aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* overture: update to 1.7Huangbin Zhan2021-04-03
| | | | Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* netifyd: support filter parameterKevin Darbyshire-Bryant2021-04-03
| | | | | | | | | | | | netifyd supports a '-F' filter option in 'bpf' notation to filter packets from its consideration. Add support for a uci 'filter' option. eg. filter to exclude SSDP multicasts from a particularly noisy device: option filter 'not (udp and dst 239.255.255.250 and dst port 1900 and src 192.168.1.5)' Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* restic-rest-server: fix configuration option namesAnton Ryzhov2021-04-03
| | | | Signed-off-by: Anton Ryzhov <anton@ryzhov.me>
* yggdrasil: bump to 0.3.16George Iv2021-04-03
| | | | Signed-off-by: George Iv <zhoreeq@users.noreply.github.com>
* rp-pppoe: use pppoe.so instead of rp-pppoe.soJianhui Zhao2021-04-03
| | | | Signed-off-by: Jianhui Zhao <zhaojh329@gmail.com>
* nut: fix typo in nutshutdown scriptSven Roederer2021-04-03
| | | | | | | | Even it's only cosmetic and should not affect the function of regular system, fix the name of the IPKG_INSTROOT variable. Typo was added long ago with 8400c9a6ec799. Signed-off-by: Sven Roederer <devel-sven@geroedel.de>
* banip: bugfix 0.7.6-2Dirk Brenken2021-04-03
| | | | | * fix housekeeping of external list sources Signed-off-by: Dirk Brenken <dev@brenken.org>
* Merge pull request #15301 from ja-pa/git-lfs-2.13.3Josef Schlehofer2021-04-02
|\ | | | | git-lfs: update to version 2.13.3
| * git-lfs: update to version 2.13.3Jan Pavlinec2021-03-29
| | | | | | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* | Merge pull request #15286 from pprindeville/strongswan-move-ipsec.secretsPhilip Prindeville2021-04-01
|\ \ | | | | | | strongswan: move ipsec conf files to subpackage
| * | strongswan: move ipsec conf files to subpackagePhilip Prindeville2021-03-31
| | | | | | | | | | | | | | | | | | | | | These config files are only used by the ipsec interface to charon, and shouldn't be part of the base package. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | | openvpn: fix invoking user up & down commands from hotplug wrapperJo-Philipp Wich2021-04-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit adds a number of fixes to the OpenVPN up/down hotplug command wrapper which currently fails to actually invoke user defined up and down commands for uci configurations not using external native configurations. - Use the `--setenv` to pass the user configured `up` and `down` commands as `user_up` and `user_down` environment variables respectively - Instead of attempting to scrape the `up` and `down` settings from the (possibly generated) native OpenVPN configuration in `/etc/hotplug.d/openvpn/01-user`, read them from the respective environment variables instead - Fix parsing of native configuration values in `get_openvpn_option()`; first try to parse a given setting as single quoted value, then as double quoted and finally as non-quoted, potentially white-space escaped one. This ensures that `up '/bin/foo'` is interpreted as `/bin/foo` and not `'/bin/foo'` Ref: https://forum.openwrt.org/t/openvpn-up-down-configuration-ignored/91126 Supersedes: #15121, #15284 Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* | | Merge pull request #15327 from ja-pa/curl-7.76.0Rosen Penev2021-04-01
|\ \ \ | | | | | | | | curl: update to version 7.76.0 (security fix)
| * | | curl: update to version 7.76.0Jan Pavlinec2021-04-01
| | | | | | | | | | | | | | | | | | | | | | | | Fixes CVE-2021-22876 and CVE-2021-22890 Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* | | | tmate-ssh-server: add packagePaul Spooren2021-03-31
|/ / / | | | | | | | | | | | | | | | | | | | | | The `tmate` tool is a fork of `tmux` which allows remote access to a device without setting up any port forwarding. This commits adds the backend server which handles connections. Signed-off-by: Paul Spooren <mail@aparcar.org>
* | | xray-core: Update to 1.4.1Tianling Shen2021-03-31
| | | | | | | | | | | | | | | | | | Updated geodata to latest version. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | ovsd: add packageDaniel Golle2021-04-01
| | | | | | | | | | | | | | | | | | Add Open vSwtich configuration daemon for netifd. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* | | knot: update to version 3.0.5Jan Hak2021-03-29
| |/ |/| | | | | Signed-off-by: Jan Hak <jan.hak@nic.cz>
* | Merge pull request #15289 from dibdot/banipDirk Brenken2021-03-28
|\ \ | | | | | | banip: update to 0.7.6
| * | banip: update to 0.7.6Dirk Brenken2021-03-28
| | | | | | | | | | | | | | | | | | | | | | | | | | | * rework the central iptables function to significantly reduce the code complexity and the overall number of iptables calls * check early and only once in the chain for ctstate NEW and return otherwise (thanks @ldir-EDB0) * made the whitelist ordering within the chain more flexible Signed-off-by: Dirk Brenken <dev@brenken.org>
* | | frr: update to 7.5.1 and backportsLucian Cristian2021-03-28
|/ / | | | | | | Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* / treewide: build CMake projects with NinjaRosen Penev2021-03-27
|/ | | | | | | | | | | | | | | | | | | | faster to compile. A small selection of packages was tested going from: Executed in 696.30 secs fish external usr time 82.98 mins 395.00 micros 82.98 mins sys time 9.02 mins 0.00 micros 9.02 mins to: Executed in 592.20 secs fish external usr time 84.84 mins 361.00 micros 84.84 mins sys time 8.85 mins 57.00 micros 8.85 mins Tested by running make -j 12 and wiping staging/build_dir/target_x Signed-off-by: Rosen Penev <rosenp@gmail.com>
* Merge pull request #14711 from pprindeville/strongswan-make-includes-persistentPhilip Prindeville2021-03-26
|\ | | | | strongswan: make the include's in the .conf files persistent
| * strongswan: make the include's in the .conf files persistentPhilip Prindeville2021-03-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Having scripts diddle user written config files seems potentially dangerous. Plus there's really no downside to including some empty files. Best to just make the includes be permanent. Additional feature suggested by Luiz: if a -opkg version of the config file was created unnecessarily, remove it as part of the upgrade process since changes won't be happening to that file as an artifact of the service starting. The include lines are now permanent, which means that (1) additional configuration synthesized by UCI won't be anywhere that opkg (or sysupgrade, for that matter) cares about since it won't be persistent, and (2) if changes are being made, then they're being done by a person with an editor and they really should be distinguished. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | Merge pull request #15276 from dibdot/banipDirk Brenken2021-03-26
|\ \ | | | | | | banip: update to 0.7.5-4
| * | banip: update to 0.7.5-4Dirk Brenken2021-03-26
| | | | | | | | | | | | | | | | | | | | | | | | * fix another IPv4/IPv6 related iptables chain creation problem * fix counter during ipset creation * fix regex for debug counters * fix ipset housekeeping for local sources Signed-off-by: Dirk Brenken <dev@brenken.org>
* | | mbusd: update to 0.5.0Rosen Penev2021-03-26
| | | | | | | | | | | | | | | | | | | | | | | | Switch to AUTORELEASE for simplicity. Switch to building with Ninja for faster compilation. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | netstinky: fix no deprecated OpenSSLRosen Penev2021-03-26
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | acme: Get listener name from /proc/PID/exe instead of netstat outputToke Høiland-Jørgensen2021-03-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It seems the command name output from netstat can be truncated in weird ways, so let's get the binary name from /proc instead and use that for matching which listener we have. Fixes #15071. Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
* | | netopeer2: update to 1.1.70Rosen Penev2021-03-26
| |/ |/| | | | | | | | | | | | | Switch to AUTORELEASE for simplicity. Switch to building with Ninja for faster compilation. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | Merge pull request #15266 from pprindeville/strongswan-change-maintainersStijn Tintel2021-03-26
|\ \ | | | | | | strongswan: change maintainers
| * | strongswan: change maintainersPhilip Prindeville2021-03-25
| |/ | | | | | | Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | https-dns-proxy: bugfix: correct PROCD firewall objectStan Grishin2021-03-25
| | | | | | | | Signed-off-by: Stan Grishin <stangri@melmac.net>
* | ratechecker: update to 2020-01-30Rosen Penev2021-03-25
|/ | | | | | | | | | Reorganize Makefile for consistency between packages. Switch to AUTORELEASE for simplicity. Switch to building with Ninja for faster compilation. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* cshark: update to 2020-07-22Rosen Penev2021-03-24
| | | | | | | | Switch to AUTORELEASE for simplicity. Switch to building with Ninja for faster compilation. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* Merge pull request #15228 from fatbob313/umurmur-0.2.20Rosen Penev2021-03-23
|\ | | | | uMurmur: Update to 0.2.20. Fix build against OpenSSL without deprecat…
| * uMurmur: Update to 0.2.20. Fix build against OpenSSL without deprecated API ↵Martin Johansson2021-03-23
| | | | | | | | | | | | enabled. Signed-off-by: Martin Johansson <martin@fatbob.nu>
* | Merge pull request #15229 from dibdot/adblockDirk Brenken2021-03-23
|\ \ | | | | | | adblock: update 4.1.0-3
| * | adblock: update 4.1.0-3Dirk Brenken2021-03-23
| | | | | | | | | | | | | | | | | | | | | * add a restrictive "jail mode only" variant, just point your jail directory to your primary dns directory * update readme Signed-off-by: Dirk Brenken <dev@brenken.org>
* | | sysrepo: update to 1.4.122Rosen Penev2021-03-22
| | | | | | | | | | | | | | | | | | | | | | | | Switch to AUTORELEASE for simplicity. Use Ninja for faster compilation. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | Merge pull request #15171 from ldir-EDB0/miniupnpdRosen Penev2021-03-22
|\ \ \ | | | | | | | | miniupnpd: add patience to firewall include
| * | | miniupnpd: add patience to firewall includeKevin Darbyshire-Bryant2021-03-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Occasionally, mostly at startup, miniupnpd reports "Another app is currently holding the xtables lock. Perhaps you want to use the -w option?" Take iptables' advice and wait up to 1 second before giving up. Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* | | | Merge pull request #15219 from stangri/master-https-dns-proxyRosen Penev2021-03-22
|\ \ \ \ | | | | | | | | | | https-dns-proxy: support for additional Force DNS ports
| * | | | https-dns-proxy: support for additional Force DNS portsStan Grishin2021-03-22
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Stan Grishin <stangri@melmac.net>
* | | | | Merge pull request #15226 from ja-pa/ooniprobe-3.8.0Rosen Penev2021-03-22
|\ \ \ \ \ | | | | | | | | | | | | ooniprobe: update to version 3.8.0
| * | | | | ooniprobe: update to version 3.8.0Jan Pavlinec2021-03-22
| |/ / / / | | | | | | | | | | | | | | | Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
* / / / / openvpn: add OpenVPN option server-poll-timeoutAlexander Egorenkov2021-03-22
|/ / / / | | | | | | | | | | | | | | | | | | | | See https://www.mankier.com/8/openvpn#--server-poll-timeout Signed-off-by: Alexander Egorenkov <egorenar-dev@posteo.net>
* | | | coova-chili: fix compilation with kernel 5.10Rosen Penev2021-03-21
| | | | | | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | | bind: update to 9.17.11Rosen Penev2021-03-21
| |_|/ |/| | | | | | | | | | | | | | Backport upstream OpenSSL deprecated API patch. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | knxd: new upstream version 0.14.50Othmar Truniger2021-03-21
| | | | | | | | | | | | Signed-off-by: Othmar Truniger <github@truniger.ch>
Powered by cgit, Themed by Ted Yin.