aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
...
* | | | yggdrasil: stop properlyMaciej Krüger2022-06-02
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Previously it was using killall with procd respand enabled This was causing yggdrasil to restart after being killed root@r3test-hap:/# service yggdrasil stop ; echo $? ; sleep 10s ; ps | grep yggdrasil Terminated 143 6701 root 653m S /usr/sbin/yggdrasil -useconffile /tmp/yggdrasil.conf 6748 root 1308 S grep yggdrasil Now it's just using whatever procd is using and see there, it actually stops root@r3test-hap:/# service yggdrasil stop ; echo $? ; sleep 10s ; ps | grep yggdrasil 0 6802 root 1308 S grep yggdrasil I assume there was some procd bug that kept it from being used properly Signed-off-by: Maciej Krüger <mkg20001@gmail.com>
* | | | mosh-full: Add perlbase-text dependencyJottr Doe2022-06-01
| | | | | | | | | | | | | | | | | | | | | | | | Fixes https://github.com/openwrt/packages/issues/18182 Signed-off-by: Jottr Doe <jottr@users.noreply.github.com>
* | | | mosh-full: Sort dependencies alphabeticallyJottr Doe2022-06-01
| | | | | | | | | | | | | | | | Signed-off-by: Jottr Doe <jottr@users.noreply.github.com>
* | | | openconnect: make the host dependency optionalRui Salvaterra2022-06-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | According to David Woodhouse, OpenConnect has no issues reconnecting on any interface. Make the host dependency optional, as it can cause issues in multiple WAN scenarios. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | openconnect: avoid using the --juniper switchRui Salvaterra2022-06-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The --juniper switch has been deprecated in favour of --protocol=nc. Fix the proto script thusly, while keeping compatibility with existing configurations. Note that, as far as UCI is concerned, if both options juniper and vpn_protocol are specified, the latter takes precedence. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | openconnect: fix inclusion of netifd proto scriptsRui Salvaterra2022-06-01
| | | | | | | | | | | | | | | | | | | | | | | | This is the preferred way, according to the wiki. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | Revert "openconnect: drop the dependency on resolveip"Rui Salvaterra2022-06-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Using resolveip is more robust and predictable than depending on nslookup and awk. This reverts commit 131ec7b3bd6895aa3f86f57169dd23c15f174fe2. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | openfortivpn: update to 1.17.3Lucian Cristian2022-06-01
| | | | | | | | | | | | | | | | Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* | | | libreswan: update to 4.7Lucian Cristian2022-05-30
| | | | | | | | | | | | | | | | Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* | | | pdns-recursor: update to 4.7.0Peter van Dijk2022-05-30
| | | | | | | | | | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | | | xray-core: Update to 1.5.6Tianling Shen2022-05-30
| | | | | | | | | | | | | | | | | | | | | | | | Updated geodata to latest version while at it. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | cloudflared: Update to 2022.5.3Tianling Shen2022-05-30
| | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | i2pd: Update packageR4SAS I2P2022-05-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Update to 2.42.1 * Replace spaces with tabulation in init file Signed-off-by: R4SAS I2P <r4sas@i2pmail.org>
* | | | banip: mark as brokenDirk Brenken2022-05-27
| | | | | | | | | | | | | | | | | | | | | | | | | | | | banIP 0.7.x is not compatible with new nft firewall (default in master and 22.03). Mark the package as BROKEN for now. Signed-off-by: Dirk Brenken <dev@brenken.org>
* | | | stubby: restart on trigger interfacesAleksandr V. Piskunov2022-05-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Force restart stubby if any of the trigger interfaces goes up or down. Avoids DoT DNS lookup timeouts when default route changes, in case of multiple upstream interfaces. Signed-off-by: Aleksandr V. Piskunov <aleksandr.v.piskunov@gmail.com>
* | | | vpnc: Update to 0.5.3+git20220517Andreas Erhard2022-05-25
| | | | | | | | | | | | | | | | | | | | | | | | The new version of vpnc supports additional DH groups for improved key exchange security. Signed-off-by: Andreas Erhard <andreas.erhard@i-med.ac.at>
* | | | haproxy: Update HAProxy to v2.4.17Christian Lachner2022-05-25
| | | | | | | | | | | | | | | | | | | | | | | | - Update haproxy download URL and hash Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | | | dnslookup: Update to 1.7.0Tianling Shen2022-05-25
| | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | dnsproxy: Update to 0.43.0Tianling Shen2022-05-25
| | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | openconnect: make sure OpenSSL is built with DTLS supportRui Salvaterra2022-05-24
| | | | | | | | | | | | | | | | | | | | | | | | Otherwise, OpenConnect will fail to connect with DTLS. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | openconnect: don't bother loading the tun moduleRui Salvaterra2022-05-23
| | | | | | | | | | | | | | | | | | | | | | | | If it exists (if it isn't built-in), it will be loaded automatically at boot. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | openconnect: drop the dependency on resolveipRui Salvaterra2022-05-23
| | | | | | | | | | | | | | | | | | | | | | | | We have nslookup and awk, let's use them. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | dnsproxy: Update to 0.42.4Tianling Shen2022-05-23
| | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | samba4: fix build on macosSergey V. Lobanov2022-05-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit fixes two issues on macos: 1. Added a patch to fix 'echo -n' issue with MacOS shell (backported from upstream) 2. Redefined sys.platform='linux' for target build if build host is MacOS (otherwise, build script tries to use MacOS logic for OpenWrt(Linux) target build) Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>
* | | | acme: switch from iptables to nftToke Høiland-Jørgensen2022-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Use nft instead of iptables to open port 80 in the firewall when getting a cert. Since nft doesn't allow deleting a rule by its contents, capture and save the handle when creating the rule, and use that to delete. Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
* | | | openconnect: fix OpenSSL build without deprecated APIRui Salvaterra2022-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Backport a patch in order to allow building OpenConnect against OpenSSL 1.1.x without the need for deprecated API (further fixes will be required for OpenSSL 3.x, though). Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | wifi-presence: Add config for process user/groupAdam Williams2022-05-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | On systems using seccomp, the hostapd socket files will be owned by the 'network' user/group ([source][0]). In this case, if wifi-presence is run as root/root, then it does not have permissions to open the hostapd socket files. This was discussed in awilliams/wifi-presence#3. This change allows the process user/group to be specified in /etc/config/wifi-presence. If no explicit user/group is set, then the init script will use the owner of the socket files in /var/run/hostapd/ to determine the appropriate process user/group. [0]: https://github.com/openwrt/openwrt/blob/ec6293febc244d187e71a6e54f44920be679cde4/package/network/services/hostapd/files/wpad.init#L35-L36 Signed-off-by: Adam Williams <pwnfactory@gmail.com>
* | | | frr: drop elfutils/host dependencyStijn Tintel2022-05-19
| | | | | | | | | | | | | | | | | | | | | | | | The elfutils package moved to tools and elfutils/host no longer exists. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* | | | stunnel: update to version 5.64Florian Eckert2022-05-19
| |/ / |/| | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | | Merge pull request #18361 from stangri/master-https-dns-proxyStan Grishin2022-05-19
|\ \ \ | | | | | | | | https-dns-proxy: 2021-11-22-3: add support for Canary Domains
| * | | https-dns-proxy: 2021-11-22-3: add support for Canary DomainsStan Grishin2022-04-25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes https://github.com/stangri/source.openwrt.melmac.net/issues/155. Background: https://support.mozilla.org/en-US/kb/canary-domain-use-application-dnsnet Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | | usteer: update to latest HEADDavid Bauer2022-05-17
| | | | | | | | | | | | | | | | | | | | | | | | 7afab96 usteer: Fix better candidate not being set in policy Signed-off-by: David Bauer <mail@david-bauer.net>
* | | | Merge pull request #18472 from sotux/masterFlorian Eckert2022-05-17
|\ \ \ \ | | | | | | | | | | kcptun: add tcp option
| * | | | kcptun: add tcp optionZheng Qian2022-05-08
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Zheng Qian <sotux82@gmail.com>
* | | | | softflowd: add traffic capture filterJesus Fernandez Manzano2022-05-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | softflowd can filter the traffic with an optional bpf program, specified on the command-line as a BPF expression Signed-off-by: Jesus Fernandez Manzano <jesus.manzano@galgus.net>
* | | | | snort3: update to 3.1.29.0W. Michael Petullo2022-05-14
| | | | | | | | | | | | | | | | | | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* | | | | modemmanager: report network initiated disconnections to netifdAleksander Morgado2022-05-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The new connection dispatcher scripts support integrated in ModemManager 1.18.8 allows us to provide a openwrt-specific dispatcher script used to report netifd that the underlying network connection is down. See also https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/merge_requests/775 Fixes https://github.com/openwrt/openwrt/issues/8368 Fixes https://github.com/openwrt/packages/issues/14096 Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
* | | | | modemmanager: install available FCC unlock scriptsAleksander Morgado2022-05-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The FCC unlock scripts are installed but not enabled by default. Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
* | | | | modemmanager: bump to 1.18.8Aleksander Morgado2022-05-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Also removed two patches that are already included in the upstream release. Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
* | | | | Merge pull request #18293 from hexian000/privoxy_bugfixJeffery To2022-05-15
|\ \ \ \ \ | | | | | | | | | | | | privoxy: prevent killing the init script itself when stopping service
| * | | | | privoxy: update to 3.0.33 and fix the init scriptHe Xian2022-05-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1. Fixed init script would kill itself when trying to stop a service. 2. Upgrade privoxy release to 3.0.33 3. Set PKG_RELEASE to AUTORELEASE Signed-off-by: He Xian <hexian000@outlook.com>
* | | | | | dnsproxy: Update to 0.42.3Tianling Shen2022-05-14
| | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | | | cloudflared: Update to 2022.5.1Tianling Shen2022-05-14
| | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | | | haproxy: Update HAProxy to v2.4.16Christian Lachner2022-05-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Update haproxy download URL and hash Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | | | | | Merge pull request #18516 from robje/cable-typeJeffery To2022-05-13
|\ \ \ \ \ \ | | | | | | | | | | | | | | nut: add cable type nut driver config
| * | | | | | nut: add cable type nut driver configRob J. Epping2022-05-13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | at least driver apcsmart-old (maybe more) allow for specifying the type of cable used. My old UPS does will not function when cable type is not specified. This will add support for configuration option 'cable' Signed-off-by: Rob J. Epping <epping@renf.us>
* | | | | | | Merge pull request #18467 from AdorableJiang/mydnsjpJeffery To2022-05-13
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | ddns-scripts: mydns.ip to mydns.jp
| * | | | | | | ddns-scripts: mydns.ip to mydns.jpShengjiang Quan2022-05-12
| | |_|/ / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The provider is `mydns.jp` not `mydns.ip` which is wrong and misleading. Signed-off-by: Shengjiang Quan <qsj287068067@126.com>
* | | | | | | tailscale: update to version 1.24.2Magnus Kessler2022-05-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Magnus Kessler <Magnus.Kessler@gmx.net>
* | | | | | | openconnect: bump to version 9.01Rui Salvaterra2022-05-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Now with basic support for the Array Networks SSL VPN protocol. Also fix the OpenSSL build. OpenConnect requires support for deprecated APIs, for the time being, so select them if compiling against OpenSSL. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
Powered by cgit, Themed by Ted Yin.