aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
...
* | | | | | | | tor: bump to 0.4.6.9 stableRui Salvaterra2022-01-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | | | | | iodine: fix build on macosSergey V. Lobanov2022-01-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | redefine TARGETOS=Linux due to OpenWrt is always Linux Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>
* | | | | | | | wg-installer: private key as parameterNick Hainke2022-01-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | | | | nut: refactor upssched uci-defaults scriptPascal Coudurier2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add checks not to overwrite defaultnotify options in the nut-sendmail-notify fashion. Use lists for defaultnotify instead of option. Add check not to overwrite notifycmd if already defined. upssched-cmd script must not be called directly, it is called by the upssched binary with needed arguments. Signed-off-by: Pascal Coudurier <coudu@wanadoo.fr>
* | | | | | | | nut: refactor nut-monitor uci config filePascal Coudurier2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Convert notifyflags options to lists as supported by the init script, so multiple options can be chosen. Add SYSLOG default option to individuals notifyflags instead of deprecated flag 1|0. Add comment for defaultnotify and individuals notifyflags about possible values. Signed-off-by: Pascal Coudurier <coudu@wanadoo.fr>
* | | | | | | | nut: fix typo in nut-monitor init scriptPascal Coudurier2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes a typo in the nut-monitor init script when building config file from uci config. Signed-off-by: Pascal Coudurier <coudu@wanadoo.fr>
* | | | | | | | lynx: fix build on macosSergey V. Lobanov2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | lynx uses host C-compiler to build internal utility that is used to generate files required for target build. On MacOS it uses internal clang with MacOS system headers so host build fails due to MacOS is not Linux Forced to use OpenWrt host C compiler using --with-build-* ./configure flags Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>
* | | | | | | | ntpd: Fix compile with glibc 2.34Hauke Mehrtens2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This adds a patch from Open embedded to fix compilation with glibc 2.34. This patch was taken from here: https://github.com/openembedded/meta-openembedded/blob/master/meta-networking/recipes-support/ntp/ntp/0001-libntp-Do-not-use-PTHREAD_STACK_MIN-on-glibc.patch It fixes the following build problem: work_thread.c:45:57: error: missing binary operator before token "(" 45 | #if defined(PTHREAD_STACK_MIN) && THREAD_MINSTACKSIZE < PTHREAD_STACK_MIN | ^~~~~~~~~~~~~~~~~ make[7]: *** [Makefile:892: work_thread.o] Error 1 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* | | | | | | | radsecproxy: Fix compile with glibc 2.34Hauke Mehrtens2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This backports a patch from upstream radsecproxy to fix compilation with glibc 2.34. It fixes the following build problem: radsecproxy.h:35:5: error: missing binary operator before token "(" 35 | #if PTHREAD_STACK_MIN > PTHREAD_STACK_SIZE | ^~~~~~~~~~~~~~~~~ make[5]: *** [Makefile:623: dtls.o] Error 1 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* | | | | | | | wg-installer: generate new keys for every connectionNick Hainke2022-01-12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Generate new keys on every new connection. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | | | | stubby: explicitly disable static linkingRui Salvaterra2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Although undocumented, there's a way to explicitly disable static linking in Stubby, setting the CMake build option ENABLE_GETDNS_STATIC_LINK to OFF (ON by default). Make it so. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | | | | | | Merge pull request #17535 from hgl/ddns-cloudflareFlorian Eckert2022-01-11
|\ \ \ \ \ \ \ \ | | |_|_|/ / / / | |/| | | | | | ddns-scripts-cloudflare: allow explicit zone_id
| * | | | | | | ddns-scripts-cloudflare: allow explicit zone_idGlen Huang2022-01-10
| | |_|_|/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When zone id is explicitly provided, there is no need for the API token to have read permission. Inspired by acme.sh's cloudflare logic. Signed-off-by: Glen Huang <heyhgl@gmail.com>
* | | | | | | wg-installer: fix using symlinks for conf filesNick Hainke2022-01-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | It is useful to symlink babeld and olsrd to /tmp/ if we frequently write to those config files. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | | | iputils: bump to 20211215Noah Meyerhans2022-01-10
| |_|/ / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Drop the tftpd binary, which is no longer provided upstream. Users should switch to the atftp server as a replacement. Avoid executing runtime tests, which are not supported in cross-build environments. Signed-off-by: Noah Meyerhans <frodo@morgul.net>
* | | | | | stunnel: add missing sessionResume optionFlorian Eckert2022-01-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The option sessionResume was added in version 5.60 https://www.stunnel.org/NEWS.html Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | | | | | Merge pull request #17341 from erdoukki/fail2ban-2to3Jeffery To2022-01-10
|\ \ \ \ \ \ | |_|_|_|/ / |/| | | | | fail2ban: fix 2to3 error
| * | | | | fail2ban: fix 2to3 errorKerma Gérald2022-01-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Issue: 2to3 support has been removed in setuptools since version 58.0.0. Fix: openwrt/packages#17311 Requirements: 2to3/host openwrt/packages#17429 Add upstream patch: https://github.com/fail2ban/fail2ban/commit/196c55e93103d1e56d1336f27a5f2591b4e54fef To install/build for python3 from source, it is necessary to convert to py3 codebase before setup (invoke 2to3 or ./fail2ban-2to3 firstly). > ./fail2ban-2to3 > python3 setup.py build Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | | | | | wg-installer: fix cleanup scriptNick Hainke2022-01-10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The wrong function was called. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | | haproxy: Update HAProxy to v2.4.10Christian Lachner2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Update haproxy download URL and hash - Updated upstream patches Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | | | | | crowdsec-firewall-bouncer: update to 0.0.21Kerma Gérald2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update crowdsec-firewall-bouncer to latest upstream release version 0.0.21 Makefile rework - use tagged version for download Fixes - set API_KEY in firewall bouncer config file Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | | | | | krb5: fix build on macosSergey V. Lobanov2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | backport of upstream commit https://github.com/krb5/krb5/commit/3c66c1fec7ce4edeff284a5e4abe32d0b4398539 Original author: Nikhil Benesch <nikhil.benesch@gmail.com> Remove unnecessary flag in macOS build The configuration logic for adding the `-search_paths_first` linker flag on Darwin does not correctly handle cross compilation. It should check the value of $krb5_cv_host rather than `uname -s` to detect when the compilation target is Darwin, rather than the build machine. It turns out `-search_paths_first` has been the default behavior of ld on macOS since XCode 4. So just remove that bit of logic entirely. (The flag was added in commit acd27af0e845f8b93de2e226cc2ec9ac8af52077 in 2004; XCode 4 was released in 2010.) Signed-off-by: Sergey V. Lobanov <sergey@lobanov.in>
* | | | | | transmission: add ca_bundle support with procd-ujailMatthew Hagan2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | With procd-ujail enabled, it is not possible to use HTTPS URLs, for example when either for downloading torrent files or blocklists. The followig example occurs when downloading a URL from the "Upload Torrent Files" dialogue box: Error adding "https://releases.ubuntu.com/21.10/ubuntu-21.10-desktop-amd64.iso.torrent": gotMetadataFromURL: http error 0: No Response syslog will also hint that no CA_BUNDLE is being used: transmission-daemon[6683]: [2021-12-30 20:01:30.990] web will verify tracker certs using envvar CURL_CA_BUNDLE: none (web.c:455) This patch rectifies this issue by adding a ca_bundle configurable, enabled by default. This explicitly fixes the ca_bundle file location to /etc/ssl/certs/ca-certificates.crt and adds this file to the procd jail. On subsequent testing, HTTPS URL download functionality is restored. Signed-off-by: Matthew Hagan <mnhagan88@gmail.com>
* | | | | | curl: update to 7.81.0Stan Grishin2022-01-09
| |_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | * changes: https://curl.se/changes.html#7_81_0 Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | | | wg-installer: fix typo in cleanup functionNick Hainke2022-01-09
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The delete variable was misspelled leading to devices always being removed although they had connected neighbors. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | wg-installer: add cleanup scriptNick Hainke2022-01-09
| |/ / / |/| | | | | | | | | | | | | | | | | | | Add script to cleanup unused wireguard interfaces. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | Revert "pdns-recursor: temp"Rosen Penev2022-01-08
| | | | | | | | | | | | | | | | This reverts commit 96e355836db7b83c4b1d46217a745be93ca019cb.
* | | | pdns-recursor: tempRosen Penev2022-01-08
| | | | | | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | | crowdsec: update to 1.2.2Kerma Gérald2022-01-08
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Update crowdsec to latest upstream release version 1.2.2 Makefile rework - use tagged version for download Signed-off-by: Kerma Gérald <gandalf@gk2.net>
* | | | wg-installer: fix ipv4 meshing via olsrNick Hainke2022-01-08
| | | | | | | | | | | | | | | | | | | | | | | | The ipv4 address space was not allowed. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | Merge pull request #17491 from jefferyto/obfs4proxy-0.0.12Josef Schlehofer2022-01-07
|\ \ \ \ | | | | | | | | | | obfs4proxy: Update to 0.0.12
| * | | | obfs4proxy: Update to 0.0.12Jeffery To2022-01-04
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Parts of the meek_lite transport are GPL3 (added in 0.0.9), the rest of the program is BSD 2-Clause. Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | | | bwping: update to version 2.4Oleg Derevenetz2022-01-07
| |/ / / |/| | | | | | | | | | | Signed-off-by: Oleg Derevenetz <oleg-derevenetz@yandex.ru>
* | | | wg-installer: add ipv4 supportNick Hainke2022-01-07
| | | | | | | | | | | | | | | | | | | | | | | | Add base_v4prefix to allow ipv4 mesh connections. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | Merge pull request #17502 from jefferyto/radicale2-2.1.12Josef Schlehofer2022-01-06
|\ \ \ \ | | | | | | | | | | radicale2: Update to 2.1.12
| * | | | radicale2: Update to 2.1.12Jeffery To2022-01-05
| | | | | | | | | | | | | | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | | | Merge pull request #17500 from jefferyto/radicale-1.1.7Josef Schlehofer2022-01-06
|\ \ \ \ \ | | | | | | | | | | | | radicale: Update to 1.1.7
| * | | | | radicale: Update to 1.1.7Jeffery To2022-01-05
| |/ / / / | | | | | | | | | | | | | | | Signed-off-by: Jeffery To <jeffery.to@gmail.com>
* | | | | wg-installer: add hotplug script for olsrNick Hainke2022-01-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add hotplug-olsrd to automatically mesh with olsrd via new wireguard links. Signed-off-by: Nick Hainke <vincent@systemli.org>
* | | | | miniupnpd: create iptables and nftables variantStijn Tintel2022-01-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The next OpenWrt stable release aims to use firewall4 by default. As this uses nftables as backend, miniupnpd will no longer work. Create an iptables and nftables variant of the miniupnpd package so that miniupnpd can be used with either firewall variant. See #16818 for more info. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* | | | | Revert "miniupnpd: introduce IGDv1 variant"Stijn Tintel2022-01-05
|/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since version 2.2.3, miniupnpd will detect MS clients and force IGDv1. This reverts commit 7f5534ac7a88124c59b23188bcdc39bd9e92d879. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* | | | miniupnpc: update to version 2.2.3Shaleen Jain2022-01-05
| | | | | | | | | | | | | | | | Signed-off-by: Shaleen Jain <shaleen@jain.sh>
* | | | miniupnpd: update to version 2.2.3Shaleen Jain2022-01-05
|/ / / | | | | | | | | | Signed-off-by: Shaleen Jain <shaleen@jain.sh>
* | | inadyn: update to 2.9.1Rosen Penev2022-01-03
| | | | | | | | | | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | stubby: clean up the makefileRui Salvaterra2022-01-03
| | | | | | | | | | | | | | | | | | | | | | | | These cmake modules are actually never referenced. Stubby itself doesn't link to libidn or libunbound, only getdns does. They're most likely leftovers from when stubby was split from getdns to its own repository. Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
* | | adguardhome: Update to v0.107.2 stableJames White2022-01-02
| | | | | | | | | | | | Signed-off-by: James White <james@jmwhite.co.uk>
* | | dnsproxy: Update to 0.40.3Tianling Shen2022-01-02
|/ / | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | dnsproxy: Update to 0.40.2Tianling Shen2021-12-29
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | Merge pull request #17418 from TDT-AG/pr/20211222-mwan3Florian Eckert2021-12-28
|\ \ | | | | | | mwan3: fix mwan3 flush conntrack table call
| * | mwan3: fix mwan3 flush conntrack table callFlorian Eckert2021-12-22
| | | | | | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Powered by cgit, Themed by Ted Yin.