Noah Meyerhans [Sun, 16 Jul 2017 15:53:59 +0000 (08:53 -0700)]
bind: Update to 9.10.5-P3
New upstream release includes fixes for the following security issues:
* CVE-2017-3140: With certain RPZ configurations, a response with TTL 0 could
cause named to go into an infinite query loop
* CVE-2017-3142: An error in TSIG handling could permit unauthorized zone
transfers or zone updates.
* CVE-2017-3143: An error in TSIG handling could permit unauthorized zone
transfers or zone updates.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Sami Olmari [Mon, 5 Jun 2017 22:47:05 +0000 (01:47 +0300)]
bind: Include dnssec-settime in bind-dnssec/tool
<net/bind>
Maintainer: @nmeyerhans
Compile tested: x86_64, OpenWRT 50107
Run tested: x86 / 64, OpenWRT 50107
Description:
Added dnssec-settime into bind-dnssec and bind-tools
Signed-off-by: Sami Olmari <sami+git@olmari.fi>
Noah Meyerhans [Thu, 11 May 2017 05:06:46 +0000 (22:06 -0700)]
bind: Update to bind-9.10.5
This change includes fixes for several security issues:
* CVE-2017-3138: rndc "" could trigger an assertion failure in named.
* CVE-2017-3137: Some chaining (i.e., type CNAME or DNAME) responses to
upstream queries could trigger assertion failures.
* CVE-2017-3136: dns64 with break-dnssec yes; can result in an assertion
failure.
* CVE-2017-3135: If a server is configured with a response policy zone
(RPZ) that rewrites an answer with local data, and is also configured
for DNS64 address mapping, a NULL pointer can be read triggering a
server crash.
* CVE-2016-9444: named could mishandle authority sections with missing
RRSIGs, triggering an assertion failure.
* CVE-2016-9131: named mishandled some responses where covering RRSIG
records were returned without the requested data, resulting in an
assertion failure.
* CVE-2016-9131: named incorrectly tried to cache TKEY records which could
trigger an assertion failure when there was a class mismatch.
* CVE-2016-8864: It was possible to trigger assertions when processing
responses containing answers of type DNAME.
* CVE-2016-6170: Added the ability to specify the maximum number of
records permitted in a zone (max-records #;). This provides a mechanism
to block overly large zone transfers, which is a potential risk with
slave zones from other parties.
* CVE-2016-2776: It was possible to trigger an assertion when rendering a
message using a specially crafted request.
* CVE-2016-2775: Calling getrrsetbyname() with a non absolute name could
trigger an infinite recursion bug in lwresd or named with lwres
configured if, when combined with a search list entry from resolv.conf,
the resulting name is too long.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Noah Meyerhans [Thu, 12 Jan 2017 06:01:53 +0000 (22:01 -0800)]
bind: update to bind-9.10.4-P5
This change fixes multiple denial-of-service vulnerabilities:
* CVE-2016-9131: A malformed response to an ANY query can cause an
assertion failure during recursion
* CVE-2016-9147: An error handling a query response containing
inconsistent DNSSEC information could cause an assertion failure
* CVE-2016-9444: An unusually-formed DS record response could cause
an assertion failure
* CVE-2016-9778: An error handling certain queries using the
nxdomain-redirect feature could cause a REQUIRE assertion failure
in db.c
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Stijn Tintel [Tue, 29 Nov 2016 11:26:05 +0000 (12:26 +0100)]
bind: disable libjson support
If libjson-c is detected during bind-libs configure phase, bind-libs
will be built with libjson support. This results in a missing dependency
error during install phase. Solve this by disabling libjson support.
Noah Meyerhans [Thu, 17 Nov 2016 14:19:55 +0000 (06:19 -0800)]
bind: set sysconfdir to /etc/bind
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Noah Meyerhans [Wed, 2 Nov 2016 05:29:58 +0000 (22:29 -0700)]
bind: update to 9.10.4-p4
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Noah Meyerhans [Fri, 30 Sep 2016 03:32:49 +0000 (20:32 -0700)]
bind: Set PKG_USE_MIPS16:=0
Noah Meyerhans [Wed, 28 Sep 2016 05:22:05 +0000 (22:22 -0700)]
bind: Update to 9.9.9-p3 for CVE-2016-2776
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Zoltan HERPAI [Thu, 9 Nov 2017 19:59:27 +0000 (20:59 +0100)]
net/bind: PKG_RELEASE increased
Signed-off-by: DonkZZ <donk@evhr.net>
DonkZZ [Sun, 20 Mar 2016 13:38:15 +0000 (14:38 +0100)]
net/bind: Update db.root
The contents of the file "db.root" is very old (12 years).
Here's a new version downloaded from ftp://ftp.internic.net/domain/
Signed-off-by: DonkZZ <donk@evhr.net>
DonkZZ [Sun, 20 Mar 2016 13:29:36 +0000 (14:29 +0100)]
net/bind: Little cleaning in named.init
The variable "config_file" appears twice.
Signed-off-by: DonkZZ donk@evhr.net
Noah Meyerhans [Wed, 9 Mar 2016 20:54:51 +0000 (12:54 -0800)]
bind: Update to 9.9.8-P4 to resolve CVE-2016-1285 and CVE-2016-1286
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
Ted Hess [Fri, 3 Nov 2017 11:11:36 +0000 (07:11 -0400)]
Merge pull request #5042 from kishangondaliya/libsodium
[For-15.05] libsodium: Fix download url
Kishan Gondaliya [Tue, 31 Oct 2017 08:16:19 +0000 (13:46 +0530)]
libsodium: Fix download url
Signed-off-by: Kishan Gondaliya <kishanpgondaliya@gmail.com>
champtar [Sat, 15 Jul 2017 23:57:57 +0000 (16:57 -0700)]
Merge pull request #3562 from MikePetullo/for-15.05-krb5
krb5: install include properly and leave libcom_err* in place
Hannu Nyman [Sat, 8 Apr 2017 07:30:35 +0000 (10:30 +0300)]
Merge pull request #4127 from gstrauss/lighttpd-for-15.05
Lighttpd for 15.05
Glenn Strauss [Sat, 7 Jan 2017 05:38:05 +0000 (00:38 -0500)]
lighttpd: add new modules, upd URLs, add restart()
(with feedback from @hnyman and patch additions from @MikePetullo)
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
Rafał Miłecki [Wed, 22 Feb 2017 07:19:49 +0000 (08:19 +0100)]
lighttpd: fix regression in local-redir used with url.rewrite-once
This fixes upstream regression introduced in 1.4.40. It was reported &
debugged in https://redmine.lighttpd.net/issues/2793
This fix is queued for 1.4.46 in the personal/gstrauss/master upstream
branch.
Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
Rafał Miłecki [Mon, 20 Feb 2017 11:18:17 +0000 (12:18 +0100)]
lighttpd: update to 1.4.45
Update to 1.4.42 introduced a problem with starting lighttpd as
OpenWrt/LEDE service. It was stopping whole init process at sth like:
783 root 1124 S {S50lighttpd} /bin/sh /etc/rc.common /etc/rc.d/S50lighttpd boot
799 root 1164 S /usr/sbin/lighttpd -f /etc/lighttpd/lighttpd.conf
It was hanging until getting random pool:
[ 176.340007] random: nonblocking pool is initialized
and then immediately the rest of init process followed:
[ 176.423475] jffs2_scan_eraseblock(): End of filesystem marker found at 0x0
[ 176.430754] jffs2_build_filesystem(): unlocking the mtd device... done.
[ 176.437615] jffs2_build_filesystem(): erasing all blocks after the end marker... done.
This was fixed in 1.4.44, but bump directly to 1.4.45 while at it.
Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
W. Michael Petullo [Fri, 25 Nov 2016 15:33:28 +0000 (10:33 -0500)]
lighttpd: add option to build mod_authn_file.so
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Hannu Nyman [Sun, 26 Feb 2017 17:47:20 +0000 (19:47 +0200)]
Merge pull request #4061 from EricLuehrsen/trust_anchor_15_05
[for-15.05] unbound: DNSSEC trust anchor roll for 2017
Eric Luehrsen [Thu, 23 Feb 2017 02:35:56 +0000 (21:35 -0500)]
unbound: DNSSEC trust anchor roll for 2017
Carry both the 2010 and 2017 DS records until 2018.
Unbound complies with RFC5011 but fresh installs
need these anchors to get started.
https://www.icann.org/resources/pages/ksk-rollover
https://www.iana.org/domains/root
Signed-off-by: Eric Luehrsen <ericluehrsen@hotmail.com>
Nikos Mavrogiannopoulos [Sun, 12 Feb 2017 09:25:51 +0000 (10:25 +0100)]
ocserv: updated to 0.11.7
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos [Sun, 27 Nov 2016 17:06:11 +0000 (18:06 +0100)]
ocserv: explicitly disable lz4 building
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Hannu Nyman [Thu, 9 Feb 2017 20:56:12 +0000 (22:56 +0200)]
Merge pull request #3973 from chris5560/for-15.05
[for-15.05] ddns-scripts: New update url for service duiadns.net
Christian Schoenebeck [Thu, 9 Feb 2017 20:49:05 +0000 (21:49 +0100)]
[for-15.05] ddns-scripts: New update url for service duiadns.net
- new update url for service "duiadns.net" #3969
- updated public_suffix_list.dat
Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>
Ted Hess [Fri, 20 Jan 2017 19:31:45 +0000 (14:31 -0500)]
Merge pull request #3880 from chris5560/for-15.05
[for-15.05] ddns-scripts: backport of 2.7.6-12
Christian Schoenebeck [Wed, 18 Jan 2017 20:54:55 +0000 (21:54 +0100)]
[for-15.05] ddns-scripts: backport of 2.7.6-12
- fix detecting local ip from ip command #3834 and https://forum.lede-project.org/t/bugs-in-ddns-scripts/1000
- updated public_suffix_list.dat
- minor fixes to services files
Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>
Hannu Nyman [Thu, 12 Jan 2017 20:34:36 +0000 (22:34 +0200)]
Merge pull request #3829 from chris5560/for-15.05
[For 15.05] ddns-scripts: Backport of current version 2.7.6-11
Christian Schoenebeck [Thu, 12 Jan 2017 18:26:33 +0000 (19:26 +0100)]
[for-15.05] ddns-scripts: backport of 2.7.6-11
fix problem with detecting ip from nslookup
Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>
Christian Schoenebeck [Wed, 11 Jan 2017 16:05:05 +0000 (17:05 +0100)]
[for-15.05] ddns-scripts: backport of 2.7.6-10
Backport of current version 2.7.6-10
- more services
- more functionality
- be prepared for next versions
compiled ipk-packages available at
https://github.com/chris5560/OpenWrt-Backports/tree/master/for-CC15.05.01/ddns-scripts_2.7.6-10
Signed-off-by: Christian Schoenebeck <christian.schoenebeck@gmail.com>
Stijn Tintel [Fri, 6 Jan 2017 01:59:29 +0000 (02:59 +0100)]
Merge pull request #3323 from SvenRoederer/feature/add_snmp-mibs_for-15.05
net-snmp: [backport-15.05] add package snmp-mibs
Sven Roederer [Sun, 9 Oct 2016 14:01:54 +0000 (16:01 +0200)]
net-snmp: add package snmp-mibs
this installs the default MIBS-files under /usr/share/snmp/mibs .
Also aligns the defines to the same sorting-scheme.
backport of
daeb5fd5063d5b49829d76ee05938178acc93946
Signed-off-by: Sven Roederer <devel-sven@geroedel.de>
Dirk Brenken [Fri, 28 Oct 2016 16:27:28 +0000 (18:27 +0200)]
adblock: update to 1.5.4
Apply adblock updates 1.5.3-1.5.4
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Original commit messages:
adblock: update 1.5.3
* make wget check more flexible,
fix for broken wget package installations
adblock: bugfix 1.5.4
* CC/uclient-fetch compatibility fix
Ted Hess [Sun, 27 Nov 2016 15:23:22 +0000 (10:23 -0500)]
Merge pull request #3576 from mchsk/for-15.05
libaudiofile: updated source url (v0.3.6)
Marek Sedlak [Sun, 27 Nov 2016 12:18:07 +0000 (13:18 +0100)]
libbaudiofile: updated source url to gnome repos (v0.3.6)
Signed-off-by: Marek Sedlak bodka.zavinac@gmail.com
Ted Hess [Fri, 25 Nov 2016 13:50:21 +0000 (08:50 -0500)]
Merge pull request #3560 from julbrygd/for-15.05
libsodium and dnscrypt-proxy url change for 15.05
W. Michael Petullo [Thu, 24 Nov 2016 15:57:41 +0000 (10:57 -0500)]
krb5: install include properly and leave libcom_err* in place
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Stephan Conrad [Thu, 24 Nov 2016 12:37:29 +0000 (13:37 +0100)]
dnscrypt-proxy: apended /old to download url for 15.05 branch
Signed-off-by: Stephan Conrad <stephan@conrad.pics>
Stephan Conrad [Thu, 24 Nov 2016 12:37:08 +0000 (13:37 +0100)]
libsodium: apended /old to download url for 15.05 branch
Signed-off-by: Stephan Conrad <stephan@conrad.pics>
Hannu Nyman [Mon, 21 Nov 2016 14:39:33 +0000 (16:39 +0200)]
Merge pull request #3524 from luizluca/cc/ruby-update
CC15.05 ruby: bump to 2.2.6
Hannu Nyman [Mon, 21 Nov 2016 14:27:23 +0000 (16:27 +0200)]
Merge pull request #3489 from commodo/for-15.05-backport-python-2.7.12
[for 15.05] python: backport version 2.7.12 to CC
Alexandru Ardelean [Mon, 7 Nov 2016 15:35:30 +0000 (17:35 +0200)]
python: backport version 2.7.12 to CC
Fixes CVE-2016-5699
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-5699
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Luiz Angelo Daros de Luca [Fri, 18 Nov 2016 05:28:52 +0000 (03:28 -0200)]
ruby: bump to 2.2.6
This release includes new SSL certificates for RubyGems. And, this also
includes about 80 bug fixes after the previous release. See the
http://svn.ruby-lang.org/repos/ruby/tags/v2_2_6/ChangeLog for details.
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
Nikos Mavrogiannopoulos [Wed, 16 Nov 2016 17:42:42 +0000 (18:42 +0100)]
ocserv: updated to 0.11.6
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Robbie Cao [Fri, 11 Nov 2016 23:41:12 +0000 (07:41 +0800)]
libnfc: switch git repository to github
Signed-off-by: Robbie Cao <robbie.cao@gmail.com>
heil [Thu, 10 Nov 2016 17:45:24 +0000 (18:45 +0100)]
haproxy: revert update commits
- Revert "package haproxy: fix typo for buildvariant nossl"
- Revert "haproxy: bump to version 1.6.9 mainline and pending patches"
Signed-off-by: heil <heil@terminal-consulting.de>
heil [Wed, 9 Nov 2016 23:04:09 +0000 (00:04 +0100)]
package haproxy: fix typo for buildvariant nossl
Signed-off-by: heil <heil@terminal-consulting.de>
heil [Wed, 9 Nov 2016 22:42:43 +0000 (23:42 +0100)]
haproxy: bump to version 1.6.9 mainline and pending patches
Signed-off-by: heil <heil@terminal-consulting.de>
Luka Perkov [Tue, 8 Nov 2016 12:34:31 +0000 (13:34 +0100)]
Revert "libwebsockets: sync with master version"
This reverts commit
e245e2b8246d0d25892d3dc2af0d3834ef95a02e.
Signed-off-by: Luka Perkov <luka@openwrt.org>
Hannu Nyman [Sun, 6 Nov 2016 11:43:29 +0000 (13:43 +0200)]
Merge pull request #3173 from MikePetullo/for-15.05-bogofilter
bogofilter: postfix script now reads bogofilter_dir from bogofilter conf
Luka Perkov [Wed, 2 Nov 2016 13:01:13 +0000 (14:01 +0100)]
libwebsockets: sync with master version
Signed-off-by: Luka Perkov <luka@openwrt.org>
Hannu Nyman [Sat, 29 Oct 2016 08:29:01 +0000 (11:29 +0300)]
Merge pull request #3411 from MikePetullo/for-15.05
lighttpd: update to 1.4.42
W. Michael Petullo [Sat, 29 Oct 2016 08:17:08 +0000 (04:17 -0400)]
lighttpd: update to 1.4.42
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Dirk Brenken [Tue, 25 Oct 2016 09:43:35 +0000 (12:43 +0300)]
adblock: update 1.5.2
* turris omnia compatibility fix
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
65bcae09867a735b098dd7375756a56ff54ee72f)
Dirk Brenken [Thu, 13 Oct 2016 12:59:29 +0000 (15:59 +0300)]
adblock: update to 1.5.1
Apply adblock updates 1.4.10-1.5.1
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Original commit messages:
adblock: update 1.4.10
- add 'enabled' check to iface hotplug event handler
- decrease startup priority from 99 to 90
- fix tab indentation in config
adblock: update 1.5.0
* add new 'envchk'function to check adblock environment only,
i.e. check volatile firewall rules or uhttpd instances
without list updates
* add new optional parm 'adb_loglevel',
set it to "0" to mute output (print only errors)
* set hotplug priority to '90' as well (missed in the last commit)
* documentation update
* cosmetics
adblock: bugfix 1.5.1
* fix uhttpd detection in tcp 4+6 configurations
Ted Hess [Fri, 30 Sep 2016 18:48:48 +0000 (14:48 -0400)]
ffmpeg: Update to 2.6.9, Add patch to fix AAC decoder performance and memory usage (2.7 backport)
Signed-off-by: Ted Hess <thess@kitschensync.net>
Nikos Mavrogiannopoulos [Tue, 27 Sep 2016 21:33:14 +0000 (23:33 +0200)]
ocserv: updated to 0.11.5
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Dirk Brenken [Mon, 19 Sep 2016 12:59:33 +0000 (15:59 +0300)]
adblock: update to 1.4.9
Apply adblock updates 1.4.8-1.4.9
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Original commit messages:
adblock: update 1.4.8
* enhance the new query function:
change the regex to find only the relevant blocklist entries
add a recursive tld search to quickly identify domains for
whitelisting (see documentation)
better result preparation
* add securemecca as new blocklist source
* documentation update
adblock: update 1.4.9
* refine query function (see online doc)
W. Michael Petullo [Sun, 12 Jun 2016 19:49:54 +0000 (15:49 -0400)]
bogofilter: postfix script now reads bogofilter_dir from bogofilter conf
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Hannu Nyman [Wed, 14 Sep 2016 13:08:00 +0000 (16:08 +0300)]
Merge pull request #3166 from MikePetullo/for-15.05-lighttpd
lighttpd: update to 1.4.41
Hannu Nyman [Wed, 14 Sep 2016 13:06:21 +0000 (16:06 +0300)]
Merge pull request #3164 from MikePetullo/for-15.05-luasec
luasec: update to 0.6
Hannu Nyman [Wed, 14 Sep 2016 12:56:45 +0000 (15:56 +0300)]
Merge pull request #3165 from MikePetullo/for-15.05-openldap
openldap: update to 2.4.44
W. Michael Petullo [Wed, 14 Sep 2016 03:03:43 +0000 (23:03 -0400)]
lighttpd: update to 1.4.41
Signed-off-by: W. Michael Petullo <mike@flyn.org>
W. Michael Petullo [Wed, 14 Sep 2016 03:01:33 +0000 (23:01 -0400)]
openldap: update to 2.4.44
Signed-off-by: W. Michael Petullo <mike@flyn.org>
W. Michael Petullo [Wed, 14 Sep 2016 02:58:26 +0000 (22:58 -0400)]
luasec: update to 0.6
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Denis Osvald [Fri, 9 Sep 2016 11:12:32 +0000 (13:12 +0200)]
libuv: bump version to 1.9.1
Signed-off-by: Denis Osvald <denis.osvald@sartura.hr>
Nikos Mavrogiannopoulos [Thu, 8 Sep 2016 16:28:14 +0000 (18:28 +0200)]
gnutls: updated to 3.4.15
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Ted Hess [Thu, 8 Sep 2016 12:38:01 +0000 (08:38 -0400)]
libvorbisidec: Use HTTPS for Tremor repo
Signed-off-by: Ted Hess <thess@kitschensync.net>
Karl Palsson [Mon, 5 Sep 2016 11:38:28 +0000 (11:38 +0000)]
mosquitto: fix compatibily with libwebsockets
Only applies to the 15.05 branch!
Apply a patch to correct usage with the (rather old) version of
libwebsockets in CC. Has been submitted upstream.
Fixes github issue #3127
Signed-off-by: Karl Palsson <karlp@etactica.com>
Dirk Brenken [Sun, 28 Aug 2016 14:34:30 +0000 (17:34 +0300)]
adblock: update 1.4.7
Apply adblock update 1.4.5-1.4.7
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Original commit messages:
adblock: update 1.4.5
* change the default hphosts list source to ad and tracking servers
only, the overall list includes to many false positives
* new optional config parm 'adb_hotplugif' to restrict hotplug support
to a certain wan interface or to disable it at all
* documentation update
* cosmetics
adblock: update 1.4.6
* added a 'window.close()' to adblock landing page to automatically
close any pop-ups that might get loaded with a blocked ad
* simplified dnsmasq check in ap mode
adblock: update 1.4.7
* add a query function to search the active blocklists for a specific
domain (/etc/init.d/adblock query <DOMAIN>)
* fix bug in ap mode/uhttpd port detection
* check general firewall and dnsmasq package dependencies and remove
redundant checks in ap mode
Karl Palsson [Mon, 22 Aug 2016 12:35:54 +0000 (12:35 +0000)]
mosquitto: Bump to 1.4.10
Full changelog: http://mosquitto.org/2016/08/version-1-4-10-released/
Relevant changes:
libwebsockets 2.0 compatibility
openssl 1.1.0 compatibility
Signed-off-by: Karl Palsson <karlp@etactica.com>
Hannu Nyman [Tue, 23 Aug 2016 12:00:42 +0000 (15:00 +0300)]
Merge pull request #3088 from mrpace2/for-15.05
luai2c: moved upstream project to github
Frank Edelhäuser [Tue, 23 Aug 2016 11:37:00 +0000 (13:37 +0200)]
moved upstream project to github
Signed-off-by: Frank Edelhaeuser <mrpace2@gmail.com>
Dirk Brenken [Sun, 14 Aug 2016 16:23:04 +0000 (19:23 +0300)]
adblock: update 1.4.4
Update for-15.05 adblock from 1.2.1 to 1.4.4
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Original commit messages of 1.2.5-1.4.4 commits:
adblock: update 1.2.5
* restructured sources
* fix logical glitches in config handling
* many corner case fixes & cosmetics
* show runtime errors in LuCI (in lastrun section)
adbock: update 1.2.6
* small addition in case of a failed list download
adblock: update 1.2.7
* provide adblock statistics as a separate function
(/etc/init.d/adblock stats)
adblock: update 1.2.8
* fw rule changes:
force_dns now supports multiple lan devices
disable needless force_dns- & forward/output-rules in 'ap mode'
check return codes during adblock chain creation
* simplified the test for a running firewall
* documentation update
adblock: release 1.3.0
* revised hotplug script
* remove wget package dependency
* support uclient-fetch or wget with ssl support
* documentation update
adblock: update 1.3.1
* fix uclient-fetch detection
* cosmetics
adblock: update 1.3.2
* only a few more fixes
adblock: update 1.3.3
* enable automatic restore on empty source downloads
adblock: release 1.4.0
* rework/speed up overall sort
* simplified dns error handling
adblock: update 1.4.1
* fix two possible overflows in adblock statistics
adblock: update 1.4.2
* ad broad blocklist source 'hphosts' https://hosts-file.net
adblock: update 1.4.3
* fix race condition in restricted mode
* cosmetics
adblock: update 1.4.4
* filter non-printable characters/binary data in input stream
* fix IPv4 adblock statistics in CC
champtar [Fri, 12 Aug 2016 22:17:59 +0000 (00:17 +0200)]
Merge pull request #3051 from bernhardschmidt/fix-ldns
[for-15.05] ldns: Avoid perl bug for manpages.
Konstantin Shalygin [Mon, 9 May 2016 12:37:32 +0000 (18:37 +0600)]
ldns: Avoid perl bug for manpages.
Fix #2663
Signed-off-by: Konstantin Shalygin <k0ste@cn.ru>
[refresh patch]
Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com>
(cherry picked from commit
a4a9038f58c4876d419a173bb17d34c0800fae75)
Nikos Mavrogiannopoulos [Sat, 6 Aug 2016 11:15:37 +0000 (13:15 +0200)]
ocserv: updated to 0.11.4
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Yousong Zhou [Sun, 10 Jul 2016 01:14:07 +0000 (09:14 +0800)]
Merge pull request #2951 from MikePetullo/for-15.05
dmapd: update to 0.0.73
W. Michael Petullo [Sat, 9 Jul 2016 19:57:17 +0000 (15:57 -0400)]
dmapd: update to 0.0.73
Signed-off-by: W. Michael Petullo <mike@flyn.org>
Nikos Mavrogiannopoulos [Wed, 6 Jul 2016 08:43:09 +0000 (10:43 +0200)]
gnutls: updated to 3.4.14
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
champtar [Sun, 3 Jul 2016 21:45:21 +0000 (23:45 +0200)]
Merge pull request #2914 from br101/for-15.05
horst: Use version 5.0
W. Michael Petullo [Sun, 12 Jun 2016 19:10:21 +0000 (15:10 -0400)]
nfs-kernel-server: fix segfault on x86_64/uClibc
Signed-off-by: W. Michael Petullo <mike@flyn.org>
[refresh patch]
Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com>
Bruno Randolf [Thu, 19 Nov 2015 14:54:08 +0000 (14:54 +0000)]
horst: Use version 5.0
Signed-off-by: Bruno Randolf <br1@einfach.org>
heil [Mon, 20 Jun 2016 23:08:28 +0000 (01:08 +0200)]
haproxy: bump to version 1.5.18 and pending patches
Signed-off-by: heil <heil@terminal-consulting.de>
heil [Mon, 20 Jun 2016 22:56:41 +0000 (00:56 +0200)]
pcre: bump to version 8.39
Signed-off-by: heil <heil@terminal-consulting.de>
Nikos Mavrogiannopoulos [Thu, 16 Jun 2016 20:36:03 +0000 (22:36 +0200)]
openconnect: updated license
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos [Thu, 16 Jun 2016 20:35:19 +0000 (22:35 +0200)]
ocserv: updated license
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos [Thu, 16 Jun 2016 20:34:54 +0000 (22:34 +0200)]
libtasn1: corrected library license
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Nikos Mavrogiannopoulos [Thu, 16 Jun 2016 20:24:39 +0000 (22:24 +0200)]
ocserv: updated to 0.11.3
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Dirk Brenken [Sun, 12 Jun 2016 16:53:51 +0000 (18:53 +0200)]
adblock: update 1.2.1
* small optimizations & cosmetics
adblock: release 1.2.0
* rework download/backup/restore handling
* rework firewall handling
* refine whitelist parsing
* changed default null-ip to 198.18.0.1 to prevent conflicts with bcp38
* spread traffic from ad servers (port 80/443) on two uhttpd instances,
this fixes timeouts on sites with many ssl ad server connections, i.e.
youtube.com
* provide statistics & last runtime for LuCI interface
* documentation update
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
8ab3d8bdc2535c208d3baa04fbf9269c080030de)
(cherry picked from commit
672dd10b101de5013e2df1d6a4b2d287b782e42f)
champtar [Mon, 13 Jun 2016 21:31:17 +0000 (23:31 +0200)]
Merge pull request #2782 from feckert/licenses-for-15.05
libtasn1: add license tag
Nikos Mavrogiannopoulos [Sun, 12 Jun 2016 13:36:43 +0000 (15:36 +0200)]
gnutls: updated to 3.4.13
Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Karl Palsson [Mon, 6 Jun 2016 10:52:41 +0000 (10:52 +0000)]
net/mosquitto: update maintainer email address
Signed-off-by: Karl Palsson <karlp@remake.is>
Signed-off-by: Karl Palsson <karlp@etactica.com>
Karl Palsson [Mon, 6 Jun 2016 10:51:10 +0000 (10:51 +0000)]
net/mosquitto: bump to v1.4.9
Bugfix release. Full changelog available at
http://mosquitto.org/2016/06/version-1-4-9-released/
Signed-off-by: Karl Palsson <karlp@etactica.com>
Dirk Brenken [Sat, 4 Jun 2016 07:38:53 +0000 (10:38 +0300)]
adblock: update 1.1.17
* change winspy url again
* various cosmetics left out in former release
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
d0eceb6b2540bf5c06a0405245803052d032a82e)
adblock: update 1.1.16, release 2
* workaround for LuCI search path issue
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
26fa1c5df070d7cbbe24791ba0696e035d01cdde)
adblock: update 1.1.16
* new config option 'adb_restricted' to disable updates of the adblock
config during runtime (no flash writes, disabled by default)
* new update function, to apply latest configuration changes if needed
(/etc/init.d/adblock cfgup)
* fix dns redirect rule
* various optimizations
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
41b05a5532c8442b60ef731008248f339e128cc9)
Dirk Brenken [Fri, 3 Jun 2016 07:14:48 +0000 (10:14 +0300)]
adblock: update 1.1.15
* toggle to quickly switch adblocking 'on' or 'off' (/etc/init.d/adblock
toggle)
* new config option 'fetchttl' to set download timeouts (default: 5
seconds)
* better config check, distinct between major/minor changes
* documentation update
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
4f3f239ff22bd1c3c16e40c784ae212366b75e42)
Florian Eckert [Tue, 31 May 2016 12:49:11 +0000 (14:49 +0200)]
libtasn1: add license tag
show the license for this package in opkg
Signed-off-by: Florian Eckert <Eckert.Florian@googlemail.com>
Dirk Brenken [Mon, 23 May 2016 19:17:23 +0000 (21:17 +0200)]
adblock: update 1.1.12
* change wget binary naming
* change winspy source url
* documentation update
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
bad84563dc511f25eb4390f4a74767c5ecfbaac1)