Michal Vasilek [Thu, 23 Feb 2023 16:27:33 +0000 (17:27 +0100)]
clamav: update to 0.104.4
* remove upstreamed 100-cmake-fix-findcurses.patch
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
Eneas U de Queiroz [Thu, 23 Feb 2023 13:21:23 +0000 (10:21 -0300)]
Merge pull request #20560 from turris-cz/antfs-drop
Remove package: kmod-fs-antfs and its dependency antfs-mount
Josef Schlehofer [Thu, 23 Feb 2023 06:56:04 +0000 (07:56 +0100)]
antfs-mount: drop
Since kernel module was dropped, check the reasons why it was removed in
the commit
42a4fbe4a4fda8b61a1cec0762957872511f6527 ("
antfs: drop this kernel package"), then this package should be removed,
too as the dependency was removed and without it, it is not useful
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Moritz Warning [Wed, 22 Feb 2023 21:48:00 +0000 (22:48 +0100)]
zerotier: update to 1.10.3
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Josef Schlehofer [Thu, 23 Feb 2023 06:52:01 +0000 (07:52 +0100)]
antfs: drop this kernel package
Reasons to remove this package:
1. It is not available for Linux kernel 5.15 and onwards.
2. It seems that it is not maintained as the original repository was
done in 2018 and then the forked repository was done to have this
merged only to OpenWrt.
3. Anyone can use ntfs-3g (fuse) or ntfs3 from Paragon, which has been
available since Linux kernel 5.15
4. Nobody said why this package was necessary or required to be added
here or what was the difference between driver(s) in the Linux kernel and
this package.
5. No project home page, no documentation, only source code provided by
AVM
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Stan Grishin [Thu, 23 Feb 2023 04:47:39 +0000 (21:47 -0700)]
Merge pull request #20554 from stangri/master-https-dns-proxy
https-dns-proxy: 2022-10-15-11 update
Michal Vasilek [Thu, 16 Feb 2023 09:20:13 +0000 (10:20 +0100)]
git: update to 2.34.7
Fixes CVE-2023-22490, CVE-2023-23946
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
Stan Grishin [Wed, 22 Feb 2023 20:35:59 +0000 (20:35 +0000)]
https-dns-proxy: 2022-10-15-11 update
* config file update
* introduce boot() function
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Tianling Shen [Tue, 21 Feb 2023 04:48:00 +0000 (12:48 +0800)]
golang: Update to 1.19.6
go1.19.6 (released 2023-02-14) includes security fixes to the
crypto/tls, mime/multipart, net/http, and path/filepath packages,
as well as bug fixes to the go command, the linker, the runtime,
and the crypto/x509, net/http, and time packages.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Dirk Brenken [Tue, 21 Feb 2023 20:42:24 +0000 (21:42 +0100)]
banip: update 0.8.0-4
* remove bogus log limit
Signed-off-by: Dirk Brenken <dev@brenken.org>
Eneas U de Queiroz [Tue, 21 Feb 2023 20:14:40 +0000 (17:14 -0300)]
Merge pull request #20480 from gstrauss/lighttpd-1.4.69
lighttpd: update to lighttpd 1.4.69 release hash
Dirk Brenken [Tue, 21 Feb 2023 17:43:17 +0000 (18:43 +0100)]
banip: update 0.8.0-3
* properly initialize the 'proto' variable in the log service
Signed-off-by: Dirk Brenken <dev@brenken.org>
Tianling Shen [Tue, 21 Feb 2023 07:57:46 +0000 (15:57 +0800)]
yq: Update to 4.31.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Tue, 21 Feb 2023 07:57:38 +0000 (15:57 +0800)]
dnsproxy: Update to 0.48.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Tue, 21 Feb 2023 07:57:28 +0000 (15:57 +0800)]
v2ray-core: Update to 5.4.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Lucian Cristian [Mon, 20 Feb 2023 15:02:05 +0000 (15:02 +0000)]
nss: update to 3.88.1
Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
Dirk Brenken [Mon, 20 Feb 2023 18:17:16 +0000 (19:17 +0100)]
banip: update 0.8.0-2
* fix a potential race condition during initial startup (after flash) which leads to a "disabled" service
Signed-off-by: Dirk Brenken <dev@brenken.org
Signed-off-by: Dirk Brenken <dev@brenken.org>
Eneas U de Queiroz [Mon, 20 Feb 2023 15:07:16 +0000 (12:07 -0300)]
Merge pull request #20475 from cotequeiroz/openssl3
treewide: prepare packages for OpenSSL 3.0 update
Jan Hák [Mon, 13 Feb 2023 14:35:42 +0000 (15:35 +0100)]
knot: update to version 3.2.5
Signed-off-by: Jan Hák <jan.hak@nic.cz>
Eneas U de Queiroz [Mon, 20 Feb 2023 12:44:53 +0000 (09:44 -0300)]
Merge pull request #20484 from salim-b/patch-1
transmission: retrieve boolean config opts using `config_get_bool`
Eneas U de Queiroz [Mon, 20 Feb 2023 12:38:07 +0000 (09:38 -0300)]
Merge pull request #20525 from nxhack/node_16191
node: bump to v16.19.1
Glenn Strauss [Sun, 12 Feb 2023 05:29:06 +0000 (00:29 -0500)]
lighttpd: update to lighttpd 1.4.69 release hash
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
Glenn Strauss [Sat, 21 Jan 2023 01:13:39 +0000 (20:13 -0500)]
lighttpd: remove patch included upstream
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
Glenn Strauss [Sat, 21 Jan 2023 01:07:36 +0000 (20:07 -0500)]
lighttpd: add lighttpd-mod-webdav_min package
add lighttpd-mod-webdav_min package alternative to lighttpd-mod-webdav
lighttpd-mod-webdav_min is more minimal than full lighttpd-mod-webdav.
lighttpd-mod-webdav_min does not support PROPPATCH, LOCK, UNLOCK, and
by not supporting those methods, removes dependencies on libxml2,
libsqlite3, and libuuid.
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
Alexandru Ardelean [Mon, 20 Feb 2023 09:10:55 +0000 (11:10 +0200)]
Merge pull request #20520 from commodo/django1
django: bump to version 4.1.7
Stan Grishin [Mon, 20 Feb 2023 02:52:47 +0000 (19:52 -0700)]
Merge pull request #20532 from stangri/master-simple-adblock
simple-adblock: bugfix: ensure directory for jsonFile is created
Michael Heimpold [Sun, 19 Feb 2023 21:16:46 +0000 (22:16 +0100)]
Merge pull request #20521 from mhei/libgpiod-update-1.6.4
libgpiod: update to 1.6.4
Stan Grishin [Sun, 19 Feb 2023 20:22:32 +0000 (20:22 +0000)]
simple-adblock: bugfix: ensure directory for jsonFile is created
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Stan Grishin [Sun, 19 Feb 2023 20:21:28 +0000 (13:21 -0700)]
Merge pull request #20523 from stangri/master-simple-adblock
simple-adblock: implement procd_boot_wan_timeout support
Stan Grishin [Sun, 19 Feb 2023 05:09:32 +0000 (05:09 +0000)]
simple-adblock: implement procd_boot_wan_timeout support
* implement procd_boot_wan_timeout support
* update config with oisd ABPlus and domains lists
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Stan Grishin [Sun, 19 Feb 2023 05:04:19 +0000 (22:04 -0700)]
Merge pull request #20511 from stangri/master-simple-adblock
simple-adblock: update to 1.9.4-1
Michael Heimpold [Sat, 18 Feb 2023 21:18:07 +0000 (22:18 +0100)]
libgpiod: update to 1.6.4
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Dirk Brenken [Sat, 18 Feb 2023 20:14:56 +0000 (21:14 +0100)]
Merge pull request #20491 from dibdot/banIP
banip: release 0.8.0 (nft rewrite)
Dirk Brenken [Mon, 13 Feb 2023 16:56:57 +0000 (17:56 +0100)]
banip: release 0.8.0 (nft rewrite)
- complete rewrite of banIP to support nftables
- all sets are handled in a separate nft table/namespace 'banIP'
- for incoming blocking it uses the inet input hook, for outgoing blocking it uses the inet forward hook
- full IPv4 and IPv6 support
- supports nft atomic set loading
- supports blocking by ASN numbers and by iso country codes
- 42 preconfigured external feeds are available, plus local allow- and blocklist
- supports local allow- and blocklist (IPv4, IPv6, CIDR notation or domain names)
- auto-add the uplink subnet to the local allowlist
- provides a small background log monitor to ban unsuccessful login attempts in real-time
- the logterms for the log monitor service can be freely defined via regex
- auto-add unsuccessful LuCI, nginx, Asterisk or ssh login attempts to the local blocklist
- fast feed processing as they are handled in parallel as background jobs
- per feed it can be defined whether the input chain or the forward chain should be blocked (default: both chains)
- automatic blocklist backup & restore, the backups will be used in case of download errors or during startup
- automatically selects one of the following download utilities with ssl support: aria2c, curl, uclient-fetch or wget
- supports a 'allowlist only' mode, this option restricts internet access from/to a small number of secure websites/IPs
- provides comprehensive runtime information
- provides a detailed set report
- provides a set search engine for certain IPs
- feed parsing by fast & flexible regex rulesets
- minimal status & error logging to syslog, enable debug logging to receive more output
- procd based init system support (start/stop/restart/reload/status/report/search)
- procd network interface trigger support
- ability to add new banIP feeds on your own
- add a readme with all available options/feeds to customize your installation to your needs
- a new LuCI frontend will be available in due course
Signed-off-by: Dirk Brenken <dev@brenken.org>
Dirk Brenken [Sat, 18 Feb 2023 19:17:34 +0000 (20:17 +0100)]
adblock: update 4.1.5-6
* adapted changed oisd downloads (again), fixed #20516
Signed-off-by: Dirk Brenken <dev@brenken.org>
Alexandru Ardelean [Fri, 17 Feb 2023 17:32:46 +0000 (19:32 +0200)]
django: bump to version 4.1.7
Fixes:
https://nvd.nist.gov/vuln/detail/CVE-2023-23969
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Dengfeng Liu [Tue, 14 Feb 2023 05:45:21 +0000 (05:45 +0000)]
kcptun: update to version
20230207
add support for port-range dailer, port-range listener
Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
Oskari Rauta [Mon, 13 Feb 2023 17:45:32 +0000 (17:45 +0000)]
podman: update 4.4.1
patch refreshed.
Changes
- Added the podman-systemd.unit man page, which can also be displayed using man quadlet (#17349).
- Documented journald identifiers used in the journald backend for the podman events command.
Bugfixes
- Fixed a bug where the default handling of pids-limit was incorrect.
- Fixed a bug where parallel calls to make docs crashed (#17322).
- Fixed a regression in the podman kube play command where existing resources got mistakenly removed.
Full list of changes: [Release notes](https://github.com/containers/podman/blob/main/RELEASE_NOTES.md)
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Hirokazu MORIKAWA [Fri, 17 Feb 2023 02:51:35 +0000 (11:51 +0900)]
node: bump to v16.19.1
Thursday February 16 2023 Security Releases
Notable Changes
The following CVEs are fixed in this release:
* CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High)
* CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library (Medium)
* CVE-2023-23936: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium)
* CVE-2023-24807: Regular Expression Denial of Service in Headers in Node.js fetch API (Low)
* CVE-2023-23920: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low)
More detailed information on each of the vulnerabilities can be found in February 2023 Security Releases blog post.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Stan Grishin [Thu, 16 Feb 2023 22:59:10 +0000 (22:59 +0000)]
simple-adblock: update to 1.9.4-1
* update default config for new oisd.nl lists
* conf.update file to migrate oisd.nl lists to the new format
* introduce AdBlockPlus lists support (new oisd.nl format)
* longer wait for WAN up/gateway detection
* make load_environemnt only execute once to suppress duplicate
warnings/errors
PS. While I was testing this, oisd.nl has brought back the old domains
lists as well, so this version supports both as I'm unclear as to
why the "big" ABPlus list is only 6.2Mb where as the "big" domains
list is whopping 19.9Mb.
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Eneas U de Queiroz [Thu, 9 Feb 2023 14:33:24 +0000 (11:33 -0300)]
apfree-wifidog: add support for OpenSSL 3.0
This adds an upstream commit to allow building with OpenSSL 3.0.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 14:25:47 +0000 (11:25 -0300)]
libuhttpd: allow building with OpenSSL 3.0
Add -Wno-error=deprecated-declarations to CFLAGS to allow usage of
deprecated API.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 15:03:32 +0000 (12:03 -0300)]
boinc: Add compatibility with OpenSSL 3.0
This adds a patch from upstream allowing to build with OpenSSL 3.0.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 18:15:21 +0000 (15:15 -0300)]
umurmur: fix compilation with OpenSSL 3.0
Remove a call to CRYPTO_mem_ctrl(), which is used only for debugging,
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 18:05:30 +0000 (15:05 -0300)]
squid: bump to release 5.7
This is the latest version and brings compatibility with OpenSSL 3.0.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 16:40:16 +0000 (13:40 -0300)]
nsd: bump to 4.6.1
This version adds compatibility with OpenSSL 3.0.
There's a patch, submitted upstream, to fix building without SSL.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 14:25:47 +0000 (11:25 -0300)]
nginx-util: allow building with OpenSSL 3.0
Add -Wno-error=deprecated-declarations to CFLAGS to allow usage of
deprecated API.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Eneas U de Queiroz [Thu, 9 Feb 2023 13:52:59 +0000 (10:52 -0300)]
gost_engine: add version 3.0.0.1
With OpenSSL soon to be updated to 3.0, the gost engine will have to be
bumped as well. Gost 3.0.0.1 will not build with OpenSSL 1.1.
To avoid disruption, this commit detects the OpenSSL version from
ENGINES_DIR in include/openssl-engin, and sets the package version
accordingly.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Tianling Shen [Sat, 11 Feb 2023 22:43:33 +0000 (06:43 +0800)]
cloudreve: Update to 3.7.1
Dropped architectures that are no longer supported by upstream.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 16 Feb 2023 03:24:46 +0000 (11:24 +0800)]
gg: Update to 0.2.18
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 16 Feb 2023 03:24:29 +0000 (11:24 +0800)]
dnsproxy: Update to 0.47.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Oskari Rauta [Mon, 13 Feb 2023 17:36:31 +0000 (17:36 +0000)]
conmon: update to 2.1.6
Bug fixes
- Fix OOM watcher for cgroupv2 oom_kill events
Misc
- Use --detach instead of -d
- ctrl: drop fifo perms to 0660
[Release notes](https://github.com/containers/conmon/releases/tag/v2.1.6)
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Hannu Nyman [Wed, 15 Feb 2023 21:07:53 +0000 (23:07 +0200)]
irqbalance: Add upstream fix for AARCH64 irq name parsing
Add upstream fix for AARCH64 irq name parsing.
> On arm64 SoCs like TI's K3 SoC and few other SoCs,
> IRQ names don't get parsed correct due to which they
> end up being classified into wrong class. Fix this by
> considering last token to contain IRQ name always.
The fix seems to enable e.g. RT3200 to notice a few more
interrupts and start balancing them.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Dirk Brenken [Wed, 15 Feb 2023 20:15:20 +0000 (21:15 +0100)]
adblock: update 4.1.5-5
* adapted changed oisd namings / download locations
oisd_big (old: oisd_full), oisd_small (old: oisdb_basic)
* added antipopads as new sources
* removed broken energized source
* fixed readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
Florian Eckert [Wed, 15 Feb 2023 08:35:59 +0000 (09:35 +0100)]
Merge pull request #20481 from ttytyper/hamlib-init-config
hamlib: Added init script and config files
Daniel Golle [Wed, 15 Feb 2023 04:04:12 +0000 (04:04 +0000)]
uvol: switch to /sys/class/ubi
Instead of /sys/devices/virtual/ubi which will no longer be available
in future kernels, switch to /sys/class/ubi.
While at it fix unrelated arithmetic syntax error by guarding the
affected expression to not run on an empty string.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Josef Schlehofer [Tue, 14 Feb 2023 17:01:57 +0000 (18:01 +0100)]
Merge pull request #20425 from autobakterie/flask_jinja_update_maintainer
Flask, Jinja2: update maintainer
Šimon Bořek [Tue, 31 Jan 2023 15:01:57 +0000 (16:01 +0100)]
Jinja2: pass maintainership to Michal Vasílek
Signed-off-by: Šimon Bořek <simon.borek@nic.cz>
Šimon Bořek [Tue, 31 Jan 2023 14:48:23 +0000 (15:48 +0100)]
Flask: pass maintainership to Michal Vasílek
Signed-off-by: Šimon Bořek <simon.borek@nic.cz>
Šimon Bořek [Wed, 1 Feb 2023 19:06:49 +0000 (20:06 +0100)]
Jinja2: get rid of deprecated AUTORELEASE
Signed-off-by: Šimon Bořek <simon.borek@nic.cz>
Šimon Bořek [Wed, 1 Feb 2023 19:18:43 +0000 (20:18 +0100)]
Flask: get rid of deprecated AUTORELEASE
Signed-off-by: Šimon Bořek <simon.borek@nic.cz>
Jesper Henriksen [Mon, 13 Feb 2023 20:23:43 +0000 (21:23 +0100)]
hamlib: Added newline at end of init script and config
Signed-off-by: Jesper Henriksen <mail-openwrt@jesper.io>
Salim B [Sun, 12 Feb 2023 21:20:00 +0000 (22:20 +0100)]
transmission: retrieve boolean config opts using `config_get_bool`
The tranmission UCI config options
- `config_overwrite`
- `incomplete_dir_enabled`
- `watch_dir_enabled`
are all booleans, so we have to retrieve them using `config_get_bool` in order
to make sure they are properly interpreted in case the user sets them to a
keyword (`true`/`false`, `on`/`off` etc.) and not an integer (`0`/`1`).
Signed-off-by: Salim B <git@salim.space>
Tom Stöveken [Thu, 9 Feb 2023 06:36:08 +0000 (07:36 +0100)]
restic: update to 0.15.1
Maintainer: Tom Stöveken <tom@naaa.de>
Compile tested: SDK for OpenWrt 22.03.3
Run tested: x86/64 @ Intel(R) Celeron(R) CPU N3160 @ 1.60GHz, OpenWrt 22.03.3
Description:
Updated to version 0.15.1
changed PKG_RELEASE:=2 due to deprecated value AUTORELEASE, squashed commits and then
changed PKG_RELEASE:=1 because upgrading the whole main PKG_VERSION (the major version item) should reset this to 1
Signed-off-by: Tom Stöveken <tom@naaa.de>
Jesper Henriksen [Sun, 12 Feb 2023 13:29:39 +0000 (14:29 +0100)]
hamlib: Added init and config files
Signed-off-by: Jesper Henriksen <mail-openwrt@jesper.io>
Javier Marcet [Tue, 7 Feb 2023 12:52:28 +0000 (13:52 +0100)]
python-websocket-client: update to 1.5.1
- 1.5.1
- Fix logic bug that can cause disconnects
- 1.5.0
- Refactor and improve ping/pong logic to resolve several issues,
including an infinite loop issue during reconnect
- Fix issue where `skip_utf8_validation = True` is ignored
- Fix issue where sslopt `is_ssl` is ignored
- Downgrade "websocket connected" message from logging.warning to
logging.info
- Update github actions to newer versions (
669fe1b)
Signed-off-by: Javier Marcet <javier@marcet.info>
Jesper Henriksen [Fri, 10 Feb 2023 21:19:09 +0000 (22:19 +0100)]
hamlib: update to 4.5.4
Signed-off-by: Jesper Henriksen <mail-openwrt@jesper.io>
Ralf Kaiser [Sun, 3 Jul 2022 20:46:28 +0000 (22:46 +0200)]
gsocket: upstream update to 1.4.39
Signed-off-by: Ralf Kaiser <skyper@thc.org>
Javier Marcet [Thu, 9 Feb 2023 09:07:28 +0000 (10:07 +0100)]
docker-compose: Update to version 2.16.0
Signed-off-by: Javier Marcet <javier@marcet.info>
Josef Schlehofer [Fri, 10 Feb 2023 15:44:05 +0000 (16:44 +0100)]
Merge pull request #20349 from turris-cz/unbound-1171
unbound: update to version 1.17.1
Josef Schlehofer [Tue, 17 Jan 2023 23:01:42 +0000 (00:01 +0100)]
unbound: update to version 1.17.1
- Refreshed one patch
- Removed deprecated AUTORELEASE
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Van Waholtz [Mon, 12 Dec 2022 13:59:43 +0000 (21:59 +0800)]
sing-box: add new package
Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
Tianling Shen [Thu, 9 Feb 2023 23:28:10 +0000 (07:28 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 9 Feb 2023 23:29:19 +0000 (07:29 +0800)]
v2ray-core: Update to 5.3.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 9 Feb 2023 23:28:57 +0000 (07:28 +0800)]
xray-core: Update to 1.7.5
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Thu, 9 Feb 2023 14:35:23 +0000 (22:35 +0800)]
cloudflared: Update to 2023.2.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Michael Heimpold [Thu, 9 Feb 2023 06:35:07 +0000 (07:35 +0100)]
Merge pull request #20460 from mhei/php8-update-8.2.2
php8: update to 8.2.2
Fabian Lipken [Tue, 7 Feb 2023 11:39:19 +0000 (12:39 +0100)]
dnscrypt-proxy2: update to version 2.1.4
Signed-off-by: Fabian Lipken <dynasticorpheus@gmail.com>
Alexandru Ardelean [Tue, 7 Feb 2023 08:18:49 +0000 (10:18 +0200)]
Merge pull request #20443 from commodo/stress-updates
stress/stress-ng: bump versions
Michael Heimpold [Tue, 7 Feb 2023 06:50:18 +0000 (07:50 +0100)]
php8: update to 8.2.2
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Etienne Champetier [Tue, 7 Feb 2023 06:25:07 +0000 (08:25 +0200)]
Merge pull request #20451 from graysky2/htop
htop: update to 3.2.2
Alexandru Ardelean [Sat, 4 Feb 2023 15:58:53 +0000 (17:58 +0200)]
stress: bump to version 1.0.7
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Alexandru Ardelean [Sat, 4 Feb 2023 16:00:23 +0000 (18:00 +0200)]
stress-ng: bump to version 0.15.03
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Alexandru Ardelean [Mon, 6 Feb 2023 09:51:33 +0000 (11:51 +0200)]
Merge pull request #20442 from commodo/python-updates1
python-{chardet,evdev}: bump versions
Alexandru Ardelean [Mon, 6 Feb 2023 09:48:43 +0000 (11:48 +0200)]
Merge pull request #20444 from commodo/sudo
sudo: bump to version 1.9.12p2
Yousong Zhou [Sat, 4 Feb 2023 03:27:43 +0000 (11:27 +0800)]
xl2tpd: bump to version 1.3.18
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
John Audia [Sun, 5 Feb 2023 21:06:21 +0000 (16:06 -0500)]
htop: update to 3.2.2
Build-tested: x86/64
Run-tested: bcm2711/RPi4B
Signed-off-by: John Audia <therealgraysky@proton.me>
Noah Meyerhans [Sun, 5 Feb 2023 17:47:34 +0000 (09:47 -0800)]
bind: bump PKG_RELEASE
Stijn Tintel [Sat, 28 Jan 2023 22:35:52 +0000 (00:35 +0200)]
bind: add option to enable GSSAPI support
Samba4 running as Active Directory Domain Controller with the internal
DNS backend requires the nsupdate binary with GSSAPI support.
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
Rucke Teg [Thu, 2 Feb 2023 20:37:34 +0000 (21:37 +0100)]
bind: bump release number
Signed-off-by: Rucke Teg <rucketeg@protonmail.com>
Rucke Teg [Thu, 2 Feb 2023 19:59:07 +0000 (20:59 +0100)]
bind: Fix ipv6 detection logic
Bug was introduced in
a7b770eec4370087a5ccd27887386dac9266214e and
results in bind always stating with the `-4` flag.
Signed-off-by: Rucke Teg <rucketeg@protonmail.com>
Stan Grishin [Sun, 5 Feb 2023 05:47:20 +0000 (22:47 -0700)]
Merge pull request #20446 from stangri/master-simple-adblock
simple-adblock: update to 1.9.3-7
Stan Grishin [Sat, 4 Feb 2023 22:34:53 +0000 (22:34 +0000)]
simple-adblock: update to 1.9.3-7
* add boot() function which waits for network.interface to come up
* switch oisd.nl hosts entry to domains
* remove erroneous oisd substitution from config-update file
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Alexandru Ardelean [Sat, 4 Feb 2023 16:47:00 +0000 (18:47 +0200)]
sudo: bump to version 1.9.12p2
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Alexandru Ardelean [Sat, 4 Feb 2023 15:22:31 +0000 (17:22 +0200)]
python-evdev: bump to version 1.6.1
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Alexandru Ardelean [Wed, 14 Dec 2022 14:10:31 +0000 (16:10 +0200)]
python-chardet: bump to version 5.1.0
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Oskari Rauta [Wed, 1 Feb 2023 07:13:44 +0000 (07:13 +0000)]
tailscale: update to 1.36.0
- Update tailscale to version 1.36.0
- Patch iptables support
Tailscale does not (yet) support nftables.
Tailscale allows running with --netfilter=off allowing
end-user to create his own firewall rules, but this
affects only tailscale cli, not tailscaled daemon, so
connection cannot be made without error telling that
tailscaled was unable to determine execute iptables
for determining it's version.
There is a work-around for those who do not want
nft-iptables compatibility package; they can create
a script to /usr/bin/iptables which responds to
--version argument and echos fake version string
and on any other arguments or no arguments, just exits.
After this procedure and starting tailscale cli with
netfilter off- it works. Openwrt has moved on to
nftables, so iptables manipulation seems unnecessary.
Especially for other reasons, on Openwrt, firewall
should be configured on it's own, because firewall
rules made by other software, such as tailscale,
loose their firewalling rules when firewall restarts.
So I patched it to allow "fake" iptables pointing
to executable /bin/false and ignoring version
request. And I also set cli to default to
netfilter off setting.
If still end-user wants to use iptables, this
patch does not make it impossible; just install
iptables, or nft-iptables, and run tailscale
with argument --netfilter=on and it works out
as it did before, tailscaled daemon still
matches with iptables if it is found in $PATH.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Peter van Dijk [Tue, 31 Jan 2023 15:54:23 +0000 (16:54 +0100)]
pdns-recursor: update to 4.8.2
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
Sibren Vasse [Fri, 3 Feb 2023 13:42:23 +0000 (14:42 +0100)]
openssh: actually build openssh-server-pam with pam support
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
Sibren Vasse [Thu, 2 Feb 2023 20:52:14 +0000 (21:52 +0100)]
openssh: update to 9.2p1
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
projects / feed / packages.git / log