Daniel Golle [Thu, 1 Aug 2024 20:00:00 +0000 (21:00 +0100)]
lvm2: update to version 2.03.35 and libdm 1.02.199
Version 2.03.25 - 12nd July 2024
================================
Utilize more radix_tree instead of dm_hash and btree.
Refactor DM uuid caching from device_mapper directory.
Enhance checking for DM uuid device.
Fix lvm shell command completion on tab key (2.03.24).
Avoid lockd_vg call to lvmlockd for local VGs.
Allow forced change of locktype from none.
Handle OPTIONS defined in /etc/sysconfig/lvmlockd.
Version 2.03.24 - 16th May 2024
===============================
Lvconvert supports VDO options for thin-pool with vdo conversion.
Improve placement to .data.rel.ro and .rodata sections.
Fix support for -y and -W when creating thinpool with vdo.
Bettter support for runtime valgrind detection.
Allow command interruption when communicating with dmeventd.
Fix resize of VDO volume used for thin pool data volume.
Use -Wl,-z,now and -Wl,--as-needed for compilation by default.
Require 3.7 as minimal version for sanlock.
Share code for closing opened desriptors on program startup.
Fix memleak in lvmcache.
Add configure --with-default-event-activation=ON setting.
Fix return value from reporter function when hitting internal error.
Skip checking of pools for lvremove and vgremove commands.
VDO modprobes dm-vdo for 6.9 kernel and kvdo for older kernel version.
Fix lvs reporting for VDO volumes with new upstream kernel driver.
Don't import DM_UDEV_DISABLE_OTHER_RULES_FLAG in LVM rules, DM rules cover it.
Fix table line generation for cache snapshots using cachevol.
Enhance lvconvert support for external origins stacking.
When swapping LV names also swap properties like hostname, time and data.
Fix removal of stacked external origins.
Lock filesystem when converting volume to read-only external origin.
Support external origin between different thin-pool.
Improve validation of acceptable volumes for external origins.
Reduce amount of preloaded devices for complex device trees.
Avoid logging problems from monitoring snapshots with inactive origins.
Check for cache policy module presence in kernel's builtin modules file.
Add configure --with-modulesdir to select kernel modules directory.
Support creation of thin-pool with VDO use for its data volume.
libdm:
Version 1.02.199 - 12nd July 2024
=================================
Version 1.02.198 - 16th May 2024
================================
Fix static only compilation of libdevmapper.a and dmsetup tool.
Use better code for closing opened descriptors when starting dmeventd.
Correct dmeventd -R for systemd environment.
Restart of dmeventd -R checks pid file to detect running dmeventd first.
Query with dmeventd -i quickly ends when there is no running dmeventd.
Enhance dm_get_status_raid to handle mismatching status or reported legs.
Create /dev/disk/by-label symlinks for DM devs that have crypto as next layer.
Persist udev db for DM devs on cleanup used in initrd to rootfs transition.
Process synthetic udev events other than 'add/change' as 'change' events.
Increase DM_UDEV_RULES_VSN to 3 to indicate changed udev rules.
Rename DM_NOSCAN to .DM_NOSCAN so it's not stored in udev db.
Rename DM_SUSPENDED to .DM_SUSPENDED so it's not stored in udev db.
Do not import DM_UDEV_DISABLE_OTHER_RULES_FLAG from db in 10-dm-disk.rules.
Test DISK_RO after importing properties from db in 10-dm.rules.
Also import ID_FS_TYPE in 13-dm-disk.rules from db if needed.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Daniel Golle [Thu, 1 Aug 2024 18:57:13 +0000 (19:57 +0100)]
opentracker: update to git HEAD
Most notably opentracker now supported simultanous listening on IPv4 and
IPv6. Hence we no longer need two build variants.
See project git history for details about changes:
https://erdgeist.org/gitweb/opentracker/log/?id=
c854b3db9bf620e86481acfcc9fc31eba64bc8e6
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Aleksey Vasilenko [Thu, 1 Aug 2024 07:18:49 +0000 (10:18 +0300)]
xz: add patch from upstream to fix mips64/octeon build
Fixes https://github.com/openwrt/packages/issues/24699
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Fri, 26 Jul 2024 10:49:26 +0000 (13:49 +0300)]
bottom: update to 0.9.7
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Milinda Brantini [Thu, 1 Aug 2024 03:55:57 +0000 (11:55 +0800)]
dnsproxy: Update to 0.72.2
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Jonas Jelonek [Wed, 31 Jul 2024 08:43:08 +0000 (08:43 +0000)]
croc: update to 10.0.11
Release notes:
10.0.10: https://github.com/schollz/croc/releases/tag/v10.0.10
10.0.11: https://github.com/schollz/croc/releases/tag/v10.0.11
Signed-off-by: Jonas Jelonek <jelonek.jonas@gmail.com>
Jonas Jelonek [Wed, 31 Jul 2024 08:31:43 +0000 (08:31 +0000)]
eza: update to 0.18.23
Release notes:
0.18.22: https://github.com/eza-community/eza/releases/tag/v0.18.22
0.18.23: https://github.com/eza-community/eza/releases/tag/v0.18.23
Signed-off-by: Jonas Jelonek <jelonek.jonas@gmail.com>
Jonas Jelonek [Wed, 31 Jul 2024 08:26:05 +0000 (08:26 +0000)]
gping: update to 1.17.3
Signed-off-by: Jonas Jelonek <jelonek.jonas@gmail.com>
Rosen Penev [Mon, 10 Jun 2024 04:39:43 +0000 (21:39 -0700)]
libv4l: update to 1.28.0
Remove backported patch. Also remove seemingly unneeded patch.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
David Yang [Mon, 1 Jul 2024 16:58:07 +0000 (00:58 +0800)]
miniupnpd: Enable regex filter
UPnP rules now may have an optional regex filter on requester's
descriptions. This is a countermeasure against some UPnP exploiters
without shutting down UPnP service completely, albeit they can bypass it
by reporting innocent's descriptions maliciously.
Since the filter specifier is optional, existing valid config files will
still work.
This increases the executable's size by 1.3 kB from original 147.7 kB on
i386.
Signed-off-by: David Yang <mmyangfl@gmail.com>
David Yang [Mon, 1 Jul 2024 16:54:00 +0000 (00:54 +0800)]
miniupnpd: Update to 2.3.7
Update to 2.3.7, and remove patches which are already in upstream.
Signed-off-by: David Yang <mmyangfl@gmail.com>
Aleksey Vasilenko [Fri, 26 Jul 2024 11:34:22 +0000 (14:34 +0300)]
swig: update to 4.2.1
- Switch package URL to HTTPS
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Josef Schlehofer [Wed, 31 Jul 2024 06:27:22 +0000 (08:27 +0200)]
Revert "curl: update to 8.9.0"
With the recent update, it was discovered that curl causes high CPU usage,
until the solution is found, let's revert the commit.
Fixes: https://github.com/openwrt/packages/issues/24693
This reverts commit
e29aaab6061a53cfd7880d4bdcbbc61551945a75.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Aleksey Vasilenko [Wed, 24 Jul 2024 22:53:20 +0000 (01:53 +0300)]
boinc: update to 8.0.4
- Refresh a patch
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Milinda Brantini [Tue, 30 Jul 2024 07:54:05 +0000 (15:54 +0800)]
xray-core: update to 1.8.23
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Aleksey Vasilenko [Sun, 28 Jul 2024 18:41:41 +0000 (21:41 +0300)]
imagemagick: update to 7.1.1.36
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Eric Fahlgren [Sun, 28 Jul 2024 13:43:24 +0000 (06:43 -0700)]
owut: update to 2024.07.24
The internal package list order fix depends on openwrt/asu@
b7c8a426
Bug fixes:
efahl/owut@
d8af324 maintain internal package list in installation order
efahl/owut@
5bc21c6 armsr platform not detected properly
efahl/owut@
b0570d4 documentation link fixes for ASU server changes
Enhancements:
efahl/owut@
3a213f3 better download rate calculation
Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
Stephen Baker [Mon, 24 Jun 2024 20:07:03 +0000 (15:07 -0500)]
strongswan: comma separated list for {left,right}subnet
Translate local_subnet and remote_subnet in /etc/config/ipsec into a comma separated list for leftsubnet and rightsubnet in /var/ipsec/ipsec.conf
Andreas Gnau [Tue, 5 Mar 2024 18:30:09 +0000 (19:30 +0100)]
perl: Run make depend to fix build race condition
Run make depend before building perl. This fixes parallel build failures
on machines with a high number of cores.
Example error 1:
/bin/ln -s /build/staging_dir/hostpkg/usr/bin/generate_uudmap generate_uidmap
make[5]: ./generate_uudmap: Command not found
make[5]: *** [Makefile:321: bitcount.h] Error 127
Example error 2:
/bin/ln -s /build/staging_dir/hostpkg/usr/bin/generate_uudmap generate_udmap
./generate_uudmap uudmap.h bitcount.h mg_data.h
/bin/ln: failed to create symbolic link 'generate_uudmap': File exists
make[5]: *** [Makefile:325: generate_uudmap] Error 1
Link: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=996953
Link: https://salsa.debian.org/perl-team/interpreter/perl/-/commit/366bc98c916a3455f15c532aa33a5636d2fe2803
Closes: https://github.com/openwrt/packages/issues/8238
Signed-off-by: Andreas Gnau <andreas.gnau@iopsys.eu>
Aleksey Vasilenko [Fri, 26 Jul 2024 11:10:16 +0000 (14:10 +0300)]
lmdb: update to 0.9.33
- Don't set PKG_SOURCE_DATE since PKG_SOURCE_VERSION is enough
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Fri, 26 Jul 2024 07:11:39 +0000 (10:11 +0300)]
rsyslog: update to 8.2406.0
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Fri, 26 Jul 2024 07:23:40 +0000 (10:23 +0300)]
libmaxminddb: update to 1.10.0
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Fri, 26 Jul 2024 07:29:32 +0000 (10:29 +0300)]
xz: update to 5.6.2
- Refresh a patch
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Luiz Angelo Daros de Luca [Thu, 25 Jul 2024 13:41:37 +0000 (10:41 -0300)]
ruby: update to 3.3.4
Ruby 3.3.4 fixes a regression in Ruby 3.3.3 that dependencies are
missing in the gemspec of some bundled gems: net-pop, net-ftp, net-imap,
and prime. The fix allows Bundler to successfully install those gems on
platforms like Heroku. If your bundle install runs correctly now, you
may not have this issue. Other changes are mostly minor bug fixes.
See: https://www.ruby-lang.org/en/news/2024/07/09/ruby-3-3-4-released/
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
Aleksey Vasilenko [Fri, 26 Jul 2024 07:04:01 +0000 (10:04 +0300)]
gnunet-fuse: update to 0.21.0
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Marius Durbaca [Sun, 21 Jul 2024 05:08:40 +0000 (08:08 +0300)]
openfortivpn: update to 1.22.1
Signed-off-by: Marius Durbaca <mariusd84@gmail.com>
Milinda Brantini [Wed, 24 Jul 2024 04:10:17 +0000 (12:10 +0800)]
dockerd: Update to 27.1.1
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Wed, 24 Jul 2024 04:07:42 +0000 (12:07 +0800)]
docker: Update to 27.1.1
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Aleksey Vasilenko [Thu, 25 Jul 2024 13:25:01 +0000 (16:25 +0300)]
rust: update to 1.80.0
- Remove two upstreamed patches
- Manually refresh one patch
- Automatically refresh another patch
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Thu, 25 Jul 2024 14:08:12 +0000 (17:08 +0300)]
clamav: update to 1.3.1
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Wed, 24 Jul 2024 22:29:18 +0000 (01:29 +0300)]
c-ares: update to 1.32.3
- Use up-to-date source URL
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Othmar Truniger [Thu, 25 Jul 2024 16:51:38 +0000 (18:51 +0200)]
libfmt: bump to version 11.0.2
Signed-off-by: Othmar Truniger <github@truniger.ch>
Aleksey Vasilenko [Wed, 24 Jul 2024 22:04:29 +0000 (01:04 +0300)]
gnunet: update to 0.21.2
- Remove upstreamed patch
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Wed, 24 Jul 2024 22:02:50 +0000 (01:02 +0300)]
libcurl-gnutls: update to 8.9.0
- Remove stalled mirrors
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Peter van Dijk [Thu, 27 Jun 2024 08:26:42 +0000 (10:26 +0200)]
pdns-recursor: update to 5.1.1
this switches the default config to the new yaml format
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
Aleksey Vasilenko [Wed, 24 Jul 2024 21:25:51 +0000 (00:25 +0300)]
curl: update to 8.9.0
- Remove upstreamed patch
- Remove stalled mirrors
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Wesley Gimenes [Sat, 20 Jul 2024 02:10:37 +0000 (23:10 -0300)]
netbird: update to 0.28.6
Signed-off-by: Wesley Gimenes <wehagy@proton.me>
Milinda Brantini [Tue, 23 Jul 2024 02:59:29 +0000 (10:59 +0800)]
containerd: Update to 1.7.20
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Tue, 23 Jul 2024 02:26:46 +0000 (10:26 +0800)]
dockerd: Update to 27.1.0
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Tue, 23 Jul 2024 02:25:27 +0000 (10:25 +0800)]
docker: Update to 27.1.0
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Javier Marcet [Tue, 23 Jul 2024 16:37:44 +0000 (18:37 +0200)]
docker-compose: Update to version 2.29.1
Release notes:
https://github.com/docker/compose/releases/tag/v2.29.1
Signed-off-by: Javier Marcet <javier@marcet.info>
Jan Hák [Tue, 23 Jul 2024 11:21:25 +0000 (13:21 +0200)]
knot: update to version 3.3.8
Signed-off-by: Jan Hák <jan.hak@nic.cz>
Tianling Shen [Tue, 23 Jul 2024 06:34:59 +0000 (14:34 +0800)]
alist: Update to 3.36.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Milinda Brantini [Mon, 22 Jul 2024 14:27:59 +0000 (22:27 +0800)]
xray-core: update to 1.8.21
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Aleksey Vasilenko [Sat, 20 Jul 2024 10:22:29 +0000 (13:22 +0300)]
apache: update to 2.4.62
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Sat, 20 Jul 2024 10:45:38 +0000 (13:45 +0300)]
tesseract: update to 5.4.1
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Aleksey Vasilenko [Sat, 20 Jul 2024 11:35:34 +0000 (14:35 +0300)]
less: update to 661
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Eric Fahlgren [Sun, 21 Jul 2024 21:31:14 +0000 (14:31 -0700)]
owut: update to 2024.07.21
A couple of minor bug fixes, and several enhancements.
The major addition is the pre-install hook, which allows user to
intercept processing between the download and install. This allows,
for example, copying the download artifacts (firmware-manifest.json)
to persistent storage and saving it for later reference. Other
uses include automating backups as part of the upgrade process.
See /etc/owut.d/pre-install.sh for examples.
- bugs
https://github.com/efahl/owut/commit/
dc521b2 version list bug fix
https://github.com/efahl/owut/commit/
75faac2 fix OpenWRT firmware version comparisons
- enhancements
https://github.com/efahl/owut/commit/
0937933 add '--pre-install' hook
https://github.com/efahl/owut/commit/
23c2066 reduce 'dump' output verbosity
https://github.com/efahl/owut/commit/
cc9618d tweak the undocumented '--device' option handling
https://github.com/efahl/owut/commit/
2ec138b improve help
Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
Esaaprilia Salsabila [Thu, 18 Jul 2024 15:31:15 +0000 (23:31 +0800)]
perl: fix Segmentation fault
Signed-off-by: Esaaprilia Salsabila <esaapriliasalsabila@gmail.com>
Alexandru Ardelean [Mon, 22 Jul 2024 07:19:38 +0000 (10:19 +0300)]
Merge pull request #24612 from commodo/python-updates2
django,django-restframework: bump versions
Alexander Egorenkov [Sat, 13 Jul 2024 14:05:09 +0000 (16:05 +0200)]
mpd: fix build with libfmt v11
mpd fails to compile with libfmt v11 because of minor API changes in the
library.
https://github.com/MusicPlayerDaemon/MPD/issues/2068
Signed-off-by: Alexander Egorenkov <egorenar-dev@posteo.net>
Ivan Pavlov [Fri, 19 Jul 2024 04:43:46 +0000 (07:43 +0300)]
openvpn: update to 2.6.12
This is a bugfix release
Bug fixes:
- the fix for CVE-2024-5594 (refuse control channel messages with nonprintable characters) was too strict, breaking user configurations
with AUTH_FAIL messages having trailing CR/NL characters. This often happens if the AUTH_FAIL reason is set by a script.
- Http-proxy: fix bug preventing proxy credentials caching
For details refer to https://github.com/OpenVPN/openvpn/blob/v2.6.12/Changes.rst
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
Peter van Dijk [Tue, 16 Jul 2024 11:05:18 +0000 (13:05 +0200)]
dnsdist: update to 1.9.6
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
Aleksey Vasilenko [Sat, 20 Jul 2024 09:12:51 +0000 (12:12 +0300)]
imagemagick: update to 7.1.1.35
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Milinda Brantini [Thu, 18 Jul 2024 12:41:55 +0000 (20:41 +0800)]
tailscale: Update to 1.70.0
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Sat, 20 Jul 2024 12:26:36 +0000 (20:26 +0800)]
xray-core: update to 1.8.20
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Fri, 19 Jul 2024 12:57:43 +0000 (20:57 +0800)]
dnsproxy: Update to 0.72.1
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Alexandru Ardelean [Thu, 18 Jul 2024 13:24:15 +0000 (16:24 +0300)]
stress-ng: bump to version 0.18.01
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Jonathan McCrohan [Fri, 19 Jul 2024 22:48:00 +0000 (23:48 +0100)]
crun: update to 1.15
Changelogs: https://github.com/containers/crun/releases
Bump libocispec to latest commit (required due to rename of class to
_class)
Fixes a crun 1.14.1 bug which prevented Podman running containers due
to version parsing bug.
root@OpenWrt:~# podman run hello-world
Error: OCI runtime error: crun: unknown version specified
Signed-off-by: Jonathan McCrohan <jmccrohan@gmail.com>
Alexandru Ardelean [Wed, 17 Jul 2024 11:47:10 +0000 (14:47 +0300)]
django-restframework: bump to version 3.15.2
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Alexandru Ardelean [Wed, 17 Jul 2024 11:46:52 +0000 (14:46 +0300)]
django: bump to version 5.0.7
Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
Rahul Thakur [Thu, 11 Jul 2024 07:07:00 +0000 (12:37 +0530)]
fluent-bit: add package
* add package fluent-bit v3.1.3
* test performed
- compile-test
- run-test on target
* fluent-bit package is added to provide another option for
log collection and management. It integrates well with
a wide variety of environments and deployments. It is widely
used by a number of organizations and is supported across a
variety of platforms. Integrating it to make it available as
an openwrt package.
Signed-off-by: Rahul Thakur <rahul.thakur@iopsys.eu>
Hannu Nyman [Thu, 18 Jul 2024 09:37:47 +0000 (12:37 +0300)]
nano: update to 8.1
Update nano editor to version 8.1.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Javier Marcet [Wed, 17 Jul 2024 16:28:57 +0000 (18:28 +0200)]
docker-compose: Update to version 2.29.0
Release notes:
https://github.com/docker/compose/releases/tag/v2.29.0
Signed-off-by: Javier Marcet <javier@marcet.info>
Milinda Brantini [Wed, 17 Jul 2024 14:21:35 +0000 (22:21 +0800)]
xray-core: update to 1.8.19
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Philip Prindeville [Thu, 30 May 2024 16:29:04 +0000 (10:29 -0600)]
bind: bump to 9.18.27
Fixes: https://gitlab.isc.org/isc-projects/bind9/-/issues/4586
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Daniel Golle [Wed, 17 Jul 2024 01:53:35 +0000 (02:53 +0100)]
exim: update to 4.98
Remove upstreamed patch 300-avoid-time-printf.patch
Exim/exim@
9ae8613607b12257e1fe59c603119bc5d4cd3474
Exim version 4.98
-----------------
JH/01 Support list of dkim results in the dkim_status ACL condition, making
it more usable in the data ACL.
JH/02 Bug 3040: Handle error on close of the spool data file during reception.
Previously This was only logged, on the assumption that errors would be
seen for a previous fflush(). However, a fuse filesystem has been
reported as showing this an error for the fclose(). The spool is now in
an uncertain state, and we have logged and responded acceptance. Change
this to respond with a temp-reject, wipe spoolfiles, and log the error
detail.
JH/03 Bug 3030: Fix handling of DNS servfail respons for DANE TLSA. When hit
during a recipient verify callout, a QUIT command was attempted on the
now-closed callout channel, causing a paniclog entry.
JH/04 Bug 3039: Fix handling of of an empty log_reject_target, with
a connection_reject log_selector, under tls_on_connect. Previously
with this combination, when the connect ACL rejected, a spurious
paniclog entry was made.
JH/05 Fix TLS resumption for TLS-on-connect. This was broken by the advent
of loadbalancer-detection for resumption, in 4.96 - which tries to
use the EHLO response. SMTPS does not have one at the time it is starting
TLS. Change the default for the smtp transport host_name_extract option
to be a static string, for TLS-on-connect cases; meaning that resumption
will always be attempted (unless deliberately overriden).
JH/06 Bug 3054: Fix dnsdb lookup for a TXT record with multiple chunks, with a
chunk-separator specification. This was broken by hardening introduced
for Bug 3031.
JH/07 Bug 3050: Fix -bp for old message_id format spoolfiles. Previously it
included the -H with the id; this also messed up exiqgrep.
JH/08 Bug 3056: Tighten up parsing of DKIM DNS records. Previously, whitespace
was not properly skipped and empty elements would cause mis-parsing.
Tighten parsing of DKIM header records. Previously, all but lowercase
alpha chars would be ignored in potential tag names.
JH/09 Bug 3057: Add heuristic for spotting mistyped IPv6 addresses in lists
being searched. Previously we only had one for IPv4 addresses. Per the
documentation, the error results by default in a no-match result for the
list. It is logged if the unknown_in_list log_selector is used.
JH/10 Bug 3058: Ensure that a failing expansion in a router "set" option defers
the routing operation. Previously it would silently stop routing the
message.
JH/11 Bug 3046: Fix queue-runs. Previously, the arrivel of a notification or
info-request event close in time to a scheduled run timer could result in
the latter being missed, and no further queue scheduled runs being
initiated. This ouwld be more likely on high-load systems.
JH/12 Refuse to accept a line "dot, LF" as end-of-DATA unless operating in
LF-only mode (as detected from the first header line). Previously we did
accept that in (normal) CRLF mode; this has been raised as a possible
attack scenario (under the name "smtp smuggling").
JH/13 Add an fdatasync call for the received message data file in spool, before
loggging reception and sending the SMTP ack. Previously we only flushed
the stdio buffer so there was still the possibility of a disk error.
JH/14 Bug 3061: Avoid a split log line when trying to rewrite a malformed
address. Previously, for the last address in a header line (commonly
there is only one) the terminating newline was part of the logged
information.
JH/15 Bug 3061: Ensure a log line is written for a malformed address in a
header, when parsing for address-qualification. Previously one was only
written if there were rewrite rules.
JH/16 Two-phase queue runs are now reported in the daemon startup log line and
in exiwhat output.
JH/17 Bug 3064: Fix combination of "-q<period> -R <recipients>". Introduction of
the multiple-queue-runners facility for 4.97 broke this, giving only a
one-time run of the queue.
JH/18 Bug 3068: Log a warning for use of deprecated syntax in query-style
lookups.
JH/19 Fix TLS startup. When the last expansion done before the initiation of a
TLS session resulted in a forced-fail, a misleading error was logged for
the expansino of tls_certificates. This would affect the common case of
that option being set (main-section options) but not having any variable
parts. It could also potentially affect tls_privatekeys. The underlyding
coding errors go back to 4.90 but were only exposed in 4.97.
JH/20 Bug 3047: A recent (somewhere between 10.34 and 10.42) version of the
pcre2 library starting allocating 20kB rather than 112 bytes per match
call, which broke the 2GB total limitation on Exim's memory management
when a user had over 104207 messages stored and the appendfile
maildir_quota_directory_regex option is in use. Release the allocated
memory every thosand files to avoid this.
The same issue arises with the ACL regex condition, which is applied
to every line of a received message.
JH/21 Bug 3059: Fix crash in smtp transport. When running for a message for
which all recipients had been handled (itself an issue) a null-pointer
deref was done on trying to write a retry record. Fix that by counting
the outstanding recipients before trying to transmit the message.
The situation arose for a second MX try within a transport run, when the
first had perm-rejected a recipient (the only one for the connection, in
the case seen) during pipelining, and then closed the TCP connection.
The transport classified that as an I/O error, leaving the message
outstanding but having marked up the recipient as dealt-with. It then
tried another MX because of the I/O error. Fix this by converting the
message-level status to ok if there was a close but all recipients were
dealt with. Thanks to Wolfgand Breyha for debug runs.
JH/22 The ESMTP_LIMITS facility (RFC 9422) is promoted from experimental status
and is now controlled by the build-time option DISABLE_ESMTP_LIMITS.
JH/23 Bug 3066: Avoid leaking lookup database credentials to log.
JH/24 Bug 3081: Fix a delivery process crash. When the router "errors_to"
option specified a fixed address, later rewriting on that address would
trip on the configuration data being readonly. Instead of modifying
in-place, copy data. Found and fixed by Peter Benie.
JH/25 Bug 3079: Fix crash in dbmnz. When a key was present for zero-length
data a null pointer was followed. Find and testcase by Sebastian Bugge.
JH/26 Fix encoding for an AUTH parameter on a MAIL FROM command. Previously
decimal 127 chars were not encoded, and lowercase hex was used for
encoded values. Outstanding since at least 1999.
JH/27 Fix crash in logging. When a message with a large number of recipients
had been received, and logging of recipients is enabled, the buffer used
for logging could reach limit. A read using a null pointer would then
be done, resulting in a crash of the receiving process before an SMTP
ACK for the message was returned to the sending system. Duplicate
messages were created as a result.
Find and debug help by Mateusz Krawczyk
JH/28 Bug 3086: Fix exinext for ipv6. Change the format of keys in the retry
DB, wrapping transport record bare-ip "host names" and ipv6
"host addresses" in square-brackets. This makes the parsing that
exinext does more reliable.
JH/29 Bug 3087: Fix SRS encode. A zero-length quoted element in the local-part
would cause a crash.
JH/30 Bug 3029: Avoid feeding Resent-From: to DMARC.
JH/31 Bug 3027: For -bh / -bhc tests change to using the compressed form of
ipv6 addresses for the sender. Previously the uncompressed form was used,
and if used in textual form this would result in behavior difference
versus non-bh.
JH/32 Bug 3096: MAIL before HELO/EHLO, where required by hosts_require_helo, is
now classed as a protocol error and subject to smtp_max_synprot_errors.
JH/33 Bug 2994: A subdir dsearch lookup should permit a directory name that starts
".." and has following characters.
JH/34 Fix delivery ordering for 2-phase queue run combined with
queue_run_in_order.
JH/35 Bug 3099: fix parsing of MIME filename= split over multiple paramemters.
Previously the $mime_filename variable would have an incorrect value.
While in the code, extend coverage to name= which previously was only
supported for single parameters, despite also filling in $mime_filename.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
Florian Eckert [Wed, 17 Jul 2024 11:20:35 +0000 (13:20 +0200)]
Merge pull request #24600 from Shulyaka/patch-1
ddns-scripts: Update knot resolver regexp
Denis Shulyaka [Tue, 16 Jul 2024 10:54:54 +0000 (13:54 +0300)]
ddns-scripts: Update knot resolver regexp
The output format of `khost` has changed. This commit fixes the regexp
for IPv4. It fixes the issue of using a custom DNS to resolve current
address.
```bash
root@localhost:~# khost ns2.afraid.org
ns2.afraid.org. has IPv4 address 69.65.50.223
ns2.afraid.org. has IPv6 address 2001:1850:1:5:800::6b
Host ns2.afraid.org. has no MX record
root@localhost:~# khost --version
khost (Knot DNS), version 3.3.5
```
Signed-off-by: Denis Shulyaka <Shulyaka@gmail.com>
Rosen Penev [Sun, 14 Jul 2024 18:50:21 +0000 (11:50 -0700)]
openzwave: fix compilation with GCC14
Null pointer dereference. This looks like a bug fix actually...
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Fri, 12 Jul 2024 20:00:39 +0000 (13:00 -0700)]
dante: fix compilation with GCC14
Also added some configure fixes.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Tianling Shen [Tue, 16 Jul 2024 04:46:47 +0000 (12:46 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Milinda Brantini [Mon, 15 Jul 2024 04:34:10 +0000 (12:34 +0800)]
v2raya: update to 2.2.5.7
ci: Fix up Docker images' tag from version number
chore(deps): bump github.com/gin-contrib/cors from 1.3.1 to 1.6.0
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Mon, 15 Jul 2024 14:08:08 +0000 (22:08 +0800)]
xray-core: update to 1.8.18
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Philip Prindeville [Sun, 14 Jul 2024 20:17:50 +0000 (14:17 -0600)]
isc-dhcpd: don't invoke ipcalc with empty start/range arguments
Handle not having a dynamic pool correctly without ipcalc.sh
generating noise about it.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Rosen Penev [Sun, 14 Jul 2024 18:48:27 +0000 (11:48 -0700)]
linuxptp: fix compilation with GCC14
Missing header.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Philip Prindeville [Sun, 14 Jul 2024 22:06:32 +0000 (16:06 -0600)]
perl-text-csv_xs: Update to 1.55
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Philip Prindeville [Sun, 14 Jul 2024 21:31:51 +0000 (15:31 -0600)]
cligen: Update to 7.1.0
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Philip Prindeville [Sun, 14 Jul 2024 21:37:05 +0000 (15:37 -0600)]
clixon: Update to 7.1.0
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Philip Prindeville [Sun, 14 Jul 2024 21:41:42 +0000 (15:41 -0600)]
perl-cgi: Update to 4.66
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Rosen Penev [Fri, 12 Jul 2024 20:04:10 +0000 (13:04 -0700)]
libupnp: backport -Wformat fix
Fixes 32-bit targets.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Dirk Brenken [Sun, 14 Jul 2024 20:26:36 +0000 (22:26 +0200)]
banip: update 1.0.0-5
* filter crappy IP entries from urlhaus feed
Signed-off-by: Dirk Brenken <dev@brenken.org>
Eric Fahlgren [Sun, 14 Jul 2024 18:29:06 +0000 (11:29 -0700)]
owut: update to 2024.07.14
- bugs
https://github.com/efahl/owut/commit/
980156399e623e7df304c0e74ad557c2dd07d651 properly handle 'package_changes' entries with build breakages
https://github.com/efahl/owut/commit/
119c7194b7468549b19a68c0509d632d789c2717 deal with stdout being chopped off when output is piped
https://github.com/efahl/owut/commit/
75faac216707062bdbc1168dc3087b22eccef493 fix ordering of '-rcN' version numbers
- issues
https://github.com/efahl/owut/commit/
0aefe77e47d4b88fc4ae7ee516a380e64b64d6c1 warn and stop on package downgrades
- enhancements
https://github.com/efahl/owut/commit/
a23ea2c1ef2987d4bfd49cd0247cf9128963f146 report file download rates in verbose output
https://github.com/efahl/owut/commit/
112afd07a5515b705939e52323bcac0f776f6487 report broken packages when using 'list' or 'blob'
Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
Rosen Penev [Sun, 14 Jul 2024 18:46:53 +0000 (11:46 -0700)]
pcsc-lite: fix bad formats
Fixes compilation with -Werror=format
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Milinda Brantini [Sun, 14 Jul 2024 12:03:06 +0000 (20:03 +0800)]
dockerd: fix breaks IPv6 routing
Add option to support ip6tables configuration(default false).
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
John Audia [Sun, 14 Jul 2024 11:31:32 +0000 (07:31 -0400)]
tree: bump to 2.1.3
Changelog: version 2.1.3 (07/09/2024)
- Mostly a brown-paper bag release to fix the below regression and add a
feature I forgot to add.
- Fix regression in search() function that broke --fromfile (Florian Ernst)
(caused by removing too much code while fixing premature sort for
--fromfile)
- Allow the -L option to accept its parameter immediately (with no space)
instead of requiring it be the next option word. (Trevor Gross)
Build system: x86/64
Build-tested: x86/64/AMD Cezanne
Run-tested: x86/64/AMD Cezanne
Signed-off-by: John Audia <therealgraysky@proton.me>
W. Michael Petullo [Sun, 14 Jul 2024 05:43:53 +0000 (00:43 -0500)]
krb5: update to 1.21.3
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Alexander Egorenkov [Wed, 3 Jul 2024 16:24:52 +0000 (18:24 +0200)]
yt-dlp: bump to version 2024.7.9
Signed-off-by: Alexander Egorenkov <egorenar-dev@posteo.net>
Michael Heimpold [Sat, 13 Jul 2024 10:15:56 +0000 (12:15 +0200)]
Merge pull request #24548 from mhei/php8-update-to-8.3.9
php8: update to 8.3.9
Milinda Brantini [Wed, 10 Jul 2024 05:30:09 +0000 (13:30 +0800)]
adguardhome: Update to 0.107.52
View the release notes for more information:
https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.52
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Milinda Brantini [Fri, 12 Jul 2024 11:11:30 +0000 (19:11 +0800)]
xray-core: update to 1.8.17
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>
Rosen Penev [Sat, 29 Jun 2024 23:53:32 +0000 (16:53 -0700)]
libmad: backport time_t format fix
Needed to fix -Wformat under 32-bit.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sun, 30 Jun 2024 00:12:40 +0000 (17:12 -0700)]
mt-st: update to 1.7
New upstream.
Removed upstreamed patch.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Tue, 9 Jul 2024 21:27:55 +0000 (14:27 -0700)]
xr_usb_serial_common: fix 32-bit compilation
Format needs to be %zd, not %ld for size_t.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Tue, 2 Jul 2024 00:00:35 +0000 (17:00 -0700)]
python3: use pkgconfig to find readline
When searching for readline, ncurses is needed, which can be ncursesw or
ncurses. Use pkgconfig to avoid the whole situation and simplify.
Also add readline/host as the OS one may be unusable.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sat, 29 Jun 2024 19:06:24 +0000 (12:06 -0700)]
python3: remove rpath from host python
Everything relevant to python is now built statically. No need for
rpath.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Rosen Penev [Sat, 29 Jun 2024 19:03:28 +0000 (12:03 -0700)]
python3: replace e2fsprogs includes
libuuid is provided by util-linux now.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Aleksey Vasilenko [Fri, 12 Jul 2024 11:51:18 +0000 (14:51 +0300)]
erlang: update to 27.0.1
Disable host build of wx - it slows down the build and is not used anyway
Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com>
Christian Lachner [Thu, 11 Jul 2024 17:21:53 +0000 (19:21 +0200)]
haproxy: update to v3.0.3
- Update haproxy PKG_VERSION and PKG_HASH
- See changes: http://git.haproxy.org/?p=haproxy-3.0.git;a=shortlog
Signed-off-by: Christian Lachner <gladiac@gmail.com>
Milinda Brantini [Thu, 11 Jul 2024 10:17:31 +0000 (18:17 +0800)]
v2raya: update to 2.2.5.6
chore(deps): bump golang.org/x/net from 0.18.0 to 0.23.0 in /service
Signed-off-by: Milinda Brantini <C_A_T_T_E_R_Y@outlook.com>