aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
...
* | v2raya: Update to 2.2.4.7Tianling Shen2024-02-20
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | strongswan: add empty configGlen Huang2024-02-20
| | | | | | | | | | | | | | Without it, using uci to manipulate ipsec config can result in errors, making it much difficult to use in uci-defaults for example. Signed-off-by: Glen Huang <me@glenhuang.com>
* | snort3: build against hyperscanJohn Audia2024-02-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Increases snort's IPS fast pattern matching by 2x (compared to the ac_full engine) and 3x (compared to ac_bfna). This is most noticeable for users of large rules sets and when doing deep flow inspection. For more see: https://blog.snort.org/2020/09/snort-3-hyperscan-.html Build system: x86/64 Build-tested: x86/64/AMD Cezanne Run-tested: x86/64/AMD Cezanne Signed-off-by: John Audia <therealgraysky@proton.me>
* | ocserv: updated configNikos Mavrogiannopoulos2024-02-19
| | | | | | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* | ocserv: use better separator for sedNikos Mavrogiannopoulos2024-02-19
| | | | | | | | | | | | | | | | | | This prevents clashes with network addresses that contain '/'. Resolves: #18589 Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* | Merge pull request #23348 from nmav/bug/23185Nikos Mavrogiannopoulos2024-02-19
|\ \ | | | | | | openconnect: make host dependency more resilient
| * | openconnect: make host dependency more resilientNikos Mavrogiannopoulos2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | Retry when resolveip fails as it seems to be causing issues on startup depending on various unpredictable parameters. Resolves: #23185 Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* | | Merge pull request #23463 from mhei/fix-aprMichael Heimpold2024-02-19
|\ \ \ | | | | | | | | apr/subversion: fix subversion build and apache-mod-php8 build regres…
| * | | apr/subversion: fix subversion build and apache-mod-php8 build regression ↵Michael Heimpold2024-02-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (fixes #23460) The recent upgrade of apr included a change with should fix the subversion build. Unfortunately, this fix resulted in a build regression of apache-mod-php8. The new approach is to pass the locations of the apr config helpers to configure via parameter. Fixes: 68dd7b7cf632 ("apr: update to 1.7.4") Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | | | dnsdist: update to 1.9.0Peter van Dijk2024-02-18
| | | | | | | | | | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | | | unbound: update to latest upstream release version 1.19.1S. Brusch2024-02-18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Maintainer: @EricLuehrsen Fixes: CVE-2023-50387, CVE-2023-50868 Release notes: https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/ Run tested: BPi-R3, mediatek/filogic, OpenWrt 23.05.2 Signed-off-by: S. Brusch <ne20002@gmx.ch>
* | | | haproxy: update to v2.8.6Christian Lachner2024-02-17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | - Update haproxy PKG_VERSION and PKG_HASH - See changes: http://git.haproxy.org/?p=haproxy-2.8.git;a=shortlog Signed-off-by: Christian Lachner <gladiac@gmail.com>
* | | | Merge pull request #23406 from stangri/master-adblock-fastStan Grishin2024-02-16
|\ \ \ \ | |/ / / |/| | | adblock-fast: add force_dns_interface setting
| * | | adblock-fast: add force_dns_interface settingStan Grishin2024-02-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * allow users to specify list of interfaces/networks to force the DNS Hijacking on Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | | | slirp4netns: update to 1.2.3Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | changelog: - Fix some FD leaks (#334, thanks to @giuseppe) As package belongs to network category, I moved it from utils to network folder Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | | bind: bump to 9.18.24Noah Meyerhans2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes CVEs: - CVE-2023-50387: Validating DNS messages containing a lot of DNSSEC signatures could cause excessive CPU load, leading to a denial-of-service condition. - CVE-2023-50868: Preparing an NSEC3 closest encloser proof could cause excessive CPU load, leading to a denial-of-service condition. - CVE-2023-4408: Parsing DNS messages with many different names could cause excessive CPU load. - CVE-2023-5517: Specific queries could cause named to crash with an assertion failure when nxdomain-redirect was enabled. - CVE-2023-5679: A bad interaction between DNS64 and serve-stale could cause named to crash with an assertion failure, when both of these features were enabled. Signed-off-by: Noah Meyerhans <frodo@morgul.net>
* | | | aardvark-dns: update to 1.10.0Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | changelogs: https://github.com/containers/aardvark-dns/releases Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | | netavark: update to 1.10.3Oskari Rauta2024-02-16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | changelogs: https://github.com/containers/netavark/releases wrapper script and config file removed as they have become obsolete, firewall driver is now configured in containers.conf Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | | netbird: update to 0.25.8Oskari Rauta2024-02-16
| |/ / |/| | | | | | | | | | | | | | changes: https://github.com/netbirdio/netbird/compare/v0.25.2...v0.25.8 Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
* | | pdns-recursor: update to 5.0.2 (fixes CVE-2023-50387, CVE-2023-50868)Peter van Dijk2024-02-15
| | | | | | | | | | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* | | p910nd: bump releasePaul Donald2024-02-14
| | | | | | | | | | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
* | | softethervpn5: version update to 5.02.5181 (incl. vulnerability fixes)Thomas Winkler2024-02-14
| | | | | | | | | | | | | | | | | | softethervpn5: The softethervpn5 package is due for an update from recent source. This PR implements a Makefile update to pull December 2023 release, which includes fixes for recently-disclosed vulnerabilities. The build patches are also updated accordingly. Signed-off-by: Thomas Winkler <tewinkler86@gmail.com>
* | | proxychains-ng: update to version 4.17Daniel Bermond2024-02-14
| | | | | | | | | | | | | | | | | | | | | | | | | | | Maintainer : myself Build system : Arch Linux x86_64 Build tested : r7800 OpenWrt git master (r25151-2a2abed0be) Run tested : r7800 OpenWrt git master (r25151-2a2abed0be) Signed-off-by: Daniel Bermond <dbermond@archlinux.org>
* | | snort3: clean up ucode usageEric Fahlgren2024-02-14
| | | | | | | | | | | | | | | | | | | | | | | | - Add missing 'ucode' package dependency - Proto-ify the ConfigItem objects - Fix indentation and tab usage Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* | | cloudflared: Update to 2024.2.0Tianling Shen2024-02-14
| | | | | | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | | v2ray-geodata: Update to latest versionTianling Shen2024-02-14
|/ / | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | p910nd: hotplug shellcheck fixesPaul Donald2024-02-11
| | | | | | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: init: check device (/dev/usb/lpX) existencePaul Donald2024-02-11
| | | | | | | | | | | | | | this prevents the daemon exiting when a configured device is not plugged in. Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: init: partial fix for openwrt/packages#10496Paul Donald2024-02-11
| | | | | | | | | | | | | | | | | | | | | | Harmless to carry this fix until procd.sh adds the param This parameter will mean umdns advertises not just "OpenWrt" but a more appropriate string: "Apple LaserWriter Pro 630" Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: hotplug+init: include extra ieee1284 propertiesPaul Donald2024-02-11
| | | | | | | | | | | | Apple and macOS GUI co-opts the mDNS note= param as "Location" Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: hotplug: minor bug fixesPaul Donald2024-02-11
| | | | | | | | | | | | | | | | | | | | | | Commit driver_home defaults before continuing Fix missing path for serial number acquisition Store current device if no previously configured device had one. Also set CHAR_DEV so the printer can get its driver sent on first run. Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: hotplug: small refactorPaul Donald2024-02-11
| | | | | | | | | | | | | | | | | | | | replace -a with && shorten uci commands via variables add optional ieee1284_id parameters Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: init: add txtvers=1 to mDNS propertiesPaul Donald2024-02-11
| | | | | | | | | | | | | | | | | | | | | | | | The spec https://developer.apple.com/bonjour/printing-specification/bonjourprinting-1.2.1.pdf notes: ... if the meaning of any of the TXT record keys is changed, the txtvers value will be incremented. The current value of this key is “1”, and if this key does not exist in the TXT record, the default value of “1” is assumed. The txtvers SHOULD be the first key/value pair in the TXT record. Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: init: line-break and conditionalize mDNS propertiesPaul Donald2024-02-11
| | | | | | | | Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: init: only run mDNS changes if mdns is set to onPaul Donald2024-02-11
| | | | | | | | | | | | i.e. don't do the extra work unless mdns setting is enabled Signed-off-by: Paul Donald <newtwen@gmail.com>
* | p910nd: init scriptPaul Donald2024-02-11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Don't run procd with a name of p9100d or p9101d etc. Use the original binary name: p910nd. This way, all supplied parameters should be visible via e.g.: ps xargs -0 < /proc/{procid}/cmdline Revise all p910nd strings to the variable DAEMON_NAME or CONFIG where appropriate. Signed-off-by: Paul Donald <newtwen@gmail.com>
* | Merge pull request #23354 from neheb/2Alexandru Ardelean2024-02-11
|\ \ | | | | | | tcpreplay: backport CVE fix
| * | tcpreplay: backport CVE fixRosen Penev2024-02-10
| | | | | | | | | | | | | | | | | | Low severity. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* | | iodine: bump version to 0.8.0Michael Gerlach2024-02-10
|/ / | | | | | | Signed-off-by: Michael Gerlach <n3ph@cccfr.de>
* | tgt: update to 1.0.90Maxim Storchak2024-02-10
| | | | | | | | Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
* | net-snmp: update to 5.9.4Ivan Pavlov2024-02-10
| | | | | | | | | | | | | | | | | | Adjust patches for current version changes Module "disk" renamed to "disk_hw" Internal type "unknown" changed to "u_int32_t" Add patch with removing macro syntax checking for successful build Signed-off-by: Ivan Pavlov <AuthorReflex@gmail.com>
* | jool: update to 4.1.11Tiago Gaspar2024-02-10
| | | | | | | | | | | | | | Update jool to 4.1.11 and remove unneeded patch. Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.11 Signed-off-by: Tiago Gaspar <tiagogaspar8@gmail.com>
* | squid: fix configure optionskrant2024-02-10
| | | | | | | | | | | | | | | | | | - Remove non-existing 'dlmalloc' option - Use 'with-cap' instead of 'with-libcap' - Use 'with-xml2' instead of 'with-libxml2' - Patch configure.ac to properly handle 'with-nettle' Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | croc: update to 9.6.9Jonas Jelonek2024-02-08
| | | | | | | | | | | | | | | | | | | | | | | | | | change overview: 9.6.6 -> 9.6.8: only CI + deployment changes 9.6.8 -> 9.6.9: crypto library version bump changelogs: 9.6.6 -> 9.6.7: https://github.com/schollz/croc/releases/tag/v9.6.7 9.6.7 -> 9.6.8: https://github.com/schollz/croc/releases/tag/v9.6.8 9.6.9 -> 9.6.9: https://github.com/schollz/croc/releases/tag/v9.6.9 Signed-off-by: Jonas Jelonek <jelonek.jonas@gmail.com>
* | nbd: update to 3.25krant2024-02-08
| | | | | | | | | | | | | | | | - Use up-to-date project URLs - Use up-to-date configure args - Drop obsolete std=gnu99 from CFLAGS Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | squid: update to 6.7krant2024-02-08
| | | | | | | | | | | | | | | | - Switch URL to HTTPS - Remove default/obsolete configure options - Fix and refresh the patch Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | lyncx: fix wrongful include of 'bsd/stdlib.h' is some environmentskrant2024-02-08
| | | | | | | | Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | autossh: make forwarding optionalkkubicki2024-02-07
| | | | | | | | | | | | | | | | - previously localport option was required, which broke older configs - now in-config forwarding is only optional - ssh option still can be used for forwarding as in sample config Signed-off-by: kkubicki <krzysiek.kubicki@gmail.com>
* | snort3: improve script reliabilityEric Fahlgren2024-02-07
| | | | | | | | | | | | | | - Enable missing variable checking by default - Explicitly check variables are defined in all 'rm' commands Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* | openvpn: add OpenVPN option disable-dcoMartin Schiller2024-02-07
| | | | | | | | | | | | You maybe want to disable the DCO support, so let's add this option. Signed-off-by: Martin Schiller <ms@dev.tdt.de>
Powered by cgit, Themed by Ted Yin.