Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
22112 commits 8 branches 0 tags 65 MiB
Commit graph

22112 commits

This branch
This branch
All branches
Author SHA1 Message Date
Florian Eckert
1af5593568 docker-ce: make docker-ce firewall handling configurable 
Openwrt has a own firewall service called fw3, that supports firewall zones.
Docker can bypass the handling of the zone rules in openwrt via custom
tables. These are "always" processed before the openwrt firewall.
Which is prone to errors!

Since not everyone is aware that the firewall of openwrt will
not be passed. And this is a security problem because a mapped port is
visible on all interfaces and so also on the WAN side.
If the firewall handling in docker is switched off, then the port in
fw3 must be explicitly released and it cannot happen that the
port is accidentally exported to the outside world via the interfaces on
the WAN zone.

So all rules for the containers should and so must be made in fw3.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2020-11-19 14:20:02 +01:00
Florian Eckert
dc9d9d2202 docker-ce: add arguments call to uciadd and ucidel 
Up to now only the docker0 interface and bridge is created by default.
In order to create other interfaces and to integrate them into the
openwrt these functions can now be called with arguments.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2020-11-19 14:19:59 +01:00
Daniel Golle
58721b218d
postgresql: update to 13.1 
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-15 22:25:57 +00:00
Daniel Golle
1d57c600a4
inotify-tools: update to 3.20.11.0 
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-15 21:57:42 +00:00
Daniel Golle
283d264d74
libudev-zero: update to version 0.4.5 
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-15 21:20:33 +00:00
Daniel Golle
15462235c9
gpgme: update to version 1.15.0 
Also remove left-overs of unfinished packaging of the Python bindings.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-15 21:20:33 +00:00
Jeffery To
bd38850609 golang: Update to 1.15.5 
This includes security fixes for:
* CVE-2020-28362: panic during recursive division of very large numbers
* CVE-2020-28366: arbitrary code can be injected into cgo generated
  files
* CVE-2020-28367: improper validation of cgo flags can lead to remote
  code execution at build time

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
 2020-11-15 21:43:07 +02:00
Michael Heimpold
a561fe0d35
Merge pull request #13893 from nxhack/php_icu4c_681 
php7: fix for icu 68.1
 2020-11-13 22:27:37 +01:00
Hirokazu MORIKAWA
fc9fa48973 php7: fix for icu 68.1 
https://github.com/openwrt/packages/pull/13883
https://github.com/php/php-src/commit/8eaaabd

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2020-11-13 09:06:15 +09:00
Yousong Zhou
02b1187af2 xl2tpd: fix invoking xl2tpd-control 
Upstream commit 90884c62 ("xl2tpd-control refactoring") introduced in
1.3.16 changed command names

The l2tp protocol handler part was from @danvd in pull request
openwrt/packages#13866

Fixes f07319d6 ("xl2tpd: bump to version 1.3.16")

Ref: https://github.com/openwrt/packages/pull/13866
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
 2020-11-12 15:20:16 +08:00
Rosen Penev
a8d14109ec
Merge pull request #13875 from Hopbox/udpspeeder 
udpspeeder: Add new package udpspeeder to implement FEC for VPN over lossy links
 2020-11-11 22:21:20 -08:00
Dirk Brenken
2c1cc0b4a1
Merge pull request #13880 from jmarcet/banip-logd 
banip: removed logd check since logd dep has been dropped
 2020-11-11 21:13:59 +01:00
Rosen Penev
50a038ebe5
Merge pull request #13892 from commodo/python-updates1 
django,numpy,pytz: bump package versions
 2020-11-11 10:22:40 -08:00
Florian Eckert
4b2e33a7e0
Merge pull request #13881 from aaronjg/mwan3-owner-procd 
mwan3: fixup ipset and install errors
 2020-11-11 15:08:09 +01:00
Florian Eckert
3ca4fa7c8b
Merge pull request #13796 from G-M0N3Y-2503/docker-blocked-interfaces 
docker-ce: Added blocked_interfaces config option
 2020-11-11 14:25:54 +01:00
Daniel Golle
cb45a0d268 podman: set PKG_USE_MIPS16:=0 
podman fails to compile due to MIPS16 instructions somehow.
Disable use of MIPS16.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-11 11:05:26 +00:00
Daniel Golle
aed97243ee cni-plugins: set PKG_USE_MIPS16:=0 
cni-plugins fail to compile due to MIPS16 instructions somehow. Don't
use them.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-11 11:05:26 +00:00
Daniel Golle
b51b59fe90 cni: set PKG_USE_MIPS16:=0 
Compiling cni failes due to MIPS16 somehow. Disable it.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
 2020-11-11 11:05:26 +00:00
Alexandru Ardelean
3d2a1f97e1 python-pytz: bump to version 2020.4 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2020-11-11 11:11:27 +02:00
Alexandru Ardelean
6d33fb2885 numpy: bump to version 1.19.4 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2020-11-11 11:08:31 +02:00
Alexandru Ardelean
36f4a17827 django: bump to version 3.1.3 
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
 2020-11-11 11:08:31 +02:00
Gerard Ryan
fe48902bf0 docker-ce: blocked_interfaces release 
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
 2020-11-11 18:28:15 +10:00
Gerard Ryan
6be2d43e68 docker-ce: Added blocked_interfaces config option 
* blocked_interfaces blocks all packets to docker0 from the given
  interface. This is needed because all the iptables commands dockerd
  adds operate before any of the fw3 generated rules.

Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
 2020-11-11 18:28:15 +10:00
Gerard Ryan
93b13fafeb docker-ce: Refactored init script 
* Changed iptables commands to use long options
* Added `uci_quiet` in missed instances

Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
 2020-11-11 18:28:15 +10:00
Gerard Ryan
07c10ae46d docker-ce: Added mkdir for alt_config_file 
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
 2020-11-11 18:28:15 +10:00
Gerard Ryan
eb55c8b51a docker-ce: Made some shellcheck recommendations 
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
 2020-11-11 18:28:15 +10:00
Nishant Sharma
9db02bec15 udpspeeder: Add new package udpspeeder to implement Forward Error Correction (FEC) for UDP VPNs like OpenVPN 
Maintainer: @codemarauder
Compile tested: Yes
Run tested: x86_64 PCEngines APU

Description:

A Tunnel which Improves your Network Quality on a High-latency Lossy Link by using Forward Error Correction,for All Traffics(TCP/UDP/ICMP)
It does it by sending redundant packets and re-arranging them to account for packet loss over the link. It uses Reed–Solomon code.

Signed-off-by: Nishant Sharma <codemarauder@gmail.com>
 2020-11-11 13:32:48 +05:30
Rosen Penev
73396eb14c
Merge pull request #13792 from ynezz/upstream/cgi-io-improvements 
cgi-io: update to version 2020-10-27
 2020-11-10 22:45:05 -08:00
Rosen Penev
805f930a6b
Merge pull request #13790 from zhanhb/procps-ng-alternatives 
procps-ng: update alternatives
 2020-11-10 22:44:26 -08:00
Rosen Penev
727c01a053
Merge pull request #13779 from bobafetthotmail/patch-1 
docker-compose: move to Utilities in menuconfig
 2020-11-10 22:43:42 -08:00
Rosen Penev
70ac5295a3
Merge pull request #13727 from aleksander0m/aleksander/fix-mm-service-restart 
modemmanager: include all init commands in the procd instance
 2020-11-10 22:42:49 -08:00
Rosen Penev
1ec2ed0209
Merge pull request #13845 from ja-pa/moreitertools-8.6.0 
python-more-itertools: update to version 8.6.0
 2020-11-10 22:42:00 -08:00
Rosen Penev
549810188a
Merge pull request #13844 from ja-pa/python-toml-0.10.1 
python-toml: update to version 0.10.2
 2020-11-10 22:41:36 -08:00
Rosen Penev
78064dc4c7
Merge pull request #13842 from ja-pa/pytest-6.1.2 
python-pytest: update to version 6.1.2
 2020-11-10 22:41:08 -08:00
Rosen Penev
1825ad2a6e
Merge pull request #13832 from ja-pa/ooniprobe-3.0.9 
ooniprobe: update to version 3.0.9
 2020-11-10 22:40:54 -08:00
Rosen Penev
ebb6d77272
Merge pull request #13829 from ja-pa/redis-6.0.9 
redis: update to version 6.0.9
 2020-11-10 22:40:31 -08:00
Rosen Penev
45629307de
Merge pull request #13833 from ja-pa/checksec-2.4.0 
checksec: update to version 2.4.0
 2020-11-10 22:39:06 -08:00
Rosen Penev
582cc3098e
Merge pull request #13868 from neheb/grill 
grilo-plugins: add all options
 2020-11-10 22:38:37 -08:00
Rosen Penev
d2a798a675
Merge pull request #13858 from neheb/pdnsr 
pdns-recursor: update to 4.4.0
 2020-11-10 22:37:28 -08:00
Rosen Penev
1b90e33aac
Merge pull request #13901 from nxhack/mraa_python 
libmraa: update to 2.2.0
 2020-11-10 22:14:29 -08:00
Rosen Penev
e869fee56e
Merge pull request #13899 from nxhack/bindings_902 
node-serialport-bindings: update to 9.0.2
 2020-11-10 22:14:23 -08:00
Rosen Penev
fbf0ddd28b
Merge pull request #13898 from nxhack/serialport_902 
node-serialport: update to 9.0.2
 2020-11-10 22:14:15 -08:00
Rosen Penev
d6ee5c6b99
Merge pull request #13900 from nxhack/upm_python 
libupm: Allow to build only python modules
 2020-11-10 22:13:58 -08:00
Hirokazu MORIKAWA
af788d4495 libupm: Allow to build only python modules 
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2020-11-11 10:15:34 +09:00
Hirokazu MORIKAWA
dd953c6e15 libmraa: update to 2.2.0 
update to 2.2.0
Allow to build only python modules.

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2020-11-11 10:13:37 +09:00
Hirokazu MORIKAWA
9aaed2aaa6 node-serialport-bindings: update to 9.0.2 
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2020-11-11 10:03:42 +09:00
Hirokazu MORIKAWA
bf93b30766 node-serialport: update to 9.0.2 
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
 2020-11-11 10:02:20 +09:00
Rosen Penev
57f2be6d32
Merge pull request #13897 from flyn-org/libexif 
libexif: update to 0.6.22
 2020-11-10 12:37:51 -08:00
W. Michael Petullo
818f2d9dff libexif: update to 0.6.22 
Aside from updating the package, this modifies the Makefile to pull the
sources from GitHub rather than SourceForge. The exif project recently
moved to GitHub.

Signed-off-by: W. Michael Petullo <mike@flyn.org>
 2020-11-10 14:10:07 -06:00
Aaron Goodman
321a52862a mwan3: cleanup indenting in rpcd interface status 
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
 2020-11-10 09:03:33 -05:00