aboutsummaryrefslogtreecommitdiff
path: root/net/transmission/files
Commit message (Collapse)AuthorAge
* transmission: add copy_file_range syscall to seccompMarius Dinu2023-07-24
| | | | | | | | | | | | Fixes this crash: root@RPi3OpenWrt:/# grep -i seccomp /var/log/audit/audit.log type=SECCOMP msg=audit(1689503903.597:16): auid=4294967295 uid=224 gid=1012 ses=4294967295 pid=1752 comm="transmission-da" exe="/usr/bin/transmission-daemon" sig=31 arch=c00000b7 syscall=285 compat=0 ip=0x7fa3b0eefc code=0x80000000 root@RPi3OpenWrt:/# ausyscall 285 copy_file_range root@RPi3OpenWrt:/# Signed-off-by: Marius Dinu <m95d+git@psihoexpert.ro>
* transmission: add ftruncate syscall to seccompMarius Dinu2023-07-18
| | | | | | Fixes many crashes. Signed-off-by: Marius Dinu <m95d+git@psihoexpert.ro>
* transmission: Fix env variables passingLeonid Bogdanov2023-06-11
| | | | | | | It's not possible to configure custom Transmission web home as corresponding env var gets overwritten by the command that sets CA bundle env var. Signed-off-by: Leonid Bogdanov <leonidbogdanov86@gmail.com>
* transmission: add missing ftruncate64 syscallDaniel Golle2023-05-19
| | | | | | | Transmission 4.0.3 started using the ftruncate64 syscall. Add it to the list of allowed syscalls. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add new syscall needed with musl 1.2.4Daniel Golle2023-05-18
| | | | | | | Apparently the "revcmsg" syscall is now needed, add it to the list of allowed syscalls. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: update to version 4.0.1Daniel Golle2023-03-07
| | | | | | | | | | | | This is a major release, both in numbering and in effort! It's been in active development for over a year and has a huge list of changes -- over a thousand commits -- since Transmission 3.00. For more information about the release see https://github.com/transmission/transmission/releases/tag/4.0.0 https://github.com/transmission/transmission/releases/tag/4.0.1 Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: retrieve boolean config opts using `config_get_bool`Salim B2023-02-13
| | | | | | | | | | | | | | The tranmission UCI config options - `config_overwrite` - `incomplete_dir_enabled` - `watch_dir_enabled` are all booleans, so we have to retrieve them using `config_get_bool` in order to make sure they are properly interpreted in case the user sets them to a keyword (`true`/`false`, `on`/`off` etc.) and not an integer (`0`/`1`). Signed-off-by: Salim B <git@salim.space>
* transmission: add 'incomplete' and 'watch' dirs to ujail mountsAlexander Egorenkov2022-04-13
| | | | | | | | | | | | | | | To fix the errors: Sun Apr 10 14:19:41 2022 daemon.err transmission-daemon[29831]: [2022-04-10 14:19:41.098] watchdir Failed to open directory "/mnt/sda1/openwrt/transmission/watch" (2): No such file or directory (watchdir.c:358) and Sun Apr 10 14:20:18 2022 daemon.err transmission-daemon[30175]: [2022-04-10 14:20:18.641] Couldn't create "/mnt/sda1/openwrt/transmission/incomplete": Permission denied (file-posix.c:243) References: - https://github.com/openwrt/packages/issues/17674 Signed-off-by: Alexander Egorenkov <egorenar-dev@posteo.net>
* transmission: add ca_bundle support with procd-ujailMatthew Hagan2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | With procd-ujail enabled, it is not possible to use HTTPS URLs, for example when either for downloading torrent files or blocklists. The followig example occurs when downloading a URL from the "Upload Torrent Files" dialogue box: Error adding "https://releases.ubuntu.com/21.10/ubuntu-21.10-desktop-amd64.iso.torrent": gotMetadataFromURL: http error 0: No Response syslog will also hint that no CA_BUNDLE is being used: transmission-daemon[6683]: [2021-12-30 20:01:30.990] web will verify tracker certs using envvar CURL_CA_BUNDLE: none (web.c:455) This patch rectifies this issue by adding a ca_bundle configurable, enabled by default. This explicitly fixes the ca_bundle file location to /etc/ssl/certs/ca-certificates.crt and adds this file to the procd jail. On subsequent testing, HTTPS URL download functionality is restored. Signed-off-by: Matthew Hagan <mnhagan88@gmail.com>
* transmission: include default 'web_home' dir in jailDaniel Golle2021-11-20
| | | | | | | | | Fixes 'transmission-web' for users which didn't manually configure the 'web_home' option. Assume transmission's default in case 'web_home' isn't defined and mount the directory so it can be accessed from inside the jail. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add a bunch of syscalls to seccomp filterDaniel Golle2021-11-20
| | | | | | | | | | Add missing "inotify_add_watch", "inotify_init1" and "inotify_rm_watch" syscalls to seccomp filter which are needed in case watch_dir feature of transmission is used. Fixes #16972 Reported-by: @siwind Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: update seccomp config fileRen Zongjia2021-10-28
| | | | | | | Add missing syscalls found using utrace. Signed-off-by: Ren Zongjia <acooler15@foxmail.com> Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add two more syscalls to seccomp filterDaniel Golle2021-09-25
| | | | | | | | Testing showed that additional syscalls are needed on ARMv7. Add "clock_gettime64" and "statx" which seem to be used now instead of "clock_gettime" and "stat" syscalls which are already listed. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add mount triggerDaniel Golle2021-08-08
| | | | | | | Restart transmission once an underlaying mountpoint becomes available. Add myself as maintainer. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add new syscalls to seccomp filterDaniel Golle2021-07-10
| | | | | | | | Testing showed that additional syscalls are needed on ARMv7. Add "getegid32", "geteuid32", "getgid32" and "getrandom" as they are all innocent. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add syscalls needed on PPC to seccomp rulesDaniel Golle2021-01-06
| | | | | | | Add fadvise64_64 and fchmod syscalls needed on PowerPC platforms to seccomp rules of transmission-daemon. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: jail: add allow 'getuid' syscallDaniel Golle2020-12-20
| | | | | | transmission needs 'getuid', at least on mips_24kc. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: convert seccomp filter rules to OCI formatDaniel Golle2020-11-17
| | | | | | | procd-seccomp switched to OCI-compliant seccomp parser instead of our (legacy, OpenWrt-specific) format. Convert ruleset to new format. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add access to web interface files to procd jailJosef Zila2020-06-18
| | | | Signed-off-by: Josef Zila <josefzila@gmail.com>
* transmission: add a disabled notificationRosen Penev2020-06-15
| | | | | | Helps to see that transmission must be enabled. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: init script check syscall list for seccompJan Pavlinec2020-05-26
| | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* transmission: add init file STOP directiveFrancesco G2020-04-07
| | | | | | | Transmission should stop early on system shutdown to avoid for example fstab unmount disks when transmission is writing. Signed-off-by: Francesco G <gfrancesco@users.noreply.github.com>
* Revert "transmission: mount /etc/resolv.conf in jail"Daniel Golle2020-03-13
| | | | | | | This reverts commit 9778e2f66ff7b1f06e841a416f295e6e3b74c377. /etc/resolv.conf is now mounted by default by procd/ujail. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: mount /etc/resolv.conf in jailDaniel Golle2020-03-12
| | | | | | | transmission needs to have name resolution to be able to resolve the trackers' hostnames. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add syscalls to seccomp filterDaniel Golle2020-03-08
| | | | | | Syscalls observered when running on arm32. Add them to seccomp rule. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add service triggers and bump PKG_RELEASERichard Yu2020-01-18
| | | | Signed-off-by: Richard Yu <yurichard3839@gmail.com>
* transmission: update config optionsRichard Yu2020-01-18
| | | | | | | add missing 'peer_id_ttl_hours' and remove 'scrape_paused_torrents' which is not exist in transmission wiki. Signed-off-by: Richard Yu <yurichard3839@gmail.com>
* transmission: Fix message_level settingRosen Penev2020-01-08
| | | | | | | | --log-error in the init script was overriding it. Added several optimizations to the init script for speed and correctness. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: fix typo in jail setupDaniel Golle2020-01-09
| | | | | Fixes: 609109fa9 ("transmission: add seccomp filter and improve jail") Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: fix directory creation in init scriptDaniel Golle2020-01-05
| | | | | | | | | | Things were done in the wrong order, leading to config_dir not being chown'ed and subdirectories not being created in case of download_dir being inside config_dir. Fixes: 609109fa9 ("transmission: add seccomp filter and improve jail") Reported-by: Rosen Penev <rosenp@gmail.com> Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: add seccomp filter and improve jailDaniel Golle2020-01-04
| | | | Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* transmission: fix command param issue and use default respawn settingsRichard Yu2019-09-27
| | | | Signed-off-by: Richard Yu <yurichard3839@gmail.com>
* transmission: Merge all the command line params in one lineRosen Penev2019-09-26
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Fix typo in init scriptRosen Penev2019-09-25
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Fix tracker issue with some firewallsRosen Penev2019-09-23
| | | | | | | | | | | | | | | | | Some firewalls mandate a minimum size of 4k for SYN packets, which transmission does not do by default. Upstream issue here: https://github.com/transmission/transmission/issues/964 Cleanup: Fixed license info. Removed two unnecessary patches. Ran shell script through shellcheck. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Fix compilation under uClibc-ngRosen Penev2019-05-01
| | | | | | | | Upstream has a patch for this dated 2016. Also ran the init script through shellcheck. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Allow user to configure web ui home directoryAndrii Korzh2018-07-12
| | | | Signed-off-by: Andrii Korzh <andrii.korzh@gmail.com>
* transmission: Update to 2.94Rosen Penev2018-05-27
| | | | | | | | Mainly a bugfix for XSS. Patches have been refreshed. Added an upstream fix for TLS verification. Now enabled by default. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Add rpc_host_whitelist support.Rosen Penev2018-04-06
| | | | | | | | | | It was requested as it can be useful under certain circumstances. Disabled rpc_whitelist by default. Not only is there a firewall, but it denies access when IP address of the device is changed. Added group support in UCI. Fixes cases where group does not match the user (nobody:nogroup). Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Fix HTTPS and mobile devices.Rosen Penev2018-03-01
| | | | | | | | | | | | HTTPS verification is totally broken in Transmission. Unclear why. Disabling as a result. Safari exposes a JavaScript bug that makes it not load. Fixed. Portcheck was backported to HTTPS for testing initially. Seems like a good idea. Makefile was also fixed to use the external libnatpmp. Smaller binary. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Restored config_overwrite due to popular demand.Rosen Penev2018-02-13
| | | | | | | | | | libnatpmp was added as a dependancy to avoid built-in version. Makefile went through a few adjustments to make it simpler. CMake support is not happening since Travis is using a broken Ubuntu install. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Fix port test + other fixes.Rosen Penev2018-02-01
| | | | | | | | | | | | Ran the transmission init script through shellcheck and fixed errors. Also cleaned up a bit. Removed ionice support. Will reintroduce if procd adds support. Removed config_overwrite debugging variable. No need for it. Enabled TLS verify by default. Added a dependancy to ca-bundle as a result. This is a default in current trunk. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Update to 2.93 + fixes [v2]Rosen Penev2018-01-28
| | | | | | | | | | | | | | DNS rebinding protection introduced a new option. Use it to disable it as OpenWrt does not need it. Adjusted Makefile to use the release instead of a git version. Also cleaned up and added LICENSE entries. Eliminated useless patches. The syslog one actually doesn't log much. No need to mask the os release anymore either. Added group entry to init script. Otherwise files end up being owned by user:root which is bogus. v2: Previous maintainer relied on git version of Transmission for mbedtls support. Backport it to the stable instead. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* Revert "transmission: Update to 2.93 + fixes"Hannu Nyman2018-01-28
| | | | | | | | | | | | | | This reverts commit 606f615048286f432175f5133cbeb14f9db9257f. The commit broke the patches: > Applying ./patches/020-use-internal-miniupnp.patch using plaintext: > patching file configure.ac > Hunk #1 succeeded at 378 (offset -8 lines). > > Applying ./patches/040-fix-for-mbedtls.patch using plaintext: > patching file configure.ac > Hunk #1 FAILED at 154. > 1 out of 1 hunk FAILED -- saving rejects to file configure.ac.rej
* transmission: Update to 2.93 + fixesRosen Penev2018-01-27
| | | | | | | | | | | | DNS rebinding protection introduced a new option. Use it to disable it as OpenWrt does not need it. Adjusted Makefile to use the release instead of a git version. Also cleaned up and added LICENSE entries. Eliminated useless patches. The syslog one actually doesn't log much. No need to mask the os release anymore either. Added group entry to init script. Otherwise files end up being owned by user:root which is bogus. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: Update to latest git and fix syslog.Rosen Penev2017-11-22
| | | | | | | | | | | | | The init script runs transmission with the foreground parameter for procd to control it. However, if transmission is ran in the foreground, nothing is logged to syslog. Added a patch to remove this restriction. Also added a sysctl file that removes these warnings: UDP Failed to set receive buffer: requested 4194304, got 262142 (tr-udp.c:75) UDP Please add the line "net.core.rmem_max = 4194304" to /etc/sysctl.conf (tr-udp.c:80) UDP Failed to set send buffer: requested 1048576, got 262142 (tr-udp.c:86) UDP Please add the line "net.core.wmem_max = 1048576" to /etc/sysctl.conf (tr-udp.c:91) Signed-off-by: Rosen Penev <rosenp@gmail.com>
* transmission: add nice and ionice support, store persistent config, add ↵Maxim Storchak2015-08-02
| | | | | | transmission user and group Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
* transmission: increase the number of retries for respawnNikos Mavrogiannopoulos2015-06-17
| | | | | | | The default 5 per hour is too small for transmission which may crash quite some times. Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* Optimized /proc/meminfo parsingNikos Mavrogiannopoulos2015-06-14
| | | | | | Suggested by @jow- Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
* transmission: make the memory percentage allowed configurableNikos Mavrogiannopoulos2015-06-13
| | | | Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Powered by cgit, Themed by Ted Yin.