aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
...
* | | | v2raya: Update to 2.2.4Tianling Shen2023-09-06
| | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | Merge pull request #21992 from ↵Florian Eckert2023-09-05
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | osedl/pr/20230901-modemmanager-fix-permission-denied modemmanager: Fix Permission Denied error
| * | | | modemmanager: Fix Permission Denied errorOliver Sedlbauer2023-09-01
| | |_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The proto_send_update function is sending a notification to netifd during the teardown section. However, netifd filters link update notifications executed during teardown, as indicated here: https://git.openwrt.org/?p=project/netifd.git;a=blob;f=proto-shell.c#l515 This was leading to a Permission Denied error due to its behavior, making proto_send_update ineffective during teardown. To address the issue, the proto_send_update function has been removed from the teardown section. This prevents the Permission Denied error while ensuring proper operation during teardown. Additionally, in the 10-report-down helper script, a check has been implemented to determine if the interface is already down. This check is crucial to avoid triggering a Permission Denied error, especially in cases where netifd is already aware of a controlled ifdown operation. Signed-off-by: Oliver Sedlbauer <osedlbauer@tdt.de>
* | | | ddns-scripts: desec.io - update url to httpsdanielpinto8zz62023-09-04
| |/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Daniel Pinto <danielpinto8zz6@gmail.com> desec.io ddns update is not working, after testing the endpoint I got a 301, after a bit of search I found out we are supposed to use https instead of http more info here: https://talk.desec.io/t/301-from-update-dedyn-io/644/2 bump PKG_RELEASE
* | | treewide: change my no longer used emailJosef Schlehofer2023-09-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | Since February 2023, I decided to no longer work with Turris, I mean CZ.NIC company due to some reasons how the development goes and since that day my work address is not available and not sure if there is some redirect to someone else, but if anyone wants to reach me, use my email address, where they can find me. Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | | Merge pull request #21965 from jonasjelonek/crocJeffery To2023-09-04
|\ \ \ | | | | | | | | croc: new package
| * | | croc: new packageJonas Jelonek2023-09-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | croc is a tool written in Go for sending files from one device to another over the internet using a relay. It runs on multiple platforms, provides end-to-end encryption and works without port forwarding and fixed IP/DynDNS. Signed-off-by: Jonas Jelonek <jelonek.jonas@gmail.com>
* | | | Merge pull request #21943 from stangri/master-adblock-fastStan Grishin2023-09-03
|\ \ \ \ | | | | | | | | | | adblock-fast: initial commit
| * | | | adblock-fast: initial commitStan Grishin2023-08-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * this package replaces simple-adblock package * it was impossible to keep existing config structure and continue improving the simple-adblock the way I wanted, hence the new package name * the migration script for existing simple-adblock config is included in the uci-defaults file Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | | | https-dns-proxy: fix dns resolution not working on bootStan Grishin2023-09-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * fix dns resolution not working on boot * add hotplug-online script * reorganizes files/ and Makefile to reflect files destinations Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | | | snort3: update to 3.1.69.0John Audia2023-09-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Upstream bump Build system: x86/64 Build-tested: x86/64/AMD Cezanne Run-tested: x86/64/AMD Cezanne Signed-off-by: John Audia <therealgraysky@proton.me>
* | | | | knot-resolver: update to version 5.7.0Josef Schlehofer2023-09-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: https://www.knot-resolver.cz/2023-01-26-knot-resolver-5.6.0.html https://www.knot-resolver.cz/2023-08-22-knot-resolver-5.7.0.html Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | | | | tor: update to 0.4.8.4 stableRui Salvaterra2023-09-03
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | First release of the 0.4.8.x series, see the changelog [1] for what's new. [1] https://gitlab.torproject.org/tpo/core/tor/-/raw/tor-0.4.8.4/ChangeLog Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | | jool: update package to version 4.1.10Tiago Gaspar2023-09-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update jool to version 4.1.10 and remove a no longer needed patch. There was also a need to backport a patch to fix compile in some archs. Signed-off-by: Tiago Gaspar <tiagogaspar8@gmail.com>
* | | | | v2raya: Update to 2.2.2Tianling Shen2023-09-02
| |_|/ / |/| | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | libreswan: update to 4.12Lucian Cristian2023-08-31
| | | | | | | | | | | | | | | | | | | | | | | | fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712 Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* | | | zerotier: update to 1.12.1Moritz Warning2023-08-31
| |/ / |/| | | | | | | | | | | | | | | | | | | | | | | * split up "fix makefile" patch logical distinct parts * add libatomic dependency needed for prometheus-cpp-lite-1.0 * refresh patch series * improve warning message in init script Signed-off-by: Moritz Warning <moritzwarning@web.de>
* | | xray-core: Update to 1.8.4Tianling Shen2023-08-30
| | | | | | | | | | | | | | | | | | Removed upstreamed patch. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | Merge pull request #21857 from TDT-AG/pr/20230818-modemmanagerFlorian Eckert2023-08-30
|\ \ \ | | | | | | | | modemmanager: copy dbus interfaces file to staging
| * | | modemmanager: copy dbus interfaces file to stagingFlorian Eckert2023-08-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | In order to use the dbus interfaces via the command gdbus-codegen, the xml files must be copied into the building staging directory, so that other programmes can use them during compilation. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | | | pdns-recursor: update to 4.9.1Peter van Dijk2023-08-30
| | | | | | | | | | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | | | sing-box: update to 1.4.0Van Waholtz2023-08-29
| | | | | | | | | | | | | | | | Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
* | | | knot: enable QUIC supportJan Hák2023-08-29
| | | | | | | | | | | | | | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
* | | | knot: update to version 3.3.0Jan Hák2023-08-29
| | | | | | | | | | | | | | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
* | | | Merge pull request #21928 from stangri/miniupnpd-nftablesJo-Philipp Wich2023-08-29
|\ \ \ \ | |_|/ / |/| | | miniupnpd: remove uci-defaults and fw4-include files for nftables variant
| * | | miniupnpd: remove uci-defaults and fw4-include files for nftables variantStan Grishin2023-08-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * remove firewall4.include file as it is not needed and procuces a firewall error on service miniupnpd restart * remove the uci-defaults file as its sole purpose was to install the firewall include file * modify the Makefile to reflect the deleted files Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | | tailscale: enable autodect of fw typeTyler Young2023-08-28
| | | | | | | | | | | | | | | | Signed-off-by: Tyler Young <git@yfh.addy.io>
* | | | v2raya: Update to 2.2.1Tianling Shen2023-08-27
| | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | xray-core: backport pending patch for Go 1.21 updateTianling Shen2023-08-24
| | | | | | | | | | | | | | | | | | | | | | | | Fix build for Go 1.21. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | vnstat2: update to version 2.11Jan Hoffmann2023-08-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This release breaks the noexit patch, because the code for removing old now returns an error when no interfaces are configured. As it is run on startup, the daemon exits in this case. To avoid this, add an additional check so an error is only returned in an actual error case. Signed-off-by: Jan Hoffmann <jan@3e8.eu>
* | | | tailscale: Update to 1.48.1Zephyr Lykos2023-08-24
| | | | | | | | | | | | | | | | Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* | | | net/mosquitto: bump to 2.0.17Karl Palsson2023-08-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a security and bug fix release. Security: - CVE-2023-28366: Fix memory leak in broker when clients send multiple QoS 2 messages with the same message ID, but then never respond to the PUBREC commands. - CVE-2023-0809: Fix excessive memory being allocated based on malicious initial packets that are not CONNECT packets. - CVE-2023-3592: Fix memory leak when clients send v5 CONNECT packets with a will message that contains invalid property types. - Broker will now reject Will messages that attempt to publish to $CONTROL/. - Broker now validates usernames provided in a TLS certificate or TLS-PSK identity are valid UTF-8. - Fix potential crash when loading invalid persistence file. - Library will no longer allow single level wildcard certificates, e.g. *.com Bugfixes of note or relevance to OpenWrt: - Fix bridges with non-matching cleansession/local_cleansession being expired on start after restoring from persistence. Closes #2634. Client library: - Use CLOCK_BOOTTIME when available, to keep track of time. This solves the problem of the client OS sleeping and the client hence not being able to calculate the actual time for keepalive purposes. Closes #2760. Full changelog available at: https://github.com/eclipse/mosquitto/blob/v2.0.16/ChangeLog.txt plus: https://github.com/eclipse/mosquitto/blob/v2.0.17/ChangeLog.txt (2.0.17 fixes regressions from the 2.0.16 release) Signed-off-by: Karl Palsson <karlp@tweak.au>
* | | | v2ray-core: backport upstream Go 1.21 updatesTianling Shen2023-08-23
| | | | | | | | | | | | | | | | | | | | | | | | Fix build for Go 1.21. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | mdio-tools: update to 1.3.0Zhi-Jun You2023-08-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update the mdio-netlink kmod and userspace mdio-tools to version 1.3.0. [v1.3.0] - 2023-07-24 --------------------- Primarily widen the gamut of supported kernel versions, now supporting all kernels from 5.2 and onwards. - mvls: Support for 88E6320/88E6321 - mdio-netlink: Adapt to the upstream C22/C45 refactor. Signed-off-by: Zhi-Jun You <hujy652@protonmail.com>
* | | | natmap: update to 20230820Ray Wang2023-08-23
| | | | | | | | | | | | | | | | Signed-off-by: Ray Wang <r@hev.cc>
* | | | sqm-scripts: Bump to v1.6.0Toke Høiland-Jørgensen2023-08-22
| | | | | | | | | | | | | | | | | | | | | | | | Fixes an issue with DSA switch compatibility Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
* | | | Merge pull request #21874 from thess/unbound-SSL-workaroundTed Hess2023-08-21
|\ \ \ \ | | | | | | | | | | Unbound: Silence SSL unexpected eof messages
| * | | | Unbound: Silence SSL unexpected eof messagesTed Hess2023-08-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Refs: https://github.com/NLnetLabs/unbound/issues/812 https://github.com/NLnetLabs/unbound/issues/846 This is a backport of: https://github.com/NLnetLabs/unbound/commit/d7e7761 and can be removed with the next release/update of the Unbound package Signed-off-by: Ted Hess <thess@kitschensync.net>
* | | | | adguardhome: update quic-go to v0.37.6Dobroslaw Kijowski2023-08-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * quic-go v0.36.x cannot be compiled with Go 1.21. Update that AdGuardHome dependency to latest one from v0.37 series. * It fixes following compilation error: go-mod-cache/github.com/quic-go/quic-go@v0.36.2/internal/qtls/go121.go:5:13: cannot use "The version of quic-go you're using can't be built on Go 1.21 yet. For more details, please see https://github. com/quic-go/quic-go/wiki/quic-go-and-Go-versions." (untyped string constant "The version of quic-go you're using can't be built on Go 1.21 yet. Signed-off-by: Dobroslaw Kijowski <dobo90@gmail.com>
* | | | | adguardhome: update to v0.107.36Hannu Nyman2023-08-21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Full changelog available at: * https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.34 * https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.35 * https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.36 Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi> [ Reword commit message ] Signed-off-by: Dobroslaw Kijowski <dobo90@gmail.com>
* | | | | tailscale: Update to 1.48.0Zephyr Lykos2023-08-21
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Everything is working on pure upstream code. Patching is not longer needed. Added entire /etc/tailscale/ directory to conffiles for persistent ssh host key & https certificate across sysupgrades. Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* | | | tunneldigger-broker: update to v0.4.0Perry Melange2023-08-20
| | | | | | | | | | | | | | | | | | | | | | | | Include new hook script to build Signed-off-by: Perry Melange <isprotejesvalkata@gmail.com>
* | | | tunneldigger-broker: add rate-limit hookPerry Melange2023-08-20
| | | | | | | | | | | | | | | | Signed-off-by: Perry Melange <isprotejesvalkata@gmail.com>
* | | | tunneldigger-broker: add option to isolate bridge portsPerry Melange2023-08-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add new option to a config bridge section to indicate if a bridge port added to the bridge should be isolated or not. The default is 0 (no isolation). example config bridge option interface 'br-mybridge1446' option mtu '1446' option isolate '1' # default '0' Signed-off-by: Perry Melange <isprotejesvalkata@gmail.com>
* | | | tunneldigger-broker: update lib functionsPerry Melange2023-08-20
| | | | | | | | | | | | | | | | | | | | | | | | Use config_foreach instead of config_cb Signed-off-by: Perry Melange <isprotejesvalkata@gmail.com>
* | | | tunneldigger-broker: update config file and init for v0.4.0Perry Melange2023-08-20
| |/ / |/| | | | | | | | Signed-off-by: Perry Melange <isprotejesvalkata@gmail.com>
* | | sing-box: update to 1.4.0-beta.5Van Waholtz2023-08-18
| |/ |/| | | | | | | | | Add support for GO 1.21. Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
* | frr: updat to 9.0Lucian Cristian2023-08-17
| | | | | | | | Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* | frp: update to 0.51.3Van Waholtz2023-08-17
| | | | | | | | | | | | Includes some bug fixes and adds support for GO 1.21. Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
* | Merge pull request #21828 from stangri/master-simple-adblockStan Grishin2023-08-16
|\ \ | | | | | | simple-adblock: bugfixes for uci_load_validate
Powered by cgit, Themed by Ted Yin.