Paul Donald [Fri, 11 Apr 2025 14:27:14 +0000 (16:27 +0200)]
ddns-scripts: fix daemon to reload instead of kill
Instead of just killing all the processes, let's actually reload them,
since that's what the user would expect when issuing a 'reload' command.
Move the killall portion to a kill function
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Fri, 11 Apr 2025 14:18:59 +0000 (16:18 +0200)]
ddns-scripts: fix daemon start - background the script
omitted the ampersand in the re-factor in commit
a36167288227c753b8a57ef875ff3eb8e6dd510a
Signed-off-by: Paul Donald <[email protected]>
Ryan Press [Wed, 16 Apr 2025 18:52:24 +0000 (11:52 -0700)]
modemmanager: bump to 1.24.0
100-ublox-remove-ID_MM_PROCESS-tags.patch has been removed as this change is now upstream.
Signed-off-by: Ryan Press <[email protected]>
Ryan Press [Thu, 17 Apr 2025 00:06:59 +0000 (17:06 -0700)]
libmbim: bump to 1.32.0
Signed-off-by: Ryan Press <[email protected]>
Ryan Press [Thu, 17 Apr 2025 00:09:05 +0000 (17:09 -0700)]
libqmi: bump to 1.36.0
Signed-off-by: Ryan Press <[email protected]>
Eric Fahlgren [Thu, 17 Apr 2025 01:55:56 +0000 (18:55 -0700)]
owut: update to 2025.04.08
Bug fixes:
efahl/owut@
ef2bfb4d4cb5 owut: remove trailing commas in json dump
Enhancements:
efahl/owut@
2586b2cfd50c owut: minor name cleanup
Signed-off-by: Eric Fahlgren <[email protected]>
Dirk Brenken [Wed, 16 Apr 2025 19:36:47 +0000 (21:36 +0200)]
adblock: update 4.4.0-3
* checked and fixed the kresd and smartdns support
* fixed another ETAG issue
* changed the enabled feeds in default config to certpl, aguard and adguard_tracking
* various other small fixes
* update the readme
Signed-off-by: Dirk Brenken <[email protected]>
George Sapkin [Sun, 13 Apr 2025 03:25:27 +0000 (06:25 +0300)]
external-protocol: add missing ip dependency
external.sh requires ip with -json flag that is not supported by the
BusyBox ip.
Fixes: https://github.com/openwrt/packages/issues/26302
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Mon, 14 Apr 2025 16:25:18 +0000 (19:25 +0300)]
syncthing: bump to 1.29.5
Bugfixes:
- use separate lock file instead of locking the certificate
Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.5
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Tue, 1 Apr 2025 08:45:00 +0000 (11:45 +0300)]
syncthing: bump to 1.29.4
Bugfixes:
- Tildes break directory autocomplete
Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.4
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Wed, 12 Mar 2025 11:56:00 +0000 (13:56 +0200)]
syncthing: bump to 1.29.3
Bugfixes:
- Unintelligible error message "setting metadata: lookup failed"
Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.3
Signed-off-by: George Sapkin <[email protected]>
John Audia [Fri, 11 Apr 2025 14:25:58 +0000 (10:25 -0400)]
lxc: update to 6.0.4
Added upstream patch to fix starting containers with complex hooks.
No existing patches needed to be rebased/simple version bump to 6.0.4.
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
John Audia [Sat, 12 Apr 2025 19:38:46 +0000 (15:38 -0400)]
openssh: bump to 10.0p1
This update requires sshd-auth to be packaged due to the authentication
bin split introduced in this version.
Changelog: https://www.openssh.com/txt/release-10.0
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
George Sapkin [Mon, 14 Apr 2025 15:11:23 +0000 (18:11 +0300)]
yt-dlp: bump to 2025.03.31
Core changes
- Add --compat-options 2024
Extractor changes
- francaisfacile: Add extractor
- generic: Validate response before checking m3u8 live status
- microsoftlearnepisode: Extract more formats
- mlbtv: Fix radio-only extraction
- on24: Support mainEvent URLs
- sbs: Fix subtitles extraction
- stvr: Rename extractor from RTVS to STVR
- twitch: clips: Extract portrait formats
- youtube
- Add player_js_variant extractor-arg
- tab: Fix playlist continuation extraction
Pick up the package as a maintainer as per previous maintainer's
request.
Changelog: https://github.com/yt-dlp/yt-dlp/releases/tag/2025.03.31
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Mon, 14 Apr 2025 20:17:08 +0000 (23:17 +0300)]
George Sapkin [Mon, 14 Apr 2025 20:09:38 +0000 (23:09 +0300)]
yt-dlp: add CI version check
Signed-off-by: George Sapkin <[email protected]>
Tianling Shen [Wed, 16 Apr 2025 09:25:00 +0000 (17:25 +0800)]
librespeed-go: add missing conffiles
Add missing uci configuration to conffiles.
Signed-off-by: Tianling Shen <[email protected]>
Stan Grishin [Mon, 14 Apr 2025 23:50:38 +0000 (23:50 +0000)]
adblock-fast: bugfixes: empty allow-lists, support for swap
* do not produce an error on empty allow-lists, fixes https://github.com/openwrt/packages/issues/26228
* do not produce an error when swap is available, fixes https://github.com/openwrt/packages/issues/26313
Signed-off-by: Stan Grishin <[email protected]>
Wesley Gimenes [Tue, 15 Apr 2025 16:15:50 +0000 (13:15 -0300)]
netbird: update to 0.41.2
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.2
Signed-off-by: Wesley Gimenes <[email protected]>
Wesley Gimenes [Tue, 15 Apr 2025 12:56:28 +0000 (09:56 -0300)]
netbird: update to 0.41.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.1
Signed-off-by: Wesley Gimenes <[email protected]>
Tianling Shen [Tue, 15 Apr 2025 11:42:45 +0000 (19:42 +0800)]
cloudflared: Update to 2025.4.0
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Tue, 15 Apr 2025 11:42:31 +0000 (19:42 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Tue, 15 Apr 2025 11:41:59 +0000 (19:41 +0800)]
v2ray-core: Update to 5.29.3
Signed-off-by: Tianling Shen <[email protected]>
John Audia [Fri, 11 Apr 2025 18:44:07 +0000 (14:44 -0400)]
htop: update to 3.4.1
Changelog: https://github.com/htop-dev/htop/blob/main/ChangeLog#L1-L10
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
Tianling Shen [Mon, 14 Apr 2025 07:19:44 +0000 (15:19 +0800)]
libcbor: disable sanitize by default
musl libc does not support this feature, and for glibc, additional
library libasan is required. Disable it explicitly to avoid build issue
when CONFIG_DEBUG is selected.
Signed-off-by: Tianling Shen <[email protected]>
Petr Štetiar [Mon, 14 Apr 2025 04:20:36 +0000 (04:20 +0000)]
libarchive: bump to 3.7.9 fixing CVE-2025-25724, CVE-2025-1632, CVE-2024-57970
Libarchive 3.7.9 is a bugfix release, fixing a regression in libarchive
3.7.8 regarding GNU sparse entries was fixed.
Libarchive 3.7.8 is a bugfix and security release:
Security fixes:
* tar reader: Handle truncation in the middle of a GNU long linkname (CVE-2024-57970)
* unzip: fix null pointer dereference (CVE-2025-1632)
* tar reader: fix unchecked return value in list_item_verbose() (CVE-2025-25724)
Important bugfixes:
* 7zip reader: add SPARC and POWERPC filter support for non-LZMA compressors
* tar reader: Ignore ustar size when pax size is present
* tar writer: Fix bug when -s/a/b/ used more than once with b flag
* cpio: Fix a Y2038 bug on Windows
* libarchive: Handle ARCHIVE_FILTER_LZOP in archive_read_append_filter
* libarchive: Adding missing seeker function to archive_read_open_FILE()
Full Changelog: https://github.com/libarchive/libarchive/compare/v3.7.7...v3.7.8
Signed-off-by: Petr Štetiar <[email protected]>
Stan Grishin [Tue, 1 Apr 2025 04:00:44 +0000 (04:00 +0000)]
https-dns-proxy: update to 2025.03.13 upstream
* fixes https://github.com/openwrt/packages/issues/25522
Signed-off-by: Stan Grishin <[email protected]>
Dirk Brenken [Sun, 13 Apr 2025 19:41:36 +0000 (21:41 +0200)]
adblock: update 4.4.0-2
* minor ETAG fixes and improvements
* permanently set the addnmount option for dnsmasq
* cosmetics
Signed-off-by: Dirk Brenken <[email protected]>
Mikael Magnusson [Wed, 26 Mar 2025 17:57:52 +0000 (18:57 +0100)]
openssh: add FIDO U2F and FIDO2 hardware token support
Add openssh-sk-helper package containing ssh-sk-helper.
The helper can be used by openssh-client, openssh-sftp-client,
and openssh-keygen to access `ecdsa_sk` and `ed25519_sk keys
provided by a FIDO U2F or FIDO2 hardware token connected over USB.
Close #24509
Signed-off-by: Mikael Magnusson <[email protected]>
Mikael Magnusson [Wed, 26 Mar 2025 23:15:26 +0000 (00:15 +0100)]
Revert "openssh: Add FIDO2 hardware token support"
This reverts commit
855db864b0c4d2dcc5ed2f0182ea4a7942314086.
The reverted commit doesn't make sense since the component
(ssh-sk-helper) that uses libfido2, which is mentioned in
the commit message, isn't packaged.
Signed-off-by: Mikael Magnusson <[email protected]>
Javier Marcet [Thu, 10 Apr 2025 19:27:18 +0000 (21:27 +0200)]
docker-compose: Update to version 2.35.0
Release notes:
https://github.com/docker/compose/releases/tag/v2.35.0
Signed-off-by: Javier Marcet <[email protected]>
Matthias Franck [Mon, 17 Mar 2025 09:08:10 +0000 (10:08 +0100)]
libarchive: bump to 3.7.7 fixing a lot of security issues
libarchive fixed a lot of security issues in the last few releases, listing only
notable changes,
libarchive 3.7.5:
* rar4: protect copy_from_lzss_window_to_unp() CVE-2024-20696
* rar4: fix CVE-2024-26256
libarchive 3.7.6:
* this release fixes a tar regression introduced in libarchive 3.7.5
libarchive 3.7.7:
* gzip: prevent a hang when processing a malformed gzip inside a gzip (OSS-Fuzz)
* tar: don't crash on truncated tar archives (OSS-Fuzz)
* tar: fix two leaks in tar header parsing
Link: https://github.com/libarchive/libarchive/releases
Signed-off-by: Matthias Franck <[email protected]>
Wesley Gimenes [Thu, 10 Apr 2025 14:28:47 +0000 (11:28 -0300)]
netbird: update to 0.40.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.40.1
Signed-off-by: Wesley Gimenes <[email protected]>
Maxim Storchak [Sat, 12 Apr 2025 08:58:37 +0000 (11:58 +0300)]
tgt: update to 1.0.96
Signed-off-by: Maxim Storchak <[email protected]>
Dirk Brenken [Fri, 11 Apr 2025 19:57:37 +0000 (21:57 +0200)]
banIP: release 1.5.6-1
* the ETAG function now supports country and asn feeds as well
* fixed becyber URL and other small fixes
* LuCI fixes and improvements (separate commit)
Signed-off-by: Dirk Brenken <[email protected]>
Paul Donald [Thu, 10 Apr 2025 22:31:21 +0000 (00:31 +0200)]
ddns-scripts: correct bump release
Signed-off-by: Paul Donald <[email protected]>
Dirk Brenken [Thu, 10 Apr 2025 21:39:08 +0000 (23:39 +0200)]
adblock: release 4.4.0-1
* added a 'DNS Shift' option, where the generated final DNS blocklist is moved to the backup directory and
only a soft link to this file is set in memory. As long as your backup directory is located on an external drive,
you should activate this option to save disk space
* added ETAG-Header support to make sure to download only feeds that has been changed,
use backups otherwise (not supported by uclient-fetch)
* removed aria2 support
* added brave as a new safesearch provider
* removed the racist terminology from the local lists and renamed it to "allowlist" and "blocklist"
* removed the 'list' and 'timer' function from init, use the LuCI feed editor and the standard cron frontend instead
* various code changes and improvements
* major LuCI frontend changes, incl. a custom feed editor (separate commit)
* partial readme update
Signed-off-by: Dirk Brenken <[email protected]>
Jan Hák [Thu, 10 Apr 2025 10:13:42 +0000 (12:13 +0200)]
knot: update to version 3.4.6
Signed-off-by: Jan Hák <[email protected]>
Jan Hák [Wed, 19 Mar 2025 14:25:23 +0000 (15:25 +0100)]
knot: fix patch for configuration sample
Fixes #26149
Signed-off-by: Jan Hák <[email protected]>
Paul Donald [Tue, 8 Apr 2025 18:56:42 +0000 (20:56 +0200)]
ddns-scripts: bump PKG_RELEASE
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Thu, 28 Nov 2024 02:43:33 +0000 (03:43 +0100)]
ddns-scripts: refactor get_uptime() and avoid cat in sub-shell
no sub-shell is spawned to get uptime.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:46:08 +0000 (16:46 +0100)]
ddns-scripts: refactor load_all_config_options()
Same functionality - code reads less 'shouty' and 'stabby'.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:19:12 +0000 (16:19 +0100)]
ddns-scripts: add stop action for individual sections
it is now possible to stop an individual instance, and not all of them.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:47:06 +0000 (16:47 +0100)]
ddns-scripts: refactor start_daemon_for_all_ddns_sections()
Removed redundant if else condition. updater is launched
with the same verbosity value anyway.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:46:39 +0000 (16:46 +0100)]
ddns-scripts: refactor stop_daemon_for_all_ddns_sections()
Same functionality - code reads less 'shouty' and 'stabby'.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:26:27 +0000 (16:26 +0100)]
ddns-scripts: refactor stop_section_processes()
Now a single xargs calls instead of grepping ps output (unreliable).
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Wed, 27 Nov 2024 19:39:00 +0000 (20:39 +0100)]
ddns-scripts: refactor update_url checks to avoid echo|grep sub-shells
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 18:16:11 +0000 (19:16 +0100)]
ddns-scripts: variable quoting
in case spaces should creep into path names
Signed-off-by: Paul Donald <[email protected]>
Florian Eckert [Thu, 27 Mar 2025 15:19:45 +0000 (16:19 +0100)]
modemmanager: add missing any option to allowedmode
The 'mmcli' also understands the option 'any'.
Signed-off-by: Florian Eckert <[email protected]>
Michael Heimpold [Tue, 21 Jan 2025 20:28:00 +0000 (21:28 +0100)]
php8: update to 8.4.5
This is a major upgrade to latest stable PHP version.
- IMAP extension was unbundled from PHP
- align patch filenames with latest ones from Debian
- removed obsolete patches
- adapted/refreshed patches
- added patch to remove call to httpd during configure
Note: this assumes that 'prefork' mpm is used
Upstream changelog for this specific release:
https://www.php.net/ChangeLog-8.php#8.4.5
Signed-off-by: Michael Heimpold <[email protected]>
Michael Heimpold [Sat, 5 Apr 2025 19:24:25 +0000 (21:24 +0200)]
php8-pecl-imagick: update to 3.8.0RC2
For the moment, we have to finetune the package
versioning to make apk happy.
This update provides compatibility with PHP 8.4.x.
Signed-off-by: Michael Heimpold <[email protected]>
Michael Heimpold [Sun, 16 Feb 2025 11:54:55 +0000 (12:54 +0100)]
php8-pecl-mcrypt: drop package - unmaintained upstream
This PECL package seems to be not actively maintained
anymore by upstream and it does not work with PHP 8.4.x
so let's drop it.
Signed-off-by: Michael Heimpold <[email protected]>
Oliver Sedlbauer [Mon, 7 Apr 2025 07:19:30 +0000 (09:19 +0200)]
utils: add new package enterprise-numbers
Signed-off-by: Oliver Sedlbauer <[email protected]>
Oliver Sedlbauer [Thu, 3 Apr 2025 15:31:36 +0000 (17:31 +0200)]
ipmitool: disable download of PEN list in Makefile
This commit allows building the package without downloading enterprise
numbers from the IANA PEN registry. This enables offline builds and
reduces storage usage, especially on devices with limited space.
Signed-off-by: Oliver Sedlbauer <[email protected]>
Oliver Sedlbauer [Thu, 3 Apr 2025 15:28:46 +0000 (17:28 +0200)]
ipmitool: add option to disable registry download
Upstream backport
Signed-off-by: Oliver Sedlbauer <[email protected]>
Oliver Sedlbauer [Thu, 3 Apr 2025 15:27:42 +0000 (17:27 +0200)]
ipmitool: do not require IANA PEN registry
Upstream backport
Signed-off-by: Oliver Sedlbauer <[email protected]>
Jianhui Zhao [Wed, 9 Apr 2025 06:08:39 +0000 (14:08 +0800)]
lua-eco: update to 3.8.0
Signed-off-by: Jianhui Zhao <[email protected]>
Wesley Gimenes [Tue, 8 Apr 2025 16:25:15 +0000 (13:25 -0300)]
netbird: update to 0.40.0
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.40.0
Signed-off-by: Wesley Gimenes <[email protected]>
Tianling Shen [Mon, 7 Apr 2025 12:37:42 +0000 (20:37 +0800)]
v2raya: Update to 2.2.6.7
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Mon, 7 Apr 2025 12:37:20 +0000 (20:37 +0800)]
alist: Update to 3.44.0
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Sun, 6 Apr 2025 06:06:46 +0000 (14:06 +0800)]
inih: Update to r59
Signed-off-by: Tianling Shen <[email protected]>
Joel Low [Fri, 31 Jan 2025 14:31:54 +0000 (22:31 +0800)]
strongswan: DHCP on lo fixes backport
Fixes #25801. Adds the following commits to fix DHCP behaviour on
Strongswan 5.9.14:
- https://github.com/strongswan/strongswan/commit/
abbf9d28b0032cf80b79bcacea3146a60800a6dd
- https://github.com/strongswan/strongswan/commit/
00d8c36d6fdf9e8ee99b9f92a64e7e81dbfa4432
- https://github.com/strongswan/strongswan/commit/
a50ed3006e8152eb2cf20e9f92f088ecc18081b0
Signed-off-by: Joel Low <[email protected]>
George Sapkin [Fri, 4 Apr 2025 16:30:59 +0000 (19:30 +0300)]
expat: bump to 2.7.1 to fix several CVEs
Addresses CVE-2024-8176 and CVE-2024-50602.
Full changelog linked below.
Changelog: https://github.com/libexpat/libexpat/blob/R_2_7_1/expat/Changes
Fixes: https://github.com/openwrt/packages/issues/26255
Fixes: https://github.com/advisories/GHSA-9hcv-xw76-m4h6
Fixes: https://github.com/advisories/GHSA-79wf-qgrg-2p6c
Signed-off-by: George Sapkin <[email protected]>
Hannu Nyman [Sun, 6 Apr 2025 16:57:10 +0000 (19:57 +0300)]
nano: Update to 8.4
Update nano edit to version 8.4.
Add configure flags to overcome upstream bug 66978, where the newly added
gnulib module for strcasecmp always fails in the configure step when
cross-compiling.
https://savannah.gnu.org/bugs/?66978
https://github.com/coreutils/gnulib/commit/
b2927d1b1fa3fb09a2210a3df5691f7d48d6151b
The added flags disable the strcasecmp function from gnulib.
If upstream (gnulib?) fixes things later, the flags should be removed.
Signed-off-by: Hannu Nyman <[email protected]>
Moritz Warning [Mon, 3 Mar 2025 22:29:54 +0000 (23:29 +0100)]
zerotier: add patch to support miniupnpc 2.2.8
Signed-off-by: Moritz Warning <[email protected]>
Christian Marangi [Wed, 5 Mar 2025 14:25:58 +0000 (15:25 +0100)]
znc: update to use SOURCE_VERSION for submodule download
Commit
9fc79e2e2622 ("download: don't overwrite VERSION variable")
changed the variable for direct download call from VERSION to
SOURCE_VERSION.
This cause the dl_github_archive script to pass empty value for
--version arg making it always clone HEAD.
Correctly update the variable to SOURCE_VERSION to actually clone the
expected commit HASH.
Signed-off-by: Christian Marangi <[email protected]>
Christian Marangi [Wed, 5 Mar 2025 14:18:46 +0000 (15:18 +0100)]
crun: update to use SOURCE_VERSION for submodule download
Commit
9fc79e2e2622 ("download: don't overwrite VERSION variable")
changed the variable for direct download call from VERSION to
SOURCE_VERSION.
This cause the dl_github_archive script to pass empty value for
--version arg making it always clone HEAD.
Correctly update the variable to SOURCE_VERSION to actually clone the
expected commit HASH.
Signed-off-by: Christian Marangi <[email protected]>
John Audia [Thu, 3 Apr 2025 11:45:56 +0000 (07:45 -0400)]
nvme-cli: update to 1.12
Bump to latest upstream release.
Removed upstreamed: 021-pligins-netapp-add-include-of-libgen.h-for-basename.patch
Manually rebased: 010-gcc14.patch
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
John Audia [Thu, 3 Apr 2025 11:43:58 +0000 (07:43 -0400)]
libnvme: update to 1.12
New version requires liburing as a new dependency. To avoid a build error
where mock.c is using glibc's function sig, disabled build tests since
builds are done with musl libc.
Signed-off-by: John Audia <[email protected]>
Jonas Jelonek [Wed, 2 Apr 2025 09:02:17 +0000 (11:02 +0200)]
gping: drop package
Reasons to drop:
- an unresolved issue which prevents updating gping to latest version.
gping now relies on support for fractional timespan of 'sleep', which
isn't enabled in main OpenWrt repository
- there are probably only few users of this package, if any, and I'm not
a user anymore either
- there are other equal or better tools for the same purpose
Signed-off-by: Jonas Jelonek <[email protected]>
George Sapkin [Wed, 26 Mar 2025 02:29:13 +0000 (04:29 +0200)]
adguardhome: increase UDP send/receive buffers
Link: https://github.com/quic-go/quic-go/wiki/UDP-Buffer-Sizes
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Wed, 2 Apr 2025 15:40:39 +0000 (18:40 +0300)]
golang: bump to 1.24.2
go1.24.2 (released 2025-04-01) includes security fixes to the net/http
package, as well as bug fixes to the compiler, the runtime, the go
command, and the crypto/tls, go/types, net/http, and testing packages.
Link: https://github.com/golang/go/issues?q=milestone%3AGo1.24.2+label%3ACherryPickApproved
Signed-off-by: George Sapkin <[email protected]>
Ivan Pavlov [Fri, 4 Apr 2025 05:51:00 +0000 (08:51 +0300)]
openvpn: update to 2.6.14
Security fixes:
CVE-2025-2704: fix possible ASSERT() on OpenVPN servers using --tls-crypt-v2
Security scope: OpenVPN servers between 2.6.1 and 2.6.13 using --tls-crypt-v2 can be made
to abort with an ASSERT() message by sending a particular combination of authenticated and
malformed packets. No crypto integrity is violated, no data is leaked, and no remote code
execution is possible. This bug does not affect OpenVPN clients.
For details refer to https://github.com/OpenVPN/openvpn/blob/v2.6.14/Changes.rst
Signed-off-by: Ivan Pavlov <[email protected]>
Glenn Strauss [Fri, 4 Apr 2025 07:15:13 +0000 (03:15 -0400)]
lighttpd: update to lighttpd 1.4.79 release hash
Signed-off-by: Glenn Strauss <[email protected]>
Ryan Press [Mon, 31 Mar 2025 20:57:23 +0000 (13:57 -0700)]
lpac: Refresh 0001-driver-add-uqmi-backend.patch
Signed-off-by: Ryan Press <[email protected]>
Ryan Press [Mon, 31 Mar 2025 13:59:54 +0000 (06:59 -0700)]
lpac: Add support for MBIM backend
Signed-off-by: Ryan Press <[email protected]>
Russell Senior [Wed, 2 Apr 2025 12:57:34 +0000 (05:57 -0700)]
patch: update to v2.8
Delete patches already upstream.
Signed-off-by: Russell Senior <[email protected]>
Wesley Gimenes [Tue, 1 Apr 2025 13:28:13 +0000 (10:28 -0300)]
netbird: update to 0.39.2
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.39.2
Signed-off-by: Wesley Gimenes <[email protected]>
Jonas Jelonek [Wed, 2 Apr 2025 08:53:19 +0000 (10:53 +0200)]
croc: update to 10.2.2
release notes:
https://github.com/schollz/croc/releases/tag/v10.2.2
Signed-off-by: Jonas Jelonek <[email protected]>
Jonas Jelonek [Wed, 2 Apr 2025 08:55:01 +0000 (10:55 +0200)]
eza: update to 0.21.0
[release notes]
0.20.21: https://github.com/eza-community/eza/releases/tag/v0.20.21
0.20.22: https://github.com/eza-community/eza/releases/tag/v0.20.22
0.20.23: https://github.com/eza-community/eza/releases/tag/v0.20.23
0.20.24: https://github.com/eza-community/eza/releases/tag/v0.20.24
0.21.0: https://github.com/eza-community/eza/releases/tag/v0.21.0
Signed-off-by: Jonas Jelonek <[email protected]>
Florian Eckert [Tue, 1 Apr 2025 07:23:26 +0000 (09:23 +0200)]
acme-common: update PKG_RELEASE
Signed-off-by: Florian Eckert <[email protected]>
Florian Eckert [Fri, 21 Mar 2025 09:41:01 +0000 (10:41 +0100)]
acme: remove crontab entry if service is stopped
Until now it was not possible to stop the acme service, because the handling
was done via cron. With this change, the acme handler can now be stopped by
calling '/etc/init.d/acme' stop. This call removes the entry from the crontab.
Signed-off-by: Florian Eckert <[email protected]>
Florian Eckert [Fri, 21 Mar 2025 09:30:17 +0000 (10:30 +0100)]
acme: remove lock handling
Since procd is now used, the call of '/etc/init.d/acme' does not have to be
locked separately. This code block can therefore be removed.
Signed-off-by: Florian Eckert <[email protected]>
Florian Eckert [Fri, 21 Mar 2025 09:20:21 +0000 (10:20 +0100)]
acme: fix service_triggers on config change
In the current implementation, the config change trigger is no longer set
at boot time. This is because during boot, only the '$CHALLENGE_DIR' is
created with the boot function. The 'start_service' is first called by first
cron call at midnight. This call is installing the service_triggers reload
handling.
To fix this, add a new extra_command 'renew' that is responsible to renew
the acme. This function is called from cron and the start_service
function does the rest.
* Create directories
* Install service reload trigger form acme config change
Fixes: 76f17ab15b (acme-common: Create challenge directory on boot)
Signed-off-by: Florian Eckert <[email protected]>
Florian Eckert [Tue, 1 Apr 2025 07:06:49 +0000 (09:06 +0200)]
ddns-scripts: always use the 'ps' output from busybox
The 'ps' command from 'procps-ng' is used in favour of 'ps' from 'busybox'
when 'procps-ng' is installed. The problem is that the outputs are not
compatible and the ‘grep’ is different for further processing. To fix this,
always use the 'ps' command from 'busybox'.
Signed-off-by: Florian Eckert <[email protected]>
Robert Marko [Tue, 1 Apr 2025 08:59:44 +0000 (10:59 +0200)]
ddns-scripts: fix ddns-scripts-scaleway description
ddns-scripts-scaleway description section was not defined as such and was
overriding the package definition leading to:
Makefile:839: *** missing separator. Stop.
Fixes: a7867016c84c ("ddns-scripts: add support for Scaleway DNS")
Signed-off-by: Robert Marko <[email protected]>
Florian Eckert [Tue, 4 Mar 2025 09:22:41 +0000 (10:22 +0100)]
modemmanager: fix pending mmcli calls for ModemManager-monitor script
If the ModemManager is stopped via '/etc/init.d/modemmanager', mmcli calls
always remain in the process list. This is because the ModemManager-monitor
call is not terminated properly, as the kill signals are not handled
correctly in the startup script for mmcli.
To fix this, the signal handling is refactored.
Signed-off-by: Florian Eckert <[email protected]>
Florian Eckert [Tue, 25 Feb 2025 08:09:07 +0000 (09:09 +0100)]
modemmanager: add missing mmcli timeout option during ubus call
The default 'timeout' value is 30 seconds when calling an mmcli action. That
is too long. For this reason, the mmcli 'timeout' option is specified for
calls and the value is set to 10 seconds.
Signed-off-by: Florian Eckert <[email protected]>
Lars Kaiser [Wed, 19 Mar 2025 22:46:02 +0000 (23:46 +0100)]
ddns-scripts: fix typo in package name
Signed-off-by: Lars Kaiser <[email protected]>
Lars Kaiser [Wed, 19 Mar 2025 01:20:12 +0000 (02:20 +0100)]
ddns-scripts: add support for Scaleway DNS
Signed-off-by: Lars Kaiser <[email protected]>
Vasily Evseenko [Sat, 29 Mar 2025 12:46:16 +0000 (15:46 +0300)]
wfb-ng: Update to release 25.01
1) FEC optimizations
2) Add tunnel daemon
3) Add wfb_tx_cmd utility
Signed-off-by: Vasily Evseenko <[email protected]>
Sandro Jäckel [Sat, 29 Mar 2025 17:45:23 +0000 (18:45 +0100)]
tailscale: update to 1.82.0
Signed-off-by: Sandro Jäckel <[email protected]>
Daniel Golle [Sun, 23 Feb 2025 16:45:04 +0000 (16:45 +0000)]
exim: update to 4.98.2
Fixes CVE-2025-26794 (SQL injection when using SQLite for ETRN hints)
Signed-off-by: Daniel Golle <[email protected]>
Dirk Brenken [Sat, 29 Mar 2025 16:06:49 +0000 (17:06 +0100)]
banIP: update 1.5.5-2
* fixed a JSON reporting issue (when the map and NFT counters are disabled)
* optimized the getfetch function call within the reporting function
* removed the stale IPv6 links in the becyber feed
* cosmetics
Signed-off-by: Dirk Brenken <[email protected]>
Khachatryan Karen [Sat, 29 Mar 2025 11:17:44 +0000 (14:17 +0300)]
antiblock: Update to 2.1.2
1) Fixed a bug, specifying the sniffer port did not work
Signed-off-by: Khachatryan Karen <[email protected]>
Dirk Brenken [Fri, 28 Mar 2025 06:57:16 +0000 (07:57 +0100)]
banIP: release 1.5.5-1
* added a geoIP Map to show home IPs and potential attacker IPs on a leafletjs based map
* significantly improved the reporting performance on multicore hardware
* removed aria2 support (it doesn't support post data requests)
* removed the following outbound feeds due to too many false positives:
adaway, adguard, adguardtrackers, antipopads, oisdbig, oisdnsfw, oisdsmall, stevenblack and yoyo
* renamed the banIP command "survey" to "content"
* various other small tweaks
* update the readme
Signed-off-by: Dirk Brenken <[email protected]>
Hirokazu MORIKAWA [Thu, 27 Mar 2025 02:24:58 +0000 (11:24 +0900)]
icu: bump to 77.1
ICU 77 is mostly focused on bug fixes, segmentation conformance, and other refinements.
The Java technology preview implementation of the CLDR MessageFormat 2.0 specification has been updated to incorporate the CLDR 46.1 spec plus most but not all of the CLDR 47 changes.
The C++ technology preview implementation of MessageFormat 2.0 is not yet quite up to date with CLDR 46.1.
Signed-off-by: Hirokazu MORIKAWA <[email protected]>
Wesley Gimenes [Wed, 26 Mar 2025 00:45:41 +0000 (21:45 -0300)]
netbird: update to 0.39.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.39.1
Signed-off-by: Wesley Gimenes <[email protected]>
George Sapkin [Tue, 25 Mar 2025 15:56:19 +0000 (17:56 +0200)]
Rui Salvaterra [Fri, 7 Jun 2024 11:47:17 +0000 (12:47 +0100)]
tor: update to 0.4.8.16 stable
Minor release, see the changelog [1] for what's new.
[1] https://gitlab.torproject.org/tpo/core/tor/-/blob/tor-0.4.8.16/ChangeLog
Signed-off-by: Rui Salvaterra <[email protected]>
projects / feed / packages.git / log