Josef Schlehofer [Thu, 22 May 2025 12:23:10 +0000 (14:23 +0200)]
wifi-presence: bump PKG_RELEASE
It is necessary to bump PKG_RELEASE, because existing installation of
wifi-presence wouldnt know about this fix, so this ensures versioning
and as well that existing installation will require update with
this fix.
Fixes: 87175e4ca365e1bf5ac71e3dfb5186eb4c41f689 ("wifi-presence: fix reading mqttID from config")
Signed-off-by: Josef Schlehofer <[email protected]>
George Sapkin [Thu, 1 May 2025 21:55:00 +0000 (00:55 +0300)]
python-netifaces: drop package
Upstream project archived [1].
[1] https://github.com/al45tair/netifaces
Signed-off-by: George Sapkin <[email protected]>
Mieczyslaw Nalewaj [Sat, 10 May 2025 21:06:11 +0000 (23:06 +0200)]
xtables-addons: nf_conntrack_rtsp: change strlcpy to strscpy
Change deprecated strlcpy to strscpy
for kernel 6.12 compatibility.
Signed-off-by: Mieczyslaw Nalewaj <[email protected]>
Javier Marcet [Thu, 8 May 2025 16:48:30 +0000 (18:48 +0200)]
docker-compose: Update to version 2.36.0
Release notes:
https://github.com/docker/compose/releases/tag/v2.36.0
Signed-off-by: Javier Marcet <[email protected]>
Jianhui Zhao [Mon, 5 May 2025 13:32:12 +0000 (21:32 +0800)]
lua-cjson: add build VARIANT for Lua5.4
Signed-off-by: Jianhui Zhao <[email protected]>
Andy Jackson [Fri, 1 Mar 2024 13:38:07 +0000 (13:38 +0000)]
static-neighbor-reports: Update README.md
Define VAP on first use and fix some typos.
Maintainer: @blocktrron
Compile tested: n/a readme
Run tested: n/a readme
Description: Define VAP on first use and fix some typos.
Signed-off-by: Andy Jackson [email protected]
Signed-off-by: Andy Jackson <[email protected]>
Noah Meyerhans [Wed, 21 May 2025 19:06:57 +0000 (15:06 -0400)]
bind: bump to 9.20.9
CVE-2025-40775: Prevent assertion when processing TSIG algorithm. DNS messages
that included a Transaction Signature (TSIG) containing an invalid value in the
algorithm field caused named to crash with an assertion failure. This has been
fixed.
Signed-off-by: Noah Meyerhans <[email protected]>
Sergey Ponomarev [Mon, 1 Jan 2024 15:33:16 +0000 (17:33 +0200)]
emailrelay: Add support of build with MbedTLS
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Mon, 1 Jan 2024 15:31:05 +0000 (17:31 +0200)]
emailrelay: move config options to Config.in
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Wed, 30 Aug 2023 20:14:31 +0000 (23:14 +0300)]
emailrelay: update to v2.6
The emailrelay-filter-copy was removed and --filter=copy: can be used instead.
Minor improvement of description.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sun, 31 Jul 2022 15:09:41 +0000 (18:09 +0300)]
emailrelay: fix reference link
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Wed, 30 Aug 2023 18:56:27 +0000 (21:56 +0300)]
emailrelay: more options
--as-client mode.
dnsbl: to reject bad IPs.
spool_dir and delivery_dir: to set storage on USB disk.
filter: for SpamAssassin.
POP3 options.
Specify interface.
Use --forward-to-some by default.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Wed, 30 Aug 2023 17:00:45 +0000 (20:00 +0300)]
emailrelay: conf: TLS split cert and private key
Since v2.3.1 --server-tls-certificate and --client-tls-certificate may be comma separated list of privkey and fullchain so users don't need to merge the both files.
The privkey must be firts, the cert second.
Reflect this in config samples.
Alternatively instead of comma separated the emailrelay allows just pass two --server-tls-certificate options: one for a privkey and second time for a cert.
So the server_tls_certificate option may be a list. But instead to make it easier to configure from UCI let's add a separate option server-tls-key which is dedicated for a privkey.
Similarly, the client-tls-key is a private key part for the --client-tls-certificate
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sat, 23 Jul 2022 20:17:10 +0000 (23:17 +0300)]
emailrelay: conf: TLS options
The server_tls/client_tls option also requires certs.
server_tls_required
server_tls_certificate
server_tls_verify
client_tls_required
client_tls_certificate
client_tls_verify
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sun, 15 May 2022 09:17:39 +0000 (12:17 +0300)]
emailrelay: fix server_tls
The --server-tls is a boolean option and don't have an arg.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Mon, 16 May 2022 12:34:09 +0000 (15:34 +0300)]
emailrelay: early return if not enabled
Signed-off-by: Sergey Ponomarev <[email protected]>
Ivan Pavlov [Tue, 20 May 2025 21:22:40 +0000 (00:22 +0300)]
ovpn-dco: update to version 0.2.
20241216
Added compatibility with 6.12 kernel
Signed-off-by: Ivan Pavlov <[email protected]>
Peter van Dijk [Tue, 20 May 2025 11:05:41 +0000 (13:05 +0200)]
dnsdist: update to 1.9.10
fixes CVE-2025-30193
Signed-off-by: Peter van Dijk <[email protected]>
Sergey Ponomarev [Sun, 23 Jul 2023 19:07:30 +0000 (22:07 +0300)]
tor-hs: bump version to 0.1.0
Add me as a second maintainer.
Remove outdated README.md but put a link to a Wiki instead.
Use Onion Service instead of Hidden Service.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Wed, 7 Feb 2024 22:03:43 +0000 (00:03 +0200)]
tor-hs: keep /etc/tor config folder
Mark the /etc/tor folder to keep during sysupgrade.
The folder contains hidden_services folder with keys.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Wed, 7 Feb 2024 22:01:07 +0000 (00:01 +0200)]
tor-hs: put torrc_generated into in-memory folder /var/run/
On each tor-hs service restart it generates a config file /etc/tor/torrc_generated.
The /etc/ is stored on a disk and kills it and slow.
Instead create a dedicated tor service Runtime Dir in the temp /var/run/.
It will be accessible only to the tor user.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Wed, 7 Feb 2024 18:59:33 +0000 (20:59 +0200)]
tor-hs: create hs folder only if not exists
Previously the chown/chmod was performed each time even if the folder already existed.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Tue, 6 Feb 2024 22:15:52 +0000 (00:15 +0200)]
tor-hs: add validation
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sun, 4 Feb 2024 20:58:32 +0000 (22:58 +0200)]
tor-hs: Use config_get_bool for enable_hs
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sun, 4 Feb 2024 20:54:08 +0000 (22:54 +0200)]
tor-hs: reformat and cleanup
Remove unused description.
Quote variables.
Use hostname_file variable.
Remove unnecessary quotes around "common".
Use echo -n to truncate a TORRC_FILE.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sun, 23 Jul 2023 09:14:45 +0000 (12:14 +0300)]
tor-hs: cleanup tor-hs.conf
Replace boolean "true"/"false" with more frequently used 1/0.
This may avoid configuration mistakes which is critical for Tor.
The Luci app anyway will set it as 1/0.
Make sections named. This is not required but again safes from mistakes when executing uci command.
Uncomment sections but disable them by default.
Then in a Luci app a user can quickly figure out what to change.
Ideally a user may just enable the config and start using it.
In the nextcloud config use a single 80 instead of 80;80.
This simpler configuration is now supported.
Instead of "Hidden service" the Tor team now uses "Onion service".
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Fri, 4 Aug 2023 14:19:30 +0000 (17:19 +0300)]
tor-hs: tor-hs.init skip onion service when Name empty
The Name is used as a HS folder name and can't be empty.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Fri, 4 Aug 2023 08:23:44 +0000 (11:23 +0300)]
tor-hs: tor-hs.init remove unused clean_hs()
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sat, 15 Jul 2023 14:27:39 +0000 (17:27 +0300)]
tor-hs: tor-hs.init handle_hs_ports_conf split ports
Using substring instead of awk.
It changes behaviour when only one port is specified.
Previously:
value="80" => public="80" local=""
Now:
value="80" => public="80" local="80"
It simplifies configuration of one-to-one ports.
Signed-off-by: Sergey Ponomarev <[email protected]>
Sergey Ponomarev [Sat, 15 Jul 2023 14:16:38 +0000 (17:16 +0300)]
tor-hs: tor-hs.init handle_hs_ports_conf: remove unused name var
Signed-off-by: Sergey Ponomarev <[email protected]>
Fabrice Fontaine [Wed, 26 Feb 2025 20:31:06 +0000 (21:31 +0100)]
admin/syslog-ng: fix PKG_CPE_ID
oneidentity:syslog-ng is a better CPE ID than balabit:syslog-ng as
this CPE ID has the latest CVEs (whereas balabit:syslog-ng only
has a CVE from 2000):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:oneidentity:syslog-ng
Fixes: 5f07bb10948f6ebdf83470c3437c3072aab982e3 (syslog-ng: update to version 3.19.1)
Signed-off-by: Fabrice Fontaine <[email protected]>
John Audia [Wed, 8 Jan 2025 14:44:33 +0000 (09:44 -0500)]
fscrypt: add new package
Fscrypt is a high-level tool for the management of Linux native
filesystem encryption. fscrypt manages metadata, key generation, key
wrapping, PAM integration, and provides a uniform interface for creating
and modifying encrypted directories.
Upstream url: https://github.com/google/fscrypt/blob/master/README.md
Build system: x86/64
Build-tested: bcm27xx/bcm2712
Run-tested: bcm27xx/bcm2712
Signed-off-by: John Audia <[email protected]>
Wei-Ting Yang [Thu, 24 Apr 2025 11:45:39 +0000 (19:45 +0800)]
treewide: assign some PKG_CPE_IDs
Assign some PKG_CPE_IDs to enhance CVE coverage.
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=aardvark-dns
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=alpine_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=boringssl
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=ecdsautils
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=file_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=knot_resolver
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=libwrap
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=lsof_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=nfdump
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=nlnetlabs%20name_server_daemon
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=rclone
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=setserial
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=tang_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=tesseract_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=tmate-ssh-server
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=ttyd
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=uw-imap
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=v2ray-core
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=zstandard
Signed-off-by: Wei-Ting Yang <[email protected]>
Goetz Goerisch [Sat, 17 May 2025 07:20:43 +0000 (09:20 +0200)]
jool: update to 4.1.14
Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.14
Signed-off-by: Goetz Goerisch <[email protected]>
Jonathan Smith [Thu, 17 Apr 2025 17:24:14 +0000 (01:24 +0800)]
smartdns: Update to version 46.1
Change package source to github codeload.
Trim "Release" prefix from upstream versioning
to make it at least somewhat semantic compliant.
Add two additional folders and two default
config files based on upstream changes.
Signed-off-by: Jonathan Smith <[email protected]>
Wesley Gimenes [Sun, 18 May 2025 21:19:40 +0000 (18:19 -0300)]
netbird: update to 0.44.0
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.44.0
Signed-off-by: Wesley Gimenes <[email protected]>
Robert Marko [Sun, 18 May 2025 16:07:23 +0000 (18:07 +0200)]
semodule-utils: update to 3.8.1
Update to latest 3.8.1 version.
Signed-off-by: Robert Marko <[email protected]>
Robert Marko [Sun, 18 May 2025 16:06:32 +0000 (18:06 +0200)]
selinux-python: update to 3.8.1
Update to latest 3.8.1 version and drop upstreamed patch[1].
[1] https://github.com/SELinuxProject/selinux/commit/
1a29c28afbb96b1e47001dc3dde38c4b6bd9da22
Signed-off-by: Robert Marko <[email protected]>
Robert Marko [Sun, 18 May 2025 16:05:03 +0000 (18:05 +0200)]
python-semanage: update to 3.8.1
Update to latest 3.8.1 version and backport a patch to fix compilation[1].
[1] https://github.com/SELinuxProject/selinux/commit/
a339594da6f027aed5d66ec6798a3d732df235e4
Signed-off-by: Robert Marko <[email protected]>
Robert Marko [Sun, 18 May 2025 16:04:03 +0000 (18:04 +0200)]
python-selinux: update to 3.8.1
Bump to latest 3.8.1 version.
Import the required backported patches from libselinux.
Signed-off-by: Robert Marko <[email protected]>
John Audia [Sat, 17 May 2025 16:12:43 +0000 (12:12 -0400)]
lm-sensors: update to v3.6.2
Change source URL to reflect active mirror as old one has not been
updated in ~4 years and bump to latest upstream release.
% sensors --version
sensors version 3.6.2 with libsensors version 3.6.2
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
Dane Murphy [Sat, 17 May 2025 16:01:10 +0000 (09:01 -0700)]
iperf3: update to 3.19
Updates iperf3 to the latest upstream release, 3.19
Changelog: https://github.com/esnet/iperf/releases/tag/3.19
Signed-off-by: Dane Murphy <[email protected]>
Fabian Lipken [Fri, 16 May 2025 16:10:39 +0000 (18:10 +0200)]
fx: update to 36.0.2
Signed-off-by: Fabian Lipken <[email protected]>
Rosen Penev [Wed, 30 Apr 2025 23:00:48 +0000 (16:00 -0700)]
alpine: fix compilation with GCC14
Wrong function prototypes.
Signed-off-by: Rosen Penev <[email protected]>
Rosen Penev [Mon, 5 May 2025 01:18:49 +0000 (18:18 -0700)]
rtorrent: update to 0.15.3
Rebase patch.
Signed-off-by: Rosen Penev <[email protected]>
Rosen Penev [Sun, 4 May 2025 22:21:06 +0000 (15:21 -0700)]
libtorrent: update to 0.15.3
Add patch to allow rtorrent to link statically.
Aligned is no longer needed with C++17.
Signed-off-by: Rosen Penev <[email protected]>
Philip Prindeville [Sun, 18 May 2025 21:04:44 +0000 (15:04 -0600)]
bind: bump to 9.20.8
Signed-off-by: Philip Prindeville <[email protected]>
Robert Marko [Sun, 18 May 2025 15:08:47 +0000 (17:08 +0200)]
lua-openssl: bump to 0.10.0-0
Update lua-openssl to 0.10.0-0 fix compilation.
Signed-off-by: Robert Marko <[email protected]>
Kevin Locke [Sat, 30 Nov 2024 21:36:49 +0000 (14:36 -0700)]
strongswan: swanctl: Add support for send_certreq
Support the [send_certreq] connection configuration option to disable
offering trusted root CA certificates and reduce the size of the initial
IKE packets.
This work is based on a patch by @aleks-mariusz in
https://forum.openwrt.org/t/confusion-regarding-setting-up-ikev2-vpn-service-with-strongswan-using-ipsec-and-swanctl/169587/9
[send_certreq]: https://docs.strongswan.org/docs/latest/swanctl/swanctlConf.html#_connections
Signed-off-by: Kevin Locke <[email protected]>
Thlv Alivs [Sun, 18 May 2025 04:40:32 +0000 (12:40 +0800)]
zabbix: update to 7.0.12
also fix build error
Signed-off-by: Thlv Alivs <[email protected]>
Robert Marko [Sun, 18 May 2025 11:44:33 +0000 (13:44 +0200)]
strongswan: mark UCI plugin as broken
UCI plugin in strongswan has been broken for years, and now its causing
strongswan to fail compilation.
So, instead of the whole strongswan package to be failing and missing from
feeds simply make UCI plug depend on @BROKEN.
Signed-off-by: Robert Marko <[email protected]>
Matthew Cather [Tue, 13 May 2025 18:07:16 +0000 (13:07 -0500)]
tcp_wrappers: update patches for gcc14
The portable way is to use `socklen_t`. This fixes both glibc and
musl based builds.
Signed-off-by: Matthew Cather <[email protected]>
Eric Fahlgren [Mon, 12 May 2025 18:37:23 +0000 (11:37 -0700)]
owut: update to 2025.05.12
Bug fixes:
efahl/owut@
8353c4e9e255 argparse: add a file path parser type
efahl/owut@
724c990d6cc0 owut: avoid redirects on upstream queries
Signed-off-by: Eric Fahlgren <[email protected]>
Michael Heimpold [Tue, 13 May 2025 05:33:11 +0000 (07:33 +0200)]
php8: adapt test.sh for upcoming opkg -> apk transition
We used to rely on opkg to install the CLI tool for testing
PHP modules, but when opkg is not available anymore, we have to
use apk. The (simple) switch logic assumes, that only one
of both package manager tools is installed.
Signed-off-by: Michael Heimpold <[email protected]>
Michael Heimpold [Fri, 9 May 2025 17:15:07 +0000 (19:15 +0200)]
php8: update to 8.4.7
Upstream changelog:
https://www.php.net/ChangeLog-8.php#8.4.7
Signed-off-by: Michael Heimpold <[email protected]>
Tianling Shen [Sat, 17 May 2025 13:41:34 +0000 (21:41 +0800)]
cloudflared: Update to 2025.5.0
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Sat, 17 May 2025 13:39:00 +0000 (21:39 +0800)]
dnsproxy: Update to 0.75.5
Add sysctl conf to increase UDP send/receive buffers for QUIC-GO.
Same as
a920f9ec9caf ("adguardhome: increase UDP send/receive buffers").
Signed-off-by: Tianling Shen <[email protected]>
Clair-Loup Sergent [Wed, 14 May 2025 20:08:11 +0000 (22:08 +0200)]
wifi-presence: fix reading mqttID from config
Typo error in mqttID config value
Signed-off-by: Clair-Loup Sergent <[email protected]>
Matthias Schiffer [Mon, 12 May 2025 16:42:41 +0000 (18:42 +0200)]
perl: do not set LD_LIBRARY_PATH for cross compile
We don't want to set LD_LIBRARY_PATH to a directory filled with target
libraries when running a host perl. When the host and target
architecture are the same, some libraries will be loaded from this
path, resulting in the build to break because of glibc/musl mismatch.
Reported-by: John Audia <[email protected]>
Fixes: e7b5a35e5caa ("perl: drop 110-always_use_miniperl.patch")
Signed-off-by: Matthias Schiffer <[email protected]>
Fabian Lipken [Tue, 13 May 2025 08:22:02 +0000 (10:22 +0200)]
fx: update to 36.0.1
Signed-off-by: Fabian Lipken <[email protected]>
Florian Eckert [Wed, 23 Apr 2025 10:42:18 +0000 (12:42 +0200)]
xtables-addons: remove not needed iptables install dependency for RTSP helpers
The RTSP conntrack and nat does not dependent on iptables, but only on
nf_conntrack and nf_nat. The RTSP conntrack module is used as a helper in
firewall4 [1]. Previously, it was not possible to install RTSP kernel module
without also installing the not needed iptables modules. However, as firewall4
is based on nftables and not on iptables, this dependency is not necessary.
[1] https://github.com/openwrt/firewall4/blob/master/root/usr/share/firewall4/helpers#L89
Signed-off-by: Florian Eckert <[email protected]>
Florian Eckert [Thu, 24 Apr 2025 06:56:19 +0000 (08:56 +0200)]
modemmanager: backport fixes for version 1.24.0
The following commits were added shortly after the release of Modemmanager
version '1.24.0'.
Patch: 0002-modem-helpers-cinterion-allow-spaces-in-SXRAT-test-r.patch
Backport: https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/commit/
6b6997362b5530708725c16c80ef36cd21609f20
Issue: https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/issues/974
Patch: 0003-modem-helpers-fix-checking-of-CDMA-EVDO-access-techn.patch
Backport: https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/commit/
9e205f47847ab9ef5887b79c077ef8468d769af0
Issue: no
Patch: 0004-iface-modem-voice-recheck-call-state-polling-when-ca.patch
Backport: https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/commit/
92e666e1c92c205e896552604e717d5b39528ae3
Issue: no
Signed-off-by: Florian Eckert <[email protected]>
Wesley Gimenes [Tue, 13 May 2025 14:23:02 +0000 (11:23 -0300)]
netbird: update to 0.43.3
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.43.3
Signed-off-by: Wesley Gimenes <[email protected]>
Andris PE [Tue, 13 May 2025 17:46:15 +0000 (17:46 +0000)]
net/bcp38: Add cgnat shared space to bcp38 list
Add CG-NAT address space to non-routable list
Mmake dhcp filter stricter
Signed-off-by: Andris PE <[email protected]>
Til Kaiser [Fri, 9 May 2025 08:43:30 +0000 (10:43 +0200)]
mstflint: update to 4.32.0
This commit updates the mstflint package to
the latest 4.32.0 release.
It also includes a patch to fix a musl build error that
has been merged into the upstream development branch [1],
but is not yet part of any official release.
Obsolete patches have been removed,
as they are now included in this version.
Additionally, three new binaries introduced
in 4.32.0 have been added to the package.
[1] https://github.com/Mellanox/mstflint/pull/1239
Signed-off-by: Til Kaiser <[email protected]>
Alexandru Ardelean [Sun, 11 May 2025 04:45:00 +0000 (07:45 +0300)]
numpy: bump to version 2.2.5
Also needing to treat 'incompatible-pointer-types' as warnings.
Signed-off-by: Alexandru Ardelean <[email protected]>
Alexandru Ardelean [Sun, 11 May 2025 04:44:27 +0000 (07:44 +0300)]
django-restframework: bump to version 3.16.0
Signed-off-by: Alexandru Ardelean <[email protected]>
Alexandru Ardelean [Sun, 11 May 2025 04:42:48 +0000 (07:42 +0300)]
python-evdev: bump to version 1.9.2
Signed-off-by: Alexandru Ardelean <[email protected]>
Alexandru Ardelean [Sun, 11 May 2025 04:40:14 +0000 (07:40 +0300)]
python-lxml: bump to version 5.4.0
Signed-off-by: Alexandru Ardelean <[email protected]>
Alexandru Ardelean [Sun, 11 May 2025 04:39:15 +0000 (07:39 +0300)]
pytz: bump to version 2025.2
Signed-off-by: Alexandru Ardelean <[email protected]>
Nikolay Manev [Sun, 11 May 2025 20:12:30 +0000 (23:12 +0300)]
adblock-fast: improve the processing of combined list
Signed-off-by: Nikolay Manev <[email protected]>
adblock-fast: modify gawk statement
Signed-off-by: Nikolay Manev <[email protected]>
Stan Grishin [Mon, 12 May 2025 01:55:03 +0000 (01:55 +0000)]
https-dns-proxy: update to 2025.05.11
* update to 2025.05.11 from upstream: https://github.com/aarond10/https_dns_proxy/commit/
a34e20d6e24df603427d91bac8f58c2d3a8aa0a6
* update default config with default value for procd_fw_src_interfaces
Signed-off-by: Stan Grishin <[email protected]>
Rosen Penev [Fri, 2 May 2025 23:04:46 +0000 (16:04 -0700)]
ffmpeg: add libatomic dependency
Some platforms lack builtin atomics and use libatomic. Add it.
Backport various patches to fix some warnings.
Signed-off-by: Rosen Penev <[email protected]>
Toke Høiland-Jørgensen [Mon, 12 May 2025 13:32:13 +0000 (15:32 +0200)]
acme-acmesh: Bump to v3.1.1
Signed-off-by: Toke Høiland-Jørgensen <[email protected]>
Alexandru Ardelean [Sat, 10 May 2025 19:34:27 +0000 (22:34 +0300)]
stress-ng: bump to version 0.19.00
For MIPS and PowerPC, we need to disable atomics.
Otherwise we get linker errors with them.
Signed-off-by: Alexandru Ardelean <[email protected]>
Tianling Shen [Mon, 12 May 2025 11:58:42 +0000 (19:58 +0800)]
yq: Update to 4.45.4
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Mon, 12 May 2025 11:57:52 +0000 (19:57 +0800)]
dnsproxy: Update to 0.75.4
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Mon, 12 May 2025 11:57:26 +0000 (19:57 +0800)]
btop: Update to 1.4.3
Signed-off-by: Tianling Shen <[email protected]>
Fabrice Fontaine [Wed, 26 Feb 2025 21:26:44 +0000 (22:26 +0100)]
libs/libuv: fix PKG_CPE_ID
libuv:libuv is a better CPE ID than libuv_project:libuv as this CPE ID
has the latest CVEs (whereas libuv_project:libuv only has a CVE from
2015):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:libuv:libuv
Fixes: f8ecbf529bad57970e4ff8f90484ba58d06b4a39 (libuv: update to 1.32.0)
Signed-off-by: Fabrice Fontaine <[email protected]>
Fabrice Fontaine [Wed, 26 Feb 2025 18:40:36 +0000 (19:40 +0100)]
lang/tcl: fix PKG_CPE_ID
tcl:tcl is a better CPE ID than tcl_tk:tcl_tk as this CPE ID has the
latest CVE (whereas tcl_tk:tcl_tk only has CVEs up to 2008):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:tcl:tcl
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <[email protected]>
Fabrice Fontaine [Wed, 26 Feb 2025 20:19:30 +0000 (21:19 +0100)]
utils/logrotate: fix PKG_CPE_ID
logrotate_project:logrotate is a better CPE ID than gentoo:logrotate as
this CPE ID has the latest CVE (whereas gentoo:logrotate only has CVEs
up to 2011):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:logrotate_project:logrotate
Fixes: 299e5b0a9bce19d6e96cb9ff217028b36ee2dd36 (treewide: add PKG_CPE_ID for better cvescanner coverage)
Signed-off-by: Fabrice Fontaine <[email protected]>
Sander Schutten [Mon, 13 Jan 2025 19:40:36 +0000 (19:40 +0000)]
wiki: openwrt naming fixes and contribution improvement
Signed-off-by: Sander Schutten <[email protected]>
Joel Low [Sat, 8 Feb 2025 08:23:01 +0000 (16:23 +0800)]
strongswan: preserve changed configuration files
After reinstalling the packages with the preserved configuration files
after a sysupgrade, the reinstalled package config files overwrite what
is on disk rather than being placed as conf-opkg. Defining these config
files will preserve them appropriately.
Signed-off-by: Joel Low <[email protected]>
Maxim Storchak [Wed, 7 May 2025 10:55:01 +0000 (13:55 +0300)]
smartmontools: update to 7.5
Signed-off-by: Maxim Storchak <[email protected]>
Peter van Dijk [Wed, 7 May 2025 12:23:30 +0000 (14:23 +0200)]
pdns: update to 4.9.5
Signed-off-by: Peter van Dijk <[email protected]>
Tan Zien [Thu, 1 May 2025 22:34:30 +0000 (06:34 +0800)]
open-vm-tools: update to 12.5.0
for detailed change log, please refer to:
https://github.com/vmware/open-vm-tools/blob/stable-12.5.0/open-vm-tools/ChangeLog
Signed-off-by: Tan Zien <[email protected]>
Marius Dinu [Sun, 11 May 2025 13:19:01 +0000 (16:19 +0300)]
tvheadend: update to 2024-11-12, new options, patch for bug #26422
Changes:
- update to git master 2024-11-12 (dev stalled since then)
- patch for OpenWrt bug #26422 / tvheadend bug #1786
- Options removed:
- imagecache = tvheadend doesn't support disabling it anymore
- Options added:
- detailed (but slow) memory utilization reporting
- Timeshift (default on)
- tsfile (currently bugged in tvheadend, commented out / always on)
- HDHomeRun server emulation (default on)
- Digital Devices DVB CI descrambling cards (default off)
- RegEx options cleaned up, PCRE2 is the new default.
- Some help text improved
Signed-off-by: Marius Dinu <[email protected]>
Nikolay Manev [Tue, 29 Apr 2025 20:34:11 +0000 (23:34 +0300)]
adblock-fast: Fixed non-printable characters and bump PKG_VERSION
Signed-off-by: Nikolay Manev <[email protected]>
Hannu Nyman [Sun, 11 May 2025 06:52:57 +0000 (09:52 +0300)]
libpng: Update to 1.6.48
Update libpng to version 1.6.48.
Signed-off-by: Hannu Nyman <[email protected]>
Hannu Nyman [Sun, 11 May 2025 06:26:03 +0000 (09:26 +0300)]
libpng: Revert "libpng: add symlink to debug library" as unnecessary
This reverts commit
5313dd9be from PR #25324 , related to #25323 and
https://github.com/openwrt/openwrt/pull/16899
The additional symlink libpng16.so -> libpng16d.so is now unnecessary as
OpenWrt main repo PR https://github.com/openwrt/openwrt/pull/18709
commit https://github.com/openwrt/openwrt/commit/
703e7d2d5b58e68528cb5fadfc1185bd3904b3d9
changed the cmake build type from 'Debug' to 'RelWithDebInfo', which
causes libpng .so to be compiled with the normal name libpng16.so
(instead of the debug-styled libpng16d.so).
Signed-off-by: Hannu Nyman <[email protected]>
John Audia [Fri, 11 Apr 2025 13:57:51 +0000 (09:57 -0400)]
nfs-kernel-server: update to v2.8.3
Update to v2.8.3
Removed upstreamed: 210-patch-for-broken-libnfsimapd-static-and-regex-plugins.patch
Added: 210-nfsdctl.c-add-missing-basename.patch
Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64
Signed-off-by: John Audia <[email protected]>
John Audia [Sun, 2 Mar 2025 10:15:55 +0000 (05:15 -0500)]
nfs-kernel-server: update to v2.8.2
Update to latest release and change URL to official upstream mirror.
Removed upstreamed patch: 130-musl-svcgssd-sysconf.patch
Added new patch to correct host build error as we do not build with
gss enabled anyway: 100-fix-host-build.patch
Build system: x86/64
Build-tested: bcm27xx/bcm2712
Run-tested: bcm27xx/bcm2712
Signed-off-by: John Audia <[email protected]>
Eric Luehrsen [Fri, 2 May 2025 03:39:37 +0000 (23:39 -0400)]
unbound: update to 1.23.0
Signed-off-by: Eric Luehrsen <[email protected]>
George Sapkin [Thu, 8 May 2025 12:24:18 +0000 (15:24 +0300)]
syncthing: add discovery and relay descriptions
Signed-off-by: George Sapkin <[email protected]>
George Sapkin [Tue, 6 May 2025 16:23:01 +0000 (19:23 +0300)]
syncthing: bump to 1.29.6
- chore(lib): expose model methods to obtain progress
- feat(gui): explanation to options enabled or disabled per folder type
- fix(gui): validate device ID in canonical form
- fix(config): remove discontinued primary STUN server
- fix(stun): better error handling
- chore(config): remove discontinued secondary STUN servers
- chore(fs): speed up case normalization
- build(deps): update dependencies
- feat(fs, config): add support for custom filesystem type construction
- build: replace underscore in Debian version
- chore(model): add metric for total number of conflicts
- fix(config): properly apply defaults when reading folder configuration
- fix(config): zero filesystemtype is "basic"
- build: push artifacts to Azure
- chore(config): resolve primary STUN servers via SRV record
- chore(fs): changes to allow Filesystem to be implemented externally
- fix(strings): differentiate setup(n) and set(v) up
- fix(gui): mark unseen disconnected devices as inactive
- fix(syncthing): use separate lock file instead of locking the
certificate
- feat(api, gui): allow authentication bypass for metrics
- chore: add missing copyright in new files from infra branch
- fix(osutil): give threads same I/O priority on Linux
- chore(syncthing): remove support for TLS 1.2 sync connections
- chore(gui): update dependency copyrights, add script for periodic
maintenance
- chore(api): log X-Forwarded-For
- feat(config): add option for audit file
- chore(gui): use go list --deps for dependency list
- fix(strelaysrv): make the session limiter session-dependent
Changelog: https://github.com/syncthing/syncthing/compare/v1.29.5...v1.29.6
Signed-off-by: George Sapkin <[email protected]>
Tianling Shen [Fri, 9 May 2025 08:29:31 +0000 (16:29 +0800)]
yq: Update to 4.45.3
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Fri, 9 May 2025 08:17:27 +0000 (16:17 +0800)]
cloudflared: Update to 2025.4.2
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Fri, 9 May 2025 08:17:19 +0000 (16:17 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Fri, 9 May 2025 08:14:36 +0000 (16:14 +0800)]
v2ray-core: Update to 5.31.0
Signed-off-by: Tianling Shen <[email protected]>
Tianling Shen [Fri, 9 May 2025 08:13:45 +0000 (16:13 +0800)]
xray-core: Update to 25.4.30
Signed-off-by: Tianling Shen <[email protected]>
projects / feed / packages.git / log