Fabrice Fontaine [Wed, 26 Feb 2025 17:40:02 +0000 (18:40 +0100)]
net/aria2: fix PKG_CPE_ID
aria2_project:aria2 is a better CPE ID than tatsuhiro_tsujikawa:aria2 as
this CPE ID has the latest CVE (whereas tatsuhiro_tsujikawa:aria2 only
has CVEs up to 2010):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:aria2_project:aria2
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <[email protected]>
Fabrice Fontaine [Wed, 26 Feb 2025 21:16:59 +0000 (22:16 +0100)]
net/openssh: fix PKG_CPE_ID
openbsd:openssh is a better CPE ID than openssh:openssh as this CPE ID
has the latest CVEs (whereas openssh:openssh has no CVEs):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:openbsd:openssh
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <[email protected]>
Jianhui Zhao [Fri, 11 Apr 2025 01:01:20 +0000 (09:01 +0800)]
lua: lua5.4 update to 5.4.7
1ab3208a1fceb12fca8f24ba57d6e13c5bff15e3 'lua.h' back to redundancy in version definitions
21ff8de33a5aca9c3c907592b894e4b9ab036d3e Bug: Tricky _PROMPT may trigger undefined behavior
7eb1ed21b7057ab5f1b921f8271eddcf13659737 More permissive use of 'errno'
2db966fcbf757775c842bc66449d7e697826aa1d Bug: luaL_traceback may need more than 5 stack slots
ae9a0cbbb446499e759acae47664d1d136d7ba90 Bug: overlapping assignments
d5212c13b081ed62d8e1ae436779e79c79edf564 More disciplined use of 'errno'
e0efebdbe4e4053c6fb78588c546f1dc23aa964a Detail in the manual
e84f7bf19852c35ad0a1e9a1654a7b99a211e17c Details
dfbde4c7d540f81f2cc539741a2c1f4c00f91c10 Bug: Active-lines for stripped vararg functions
de794a6527058e75b674118b35f39dcbb13e88b1 Towards release 5.4.7
8b83417de982d068bd92e0428a42ca0cdd909789 Avoids a warning when lua_Number is 'float'
e288c5a91883793d14ed9e9d93464f6ee0b08915 Bug: Yielding in a hook stops in the wrong instruction
5853c37a83ec66ccb45094f9aeac23dfdbcde671 Bug: Buffer overflow in string concatenation
842a83f09caa2ebd4bc03e0076420148ac07c808 Panic functions should not raise errors
7923dbbf72da303ca1cca17efd24725668992f15 Bug: Recursion in 'getobjname' can stack overflow
81e4fce5303fdb274bc5572fb168dd766fb8208e Simpler test in 'luaH_getint'
6baee9ef9d5657ab582c8a4b9f885ec58ed502d0 Removed test for "corrupted binary dump"
edd8589f478e784bb8d1a8e9a3bb2bb3ca51738c Avoid casts from unsigned long to floating-point
07a9eab23ac073362f231ddc7215688cf221ff45 Cannot use 'getshrstr' before setting 'shrlen'
9363a8b9901a5643c9da061ea8dda8a86cdc7ef1 Documentation for "LUA_NOENV"
5ab6a5756b3c50c99f1388885e9a48a7da8cbe2d Bug: Wrong line number for function calls
9b4f39ab14fb2e55345c3d23537d129dac23b091 More disciplined use of 'getstr' and 'tsslen'
f4211a5ea4e235ccfa8b8dfa46031c23e9e839e2 More control over encoding of test files
1b3f507f620d996ffb69da7476a19251acfb89ca Bug: Call hook may be called twice when count hook yields
6b51133a988587f34ee9581d799ea9913581afd3 Thread stacks resized in the atomic phase
cbae01620278f9b568805db16a96d0631ced473d Details
ea39042e13645f63713425c05cc9ee4cfdcf0a40 Removed redundancy in definitions of version/release
05ec55f16b389a4377adab84efe374437da8dbd2 Avoid inclusion loop in 'ltm.h'
f623b969325be736297bc1dff48e763c08778243 Bug: read overflow in 'l_strcmp'
9be74ccc214eb6f4d9d0b9496fd973542c7377d9 Several functions turned 'static'
09f3c2372f5dbeaec9f50614a26c1b5761726a88 Option '-l' discards version sufix from file name
c197885cb00b85251c35cffdc4057efaee2d7a88 Small improvements in tests
934e77a286aeb97ca02badf56956ccc78217e9d0 Details
Signed-off-by: Jianhui Zhao <[email protected]>
Jan Hák [Thu, 24 Apr 2025 10:18:23 +0000 (12:18 +0200)]
liburcu: update to version 0.15.2
Signed-off-by: Jan Hák <[email protected]>
Tianling Shen [Tue, 22 Apr 2025 13:52:38 +0000 (21:52 +0800)]
libtorrent-rasterbar: enable python package
The python package now works with Python 3.11.
Also simplify Build/InstallDev with CMAKE_INSTALL.
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Tue, 22 Apr 2025 13:05:37 +0000 (21:05 +0800)]
libtorrent-rasterbar: Update to 2.0.11
Signed-off-by: Tianling Shen <[email protected]>
George Sapkin [Wed, 23 Apr 2025 11:53:46 +0000 (14:53 +0300)]
adguardhome: bump to 0.107.61
Security
- Any simultaneous requests that are considered duplicates will now only
result in a single request to upstreams, reducing the chance of a cache
poisoning attack succeeding. This is controlled by the new configuration
object pending_requests, which has a single enabled property, set to
true by default.
NOTE: It's strongly recommended to leave it enabled, otherwise AdGuard
Home will be vulnerable to untrusted clients.
Changelog: https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.61
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Mon, 14 Apr 2025 12:46:14 +0000 (15:46 +0300)]
adguardhome: bump to 0.107.60
Fixed:
- Filtering for DHCP clients.
- Incorrect label on login page.
- Validation process for the HTTPS port on the Encryption Settings page.
Changelog: https://github.com/AdguardTeam/AdGuardHome/releases/tag/v0.107.60
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Fri, 11 Apr 2025 15:18:25 +0000 (18:18 +0300)]
George Sapkin [Wed, 16 Apr 2025 19:42:54 +0000 (22:42 +0300)]
yt-dlp: run CI test for the main package only
Fixes: afe9935ff ("yt-dlp: add CI version check")
Signed-off-by: George Sapkin <[email protected]>
Paul Donald [Mon, 7 Apr 2025 14:01:46 +0000 (16:01 +0200)]
ttyd: update to 1.7.7
Breaking Changes
The web terminal is readonly by default now, to make it writable,
use -W option.
Changelog 1.7.7
Bump to 1.7.7
cmake: add static version back
Changelog 1.7.6
workflow: update actions packages
cmake: get version from git ref
Changelog 1.7.5
html: allow overriding client options with URL query
server: add --exit-no-conn option
html: add safari mobile full screen support
html: Add Unicode 11 xterm.js addon
html: upgrade to xterm 5.4.0
add trzszDragInitTimeout option
Changelog 1.7.4
Leverage Docker Layer System
html: update dependencies
build(deps): update zlib version 1.2.13 to 1.3 in cross-build.sh
server: print working directory on start
server: replace --readonly with --writable
server: fix -U option not work
server: do not expose port to public by default
Add -y flag for easier installation
improve support for trzsz
info.max_http_header_data = 65535;
Add Docker pulls badge
fix flow control
Fix typo, OPTOINS -> OPTIONS
Bump CMake version to 2.8.12
Signed-off-by: Paul Donald <[email protected]>
Sandro Jäckel [Wed, 23 Apr 2025 11:22:12 +0000 (13:22 +0200)]
tailscale: update to 1.82.5
Signed-off-by: Sandro Jäckel <[email protected]>'
Peter van Dijk [Mon, 7 Apr 2025 12:14:59 +0000 (14:14 +0200)]
pdns-recursor: update to 5.2.2
includes fix for CVE-2025-30195 (which was in 5.2.1)
Signed-off-by: Peter van Dijk <[email protected]>
Paul Donald [Sun, 20 Apr 2025 12:22:44 +0000 (14:22 +0200)]
sqlite3: bump to 3.47.2
https://sqlite.org/changes.html
build: x86_64
run tested: x86_64
```
3.47.2 2024-12-07 20:39:59
2aabe05e2e8cae4847a802ee2daddc1d7413d8fc560254d93ee3e72c14685b6c (64-bit)
```
Signed-off-by: Paul Donald <[email protected]>
Javier Marcet [Thu, 17 Apr 2025 18:42:00 +0000 (20:42 +0200)]
docker-compose: Update to version 2.35.1
Release notes:
https://github.com/docker/compose/releases/tag/v2.35.1
Signed-off-by: Javier Marcet <[email protected]>
Wesley Gimenes [Wed, 23 Apr 2025 23:46:28 +0000 (20:46 -0300)]
netbird: update to 0.42.0
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.42.0
Signed-off-by: Wesley Gimenes <[email protected]>
Wesley Gimenes [Sat, 19 Apr 2025 19:52:50 +0000 (16:52 -0300)]
netbird: update to 0.41.3
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.3
Signed-off-by: Wesley Gimenes <[email protected]>
Christian Lachner [Tue, 22 Apr 2025 13:18:39 +0000 (15:18 +0200)]
haproxy: update to v3.0.10
- Update haproxy PKG_VERSION and PKG_HASH
- See changes: http://git.haproxy.org/?p=haproxy-3.0.git;a=shortlog
Signed-off-by: Christian Lachner <[email protected]>
Maximilian Trüpschuch [Tue, 22 Apr 2025 20:04:46 +0000 (22:04 +0200)]
jq: provide regex support in additional package jq-full
I modified the makefile, so that it will build two packages: jq and
jq-full. The former will remain unchanged and the latter will have a
dependency to the oniguruma library, so jq-full will have regex functions
enabled.
Signed-off-by: Maximilian Trüpschuch <[email protected]>
Rye Sears [Thu, 10 Apr 2025 07:36:31 +0000 (15:36 +0800)]
coremark: fix error when it was built in the second run
When there is an error building packages other than coremark
and re-run with make -j1 V=s, the coremark package will report error.
the root cause is the folder was already created in the first run,
and not removed before the second run.
To fix this, use 'mkdir -p' instead of 'mkdir'.
Co-authored-by: Jonas Gorski <[email protected]>
Signed-off-by: Rye Sears <[email protected]>
Daniel Golle [Sat, 19 Apr 2025 18:36:54 +0000 (19:36 +0100)]
modemmanager: backport commit fixing crash with Fibocom mtk-7xx modems
Backport commit
https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/commit/
046b79a6766b6384db9cd56a9af5d148787bafe4
See also
https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/issues/975
Signed-off-by: Daniel Golle <[email protected]>
Dobroslaw Kijowski [Fri, 18 Apr 2025 06:55:11 +0000 (08:55 +0200)]
adguardhome: Add George Sapkin as maintainer
Signed-off-by: Dobroslaw Kijowski <[email protected]>
Wei-Ting Yang [Tue, 22 Apr 2025 07:45:08 +0000 (15:45 +0800)]
net-snmp: fix PRIdPTR macro undefined error
This commit includes inttypes.h to prevent the following error:
```
mibgroup/ieee802dot11.c: In function 'displayWiExt':
mibgroup/ieee802dot11.c:4563:26: error: expected ')' before 'PRIdPTR'
4563 | printf ( "%s sens: %" PRIdPTR "\n", "SIOCGIWSENS", *(intptr_t *)&info.sens );
| ~ ^~~~~~~~
| )
mibgroup/ieee802dot11.c:31:1: note: 'PRIdPTR' is defined in header '<inttypes.h>'; did you forget to '#include <inttypes.h>'?
30 | #include "util_funcs/header_generic.h"
+++ |+#include <inttypes.h>
31 |
```
Signed-off-by: Wei-Ting Yang <[email protected]>
David Bauer [Sun, 19 Jan 2025 18:18:56 +0000 (19:18 +0100)]
poemgr: update to latest HEAD
eaaf7ea contrib: update GPIO numbering
28774ac poemgr: add error logging
Signed-off-by: David Bauer <[email protected]>
Liangbin Lian [Mon, 21 Apr 2025 06:19:19 +0000 (14:19 +0800)]
transmission: add syscalls to seccomp filter
Add missing syscalls found with `/etc/init.d/transmission trace`.
fix crash on boot on x86_64 platform
Signed-off-by: Liangbin Lian <[email protected]>
Rikki Vizcarra [Mon, 24 Mar 2025 21:41:25 +0000 (05:41 +0800)]
ddns-script: Change CURL call and redirect output in update_porkbun_v3
This also fixes: https://github.com/openwrt/packages/issues/26181
CURL funciton change was patterned on other ddns update scripts
that uses also JSON request/response payloads similar to
update_digitalocean_v2.sh: https://github.com/openwrt/packages/blob/
15014f93e15bcb29956bf79cd397fea580bf6ea6/net/ddns-scripts/files/usr/lib/ddns/update_digitalocean_com_v2.sh#L29
update_gcp_v1.sh: https://github.com/openwrt/packages/blob/
15014f93e15bcb29956bf79cd397fea580bf6ea6/net/ddns-scripts/files/usr/lib/ddns/update_gcp_v1.sh#L212
rebased and bumbped ddns-script version
Signed-off-by: Rikki Vizcarra <[email protected]>
Mieczyslaw Nalewaj [Sun, 20 Apr 2025 16:29:30 +0000 (18:29 +0200)]
xtables-addons: bump to 3.27
Updated for compatibility with kernel 6.12.
Signed-off-by: Mieczyslaw Nalewaj <[email protected]>
Stephen Howell [Thu, 17 Apr 2025 17:11:50 +0000 (18:11 +0100)]
realtek-poe: Build for all targets
* realtek-poe was only being built for realtek/rtl838x with mips-4kec
* needed by targets in realtek/rtl839x with mips-24kc
Signed-off-by: Stephen Howell <[email protected]>
Dirk Brenken [Sat, 19 Apr 2025 18:00:34 +0000 (20:00 +0200)]
adblock: update 4.4.1-1
* add an uci-defaults script for housekeeping and option migration from former versions
* update the readme
Signed-off-by: Dirk Brenken <[email protected]>
Paul Donald [Fri, 11 Apr 2025 13:46:21 +0000 (15:46 +0200)]
ddns-scripts: bump package release
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Fri, 11 Apr 2025 14:27:14 +0000 (16:27 +0200)]
ddns-scripts: fix daemon to reload instead of kill
Instead of just killing all the processes, let's actually reload them,
since that's what the user would expect when issuing a 'reload' command.
Move the killall portion to a kill function
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Fri, 11 Apr 2025 14:18:59 +0000 (16:18 +0200)]
ddns-scripts: fix daemon start - background the script
omitted the ampersand in the re-factor in commit
a36167288227c753b8a57ef875ff3eb8e6dd510a
Signed-off-by: Paul Donald <[email protected]>
Ryan Press [Wed, 16 Apr 2025 18:52:24 +0000 (11:52 -0700)]
modemmanager: bump to 1.24.0
100-ublox-remove-ID_MM_PROCESS-tags.patch has been removed as this change is now upstream.
Signed-off-by: Ryan Press <[email protected]>
Ryan Press [Thu, 17 Apr 2025 00:06:59 +0000 (17:06 -0700)]
libmbim: bump to 1.32.0
Signed-off-by: Ryan Press <[email protected]>
Ryan Press [Thu, 17 Apr 2025 00:09:05 +0000 (17:09 -0700)]
libqmi: bump to 1.36.0
Signed-off-by: Ryan Press <[email protected]>
Eric Fahlgren [Thu, 17 Apr 2025 01:55:56 +0000 (18:55 -0700)]
owut: update to 2025.04.08
Bug fixes:
efahl/owut@
ef2bfb4d4cb5 owut: remove trailing commas in json dump
Enhancements:
efahl/owut@
2586b2cfd50c owut: minor name cleanup
Signed-off-by: Eric Fahlgren <[email protected]>
Dirk Brenken [Wed, 16 Apr 2025 19:36:47 +0000 (21:36 +0200)]
adblock: update 4.4.0-3
* checked and fixed the kresd and smartdns support
* fixed another ETAG issue
* changed the enabled feeds in default config to certpl, aguard and adguard_tracking
* various other small fixes
* update the readme
Signed-off-by: Dirk Brenken <[email protected]>
George Sapkin [Sun, 13 Apr 2025 03:25:27 +0000 (06:25 +0300)]
external-protocol: add missing ip dependency
external.sh requires ip with -json flag that is not supported by the
BusyBox ip.
Fixes: https://github.com/openwrt/packages/issues/26302
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Mon, 14 Apr 2025 16:25:18 +0000 (19:25 +0300)]
syncthing: bump to 1.29.5
Bugfixes:
- use separate lock file instead of locking the certificate
Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.5
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Tue, 1 Apr 2025 08:45:00 +0000 (11:45 +0300)]
syncthing: bump to 1.29.4
Bugfixes:
- Tildes break directory autocomplete
Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.4
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Wed, 12 Mar 2025 11:56:00 +0000 (13:56 +0200)]
syncthing: bump to 1.29.3
Bugfixes:
- Unintelligible error message "setting metadata: lookup failed"
Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.3
Signed-off-by: George Sapkin <[email protected]>
John Audia [Fri, 11 Apr 2025 14:25:58 +0000 (10:25 -0400)]
lxc: update to 6.0.4
Added upstream patch to fix starting containers with complex hooks.
No existing patches needed to be rebased/simple version bump to 6.0.4.
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
John Audia [Sat, 12 Apr 2025 19:38:46 +0000 (15:38 -0400)]
openssh: bump to 10.0p1
This update requires sshd-auth to be packaged due to the authentication
bin split introduced in this version.
Changelog: https://www.openssh.com/txt/release-10.0
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
George Sapkin [Mon, 14 Apr 2025 15:11:23 +0000 (18:11 +0300)]
yt-dlp: bump to 2025.03.31
Core changes
- Add --compat-options 2024
Extractor changes
- francaisfacile: Add extractor
- generic: Validate response before checking m3u8 live status
- microsoftlearnepisode: Extract more formats
- mlbtv: Fix radio-only extraction
- on24: Support mainEvent URLs
- sbs: Fix subtitles extraction
- stvr: Rename extractor from RTVS to STVR
- twitch: clips: Extract portrait formats
- youtube
- Add player_js_variant extractor-arg
- tab: Fix playlist continuation extraction
Pick up the package as a maintainer as per previous maintainer's
request.
Changelog: https://github.com/yt-dlp/yt-dlp/releases/tag/2025.03.31
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Mon, 14 Apr 2025 20:17:08 +0000 (23:17 +0300)]
George Sapkin [Mon, 14 Apr 2025 20:09:38 +0000 (23:09 +0300)]
yt-dlp: add CI version check
Signed-off-by: George Sapkin <[email protected]>
Tianling Shen [Wed, 16 Apr 2025 09:25:00 +0000 (17:25 +0800)]
librespeed-go: add missing conffiles
Add missing uci configuration to conffiles.
Signed-off-by: Tianling Shen <[email protected]>
Stan Grishin [Mon, 14 Apr 2025 23:50:38 +0000 (23:50 +0000)]
adblock-fast: bugfixes: empty allow-lists, support for swap
* do not produce an error on empty allow-lists, fixes https://github.com/openwrt/packages/issues/26228
* do not produce an error when swap is available, fixes https://github.com/openwrt/packages/issues/26313
Signed-off-by: Stan Grishin <[email protected]>
Wesley Gimenes [Tue, 15 Apr 2025 16:15:50 +0000 (13:15 -0300)]
netbird: update to 0.41.2
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.2
Signed-off-by: Wesley Gimenes <[email protected]>
Wesley Gimenes [Tue, 15 Apr 2025 12:56:28 +0000 (09:56 -0300)]
netbird: update to 0.41.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.1
Signed-off-by: Wesley Gimenes <[email protected]>
Tianling Shen [Tue, 15 Apr 2025 11:42:45 +0000 (19:42 +0800)]
cloudflared: Update to 2025.4.0
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Tue, 15 Apr 2025 11:42:31 +0000 (19:42 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Tue, 15 Apr 2025 11:41:59 +0000 (19:41 +0800)]
v2ray-core: Update to 5.29.3
Signed-off-by: Tianling Shen <[email protected]>
John Audia [Fri, 11 Apr 2025 18:44:07 +0000 (14:44 -0400)]
htop: update to 3.4.1
Changelog: https://github.com/htop-dev/htop/blob/main/ChangeLog#L1-L10
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
Tianling Shen [Mon, 14 Apr 2025 07:19:44 +0000 (15:19 +0800)]
libcbor: disable sanitize by default
musl libc does not support this feature, and for glibc, additional
library libasan is required. Disable it explicitly to avoid build issue
when CONFIG_DEBUG is selected.
Signed-off-by: Tianling Shen <[email protected]>
Petr Štetiar [Mon, 14 Apr 2025 04:20:36 +0000 (04:20 +0000)]
libarchive: bump to 3.7.9 fixing CVE-2025-25724, CVE-2025-1632, CVE-2024-57970
Libarchive 3.7.9 is a bugfix release, fixing a regression in libarchive
3.7.8 regarding GNU sparse entries was fixed.
Libarchive 3.7.8 is a bugfix and security release:
Security fixes:
* tar reader: Handle truncation in the middle of a GNU long linkname (CVE-2024-57970)
* unzip: fix null pointer dereference (CVE-2025-1632)
* tar reader: fix unchecked return value in list_item_verbose() (CVE-2025-25724)
Important bugfixes:
* 7zip reader: add SPARC and POWERPC filter support for non-LZMA compressors
* tar reader: Ignore ustar size when pax size is present
* tar writer: Fix bug when -s/a/b/ used more than once with b flag
* cpio: Fix a Y2038 bug on Windows
* libarchive: Handle ARCHIVE_FILTER_LZOP in archive_read_append_filter
* libarchive: Adding missing seeker function to archive_read_open_FILE()
Full Changelog: https://github.com/libarchive/libarchive/compare/v3.7.7...v3.7.8
Signed-off-by: Petr Štetiar <[email protected]>
Stan Grishin [Tue, 1 Apr 2025 04:00:44 +0000 (04:00 +0000)]
https-dns-proxy: update to 2025.03.13 upstream
* fixes https://github.com/openwrt/packages/issues/25522
Signed-off-by: Stan Grishin <[email protected]>
Dirk Brenken [Sun, 13 Apr 2025 19:41:36 +0000 (21:41 +0200)]
adblock: update 4.4.0-2
* minor ETAG fixes and improvements
* permanently set the addnmount option for dnsmasq
* cosmetics
Signed-off-by: Dirk Brenken <[email protected]>
Mikael Magnusson [Wed, 26 Mar 2025 17:57:52 +0000 (18:57 +0100)]
openssh: add FIDO U2F and FIDO2 hardware token support
Add openssh-sk-helper package containing ssh-sk-helper.
The helper can be used by openssh-client, openssh-sftp-client,
and openssh-keygen to access `ecdsa_sk` and `ed25519_sk keys
provided by a FIDO U2F or FIDO2 hardware token connected over USB.
Close #24509
Signed-off-by: Mikael Magnusson <[email protected]>
Mikael Magnusson [Wed, 26 Mar 2025 23:15:26 +0000 (00:15 +0100)]
Revert "openssh: Add FIDO2 hardware token support"
This reverts commit
855db864b0c4d2dcc5ed2f0182ea4a7942314086.
The reverted commit doesn't make sense since the component
(ssh-sk-helper) that uses libfido2, which is mentioned in
the commit message, isn't packaged.
Signed-off-by: Mikael Magnusson <[email protected]>
Javier Marcet [Thu, 10 Apr 2025 19:27:18 +0000 (21:27 +0200)]
docker-compose: Update to version 2.35.0
Release notes:
https://github.com/docker/compose/releases/tag/v2.35.0
Signed-off-by: Javier Marcet <[email protected]>
Matthias Franck [Mon, 17 Mar 2025 09:08:10 +0000 (10:08 +0100)]
libarchive: bump to 3.7.7 fixing a lot of security issues
libarchive fixed a lot of security issues in the last few releases, listing only
notable changes,
libarchive 3.7.5:
* rar4: protect copy_from_lzss_window_to_unp() CVE-2024-20696
* rar4: fix CVE-2024-26256
libarchive 3.7.6:
* this release fixes a tar regression introduced in libarchive 3.7.5
libarchive 3.7.7:
* gzip: prevent a hang when processing a malformed gzip inside a gzip (OSS-Fuzz)
* tar: don't crash on truncated tar archives (OSS-Fuzz)
* tar: fix two leaks in tar header parsing
Link: https://github.com/libarchive/libarchive/releases
Signed-off-by: Matthias Franck <[email protected]>
Wesley Gimenes [Thu, 10 Apr 2025 14:28:47 +0000 (11:28 -0300)]
netbird: update to 0.40.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.40.1
Signed-off-by: Wesley Gimenes <[email protected]>
Maxim Storchak [Sat, 12 Apr 2025 08:58:37 +0000 (11:58 +0300)]
tgt: update to 1.0.96
Signed-off-by: Maxim Storchak <[email protected]>
Dirk Brenken [Fri, 11 Apr 2025 19:57:37 +0000 (21:57 +0200)]
banIP: release 1.5.6-1
* the ETAG function now supports country and asn feeds as well
* fixed becyber URL and other small fixes
* LuCI fixes and improvements (separate commit)
Signed-off-by: Dirk Brenken <[email protected]>
Paul Donald [Thu, 10 Apr 2025 22:31:21 +0000 (00:31 +0200)]
ddns-scripts: correct bump release
Signed-off-by: Paul Donald <[email protected]>
Dirk Brenken [Thu, 10 Apr 2025 21:39:08 +0000 (23:39 +0200)]
adblock: release 4.4.0-1
* added a 'DNS Shift' option, where the generated final DNS blocklist is moved to the backup directory and
only a soft link to this file is set in memory. As long as your backup directory is located on an external drive,
you should activate this option to save disk space
* added ETAG-Header support to make sure to download only feeds that has been changed,
use backups otherwise (not supported by uclient-fetch)
* removed aria2 support
* added brave as a new safesearch provider
* removed the racist terminology from the local lists and renamed it to "allowlist" and "blocklist"
* removed the 'list' and 'timer' function from init, use the LuCI feed editor and the standard cron frontend instead
* various code changes and improvements
* major LuCI frontend changes, incl. a custom feed editor (separate commit)
* partial readme update
Signed-off-by: Dirk Brenken <[email protected]>
Jan Hák [Thu, 10 Apr 2025 10:13:42 +0000 (12:13 +0200)]
knot: update to version 3.4.6
Signed-off-by: Jan Hák <[email protected]>
Jan Hák [Wed, 19 Mar 2025 14:25:23 +0000 (15:25 +0100)]
knot: fix patch for configuration sample
Fixes #26149
Signed-off-by: Jan Hák <[email protected]>
Paul Donald [Tue, 8 Apr 2025 18:56:42 +0000 (20:56 +0200)]
ddns-scripts: bump PKG_RELEASE
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Thu, 28 Nov 2024 02:43:33 +0000 (03:43 +0100)]
ddns-scripts: refactor get_uptime() and avoid cat in sub-shell
no sub-shell is spawned to get uptime.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:46:08 +0000 (16:46 +0100)]
ddns-scripts: refactor load_all_config_options()
Same functionality - code reads less 'shouty' and 'stabby'.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:19:12 +0000 (16:19 +0100)]
ddns-scripts: add stop action for individual sections
it is now possible to stop an individual instance, and not all of them.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:47:06 +0000 (16:47 +0100)]
ddns-scripts: refactor start_daemon_for_all_ddns_sections()
Removed redundant if else condition. updater is launched
with the same verbosity value anyway.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:46:39 +0000 (16:46 +0100)]
ddns-scripts: refactor stop_daemon_for_all_ddns_sections()
Same functionality - code reads less 'shouty' and 'stabby'.
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 15:26:27 +0000 (16:26 +0100)]
ddns-scripts: refactor stop_section_processes()
Now a single xargs calls instead of grepping ps output (unreliable).
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Wed, 27 Nov 2024 19:39:00 +0000 (20:39 +0100)]
ddns-scripts: refactor update_url checks to avoid echo|grep sub-shells
Signed-off-by: Paul Donald <[email protected]>
Paul Donald [Sat, 30 Nov 2024 18:16:11 +0000 (19:16 +0100)]
ddns-scripts: variable quoting
in case spaces should creep into path names
Signed-off-by: Paul Donald <[email protected]>
Florian Eckert [Thu, 27 Mar 2025 15:19:45 +0000 (16:19 +0100)]
modemmanager: add missing any option to allowedmode
The 'mmcli' also understands the option 'any'.
Signed-off-by: Florian Eckert <[email protected]>
Michael Heimpold [Tue, 21 Jan 2025 20:28:00 +0000 (21:28 +0100)]
php8: update to 8.4.5
This is a major upgrade to latest stable PHP version.
- IMAP extension was unbundled from PHP
- align patch filenames with latest ones from Debian
- removed obsolete patches
- adapted/refreshed patches
- added patch to remove call to httpd during configure
Note: this assumes that 'prefork' mpm is used
Upstream changelog for this specific release:
https://www.php.net/ChangeLog-8.php#8.4.5
Signed-off-by: Michael Heimpold <[email protected]>
Michael Heimpold [Sat, 5 Apr 2025 19:24:25 +0000 (21:24 +0200)]
php8-pecl-imagick: update to 3.8.0RC2
For the moment, we have to finetune the package
versioning to make apk happy.
This update provides compatibility with PHP 8.4.x.
Signed-off-by: Michael Heimpold <[email protected]>
Michael Heimpold [Sun, 16 Feb 2025 11:54:55 +0000 (12:54 +0100)]
php8-pecl-mcrypt: drop package - unmaintained upstream
This PECL package seems to be not actively maintained
anymore by upstream and it does not work with PHP 8.4.x
so let's drop it.
Signed-off-by: Michael Heimpold <[email protected]>
Oliver Sedlbauer [Mon, 7 Apr 2025 07:19:30 +0000 (09:19 +0200)]
utils: add new package enterprise-numbers
Signed-off-by: Oliver Sedlbauer <[email protected]>
Oliver Sedlbauer [Thu, 3 Apr 2025 15:31:36 +0000 (17:31 +0200)]
ipmitool: disable download of PEN list in Makefile
This commit allows building the package without downloading enterprise
numbers from the IANA PEN registry. This enables offline builds and
reduces storage usage, especially on devices with limited space.
Signed-off-by: Oliver Sedlbauer <[email protected]>
Oliver Sedlbauer [Thu, 3 Apr 2025 15:28:46 +0000 (17:28 +0200)]
ipmitool: add option to disable registry download
Upstream backport
Signed-off-by: Oliver Sedlbauer <[email protected]>
Oliver Sedlbauer [Thu, 3 Apr 2025 15:27:42 +0000 (17:27 +0200)]
ipmitool: do not require IANA PEN registry
Upstream backport
Signed-off-by: Oliver Sedlbauer <[email protected]>
Jianhui Zhao [Wed, 9 Apr 2025 06:08:39 +0000 (14:08 +0800)]
lua-eco: update to 3.8.0
Signed-off-by: Jianhui Zhao <[email protected]>
Wesley Gimenes [Tue, 8 Apr 2025 16:25:15 +0000 (13:25 -0300)]
netbird: update to 0.40.0
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.40.0
Signed-off-by: Wesley Gimenes <[email protected]>
Tianling Shen [Mon, 7 Apr 2025 12:37:42 +0000 (20:37 +0800)]
v2raya: Update to 2.2.6.7
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Mon, 7 Apr 2025 12:37:20 +0000 (20:37 +0800)]
alist: Update to 3.44.0
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Sun, 6 Apr 2025 06:06:46 +0000 (14:06 +0800)]
inih: Update to r59
Signed-off-by: Tianling Shen <[email protected]>
Joel Low [Fri, 31 Jan 2025 14:31:54 +0000 (22:31 +0800)]
strongswan: DHCP on lo fixes backport
Fixes #25801. Adds the following commits to fix DHCP behaviour on
Strongswan 5.9.14:
- https://github.com/strongswan/strongswan/commit/
abbf9d28b0032cf80b79bcacea3146a60800a6dd
- https://github.com/strongswan/strongswan/commit/
00d8c36d6fdf9e8ee99b9f92a64e7e81dbfa4432
- https://github.com/strongswan/strongswan/commit/
a50ed3006e8152eb2cf20e9f92f088ecc18081b0
Signed-off-by: Joel Low <[email protected]>
George Sapkin [Fri, 4 Apr 2025 16:30:59 +0000 (19:30 +0300)]
expat: bump to 2.7.1 to fix several CVEs
Addresses CVE-2024-8176 and CVE-2024-50602.
Full changelog linked below.
Changelog: https://github.com/libexpat/libexpat/blob/R_2_7_1/expat/Changes
Fixes: https://github.com/openwrt/packages/issues/26255
Fixes: https://github.com/advisories/GHSA-9hcv-xw76-m4h6
Fixes: https://github.com/advisories/GHSA-79wf-qgrg-2p6c
Signed-off-by: George Sapkin <[email protected]>
Hannu Nyman [Sun, 6 Apr 2025 16:57:10 +0000 (19:57 +0300)]
nano: Update to 8.4
Update nano edit to version 8.4.
Add configure flags to overcome upstream bug 66978, where the newly added
gnulib module for strcasecmp always fails in the configure step when
cross-compiling.
https://savannah.gnu.org/bugs/?66978
https://github.com/coreutils/gnulib/commit/
b2927d1b1fa3fb09a2210a3df5691f7d48d6151b
The added flags disable the strcasecmp function from gnulib.
If upstream (gnulib?) fixes things later, the flags should be removed.
Signed-off-by: Hannu Nyman <[email protected]>
Moritz Warning [Mon, 3 Mar 2025 22:29:54 +0000 (23:29 +0100)]
zerotier: add patch to support miniupnpc 2.2.8
Signed-off-by: Moritz Warning <[email protected]>
Christian Marangi [Wed, 5 Mar 2025 14:25:58 +0000 (15:25 +0100)]
znc: update to use SOURCE_VERSION for submodule download
Commit
9fc79e2e2622 ("download: don't overwrite VERSION variable")
changed the variable for direct download call from VERSION to
SOURCE_VERSION.
This cause the dl_github_archive script to pass empty value for
--version arg making it always clone HEAD.
Correctly update the variable to SOURCE_VERSION to actually clone the
expected commit HASH.
Signed-off-by: Christian Marangi <[email protected]>
Christian Marangi [Wed, 5 Mar 2025 14:18:46 +0000 (15:18 +0100)]
crun: update to use SOURCE_VERSION for submodule download
Commit
9fc79e2e2622 ("download: don't overwrite VERSION variable")
changed the variable for direct download call from VERSION to
SOURCE_VERSION.
This cause the dl_github_archive script to pass empty value for
--version arg making it always clone HEAD.
Correctly update the variable to SOURCE_VERSION to actually clone the
expected commit HASH.
Signed-off-by: Christian Marangi <[email protected]>
John Audia [Thu, 3 Apr 2025 11:45:56 +0000 (07:45 -0400)]
nvme-cli: update to 1.12
Bump to latest upstream release.
Removed upstreamed: 021-pligins-netapp-add-include-of-libgen.h-for-basename.patch
Manually rebased: 010-gcc14.patch
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
John Audia [Thu, 3 Apr 2025 11:43:58 +0000 (07:43 -0400)]
libnvme: update to 1.12
New version requires liburing as a new dependency. To avoid a build error
where mock.c is using glibc's function sig, disabled build tests since
builds are done with musl libc.
Signed-off-by: John Audia <[email protected]>
Jonas Jelonek [Wed, 2 Apr 2025 09:02:17 +0000 (11:02 +0200)]
gping: drop package
Reasons to drop:
- an unresolved issue which prevents updating gping to latest version.
gping now relies on support for fractional timespan of 'sleep', which
isn't enabled in main OpenWrt repository
- there are probably only few users of this package, if any, and I'm not
a user anymore either
- there are other equal or better tools for the same purpose
Signed-off-by: Jonas Jelonek <[email protected]>
projects / feed / packages.git / log