| Commit message (Collapse) | Author | Age |
|---|
| ... | |
| | |
| |
| |
| |
| |
| |
| |
| | |
GCC10 defaults to -fno-common, which breaks compilation when there are
multiple definitions of implicit "extern" variables. Remove the extra
definitions.
Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
|
| |/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
From CHANGES_2.4:
SECURITY: CVE-2020-11984 (cve.mitre.org)
mod_proxy_uwsgi: Malicious request may result in information disclosure
or RCE of existing file on the server running under a malicious process
environment. [Yann Ylavic]
SECURITY: CVE-2020-11993 (cve.mitre.org)
mod_http2: when throttling connection requests, log statements
where possibly made that result in concurrent, unsafe use of
a memory pool. [Stefan Eissing]
SECURITY:
mod_http2: a specially crafted value for the 'Cache-Digest' header
request would result in a crash when the server actually tries
to HTTP/2 PUSH a resource afterwards.
[Stefan Eissing, Eric Covener, Christophe Jaillet]
Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net>
|
| |\
| |
| | |
boinc: fix compilation without deprecated OpenSSL APIs
|
| | |
| |
| |
| | |
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \
| | |
| | | |
net/miniupnpd: check by /etc/init.d/miniupnpd running
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Chen Minqiang <ptpt52@gmail.com>
|
| |/ /
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
test_storage: fix compilation with musl 1.2.0
datastorage/test: improve scalability and performance
datastorage: fixed use of wrong client search
general: add memory auditing
memory auditing: bug fixes to memory auditing and hearing map
datastorage: fixes to linked list handling
tcpsocket: fix read callback function and arbitrary memory allocations
tcpsocket: leave loop if we read 0 byte
Furthermore, you can now dump the memory usage by sending a SIGHUP to
dawn process.
Signed-off-by: Nick Hainke <vincent@systemli.org>
|
| | |
| |
| |
| | |
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com>
|
| |\ \
| | |
| | | |
ntpd: add config include support
|
| | | |
| | |
| | |
| | | |
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| |\ \ \
| | | |
| | | | |
xtables-addons: update for 3.10
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
|
| |\ \ \ \
| | | | |
| | | | | |
freeradius3: fix compilation without deprecated OpenSSL APIs
|
| | | |_|/
| |/| |
| | | |
| | | | |
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \ \ \
| | | | |
| | | | | |
inadyn: update to 2.7
|
| | |/ / /
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Remove pic hack.
Fix license information.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
This fixes misleading errors in the status file, and increases buffer
sizes to match the python implementation.
Signed-off-by: Karl Palsson <karlp@etactica.com>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
|
| |\ \ \ \
| |/ / /
|/| | | |
ooniprobe: new packages
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
|
| |/ / /
| | |
| | |
| | |
| | |
| | | |
Add DEPENDS since EXTRA_DEPENDS is not used by `make menuconfig`.
Signed-off-by: Peter Stadler <peter.stadler@student.uibk.ac.at>
|
| |\ \ \
| | | |
| | | | |
netatalk: fix compile error in mac os
|
| | |/ /
| | |
| | |
| | |
| | |
| | | |
fix compile error in mac os when dtrace installed.
Signed-off-by: Liangbin Lian <jjm2473@gmail.com>
|
| |\ \ \
| | | |
| | | | |
apfree-wifidog: fix bug of cert generating condition and enable misuse
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Dengfeng Liu <dfliuc@isoftstone.com>
|
| |/ / /
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
At the moment ss-server seems to be the only component using these two
options. It also accepts "local_address" of either ip4 or ip6 address,
but the meaning is different from that of ss-local, ss-tunnel etc.
where it is for listen bind
With this commit, we start deprecation process of uci option
"bind_address". The name was replaced with "local_addr" in upstream
project commit 5fa98a66 ("Fix #1911") and available as json config
option "local_address". This upstream change was released in 3.2.0
Link: https://github.com/shadowsocks/shadowsocks-libev/commit/4a42da641b6e0039497998614e84c94205939c24
Link: https://github.com/openwrt/packages/issues/12931
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Needs , not = for the rpath parameter.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | | |
Needs , not = for the rpath parameter.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |\ \ \
| | | |
| | | | |
openfortivpn: use a more 'OpenWRT' paradigm throughout the code
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
netifd is clever enough to handle the peerdns and default route
arguments, so we can just let them get passed along, and when
ppp-up invokes proto_send_update, netifd will only apply what
is needed
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Use functions.sh to get configuration variables rather than calling uci
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
If two openfortivpn scripts are started at the same time, a race
condition can occur where the conditional evaluates to true, but the
symlink exists by the time the other script tries to create it
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | | |
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Block restart of the interface if the openfortivpn fails to authenticate.
Without this check, with a bad password, netifd will continually
hit the VPN endpoint with connection attempts
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| | |/ /
| | |
| | |
| | | |
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
|
| |\ \ \
| | | |
| | | | |
freeradius3: add missing conffiles to Makefile
|
| | |/ /
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Config files
/etc/freeradius3/policy.d/accounting
/etc/freeradius3/policy.d/filter
/etc/freeradius3/proxy.conf
/etc/freeradius3/sites-available/default
and link
/etc/freeradius3/sites-enabled/default
are in the freeradius3 package and are mentioned in the main config file
/etc/freeradius3/radiusd.conf
Thus, they must be explicitly specified in the Makefile.
File
/etc/freeradius3/sites/default
is not included in the package, is not created during installation,
is not mentioned in the main config file and should therefore be excluded
from the Makefile.
Signed-off-by: Alexey Dobrovolsky <dobrovolskiy.alexey@gmail.com>
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Update haproxy download URL and hash
- This new version also adds LUA 5.4 support
Signed-off-by: Christian Lachner <gladiac@gmail.com>
|
| |\ \ \
| | | |
| | | | |
nlbwmon: add hotplug script to reload after interface ifup
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Add a hotplug script to reload nlbwmon's config after interface
ifup actions.
That should improve the detection of the IPv6 LAN address
that can get enabled a bit later in the boot process.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
|
| |\ \ \ \
| | | | |
| | | | | |
clamav: update to version 0.102.4 (security fix)
|
| | |/ / /
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Fixes
CVE-2020-3481
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| | | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
Do not manually overwrite the paths of gdbus-codegen or glib-mkenums
in the ModemManager package build, as modifying the configure.ac ends
up requiring a full autoreconf.
Since MM 1.14, git builds or autoreconf-ed source package builds
require autoconf-archive installed in the build system, and so the
build would fail if this happens.
The update to overwrite the paths was to force using the gdbus-codegen
and glib-mkenums provided by the "host" glib2 package instead of the
"target" glib2 package (see fa8ad6e69c41d694b1220e04ec4f45bb8e8c1edf),
but these tools are really the same in both as they're python
programs, arch independent.
Tested in a local build where the setup detects and uses the correct
glib tool paths from the target:
/home/user/openwrt/staging_dir/target-mips_24kc_musl/usr/bin/gdbus-codegen
/home/user/openwrt/staging_dir/target-mips_24kc_musl/usr/bin/glib-mkenums
Fixes https://github.com/openwrt/packages/issues/12958
Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
|