W. Michael Petullo [Fri, 30 May 2025 13:42:52 +0000 (08:42 -0500)]
fuse-overlayfs: update to 1.15
Upstream list of changes is available at
https://github.com/containers/fuse-overlayfs/releases/tag/v1.15.
Signed-off-by: W. Michael Petullo <redacted>
W. Michael Petullo [Sat, 31 May 2025 03:01:42 +0000 (22:01 -0500)]
libexif: update 0.6.25
Upstream list of changes is available at
https://github.com/libexif/libexif/releases/tag/v0.6.25.
Signed-off-by: W. Michael Petullo <redacted>
W. Michael Petullo [Sat, 31 May 2025 02:12:36 +0000 (21:12 -0500)]
hwloc: update to 2.12.1
Upstream list of changes is available at
https://github.com/open-mpi/hwloc/blob/master/NEWS.
Signed-off-by: W. Michael Petullo <redacted>
W. Michael Petullo [Sat, 31 May 2025 03:02:53 +0000 (22:02 -0500)]
libgcrypt: update to 1.11.1
Upstream list of changes is available at
https://dev.gnupg.org/source/libgcrypt/browse/master/NEWS.
Signed-off-by: W. Michael Petullo <redacted>
W. Michael Petullo [Sat, 31 May 2025 13:04:55 +0000 (08:04 -0500)]
vips: update to 8.16.1
Upstream list of changes is available at
https://github.com/libvips/libvips/releases/tag/v8.16.1.
Signed-off-by: W. Michael Petullo <redacted>
Khachatryan Karen [Tue, 27 May 2025 18:38:09 +0000 (21:38 +0300)]
antiblock: Update to 2.1.2r2
1) Added the ability to disable routes without deleting them.
Signed-off-by: Khachatryan Karen <redacted>
George Sapkin [Mon, 26 May 2025 11:42:16 +0000 (14:42 +0300)]
yt-dlp: bump to 2025.05.22
Changelog: https://github.com/yt-dlp/yt-dlp/releases/tag/2025.05.22
Signed-off-by: George Sapkin <redacted>
Jens Wagner [Tue, 27 May 2025 11:48:37 +0000 (13:48 +0200)]
mbpoll: Modbus command line interface
mbpoll is a command line interface to Modbus RTU & TCP,
it is based on libmodbus
Signed-off-by: Jens Wagner <redacted>
Brian 'redbeard' Harrington [Wed, 9 Apr 2025 22:00:42 +0000 (15:00 -0700)]
net/radius-mac: add new package
This introduces the package `radius-mac` to OpenWrt, documented here:
https://anton.lindstrom.io/radius-mac/
`radius-mac` is a minimal RADIUS server focusing solely on the use case
of MAC address authentication for assigning VLANs to an 802.1x device
Co-authored-by: Josef Schlehofer <redacted>
Signed-off-by: Brian 'redbeard' Harrington <redacted>
Tomasz Maciej Nowak [Wed, 28 May 2025 13:38:12 +0000 (15:38 +0200)]
python-bcrypt: bump version to 4.1.3
Bumps pyo3 version to 21, which in result fixes copmilation on
platforms without 64-bit atomics.
Upstream-issue: https://github.com/pyca/bcrypt/issues/731
Link: https://github.com/pyca/bcrypt/compare/4.1.2...4.1.3#commits_bucket
Signed-off-by: Tomasz Maciej Nowak <redacted>
Dirk Brenken [Sat, 31 May 2025 21:06:33 +0000 (23:06 +0200)]
adblock: update 4.4.2-2
* sanitize the json reporting output
Signed-off-by: Dirk Brenken <redacted>
Dirk Brenken [Sat, 31 May 2025 20:09:28 +0000 (22:09 +0200)]
banIP: update 1.5.6-3
* add json reporting cache
* fixed the fetchcmd autodetection
* sanitize json reporting output
* small fixes and improvements
Signed-off-by: Dirk Brenken <redacted>
Jonas Jelonek [Fri, 30 May 2025 20:43:13 +0000 (20:43 +0000)]
eza: update to 0.21.4
[release notes]
0.21.1: https://github.com/eza-community/eza/releases/tag/v0.21.1
0.21.2: https://github.com/eza-community/eza/releases/tag/v0.21.2
0.21.3: https://github.com/eza-community/eza/releases/tag/v0.21.3
0.21.4: https://github.com/eza-community/eza/releases/tag/v0.21.4
Signed-off-by: Jonas Jelonek <redacted>
S. Brusch [Sun, 13 Apr 2025 09:28:38 +0000 (09:28 +0000)]
crowdsec-firewall-bouncer: update to 0.0.33
Description:
updated to new upstream release version 0.0.33
Maintainer: Kerma GĂ©rald <redacted>
Run tested: mediatek/filogic, BPI-R3, Openwrt 24.10.1
Signed-off-by: S. Brusch <redacted>
Dirk Brenken [Fri, 30 May 2025 16:38:17 +0000 (18:38 +0200)]
adblock: update 4.4.2-1
* added a new "divested" feed, see https://divested.dev/pages/dnsbl
* added a new nsfw category of the hagezi feed
* added the missing custom feed file handling in the backend
* added a geoIP map with all blocked domains (plus the homeIP) in a
modal popup window on the Reporting tab in LuCI
* fixed the fetchcmd autodetection
* small code fixes and improvements
* update the readme, added a new "Best practise" section
* update different LuCI components (separate commit)
Signed-off-by: Dirk Brenken <redacted>
Packet Please [Wed, 28 May 2025 15:50:17 +0000 (17:50 +0200)]
poemgr: update to latest Git HEAD
Signed-off-by: Packet Please <redacted>
Tianling Shen [Wed, 28 May 2025 09:18:50 +0000 (17:18 +0800)]
alist: Update to 3.45.0
Signed-off-by: Tianling Shen <redacted>
Tianling Shen [Wed, 28 May 2025 09:18:41 +0000 (17:18 +0800)]
rclone: Update to 1.69.3
Signed-off-by: Tianling Shen <redacted>
Tianling Shen [Wed, 28 May 2025 09:18:22 +0000 (17:18 +0800)]
v2ray-core: Update to 5.32.0
Signed-off-by: Tianling Shen <redacted>
Tianling Shen [Wed, 28 May 2025 09:18:16 +0000 (17:18 +0800)]
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <redacted>
Ryan Press [Tue, 20 May 2025 15:04:02 +0000 (08:04 -0700)]
modemmanager: add sourcefilter option support
This make source based IPv6 routing option available for
modemmanager when using modem SLAAC.
Signed-off-by: Ryan Press <redacted>
Philip Prindeville [Mon, 26 May 2025 03:20:25 +0000 (21:20 -0600)]
named: /var/run/named isn't being created with correct permissions
It needs to be group writable or session.key can't be written once
named drops privileges.
Signed-off-by: Philip Prindeville <redacted>
Jens Wagner [Tue, 20 May 2025 07:45:43 +0000 (09:45 +0200)]
perl-io-async: Perl Module IO::Async
Asynchronous event-driven programming in Perl
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:45:17 +0000 (09:45 +0200)]
perl-future-asyncawait: Perl Module Future::AsyncAwait
Povides a deferred subroutine syntax for futures in Perl
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:44:49 +0000 (09:44 +0200)]
perl-future: Perl Module Future
Perl Future objects represent an operation awaiting completion
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:44:23 +0000 (09:44 +0200)]
perl-io-socket-ssl: Perl Module IO::Socket::SSL
SSL sockets with IO::Socket interface in Perl
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:43:54 +0000 (09:43 +0200)]
perl-net-ssleay: Perl Module Net::SSLeay
Perl bindings for OpenSSL and LibreSSL
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:42:53 +0000 (09:42 +0200)]
perl-file-sharedir: Perl Module File::ShareDir
Perl module to locate per-dist and per-module shared files
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:42:09 +0000 (09:42 +0200)]
perl-class-inspector: Perl Module Class::Inspector
Get information about a Perl class and its structure
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:41:06 +0000 (09:41 +0200)]
perl-struct-dumb: Perl Module Struct::Dumb
Perl module to make simple lightweight record-like structures
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:27:23 +0000 (09:27 +0200)]
perl-xs-parse-sublike: Perl Module XS::Parse::Sublike
Perl XS functions to assist in parsing sub-like syntax
Signed-off-by: Jens Wagner <redacted>
Jens Wagner [Tue, 20 May 2025 07:26:33 +0000 (09:26 +0200)]
perl-xs-parse-keyword: Perl Module XS::Parse::Keyword
Perl XS functions to assist in parsing keyword syntax
Signed-off-by: Jens Wagner <redacted>
Liangbin Lian [Tue, 16 Apr 2024 03:24:31 +0000 (11:24 +0800)]
ddns-scripts: fix parsing of parameters for cloudflare.com
There is an obvious bug here:
if we want to update example.com.example.com in zone example.com,
so `domain=example.com@example.com`, after parsing,
the `__HOST` will be `example.com`, not expected `example.com.example.com`.
Signed-off-by: Liangbin Lian <redacted>
Robert Marko [Mon, 26 May 2025 17:06:33 +0000 (19:06 +0200)]
usb-serial-xr_usb_serial_common: remove package
Now that we have packaged the upstream driver[1] and only board[2] that
includes it by default has been switched to it, remove this out-of-tree
driver that is broken on 6.12 anyway.
[1] https://github.com/openwrt/openwrt/commit/
d39d626b23756fe574ad46e093f5a796b1861b17
[2] https://github.com/openwrt/openwrt/commit/
200a31b6f5ec7a46e5556b55d4e45a74fb5d6167
Signed-off-by: Robert Marko <redacted>
Mieczyslaw Nalewaj [Thu, 15 May 2025 13:03:09 +0000 (15:03 +0200)]
xtables-addons: update call BuildTemplate description
The BuildTemplate call has five arguments
(since openwrt/openwrt@
f12f407),
so the description is corrected
Signed-off-by: Mieczyslaw Nalewaj <redacted>
Mieczyslaw Nalewaj [Sun, 18 May 2025 16:14:06 +0000 (18:14 +0200)]
xtables-addons: set ipp2p depends on kmod-lib-textsearch
For version 3.27 CONFIG_TEXTSEARCH_BM checks is enabled,
so ipp2p is set depends on kmod-lib-textsearch.
If ipp2p (and kmod-lib-textsearch) is disabled the error
"error CONFIG_TEXTSEARCH=y/m is required.." is displayed.
This is because all modules are always compiled.
So to make compilation possible with ipp2p disabled, the message
was disabled.
Signed-off-by: Mieczyslaw Nalewaj <redacted>
Tianling Shen [Sun, 25 May 2025 10:41:17 +0000 (18:41 +0800)]
openthread-br: fix build on GCC 14
This patch is taken from openwrt/openwrt@
a41747ac8e82 ("mbedtls: fix
build on GCC 14").
Fixes: #26570
Signed-off-by: Tianling Shen <redacted>
Fabian Lipken [Mon, 26 May 2025 05:36:43 +0000 (07:36 +0200)]
fx: update to 36.0.3
This commit updates fx to version 36.0.3
For more details, please refer to release details:
https://github.com/antonmedv/fx/releases/tag/36.0.3
Signed-off-by: Fabian Lipken <redacted>
Jianhui Zhao [Mon, 26 May 2025 01:24:40 +0000 (09:24 +0800)]
rtty: update to 8.1.5
changelog: https://github.com/zhaojh329/rtty/releases/tag/v8.1.5
Signed-off-by: Jianhui Zhao <redacted>
Wesley Gimenes [Thu, 22 May 2025 12:45:02 +0000 (09:45 -0300)]
netbird: update to 0.45.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.45.1
Signed-off-by: Wesley Gimenes <redacted>
Timothy M. Ace [Tue, 12 Dec 2023 01:53:32 +0000 (20:53 -0500)]
perlbase-extutils: Adding required perlbase-version dependency
Attempting to use ExtUtils::MakeMaker from perlbase-extutils results in an
error of "Can't locate ExtUtils/MakeMaker/version/vpp.pm in @INC".
Installing perlbase-version fixes the error. Therefore we add
perlbase-version as a dependency of perlbase-extutils.
Signed-off-by: Timothy M. Ace <redacted>
Josef Schlehofer [Sun, 25 May 2025 10:49:40 +0000 (12:49 +0200)]
CI: move script into separate directory
This change follows the structure of GitHub workflow
folders from the main OpenWrt repository, where scripts
are in separate folder.
Signed-off-by: Josef Schlehofer <redacted>
Josef Schlehofer [Sun, 25 May 2025 10:39:58 +0000 (12:39 +0200)]
CI: formal check: use shared workflow in actions-shared-workflows
Lets switch to shared workflow in actions-shared-workflows instead of having
this separate file here. It will track and use the latest changes to avoid
being outdated.
Signed-off-by: Josef Schlehofer <redacted>
Jianhui Zhao [Thu, 22 May 2025 13:42:02 +0000 (21:42 +0800)]
lua-eco: update to 3.10.0
* A new module `uci` added since this version.
* Fix an installation issue: Existing soft links should be preserved when installing libeco.
Signed-off-by: Jianhui Zhao <redacted>
Javier Marcet [Fri, 23 May 2025 17:24:14 +0000 (19:24 +0200)]
docker-compose: Update to version 2.36.2
Release notes:
https://github.com/docker/compose/releases/tag/v2.36.2
Signed-off-by: Javier Marcet <redacted>
Javier Marcet [Thu, 22 May 2025 16:24:02 +0000 (18:24 +0200)]
docker-compose: Update to version 2.36.1
Release notes:
https://github.com/docker/compose/releases/tag/v2.36.1
Signed-off-by: Javier Marcet <redacted>
Chris Swan [Thu, 22 May 2025 10:50:55 +0000 (11:50 +0100)]
cjson: update to 1.7.18
This is a bugfix release
Full release notes available at:
https://github.com/DaveGamble/cJSON/releases/tag/v1.7.18
Signed-off-by: Chris Swan <redacted>
Luca Barbato [Sat, 24 May 2025 18:31:54 +0000 (18:31 +0000)]
cargo-c: update to 0.10.13
Signed-off-by: Luca Barbato <redacted>
Luca Barbato [Sat, 24 May 2025 18:10:25 +0000 (18:10 +0000)]
rust: update to 1.87.0
Simplify the build invocation and reorder the target list to avoid
failures due the build process changes.
Signed-off-by: Luca Barbato <redacted>
Nikolay Manev [Wed, 14 May 2025 19:10:27 +0000 (22:10 +0300)]
pv: update to 1.9.31
* update to 1.9.31 from upstream: https://codeberg.org/ivarch/pv
* license changed to GPL-3.0-or-later and directory doc/COPYING -> docs/COPYING
* added test.sh file for ci testing
Signed-off-by: Nikolay Manev <redacted>
Russell Senior [Thu, 22 May 2025 10:49:37 +0000 (03:49 -0700)]
xtables-addons: fix build for kernel 6.12
missing prototypes for three functions generated build errors.
error: no previous prototype for 'foo' [-Werror=missing-prototypes]
extensions/LUA/prot_buf_helpers.c: get_header_size
extensions/LUA/prot_buf_tftp.c: tftp_get_field_changes
extensions/LUA/prot_buf_dynamic.c: free_dynamic_prot_buf
Signed-off-by: Russell Senior <redacted>
Sandro Jäckel [Thu, 22 May 2025 16:14:31 +0000 (18:14 +0200)]
tailscale: update to 1.84.0
Signed-off-by: Sandro Jäckel <redacted>
Jan Kardell [Thu, 22 May 2025 12:05:55 +0000 (14:05 +0200)]
gammu: Fix misspelled licence variable
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 13:41:18 +0000 (15:41 +0200)]
luaexpat: Add license
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 13:35:31 +0000 (15:35 +0200)]
luasql: Fix license file
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 12:58:11 +0000 (14:58 +0200)]
freetype: Fix license file
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 12:44:13 +0000 (14:44 +0200)]
libudev-zero: Fix license
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 12:31:13 +0000 (14:31 +0200)]
tcp_wrappers: Fix license file
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 09:48:53 +0000 (11:48 +0200)]
canutils: Fix license file
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 09:43:48 +0000 (11:43 +0200)]
fuse3: Fix license file
Signed-off-by: Jan Kardell <redacted>
Jan Kardell [Tue, 20 May 2025 09:36:04 +0000 (11:36 +0200)]
picocom: Fix license file
Signed-off-by: Jan Kardell <redacted>
Josef Schlehofer [Thu, 22 May 2025 12:23:10 +0000 (14:23 +0200)]
wifi-presence: bump PKG_RELEASE
It is necessary to bump PKG_RELEASE, because existing installation of
wifi-presence wouldnt know about this fix, so this ensures versioning
and as well that existing installation will require update with
this fix.
Fixes: 87175e4ca365e1bf5ac71e3dfb5186eb4c41f689 ("wifi-presence: fix reading mqttID from config")
Signed-off-by: Josef Schlehofer <redacted>
George Sapkin [Thu, 1 May 2025 21:55:00 +0000 (00:55 +0300)]
python-netifaces: drop package
Upstream project archived [1].
[1] https://github.com/al45tair/netifaces
Signed-off-by: George Sapkin <redacted>
Mieczyslaw Nalewaj [Sat, 10 May 2025 21:06:11 +0000 (23:06 +0200)]
xtables-addons: nf_conntrack_rtsp: change strlcpy to strscpy
Change deprecated strlcpy to strscpy
for kernel 6.12 compatibility.
Signed-off-by: Mieczyslaw Nalewaj <redacted>
Javier Marcet [Thu, 8 May 2025 16:48:30 +0000 (18:48 +0200)]
docker-compose: Update to version 2.36.0
Release notes:
https://github.com/docker/compose/releases/tag/v2.36.0
Signed-off-by: Javier Marcet <redacted>
Jianhui Zhao [Mon, 5 May 2025 13:32:12 +0000 (21:32 +0800)]
lua-cjson: add build VARIANT for Lua5.4
Signed-off-by: Jianhui Zhao <redacted>
Andy Jackson [Fri, 1 Mar 2024 13:38:07 +0000 (13:38 +0000)]
static-neighbor-reports: Update README.md
Define VAP on first use and fix some typos.
Maintainer: @blocktrron
Compile tested: n/a readme
Run tested: n/a readme
Description: Define VAP on first use and fix some typos.
Signed-off-by: Andy Jackson 33336318+andybjackson@users.noreply.github.com
Signed-off-by: Andy Jackson <redacted>
Noah Meyerhans [Wed, 21 May 2025 19:06:57 +0000 (15:06 -0400)]
bind: bump to 9.20.9
CVE-2025-40775: Prevent assertion when processing TSIG algorithm. DNS messages
that included a Transaction Signature (TSIG) containing an invalid value in the
algorithm field caused named to crash with an assertion failure. This has been
fixed.
Signed-off-by: Noah Meyerhans <redacted>
Sergey Ponomarev [Mon, 1 Jan 2024 15:33:16 +0000 (17:33 +0200)]
emailrelay: Add support of build with MbedTLS
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Mon, 1 Jan 2024 15:31:05 +0000 (17:31 +0200)]
emailrelay: move config options to Config.in
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Wed, 30 Aug 2023 20:14:31 +0000 (23:14 +0300)]
emailrelay: update to v2.6
The emailrelay-filter-copy was removed and --filter=copy: can be used instead.
Minor improvement of description.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sun, 31 Jul 2022 15:09:41 +0000 (18:09 +0300)]
emailrelay: fix reference link
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Wed, 30 Aug 2023 18:56:27 +0000 (21:56 +0300)]
emailrelay: more options
--as-client mode.
dnsbl: to reject bad IPs.
spool_dir and delivery_dir: to set storage on USB disk.
filter: for SpamAssassin.
POP3 options.
Specify interface.
Use --forward-to-some by default.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Wed, 30 Aug 2023 17:00:45 +0000 (20:00 +0300)]
emailrelay: conf: TLS split cert and private key
Since v2.3.1 --server-tls-certificate and --client-tls-certificate may be comma separated list of privkey and fullchain so users don't need to merge the both files.
The privkey must be firts, the cert second.
Reflect this in config samples.
Alternatively instead of comma separated the emailrelay allows just pass two --server-tls-certificate options: one for a privkey and second time for a cert.
So the server_tls_certificate option may be a list. But instead to make it easier to configure from UCI let's add a separate option server-tls-key which is dedicated for a privkey.
Similarly, the client-tls-key is a private key part for the --client-tls-certificate
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sat, 23 Jul 2022 20:17:10 +0000 (23:17 +0300)]
emailrelay: conf: TLS options
The server_tls/client_tls option also requires certs.
server_tls_required
server_tls_certificate
server_tls_verify
client_tls_required
client_tls_certificate
client_tls_verify
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sun, 15 May 2022 09:17:39 +0000 (12:17 +0300)]
emailrelay: fix server_tls
The --server-tls is a boolean option and don't have an arg.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Mon, 16 May 2022 12:34:09 +0000 (15:34 +0300)]
emailrelay: early return if not enabled
Signed-off-by: Sergey Ponomarev <redacted>
Ivan Pavlov [Tue, 20 May 2025 21:22:40 +0000 (00:22 +0300)]
ovpn-dco: update to version 0.2.
20241216
Added compatibility with 6.12 kernel
Signed-off-by: Ivan Pavlov <redacted>
Peter van Dijk [Tue, 20 May 2025 11:05:41 +0000 (13:05 +0200)]
dnsdist: update to 1.9.10
fixes CVE-2025-30193
Signed-off-by: Peter van Dijk <redacted>
Sergey Ponomarev [Sun, 23 Jul 2023 19:07:30 +0000 (22:07 +0300)]
tor-hs: bump version to 0.1.0
Add me as a second maintainer.
Remove outdated README.md but put a link to a Wiki instead.
Use Onion Service instead of Hidden Service.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Wed, 7 Feb 2024 22:03:43 +0000 (00:03 +0200)]
tor-hs: keep /etc/tor config folder
Mark the /etc/tor folder to keep during sysupgrade.
The folder contains hidden_services folder with keys.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Wed, 7 Feb 2024 22:01:07 +0000 (00:01 +0200)]
tor-hs: put torrc_generated into in-memory folder /var/run/
On each tor-hs service restart it generates a config file /etc/tor/torrc_generated.
The /etc/ is stored on a disk and kills it and slow.
Instead create a dedicated tor service Runtime Dir in the temp /var/run/.
It will be accessible only to the tor user.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Wed, 7 Feb 2024 18:59:33 +0000 (20:59 +0200)]
tor-hs: create hs folder only if not exists
Previously the chown/chmod was performed each time even if the folder already existed.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Tue, 6 Feb 2024 22:15:52 +0000 (00:15 +0200)]
tor-hs: add validation
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sun, 4 Feb 2024 20:58:32 +0000 (22:58 +0200)]
tor-hs: Use config_get_bool for enable_hs
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sun, 4 Feb 2024 20:54:08 +0000 (22:54 +0200)]
tor-hs: reformat and cleanup
Remove unused description.
Quote variables.
Use hostname_file variable.
Remove unnecessary quotes around "common".
Use echo -n to truncate a TORRC_FILE.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sun, 23 Jul 2023 09:14:45 +0000 (12:14 +0300)]
tor-hs: cleanup tor-hs.conf
Replace boolean "true"/"false" with more frequently used 1/0.
This may avoid configuration mistakes which is critical for Tor.
The Luci app anyway will set it as 1/0.
Make sections named. This is not required but again safes from mistakes when executing uci command.
Uncomment sections but disable them by default.
Then in a Luci app a user can quickly figure out what to change.
Ideally a user may just enable the config and start using it.
In the nextcloud config use a single 80 instead of 80;80.
This simpler configuration is now supported.
Instead of "Hidden service" the Tor team now uses "Onion service".
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Fri, 4 Aug 2023 14:19:30 +0000 (17:19 +0300)]
tor-hs: tor-hs.init skip onion service when Name empty
The Name is used as a HS folder name and can't be empty.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Fri, 4 Aug 2023 08:23:44 +0000 (11:23 +0300)]
tor-hs: tor-hs.init remove unused clean_hs()
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sat, 15 Jul 2023 14:27:39 +0000 (17:27 +0300)]
tor-hs: tor-hs.init handle_hs_ports_conf split ports
Using substring instead of awk.
It changes behaviour when only one port is specified.
Previously:
value="80" => public="80" local=""
Now:
value="80" => public="80" local="80"
It simplifies configuration of one-to-one ports.
Signed-off-by: Sergey Ponomarev <redacted>
Sergey Ponomarev [Sat, 15 Jul 2023 14:16:38 +0000 (17:16 +0300)]
tor-hs: tor-hs.init handle_hs_ports_conf: remove unused name var
Signed-off-by: Sergey Ponomarev <redacted>
Fabrice Fontaine [Wed, 26 Feb 2025 20:31:06 +0000 (21:31 +0100)]
admin/syslog-ng: fix PKG_CPE_ID
oneidentity:syslog-ng is a better CPE ID than balabit:syslog-ng as
this CPE ID has the latest CVEs (whereas balabit:syslog-ng only
has a CVE from 2000):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:oneidentity:syslog-ng
Fixes: 5f07bb10948f6ebdf83470c3437c3072aab982e3 (syslog-ng: update to version 3.19.1)
Signed-off-by: Fabrice Fontaine <redacted>
John Audia [Wed, 8 Jan 2025 14:44:33 +0000 (09:44 -0500)]
fscrypt: add new package
Fscrypt is a high-level tool for the management of Linux native
filesystem encryption. fscrypt manages metadata, key generation, key
wrapping, PAM integration, and provides a uniform interface for creating
and modifying encrypted directories.
Upstream url: https://github.com/google/fscrypt/blob/master/README.md
Build system: x86/64
Build-tested: bcm27xx/bcm2712
Run-tested: bcm27xx/bcm2712
Signed-off-by: John Audia <redacted>
Wei-Ting Yang [Thu, 24 Apr 2025 11:45:39 +0000 (19:45 +0800)]
treewide: assign some PKG_CPE_IDs
Assign some PKG_CPE_IDs to enhance CVE coverage.
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=aardvark-dns
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=alpine_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=boringssl
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=ecdsautils
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=file_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=knot_resolver
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=libwrap
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=lsof_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=nfdump
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=nlnetlabs%20name_server_daemon
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=rclone
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=setserial
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=tang_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=tesseract_project
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=tmate-ssh-server
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=ttyd
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=uw-imap
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=v2ray-core
https://nvd.nist.gov/products/cpe/search/results?namingFormat=2.3&keyword=zstandard
Signed-off-by: Wei-Ting Yang <redacted>
Goetz Goerisch [Sat, 17 May 2025 07:20:43 +0000 (09:20 +0200)]
jool: update to 4.1.14
Changelog: https://github.com/NICMx/Jool/releases/tag/v4.1.14
Signed-off-by: Goetz Goerisch <redacted>
Jonathan Smith [Thu, 17 Apr 2025 17:24:14 +0000 (01:24 +0800)]
smartdns: Update to version 46.1
Change package source to github codeload.
Trim "Release" prefix from upstream versioning
to make it at least somewhat semantic compliant.
Add two additional folders and two default
config files based on upstream changes.
Signed-off-by: Jonathan Smith <redacted>
Wesley Gimenes [Sun, 18 May 2025 21:19:40 +0000 (18:19 -0300)]
netbird: update to 0.44.0
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.44.0
Signed-off-by: Wesley Gimenes <redacted>
Robert Marko [Sun, 18 May 2025 16:07:23 +0000 (18:07 +0200)]
semodule-utils: update to 3.8.1
Update to latest 3.8.1 version.
Signed-off-by: Robert Marko <redacted>
Robert Marko [Sun, 18 May 2025 16:06:32 +0000 (18:06 +0200)]
selinux-python: update to 3.8.1
Update to latest 3.8.1 version and drop upstreamed patch[1].
[1] https://github.com/SELinuxProject/selinux/commit/
1a29c28afbb96b1e47001dc3dde38c4b6bd9da22
Signed-off-by: Robert Marko <redacted>
Robert Marko [Sun, 18 May 2025 16:05:03 +0000 (18:05 +0200)]
python-semanage: update to 3.8.1
Update to latest 3.8.1 version and backport a patch to fix compilation[1].
[1] https://github.com/SELinuxProject/selinux/commit/
a339594da6f027aed5d66ec6798a3d732df235e4
Signed-off-by: Robert Marko <redacted>
git.99rst.org / openwrt-packages.git / log