Marius Dinu [Mon, 12 Jun 2023 07:47:03 +0000 (10:47 +0300)]
tvheadend: update to 2023-06-05
Update to git master 2023-06-05 and removed unneeded compatibility patch.
Signed-off-by: Marius Dinu <m95d+git@psihoexpert.ro>
Tianling Shen [Thu, 22 Jun 2023 05:22:08 +0000 (13:22 +0800)]
Merge pull request #21419 from QuintinHill/ble2mqtt-install-fix
python-ble2mqtt: fix installation of python program
Hirokazu MORIKAWA [Thu, 15 Jun 2023 06:49:25 +0000 (15:49 +0900)]
c-ares: bump to 1.19.1
This is a security and bugfix release.
Security
o CVE-2023-32067. High. 0-byte UDP payload causes Denial of Service
o CVE-2023-31147. Moderate. Insufficient randomness in generation of DNS
query IDs
o CVE-2023-31130. Moderate. Buffer Underwrite in ares_inet_net_pton()
o CVE-2023-31124. Low. AutoTools does not set CARES_RANDOM_FILE during cross
compilation
Fixing libcares.pc
The pkg-config file libcares.pc in version 1.19.1 has been changed to be unsuitable for OpenWrt
and causes build errors with Openwrt packages that use libcares.
For this reason, libcares.pc was replaced.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Jeffery To [Wed, 21 Jun 2023 17:02:07 +0000 (01:02 +0800)]
Merge pull request #21147 from cottsay/openelp
openelp: Add new package
Tianling Shen [Wed, 21 Jun 2023 12:47:19 +0000 (20:47 +0800)]
cloudflared: Update to 2023.6.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
W. Michael Petullo [Tue, 20 Jun 2023 13:53:34 +0000 (08:53 -0500)]
shared-mime-info: update to 2.2
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Tianling Shen [Wed, 21 Jun 2023 11:12:20 +0000 (19:12 +0800)]
Merge pull request #21421 from nxhack/node_18161
node: June 20 2023 Security Releases
Dirk Brenken [Wed, 21 Jun 2023 08:53:19 +0000 (10:53 +0200)]
banip: release 0.8.8-1
* Support MAC-/IPv4/IPv6 ranges in CIDR notation
* Support concatenation of local MAC addresses with IPv4/IPv6 addresses, e.g. to enforce dhcp assignments (see readme)
* small fixes & cosmetics
* update readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
Nuno Gonçalves [Tue, 20 Jun 2023 16:49:40 +0000 (17:49 +0100)]
gl-mifi-mcu: remove package as it is device specific and I can't test it anymore
Signed-off-by: Nuno Gonçalves <nunojpg@gmail.com>
Florian Eckert [Wed, 21 Jun 2023 06:51:06 +0000 (08:51 +0200)]
Merge pull request #21378 from TDT-AG/pr/
20230615-modemmanager
modemmanager: do not cache virtual device events
Hirokazu MORIKAWA [Wed, 21 Jun 2023 02:27:48 +0000 (11:27 +0900)]
node: June 20 2023 Security Releases
Update to v18.16.1
The following CVEs are fixed in this release:
* CVE-2023-30581: mainModule.__proto__ Bypass Experimental Policy Mechanism (High)
* CVE-2023-30585: Privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process (Medium)
* CVE-2023-30588: Process interuption due to invalid Public Key information in x509 certificates (Medium)
* CVE-2023-30589: HTTP Request Smuggling via Empty headers separated by CR (Medium)
* CVE-2023-30590: DiffieHellman does not generate keys after setting a private key (Medium)
* OpenSSL Security Releases (Depends on shared library provided by OpenWrt)
* OpenSSL security advisory 28th March.
* OpenSSL security advisory 20th April.
* OpenSSL security advisory 30th May
* c-ares vulnerabilities: (Depends on shared library provided by OpenWrt)
* GHSA-9g78-jv2r-p7vc
* GHSA-8r8p-23f3-64c2
* GHSA-54xr-f67r-4pc4
* GHSA-x6mf-cxr9-8q6v
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Quintin Hill [Tue, 20 Jun 2023 21:39:58 +0000 (22:39 +0100)]
python-ble2mqtt: fix installation of python program
This was broken when the init script was added in
408502ee0.
Signed-off-by: Quintin Hill <stuff@quintin.me.uk>
Nuno Gonçalves [Sun, 28 May 2023 21:06:35 +0000 (22:06 +0100)]
gl-mifi-mcu: make compatible with newer kernel (fix #21198)
Signed-off-by: Nuno Gonçalves <nunojpg@gmail.com>
Stan Grishin [Tue, 20 Jun 2023 15:58:05 +0000 (09:58 -0600)]
Merge pull request #21411 from stangri/master-https-dns-proxy
https-dns-proxy: update to 2023-05-25-2
Scott K Logan [Tue, 23 May 2023 20:14:13 +0000 (13:14 -0700)]
openelp: Add new package
OpenELP is an open source EchoLink proxy for Linux and Windows. It aims
to be efficient and maintain a small footprint, while still implementing
all of the features present in the official EchoLink proxy.
Signed-off-by: Scott K Logan <logans@cottsay.net>
Tianling Shen [Tue, 20 Jun 2023 05:11:16 +0000 (13:11 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Tue, 20 Jun 2023 05:11:04 +0000 (13:11 +0800)]
xray-core: update to 1.8.3
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Stan Grishin [Tue, 20 Jun 2023 02:02:45 +0000 (02:02 +0000)]
https-dns-proxy: update to 2023-05-25-2
bugfix: proper mdns object creation
bugfix: prevent fw errors by allowing custom interfaces in config
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Philip Prindeville [Tue, 20 Jun 2023 01:28:14 +0000 (19:28 -0600)]
Merge pull request #21402 from pprindeville/dhcpd-send-forced-options
isc-dhcp: force sending unrequested parameters
Philip Prindeville [Sun, 18 Jun 2023 02:09:48 +0000 (20:09 -0600)]
isc-dhcp: force sending unrequested parameters
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Eneas U de Queiroz [Mon, 12 Jun 2023 11:31:25 +0000 (08:31 -0300)]
alpine: disable parallel build
Parallel build does not work because it may reach a point where OSTYPE
might be needed before it is actually built. They appear to run
parallel to each other:
echo slx > OSTYPE
[...]
cat: OSTYPE: No such file or directory
sh: line 1: test: too many arguments
cat: OSTYPE: No such file or directory
Already built for -- you must do "make clean" first
make[6]: *** [Makefile:706: rebuild] Error 1
make[6]: *** Waiting for unfinished jobs....
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Tianling Shen [Mon, 19 Jun 2023 06:44:12 +0000 (14:44 +0800)]
cloudflared: Update to 2023.6.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Hirokazu MORIKAWA [Sat, 17 Jun 2023 00:52:25 +0000 (09:52 +0900)]
libuv: bump to 1.45.0
1.45.0
* linux: introduce io_uring support
* src: add new metrics APIs
* unix,win: give thread pool threads an 8 MB stack
* win,unix: change execution order of timers
1.44.2
* loop: better align order-of-events behavior between platforms
* zos: fix fs event not fired if the watched file is moved/removed/recreated
* win: Fix pipe resource leak if closed during connect (and other bugs)
* zos: don't error when killing a zombie process
* macos: avoid posix_spawnp() cwd bug
* kqueue: skip EVFILT_PROC events when invalidating events for an fd.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Facundo Acevedo [Fri, 9 Jun 2023 23:47:59 +0000 (20:47 -0300)]
arp-whisper: Add new package
arp-whisper listens to ARP requests on a network interface and responds
to them based on a list of IP-MAC address mappings defined in a
configuration file
Signed-off-by: Facundo Acevedo <facevedo@disroot.org>
Hannu Nyman [Sat, 17 Jun 2023 15:58:13 +0000 (18:58 +0300)]
collectd: handle renaming ipq807x as qualcommax
The 'ipq807x' target was renamed to be 'qualcommax' (and ipq807x was
set as subtarget). Adjust plugin target dependencies to this renaming.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Robert Marko [Sat, 17 Jun 2023 06:47:39 +0000 (08:47 +0200)]
mhz: add new package
mhz is a tool for mathematically calculating the current CPU frequency, it
has proven to be a really good help while developing CPU frequency scaling
solutions as it allows to independently prove that scaling actually works.
Now that the author has added a license we can package it for the all to
use.
Signed-off-by: Robert Marko <robimarko@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 11:13:30 +0000 (14:13 +0300)]
fatresize: bump release
use newer git commit, fixes problem with manually
specified sizes.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Eneas U de Queiroz [Mon, 12 Jun 2023 14:28:52 +0000 (11:28 -0300)]
gost_engine: disable tests, reset patches dir
Tests are breaking compilation for mipsel targets because of the removal
of the sysmips call. Let's just not build them.
While at it, remove patches from 1.1 version and move the current ones
to the default 'patches' directory.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
Vladimir Ermakov [Mon, 12 Jun 2023 12:56:58 +0000 (14:56 +0200)]
qemu: update to 8.0.2
Update version and refresh patches.
Signed-off-by: Vladimir Ermakov <vooon341@gmail.com>
Tianling Shen [Sun, 11 Jun 2023 05:28:03 +0000 (13:28 +0800)]
CI: update build architectures
- armvirt target has been renamed to armsr (Arm SystemReady) [1].
- armsr-armv8 has been switched to aarch64_generic architecture [2].
1. https://github.com/openwrt/openwrt/commit/
40b02a230167626def69389452f19b7109aaeac1
2. https://github.com/openwrt/openwrt/commit/
e0f06ddc23b2503a1791ae7e97b02e2647e8a70d
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Sun, 11 Jun 2023 05:26:34 +0000 (13:26 +0800)]
qemu: change references from armvirt to armsr
armvirt target has been renamed to armsr (Arm SystemReady) [1],
so the dependency need to be changed as well.
https://github.com/openwrt/openwrt/commit/
40b02a230167626def69389452f19b7109aaeac1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Sun, 11 Jun 2023 05:26:27 +0000 (13:26 +0800)]
collectd: change references from armvirt to armsr
armvirt target has been renamed to armsr (Arm SystemReady) [1],
so the dependency need to be changed as well.
1. https://github.com/openwrt/openwrt/commit/
40b02a230167626def69389452f19b7109aaeac1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Philip Prindeville [Fri, 16 Jun 2023 04:15:07 +0000 (22:15 -0600)]
Merge pull request #21380 from pprindeville/strongswan-clean-up-parser
strongswan: clean up parser
Philip Prindeville [Thu, 15 Jun 2023 18:48:00 +0000 (12:48 -0600)]
strongswan: make parsing more consistent
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Michael Heimpold [Thu, 15 Jun 2023 19:17:35 +0000 (21:17 +0200)]
Merge pull request #21368 from mhei/php8-update-to-8.2.7
php8: update to 8.2.7
Florian Eckert [Thu, 15 Jun 2023 13:38:34 +0000 (15:38 +0200)]
modemmanager: if an alias name is used do not check sysfs path
If an alias name is used for the modem, then a check if the device exists
in sysfs does not work. To fix this remove the check if the sysfs device
exists. The protocoll handler already checks if the modem is responsible
for this device on the next line.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Florian Eckert [Thu, 15 Jun 2023 12:31:51 +0000 (14:31 +0200)]
modemmanager: do not cache virtual device events
On small systems with many virtual devices, the modem manager sometimes
could not start because it took too long until all devices for the modem
were recognised. This is because all system events that are stored in
the file events.cache have to be processed. To speed up the processing,
all devices under /sys/devices/virtual are now filtered out so that they
do not have to be processed.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Hirokazu MORIKAWA [Thu, 15 Jun 2023 01:30:22 +0000 (10:30 +0900)]
icu: bump to 73.2
ICU 73.2 updates to CLDR 43.1 locale data. These are maintenance releases for ICU 73 and CLDR 43, with limited sets of bug fixes and no API or structural changes.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
W. Michael Petullo [Thu, 15 Jun 2023 00:18:40 +0000 (19:18 -0500)]
krb5: update to 1.21
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Michael Heimpold [Wed, 14 Jun 2023 06:43:04 +0000 (08:43 +0200)]
php8: update to 8.2.7
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Michael Heimpold [Wed, 14 Jun 2023 06:34:38 +0000 (08:34 +0200)]
Merge pull request #21363 from mhei/revert-php8-riscv64-workaround
php8: revert workaround to fix linking on riscv64 platform
Tianling Shen [Mon, 12 Jun 2023 19:36:41 +0000 (03:36 +0800)]
cloudreve: Update to 3.8.0
- Fixed packing web frontend assets
- Enabled build for riscv64
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Quintin Hill [Fri, 9 Jun 2023 22:39:17 +0000 (23:39 +0100)]
python-ble2mqtt: update to 0.1.7
Signed-off-by: Quintin Hill <stuff@quintin.me.uk>
Quintin Hill [Fri, 9 Jun 2023 22:38:52 +0000 (23:38 +0100)]
python-bleak: upgrade to 0.20.2
Signed-off-by: Quintin Hill <stuff@quintin.me.uk>
Quintin Hill [Fri, 9 Jun 2023 22:37:52 +0000 (23:37 +0100)]
python-dbus-fast: update to 1.86.0
Signed-off-by: Quintin Hill <stuff@quintin.me.uk>
Kuan-Yi Li [Sat, 10 Jun 2023 03:43:42 +0000 (11:43 +0800)]
treewide: remove COMMITCOUNT
Automatically compute and substitute current values for all
$(COMMITCOUNT) instances as this feature is deprecated and shouldn't be
used.
Based on commit
0c10c224be81:
Change COMMITCOUNT in rules.mk to:
```
COMMITCOUNT = $(if $(DUMP),0,$(shell sed -i "s/\$$(COMMITCOUNT)/$(call commitcount)/" $(CURDIR)/Makefile))
```
then update all affected packages by:
```
for i in $(git -C feeds/packages grep -l COMMITCOUNT | sed 's^.*/\([^/]*\)/Makefile^\1^';);
do
make package/$i/clean
done
```
Signed-off-by: Kuan-Yi Li <kyli@abysm.org>
Tianling Shen [Tue, 13 Jun 2023 03:00:22 +0000 (11:00 +0800)]
Merge pull request #21345 from jefferyto/python-3.11.4
python3: Update to 3.11.4, refresh patches
Michael Heimpold [Mon, 12 Jun 2023 16:52:29 +0000 (18:52 +0200)]
Revert "php8: fix linking on riscv64 platform"
This reverts commit
a2e76e49787e97253c02d72d27e3d304d68ff488.
Now that the issue is fixed on gcc side (see openwrt/openwrt@
7b4a966),
we can revert this workaround here.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
Christian Marangi [Mon, 12 Jun 2023 15:06:16 +0000 (17:06 +0200)]
nginx: create empty directory for module.d include
Fix a bug on installation of nginx-mod-luci where module.d directory
is not found and luci.module creation fails.
Correctly create empty directory for module.d include for dynamic module
loading by placing file in this directory.
Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
Baptiste Fouques [Tue, 25 Apr 2023 10:01:47 +0000 (12:01 +0200)]
ddns: Prevent clearing of desec.io entries
When using both ipv4 and ipv6 entries on the same host, ddns is clearing A
(or AAAA) record depending on the connection (ipv4 or ipv6).
see https://desec.readthedocs.io/en/latest/dyndns/update-api.html#determine-ip-addresses
Signed-off-by: Baptiste Fouques <bateast@duck.com>
Update comment and bump PKG_RELEASE number.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Nick Hainke [Mon, 12 Jun 2023 10:33:21 +0000 (12:33 +0200)]
gpsd: update to 3.25
Release Information:
https://gitlab.com/gpsd/gpsd/-/blob/release-3.25/NEWS?ref_type=tags
Remove the backport that is now contained in the release:
- 003_sconscript-cross-platform-build-support.patch
Latest olsrd version needs this bump.
Signed-off-by: Nick Hainke <vincent@systemli.org>
Nick Hainke [Thu, 8 Jun 2023 12:34:09 +0000 (14:34 +0200)]
tunneldigger: add package for establishing L2TPv3 tunnels over UDP
In the previous commit we already added tunneldigger-broker. Add the
corresponding client.
This PR is just a refactoring of the already existing opkg package from
wlanslovenija [0].
[0] - https://github.com/wlanslovenija/firmware-packages-opkg/tree/master/net/tunneldigger
Signed-off-by: Nick Hainke <vincent@systemli.org>
Nick Hainke [Thu, 8 Jun 2023 10:36:33 +0000 (12:36 +0200)]
tunneldigger-broker: add broker for tunneldigger
In mesh communities, tunneldigger is widely used to create L2TPv3 tunnels
and mesh via them. Since the broker is typically installed on other
distributions, the openwrt broker package has not received any
maintenance in recent years [0]. I take now care of the further maintaince
of this package. Furthermore, I consulted with the maintainers to ensure
that they were comfortable with the change [1].
This PR is just a refactoring of the already existing opkg package from
wlanslovenija. It fixes config parsing and in general the config, adapts
to the new python syntax and fixes dependency handling.
- [0] https://github.com/wlanslovenija/firmware-packages-opkg/tree/master/net/tunneldigger-broker
- [1] https://github.com/wlanslovenija/firmware-packages-opkg/issues/24
Signed-off-by: Nick Hainke <vincent@systemli.org>
Hirokazu MORIKAWA [Mon, 12 Jun 2023 04:57:05 +0000 (13:57 +0900)]
libmraa: riscv64 not supported
Addresses buildbot errors
> CMake Error at CMakeLists.txt:193 (message):
> Only x86, arm, mips, PERIPHERALMAN and mock platforms currently supported
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Tianling Shen [Mon, 12 Jun 2023 10:21:02 +0000 (18:21 +0800)]
Merge pull request #21342 from jefferyto/golang-1.20.5
golang: Update to 1.20.5
Oskari Rauta [Sun, 11 Jun 2023 12:43:49 +0000 (15:43 +0300)]
netavark: update to v1.6.0
netavark v1.6.0 was released, so instead of using
git version, use release. Does not contain very
much of changes, but list is available from netavark's
commit log.
Software now comes with additional tool named
netavark-dhcp-proxy-client which is now included
in package.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Jeffery To [Mon, 12 Jun 2023 06:10:01 +0000 (14:10 +0800)]
python3: Update to 3.11.4, refresh patches
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Jeffery To [Mon, 12 Jun 2023 04:04:53 +0000 (12:04 +0800)]
golang: Update to 1.20.5
Includes fixes for:
* CVE-2023-29402: cmd/go: cgo code injection
* CVE-2023-29403: runtime: unexpected behavior of setuid/setgid binaries
* CVE-2023-29404: cmd/go: improper sanitization of LDFLAGS
* CVE-2023-29405: cmd/go: improper sanitization of LDFLAGS
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Christian Marangi [Sun, 11 Jun 2023 12:28:09 +0000 (14:28 +0200)]
xtables-addons: fix compilation error on kernel 6.1
Fix compilation error on kernel 6.1.
Fix compilation error:
In file included from /mnt/Data/Sources/openwrt/x-wrt/build_dir/target-aarch64_cortex-a72_musl/linux-bcm27xx_bcm2711/xtables-addons-3.24/extensions/LUA/controller.h:24,
from /mnt/Data/Sources/openwrt/x-wrt/build_dir/target-aarch64_cortex-a72_musl/linux-bcm27xx_bcm2711/xtables-addons-3.24/extensions/LUA/xt_LUA_target.c:27:
/mnt/Data/Sources/openwrt/x-wrt/build_dir/target-aarch64_cortex-a72_musl/linux-bcm27xx_bcm2711/xtables-addons-3.24/extensions/LUA/lua/lua.h:12:10: fatal error: stddef.h: No such file or directory
12 | #include <stddef.h>
| ^~~~~~~~~~
compilation terminated.
The error is caused by commit
04e85bbf71c9 ("isystem: delete global
-isystem compile option") present upstream from kernel 5.16. This
commit dropped the inclusion of system headers by default and caused
error on LUA module.
Following what is done in the commit for the required code, modify the
LUA Kbuild to include these header and restore correct compilation of
the LUA module.
Fixes: #21294
Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
Jitao Lu [Sun, 11 Jun 2023 13:01:18 +0000 (21:01 +0800)]
glib2: disable gnulib printf
A compiler bug (suspiciously) blocks gnulib compilation for
mipsel_24kc_24kf. While we had this patch to disable gnulib, it was
accidentally removed by
5d27631d9fbca076eb6377fc8c10f474ce9f4fea. Add it
back to fix the long broken build for mipsel_24kc_24kf.
Fixes: #19511
Signed-off-by: Jitao Lu <dianlujitao@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 13:02:26 +0000 (16:02 +0300)]
podman: update to v4.5.1
Contains several bug fixes.
Package now contains additional tool quadlet.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 13:11:39 +0000 (16:11 +0300)]
aardvark-dns: update to v1.6.0
aardvark-dns v1.6.0 was released,
so instead of using git version, use release -
similarly like netavark.
Very much hasn't changed but list of changes
is in git commit log of aardvark-dns.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Tianling Shen [Sun, 11 Jun 2023 16:55:32 +0000 (00:55 +0800)]
dnsproxy: Update to 0.50.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Christian Marangi [Sun, 11 Jun 2023 02:40:49 +0000 (04:40 +0200)]
nginx: bump to new 1.25.0 release
Bump nginx to new 1.25.0 release.
Changes:
*) Feature: experimental HTTP/3 support.
Every patch automatically refreshed.
Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 11:04:27 +0000 (14:04 +0300)]
parted: update to v3.6.0
Lot's of changes, but no online release notes
available, check ChangeLog file once extracted
if necessary
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 10:55:58 +0000 (13:55 +0300)]
crun: update v1.8.5
Moved to from git to release version,
but release version does not have submodule
libocispec included, so additional download added.
Release notes: https://github.com/containers/crun/releases
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 12:22:36 +0000 (15:22 +0300)]
mtools: update to version 4.0.43
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 12:17:30 +0000 (15:17 +0300)]
gnu-efi: update to version 3.0.17
update library + add new package containing efi programs
provided by gnu-efi library.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Stan Grishin [Sun, 11 Jun 2023 14:01:38 +0000 (08:01 -0600)]
Merge pull request #21282 from stangri/master-curl
curl: update to 8.1.2
Christian Marangi [Sun, 11 Jun 2023 02:29:54 +0000 (04:29 +0200)]
nginx: fix problem with migration of uci conf template
Fix some problem with migration of uci conf template and include of
module.d directive.
Fix 2 case:
- uci.conf.template not versioned but with the include module.d
resulting in double include module.d
- uci.conf.template version 1.1 with the include module.d at the end
of the config. This is problematic for nginx as modules must be
included before any http directive.
Handle this 2 case to restore a working uci.conf.template configuration
on migrated config.
Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
Christian Marangi [Sun, 11 Jun 2023 01:53:41 +0000 (03:53 +0200)]
nginx-util: bump uci conf template version
Bump uci conf template version to 1.2 to sync with nginx version
handling some migration problem.
Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
Leonid Bogdanov [Sat, 10 Jun 2023 13:06:31 +0000 (23:06 +1000)]
transmission: Fix env variables passing
It's not possible to configure custom Transmission web home as corresponding
env var gets overwritten by the command that sets CA bundle env var.
Signed-off-by: Leonid Bogdanov <leonidbogdanov86@gmail.com>
Oskari Rauta [Sun, 11 Jun 2023 09:44:54 +0000 (12:44 +0300)]
netbird: update to 0.21.1
Release notes: https://github.com/netbirdio/netbird/releases
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
Toke Høiland-Jørgensen [Fri, 9 Jun 2023 13:19:55 +0000 (15:19 +0200)]
acme-acmesh: Bump to version 3.0.6
Important security fix.
Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
Gerard Ryan [Tue, 6 Jun 2023 10:23:07 +0000 (20:23 +1000)]
dockerd: Update to 24.0.2
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Tue, 6 Jun 2023 10:22:01 +0000 (20:22 +1000)]
docker: Update to 24.0.2
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Tue, 6 Jun 2023 10:21:22 +0000 (20:21 +1000)]
containerd: Update to 1.7.1 for docker 24.0.2
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Tue, 6 Jun 2023 10:20:40 +0000 (20:20 +1000)]
runc: Update to 1.1.7 for docker 24.0.2
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Hirokazu MORIKAWA [Thu, 8 Jun 2023 05:37:38 +0000 (14:37 +0900)]
avahi: Import patches for security fixes
Imported patches included in debian and other package.
* 200-Fix-NULL-pointer-crashes-from-175.patch
CVE-2021-3502
A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this vulnerability is to the service availability.
* 201-Avoid-infinite-loop-in-avahi-daemon-by-handling-HUP-event.patch
CVE-2021-3468
A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function, allowing a local attacker to trigger an infinite loop. The highest threat from this vulnerability is to the availability of the avahi service, which becomes unresponsive after this flaw is triggered.
* 202-avahi_dns_packet_consume_uint32-fix-potential-undefined-b.patch
avahi_dns_packet_consume_uint32 left shifts uint8_t values by 8, 16 and 24 bits to combine them into a 32-bit value. This produces an undefined behavior warning with gcc -fsanitize when fed input values of 128 or 255 however in testing no actual unexpected behavior occurs in practice and the 32-bit uint32_t is always correctly produced as the final value is immediately stored into a uint32_t and the compiler appears to handle this "correctly".
Cast the intermediate values to uint32_t to prevent this warning and ensure the intended result is explicit.
* 203-Do-not-disable-timeout-cleanup-on-watch-cleanup.patch
This was causing timeouts to never be removed from the linked list that tracks them, resulting in both memory and CPU usage to grow larger over time.
* 204-Emit-error-if-requested-service-is-not-found.patch
It currently just crashes instead of replying with error. Check return
value and emit error instead of passing NULL pointer to reply.
* 205-conf-file-line-lengths.patch
Allow avahi-daemon.conf file to have lines longer than 256 characters (new limit 1024).
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Ivan Pavlov [Wed, 7 Jun 2023 17:58:42 +0000 (20:58 +0300)]
openvpn: fix ipchange hotplug event
In
f8a8b71e26b9bdbf86fbb7d4d1482637af7f3ba4 openvpn introduced new hotplug events.
For server config, ipchange hotplug event produces an error.
So, make ipchange hotplug event for client only
Fixes https://github.com/openwrt/packages/issues/21200
Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
S. Brusch [Wed, 7 Jun 2023 19:10:03 +0000 (21:10 +0200)]
crowdsec: new upstream release version 1.5.2
Update crowdsec to latest upstream release version 1.5.2
Signed-off-by: S. Brusch <ne20002@gmx.ch>
Maintainer: Kerma Gérald <gandalf@gk2.net>
Run tested: ipq40xx/generic, Fritzbox 4040, Openwrt 22.03.5
Description: update to latest version of upstream
Jeffery To [Tue, 6 Jun 2023 09:50:18 +0000 (17:50 +0800)]
python3-asgiref: Update to 3.7.2, rename source package
This renames the source package to python-asgiref to match other Python
packages.
This also updates the package title and URL.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Michael Heimpold [Wed, 7 Jun 2023 19:17:49 +0000 (21:17 +0200)]
Merge pull request #21265 from mhei/php8-fix-linking-on-riscv64
php8: fix linking on riscv64 platform
Tianling Shen [Wed, 7 Jun 2023 15:01:35 +0000 (23:01 +0800)]
Merge pull request #21298 from
1715173329/rust
rust: enable riscv64 support
Jan Hák [Wed, 7 Jun 2023 11:23:05 +0000 (13:23 +0200)]
knot: update to version 3.2.7
Signed-off-by: Jan Hák <jan.hak@nic.cz>
Jeffery To [Wed, 7 Jun 2023 11:25:20 +0000 (19:25 +0800)]
python3-django-etesync-journal: Remove package
This package was originally added[1] as it was a dependency of
etesync-server 0.3.0. When etesync-server was renamed to etebase and
upgraded to 0.6.1[2], this dependency was removed. No other package in
the packages feed depends on this package.
Upstream has also archived the git repo[3] and stated that the
repo/package is deprecated. It does not appear that any newer version of
etebase uses this package.
This removes the python3-django-etesync-journal package; it will be
submitted to the abandoned packages repo.
[1]: https://github.com/openwrt/packages/pull/10469
[2]: https://github.com/openwrt/packages/pull/14063
[3]: https://github.com/etesync/journal-manager
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Tianling Shen [Wed, 7 Jun 2023 11:00:54 +0000 (19:00 +0800)]
rust: enable riscv64 support
rust natively supports riscv64 so let's enable it.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Tianling Shen [Wed, 7 Jun 2023 07:06:34 +0000 (15:06 +0800)]
rust: bump libc to 0.2.146
Fixes build with musl 1.2.4.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
Jeffery To [Tue, 6 Jun 2023 08:30:20 +0000 (16:30 +0800)]
passlib: Update to 1.7.4, rename source package
This renames the source package from passlib to python-passlib to match
other Python packages.
This also updates the package URL and list of dependencies.
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
Peter van Dijk [Thu, 1 Jun 2023 12:42:29 +0000 (14:42 +0200)]
pdns: update to 4.8.0
Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
Tianling Shen [Thu, 1 Jun 2023 08:05:11 +0000 (16:05 +0800)]
gawk: disable mpfr detection
Disable mpfr detection to fix a build error due to (unncessary)
missing dependency:
```
Package gawk is missing dependencies for the following libraries:
libgmp.so.10
libmpfr.so.6
```
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
John Audia [Mon, 5 Jun 2023 16:26:48 +0000 (12:26 -0400)]
tree: bump to 2.1.1
Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B
Signed-off-by: John Audia <therealgraysky@proton.me>
Dobroslaw Kijowski [Mon, 5 Jun 2023 16:22:53 +0000 (18:22 +0200)]
adguardhome: bump to 0.107.29
* Full changelog available at:
* https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.26
* https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.27
* https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.28
* https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.29
Signed-off-by: Dobroslaw Kijowski <dobo90@gmail.com>
Tianling Shen [Tue, 6 Jun 2023 05:12:46 +0000 (13:12 +0800)]
Merge pull request #21275 from jefferyto/python-typing-extensions-4.6.3
python-typing-extensions: Update to 4.6.3
Tianling Shen [Tue, 6 Jun 2023 05:12:36 +0000 (13:12 +0800)]
Merge pull request #21274 from jefferyto/python-poetry-core-1.6.1
python-poetry-core: Update to 1.6.1
Tianling Shen [Tue, 6 Jun 2023 05:12:24 +0000 (13:12 +0800)]
Merge pull request #21273 from jefferyto/python-hatchling-1.17.1
python-hatchling: Update to 1.17.1
Stan Grishin [Mon, 5 Jun 2023 19:35:08 +0000 (19:35 +0000)]
curl: update to 8.1.2
* https://curl.se/changes.html#8_1_2
Signed-off-by: Stan Grishin <stangri@melmac.ca>
Dirk Brenken [Mon, 5 Jun 2023 15:20:12 +0000 (17:20 +0200)]
banip: release 0.8.7-1
* Optionally auto-add entire subnets to the blocklist Sets based on an additional RDAP request with the
monitored suspicious IP, set 'ban_autoblocksubnet' accordingly (disabled by default).
For more information regarding RDAP see
https://www.ripe.net/manage-ips-and-asns/db/registration-data-access-protocol-rdap for reference.
* small fixes & cosmetics
* update readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
John Audia [Sat, 3 Jun 2023 12:17:05 +0000 (08:17 -0400)]
snort3: update to 3.1.63.0
Upstream bump
Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B
Signed-off-by: John Audia <therealgraysky@proton.me>
Tianling Shen [Sat, 27 May 2023 06:35:33 +0000 (14:35 +0800)]
python3-bottle: Update to 0.12.25
Fix build with Python 3.11
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>