packages

Author	SHA1	Message	Date
Tianling Shen	95fa96bda2	ttyd: force enable authentication for login Currently, we called `/usr/libexec/login.sh` as login command, but unfortunately the auth is disabled by default in it[1], and this is really serious as it could be a free "backdoor" for any spoiler who has conntectd to the router via LAN or wireless. In my option, it shouldn't be exposed to anyone without auth, so I set the default login command to `/bin/login`. And for those who really want that, they can do it themselves. 1. `login.sh` adjusts whether use authentication or not from system config named ttylogin, which is set to disabled by default. See package/base-files/files/bin/config_generate#L243. Signed-off-by: Tianling Shen <cnsztl@project-openwrt.eu.org> Backported from `f45bb2981d`	2021-02-10 19:20:09 +08:00
Karl Palsson	b1fec2b7b5	mosquitto: bump to 1.6.13 Includes various fixes: (2.0.7 + 1.6.13 dual release) https://mosquitto.org/blog/2021/02/version-2-0-7-released/ Signed-off-by: Karl Palsson <karlp@etactica.com>	2021-02-08 15:20:53 +00:00
Rosen Penev	d2daab3d33	Merge pull request #14681 from jonathanunderwood/openwrt-19.07-getdns-no-static-linking [19.07] getdns: disable static linking of getdns utilities	2021-02-07 15:19:51 -08:00
Jonathan G. Underwood	5954e5695b	getdns: disable static linking of getdns utilities This fixes issue #13361. Signed-off-by: Jonathan G. Underwood <jonathan.underwood@gmail.com>	2021-02-07 14:42:38 +00:00
Rosen Penev	89d14ff29c	Merge pull request #14670 from jonathanunderwood/openwrt-19.07-cherry-pick [19.07] getdns: cherry pick recent fixes from master	2021-02-06 14:34:29 -08:00
Rosen Penev	63db81b46e	Merge pull request #14677 from mwarning/zt2 zerotier: update to 1.6.3	2021-02-06 14:33:43 -08:00
Moritz Warning	db69f0b57c	zerotier: update to 1.6.3 Signed-off-by: Moritz Warning <moritzwarning@web.de>	2021-02-06 22:06:37 +01:00
Harris K Kusuma	1cec6bcfa1	getdns: Fix TLS V1.3 Ciphersuites option in Stubby Description : Fix typo in CMAKE getdns included files, so Stubby can use TLS v1.3 with chipersuites options ON. This solve issue that's written in here : https://github.com/getdnsapi/stubby/issues/240 https://github.com/getdnsapi/stubby/issues/257 Signed-off-by: Harris K Kusuma <igharris.kk@gmail.com>	2021-02-06 12:02:26 +00:00
Rosen Penev	d7b42dcaa4	getdns: fix compilation without deprecated OpenSSL APIs Signed-off-by: Rosen Penev <rosenp@gmail.com>	2021-02-06 12:02:16 +00:00
Rosen Penev	2888560b93	Merge pull request #14632 from stangri/19.07-simple-adblock [19.07] simple-adblock: remove dependency on jsonfilter & old code	2021-02-02 19:40:16 -08:00
Stan Grishin	cf79695645	simple-adblock: remove dependency on jsonfilter & old code Signed-off-by: Stan Grishin <stangri@melmac.net>	2021-02-02 22:11:20 +00:00
Josef Schlehofer	bee91a9d88	sudo: backport patches for CVE-2021-3156 This security vulnerability is known as Baron Samedit [1] and there is a research by Qualys [2] and they discovered it. Unfortunately or fortunately, there isn't present sudoedit on OpenWrt. Two patches were applied cleanly and the other two required manual intervention. Those were backported from version 1.9.5p2 [1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156 [2] https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>	2021-01-28 10:09:00 -10:00
Rosen Penev	4949dcdc50	Merge pull request #14575 from Andy2244/samba4-fix-#13758 [19.07] samba4: fix for #13758	2021-01-26 14:53:53 -08:00
Andy Walsh	46d327a59b	samba4: fix for #13758 * fix for possible exploit #13758 * sanetize all external template/config inputs * fix some shellcheck warnings Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>	2021-01-26 12:24:57 +01:00
Rosen Penev	7a1ccfc0e6	Merge pull request #14565 from rs/nextdns-1.10.1-openwrt-19.07 [19.07] nextdns: Update to version 1.10.1	2021-01-25 23:07:17 -08:00
Michael Heimpold	308369a6f0	Merge pull request #14558 from cartender/pr/19_fix_php7_conf_ac php7: Fix prepare target incorrectly referencing 'configure.in' instead of 'configure.ac'	2021-01-25 23:54:21 +01:00
Olivier Poitrey	e8d15424b4	nextdns: Update to version 1.10.1 Signed-off-by: Olivier Poitrey <rs@nextdns.io>	2021-01-25 17:55:29 +00:00
Giovanni Giacobbi	11e9a2e179	php7: Fix prepare target incorrectly referencing 'configure.in' instead of 'configure.ac' Package release version unchanged as it does not impact the build result in any way. Signed-off-by: Giovanni Giacobbi <giovanni@giacobbi.net>	2021-01-25 10:38:19 +00:00
Josef Schlehofer	aae5144e73	msmtp: update to version 1.8.14 Release notes for 1.8.1.3: https://marlam.de/msmtp/news/msmtp-1-8-13/ Release notes for 1.8.1.4: https://marlam.de/msmtp/news/msmtp-1-8-13/ Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com> (cherry picked from commit `ff76e24e5a`)	2021-01-24 23:10:53 +01:00
Josef Schlehofer	8e54decfa2	youtube-dl: update to version 2021.1.16 Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com> (cherry picked from commit `5d839fc06b`)	2021-01-24 10:31:31 +01:00
Josef Schlehofer	3b582ebd3f	youtube-dl: update to version 2020.12.7 Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com> (cherry picked from commit `87e15391cd`)	2021-01-24 10:31:25 +01:00
Rosen Penev	ee88c06fbd	Merge pull request #14501 from stangri/19.07-https-dns-proxy [19.07] https-dns-proxy: bugfix: high CPU utilization	2021-01-22 17:42:24 -08:00
Rosen Penev	ce5a4eaea2	Merge pull request #14499 from nemesisdesign/openwrt-19.07 openwisp-config: update to version 0.5.0	2021-01-18 23:39:47 -08:00
Stan Grishin	46253b17d4	https-dns-proxy: bugfix: high CPU utilization Signed-off-by: Stan Grishin <stangri@melmac.net>	2021-01-18 15:28:06 +00:00
Federico Capoano	cc38c62ad2	openwisp-config: update to version 0.5.0 Full changelog available at https://github.com/openwisp/openwisp-config/releases/tag/0.5.0 Signed-off-by: Federico Capoano <f.capoano@openwisp.io> (cherry picked from commit `9f7b8088c3`) # Conflicts: # admin/openwisp-config/Makefile	2021-01-18 09:55:30 -05:00
Rosen Penev	50725c4c86	Revert "libzip: update to 1.7.3" This reverts commit `d8f0ebaa3d`. Versions 1.7.2 and above mandate CMake 3.1.7, making this unsuitable for backporting. Signed-off-by: Rosen Penev <rosenp@gmail.com>	2021-01-17 02:00:09 -08:00
Michael Heimpold	d8f0ebaa3d	libzip: update to 1.7.3 Signed-off-by: Michael Heimpold <mhei@heimpold.de> (cherry picked from commit `1335121067`)	2021-01-15 13:44:00 -08:00
Michael Heimpold	9a0a7f928a	libzip: update to 1.7.1 (closes #12512 ) Signed-off-by: Michael Heimpold <mhei@heimpold.de> (cherry picked from commit `fa566417ca`)	2021-01-15 13:44:00 -08:00
Michael Heimpold	5fc9220434	libzip: update to 1.6.1 Signed-off-by: Michael Heimpold <mhei@heimpold.de> (cherry picked from commit `5a6054d477`)	2021-01-15 13:44:00 -08:00
Michael Heimpold	9174036e4c	libzip: update to 1.6.0 Also remove upstreamed patch. Signed-off-by: Michael Heimpold <mhei@heimpold.de> (cherry picked from commit `3b622a612c`)	2021-01-15 13:43:59 -08:00
Sebastian Kemper	92f095b21c	libzip: fix musl-fts failure musl doesn't support fts. But with the extra package musl-fts installed, libzip picks up the fts header and fails at the linking stage: zipcmp.c:(.text.startup+0x130): undefined reference to `fts_open' /home/sk/tmp/openwrt/staging_dir/toolchain-mips_24kc_gcc-8.3.0_musl/lib/gcc/mips-openwrt-linux-musl/8.3.0/../../../../mips-openwrt-linux-musl/bin/ld: zipcmp.c:(.text.startup+0x172): undefined reference to `fts_read' So with musl-fts we need to link in libfts. To address that this commits patches the cmake setup to check if fts is available in libc itself or in any external libfts. So when musl-fts is installed on the system the setup will be the following: musl: use libfts uclibc: use fts from libc glibc: like uclibc Signed-off-by: Sebastian Kemper <sebastian_ml@gmx.net> (cherry picked from commit `0c381f7c7a`)	2021-01-15 13:43:59 -08:00
Michael Heimpold	a0d9d76b23	libzip: add package This introduces libzip which is e.g. a dependency for upcoming upgrade of PHP to version 7.4. Signed-off-by: Michael Heimpold <mhei@heimpold.de> (cherry picked from commit `a4a98d5efe`)	2021-01-15 13:43:59 -08:00
Hannu Nyman	93d3bfd080	nano: update to 5.5 Update nano editor to version 5.5 Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi> (cherry picked from commit `be75f77973`)	2021-01-15 15:55:51 +02:00
Rosen Penev	1224d6c213	idevicerestore: update to 1.0.0 Switched to upstream tarballs as they are now available Removed autoreconf as a result. Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `18f3410ac4`)	2021-01-14 17:03:50 -08:00
Rosen Penev	9cfae98a7a	idevicerestore: update to 2020-04-20 Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `b112de71e1`)	2021-01-14 17:03:50 -08:00
Rosen Penev	23f85f8fa5	idevicerestore: update to 2020-02-17 Fix compilation under glibc. Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `355d8b1388`)	2021-01-14 17:03:50 -08:00
Rosen Penev	cb2d403463	idevicerestore: Update to 2019-12-26 Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `905c7c62fb`)	2021-01-14 17:03:49 -08:00
Rosen Penev	202469750f	idevicerestore: Add package Allows to flash an iOS device without using iTunes. Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `9fbe1c247e`)	2021-01-14 17:03:49 -08:00
Rosen Penev	646461e2bd	libirecovery: update to official tarball Removed autoreconf as a result. Unfortunately, the two versions are not identical. Bumped PKG_RELEASE to deal with it. Disable static libraries as they're fairly useless. Adjusted filepaths. Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `4e203a1949`)	2021-01-14 17:03:07 -08:00
Rosen Penev	4f3b1aa38b	libirecovery: fix version The hash was correct but not the source version. No idea how this happened Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `7c7a922cb0`)	2021-01-14 17:03:06 -08:00
Rosen Penev	e871dcf6b9	libirecovery: Update to 1.0.0 Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `bedf33b7e2`)	2021-01-14 17:03:06 -08:00
Rosen Penev	4175b8074e	libirecovery: Add package Needed for idevicerestore Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `0b51b4c469`)	2021-01-14 17:03:06 -08:00
Christian Lachner	7707d2d78c	haproxy: Update HAProxy to v2.0.20 - Update haproxy download URL and hash Signed-off-by: Christian Lachner <gladiac@gmail.com>	2021-01-11 17:38:14 +02:00
Rosen Penev	7ee0a565be	Merge pull request #14457 from rs/nextdns-1.9.6-openwrt-19.07 [19.07] nextdns: Update to version 1.9.6	2021-01-10 17:28:50 -08:00
Olivier Poitrey	8cc7aef3ce	nextdns: Update to version 1.9.6 Signed-off-by: Olivier Poitrey <rs@nextdns.io>	2021-01-10 23:25:34 +00:00
Josef Schlehofer	67a324b5ef	syslog-ng: update to version 3.30.1 Bump version also in config file Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com> (cherry picked from commit `e0f76cfa82`)	2021-01-10 11:10:31 +01:00
Rosen Penev	208bf92b6b	Merge pull request #14427 from stangri/19.07-https-dns-proxy [19.07] https-dns-proxy: update to 2020-11-25: add HTTP auth and DSCP support	2021-01-06 19:58:49 -08:00
Stan Grishin	9e29bd4dee	https-dns-proxy: update to 2020-11-25: add HTTP auth and DSCP codepoint support Signed-off-by: Stan Grishin <stangri@melmac.net>	2021-01-06 17:53:15 +00:00
Hannu Nyman	6d2ea90c31	haveged: update to 1.9.14 Update haveged to version 1.9.14. Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi> (cherry picked from commit `6dac6bd886`)	2021-01-03 20:08:36 +02:00
Rosen Penev	64b8dade4b	usbmuxd: update to 1.1.1 Switched to upstream tarballs as they are now available. Removed autoreconf as a result. Signed-off-by: Rosen Penev <rosenp@gmail.com> (cherry picked from commit `e480fa8b33`)	2021-01-01 17:54:47 -08:00

1 2 3 4 5 ...

16888 commits