Matt Reeve [Wed, 12 May 2021 13:28:22 +0000 (14:28 +0100)]
rsync: Add rrsync script
Rrsync is a perl script that is supplied as an extra with the rsync program.
It must be used in conjunction with openssh-server or openssh-server-pam
as it requires ~/.ssh/authorized_keys which is not supported by dropbear.
Rrsync allows selective access to subdirectories in either read-only, write-only or read-write mode,
depending on settings in authorized_keys. This allows for safer, restrictive access.
It's particularly useful for automated backup purposes.
An example usage would be this entry:
command="/usr/bin/rrsync -ro /home" <public key here>
This would allow a system connecting with this public key to be able to rsync FROM the
/home directory tree only. It could not write to this directory, nor read from any other directory.
Signed-off-by: Matt Reeve <matt@mreeve.com>
(cherry picked from commit
081229aa09e28435d3d8802ce053a5d4eee8978a)
Jan Hoffmann [Sun, 16 May 2021 16:22:56 +0000 (18:22 +0200)]
vnstat2: update to version 2.7
Signed-off-by: Jan Hoffmann <jan@3e8.eu>
Tianling Shen [Tue, 18 May 2021 04:15:53 +0000 (12:15 +0800)]
yq: Update to 4.9.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
2a7114a1aa0abc40f5bf0cfd63c05d3972a50d97)
Alexandru Ardelean [Mon, 10 May 2021 07:10:17 +0000 (10:10 +0300)]
python3: bump version to 3.9.5
Refreshed Python patches.
Updated pip & setuptools version.
For pip, patch '001-pep517-pyc-fix.patch' was reworked.
Also, the current version of the bundled pip (21.1.1) no longer supports
Python2, so the 'py2.py3' suffix gets replaced with just py3.
For setuptools, there is no longer a script/module:
https://github.com/pypa/setuptools/pull/2544
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit
e312275dd9c25c4032b4d2d3623b042905c8bf16)
Alexandru Ardelean [Tue, 15 Dec 2020 09:07:21 +0000 (11:07 +0200)]
python3: introduce libpython3 with ABI_VERSION flag
Related to discussion:
https://github.com/openwrt/packages/pull/14060
Every once in a while a version bump will occur that requires an ABI
change. Example: Python 3.8 to 3.9. When this happens some Python packages
would need to be rebuilt. In setups where everything gets rebuilt, this
isn't a problem.
It's usually a bigger problem when needing to upgrade something via
opkg.
To accommodate for this, we add a libpython with it's own ABI_VERSION
flag. If this ABI_VERSION changes, then this should propagate forward.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit
27aee1fbf09a6230836d191d1138c9ed805373eb)
Alexandru Ardelean [Mon, 5 Apr 2021 14:53:18 +0000 (17:53 +0300)]
python3: bump to version 3.9.4
For some reason Python3 jumped from 3.9.2 to 3.9.4 in about a week.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit
156e2e354e0a4eaa576daa70785aeddaabca7636)
Johnny Vogels [Wed, 3 Mar 2021 17:25:05 +0000 (18:25 +0100)]
Bluez: Update to 5.56
Signed-off-by: Johnny Vogels <35307256+jmv2009@users.noreply.github.com>
(cherry picked from commit
7299ba0517bc0b8fedcf9bcaac687614b04cafa1)
Johnny Vogels [Tue, 2 Mar 2021 20:00:58 +0000 (21:00 +0100)]
Bluez: Update to 5.55
Signed-off-by: Johnny Vogels <35307256+jmv2009@users.noreply.github.com>
(cherry picked from commit
d653862bd7e91e0b47b0f57e937f7344955df99f)
Rosen Penev [Sun, 7 Mar 2021 04:03:26 +0000 (20:03 -0800)]
znc: update to 1.8.2
Switch to CMake + Ninja to fix parallel compilation.
Switched PKG_BUILD_DIR to use PKG_INSTALL_DIR for easier readability.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
b92f2c2bee23c54cfc673af3bec4e614c1f95312)
Rosen Penev [Sun, 16 May 2021 08:04:08 +0000 (01:04 -0700)]
Merge pull request #15631 from nxhack/2102_node_14170
[21.02] node: bump to v14.17.0
Jan Pavlinec [Tue, 11 May 2021 08:28:09 +0000 (10:28 +0200)]
knot-resolver: update to version 5.3.2
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
112af34ff3c8b97bf7eb1dbb7fb26b055898e47b)
W. Michael Petullo [Mon, 10 May 2021 17:59:28 +0000 (12:59 -0500)]
syslog-ng: update to 3.32.1
Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry picked from commit
f93ef647932aa05a7a4eab69ffd9f49441076f81)
Jan Hak [Thu, 13 May 2021 07:32:01 +0000 (09:32 +0200)]
knot: update to version 3.0.6
Signed-off-by: Jan Hak <jan.hak@nic.cz>
(cherry picked from commit
d578f60818b9dd53cc3285cc4deff32fb09f7a89)
Jan Hak [Mon, 29 Mar 2021 09:48:21 +0000 (11:48 +0200)]
knot: update to version 3.0.5
Signed-off-by: Jan Hak <jan.hak@nic.cz>
(cherry picked from commit
d92a2cd21bbc41ceba9ac2b7a8ccc96a0bd2a249)
Ansuel Smith [Tue, 11 May 2021 22:27:31 +0000 (00:27 +0200)]
atlas-sw-probe: fix missing link on sysupgrade
Recreate symbolic link if it's missing after a sysupgrade with a private and public key present in /etc/atlas/
Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
(cherry picked from commit
603133074920d845c10bedf02cb79c23e9115244)
Luiz Angelo Daros de Luca [Mon, 22 Feb 2021 18:18:53 +0000 (15:18 -0300)]
hplip: bump to 3.21.2
Patches refreshed:
* 010-libusb_fix.patch
* 020-remove_cups_dep_on_scan.patch
* 060-fix-uclibc.patch renamed to 060-fix-glibc.patch
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
(cherry picked from commit
2014f1fd0b5a746ed6e6b959739977f59c2bbc13)
Alexander Ryzhov [Sun, 18 Apr 2021 10:57:14 +0000 (13:57 +0300)]
libtalloc: add Python3/host dependency
Otherwise, Package/Configure won't find distutils module from python3/host
Signed-off-by: Alexander Ryzhov <github@ryzhov-al.ru>
(cherry picked from commit
d9879cb20009268857b2f9b81fb948ae2e2e4a88)
Miroslav Lichvar [Thu, 13 May 2021 15:54:32 +0000 (17:54 +0200)]
chrony: update to 4.1
Signed-off-by: Miroslav Lichvar <mlichvar0@gmail.com>
Hirokazu MORIKAWA [Thu, 13 May 2021 06:52:37 +0000 (15:52 +0900)]
node: bump to v14.17.0
Notable Changes:
Diagnostics channel (experimental module)
UUID support in the crypto module
Experimental support for AbortController and AbortSignal
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Rosen Penev [Tue, 11 May 2021 17:28:37 +0000 (10:28 -0700)]
Merge pull request #15606 from
1715173329/yq-2102
[openwrt-21.02] yq: Update to 4.8.0
Tianling Shen [Tue, 11 May 2021 13:38:31 +0000 (21:38 +0800)]
yq: Update to 4.8.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
915311c3dc2f5fcadd8b3d806fb03568116eaf39)
Jan Pavlinec [Wed, 3 Mar 2021 09:13:15 +0000 (10:13 +0100)]
python-engineio: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
9e011b2fc814b63aae2a71ad8ee1351edb325a92)
Jan Pavlinec [Wed, 3 Mar 2021 11:51:13 +0000 (12:51 +0100)]
python-bidict: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
ae0556e6a53f85948448f04d1bc22884906f727e)
Alexandru Ardelean [Mon, 12 Apr 2021 06:43:35 +0000 (09:43 +0300)]
python-greenlet: support MIPS architecture
Fixes: https://github.com/openwrt/packages/issues/15370
This is inspired from:
https://github.com/wlanslovenija/firmware-packages-opkg/blob/
330bc94dccd16a3e92ac2fdde08c81a598e12f94/lang/python-greenlet/Makefile
The `PKG_USE_MIPS16:=0` is not taken into consideration when building
Python modules. That's because the sysconfig is used.
This is only an issue with greenlet (on MIPS) so far.
One option is to do `PKG_USE_MIPS16:=0` in the core Python package.
But, since we know that the `wlanslovenija` group has successfully used
greenlet on MIPS with this construct, we might as well adopt it until GCC10
becomes the main compiler.
As noted here:
https://github.com/openwrt/packages/issues/15370#issuecomment-
817015484
GCC10 doesn't have this problem.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit
bde027188ae122c1410569b1085a1a2520850e43)
Jan Pavlinec [Tue, 9 Mar 2021 11:56:46 +0000 (12:56 +0100)]
python-greenlet: add new package
Notes:
Build is disabled for arc and mips because
greenlet isn't ported for these platforms
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
837f1b59248e3ee885fc142154c65eff3b4516c7)
Jan Pavlinec [Wed, 3 Mar 2021 09:36:33 +0000 (10:36 +0100)]
python-socketio: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
decbd7b43a952dcce765ab6e5bbf8da4259453db)
Jan Pavlinec [Mon, 15 Mar 2021 11:10:03 +0000 (12:10 +0100)]
python-eventlet: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
d303bd6aac986cf55b85b61fe4e4386a119e5332)
Jan Pavlinec [Wed, 10 Mar 2021 11:07:33 +0000 (12:07 +0100)]
python-pysocks: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
780fc502d284976b3e9043586c29e41f79718384)
Jan Pavlinec [Wed, 3 Mar 2021 12:51:31 +0000 (13:51 +0100)]
python-flask-socketio: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
8133922a029adbc0cec32cc64c4cbbb16cf82da5)
Jan Pavlinec [Mon, 15 Mar 2021 08:58:51 +0000 (09:58 +0100)]
python-flask-httpauth: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
6c9627b45d9fcf3acac438466943015e1f0f837f)
Jan Pavlinec [Mon, 26 Apr 2021 10:13:30 +0000 (12:13 +0200)]
gitlab-runner: update to version 13.11.0
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
2acbb04c77f6ca9b3bacbaa1b8cae3addd4395f3)
Jan Pavlinec [Wed, 7 Apr 2021 10:14:08 +0000 (12:14 +0200)]
onionshare-cli: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
ae069fad3d0676e0bae534d2c0a6c76823840db1)
Jan Pavlinec [Wed, 28 Apr 2021 12:13:06 +0000 (14:13 +0200)]
tailscale: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
229b34286db1a42731af45a53d2129943c64e4e9)
Daniel Golle [Wed, 28 Apr 2021 18:06:38 +0000 (19:06 +0100)]
python-gnupg: update to version 0.4.7
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
7b32ab78c0bbef8a538bc61547df3a2de4234ebf)
Jan Hak [Tue, 27 Apr 2021 11:08:21 +0000 (13:08 +0200)]
libedit: update to version
20210419-3.1
Signed-off-by: Jan Hak <jan.hak@nic.cz>
(cherry picked from commit
b0870d792b3fd013137d2071c150248e85262d66)
Ansuel Smith [Thu, 22 Apr 2021 23:58:41 +0000 (01:58 +0200)]
atlas-sw-probe: improve key creation
- Exit start if a probe_key is not present
- Add create_key command to generate a private_key based on the provided username in the atlas config.
- Add registration instruction in /etc/atlas
- Rework script to save probe_key on sysupgrade (the key are now adviced to be placed in the /etc/atlas dir and a link is used to make them accessible in the atlas-sw-scripts etc dir)
Signed-off-by: Ansuel Smith <ansuelsmth@gmail.com>
(cherry picked from commit
0afe371babf851d1ce239c75525e99bcef3626d0)
Daniel Golle [Wed, 28 Apr 2021 16:57:17 +0000 (17:57 +0100)]
debian-archive-keyring: update to 2021.1.1
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
640a6ba9bd9accf2e0d07e15b4694bc66cb30790)
Daniel Golle [Wed, 28 Apr 2021 17:38:31 +0000 (18:38 +0100)]
Jinja2: update to version 2.11.3
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit
e70965b1aaaec266d6a9fdeb9c815567da3a508f)
Hirokazu MORIKAWA [Fri, 30 Apr 2021 03:48:52 +0000 (12:48 +0900)]
icu: add ABI_VERSION
To prevent inconsistencies in the coming version (69.1).
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
(cherry picked from commit
1eb29ddc956a857c887190315afa164161ba483a)
Andy Walsh [Thu, 6 May 2021 09:03:26 +0000 (11:03 +0200)]
samba4: update to 4.13.8
* update to 4.13.8
* remove faulty io_uring kernel detection
* fixes CVE's: CVE-2020-27840, CVE-2021-20277, CVE-2020-27840, CVE-2021-20277, CVE-2020-27840, CVE-2021-20277, CVE-2021-20254
* resolves #15512
Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
(cherry picked from commit
93b34d4ddad2768c27d03a78e723b5910964aaa0)
Jan Pavlinec [Tue, 13 Apr 2021 12:25:43 +0000 (14:25 +0200)]
unbound: add cache-max-negative-ttl config option
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
9296409e886ebd937fd702057737add0d97e0dfa)
Noah Meyerhans [Thu, 29 Apr 2021 16:05:26 +0000 (09:05 -0700)]
bind: bump to 9.17.12
Fixes the following security issues:
* CVE-2021-25215 - named crashed when a DNAME record placed in the ANSWER
section during DNAME chasing turned out to be the final
answer to a client query.
* CVE-2021-25214 - Insufficient IXFR checks could result in named serving a
zone without an SOA record at the apex, leading to a
RUNTIME_CHECK assertion failure when the zone was
subsequently refreshed. This has been fixed by adding an
owner name check for all SOA records which are included
in a zone transfer.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
(cherry picked from commit
ccb1e8923e6e0269e2443c37362b2b27c121d956)
Aaron Goodman [Wed, 28 Apr 2021 23:42:38 +0000 (19:42 -0400)]
mwan3: allow interfaces with no tracking IPs
In the procd refactor, support for interfaces with no tracking IPs was
inadvertentiy removed. This commit restores the previous behavior
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
(cherry picked from commit
b7ea19bc96e444b6726218abc6db7cd558bbf343)
Florian Eckert [Mon, 3 May 2021 08:52:26 +0000 (10:52 +0200)]
mwan3: update ubus status for not tracked interfaces
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
f1da872cd47b1602dc3014d6b4ee40cd5f9fe855)
Florian Eckert [Mon, 3 May 2021 08:51:44 +0000 (10:51 +0200)]
mwna3: fix whitespace
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
cbc5f0916c3fc6c29ef76a3e0c6c6adf0c2ccb8e)
Josef Schlehofer [Mon, 3 May 2021 18:00:46 +0000 (20:00 +0200)]
hwdata: update to version 0.347
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
22ae08919efc653cfb508be6e2dac90256557bed)
Dirk Brenken [Tue, 4 May 2021 14:32:35 +0000 (16:32 +0200)]
banip: update to 0.7.8
* fix pid file processing of the background monitor plus child
processes (bug reported in the forum)
* made the enabled/disabled switch of the background monitor functional
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
1402b3b56d3ccfcd36aa5331181d43dad59c31ff)
Hannu Nyman [Sat, 1 May 2021 20:50:21 +0000 (23:50 +0300)]
nano: update version to 5.7
Upgrade nano editor to version 5.7.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
765e9868579e1da270b3c831ecf34949013cdf01)
Hirokazu MORIKAWA [Sat, 1 May 2021 00:01:05 +0000 (09:01 +0900)]
icu: add ABI_VERSION
To prevent inconsistencies in the coming version (69.1).
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Christian Lachner [Sat, 1 May 2021 09:06:22 +0000 (11:06 +0200)]
haproxy: Update HAProxy to v2.2.14
- Update haproxy download URL and hash
Signed-off-by: Christian Lachner <gladiac@gmail.com>
Olivier Poitrey [Fri, 30 Apr 2021 15:51:06 +0000 (15:51 +0000)]
nextdns: Update to version 1.32.1
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Dirk Brenken [Fri, 30 Apr 2021 10:02:21 +0000 (12:02 +0200)]
adblock: update to 4.1.2
* preserve DNS cache after adblock processing (unbound & bind)
* fix redirect issue with oisd basic url
* cosmetics
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
df8651255fc69a7adae4fa8e65a2d43cf97109d2)
Rosen Penev [Thu, 29 Apr 2021 00:25:53 +0000 (17:25 -0700)]
Merge pull request #15526 from
1715173329/xray-2102
[openwrt-21.02] xray-core: remove PROVIDES
Moritz Warning [Tue, 27 Apr 2021 15:13:27 +0000 (17:13 +0200)]
zerotier: update to 1.6.5
Minor ZeroTier update. Refreshed patches.
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Hirokazu MORIKAWA [Tue, 27 Apr 2021 05:41:37 +0000 (14:41 +0900)]
libupm: Disable node.js support
Library for node.js will be disabled temporarily due to difficulty in supporting the latest node.js.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Josef Schlehofer [Wed, 28 Apr 2021 08:06:05 +0000 (10:06 +0200)]
Merge pull request #15508 from hswong3i/openwrt-21.02-SQUID_enable-ssl-crtd
[openwrt-21.02][cherry-pick] squid: Enable dynamic SSL certificate generation
Wong Hoi Sing Edison [Sun, 25 Apr 2021 02:38:14 +0000 (10:38 +0800)]
squid: Enable dynamic SSL certificate generation
Maintainer: @neheb / @BKPepe / @zhanhb
Compile tested: ipq806x, generic, netgear_r7800, master
Run tested: ipq806x, generic, netgear_r7800, openwrt-19.07
Description:
Squid now only support HTTPS proxy in TCP tunnel mode (e.g. `ssl_bump splice all`):
https_port 3128 ssl-bump tls-cert=/etc/squid/squid.pem generate-host-certificates=on
ssl_bump splice all
In order to operate in SSL Bump mode, we need to compile with `--enable-ssl-crtd` for following configuration:
https_port 3128 ssl-bump tls-cert=/etc/squid/squid.pem generate-host-certificates=on
sslcrtd_program /usr/lib/squid/security_file_certgen -s /car/cache/squid/ssl_db -M 4MB
ssl_bump stare all
ssl_bump bump all
This PR switch the `SQUID_enable-ssl-crtd` into `default y`, therefore default enable SSL Bump mode.
Signed-off-by: Wong Hoi Sing Edison <hswong3i@pantarei-design.com>
(cherry picked from commit
dbda77686d5dccb3d3999ed2e7dec18aab11fff8)
Hirokazu MORIKAWA [Tue, 27 Apr 2021 05:39:02 +0000 (14:39 +0900)]
libmraa: Disable node.js support
Library for node.js will be disabled temporarily due to difficulty in supporting the latest node.js.
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Josef Schlehofer [Tue, 27 Apr 2021 22:01:57 +0000 (00:01 +0200)]
Merge pull request #15518 from
1715173329/yq-2102
[openwrt-21.02] yq: Update to 4.7.1
Tianling Shen [Tue, 27 Apr 2021 11:51:57 +0000 (19:51 +0800)]
xray-core: use `$(INSTALL_DATA)` to install configuration files
Using `$(INSTALL_CONF)` will cause the program has no access to
configurations file when someone enabled the selinux support.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(backported from
bbc6c62c2a029fd716b2bcad68ed3f99478da246)
Tianling Shen [Tue, 27 Apr 2021 11:42:41 +0000 (19:42 +0800)]
xray-core: remove PROVIDES
Xray now is no longer planning to keep compatibility with original
v2ray. Remove PROVIDES before it is totally broken.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(backported from
92efcc295648e9c16f3fb2d183019be9e275c3ea)
Tianling Shen [Mon, 26 Apr 2021 11:18:02 +0000 (19:18 +0800)]
yq: Update to 4.7.1
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(backported from
633d1dcf583646abd582e85e596463ac21e59235)
Karl Palsson [Mon, 26 Apr 2021 09:36:49 +0000 (09:36 +0000)]
net/mosquitto: port is optional in root config
From mosquitto 2.x, port became optional and deprecated in the config,
and it was recommended that listeners be used instead. Drop the hard
requirement in our config conversion script.
Reported in: https://github.com/openwrt/packages/issues/15506
Signed-off-by: <karlp@etactica.com>
Karl Palsson [Mon, 26 Apr 2021 09:34:52 +0000 (09:34 +0000)]
net/mosquitto: fix log_type conversion in config
As reported in: https://github.com/openwrt/packages/issues/15506
Signed-off-by: Karl Palsson <karlp@etactica.com>
Rosen Penev [Sat, 24 Apr 2021 08:27:35 +0000 (01:27 -0700)]
ksmbd: update to 3.3.9
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
9c6fc23e01a2227770659d0060dbabb491fdff67)
Rosen Penev [Sat, 24 Apr 2021 09:18:40 +0000 (02:18 -0700)]
ksmbd-tools: update to 3.3.9
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
2e7c403fff0d3c07bdd6e5d8f925ce154a473491)
Glenn Strauss [Fri, 23 Apr 2021 23:06:27 +0000 (19:06 -0400)]
lighttpd: patches from upstream
- ignore Content-Length from backend if 101 Switching Protocols
- close HTTP/2 connection after bad password
- skip cert chain build for self-issued certs
- meson zstd fix
- ls-hpack upstream update
- discard some HTTP/2 DATA frames received after response
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(cherry picked from commit
52f85a0e1fd885d5bf9cbb6de74a146aa0d6c843)
Dirk Brenken [Fri, 23 Apr 2021 13:03:53 +0000 (15:03 +0200)]
banip: fix housekeeping
* fix whitelist housekeeping if you switch between normal- and
'whitelist only' mode
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
7cfb0f4657dea6a7844df28268e7e8af6eb00db4)
Florian Eckert [Fri, 23 Apr 2021 09:36:22 +0000 (11:36 +0200)]
Merge pull request #15502 from TDT-AG/pr/
20210422-stunnel
stunnel: update version to 5.59
Josef Schlehofer [Thu, 22 Apr 2021 20:11:18 +0000 (22:11 +0200)]
Merge pull request #15501 from mkrkn/openwrt-21.02
[21.02] openvpn: update to 2.5.2
Magnus Kroken [Wed, 21 Apr 2021 20:45:03 +0000 (22:45 +0200)]
openvpn: update to 2.5.2
Fixes two related security vulnerabilities (CVE-2020-15078) which
under very specific circumstances allow tricking a server using delayed
authentication (plugin or management) into returning a PUSH_REPLY before
the AUTH_FAILED message, which can possibly be used to gather
information about a VPN setup. In combination with "--auth-gen-token" or
a user-specific token auth solution it can be possible to get access to
a VPN with an otherwise-invalid account.
OpenVPN 2.5.2 also includes other bug fixes and improvements.
Add CI build test script.
Signed-off-by: Magnus Kroken <mkroken@gmail.com>
(cherry-picked from
6186fe732b058ef7f1ae43cce2184ba0c4d90184)
Florian Eckert [Mon, 19 Apr 2021 14:45:19 +0000 (16:45 +0200)]
stunnel: update to 5.59
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
2d56dbfc27f3a954fd34b8b261d576716dbfbed5)
Florian Eckert [Mon, 22 Feb 2021 08:52:52 +0000 (09:52 +0100)]
stunnel: update to 5.58
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
389c7f12cb197f3cef25db44d3787b7175c47776)
Dirk Brenken [Wed, 21 Apr 2021 19:00:52 +0000 (21:00 +0200)]
banip: update to 0.7.7
* add a "whitelist only" mode, this option allows to restrict Internet
access from/to a small number of secure websites/IPs, and block access
from/to the rest of the Internet.
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
515397b009155776e4fd15aaa723875373c75279)
Hirokazu MORIKAWA [Wed, 21 Apr 2021 02:27:24 +0000 (11:27 +0900)]
node: Resolve ICU conflict
Resolve conflicts between OpenWrt's ICU package and the ICU shipped with node.js.
https://github.com/openwrt/packages/issues/15437
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Gerard Ryan [Wed, 21 Apr 2021 11:04:48 +0000 (21:04 +1000)]
dockerd: Updated to 20.10.6
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Wed, 21 Apr 2021 11:04:21 +0000 (21:04 +1000)]
docker: Updated to 20.10.6
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Wed, 21 Apr 2021 11:01:36 +0000 (21:01 +1000)]
libnetwork: Updated to 2021-01-26 for docker 20.10.6
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Gerard Ryan [Wed, 21 Apr 2021 11:00:07 +0000 (21:00 +1000)]
containerd: Updated to 1.4.4 for docker 20.10.6
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Rosen Penev [Wed, 21 Apr 2021 00:29:49 +0000 (17:29 -0700)]
Merge pull request #15478 from rs/nextdns-1.32.0-openwrt-21.02
[21.02] nextdns: Update to version 1.32.0
Daniel Danzberger [Sat, 6 Feb 2021 06:58:38 +0000 (07:58 +0100)]
python-psycopg2: Add new package
Psycopg is the most popular PostgreSQL adapter for the Python programming language
It's used by the python-sqlalchemy for postgresql
This package was removed by this commit for lacking python3 support:
c37b15e1c49cf27de8f34f43e93a7a5c184be9e0
Version 2.8.6 used in this package now supports pyhton3
Signed-off-by: Daniel Danzberger <daniel@dd-wrt.com>
(cherry picked from commit
7cfb9a04af856b3d09a9768bb104f77dbb1acb68)
Jan Pavlinec [Fri, 26 Mar 2021 11:59:34 +0000 (12:59 +0100)]
atlas-sw-probe: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
c65a659e6d9e71a5d74927f40490ee40a16d84db)
Jan Pavlinec [Fri, 26 Mar 2021 11:58:59 +0000 (12:58 +0100)]
atlas-probe: add new package
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
cb30c106c09f6e8b9a93e87c3de65f3b3a14db8e)
Olivier Poitrey [Tue, 20 Apr 2021 15:08:40 +0000 (15:08 +0000)]
nextdns: Update to version 1.32.0
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Rosen Penev [Tue, 20 Apr 2021 01:59:33 +0000 (18:59 -0700)]
Merge pull request #15470 from rs/nextdns-1.12.5-openwrt-21.02
[21.02] nextdns: Update to version 1.12.5
Olivier Poitrey [Tue, 20 Apr 2021 01:38:41 +0000 (01:38 +0000)]
nextdns: Update to version 1.12.5
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Rosen Penev [Tue, 20 Apr 2021 00:47:43 +0000 (17:47 -0700)]
Merge pull request #15462 from rs/nextdns-1.12.3-openwrt-21.02
[21.02] nextdns: Update to version 1.12.3
Olivier Poitrey [Mon, 19 Apr 2021 23:23:44 +0000 (23:23 +0000)]
nextdns: Update to version 1.12.3
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Rosen Penev [Mon, 19 Apr 2021 23:08:33 +0000 (16:08 -0700)]
Merge pull request #15458 from rs/nextdns-1.31.3-openwrt-21.02
[21.02] nextdns: Update to version 1.31.3
Olivier Poitrey [Mon, 19 Apr 2021 22:50:29 +0000 (22:50 +0000)]
nextdns: Update to version 1.31.3
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Florian Eckert [Tue, 23 Mar 2021 09:22:12 +0000 (10:22 +0100)]
collectd: update PKG_RELEASE
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
1e2ba94064c3b99bd8543df9283933d84fdc4707)
Florian Eckert [Thu, 11 Mar 2021 15:49:50 +0000 (16:49 +0100)]
collectd: add percent calculation of bad block to ubi plugin
This patche adds the percent evaluation for the bad blocks.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
b4e24c12a6c187565e63b9365df6f88d954bf8c6)
Florian Eckert [Thu, 11 Mar 2021 15:49:18 +0000 (16:49 +0100)]
collectd: prepare ubi plugin for percent calculation
This patche change prepares the ubi plugin to add the bad block evaluation in
percent.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
4927b53333652825a73bf0ecd53914636af6b6d3)
Florian Eckert [Fri, 12 Mar 2021 15:30:31 +0000 (16:30 +0100)]
collectd: upate PKG_RELEASE number
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
6e41bf73ba3e80e206066cbcb8373a82efcbbf95)
Florian Eckert [Mon, 8 Mar 2021 13:40:34 +0000 (14:40 +0100)]
collectd: make compile time debug option configurable
Enables the compiler option that collectd is compiled with
debugging support. This is used at development stages to get
more messages from the collectd during development.
This option is default disabled.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
a4f74eb11c1bfa6d708934b3885be589e39e8851)
Florian Eckert [Mon, 8 Mar 2021 12:00:32 +0000 (13:00 +0100)]
collectd: fix COLLECTD_PLUGINS_SELECTED end of line
This removes the trailing back slash. This is not needed.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
416ba35d50e3381a23caf0ee0d0758a26e29a4f5)
Florian Eckert [Mon, 8 Mar 2021 15:30:53 +0000 (16:30 +0100)]
collectd: fix smart disk detection
On my system the attribute DEVTYPE was not set. The plugin could not
read any data and the function call blocked forever on this function and did
not returned. By removing it, all block devices under `/sys/class/block`
were checked.
Block devices that do not support SMART were not evaluated. The
collected displays the following message.
smart plugin: checking SMART status of /dev/loop4.
smart plugin: unable to open /dev/loop4.
If you do not like this message, you could only enable device in the uci that
does support SMART.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
543a2a970c062c30ac33f49f67ea952eb0adbed3)
Florian Eckert [Mon, 8 Mar 2021 08:56:45 +0000 (09:56 +0100)]
collectd: enable collectd-mod-smart
Switching on compilation for collectd smart plugin.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
092902a87ee14e3b4b0b37a4ddb81719ae27fcc8)
Florian Eckert [Fri, 5 Mar 2021 16:26:45 +0000 (17:26 +0100)]
libatasmart: initial checkin
This library is required by the smart plugin of the collectd.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
(cherry picked from commit
87e52cf180921d1fb778298c1ee699e652639b79)
Dirk Brenken [Sat, 17 Apr 2021 07:41:17 +0000 (09:41 +0200)]
adblock: update to 4.1.1
* support the RPZ trigger 'RPZ-CLIENT-IP' to always allow/block certain
clients based on their IP (currently only supported by bind!)
* avoid promiscuous mode in tcpdump setup for adblock reporting
* speed up dns report preparation
* support dns report mailing (/etc/init.d/adblock report mail)
* fix bind autodetection
* update LuCI-frontend (separate PR)
* update readme
Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit
c531b6daea6962c32813b5815105343a76746147)
projects / feed / packages.git / log