| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
* adopt pypi name and line numbers in patches
* remove custom tar command and patch for using python3 (changed upstream)
Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
It never works... And Xray-core needs root access to work.
Bump geodata to latest version while at it.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| |/ /
| |
| |
| |
| |
| | |
also remove patches incorporated upstream into lighttpd 1.4.61
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
|
| |/
|
|
| |
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\
| |
| | |
bind: detect new interfaces when they come up
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Reload the service when interfaces flap; note that libcap support
is required to open new sockets on interfaces coming up during
a reload, otherwise a full restart would be needed.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \
| | |
| | | |
strongswan: bump version to 5.9.4
|
| | |/
| |
| |
| | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \
| | |
| | | |
bind: Bump to 9.17.19
|
| | |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The following CVE updates are included:
* CVE-2021-25219: The "lame-ttl" option is now forcibly set to 0. This
effectively disables the lame server cache, as it could previously be
abused by an attacker to significantly degrade resolver performance.
* CVE-2021-25218: An assertion failure occurred when named attempted
to send a UDP packet that exceeded the MTU size, if Response Rate
Limiting (RRL) was enabled.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \
| | |
| | | |
bind: deprecate managed-keys
|
| | |/
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This has been replaced with the "trust-anchors" keyword, per
section 8.21.1 New Features of the Bind 9 Administrator Reference
Manual:
• In order to clarify the configuration of DNSSEC keys, the trusted-keys and managed-keys statements have been deprecated, and the new trust-anchors statement should now be used for both types of key.
When used with the keyword initial-key, trust-anchors has the same behavior as managed-keys, i.e., it configures a trust anchor that is to be maintained via RFC 5011.
When used with the new keyword static-key, trust-anchors has the same behavior as trusted-keys, i.e., it configures a permanent trust anchor that will not automatically be updated. (This usage is not recommended for the root key.) [GL #6]
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | |
| |
| |
| |
| |
| |
| | |
Use newly introduced procd_add_reload_mount_trigger to reload nfsd
when a mountpoint covering an exported filesystem is added by blockd.
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Fix uci-defaults for PostgreSQL backends
Add user 'gnunet' to 'postgres' group
Always build with sqlite3 as configure fails when --without-sqlite
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | |
| |
| |
| |
| |
| |
| | |
Add missing syscalls found using utrace.
Signed-off-by: Ren Zongjia <acooler15@foxmail.com>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
If an interface doesn't exist yet when vnStat is started, it won't be
monitored, as only existing interfaces can be added to the database via
the vnstat command.
This adds a hotplug script which adds any configured interfaces to the
vnStat database when it goes up.
Signed-off-by: Jan Hoffmann <jan@3e8.eu>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
By default, vnstatd adds all available interfaces on startup when its
database is empty. The --noadd option prevents this, but it breaks
import of legacy databases, and causes vnstatd to exit immediately
after startup, which breaks reloading.
This changes the init script to add the --noadd option when no legacy
databases need to be imported, and patches vnstatd to keep running
even when no interfaces are configured.
Signed-off-by: Jan Hoffmann <jan@3e8.eu>
|
| | |
| |
| |
| |
| |
| |
| | |
Add /etc/config/nginx, restrict_locally, uci.conf.template
as conffile
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
|
| | |
| |
| |
| |
| |
| |
| | |
Add missing conffiles
Fix conffile permission
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
|
| | |
| |
| |
| |
| |
| | |
And switch to AUTORELEASE for PKG_RELEASE.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
|
| |\ \
| | |
| | | |
modemmanager: add support for wwan subsystem in hotplug
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
WWAN devices may now be exposed in the new 'wwan' subsystem in the
kernel (since 5.13), initially applicable to devices exposed in PCIe
(no USB), but at some point may also apply to USB devices that until
now were exposed via other subsystems (e.g. usbmisc, tty).
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
apxs is used to get information about the apache installation when
building external modules. Currently there are issues:
1.
./staging_dir/target-mips_24kc_musl/usr/bin/apxs -q TARGET
apache2
apxs:Error: ./staging_dir/target-mips_24kc_musl/home/sk/tmp/openwrt/staging_dir/target-mips_24kc_musl/usr/bin/apr-1-config not found!.
This error is fixed by sed script #2.
2.
./staging_dir/target-mips_24kc_musl/usr/bin/apxs -q TARGET
cannot open ./staging_dir/target-mips_24kc_musl/home/sk/tmp/openwrt/staging_dir/target-mips_24kc_musl/usr/share/apache2/build/config_vars.mk: No such file or directory at ./staging_dir/target-mips_24kc_musl/usr/bin/apxs line 213.
This error is fixed by sed scipt #1.
Both sed scripts taken from buildroot (see [1]).
[1] https://github.com/buildroot/buildroot/blob/master/package/apache/apache.mk
Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Fixes (see [1] for details):
CVE-2021-33193
CVE-2021-41524
CVE-2021-41773
CVE-2021-42013
[1] https://httpd.apache.org/security/vulnerabilities_24.html
Patch 020-openssl-deprecated.patch refreshed.
Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
User mpeleshenko reported that symm encryption breaks hearing map.
Set the default to 0.
Signed-off-by: Nick Hainke <vincent@systemli.org>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
ddc007e32ced ubus: avoid use after free in handle_probe_req()
e1275713c057 github: fix workflow
Signed-off-by: Nick Hainke <vincent@systemli.org>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Jan Hák <jan.hak@nic.cz>
|
| | |/
|/|
| |
| |
| |
| |
| |
| |
| | |
This commits adds the new usteer package to the packages feed.
usteer is a daemon for steering wireless clients across frequency
bands as well as between multiple access points on a network.
Signed-off-by: David Bauer <mail@david-bauer.net>
|
| | |
| |
| |
| |
| |
| |
| |
| | |
ospf running in instance mod will keep cpu to 100% so revert offending commit
if daemon is disabled in the file while running also close that daemon
also add the pythontools to support reload
Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
|
| | |
| |
| |
| |
| |
| | |
if is in the wrong spot.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | |
| |
| |
| |
| |
| | |
Fixes another segfault.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | |
| |
| |
| | |
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Some users report that DAWN sometimes crashes after a while. Mostly
this happens after the new update has been rolled out.
Since I would not like to go back to the older version, I add as
a workaround for now that DAWN automatically respawned.
Workaround for:
https://github.com/berlin-open-wireless-lab/DAWN/issues/151
Signed-off-by: Nick Hainke <vincent@systemli.org>
|
| | |
| |
| |
| |
| |
| | |
Remove upstreamed patch.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |/
|
|
| |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| |
|
|
|
|
|
| |
* bugfix: change killall param from -HUP to -s HUP
* bugfix: change tmpfs param from status to gateway
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| |\
| |
| | |
vpn-policy-routing: revert to 0.3.4-8
|
| | |
| |
| |
| |
| |
| |
| |
| | |
* there are reports that 0.3.5-x versions do not work on some configs
* the development of the new features moved to the new package (pbr)
* revert to the last known good version of vpn-policy-routing
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| | |
| |
| |
| |
| |
| | |
Update copyright
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
|
| |/
|
|
| |
Signed-off-by: Marcos Del Sol Vives <marcos@orca.pet>
|
| |
|
|
| |
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
|
| |\
| |
| | |
knot-resolver: update to 5.4.2
|
| | |
| |
| |
| |
| |
| |
| | |
* refresh patches
* disabling kres_gen_test is not required anymore for cross compilation, it was fixed upstream with the 5.4.1 release
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
|
| | |
| |
| |
| | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
- Corrected `enable` detection.
- Granted config/log write permission for `rclone` user.
Fixes: d51823988847fc ("rclone: initial package")
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|