aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* stunnel: add missing sessionResume optionFlorian Eckert2022-01-10
| | | | | | | The option sessionResume was added in version 5.60 https://www.stunnel.org/NEWS.html Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* Merge pull request #17341 from erdoukki/fail2ban-2to3Jeffery To2022-01-10
|\ | | | | fail2ban: fix 2to3 error
| * fail2ban: fix 2to3 errorKerma Gérald2022-01-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Issue: 2to3 support has been removed in setuptools since version 58.0.0. Fix: openwrt/packages#17311 Requirements: 2to3/host openwrt/packages#17429 Add upstream patch: https://github.com/fail2ban/fail2ban/commit/196c55e93103d1e56d1336f27a5f2591b4e54fef To install/build for python3 from source, it is necessary to convert to py3 codebase before setup (invoke 2to3 or ./fail2ban-2to3 firstly). > ./fail2ban-2to3 > python3 setup.py build Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | wg-installer: fix cleanup scriptNick Hainke2022-01-10
| | | | | | | | | | | | The wrong function was called. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | haproxy: Update HAProxy to v2.4.10Christian Lachner2022-01-09
| | | | | | | | | | | | | | - Update haproxy download URL and hash - Updated upstream patches Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | crowdsec-firewall-bouncer: update to 0.0.21Kerma Gérald2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | Update crowdsec-firewall-bouncer to latest upstream release version 0.0.21 Makefile rework - use tagged version for download Fixes - set API_KEY in firewall bouncer config file Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | krb5: fix build on macosSergey V. Lobanov2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | backport of upstream commit https://github.com/krb5/krb5/commit/3c66c1fec7ce4edeff284a5e4abe32d0b4398539 Original author: Nikhil Benesch <nikhil.benesch@gmail.com> Remove unnecessary flag in macOS build The configuration logic for adding the `-search_paths_first` linker flag on Darwin does not correctly handle cross compilation. It should check the value of $krb5_cv_host rather than `uname -s` to detect when the compilation target is Darwin, rather than the build machine. It turns out `-search_paths_first` has been the default behavior of ld on macOS since XCode 4. So just remove that bit of logic entirely. (The flag was added in commit acd27af0e845f8b93de2e226cc2ec9ac8af52077 in 2004; XCode 4 was released in 2010.) Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>
* | transmission: add ca_bundle support with procd-ujailMatthew Hagan2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With procd-ujail enabled, it is not possible to use HTTPS URLs, for example when either for downloading torrent files or blocklists. The followig example occurs when downloading a URL from the "Upload Torrent Files" dialogue box: Error adding "https://releases.ubuntu.com/21.10/ubuntu-21.10-desktop-amd64.iso.torrent": gotMetadataFromURL: http error 0: No Response syslog will also hint that no CA_BUNDLE is being used: transmission-daemon[6683]: [2021-12-30 20:01:30.990] web will verify tracker certs using envvar CURL_CA_BUNDLE: none (web.c:455) This patch rectifies this issue by adding a ca_bundle configurable, enabled by default. This explicitly fixes the ca_bundle file location to /etc/ssl/certs/ca-certificates.crt and adds this file to the procd jail. On subsequent testing, HTTPS URL download functionality is restored. Signed-off-by: Matthew Hagan <mnhagan88@gmail.com>
* | curl: update to 7.81.0Stan Grishin2022-01-09
| | | | | | | | | | | | * changes: https://curl.se/changes.html#7_81_0 Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | wg-installer: fix typo in cleanup functionNick Hainke2022-01-09
| | | | | | | | | | | | | | The delete variable was misspelled leading to devices always being removed although they had connected neighbors. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | wg-installer: add cleanup scriptNick Hainke2022-01-09
| | | | | | | | | | | | Add script to cleanup unused wireguard interfaces. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | Revert "pdns-recursor: temp"Rosen Penev2022-01-08
| | | | | | | | This reverts commit 96e355836db7b83c4b1d46217a745be93ca019cb.
* | pdns-recursor: tempRosen Penev2022-01-08
| | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | crowdsec: update to 1.2.2Kerma Gérald2022-01-08
| | | | | | | | | | | | | | | | | | Update crowdsec to latest upstream release version 1.2.2 Makefile rework - use tagged version for download Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | wg-installer: fix ipv4 meshing via olsrNick Hainke2022-01-08
| | | | | | | | | | | | The ipv4 address space was not allowed. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | Merge pull request #17491 from jefferyto/obfs4proxy-0.0.12Josef Schlehofer2022-01-07
|\ \ | | | | | | obfs4proxy: Update to 0.0.12
| * | obfs4proxy: Update to 0.0.12Jeffery To2022-01-04
| | | | | | | | | | | | | | | | | | | | | Parts of the meek_lite transport are GPL3 (added in 0.0.9), the rest of the program is BSD 2-Clause. Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | bwping: update to version 2.4Oleg Derevenetz2022-01-07
| |/ |/| | | | | Signed-off-by: Oleg Derevenetz <oleg-derevenetz@yandex.ru>
* | wg-installer: add ipv4 supportNick Hainke2022-01-07
| | | | | | | | | | | | Add base_v4prefix to allow ipv4 mesh connections. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | Merge pull request #17502 from jefferyto/radicale2-2.1.12Josef Schlehofer2022-01-06
|\ \ | | | | | | radicale2: Update to 2.1.12
| * | radicale2: Update to 2.1.12Jeffery To2022-01-05
| | | | | | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | Merge pull request #17500 from jefferyto/radicale-1.1.7Josef Schlehofer2022-01-06
|\ \ \ | | | | | | | | radicale: Update to 1.1.7
| * | | radicale: Update to 1.1.7Jeffery To2022-01-05
| |/ / | | | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | wg-installer: add hotplug script for olsrNick Hainke2022-01-06
| | | | | | | | | | | | | | | | | | | | | Add hotplug-olsrd to automatically mesh with olsrd via new wireguard links. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | miniupnpd: create iptables and nftables variantStijn Tintel2022-01-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The next OpenWrt stable release aims to use firewall4 by default. As this uses nftables as backend, miniupnpd will no longer work. Create an iptables and nftables variant of the miniupnpd package so that miniupnpd can be used with either firewall variant. See #16818 for more info. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* | | Revert "miniupnpd: introduce IGDv1 variant"Stijn Tintel2022-01-05
|/ / | | | | | | | | | | | | | | Since version 2.2.3, miniupnpd will detect MS clients and force IGDv1. This reverts commit 7f5534ac7a88124c59b23188bcdc39bd9e92d879. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* | miniupnpc: update to version 2.2.3Shaleen Jain2022-01-05
| | | | | | | | Signed-off-by: Shaleen Jain <shaleen@jain.sh>
* | miniupnpd: update to version 2.2.3Shaleen Jain2022-01-05
|/ | | | Signed-off-by: Shaleen Jain <shaleen@jain.sh>
* inadyn: update to 2.9.1Rosen Penev2022-01-03
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* stubby: clean up the makefileRui Salvaterra2022-01-03
| | | | | | | | These cmake modules are actually never referenced. Stubby itself doesn't link to libidn or libunbound, only getdns does. They're most likely leftovers from when stubby was split from getdns to its own repository. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* adguardhome: Update to v0.107.2 stableJames White2022-01-02
| | | | Signed-off-by: James White <james@jmwhite.co.uk>
* dnsproxy: Update to 0.40.3Tianling Shen2022-01-02
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* dnsproxy: Update to 0.40.2Tianling Shen2021-12-29
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* Merge pull request #17418 from TDT-AG/pr/20211222-mwan3Florian Eckert2021-12-28
|\ | | | | mwan3: fix mwan3 flush conntrack table call
| * mwan3: fix mwan3 flush conntrack table callFlorian Eckert2021-12-22
| | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | stubby: quote address value in configDmitry Mikhirev2021-12-26
| | | | | | | | | | | | fixes #17421 Signed-off-by: Dmitry Mikhirev <mikhirev@gmail.com>
* | Merge pull request #17409 from alaviss/adguardhome-updateJosef Schlehofer2021-12-25
|\ \ | | | | | | adguardhome: update to 0.107.0
| * | adguardhome: update to 0.107.0Hiếu Lê2021-12-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Full changelog available at: https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.0 packr has been removed from build dependencies, per https://github.com/AdguardTeam/AdGuardHome/commit/c6888326b034daea9e69de5ee0a8f37aede45892#diff-2873f79a86c0d8b3335cd7731b0ecf7dd4301eb19a82ef7a1cba7589b5252261L2 Also added the ability to configure working directory location and moved the directory to /var. On most setups this should not change anything, as /var is symlinked to /tmp. The move mostly benefits setups where /var is configured to be persistent. The working directory is used by AdGuard to store persistent data like query logs, filter lists, etc. Data stored in this directory can get really huge, as such allowing this directory to be moved elsewhere (ie. an USB drive) is very beneficial. Co-authored-by: Dobroslaw Kijowski <dobo90@gmail.com> Co-authored-by: Jeffery To <jeffery.to@gmail.com> Signed-off-by: Hiếu Lê <leorize+oss@disroot.org>
* | | usteer: fix PKG_SOURCE_DATEDavid Bauer2021-12-24
| | | | | | | | | | | | | | | Reported-by: Hannu Nyman <hannu.nyman@iki.fi> Signed-off-by: David Bauer <mail@david-bauer.net>
* | | Merge pull request #17388 from AuthorReflex/openvpn-2.5.5Josef Schlehofer2021-12-24
|\ \ \ | | | | | | | | openvpn: update to 2.5.5
| * | | openvpn: update to 2.5.5Ivan Pavlov2021-12-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Maintainer: me / @mkrkn Compile tested: ramips/mt7620 TP-Link Archer C50 v1, ramips/mt7621 Xiaomi Mi router 3 Pro, ath79/generic TP-Link WDR-3500 Run tested: ramips/mt7620 TP-Link Archer C50 v1, ramips/mt7621 Xiaomi Mi router 3 Pro, ath79/generic TP-Link WDR-3500 openvpn: update to 2.5.5 use of CFG Spectre-mitigations in MSVC builds bring back OpenSSL config loading to Windows builds several build fixes, refer to https://github.com/OpenVPN/openvpn/blob/release/2.5/Changes.rst Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
* | | | Merge pull request #17427 from 1715173329/xrJosef Schlehofer2021-12-24
|\ \ \ \ | | | | | | | | | | xray-core: Update to 1.5.2
| * | | | xray-core: Update to 1.5.2Tianling Shen2021-12-24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Removed upstreamed patches. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | | dnsproxy: Update to 0.40.1Tianling Shen2021-12-24
|/ / / / | | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | | adblock: 4.1.3-4Dirk Brenken2021-12-22
| | | | | | | | | | | | | | | | | | | | | | | | * fix backup dir creation in raw mode Signed-off-by: Dirk Brenken <dev@brenken.org>
* | | | geoipupdate: initial commitMatthew Hagan2021-12-22
| |_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | Add MaxMind's geoipupdate utility. mmdb files are downloaded to /var/GeoIP by default. The user should update /etc/GeoIP.conf with their API key and DB choice, currently set to country only. So as not to exceed MaxMind's download limitations, the user should manually run the utility or set up a cron job. Signed-off-by: Matthew Hagan <mnhagan88@gmail.com>
* | | crowdsec-firewall-bouncer: remove crowdsec package dependencyKerma Gérald2021-12-22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Remove un-necessary crowdsec package dependency, to be able to use crowdsec-firewall-bouncer independently from crowdsec local installation. (with remote API) Fix issue: https://github.com/openwrt/packages/issues/17406 Description: using crowdsec-firewall-bouncer on many OpenWRT devices connected with my domain LAPI server (which collect many crowdsec machines, mostly nginx), it works great. Actually, crowdsec package is not mandatory for that usage, it would be great if it was not a dependency. Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | | gg: add new packageTianling Shen2021-12-21
| | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | xray-core: Update to 1.5.1Tianling Shen2021-12-21
| |/ |/| | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | knot: update to 3.1.5Jan Hák2021-12-21
| | | | | | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
Powered by cgit, Themed by Ted Yin.