| Commit message (Collapse) | Author | Age |
|---|
| |\
| |
| | |
seafile-ccnet: Update to 6.3.4
|
| | |
| |
| |
| |
| |
| | |
Switched to codeload for easier package bumping.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \
| | |
| | | |
freeradius3: Enable the EAP-PWD module.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This enables the EAP-PWD module, which allows for logging in with only
a username and password, while still being secure (see the links below
for the details of this EAP method, if interested).
https://en.wikipedia.org/wiki/Extensible_Authentication_Protocol#EAP_Password_(EAP-PWD)
Also found this blog post which talks about EAP-PWD and its benefits:
https://dustri.org/b/eap-pwd-wifi-security-done-right.html
Signed-off-by: Robby K <robbyke@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Add new patches (see https://www.haproxy.org/bugs/bugs-1.8.14.html)
- Raise PKG_RELEASE to 4
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| |\ \ \
| | | |
| | | | |
haproxy: Remove unnecessary OpenSSL depends
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
All of these are either not needed or not valid.
Added a patch to remove the OPENSSL_WITH_DEPRECATED dependency.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl>
|
| |/ / /
| | |
| | |
| | |
| | |
| | | |
lispmob: OOR is a rename of LISPmob and replace the package
Signed-off-by: Albert Lopez <alopez@ac.upc.edu>
|
| | |/
|/|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
* proactively scan and switch to a higher prioritized uplink,
despite of an already existing connection,
this is configurable via 'trm_proactive' option
(default '1', enabled)
* fix some minor list trim issues
* optimize wlan scanning behavior
* refine debug messages
Signed-off-by: Dirk Brenken <dev@brenken.org>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
A multi-year DNSSEC root key update is in progress, as described at
https://www.isc.org/downloads/bind/bind-keys/. This change refreshes the
bind.keys file, ensuring that the new key, in place as of 2018-10-11,
will be recognized and trusted.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
|
| | |
| |
| |
| |
| |
| |
| | |
delv is a tool for sending DNS queries and validating the results, using the
same internal resolver and validator logic as named.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
This includes the fix for CVE-2018-5738: When recursion is enabled but the
allow-recursion and allow-query-cache ACLs are not specified, they should be
limited to local networks, but they were inadvertently set to match the default
allow-query, thus allowing remote queries.
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
|
| | |
| |
| |
| | |
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
|
| | |
| |
| |
| |
| |
| | |
It seems to not be needed anymore. Tested on mvebu and ar71xx.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | |
| |
| |
| |
| |
| | |
Resolves issue #7235
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \
| | |
| | | |
haproxy: Update all patches for HAProxy v1.8.14
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Add new patches (see https://www.haproxy.org/bugs/bugs-1.8.14.html)
- Raise PKG_RELEASE to 2
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| |\ \ \
| | | |
| | | | |
libsearpc: Update to 3.1.0
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Switch to codeload for simplicity. Rearranged Makefile a bit for consistency between Makefiles.
Removed version dependency for seafile-server to avoid breaking builds.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \ \ \
| | | | |
| | | | | |
jool: Backport two fixes for newer kernels.
|
| | | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
The first is needed for 4.14 (maybe the relevant parts got packported and
the second is for when OpenWrt migrates to 4.19.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \ \ \ \
| | | | | |
| | | | | | |
spoofer: Update to 1.4.0
|
| | |/ / / /
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
Added PKG_USE_MIPS16 as it seems not to build under mipsel.
Error: opcode not supported on this processor: mips32r2 (mips32r2) `sync'
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \ \ \ \
| | | | | |
| | | | | | |
mdnsresponder: bump to 878.70.2 and refresh patches
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
https://github.com/openwrt/packages/pull/7215#issuecomment-431281385
Signed-off-by: Jacob Siverskog <jacob@teenage.engineering>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Jacob Siverskog <jacob@teenage.engineering>
|
| |\ \ \ \ \ \
| | | | | | |
| | | | | | | |
aria2: fixed the spelling for rpc-passwd and rpc-user.
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: brv phoenix <feixuekaka1@gmail.com>
|
| |\ \ \ \ \ \ \
| | | | | | | |
| | | | | | | | |
unbound: fix odhcpd and axfr script functions
|
| | |/ / / / / /
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
- fix AXFR zones to delay a potentially large download with ntp-hotplug
- fix odhcpd link script to properly delete expired lease data from DNS
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
|
| |\ \ \ \ \ \ \
| |/ / / / / /
|/| | | | | | |
net/mwan3: improvements
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
If we set the option "local_source" in the globals mwan3 section to "none",
traffic generated by the router it self will always use the default route from
the wan interface with the lowest metric. If this interface is down
the router traffic still uses the connection with the lowest metric but
this is disconnected. Load balancing and failover from the lan site is
still possible. Only router generated traffic is not load balanced and
could not use failover.
To solve this issue with router initiated traffic add the additional
option "online_metric" to the mwan3 interface section.
If the interface is connected then this lower "online metric" is set in the
default routing table.
With this change we have at least a failover with router initiated
traffic.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
During runntime of mwan3 we could add dynamicly networks to this ipset
which would then treated as connected networks by mwan3.
This is also usefull for ipsec.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
With the list param "rt_table_lookup" in the mwan3 section globals,
it is now possible to add a additional routing table numbers which would get
also parsed and will be added to the connected network.
So mwan3 will treat them as they are directly connected to this device.
This could be usefull if we use ipsec.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
The IPv6 egrep regex is confusing and hard to maintain.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
This change should optimize and speed up the status output generation.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
The generation for reporting the policies uses the same code add a
common function to reduce duplication.
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| | | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Prettify and cleanup source
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| |/ / / / / /
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
Fixes CVE-2018-15378. Added PKG_CPE_ID for proper CVE tracking.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
This adds a couple of patches when setting some openssl options:
* ECDSA code in openssh-compat.h and libressl-api-compat.c needs to be
be guarded by OPENSSL_HAS_ECC; otherwise, it will not build with
openssl compiled without ECC support.
* Fix openssl version number in openbsd-compat/openssl-compat.c which
failed to compile --with-ssl-engine; this option is used when
CONFIG_OPENSSL_ENGINE_CRYPTO=y
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
Signed-off-by: Peter Wagner <tripolar@gmx.at>
|
| | | | | | |
| | | | | |
| | | | | |
| | | | | | |
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
|
| |/ / / / /
| | | | |
| | | | |
| | | | | |
Signed-off-by: Peter Wagner <tripolar@gmx.at>
|