Nick Hainke [Sun, 9 Jan 2022 09:04:48 +0000 (10:04 +0100)]
wg-installer: add cleanup script
Add script to cleanup unused wireguard interfaces.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
714b51c6309e4abc7c000bb9250119104fc2757a)
Nick Hainke [Thu, 6 Jan 2022 23:22:00 +0000 (00:22 +0100)]
wg-installer: add ipv4 support
Add base_v4prefix to allow ipv4 mesh connections.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
98d8680a8c26adfba431da008c9a76ff85786390)
Jonathan G. Underwood [Sun, 13 Jun 2021 14:10:40 +0000 (15:10 +0100)]
getdns: remove maintainer
Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>
(cherry picked from commit
4a241581ab1cbd6679ca64c401e8cc0c00b88c45)
Rui Salvaterra [Tue, 8 Jun 2021 16:16:19 +0000 (17:16 +0100)]
getdns: bump to 1.7.0
Remove obsolete patches.
Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
(cherry picked from commit
0261cd097226b7b8aca0c3053b69763ea4b4815c)
Josef Schlehofer [Thu, 6 Jan 2022 22:16:27 +0000 (23:16 +0100)]
Merge pull request #17504 from jefferyto/radicale2-2.1.12-openwrt-21.02
[openwrt-21.02] radicale2: Update to 2.1.12
Josef Schlehofer [Thu, 6 Jan 2022 22:16:24 +0000 (23:16 +0100)]
Merge pull request #17503 from jefferyto/radicale-1.1.7-openwrt-21.02
[openwrt-21.02] radicale: Update to 1.1.7
Nick Hainke [Thu, 6 Jan 2022 21:03:18 +0000 (22:03 +0100)]
wg-installer: add hotplug script for olsr
Add hotplug-olsrd to automatically mesh with olsrd via new wireguard
links.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
d35c22951bfabb9b34133471fe1e389909d2007b)
Jeffery To [Wed, 5 Jan 2022 11:23:55 +0000 (19:23 +0800)]
radicale2: Update to 2.1.12
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
b37f409146d3e5e70dec5a2bb347c6b01e90aa05)
Jeffery To [Wed, 5 Jan 2022 10:48:17 +0000 (18:48 +0800)]
radicale: Update to 1.1.7
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
8d0018f54953e4821312e8ca2a0dc562bb7c087c)
Rosen Penev [Mon, 3 Jan 2022 01:53:59 +0000 (17:53 -0800)]
inadyn: update to 2.9.1
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
b434cd71b950185cbf57308466eb0e3473ba484e)
Josef Schlehofer [Wed, 29 Dec 2021 17:35:09 +0000 (18:35 +0100)]
Merge pull request #17447 from jefferyto/golang-1.17.5-openwrt-21.02
[openwrt-21.02] golang: Update to 1.17.5, add patch
Florian Eckert [Wed, 22 Dec 2021 08:23:05 +0000 (09:23 +0100)]
mwan3: fix mwan3 flush conntrack table call
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
e1f321150d14aaabfe8b6468bc4c8401d2fffc6d)
Jeffery To [Tue, 28 Dec 2021 07:00:09 +0000 (15:00 +0800)]
golang: Update to 1.17.5, add patch
Includes fixes for:
* CVE-2021-44716: unbounded growth of HTTP/2 header canonicalization
cache
* CVE-2021-44717: syscall.ForkExec error can close file descriptor 0
Added patches:
* 001-cmd-link-use-gold-on-ARM-ARM64-only-if-gold-is-available.patch:
https://github.com/golang/go/pull/49748 backported for Go 1.17,
this removes the requirement for the gold linker when building Go
programs that use Go plugins on arm/arm64
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
eac2e91a285e9df119ce1aac0f4fe340cc54a6e4)
Hiếu Lê [Tue, 21 Dec 2021 16:22:57 +0000 (10:22 -0600)]
adguardhome: update to 0.107.0
Full changelog available at: https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.0
packr has been removed from build dependencies, per
https://github.com/AdguardTeam/AdGuardHome/commit/
c6888326b034daea9e69de5ee0a8f37aede45892#diff-2873f79a86c0d8b3335cd7731b0ecf7dd4301eb19a82ef7a1cba7589b5252261L2
Also added the ability to configure working directory location and moved
the directory to /var. On most setups this should not change anything,
as /var is symlinked to /tmp. The move mostly benefits setups where /var
is configured to be persistent.
The working directory is used by AdGuard to store persistent data like
query logs, filter lists, etc.
Data stored in this directory can get really huge, as such allowing
this directory to be moved elsewhere (ie. an USB drive) is very
beneficial.
Fixes: #17437
Co-authored-by: Dobroslaw Kijowski <dobo90@gmail.com>
Co-authored-by: Jeffery To <jeffery.to@gmail.com>
Signed-off-by: Hiếu Lê <leorize+oss@disroot.org>
(cherry picked from commit
f44603a131ef54bbfb2836ef942d0276da427881)
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
[Added fixes in the commit message]
Josef Schlehofer [Mon, 27 Dec 2021 08:30:10 +0000 (09:30 +0100)]
Merge pull request #17439 from
1715173329/xr-2102
[openwrt-21.02] xray-core: Update to 1.5.2
Josef Schlehofer [Mon, 27 Dec 2021 08:30:01 +0000 (09:30 +0100)]
Merge pull request #17438 from
1715173329/yq21
[openwrt-21.02] yq: Update to 4.16.2
Tianling Shen [Fri, 24 Dec 2021 15:12:16 +0000 (23:12 +0800)]
xray-core: Update to 1.5.2
Removed upstreamed patches.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
418e59356b2517a0c28aae283dacf20aaafffc77)
Tianling Shen [Mon, 20 Dec 2021 13:07:44 +0000 (21:07 +0800)]
xray-core: Update to 1.5.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
6d56c80ff917ed3ef1a55bba0c01f739acb04be6)
Tianling Shen [Fri, 24 Dec 2021 15:17:12 +0000 (23:17 +0800)]
yq: Update to 4.16.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
c47425fe2965c4424331d2060ae1f73c6a8736e9)
Dirk Brenken [Wed, 22 Dec 2021 12:19:40 +0000 (13:19 +0100)]
adblock: 4.1.3-4
* fix backup dir creation in raw mode
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
25dd0c63affd278a6be88629cc20bd3c66586ca8)
Alexandru Ardelean [Mon, 20 Dec 2021 08:13:17 +0000 (10:13 +0200)]
python-lxml: update to version 4.6.5
Fixes: CVE-2021-43818
https://nvd.nist.gov/vuln/detail/CVE-2021-43818
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Michael Heimpold [Tue, 21 Dec 2021 09:49:02 +0000 (10:49 +0100)]
Merge pull request #17405 from mhei/21.02-php8-update
[21.02] php8: update to 8.0.14
Michael Heimpold [Mon, 20 Dec 2021 15:44:29 +0000 (16:44 +0100)]
php8: update to 8.0.14
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Alexandru Ardelean [Mon, 20 Dec 2021 11:04:59 +0000 (13:04 +0200)]
Merge pull request #17400 from jefferyto/remove-commodo-openwrt-21.02
[openwrt-21.02] python-packages/seafile: Remove commodo as maintainer
Alexandru Ardelean [Mon, 17 May 2021 07:40:56 +0000 (10:40 +0300)]
seafile: remove myself as maintainer of these packages
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit
1e27dd7f8ff23515da5348a7029660aa33a48907)
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Alexandru Ardelean [Tue, 23 Nov 2021 11:14:42 +0000 (13:14 +0200)]
python-packages: remove myself as maintainer
There's been a bit of overlapping opinions on some of these packages.
The best thing to do here is to reduce ownership and relinquish my
control.
This patch does that.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit
48ce6e48b617ee72e40220e6ab6b7ceaa079a192)
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Kerma Gérald [Sun, 12 Dec 2021 17:04:38 +0000 (18:04 +0100)]
crowdsec-firewall-bouncer: update to 0.0.18
Update to upstream release 0.0.18
(cherry picked from commit
515f8489cc77bfbd0e9925599713a3f4843e6e3a)
Signed-off-by: Kerma Gérald <gandalf@gk2.net>
Michael Heimpold [Sat, 18 Dec 2021 09:08:59 +0000 (10:08 +0100)]
Merge pull request #17356 from mhei/21.02-php7-update
[21.02] php7: update to 7.4.27
Michael Heimpold [Thu, 16 Dec 2021 20:59:52 +0000 (21:59 +0100)]
php7: update to 7.4.27
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Hannu Nyman [Wed, 15 Dec 2021 17:55:36 +0000 (19:55 +0200)]
nano: update to version 6.0
Update nano editor to version 6.0
Version 6.0 enable toggling the display of the line numbers with
the shortcut key M-N (Alt-n). Also the cmdline option "-l" works.
Remove earlier patch regarding that.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
0571f5400dfc1120b161df988f7bd8c836f33e8a)
Florian Eckert [Tue, 14 Dec 2021 07:55:26 +0000 (08:55 +0100)]
libqmi: fix missing CONFIG_ prefix
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
43a0f68940f1a2709273fa630f12be5467c426c7)
Eric Luehrsen [Mon, 6 Dec 2021 03:24:34 +0000 (22:24 -0500)]
ldns: update to 1.8.1
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
(cherry picked from commit
7594e8581a200f6fd20fcba29672af54c4591111)
Eric Luehrsen [Fri, 10 Dec 2021 07:01:49 +0000 (02:01 -0500)]
unbound: update to 1.14.0
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
John Audia [Fri, 10 Dec 2021 16:57:34 +0000 (18:57 +0200)]
htop: update to 3.1.2-1
Build-tested: x86/64
Run-tested: bcm2711/RPi4B
Signed-off-by: John Audia <graysky@archlinux.us>
(cherry picked from commit
3b041e3b458889d7dbef72e1d49b102f193bf5c7)
Etienne Champetier [Fri, 10 Dec 2021 16:57:10 +0000 (18:57 +0200)]
htop: explicitly disable some build options
Since 3.1.0 delayacct option is enabled if the needed dependencies
are detected, it was previously disabled.
Sensors also check for dependency so we need to explicitly
disable it when not enabled.
Fixes
5f916720551ad5ea5ac86cf5e122fc2c0c34cc15
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit
253e3f558c9d5d6ee43a7e870ef60f8a1c0c80c7)
Hannu Nyman [Fri, 10 Dec 2021 16:56:55 +0000 (18:56 +0200)]
htop: update to 3.1.0
Update htop to versio 3.1.0
* Adjust Makefile configuration options to update
* Avoid libcap dependency
* Backport post-release fix for old automake
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
5f916720551ad5ea5ac86cf5e122fc2c0c34cc15)
Josef Schlehofer [Fri, 10 Dec 2021 13:29:15 +0000 (14:29 +0100)]
Merge pull request #17299 from nxhack/2102_node_14182
[21.02] node: bump to 14.18.2
Hirokazu MORIKAWA [Fri, 10 Dec 2021 11:27:30 +0000 (20:27 +0900)]
node: bump to 14.18.2
Update to v14.18.2
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Josef Schlehofer [Fri, 10 Dec 2021 10:20:41 +0000 (11:20 +0100)]
Merge pull request #17270 from BKPepe/update-python3
python3: update to version 3.9.9
Josef Schlehofer [Tue, 7 Dec 2021 21:51:43 +0000 (22:51 +0100)]
hwdata: update to version 0.354
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
20a759a6ddf9f24ee1ca5128a10cfd95eabad771)
Josef Schlehofer [Wed, 11 Aug 2021 08:11:05 +0000 (10:11 +0200)]
python-babel: update to version 2.9.1
Changelog:
https://github.com/python-babel/babel/releases/tag/v2.9.1
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
e2932db1ce45e1882b6935694a46c3a3b7e8536f)
Josef Schlehofer [Sun, 11 Apr 2021 23:05:21 +0000 (01:05 +0200)]
python-babel: update to version 2.9.0
Update copyright
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
a31dc44d2dd8cae498135b2994a7a117bc4c6e2d)
Jan Hák [Mon, 8 Nov 2021 09:43:16 +0000 (10:43 +0100)]
knot: update to 3.1.4
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit
60a80b31fbf3585d52b64ab0b9bf5a4aa844a032)
Eneas U de Queiroz [Mon, 25 Oct 2021 21:10:01 +0000 (18:10 -0300)]
gnutls: don't run aclocal --install
Remove the --install parameter when running aclocal. The --install
argument is used to copy third-party files to the first -I directory.
gnutls has -I m4 first, which would copy files to its local build
directory. However, openwrt prepends the staging dir m4 directory,
causing aclocal --install to copy an old definition of
ax_code_coverage.m4 into the staging dir.
If strace is built after gnutls, compilation will fail:
Makefile:9303: *** missing separator. Stop.
The version of ax_code_coverage.m4 that gets installed does not define
@CODE_COVERAGE_RULES@.
Removing the --install parameter in gnutls solves the issue.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
206eaae16520f5e89af5219cf574fa649e64d7e1)
Noah Meyerhans [Thu, 18 Nov 2021 23:55:57 +0000 (15:55 -0800)]
bind: bump to 9.17.20
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
(cherry picked from commit
249079187dd6a3a21ec62b275782d13f546b5e26)
Josef Schlehofer [Tue, 7 Dec 2021 09:48:23 +0000 (10:48 +0100)]
knot-resolver: update to version 5.4.3
Release notes:
https://www.knot-resolver.cz/2021-12-01-knot-resolver-5.4.3.html
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
10ab2306702c5292f98a43cf5a1dfc0b7ab99c27)
Tianling Shen [Sun, 5 Dec 2021 21:01:17 +0000 (05:01 +0800)]
yq: Update to 4.16.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
0f46facfdba667473ffb57fbda31a145f644af48)
Josef Schlehofer [Sat, 4 Dec 2021 22:15:27 +0000 (23:15 +0100)]
python3: update to version 3.9.9
- Updated setuptools and pip
- Refreshed patches
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Josef Schlehofer [Tue, 30 Nov 2021 23:32:56 +0000 (00:32 +0100)]
msmtp: update to version 1.8.1.9
Changelog:
https://marlam.de/msmtp/news/msmtp-1-8-19/
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
173faad3340772e1b2194c618fb8c1f13f81b9a9)
Stan Grishin [Fri, 3 Dec 2021 19:16:20 +0000 (11:16 -0800)]
Merge pull request #17259 from rs/nextdns-1.37.7-openwrt-21.02
[21.02] nextdns: Update to version 1.37.7
Michal Hrusecky [Sat, 30 Oct 2021 21:53:58 +0000 (23:53 +0200)]
mariadb: Create compatibility symlinks
For every mysql* binary create corresponding mariadb binary and vice
versa.
Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
(cherry picked from commit
2295c351ed826d26778b42888d6f54744e0133f5)
Michal Hrusecky [Sat, 30 Oct 2021 21:47:07 +0000 (23:47 +0200)]
mariadb: Install all supporting sql files
Do not pick just few random SQL files to install, install all of them.
Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
(cherry picked from commit
4653d83048b24bc49c26c23b34dc74e8627544fe)
Michal Hrusecky [Sat, 30 Oct 2021 18:41:15 +0000 (20:41 +0200)]
mariadb: Tweak default configuration
Remove from default configuration options that are compiled in like
default paths and character set. On the other hand add few examples of
tweak options that might be handy.
Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
(cherry picked from commit
a2c1a5728285ad974aaf1160438fc61f6885603d)
Michal Hrusecky [Fri, 29 Oct 2021 14:55:47 +0000 (16:55 +0200)]
mariadb: Init script improvements
Update init script so other user/group can be used. Also make sure that
init script can actually create an empty database instead of forcing the
user to do it by hand. Other new feature is taking care of migration
of the database when upgrading the database.
Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
(cherry picked from commit
1be35284bb524c43a4e9448c5ead215fc3052efb)
Michal Hrusecky [Fri, 29 Oct 2021 14:46:44 +0000 (16:46 +0200)]
mariadb-common: Drop package and adjust configuration
The raison d'être of package mariadb-common was to provide common my.cnf
config file that was being used to include subdirectories and then to
push utf-8 as default everywhere. Let's make this file part of the
server package as there we actually set other options as well and drop
it from all clients. Instead let's set utf-8 as default in server,
client and client libraries. While at it also set socket to the more
common path and drop mysqld_safe script from the list of configuration
files and do other minor tweaks.
Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
(cherry picked from commit
d8ecded02d29e04fe5b0399de2474605fb6d9897)
Olivier Poitrey [Thu, 2 Dec 2021 23:46:52 +0000 (23:46 +0000)]
nextdns: Update to version 1.37.7
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Stan Grishin [Thu, 2 Dec 2021 20:43:27 +0000 (12:43 -0800)]
Merge pull request #17254 from rs/nextdns-1.37.6-openwrt-21.02
[21.02] nextdns: Update to version 1.37.6
Olivier Poitrey [Thu, 2 Dec 2021 15:03:49 +0000 (15:03 +0000)]
nextdns: Update to version 1.37.6
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Josef Schlehofer [Tue, 16 Nov 2021 13:22:44 +0000 (14:22 +0100)]
syslog-ng: update to version 3.35.1
Also bump the version in syslog-ng config file.
Removes this warning:
Nov 16 14:19:41 turris syslog-ng[15159]: WARNING: Configuration file format is too old, syslog-ng is running in compatibility mode. Please update it to use the syslog-ng 3.35 format at your time of convenience. To upgrade the configuration, please review the warnings about incompatible changes printed by syslog-ng, and once completed change the @version header at the top of the configuration file; config-version='3.33'
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
2d2fd36e28a40a63b1bd16c77cce57d446d656cc)
George Iv [Fri, 19 Nov 2021 10:25:57 +0000 (10:25 +0000)]
yggdrasil: bump to 0.4.2
Signed-off-by: George Iv <zhoreeq@users.noreply.github.com>
William Fleurant [Wed, 18 Aug 2021 19:21:51 +0000 (21:21 +0200)]
yggdrasil: uci ifname is now known as device
Signed-off-by: William Fleurant <meshnet@protonmail.com>
Stan Grishin [Tue, 30 Nov 2021 16:22:14 +0000 (08:22 -0800)]
Merge pull request #17241 from rs/nextdns-1.37.5-openwrt-21.02
[21.02] nextdns: Update to version 1.37.5
Olivier Poitrey [Tue, 30 Nov 2021 16:10:25 +0000 (16:10 +0000)]
nextdns: Update to version 1.37.5
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Peter Gransdorfer [Sun, 31 Oct 2021 21:58:43 +0000 (22:58 +0100)]
ddns-scripts: use HTTPS for spdyn
Signed-off-by: Peter Gransdorfer <peter.gransdorfer@cattronix.com>
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
- PKG_RELEASE number updated
(cherry picked from commit
c0296bf25da7a4832059d0a708431aef4c5f3238)
Stan Grishin [Mon, 29 Nov 2021 10:00:11 +0000 (02:00 -0800)]
Merge pull request #17233 from stangri/openwrt-21.02
[21.02] curl: update to 7.80.0
Hirokazu MORIKAWA [Tue, 2 Nov 2021 00:14:00 +0000 (09:14 +0900)]
icu: bump to 70.1
ICU 70 released. It updates to Unicode 14, including new characters, scripts, emoji, and corresponding API constants. ICU 70 adds support for emoji properties of strings. It also updates to CLDR 40 locale data with many additions and corrections. ICU 70 also includes many other bug fixes and enhancements, especially for measurement unit formatting, and it can now be built and used with C++20 compilers.
This change will require minor modifications in php7 and php8.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Stan Grishin [Fri, 12 Nov 2021 19:49:36 +0000 (19:49 +0000)]
curl: update to 7.80.0
* bump version to 7.80.0
* update maintainer email address
Signed-off-by: Stan Grishin <stangri@melmac.net>
(cherry picked from commit
80ef61729b18c28b76a1ee64d7af7251031a2496)
Stan Grishin [Mon, 29 Nov 2021 09:22:42 +0000 (01:22 -0800)]
Merge pull request #17162 from stangri/openwrt-21.02
[21.02] nebula: update to 1.5.0
Tianling Shen [Thu, 25 Nov 2021 11:34:03 +0000 (19:34 +0800)]
yq: Update to 4.15.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
63f95db55e38d53947bfe871292f81aa15ac5936)
Kerma Gérald [Mon, 22 Nov 2021 18:10:41 +0000 (19:10 +0100)]
crowdsec: update to 1.2.1
crowdsec-firewall-boucer: update to 0.0.16
Signed-off-by: Kerma Gérald <gandalf@gk2.net>
(cherry picked from commit
2861370567bde7d426a5dda2b41cda321d050f5f)
Signed-off-by: Kerma Gérald <gandalf@gk2.net>
Alexandru Ardelean [Tue, 23 Nov 2021 11:35:32 +0000 (13:35 +0200)]
Merge pull request #17155 from jefferyto/golang-1.17.3-openwrt-21.02
[openwrt-21.02] golang: Update to 1.17.3
Gerard Ryan [Mon, 22 Nov 2021 11:20:55 +0000 (21:20 +1000)]
docker: Update to 20.10.11
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Mon, 22 Nov 2021 11:20:35 +0000 (21:20 +1000)]
dockerd: Update to 20.10.11
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Mon, 22 Nov 2021 11:19:40 +0000 (21:19 +1000)]
containerd: Update to 1.4.12
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Nick Hainke [Thu, 18 Nov 2021 06:44:32 +0000 (07:44 +0100)]
conntrack-tools: import patch to fix cache
As written in the commit message:
Depending on your conntrackd configuration, events might get lost,
leaving stuck entries in the cache forever. Skip checking the conntrack
ID to allow for lazy cleanup by when a new entry that is represented by
the same tuple is added.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
da619f19f436bc95acd07c0d7aca772328cc5895)
Tao Gong [Tue, 20 Apr 2021 22:46:28 +0000 (22:46 +0000)]
conntrack-tools: add a patch to fix endianness issue
Signed-off-by: Tao Gong <gongtao0607@gmail.com>
(cherry picked from commit
f62c15f92d4c8c6eabedf512efd5b2ebbca4b44d)
Michael Heimpold [Sun, 21 Nov 2021 10:39:11 +0000 (11:39 +0100)]
Merge pull request #17170 from mhei/21.02-php7-update
[21.02] php7: update to 7.4.26
Michael Heimpold [Sun, 21 Nov 2021 10:39:00 +0000 (11:39 +0100)]
Merge pull request #17169 from mhei/21.02-php8-update
[21.02] php8: update to 8.0.13
Michael Heimpold [Sat, 20 Nov 2021 11:57:08 +0000 (12:57 +0100)]
php8: update to 8.0.13
This fixes:
- CVE-2021-21707
Also drop upstream patch which is included in the release now.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
2e9c1a00ea85a927accad4e0814f67240881d0d4)
Michael Heimpold [Sat, 20 Nov 2021 11:55:27 +0000 (12:55 +0100)]
php7: update to 7.4.26
This fixes:
- CVE-2021-21707
Also drop upstream patch which is included in the release now.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
c6f27671a303dad64cb7429377ffddb67760ba6a)
Josef Schlehofer [Sat, 20 Nov 2021 14:47:07 +0000 (16:47 +0200)]
rosy-file-server: drop this package
Reasons to drop this package:
a) this package depends on luci-app-rosy-file-server
Unfortunately, it was marked as broken as it is unmaintained.
See: https://github.com/openwrt/luci/commit/
34b682afac310859f0d4696110d8a1af60f16c04
b) maintainer is inactive
c) rosinson website does not seem to be working
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
f1893a426a815a667786385e083e8385f7622524)
Stan Grishin [Fri, 19 Nov 2021 17:30:58 +0000 (17:30 +0000)]
nebula: update to 1.5.0
* update binaries to version 1.5.0 (thanks @jefferyto)
* update maintainer's email address
Signed-off-by: Stan Grishin <stangri@melmac.ca>
(cherry picked from commit
1421440174b80b7f9e9562217aa3951c6688839e)
Stan Grishin [Fri, 19 Nov 2021 17:49:55 +0000 (09:49 -0800)]
Merge pull request #17159 from rs/nextdns-1.37.4-openwrt-21.02
[21.02] nextdns: Update to version 1.37.4
Olivier Poitrey [Fri, 19 Nov 2021 17:34:52 +0000 (17:34 +0000)]
nextdns: Update to version 1.37.4
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Jeffery To [Thu, 18 Nov 2021 19:40:17 +0000 (03:40 +0800)]
golang: Update to 1.17.3
Contains fixes for:
* CVE-2021-41771: ImportedSymbols in debug/macho (for Open or OpenFat)
accesses a memory location after the end of a buffer
* CVE-2021-41772: archive/zip Reader.Open panic via a crafted ZIP
archive containing an invalid name or an empty filename field
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
901f80aae7d14b48e1ff94b59ef03eeeae7b0900)
Paul Spooren [Thu, 26 Aug 2021 08:41:35 +0000 (22:41 -1000)]
auc: remove superfluous variables
Remove parsing of data which is not used within `auc`. Later iterations
may use these but they can be gradually added whenever needed.
Also remove HTTP code handling of error codes no longer used by the
backend. Early iterations of the server where infinitely complex to
figure out created images and announce them to clients but ever since
everything is stored in JSON, things got better (aka simpler).
If a package is missing on the upstream server, color it in red.
Signed-off-by: Paul Spooren <mail@aparcar.org>
(cherry picked from commit
6527d65b9bff5f01a67c3d8b1bd0da5f026960aa)
Paul Spooren [Fri, 24 Sep 2021 00:18:44 +0000 (14:18 -1000)]
auc: use /json/v1/
Currently `auc` uses the outdated /json/ path, this commit uses
/json/v1/ to be more future proof.
Signed-off-by: Paul Spooren <mail@aparcar.org>
(cherry picked from commit
69b5c289298762ff50783ec81dd67f888a53452b)
Daniel Golle [Tue, 31 Aug 2021 16:41:40 +0000 (17:41 +0100)]
auc: fix some minor issues
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
51f9df5b92dd79e739db00f627f0fef584d7e9e2)
Tianling Shen [Mon, 25 Oct 2021 11:59:49 +0000 (19:59 +0800)]
rclone: Update to 1.57.0
- Disabled unused plugins and re-enabled CGO.
- Fixed test script
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
f712dc311e7c9b76b324e826f85eb2a5dfe33e62)
Tianling Shen [Sun, 14 Nov 2021 07:21:06 +0000 (15:21 +0800)]
yq: Update to 4.14.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
8eab3a2bf2b31dfd3090443e70619ba002f86fdd)
Daniel Golle [Sat, 9 Oct 2021 03:08:28 +0000 (04:08 +0100)]
exim: update to version 4.95
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
40c71110f064ceacb7c44892f55f7f6cb18995ae)
Daniel Golle [Fri, 13 Aug 2021 03:49:18 +0000 (04:49 +0100)]
exim: some clean ups
* use username/group 'exim' instead of mail
* register configuration file
* make sure /usr/lib/exim/lookups exists
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
66a62e2fcfeecd0baed5f597c9f7e5970fd1fd5b)
Daniel Golle [Wed, 11 Aug 2021 22:41:42 +0000 (23:41 +0100)]
exim: add default config and init script, enable lmtp
Ship default configuration /etc/exim/exim.conf as well as
a simple procd init script. Enable building with LMTP for better
integration with dovecot.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
31d12ead78e29837b6eb29d08684f36e8af9ce46)
Daniel Golle [Mon, 10 May 2021 02:17:25 +0000 (03:17 +0100)]
exim: update to version 4.94.2
Several exploitable vulnerabilities in Exim were reported to us and are
fixed.
Local vulnerabilities
- CVE-2020-28007: Link attack in Exim's log directory
- CVE-2020-28008: Assorted attacks in Exim's spool directory
- CVE-2020-28014: Arbitrary PID file creation
- CVE-2020-28011: Heap buffer overflow in queue_run()
- CVE-2020-28010: Heap out-of-bounds write in main()
- CVE-2020-28013: Heap buffer overflow in parse_fix_phrase()
- CVE-2020-28016: Heap out-of-bounds write in parse_fix_phrase()
- CVE-2020-28015: New-line injection into spool header file (local)
- CVE-2020-28012: Missing close-on-exec flag for privileged pipe
- CVE-2020-28009: Integer overflow in get_stdinput()
Remote vulnerabilities
- CVE-2020-28017: Integer overflow in receive_add_recipient()
- CVE-2020-28020: Integer overflow in receive_msg()
- CVE-2020-28023: Out-of-bounds read in smtp_setup_msg()
- CVE-2020-28021: New-line injection into spool header file (remote)
- CVE-2020-28022: Heap out-of-bounds read and write in extract_option()
- CVE-2020-28026: Line truncation and injection in spool_read_header()
- CVE-2020-28019: Failure to reset function pointer after BDAT error
- CVE-2020-28024: Heap buffer underflow in smtp_ungetc()
- CVE-2020-28018: Use-after-free in tls-openssl.c
- CVE-2020-28025: Heap out-of-bounds read in pdkim_finish_bodyhash()
The update to 4.94.2 also integrates a fix for a printf format issue
previously addressed by a local patch which is removed.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
c241cb12bb292e894e45f063f1a8ddb8a627371d)
Rosen Penev [Sat, 20 Mar 2021 21:56:09 +0000 (14:56 -0700)]
exim: fix compilation without deprecated OpenSSL APIs
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
de9c527e9a2e5a3437b884c6f583e9dcbe15f3f8)
Daniel Golle [Sun, 1 Aug 2021 03:05:48 +0000 (04:05 +0100)]
gpgme: update to version 1.16.0
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
e0e5dea89e1dbdc5270861c129144f21f1670eef)
Oskari Rauta [Thu, 4 Nov 2021 22:37:54 +0000 (00:37 +0200)]
podman: update to 3.4.1
A lot of changes since 3.3.1.
Full (long) lists of release notes between
versions are available at
https://github.com/containers/podman/releases
containers.conf updated
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
(cherry picked from commit
3e5761d6cd3142d7d8649dbd4f14f78d43161f24)
Huangbin Zhan [Sun, 24 Oct 2021 10:29:39 +0000 (18:29 +0800)]
podman: fix broken conffiles
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
(cherry picked from commit
e6e770b268bc4b7448a36c0947cdada8cd5b0e17)
W. Michael Petullo [Tue, 7 Sep 2021 01:24:20 +0000 (20:24 -0500)]
podman: update to 3.3.1
Earlier versions of podman did not make use of TMPDIR when running "podman
run ...". Podman's default, /var/tmp, presents a problem to rootless
use since OpenWrt's /var/tmp does not permit writes by non-root users.
Podman 3.3.1 makes full use of TMPDIR.
This is part of an attempt to get rootless podman to work on OpenWrt.
See https://github.com/openwrt/packages/issues/15096.
See also the upstream issue at
https://github.com/containers/podman/issues/10698.
Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry picked from commit
416eced1748859690c9935f483e22d7f389f6451)
W. Michael Petullo [Thu, 17 Jun 2021 03:08:01 +0000 (22:08 -0500)]
podman: change permissions on /usr/share/containers/seccomp.json
Running podman as users other than root seems to require that those
users can read /usr/share/containers/seccomp.json. This change sets the
permissions on that file to match those used on Fedora.
Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry picked from commit
a41556af4f2fb5c79b3a7902b4f3ca3b81644920)