aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* rclone: Update to 1.57.0Tianling Shen2021-11-03
| | | | | | | - Disabled unused plugins and re-enabled CGO. - Fixed test script Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* frp: update to 0.38.0Ren Zongjia2021-11-03
| | | | Signed-off-by: Ren Zongjia <acooler15@foxmail.com>
* Merge pull request #17031 from turris-cz/drop-rosy-fsJosef Schlehofer2021-11-02
|\ | | | | rosy-file-server: drop this package
| * rosy-file-server: drop this packageJosef Schlehofer2021-10-31
| | | | | | | | | | | | | | | | | | | | | | | | | | Reasons to drop this package: a) this package depends on luci-app-rosy-file-server Unfortunately, it was marked as broken as it is unmaintained. See: https://github.com/openwrt/luci/commit/34b682afac310859f0d4696110d8a1af60f16c04 b) maintainer is inactive c) rosinson website does not seem to be working Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | usteer: update to latest git headDavid Bauer2021-10-31
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 6813542 remote: always re-schedule update timeout d7833e1 remote: fix compilation with glibc bee2caf sta: schedule sta_info timeout on creation ae32cb9 ubus: fix channel for active probing 8dc0753 ubus: introduce enum for beacon measurement mode 46e5976 policy: use correct reference signal 1116fdb policy: avoid creating kick loop for client d3ff0d5 sta: add sta_connection_state enum 30f9ba7 remote: include node BSSID into messages 8af7b6c usteer: add BSSID to node struct Signed-off-by: David Bauer <mail@david-bauer.net>
* | nginx: add scgi_params if CONFIG_NGINX_HTTP_SCGI=yJavier Marcet2021-10-30
| | | | | | | | Signed-off-by: Javier Marcet <javier@marcet.info>
* | tor: bump to 0.4.6.8 stableRui Salvaterra2021-10-30
| | | | | | | | Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | nginx, python3-{asgiref,django-cors-headers,drf-nested-routers,sqlparse}: ↵Peter Stadler2021-10-30
| | | | | | | | | | | | | | | | bump versions Update to the newest versions and switch to $(AUTORELEASE) for the python3 packages (where I am the maintainer). Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
* | openfortivpn: add persistent reconnect optionMatthew Hagan2021-10-30
| | | | | | | | | | | | | | Currently when the connection times out, the interface will disconnect. Add capability to add persistent option to re-establish connectivity. Signed-off-by: Matthew Hagan <mnhagan88@gmail.com>
* | openfortivpn: add user, key, CA PEM supportMatthew Hagan2021-10-30
| | | | | | | | | | | | Allow authentication inputs by key/cert PEM. Signed-off-by: Matthew Hagan <mnhagan88@gmail.com>
* | zerotier: add respawn procd paramChao Liu2021-10-30
| | | | | | | | Signed-off-by: Chao Liu <git@expiron.dev>
* | uwsgi: bump version and use less workaroundsPeter Stadler2021-10-30
| | | | | | | | | | | | | | * adopt pypi name and line numbers in patches * remove custom tar command and patch for using python3 (changed upstream) Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
* | xray-core: remove dead jail filesTianling Shen2021-10-30
| | | | | | | | | | | | | | | | It never works... And Xray-core needs root access to work. Bump geodata to latest version while at it. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | lighttpd: update to lighttpd 1.4.61 release hashGlenn Strauss2021-10-30
|/ | | | | | also remove patches incorporated upstream into lighttpd 1.4.61 Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
* softethervpn: update to 4.38-9760-rtmRosen Penev2021-10-28
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* Merge pull request #16992 from pprindeville/named-restart-intf-flapPhilip Prindeville2021-10-28
|\ | | | | bind: detect new interfaces when they come up
| * bind: detect new interfaces when they come upPhilip Prindeville2021-10-28
| | | | | | | | | | | | | | | | Reload the service when interfaces flap; note that libcap support is required to open new sockets on interfaces coming up during a reload, otherwise a full restart would be needed. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | Merge pull request #16984 from pprindeville/strongswan-update-5.9.4Philip Prindeville2021-10-28
|\ \ | | | | | | strongswan: bump version to 5.9.4
| * | strongswan: Bump to 5.9.4Philip Prindeville2021-10-28
| |/ | | | | | | Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | Merge pull request #17010 from pprindeville/bind-update-9.17.19Philip Prindeville2021-10-28
|\ \ | | | | | | bind: Bump to 9.17.19
| * | bind: Bump to 9.17.19Philip Prindeville2021-10-28
| |/ | | | | | | | | | | | | | | | | | | | | | | | | | | The following CVE updates are included: * CVE-2021-25219: The "lame-ttl" option is now forcibly set to 0. This effectively disables the lame server cache, as it could previously be abused by an attacker to significantly degrade resolver performance. * CVE-2021-25218: An assertion failure occurred when named attempted to send a UDP packet that exceeded the MTU size, if Response Rate Limiting (RRL) was enabled. Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | Merge pull request #17003 from pprindeville/named-deprecate-managed-keysPhilip Prindeville2021-10-28
|\ \ | | | | | | bind: deprecate managed-keys
| * | bind: deprecate managed-keysPhilip Prindeville2021-10-27
| |/ | | | | | | | | | | | | | | | | | | | | | | This has been replaced with the "trust-anchors" keyword, per section 8.21.1 New Features of the Bind 9 Administrator Reference Manual: • In order to clarify the configuration of DNSSEC keys, the trusted-keys and managed-keys statements have been deprecated, and the new trust-anchors statement should now be used for both types of key. When used with the keyword initial-key, trust-anchors has the same behavior as managed-keys, i.e., it configures a trust anchor that is to be maintained via RFC 5011. When used with the new keyword static-key, trust-anchors has the same behavior as trusted-keys, i.e., it configures a permanent trust anchor that will not automatically be updated. (This usage is not recommended for the root key.) [GL #6] Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | nfs-kernel-server: reload when exported mountpoints showDaniel Golle2021-10-28
| | | | | | | | | | | | | | Use newly introduced procd_add_reload_mount_trigger to reload nfsd when a mountpoint covering an exported filesystem is added by blockd. Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* | gnunet: several improvementsDaniel Golle2021-10-28
| | | | | | | | | | | | | | | | Fix uci-defaults for PostgreSQL backends Add user 'gnunet' to 'postgres' group Always build with sqlite3 as configure fails when --without-sqlite Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* | transmission: update seccomp config fileRen Zongjia2021-10-28
| | | | | | | | | | | | | | Add missing syscalls found using utrace. Signed-off-by: Ren Zongjia <acooler15@foxmail.com> Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* | vnstat2: add hotplug script for adding interfacesJan Hoffmann2021-10-28
| | | | | | | | | | | | | | | | | | | | | | If an interface doesn't exist yet when vnStat is started, it won't be monitored, as only existing interfaces can be added to the database via the vnstat command. This adds a hotplug script which adds any configured interfaces to the vnStat database when it goes up. Signed-off-by: Jan Hoffmann <jan@3e8.eu>
* | vnstat2: fix all interfaces being monitored when none are configuredJan Hoffmann2021-10-28
| | | | | | | | | | | | | | | | | | | | | | | | | | By default, vnstatd adds all available interfaces on startup when its database is empty. The --noadd option prevents this, but it breaks import of legacy databases, and causes vnstatd to exit immediately after startup, which breaks reloading. This changes the init script to add the --noadd option when no legacy databases need to be imported, and patches vnstatd to keep running even when no interfaces are configured. Signed-off-by: Jan Hoffmann <jan@3e8.eu>
* | nginx-util: add conffilesHuangbin Zhan2021-10-27
| | | | | | | | | | | | | | Add /etc/config/nginx, restrict_locally, uci.conf.template as conffile Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* | rosy-file-server: fix conffile nameHuangbin Zhan2021-10-27
| | | | | | | | Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* | uradvd: fix installed filename, add conffilesHuangbin Zhan2021-10-27
| | | | | | | | Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* | treewide: add missing conffilesHuangbin Zhan2021-10-27
| | | | | | | | Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* | atftpd: fix conffilesHuangbin Zhan2021-10-27
| | | | | | | | | | | | | | Add missing conffiles Fix conffile permission Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* | treewide: fix broken conffilesHuangbin Zhan2021-10-27
| | | | | | | | Signed-off-by: Huangbin Zhan <zhanhb88@gmail.com>
* | mstpd: bump to version 0.1.0Alexandru Ardelean2021-10-27
| | | | | | | | | | | | And switch to AUTORELEASE for PKG_RELEASE. Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
* | Merge pull request #16936 from aleksander0m/aleksander/mm-wwan-subsystemFlorian Eckert2021-10-27
|\ \ | | | | | | modemmanager: add support for wwan subsystem in hotplug
| * | modemmanager: add support for wwan subsystem in hotplugAleksander Morgado2021-10-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | WWAN devices may now be exposed in the new 'wwan' subsystem in the kernel (since 5.13), initially applicable to devices exposed in PCIe (no USB), but at some point may also apply to USB devices that until now were exposed via other subsystems (e.g. usbmisc, tty). Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
* | | dnsproxy: Update to 0.39.9Tianling Shen2021-10-26
| | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | apache: fixup apxsSebastian Kemper2021-10-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | apxs is used to get information about the apache installation when building external modules. Currently there are issues: 1. ./staging_dir/target-mips_24kc_musl/usr/bin/apxs -q TARGET apache2 apxs:Error: ./staging_dir/target-mips_24kc_musl/home/sk/tmp/openwrt/staging_dir/target-mips_24kc_musl/usr/bin/apr-1-config not found!. This error is fixed by sed script #2. 2. ./staging_dir/target-mips_24kc_musl/usr/bin/apxs -q TARGET cannot open ./staging_dir/target-mips_24kc_musl/home/sk/tmp/openwrt/staging_dir/target-mips_24kc_musl/usr/share/apache2/build/config_vars.mk: No such file or directory at ./staging_dir/target-mips_24kc_musl/usr/bin/apxs line 213. This error is fixed by sed scipt #1. Both sed scripts taken from buildroot (see [1]). [1] https://github.com/buildroot/buildroot/blob/master/package/apache/apache.mk Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
* | | apache: security bump to 2.4.51Sebastian Kemper2021-10-26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes (see [1] for details): CVE-2021-33193 CVE-2021-41524 CVE-2021-41773 CVE-2021-42013 [1] https://httpd.apache.org/security/vulnerabilities_24.html Patch 020-openssl-deprecated.patch refreshed. Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
* | | dawn: set symm_enc default to 0Nick Hainke2021-10-26
| | | | | | | | | | | | | | | | | | | | | User mpeleshenko reported that symm encryption breaks hearing map. Set the default to 0. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | dawn: update to 2021-10-26Nick Hainke2021-10-26
| | | | | | | | | | | | | | | | | | | | | ddc007e32ced ubus: avoid use after free in handle_probe_req() e1275713c057 github: fix workflow Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | knot: update to version 3.1.3Jan Hák2021-10-25
| | | | | | | | | | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
* | | usteer: add packageDavid Bauer2021-10-24
| |/ |/| | | | | | | | | | | | | | | This commits adds the new usteer package to the packages feed. usteer is a daemon for steering wireless clients across frequency bands as well as between multiple access points on a network. Signed-off-by: David Bauer <mail@david-bauer.net>
* | frr: fixes and update to latestLucian Cristian2021-10-22
| | | | | | | | | | | | | | | | ospf running in instance mod will keep cpu to 100% so revert offending commit if daemon is disabled in the file while running also close that daemon also add the pythontools to support reload Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* | gnunet: fix compilation with big endianRosen Penev2021-10-22
| | | | | | | | | | | | if is in the wrong spot. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | wsdd: update to 2021-10-22Rosen Penev2021-10-22
| | | | | | | | | | | | Fixes another segfault. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | nextdns: Update to version 1.37.3Olivier Poitrey2021-10-22
| | | | | | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* | dawn: respawn dawn in case of crashNick Hainke2021-10-21
| | | | | | | | | | | | | | | | | | | | | | | | | | Some users report that DAWN sometimes crashes after a while. Mostly this happens after the new update has been rolled out. Since I would not like to go back to the older version, I add as a workaround for now that DAWN automatically respawned. Workaround for: https://github.com/berlin-open-wireless-lab/DAWN/issues/151 Signed-off-by: Nick Hainke <vincent@systemli.org>
* | wsdd2: update to 2021-10-14Rosen Penev2021-10-20
| | | | | | | | | | | | Remove upstreamed patch. Signed-off-by: Rosen Penev <rosenp@gmail.com>
Powered by cgit, Themed by Ted Yin.