Difuse/packages
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
16877 commits 8 branches 0 tags 65 MiB
Commit graph

5980 commits

Author SHA1 Message Date
Andy Walsh
46d327a59b samba4: fix for #13758 
* fix for possible exploit #13758
* sanetize all external template/config inputs
* fix some shellcheck warnings

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
 2021-01-26 12:24:57 +01:00
Olivier Poitrey
e8d15424b4 nextdns: Update to version 1.10.1 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2021-01-25 17:55:29 +00:00
Stan Grishin
46253b17d4 https-dns-proxy: bugfix: high CPU utilization 
Signed-off-by: Stan Grishin <stangri@melmac.net>
 2021-01-18 15:28:06 +00:00
Christian Lachner
7707d2d78c haproxy: Update HAProxy to v2.0.20 
- Update haproxy download URL and hash

Signed-off-by: Christian Lachner <gladiac@gmail.com>
 2021-01-11 17:38:14 +02:00
Olivier Poitrey
8cc7aef3ce nextdns: Update to version 1.9.6 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2021-01-10 23:25:34 +00:00
Stan Grishin
9e29bd4dee https-dns-proxy: update to 2020-11-25: add HTTP auth and DSCP codepoint support 
Signed-off-by: Stan Grishin <stangri@melmac.net>
 2021-01-06 17:53:15 +00:00
Dirk Brenken
0563feebc6
adblock: backport fixes 
* set PROCD_RELOAD_DELAY correctly
* source changes:
  - add new source 'games_tracking' (https://www.gameindustry.eu)
  - change malwaredomains source mirror
  - remove malwarelist source (source is empty)
  - remove youtube source (does not work at all)
* add check for gnu-sort

Signed-off-by: Dirk Brenken <dev@brenken.org>
 2020-12-23 21:20:28 +01:00
Aaron Goodman
6bd3f5c377 mwan3: use ping -I for ipv6 after tunnel kernel fix 
Now that tunnels have been fixed with openwrt commit
c9c7b4b3945c01c2aadf3ef5d9a77c8200db80f1 for stable branch 19.07
ping with src ip is no longer needed.

fixes #13655

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* Update commit message
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
 2020-12-22 11:24:21 +01:00
Rosen Penev
2a7bbad223 noddos: remove 
According to https://github.com/openwrt/packages/issues/14248 , this
is totally abandoned. The website isn't even up anymore.

Fixes: https://github.com/openwrt/packages/issues/14248

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(backported from commit eb9d5bbf39)
 2020-12-21 20:02:08 +02:00
Rosen Penev
9f0c6921b4
Merge pull request #14280 from commodo/openwrt-19.07-ulogd 
[19.07] ulogd: backports from master
 2020-12-20 09:11:45 -08:00
Rosen Penev
182264c5bd ulogd: Add back autoreconf 
Compile fails at times, probably because of the patches.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 0fa6b85686)
 2020-12-20 11:44:49 +02:00
Sebastian Fleer
6106d1f287 ulogd2: Build IPFIX module 
add ulogd_output_IPFIX.so to ulogd-mod-extra

Signed-off-by: Sebastian Fleer <dev@dwurp.de>
(cherry picked from commit 3a06581ad7)
 2020-12-20 11:44:41 +02:00
Rosen Penev
c8730e9515 ulogd2: Backport upstream patches 
IPFIX support was requested.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 79c881200f)
 2020-12-20 11:44:35 +02:00
Alexandru Ardelean
5845691cba net: ulogd2: add myself as maintainer 
Since this package has been abandoned, I don't mind taking it over.
If there are issues with it, I can also investigate, and be a point-man.

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit 2a5fb656f2)
 2020-12-20 11:44:29 +02:00
Rosen Penev
df1c29679e
nut: fix _ handling 
Taken from https://github.com/openwrt/packages/issues/13359

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 4d39346fb4)
 2020-12-19 22:27:45 -08:00
Stan Grishin
3eb2e140eb simple-adblock: config update 
Signed-off-by: Stan Grishin <stangri@melmac.net>
 2020-12-18 22:05:12 -06:00
Rosen Penev
e7d814a2b0
Merge pull request #14251 from Andy2244/samba-4.11.17 
[19.07] samba4: update to 4.11.17
 2020-12-17 14:38:38 -08:00
Andy Walsh
dc529c8cdd wsdd2: update to git 2020-11-19 
* update to git 2020-11-19
* cleanup comments
* use uppercase for none mdns option

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
 2020-12-17 21:04:33 +01:00
Andy Walsh
adb2143388 samba4: update to 4.11.17 
* update to 4.11.17
* fix CVE-2020-1472, CVE-2020-14318, CVE-2020-14323, CVE-2020-14383

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
 2020-12-17 20:51:58 +01:00
Stan Grishin
dc015ffe27 simple-adblock: bugfix - config update 
Signed-off-by: Stan Grishin <stangri@melmac.net>
 2020-12-12 15:58:36 -06:00
Stan Grishin
9ca6bdaa05 https-dns-proxy: update binary to 2020-08-21 
Signed-off-by: Stan Grishin <stangri@melmac.net>
 2020-12-09 23:33:08 -10:00
Rosen Penev
13d999882b
zerotier: add patch to avoid including sys/auxv.h 
It seems it's not needed and not supported under uClibc-ng.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit e632e189fd)
 2020-12-09 17:14:22 -08:00
Jitao Lu
061f81ff6d miniupnpd: Don't override ipv6_listening_ip 
Fixes: https://github.com/openwrt/packages/issues/14145
Signed-off-by: Jitao Lu <dianlujitao@gmail.com>
(cherry picked from commit c89a1f3e8b)
 2020-12-08 23:22:46 -08:00
Jitao Lu
e82884cafb
miniupnpd: Pass ipv6 addr to ipv6_listening_ip 
Unlike ipv4, this option is supposed to be an IP address, otherwise, an
error occurs on startup:

    can't parse "br-lan" as valid IPv6 listening address

Signed-off-by: Jitao Lu <dianlujitao@gmail.com>
(cherry picked from commit 7077fd8c79)
 2020-12-03 17:58:39 -08:00
Rosen Penev
33bd6b6afa
Merge pull request #14115 from mwarning/zt 
zerotier: update to 1.6.2
 2020-12-02 15:50:32 -08:00
Moritz Warning
ace81238c1 zerotier: update to 1.6.2 
Signed-off-by: Moritz Warning <moritzwarning@web.de>
 2020-12-02 19:01:33 +01:00
Chen Minqiang
808a67b35d
net/miniupnpd: ext_ip_reserved_ignore support 
This add an option to ignore ext_ip reserved
Enable this option in config by default.

Fixes: #13773

Signed-off-by: Chen Minqiang <ptpt52@gmail.com>
(cherry picked from commit b76aa99194)
 2020-11-29 17:26:32 -08:00
Marco Martins
1adf9d9794
miniupnpd: Added chain rule to filter table so udp stun incoming connections rules works 
Signed-off-by: Marco Martins <marcomartins86@gmail.com>
(cherry picked from commit 773b87977e)
 2020-11-29 17:26:32 -08:00
Rosen Penev
4ed18c40e6
miniupnpd: update to 2.2.0 
Replace daemon patch with upstream solution.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 4d824243e6)
 2020-11-29 17:26:30 -08:00
Chen Minqiang
16cceb118a
net/miniupnpd: check by /etc/init.d/miniupnpd running 
Signed-off-by: Chen Minqiang <ptpt52@gmail.com>
(cherry picked from commit 67b4871322)
 2020-11-29 17:25:38 -08:00
Rosen Penev
93d44081c3
miniupnpd: default to IGDv1 
It seems even modern stuff doesn't support v2 correctly. The miniupnp
suite does but other stacks seem to lack support. Default to v1 to
avoid the headache.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 7891124d6c)
 2020-11-29 17:25:06 -08:00
Dirk Brenken
49fb6862d2
adblock: reporting fixes/tweaks 
* prevents the creation of an invalid json structure
* add more space to the domain column on cli
* removed test.sh script from package

Signed-off-by: Dirk Brenken <dev@brenken.org>
 2020-11-29 13:51:48 +01:00
Rosen Penev
613d4e19c6
Merge pull request #14029 from aaronjg/xtables-addons-fix 
xtables-addons: fix compilation error
 2020-11-25 21:17:20 -08:00
Aaron Goodman
12b0f8c1ab xtables-addons: patch for 4.14 route_me_harder fix 
backport xtables-addons: 0ab324790015a6396be5678b6dffeeaa1cd28299

build: adjust for changed signature of ip_route_me_harder

(Cf. commit 46d6c5ae953cc0be38efd0e469284df7c4328cf8 in Linux.)

Original author: Jan Engelhardt <jengelh@inai.de>

Backported by: Aaron Goodman <aaronjg@stanford.edu>
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
 2020-11-25 19:33:34 -05:00
Olivier Poitrey
591601446b nextdns: Update to version 1.9.4 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2020-11-23 22:15:03 +00:00
Olivier Poitrey
c65dc2c45d nextdns: Update to version 1.9.3 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2020-11-23 17:01:54 +00:00
Dirk Brenken
fb76302091
travelmate: refine scan interface determination 
* preferably use the logical wlan interface for scanning
  (as already done in travelmate 2.0)

Signed-off-by: Dirk Brenken <dev@brenken.org>
 2020-11-18 20:21:06 +01:00
Florian Eckert
68eb1943cc mwan3: add missing dependency 
Add missing rpcd dependency.

Fixes #13896

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
 2020-11-11 09:40:01 +01:00
Brian J. Murrell
b038148cc0 mwan3: Remove fork/exec for head 
Instead, let sed do the work since it's already being used.

Signed-off-by: Brian J. Murrell <brian@interlinx.bc.ca>
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
[ update PKG_VERSION ]
 2020-11-11 09:39:46 +01:00
Christian Lachner
c5d61945fc haproxy: Update HAProxy to v2.0.19 
- Update haproxy download URL and hash
- Fix uclibc patch offset

Signed-off-by: Christian Lachner <gladiac@gmail.com>
 2020-11-08 17:47:02 +02:00
Jose Olivera
d1d53a3acc xtables-addons: Support IPTV Timeshift 
Solves Issue #10373 and PR #10428

Signed-off-by: Jose Olivera <oliverajeo@gmail.com>
(bumped PKG_RELEASE)
Signed-off-by: Rosen Penev <rosenp@gmail.com>
 2020-11-02 10:00:51 +01:00
Josef Schlehofer
3a61338ab4
bind: update to version 9.16.8 
- DNS Flag Day 2020
(default EDNS buffer size changed from 4096 to 1232 bytes)

-- Added patch, which should be part of the next release
It fixes an issue while cross-compilation (I linked it in the commit
message with issue link)

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit d442033941)
 2020-11-02 00:35:03 +01:00
Rosen Penev
089699b1ee
tinyproxy: convert to procd 
The path changed since 274506803a

Fixed.

Also took the time to convert to procd.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit c14ba8bd77)
 2020-10-29 01:51:52 +01:00
Rosen Penev
39ce334617
tinyproxy: update to 1.10.0 
Added license information.

Added PKG_BUILD_PARALLEL for faster compilation.

Refreshed patches.

Updated URLs.

Ran init script through shellcheck.

Fixes: CVE-2017-11747, CVE-2012-3505
Fixes: #13793

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 274506803a)
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
[added fixed CVEs and Github Issue]
 2020-10-29 01:49:24 +01:00
Olivier Poitrey
b07f752e79 nextdns: Update to version 1.8.8 
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
 2020-10-26 20:45:25 +02:00
Mengyang Li
99e77a716b openconnect: allow specify --protocol from config 
openconnect v8.10 supports 4 VPN protocols

  --protocol=anyconnect  Compatible with Cisco AnyConnect SSL VPN, as well as ocserv (default)
  --protocol=nc          Compatible with Juniper Network Connect
  --protocol=gp          Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN
  --protocol=pulse       Compatible with Pulse Connect Secure SSL VPN

This patch allows user to specify protocol use the new "vpn_protocol"
option and deprecate the old option "juniper" which seems to be missing in
the current openconnect client.

Signed-off-by: Mengyang Li <mayli.he@gmail.com>
 2020-10-25 21:45:31 +01:00
Dirk Brenken
37303e1f04
adblock: update 4.0.7-2 
* switch all safesearch providers to dynamic ips (derived from cname)
* made the new safesearch approach compatible with bind-nslookup
* removed 3.x config compatibility code

Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit 4b0d029bb5)
 2020-10-23 21:14:44 +02:00
Dirk Brenken
5dbbb7ebf4
adblock: update 4.0.7 
* fix aria2c download options
* fix report engine with empty domains
* fix safesearch ips of safe.duckduckgo.com (get ips dynamically)
* fix safesearch ips of safesearch.pixabay.com (get ips dynamically)
* add regional blocklist for italy
* shellcheck adjustments
* add test.sh for CI testing

Signed-off-by: Dirk Brenken <dev@brenken.org>
(cherry picked from commit d36fd57662)
 2020-10-23 21:14:24 +02:00
Matthias Schiffer
a2673dc53c
fastd: fix buffer leak when receiving invalid packets 
Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
 2020-10-19 22:10:59 +02:00
Dirk Brenken
e2567b210f
Merge pull request #13688 from dibdot/trm-19.07 
[19.07] travelmate: bugfix single radio mode
 2020-10-16 21:32:45 +02:00