| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| |/ / /
| | |
| | |
| | |
| | |
| | | |
Upstream bump
Signed-off-by: John Audia <therealgraysky@proton.me>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Update haproxy PKG_VERSION and PKG_HASH
- See changes: http://git.haproxy.org/?p=haproxy-2.6.git;a=shortlog
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| |\ \ \
| | | |
| | | | |
beanstalkd: Update to 1.13
|
| | | |/
| |/|
| | |
| | | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | |/
|/|
| |
| |
| |
| |
| |
| | |
Transmission 4.0 web interface files changed from /web to /public_html
This fixes https://github.com/openwrt/packages/issues/20737
Signed-off-by: Mikhail Zhilkin <csharper2005@gmail.com>
|
| |\ \
| | |
| | | |
strongswan: Fix indent for hw_offload, interface, priority
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Allow passing multiple config lines with the same indent level.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | |/
| |
| |
| | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \
| | |
| | | |
curl: enable unix sockets by default
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
- changed Config.in to enable unix sockets support by default
- release number bumped
Description:
socket support is very handy when communicating with
various REST APIs.
Size increases are very small, nearly unnoticiable.
Tested-by: Stan Grishin <stangri@melmac.ca>
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Ray Wang <r@hev.cc>
|
| | | |
| | |
| | |
| | |
| | | |
Changelogs: https://github.com/SagerNet/sing-box/releases/tag/v1.2.1
Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Release Notes
Management
- Introduce a new ACL engine based on Rego (Open Policy Agent) for firewall control
- Personal access tokens generation as a first iteration toward public API release
- Add Keycloak support as an IDP manager
Agent
- Introduce a Firewall interface to apply granular access control (e.g., connection direction, port, or protocol level)
- Make the agent run on Android (mobile support)
Changelog
- Feat rego default policy
- Don't drop Rules from file storage after migration to Policies
- Add version info command to signal server
- Feat firewall controller interface
- Adding Personal Access Token generation
- Exchange proxy mode via signal
- Fix connstate indication
- Mobile
- PAT persistence
- Add Keycloak Idp Manager
- Adjustments for the change server flow
- Disable peer expiration of peers added with setup keys
- Add JWT middleware validation failure log
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | | |
* fixed a race condition if the service is in a disabled state
Signed-off-by: Dirk Brenken <dev@brenken.org>
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Samba release history: https://www.samba.org/samba/history/samba-4.18.0.html
Signed-off-by: Andrew Sim <andrewsimz@gmail.com>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Update haproxy PKG_VERSION and PKG_HASH
- This release includes a fix for an OOB write. The official notes
do not list a CVE entry but I guess there is a chance for
security implications
- See changes: http://git.haproxy.org/?p=haproxy-2.6.git;a=shortlog
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| | | |
| | |
| | |
| | |
| | | |
Changelogs: https://github.com/SagerNet/sing-box/releases/tag/v1.2.0
Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* raise max. timeouts from 10 to 30 seconds to stabilize the autodetection on slow hardware
* made interface trigger action configurable, set 'ban_triggeraction' accordingly (default: 'start')
* made E-Mail notifications configurable to receive status E-Mais with every banIP run,
set 'ban_mailnotification' accordingly (default: disabled)
* small fixes & optimizations
* readme update
Signed-off-by: Dirk Brenken <dev@brenken.org>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| |\ \ \
| | | |
| | | | |
gensio: fix python bindings build by using a pcre enabled host swig (fixes #20604)
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
While at, fine-tune the description string slightly.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
We need the host build of swig only.
And the binding uses libgensiocpp - not the plain
C library, so fix the dependency.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Bug fixes & refactor
Fix: send remote agents updates when peer re-authenticates
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
* fix cornercase issue with duplicate entries in black- and whitelist
* change cpbl source URL
* firewall redirects now blocks IPv4 and IPv6 (set family to "any")
Signed-off-by: Dirk Brenken <dev@brenken.org>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
- Added TproxyNotSkipBr flag for OpenWrt.
- Removed all upstreamed patches.
- Removed deprecated option.
- Re-enable ipv6/nftables auto-detect.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
- Update haproxy download URL and hash
- See changes: http://git.haproxy.org/?p=haproxy-2.6.git;a=shortlog
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| | |_|/
|/| |
| | |
| | |
| | |
| | |
| | | |
See release notes for more details:
https://github.com/transmission/transmission/releases/tag/4.0.2
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Sibren Vasse <github@sibrenvasse.nl>
|
| |\ \ \
| | | |
| | | | |
strongswan: Update to 5.9.10
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
GITWEB_* variable values don't work as they should since 2.38, so let's
remove them and add a workaround. This issue was reported in
https://lore.kernel.org/git/80eb3972-4960-5727-ce86-acc3a4425fd4@nic.cz/T/#u
* refresh patches
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
|
| | |/ /
|/| |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
zerotier as default has executable stack.
[ 11.343143] process '/usr/bin/zerotier-one' started with executable stack
executable stacks are not recommend, possibly provide a threat and there
seems to be no advantage of executable stack with zerotier-one - so let's
build it without instead.
Stack is executable on x86_64, but not on all archs, such as ramips.
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Upstream bump
Signed-off-by: John Audia <therealgraysky@proton.me>
|
| |\ \ \
| | | |
| | | | |
ddns-scripts: Add v2 API for mythic-beasts.com provider
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Use USERNAME as the key, PASSWORD as the secret.
Signed-off-by: Jim Hague <jim.hague@acm.org>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Moritz Warning <moritzwarning@web.de>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Bug fixes & refactor
Release notes:
- Fix: send remote agents updates when peer re-authenticates
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| | |/ /
|/| |
| | |
| | | |
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
|
| |\ \ \
| | | |
| | | | |
strongswan: Update to 5.9.9
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Add patch to remove definition of RNG leaking in from wolfssl.h.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Upstream bump
Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B
Signed-off-by: John Audia <therealgraysky@proton.me>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
* move network.sh and jshn.sh includes into load_validate_config function
to prevent errors when adding the package to image with the Image Builder
* add @bongochong compressed domains block-list to the config
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
- Explicitly request the C++11 standard (codebase is not C++17 compliant).
- Removed categories.json from conffiles -- it's not a configuration
file.
- Removed commented-out convenience git hash place-holder -- for some
reason it irritates people.
- Added radix header file to devel files.
- Removed redundant call to Build/Configure (not needed).
Co-authored-by: Tianling Shen <cnsztl@gmail.com>
Signed-off-by: Darryl Sokoloski <darryl@sokoloski.ca>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Remove upstreamed patches.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|