aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* net/tinyproxy: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | | tinyproxy_project:tinyproxy is a better CPE ID than banu:tinyproxy as this CPE ID has the latest CVEs (whereas banu:tinyproxy only has CVEs up to 2012): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinyproxy_project:tinyproxy Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/tinc: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | tinc-vpn:tinc is a better CPE ID than tinc:tinc as this CPE ID has the latest CVEs (whereas tinc:tinc only has CVEs up to 2002): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tinc-vpn:tinc Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/vsftpd: fix PKG_CPE_IDFabrice Fontaine2024-02-04
| | | | | | | | | | vsftpd_project:vsftpd is a better CPE ID than beasts:vsftpd as this CPE ID has the latest CVEs (whereas beasts:vsftpd only has CVEs up to 2015): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:vsftpd_project:vsftpd Fixes: 1371b7be878382b8b52cd73ff72a3a41d28013c4 (vsftpd: Fix compilation without ECC or deprecated APIs) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* crowdsec: new upstream release version 1.6.0S. Brusch2024-02-04
| | | | | | | | | | | Update crowdsec to latest upstream release version 1.6.0 Signed-off-by: S. Brusch <ne20002@gmx.ch> Maintainer: Kerma Gérald <gandalf@gk2.net> Package tested: not able to test run due to limited space (package is big) Description: update to latest version of upstream
* nmap: bump package versionKonstantin Demin2024-02-04
| | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* nmap: unify SSL dependenciesKonstantin Demin2024-02-04
| | | | | | ssl/full variants now depend on "ca-certs" (provided by "ca-bundle" and "ca-certificates") Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* nmap: ncat: use default CA bundleKonstantin Demin2024-02-04
| | | | Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* cloudflared: refine config.ymlSergey Ponomarev2024-02-04
| | | | | | | | | | | | | | The config.yml is an example of a tunnel local configuration. But the cloudlfared treat it as a real config and fails to start. So to avoid problems let's comment all the statements. The `url: http://localhost:8000` is not a valid config option. Additionally add a smale of configuring ingres rules. The cloudflared.config has missing option token. Signed-off-by: Sergey Ponomarev <stokito@gmail.com>
* Merge pull request #23219 from rockdrilla/curl-8.6.0Stan Grishin2024-02-02
|\ | | | | curl: update to 8.6.0
| * curl: update to 8.6.0Konstantin Demin2024-02-01
| | | | | | | | | | | | * https://curl.se/changes.html#8_6_0 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
* | net/krb5: fix PKG_CPE_IDFabrice Fontaine2024-02-02
| | | | | | | | | | | | | | | | | | | | mit:kerberos_5 is a better CPE ID than mit:kerberos as this CPE ID has the latest CVEs (whereas mit:kerberos only has CVEs until 2018): https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:mit:kerberos_5 Fix: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | dnsproxy: Update to 0.64.1Tianling Shen2024-02-01
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | nebula: update to 1.8.2-2Stan Grishin2024-02-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The following fixes have been applied to Makefile: * fix the nebula license type * add PKG_CPE_ID * remove unneeded call to Build/Compile * add leading spaces to descriptions * add Package/nebula/conffiles definition * remove unneeded /lib/upgrade/keep.d files * no longer install actual license file * add the README file Kudos to @BKPepe and @1715173329 for feedback which lead to these fixes Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | net/tor: add licenseFabrice Fontaine2024-01-31
| | | | | | | | | | | | tor is licensed under BSD-3-Clause Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | treewide: fix licence typosFabrice Fontaine2024-01-31
|/ | | | | | | | | | | | | - PKG_LICENCE -> PKG_LICENSE - PKC_LICENSE_FILES -> PKG_LICENSE_FILES - BSD 3-Clause -> BSD-3-Clause - BSD-3-clause -> BSD-3-Clause - BSD-2-clause -> BSD-2-Clause - Public Domain -> Public-Domain - PublicDomain -> Public-Domain - Drop unneeded ',' in PKG_LICENSE or PKG_LICENSE_FILES Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* rclone: Update to 1.65.2Tianling Shen2024-01-30
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* cloudflared: Update to 2024.1.5Tianling Shen2024-01-30
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* openvpn: add missing script-securityErik Conijn2024-01-29
| | | | | | | | | | | | | | | | | | | Maintainer: @mkrkn @neheb Compile tested: armv7, cortexA15, OpenWRT 23.05 Run tested: Linksys EA8500 Compile tested: armv8, cortexA53, OpenWRT main Run tested: Dynalink DL-WRX36 Description: Script-security is always 2 and cannot be changed from the openvpn config file due to a missing rule in openvpn.init. This is discussed in issue #23014 This patch adds the missing rule in openvpn.init to parse script-security from the openvpn config file. Signed-off-by: Erik Conijn <egc112@msn.com>
* net/bwm-ng: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:bwm-ng_project:bwm-ng Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/fastd: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fastd_project:fastd Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/fail2ban: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:fail2ban:fail2ban Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* net/atftp: assign PKG_CPE_IDFabrice Fontaine2024-01-29
| | | | | | https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:atftp_project:atftp Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* knot: update to version 3.3.4Jan Hák2024-01-29
| | | | Signed-off-by: Jan Hák <jan.hak@nic.cz>
* sing-box: update to 1.8.4Van Waholtz2024-01-27
| | | | Signed-off-by: Van Waholtz <brvphoenix@gmail.com>
* natmap: update to 20240126Ray Wang2024-01-27
| | | | Signed-off-by: Ray Wang <r@hev.cc>
* banip: update 0.9.3-5Dirk Brenken2024-01-26
| | | | | | * fix the nft Set survey function Signed-off-by: Dirk Brenken <dev@brenken.org>
* v2ray-geodata: Update to latest versionTianling Shen2024-01-26
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* tailscale: Update to 1.58.2Zephyr Lykos2024-01-26
| | | | | | https://github.com/tailscale/tailscale/releases/tag/v1.58.2 Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* net/tcpreplay: fix PKG_CPE_IDFabrice Fontaine2024-01-25
| | | | | | | | There is not a single CVE under cpe:/a:appneta:tcpreplay so use cpe:/a:broadcom:tcpreplay: https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:broadcom:tcpreplay Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* Merge pull request #23138 from ffontaine/add-i2pd-cpeidFlorian Eckert2024-01-25
|\ | | | | net/i2pd: assign PKG_CPE_ID
| * net/i2pd: assign PKG_CPE_IDFabrice Fontaine2024-01-24
| | | | | | | | | | | | https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=cpe%3A2.3%3Aa%3Ai2pd%3Ai2pd Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
* | v2raya: do not allow changing config/log directoryTianling Shen2024-01-25
| | | | | | | | | | | | We need stable path to persist configurations and read log from LuCI. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | dnsproxy: Update to 0.63.1Tianling Shen2024-01-25
|/ | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* ocserv: updated source URL to httpsNikos Mavrogiannopoulos2024-01-24
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* ocserv: updated to 1.2.4Nikos Mavrogiannopoulos2024-01-24
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* pdns-recursor: Build rec-5.0.1, adding Rust dependenciesOtto Moerbeek2024-01-23
| | | | | | | | also fix license variable Co-authored-by: Tianling Shen <cnsztl@gmail.com> Signed-off-by: Otto Moerbeek <otto@drijf.net> Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* Merge pull request #23128 from TDT-AG/pr/20240119-modemmanagerFlorian Eckert2024-01-23
|\ | | | | modemmanager: replace modem available check on start with the new monitore service
| * modemmanger: bump PKG_RELEASEFlorian Eckert2024-01-19
| | | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * modemmanager: suppress mm_log debug messages by defaultFlorian Eckert2024-01-19
| | | | | | | | | | | | | | | | | | The log is filled with 'debug' messages. This is not necessary and is only normaly needed during development. To suppress this message, check whether the level is 'debug' and if so, suppress it. If this message is required again, the message can be generated by commenting out this line. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * modemmanager: replace modem available check on start with the new monitore ↵Florian Eckert2024-01-19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | service Before this change, the status of the sysfs paths from the kernel events was cached with a cache file. This is necessary to mark configured modems as available for the netifd. Using the new monitor service via the mmcli command 'mmcli -M' simplifies the whole process. There is no need to start sub shells in the background anymore that monitors whether the modem has already been added to the ModemManager. For this purpose, a new service was added that reacts on add and remove events for modems in the ModemManager and, if necessary, marks the logical netifd interface as available. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * modemmanager: move shell include to the beginning of the fileFlorian Eckert2024-01-19
| | | | | | | | | | | | | | It is usual that the includes are listed at the beginning of the script. So let's do it that way too. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
| * modemmanager: move generally applicable functions to modemmanager.commonFlorian Eckert2024-01-19
| | | | | | | | | | | | | | | | These moved functions are general functions. This is a preparatory commit so that these moved functions can also be used in other ModemManager scripts. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | tailscale: Update to 1.58.0Zephyr Lykos2024-01-23
| | | | | | | | | | | | https://github.com/tailscale/tailscale/releases/tag/v1.58.0 Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* | openvpn: remove myself as maintainerMagnus Kroken2024-01-21
| | | | | | | | Signed-off-by: Magnus Kroken <mkroken@gmail.com>
* | cloudflared: Update to 2024.1.4Tianling Shen2024-01-20
| | | | | | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* | evilginx2: add new packageW. Michael Petullo2024-01-19
| | | | | | | | Signed-off-by: W. Michael Petullo <mike@flyn.org>
* | snort3: update to 3.1.78.0John Audia2024-01-19
|/ | | | | | | | | | | | | | | | | | | | | | | | | Upstream bump ,,_ -*> Snort++ <*- o" )~ Version 3.1.78.0 '''' By Martin Roesch & The Snort Team http://snort.org/contact#team Copyright (C) 2014-2024 Cisco and/or its affiliates. All rights reserved. Copyright (C) 1998-2013 Sourcefire, Inc., et al. Using DAQ version 3.0.14 Using LuaJIT version 2.1.0-beta3 Using OpenSSL 3.0.12 24 Oct 2023 Using libpcap version 1.10.4 (with TPACKET_V3) Using PCRE version 8.45 2021-06-15 Using ZLIB version 1.3 Using Hyperscan version 5.4.2 2024-01-15 Using LZMA version 5.4.4 Build system: x86/64 Build-tested: x86/64/AMD Cezanne Run-tested: x86/64/AMD Cezanne Signed-off-by: John Audia <therealgraysky@proton.me>
* modemmanager: set allowedmode to 'any' if nothing is configuredFlorian Eckert2024-01-19
| | | | | | | | | | | The modem saves the permitted technology configuration in the modem itself. If the technology configuration is deleted in the uci, this is not passed on to the modem. This means that the previously saved technology configuration is remains in the modem and is therefore still active. By setting the technology to 'any', if no option is set, all technologies are allowed again. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* adblock-fast: update to 1.1.1-3Stan Grishin2024-01-19
| | | | | | | * allow top-level domains in the blocked-domains options fixes https://github.com/openwrt/packages/issues/23125 Signed-off-by: Stan Grishin <stangri@melmac.ca>
* nebula: update to 1.8.2Stan Grishin2024-01-14
| | | | | | * update to 1.8.2: https://github.com/slackhq/nebula/releases/tag/v1.8.2 Signed-off-by: Stan Grishin <stangri@melmac.ca>
Powered by cgit, Themed by Ted Yin.