aboutsummaryrefslogtreecommitdiff
path: root/net
Commit message (Collapse)AuthorAge
* net-tools: Revert "net-tools: add netstat utiltiy"HEADmasterFlorian Eckert2024-05-08
| | | | | | | This reverts commit d932a867e9445a54e49ecbff4e07bb2d1d0197be as this changes has not been reviewed and must be reverted. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* zerotier: update to 1.14.0Moritz Warning2024-05-07
| | | | | | Includes refreshed patches. Signed-off-by: Moritz Warning <moritzwarning@web.de>
* Merge pull request #24088 from TDT-AG/pr/20240506-net-toolsFlorian Eckert2024-05-07
|\ | | | | net-tools: add netstat utiltiy
| * net-tools: add netstat utiltiyFlorian Eckert2024-05-06
| | | | | | | | | | | | Some user may want or need the full fuctionality of the netstat tool. Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | Merge pull request #24089 from TDT-AG/pr/20240506-stunnelFlorian Eckert2024-05-07
|\ \ | | | | | | stunnel: update to version 5.72
| * | stunnel: update to version 5.72Florian Eckert2024-05-06
| |/ | | | | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* | strongswan: Add missing declarations in swanctlPhilip Prindeville2024-05-06
| | | | | | | | Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* | nginx: QUIC: Fix SSL 3.0 deprecated functionSean Khan2024-05-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | `EVP_CIPHER_CTX_cipher()` function was deprecated in OpenSSL 3.0. As per OpenSSL's recommendation (https://www.openssl.org/docs/manmaster/man3/EVP_CIPHER_CTX_get0_cipher.html) switch to using `EVP_CIPHER_CTX_get0_cipher()` instead. With this change and recent commit to nginx-util #23935. We should now be able to build nginx + modules with fully compliant calls to OpenSSL 3.0+ with legacy features disabled. Signed-off-by: Sean Khan <datapronix@protonmail.com> Link: https://github.com/openwrt/packages/pull/24005 Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* | ocserv: set ipcalc explicitlyNikos Mavrogiannopoulos2024-05-06
| | | | | | | | | | | | | | This is a mandatory tool for the test suite, but we do not run it. Fixes compilation. Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* | openssh-keygen: Make ssh-keygen as an alternative to dropbearkeySergey Ponomarev2024-05-06
|/ | | | | | | | | | | | | | | The DropBear's dropbearkey tool is compatible with OpenSSH ssh-keygen. It was set by default as the /usr/bin/ssh-keygen program since the PR https://github.com/openwrt/openwrt/pull/14174 Now if a user need for a full ssh-keygen the openssh-keygen package should substitute it gracefully as an alternative. Signed-off-by: Sergey Ponomarev <stokito@gmail.com> Link: https://github.com/openwrt/packages/pull/22861 [ wrap to 80 columns ] Link: https://github.com/openwrt/packages/pull/22861 Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* atlas-probe: fix version for APKFlorian Eckert2024-05-06
| | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* ocserv: updated to 1.3.0Nikos Mavrogiannopoulos2024-05-06
| | | | Signed-off-by: Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>
* speedtest-go: update to 1.7.0TeleostNaCl Dai2024-05-06
| | | | | | Update speedtest-go version to 1.7.0 Signed-off-by: TeleostNaCl Dai <teleostnacl@gmail.com>
* banip: update 0.9.5-5Dirk Brenken2024-05-05
| | | | | | | * fix a processing race condition * it's now possible to disable the icmp/syn/udp safeguards in pre-routing - set the threshold to '0'. Signed-off-by: Dirk Brenken <dev@brenken.org>
* gensio: add patch with workaround for buildbots (refs #24047)Michael Heimpold2024-05-04
| | | | | | | | | | | | | | | | | This should solve the issue found on the buildbots: -snip- ... checking consistency of all components of python development environment... yes ./configure: line 24172: test: =: unary operator expected checking for pam_start in -lpam... (cached) no ... -snap- For still unknown reason, AX_PYTHON_DEVEL from the included m4 file is not used which would set the variable the correct way. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* uspot: update to Git HEAD (2024-05-03)Thibaut VARÈNE2024-05-04
| | | | | | | | | | | | | | 5e2d15a110bb treewide: remove tip_mode e2dbdef4cf1e treewide: rename spotfilter -> uspotfilter ef0f5291365b uspot/uspotfilter: implement disconnect_delay 92d3356d3fb3 update README Update the package Makefile to reflect the changes from the following above-listed commit: e2dbdef4cf1e treewide: rename spotfilter -> uspotfilter Signed-off-by: Thibaut VARÈNE <hacks@slashdirt.org>
* v2ray-core: Update to 5.16.0Tianling Shen2024-05-03
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* alist: Update to 3.34.0Tianling Shen2024-05-03
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* dnsproxy: Update to 0.71.1Tianling Shen2024-05-03
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* speedtest-go: add new packageTeleostNaCl Dai2024-05-03
| | | | | | | | This is a Command Line Interface (CLI) and pure Go API to test internet speed using speedtest.net. Its upstream is https://github.com/showwin/speedtest-go Signed-off-by: TeleostNaCl Dai <teleostnacl@gmail.com>
* v2ray-geodata: Update to latest versionTianling Shen2024-05-03
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* xray-core: Update to 1.8.11Tianling Shen2024-05-03
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* nextdns: Update to version 1.43.3Olivier Poitrey2024-05-01
| | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* banip: update 0.9.5-4Dirk Brenken2024-05-01
| | | | | | | * optimized adding suspicious IPs to Sets in the log monitor * re-added ipblackhole feed Signed-off-by: Dirk Brenken <dev@brenken.org>
* frr: fix host build error on macOSGeorgi Valkov2024-04-30
| | | | | | | | | | | | | | | Fixes: lib/command_graph.c:16:1: error: argument to 'section' attribute is not valid for this target: mach-o section specifier requires a segment and section separated by a comma DEFINE_MTYPE_STATIC(LIB, CMD_TOKENS, "Command Tokens"); ^ ./lib/memory.h:139:2: note: expanded from macro 'DEFINE_MTYPE_STATIC' DEFINE_MTYPE_ATTR(group, name, static, desc) \ ^ ./lib/memory.h:109:26: note: expanded from macro 'DEFINE_MTYPE_ATTR' __attribute__((section(".data.mtypes"))) = { { \ [1] https://github.com/FRRouting/frr/pull/6032 [2] https://github.com/FRRouting/frr/pull/15890 Signed-off-by: Georgi Valkov <gvalkov@gmail.com>
* ser2net: update to 4.6.2Yegor Yefremov2024-04-30
| | | | Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
* gensio: update to 2.8.4Yegor Yefremov2024-04-30
| | | | | | Remove the upstreamed patches. Signed-off-by: Yegor Yefremov <yegorslists@googlemail.com>
* pdns-recursor: update to 5.0.4, fixes CVE-2024-25583Peter van Dijk2024-04-30
| | | | Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
* dnsproxy: add three new featuresEmily H.2024-04-30
| | | | | | | | | | This commit adds the following features: 1. UCI support for local DNS over HTTPS/TLS/QUIC server. 2. UCI support for using private reverse DNS. 3. procd jail with CAP_NET_BIND_SERVICE, allowing dnsproxy to serve on standard ports directly. Signed-off-by: Emily H. <battery_tag708@simplelogin.com>
* transmission: update to version 4.0.5Josef Schlehofer2024-04-30
| | | | | | | Release notes: https://github.com/transmission/transmission/releases/tag/4.0.5 Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* sing-box: update to 1.8.12brvphoenix2024-04-30
| | | | Signed-off-by: brvphoenix <brvphoenix@gmail.com>
* Merge pull request #24034 from rs/nextdns-1.43.1-masterStan Grishin2024-04-28
|\ | | | | nextdns: Update to version 1.43.1
| * nextdns: Update to version 1.43.1Olivier Poitrey2024-04-28
| | | | | | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* | nmap: add patch fixing compilation error with no OpenSSL DTLSChristian Marangi2024-04-28
| | | | | | | | | | | | Add patch fixing compilation error with no OpenSSL DTLS support. Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* | nmap: update to version 7.95Josef Schlehofer2024-04-28
| | | | | | | | | | | | | | | | | | | | | | - Remove patch 010-Build-based-on-OpenSSL-version.patch since it was backported and now it is included in 7.95 release - Patch 030-ncat-drop-ca-bundle.patch was refreshed Release notes: https://nmap.org/changelog.html#7.95 Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | nmap: use git as source and bump to PCRE2 support commitChristian Marangi2024-04-28
| | | | | | | | | | | | | | | | | | | | | | | | Use git as source and bump version to PCRE2 support commit. Move nmap to PCRE2 library as PCRE is EOL and won't receive any security update in the future. Patch 001-Use-correct-HAVE_-macros-for-Lua-5.4.-Fixes-2648.patch has been merged upstream and can be dropped. Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* | nmap: bump to version 7.94Christian Marangi2024-04-28
|/ | | | | | | | | | | | Bump to version 7.94. Nmap now require lua 5.4. Patch 020-Python3-port-of-ndiff.patch has been merged upstream and can be dropped. Patch 001-Use-correct-HAVE_-macros-for-Lua-5.4.-Fixes-2648.patch is now required to fix a problem with header inclusion for lua 5.4. Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* nextdns: Update to version 1.43.0Olivier Poitrey2024-04-28
| | | | Signed-off-by: Olivier Poitrey <rs@nextdns.io>
* hev-socks5-server: add new packageRay Wang2024-04-28
| | | | | | | | HevSocks5Server is a high-performance socks5 server for Unix. More details: https://github.com/heiher/hev-socks5-server Signed-off-by: Ray Wang <r@hev.cc>
* snort3: fix bug with unset variableEric Fahlgren2024-04-27
| | | | | | | | - Parameter not set in two places: /usr/bin/snort-mgr: eval: line 125: options: parameter not set Reported-by: @klingon888 Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
* snort3: add patch and move to PCRE2Christian Marangi2024-04-27
| | | | | | | Add experimental patch and move package to PCRE2 as PCRE is EOL and won't receive any security updates anymore. Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* cloudflared: Update to 2024.4.1Tianling Shen2024-04-27
| | | | Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* librespeed-go: improve the descriptionNathan Friedly2024-04-27
| | | | | | This swaps the order of the lines in the description so that when LuCI displays only the first line, it still offers some helpful information. Signed-off-by: Nathan Friedly <nathan@nfriedly.com>
* p910nd: set bidi only if not already setPaul Donald2024-04-26
| | | | | | Closes #23774 Signed-off-by: Paul Donald <newtwen+github@gmail.com>
* banip: update 0.9.5-3Dirk Brenken2024-04-26
| | | | | | | * allow multiple protocol/port definitions per feed, e.g. 'tcp udp 80 443 50000' * removed the default protocol/port limitation from asn feed Signed-off-by: Dirk Brenken <dev@brenken.org>
* jool: update documentationGoetz Goerisch2024-04-26
| | | | | | | | * corrected the documentation links for upstream * fixed style to be correctly rendered * add reference to OpenWrt tutorial Signed-off-by: Goetz Goerisch <ggoerisch@gmail.com>
* Merge pull request #23984 from stangri/master-adblock-fastStan Grishin2024-04-25
|\ | | | | adblock-fast: bugfix: unbound-related fixes
| * adblock-fast: bugfix: unbound-related fixesStan Grishin2024-04-21
| | | | | | | | | | | | | | | | | | * include `server:` directive at the top of unbound file * update unbound-related outputGzip variable to include full path * return always_nxdomain for blocked domains * also update copyright stamp/license Signed-off-by: Stan Grishin <stangri@melmac.ca>
* | Merge pull request #23991 from friendly-bits/master-geoip-shellDirk Brenken2024-04-25
|\ \ | | | | | | geoip-shell: update to v0.5.2
| * | geoip-shell: update to v0.5.2Anton Khazan2024-04-23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes since v0.5: Bugfixes: - bugfix: 'geoip-shell on' command errors out on iptables-based systems - bugfix: when changing the update cron schedule, old cron job does not get removed - bugfix: in some edge cases, the update cron job may not be created - bugfix: incorrect mask bits used when creating a rule allowing ipv6 link-local connections (/8 instead of /10) - bugfix: geoip-shell-fetch.sh: fix running without root permissions Improvements: - nftables variant: attach the base chain to the prerouting netfilter hook with priority -141 (rather than -150) to make rules processing deterministic when other rules exist which have priority 'mangle' (-150), making it easier to create custom rules which will be processed before geoip-shell rules - include information on currently used firewall backend utility (nftables or iptables) in the status report - avoid unnecessary re-fetching of ip lists when running 'geoip-shell configure' - randomize the default update schedule's minute between 10 and 20 (previously was always 15) - randomize the automatic update second between 0 and 59 - improve console messages and the status report - update and improve the general documentation - improve OpenWrt-specific documentation Signed-off-by: Anton Khazan <antonk.d3v@gmail.com>
Powered by cgit, Themed by Ted Yin.