun 2022 08:24:05 +0000 (16:24 +0800)]
golang: Update to 1.18.3
Includes fix for CVE-2022-30634 (crypto/rand: Read hangs when passed
buffer larger than 1<<32 - 1).
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
112cf0903125837bc7990813105cbe7ce23f5ece)
Jeffery To [Sat, 14 May 2022 18:11:51 +0000 (02:11 +0800)]
golang: Update to 1.18.2
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
659f87d5d4a72507b16dca5b2962ff21580e1ff3)
Jeffery To [Fri, 15 Apr 2022 15:27:14 +0000 (23:27 +0800)]
golang: Update to 1.18.1
Includes fixes for:
* CVE-2022-24675 - encoding/pem: stack overflow
* CVE-2022-28327 - crypto/elliptic: generic P-256 panic when scalar has
too many leading zeroes
This also adds -buildvcs=false to omit VCS information in Go programs.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
8c0477a89525422f633e9693cc1fe6192db785df)
Jeffery To [Fri, 25 Mar 2022 19:46:25 +0000 (03:46 +0800)]
golang: Update to 1.18, update patch
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
478666b00b8caeccf1d51c44ebb71788b0ca4388)
Josef Schlehofer [Wed, 9 Nov 2022 11:00:33 +0000 (12:00 +0100)]
golang: update to version 1.17.13
Fixes:
CVE-2022-32189
Release notes:
https://groups.google.com/g/golang-announce/c/YqYYG87xB10?pli=1
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Magnus Kessler [Thu, 12 May 2022 05:13:52 +0000 (07:13 +0200)]
tailscale: update to version 1.24.2
Signed-off-by: Magnus Kessler <Magnus.Kessler@gmx.net>
(cherry picked from commit
b557e9f0d14e59435506fae0a31dfc908175dde4)