feed/packages.git
2 years agocurl: switch default SSL to mbedTLS
Rosen Penev [Fri, 22 Jul 2022 01:12:26 +0000 (18:12 -0700)]
curl: switch default SSL to mbedTLS

The decision to switch the default to wolfSSL was taken because of
hostapd back from when curl was in base. Unfortunately, not only is
wolfSSL bigger but it has also been causing issues recently. There's
also no relation between hostapd and curl.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agopython3: update patches for libressl v3.5
Andre Heider [Tue, 19 Jul 2022 12:14:16 +0000 (14:14 +0200)]
python3: update patches for libressl v3.5

Based upon patches from OpenBSD[0] and Gentoo[1].

Switched to the LibreSSL provided LIBRESSL_VERSION_NUMBER macro, which
makes OPENWRT_HOST_BUILD redundant.

[0] https://github.com/openbsd/ports/tree/master/lang/python/3.10/patches
[1] https://github.com/gentoo/libressl/tree/master/dev-lang/python/files

Signed-off-by: Andre Heider <a.heider@gmail.com>
2 years agocryptsetup: fix library paths by calling autoreconf
Daniel Golle [Sat, 23 Jul 2022 08:37:28 +0000 (09:37 +0100)]
cryptsetup: fix library paths by calling autoreconf

Use PKG_FIXUP:=autoreconf when building cryptsetup to prevent
accidental linkage against host libraries.

Fixes: #19011
Reported-by: @dreirund
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
2 years agoyt-dlp: update to 2022.7.18
Michal Vasilek [Fri, 22 Jul 2022 13:56:01 +0000 (15:56 +0200)]
yt-dlp: update to 2022.7.18

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
2 years agodawn: update to 2022-07-22
Nick Hainke [Fri, 22 Jul 2022 19:21:32 +0000 (21:21 +0200)]
dawn: update to 2022-07-22

10fb043 network: dump detail on ping pong received

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agoMerge pull request #18966 from commodo/django-bump
Alexandru Ardelean [Fri, 22 Jul 2022 11:44:43 +0000 (14:44 +0300)]
Merge pull request #18966 from commodo/django-bump

django: bump to version 4.0.6

2 years agocrelay: update to 0.14.1
Rosen Penev [Tue, 19 Jul 2022 08:26:38 +0000 (01:26 -0700)]
crelay: update to 0.14.1

Also add a meson.build file to avoid iconv hacks.

Remove upstreamed patch.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agodocker-compose: Update to version 2.7.0
Javier Marcet [Thu, 21 Jul 2022 14:35:14 +0000 (16:35 +0200)]
docker-compose: Update to version 2.7.0

What's Changed:

 - Enhancements:

   - add support of environment secret during build step by @glours

 - Fixes:

   - networks: prevent issues due to duplicate names by @milas
   - Use appropriate dependency condition for one-shot containers when
   running compose up --wait by @laurazard
   - Fix environment variable expansion by @ulyssessouza in
   compose-spec/compose-go#276
   - Validate depended-on services exist in consistency check by
   @laurazard in compose-spec/compose-go#281
   - Fix hash usage in environment values by @ulyssessouza in
   compose-spec/compose-go#283
   - build: respect dependency order for classic builder by @milas
   - fix: panic caused by empty string argument by @nicksieger
   - (re)start should not impact one-off containers by @ndeloof
   - Fix issue with close networks name on up and down command by
   @glours
   - keep the container reference when volumes_from target a container
   and not a service by @glours
   - build.go: initialize CustomLabels map if nil by @paroque28

Signed-off-by: Javier Marcet <javier@marcet.info>
2 years agodawn: update to 2022-07-21
Nick Hainke [Thu, 21 Jul 2022 15:02:49 +0000 (17:02 +0200)]
dawn: update to 2022-07-21

bb362db datastorage: fix ap_array_unlink_entry always returns NULL
47e98ef network: ping pong keepalive for tcp connections
eba0354 network: add timeout for client connections

In the dawn config the con_timeout needs to be added:
  option con_timeout '60'

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agousteer: update to latest HEAD
David Bauer [Wed, 20 Jul 2022 22:59:47 +0000 (00:59 +0200)]
usteer: update to latest HEAD

9059b9a ubus: derive RSSI from measurement report

Signed-off-by: David Bauer <mail@david-bauer.net>
2 years agomutt: add PKG_CONFIG_DEPENDS
Rosen Penev [Wed, 20 Jul 2022 05:21:22 +0000 (22:21 -0700)]
mutt: add PKG_CONFIG_DEPENDS

Should fix missing dependencies when manupulating options.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoopusfile: add autoreconf
Rosen Penev [Wed, 20 Jul 2022 05:14:50 +0000 (22:14 -0700)]
opusfile: add autoreconf

Fixes compilation under some hosts.

Added PKG_BUILD_PARALLEL for faster compilation.

Some small cleanups for consistency between packages.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agogeth: update to 1.10.20
Rosen Penev [Tue, 19 Jul 2022 03:42:47 +0000 (20:42 -0700)]
geth: update to 1.10.20

Fix compilation with latest iconv changes.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibulfius: update to 2.7.10
Toni Uhlig [Wed, 13 Jul 2022 23:54:13 +0000 (01:54 +0200)]
libulfius: update to 2.7.10

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2 years agoglib2: disable fortify source
Stijn Tintel [Sun, 9 Jan 2022 16:13:15 +0000 (18:13 +0200)]
glib2: disable fortify source

The glib2 package fails to build when CONFIG_PKG_FORTIFY_SOURCE_1 or
CONFIG_PKG_FORTIFY_SOURCE_2 is enabled in the OpenWrt config:

In file included from ../glib/libcharset/localcharset.c:28:
/home/stijn/Development/OpenWrt/openwrt/staging_dir/toolchain-powerpc64_e5500_gcc-11.2.0_musl/include/fortify/stdio.h: In function 'snprintf':
/home/stijn/Development/OpenWrt/openwrt/staging_dir/toolchain-powerpc64_e5500_gcc-11.2.0_musl/include/fortify/stdio.h:101:9: error: format not a string literal, argument types not checked [-Werror=format-nonliteral]
  101 |         return __orig_snprintf(__s, __n, __f, __builtin_va_arg_pack());
      |         ^~~~~~
/home/stijn/Development/OpenWrt/openwrt/staging_dir/toolchain-powerpc64_e5500_gcc-11.2.0_musl/include/fortify/stdio.h: In function 'sprintf':
/home/stijn/Development/OpenWrt/openwrt/staging_dir/toolchain-powerpc64_e5500_gcc-11.2.0_musl/include/fortify/stdio.h:110:17: error: format not a string literal, argument types not checked [-Werror=format-nonliteral]
  110 |                 __r = __orig_snprintf(__s, __b, __f, __builtin_va_arg_pack());
      |                 ^~~
/home/stijn/Development/OpenWrt/openwrt/staging_dir/toolchain-powerpc64_e5500_gcc-11.2.0_musl/include/fortify/stdio.h:114:17: error: format not a string literal, argument types not checked [-Werror=format-nonliteral]
  114 |                 __r = __orig_sprintf(__s, __f, __builtin_va_arg_pack());
      |                 ^~~

Disable fortify source for the package as a workaround.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
2 years agowifidog: fix compilation with more recent wolfssl
Rosen Penev [Mon, 18 Jul 2022 22:16:15 +0000 (15:16 -0700)]
wifidog: fix compilation with more recent wolfssl

Needs an extra header. pthread.h is also no longer implicitly included.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agocurl: fix compilation with wolfSSL
Rosen Penev [Wed, 20 Jul 2022 02:24:19 +0000 (19:24 -0700)]
curl: fix compilation with wolfSSL

options.h header is needed now.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18919 from mhei/php8-full-libiconv
Michael Heimpold [Tue, 19 Jul 2022 17:20:11 +0000 (19:20 +0200)]
Merge pull request #18919 from mhei/php8-full-libiconv

php8: fixup libiconv usage (refs openwrt/openwrt#10024)

2 years agoirqbalance: add meson
Rosen Penev [Thu, 9 Jun 2022 22:30:40 +0000 (15:30 -0700)]
irqbalance: add meson

Fixes compilation when libiconv is missing.

Also remove pthread from glibc. No longer needed.

Cleanup Makefile for consistency between packages.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agounbound: update to 1.16.1
Pascal Ernster [Mon, 11 Jul 2022 15:27:30 +0000 (17:27 +0200)]
unbound: update to 1.16.1

Maintainer: @EricLuehrsen
Compile tested: realtek/rtl838x, x86/64
Run tested: realtek/rtl838x, x86/64
Description: Update to 1.16.1

Signed-off-by: Pascal Ernster <git@hardfalcon.net>
2 years agoopen-vm-tools: fix compilation without libiconv
Rosen Penev [Tue, 19 Jul 2022 08:34:05 +0000 (01:34 -0700)]
open-vm-tools: fix compilation without libiconv

Fix for recent nls.mk change.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agodawn: update to 2022-07-18
Nick Hainke [Mon, 18 Jul 2022 15:54:27 +0000 (17:54 +0200)]
dawn: update to 2022-07-18

e596ff1 ubus.c: only add nr entries matching our own SSID

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agodjango: bump to version 4.0.6
Alexandru Ardelean [Mon, 18 Jul 2022 14:45:37 +0000 (17:45 +0300)]
django: bump to version 4.0.6

Fixes https://nvd.nist.gov/vuln/detail/CVE-2022-34265

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agogolang: Update to 1.18.4
Jeffery To [Mon, 18 Jul 2022 09:35:11 +0000 (17:35 +0800)]
golang: Update to 1.18.4

Includes fixes for:

* CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding
  header
* CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions
* CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip
* CVE-2022-30630: io/fs: stack exhaustion in Glob
* CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read
* CVE-2022-30632: path/filepath: stack exhaustion in Glob
* CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal
* CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode
* CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit
  X-Forwarded-For not working

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2 years agoMerge pull request #18948 from neheb/18
Jeffery To [Mon, 18 Jul 2022 05:49:14 +0000 (13:49 +0800)]
Merge pull request #18948 from neheb/18

slang2: try to fix compilation without BUILD_NLS

2 years agoyq: Update to 4.26.1
Tianling Shen [Mon, 18 Jul 2022 03:42:39 +0000 (11:42 +0800)]
yq: Update to 4.26.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agoxray-core: Update to 1.5.9
Tianling Shen [Mon, 18 Jul 2022 03:46:10 +0000 (11:46 +0800)]
xray-core: Update to 1.5.9

Updated geodata to latest version while at it.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agoMerge pull request #18854 from Torxgewinde/restic_rest_server_update
Jeffery To [Mon, 18 Jul 2022 05:30:37 +0000 (13:30 +0800)]
Merge pull request #18854 from Torxgewinde/restic_rest_server_update

restic-rest-server: update to 0.11.0

2 years agoslang2: try to fix compilation without BUILD_NLS
Rosen Penev [Sat, 16 Jul 2022 02:39:39 +0000 (19:39 -0700)]
slang2: try to fix compilation without BUILD_NLS

Using --with-iconv like this causes -liconv to get added, which is not
desirable.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agonetsniff-ng: Update to version 0.6.8
Martin Blumenstingl [Wed, 6 Jul 2022 23:44:35 +0000 (01:44 +0200)]
netsniff-ng: Update to version 0.6.8

The update fixes GCC-10 (or newer) builds. Remove 010-uclibc.patch as it
has been applied upstream in this new version.

Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
2 years agompd: add missing AUDIO_SUPPORT in CONFIG_DEPENDS
Pacien TRAN-GIRARD [Sun, 17 Jul 2022 15:05:13 +0000 (17:05 +0200)]
mpd: add missing AUDIO_SUPPORT in CONFIG_DEPENDS

Signed-off-by: Pacien TRAN-GIRARD <pacien.trangirard@pacien.net>
2 years agompd-full: remove partial BUILD_PATENTED on ffmpeg
Pacien TRAN-GIRARD [Sat, 16 Jul 2022 19:52:37 +0000 (21:52 +0200)]
mpd-full: remove partial BUILD_PATENTED on ffmpeg

This removes the guard "CONFIG_BUILD_PATENTED" for the ffmpeg build
feature for mpd-full. ffmpeg was already unconditionally registered as a
dependency (at line 51).

The ffmpeg package already handles whether or not to include patented
codecs internally using the same config flag, so guarding its use as a
dependency here does not appear necessary anymore.

(For reference: guard "BUILD_PATENTED" was introduced in 44eb12f for
ffmpeg, then partially removed by 326c973).

Signed-off-by: Pacien TRAN-GIRARD <pacien.trangirard@pacien.net>
2 years agosoftethernetvpn: remove libiconv/host dependency
Rosen Penev [Fri, 15 Jul 2022 20:58:21 +0000 (13:58 -0700)]
softethernetvpn: remove libiconv/host dependency

No longer present and with the nls.mk removal, no longer needed.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18954 from paper42/postfix-tls
Josef Schlehofer [Sun, 17 Jul 2022 13:03:13 +0000 (15:03 +0200)]
Merge pull request #18954 from paper42/postfix-tls

postfix: fix download failure

2 years agophp8: fixup libiconv usage (refs openwrt/openwrt#10024)
Michael Heimpold [Thu, 7 Jul 2022 20:37:22 +0000 (22:37 +0200)]
php8: fixup libiconv usage (refs openwrt/openwrt#10024)

Since the OpenWrt's stub libiconv implementation is now gone,
we can build against musl's internal one or the external libiconv
implementation.
This needs minor adjustements in the makefile to allow PHPs build
to choose the right path when cross-compiling.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
2 years agotravelmate: update 2.0.9-2
Dirk Brenken [Sun, 17 Jul 2022 11:12:21 +0000 (13:12 +0200)]
travelmate: update 2.0.9-2

* fix another vpn corner case
* add support for javascript based captive portals (location.href)

Signed-off-by: Dirk Brenken <dev@brenken.org>
2 years agopostfix: fix download failure
Michal Vasilek [Sat, 16 Jul 2022 20:43:08 +0000 (22:43 +0200)]
postfix: fix download failure

cdn.postfix.johnriley.me serves a certificate for a different domain
name.

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
2 years agocoreutils: update to 9.1
John Audia [Sat, 16 Jul 2022 10:47:26 +0000 (06:47 -0400)]
coreutils: update to 9.1

Removed upstreamed patch[1]:
  002-chmod-fix_exit_status_when_ignoring_sylinks.patch

Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B

1. https://debbugs.gnu.org/cgi/bugreport.cgi?msg=28;bug=50784

Signed-off-by: John Audia <therealgraysky@proton.me>
2 years agodawn: update to 2022-07-16
Nick Hainke [Sat, 16 Jul 2022 17:36:32 +0000 (19:36 +0200)]
dawn: update to 2022-07-16

0689b5e ubus: add missing lock for ubus hearing_map
4b7db09 CONFIGURE.md: fix typo
b3f61d4 CONFIGURE.md: adjust documentation about log levels

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agoglib2: remove libiconv/host build dependency
Rosen Penev [Fri, 15 Jul 2022 20:54:35 +0000 (13:54 -0700)]
glib2: remove libiconv/host build dependency

No longer present. The original reason for having it was an unfortunate
side effect of the way meson uses HOST_LDFLAGS. Since the transistion to
use dependency('iconv'), this is no longer relevant.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibuwsc: fix compiltation with wolfSSL
Eneas U de Queiroz [Fri, 15 Jul 2022 18:00:20 +0000 (15:00 -0300)]
libuwsc: fix compiltation with wolfSSL

wolfssl/options.h needs to be included before the other wolfssl headers
to enable OpenSSL API required to build the package.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
2 years agowatchcat: add support to run a script
John Kohl [Sun, 5 Jun 2022 00:56:56 +0000 (20:56 -0400)]
watchcat: add support to run a script

Signed-off-by: John Kohl <jtk.git@bostonpog.org>
2 years agowatchcat: add IP version selection support; fix bug with unlockbands
John Kohl [Sun, 5 Jun 2022 00:53:26 +0000 (20:53 -0400)]
watchcat: add IP version selection support; fix bug with unlockbands

Signed-off-by: John Kohl <jtk.git@bostonpog.org>
2 years agompd: update to 0.23.8
Rosen Penev [Thu, 14 Jul 2022 04:01:30 +0000 (21:01 -0700)]
mpd: update to 0.23.8

Simplify iconv patch.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18939 from neheb/18
Alexandru Ardelean [Fri, 15 Jul 2022 06:15:09 +0000 (09:15 +0300)]
Merge pull request #18939 from neheb/18

sudo: don't build with MIPS16

2 years agospoofer: update to 1.4.8
Rosen Penev [Sat, 9 Jul 2022 06:00:26 +0000 (23:00 -0700)]
spoofer: update to 1.4.8

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agopcre2: add zlib build dependency
Rosen Penev [Sat, 9 Jul 2022 05:19:09 +0000 (22:19 -0700)]
pcre2: add zlib build dependency

Otherwise the host zlib gets picked up.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibxcrypt: update to 4.4.28
Rosen Penev [Sat, 9 Jul 2022 05:35:36 +0000 (22:35 -0700)]
libxcrypt: update to 4.4.28

Build position independent to fix compilation.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibnpupnp: update to 4.2.3
Rosen Penev [Thu, 14 Jul 2022 04:13:04 +0000 (21:13 -0700)]
libnpupnp: update to 4.2.3

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agosudo: don't build with MIPS16
Rosen Penev [Sat, 9 Jul 2022 05:17:03 +0000 (22:17 -0700)]
sudo: don't build with MIPS16

GCC12 doesn't implement some security flags used by sudo.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoelektra: actually fix compilation with iconv
Rosen Penev [Thu, 14 Jul 2022 08:04:59 +0000 (01:04 -0700)]
elektra: actually fix compilation with iconv

find_package needs to be moved outside of if.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoliborcania: bump to 2.3.0
Toni Uhlig [Wed, 13 Jul 2022 15:50:17 +0000 (17:50 +0200)]
liborcania: bump to 2.3.0

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2 years agotelegraf: Update to version 1.23.2
Jonathan Pagel [Wed, 13 Jul 2022 10:37:18 +0000 (12:37 +0200)]
telegraf: Update to version 1.23.2

Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
2 years agogsocket: add a new package with version 1.4.37
Ralf Kaiser [Sun, 3 Jul 2022 20:46:28 +0000 (22:46 +0200)]
gsocket: add a new package with version 1.4.37

Global Socket allows two workstations on different private networks to
communicate with each other. Through firewalls and through NAT - like
there is no firewall.

The TCP connection is secured with AES-256 and using OpenSSL's SRP
protocol (RFC 5054). It does not require a PKI and has forward
secrecy and (optional) TOR support.

The gsocket tools derive temporary session keys and IDs and connect
two TCP pipes through the Global Socket Relay Network (GSRN). This is
done regardless and independent of the local IP Address or geographical
location.

The session keys (secrets) never leave the workstation. The GSRN sees only
the encrypted traffic.

The workhorse is 'gs-netcat' which opens a ssh-like interactive PTY
command shell to a remote workstation (which resides on a private and
remote network and/or behind a firewall).

Also added test.sh file to run test it inside containeer

Signed-off-by: Ralf Kaiser <skyper@thc.org>
2 years agopdns-recursor: update to 4.7.1
Peter van Dijk [Wed, 13 Jul 2022 08:26:33 +0000 (10:26 +0200)]
pdns-recursor: update to 4.7.1

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2 years agopdns: update to 4.6.3
Peter van Dijk [Wed, 13 Jul 2022 08:28:34 +0000 (10:28 +0200)]
pdns: update to 4.6.3

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2 years agolibfmt: bump to new upstream version 9.0.0
Othmar Truniger [Mon, 11 Jul 2022 18:07:52 +0000 (20:07 +0200)]
libfmt: bump to new upstream version 9.0.0

Signed-off-by: Othmar Truniger <github@truniger.ch>
2 years agolibndpi: update to 4.4
Toni Uhlig [Tue, 12 Jul 2022 01:07:32 +0000 (03:07 +0200)]
libndpi: update to 4.4

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2 years agoMerge pull request #18913 from jempatel/improve_apinger-procd-uci
Florian Eckert [Tue, 12 Jul 2022 07:24:05 +0000 (09:24 +0200)]
Merge pull request #18913 from jempatel/improve_apinger-procd-uci

apinger: improve uci and procd support

2 years agoapinger: improve uci and procd support
Jaymin Patel [Wed, 6 Jul 2022 09:45:59 +0000 (15:15 +0530)]
apinger: improve uci and procd support

- convert apinger into procd instances
- generate instance specific apinger.conf from uci
- hotplug handling for apinger alarms
- restart apinger interface instance on ifup action of interface
- don't exit on packet count mismatch, allows to use apinger as monitor
  for multiple targets handling
- add srcip option to target configuration, allows specifying source ip
  used to monitor target
- allow creating status file in script parseable format

Patches are ported against latest version of apinger and referenced from
https://git.pld-linux.org/?p=packages/apinger.git;a=summary

Signed-off-by: Jaymin Patel <jem.patel@gmail.com>
2 years agottymidi-sysex: support more System messages
Daniel Golle [Mon, 11 Jul 2022 21:46:20 +0000 (22:46 +0100)]
ttymidi-sysex: support more System messages

add support System Realtime and System Common
This patch has also been submitted upstream:
https://github.com/cchaussat/ttymidi-sysex/pull/2

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
2 years agolibv4l: change dependence from libudev-zero to libudev
Volodymyr Nazarchuk [Mon, 11 Jul 2022 09:00:12 +0000 (12:00 +0300)]
libv4l: change dependence from libudev-zero to libudev

Signed-off-by: Volodymyr Nazarchuk <vavooon@gmail.com>
2 years agoMerge pull request #18811 from turris-cz/bind
Josef Schlehofer [Mon, 11 Jul 2022 10:44:35 +0000 (12:44 +0200)]
Merge pull request #18811 from turris-cz/bind

bind: update to version 9.18.4

2 years agotelegraf: Update to version 1.23.1
Jonathan Pagel [Mon, 11 Jul 2022 06:56:51 +0000 (08:56 +0200)]
telegraf: Update to version 1.23.1

Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
2 years agolibextractor: fix iconv handling
Rosen Penev [Sun, 10 Jul 2022 07:32:58 +0000 (00:32 -0700)]
libextractor: fix iconv handling

Autoreconf is enough to fix.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agosoftethervpn: get rid of external iconv
Rosen Penev [Sat, 9 Jul 2022 07:51:41 +0000 (00:51 -0700)]
softethervpn: get rid of external iconv

Not really needed.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agotransmission: get rid of iconv dependency
Rosen Penev [Sat, 9 Jul 2022 07:49:04 +0000 (00:49 -0700)]
transmission: get rid of iconv dependency

No need for an external one.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agonode: July 7th 2022 Security Releases
Hirokazu MORIKAWA [Fri, 8 Jul 2022 23:26:01 +0000 (08:26 +0900)]
node: July 7th 2022 Security Releases

Update to v16.16.0

Release for the following issues:
HTTP Request Smuggling - Flawed Parsing of Transfer-Encoding (Medium)(CVE-2022-32213)
HTTP Request Smuggling - Improper Delimiting of Header Fields (Medium)(CVE-2022-32214)
HTTP Request Smuggling - Incorrect Parsing of Multi-line Transfer-Encoding (Medium)(CVE-2022-32215)
DNS rebinding in --inspect via invalid IP addresses (High)(CVE-2022-32212)

https://nodejs.org/en/blog/vulnerability/july-2022-security-releases/

No vulnerabilities related with openssl (uses system openssl)

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
2 years agoelektra: fix compilation with external iconv
Rosen Penev [Thu, 9 Jun 2022 22:33:02 +0000 (15:33 -0700)]
elektra: fix compilation with external iconv

Patch mostly taken from hidapi.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18898 from mhei/ser2net-service-start
Michael Heimpold [Sun, 10 Jul 2022 08:04:11 +0000 (10:04 +0200)]
Merge pull request #18898 from mhei/ser2net-service-start

ser2net: schedule start later during boot (fixes #18872)

2 years agoser2net: schedule start later during boot (fixes #18872)
Michael Heimpold [Sat, 9 Jul 2022 19:46:37 +0000 (21:46 +0200)]
ser2net: schedule start later during boot (fixes #18872)

Usually, no other local service depends on the start of ser2net, so
let's start it later in the boot process.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
2 years agoclamav: fix compilation without libiconv-stub
Rosen Penev [Thu, 9 Jun 2022 22:35:40 +0000 (15:35 -0700)]
clamav: fix compilation without libiconv-stub

Ported similar patch from hidapi.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibmad: update to 0.16.2
Rosen Penev [Fri, 8 Jul 2022 07:15:53 +0000 (00:15 -0700)]
libmad: update to 0.16.2

Backport aarch64 patch.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoliburing: Update to v2.2
Christian Lachner [Fri, 8 Jul 2022 05:32:19 +0000 (07:32 +0200)]
liburing: Update to v2.2

- Updated download URL and hash

Signed-off-by: Christian Lachner <gladiac@gmail.com>
2 years agopython-requests: bump to version 2.28.1
Alexandru Ardelean [Mon, 4 Jul 2022 09:59:12 +0000 (12:59 +0300)]
python-requests: bump to version 2.28.1

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopython-lxml: bump to version 4.9.1
Alexandru Ardelean [Mon, 4 Jul 2022 09:57:41 +0000 (12:57 +0300)]
python-lxml: bump to version 4.9.1

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopillow: bump to version 9.2.0
Alexandru Ardelean [Mon, 4 Jul 2022 09:56:43 +0000 (12:56 +0300)]
pillow: bump to version 9.2.0

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopython-chardet: bump to version 5.0.0
Alexandru Ardelean [Mon, 4 Jul 2022 09:55:21 +0000 (12:55 +0300)]
python-chardet: bump to version 5.0.0

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agorsyslog: apply shellcheck SC3014 to init
Giacomo Sanchietti [Wed, 6 Jul 2022 15:00:56 +0000 (17:00 +0200)]
rsyslog: apply shellcheck SC3014 to init

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: replace spaces with tabs inside init
Giacomo Sanchietti [Tue, 21 Jun 2022 12:40:29 +0000 (14:40 +0200)]
rsyslog: replace spaces with tabs inside init

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: improve default config
Giacomo Sanchietti [Mon, 20 Jun 2022 16:07:37 +0000 (18:07 +0200)]
rsyslog: improve default config

Check also for config files containing comment lines starting
with white spaces.

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: apply shellcheck suggestions to init
Giacomo Sanchietti [Mon, 20 Jun 2022 14:54:45 +0000 (16:54 +0200)]
rsyslog: apply shellcheck suggestions to init

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: preserve existing configuration
Giacomo Sanchietti [Thu, 9 Jun 2022 12:27:12 +0000 (14:27 +0200)]
rsyslog: preserve existing configuration

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: include original config file
Giacomo Sanchietti [Thu, 9 Jun 2022 10:47:28 +0000 (12:47 +0200)]
rsyslog: include original config file

Allow advanced configurations from /etc/rsyslog.conf file

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: write config file to RAM
Giacomo Sanchietti [Thu, 9 Jun 2022 10:46:29 +0000 (12:46 +0200)]
rsyslog: write config file to RAM

Avoid wearing out flash storage

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: add uci support
Giacomo Sanchietti [Thu, 12 May 2022 15:58:25 +0000 (17:58 +0200)]
rsyslog: add uci support

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agoMerge pull request #18883 from jefferyto/python-cryptography-fix-build
Alexandru Ardelean [Thu, 7 Jul 2022 12:49:50 +0000 (15:49 +0300)]
Merge pull request #18883 from jefferyto/python-cryptography-fix-build

python-cryptography: Fix failing build

2 years agopython-cryptography: Fix failing build
Jeffery To [Thu, 7 Jul 2022 09:35:41 +0000 (17:35 +0800)]
python-cryptography: Fix failing build

Fixes https://github.com/openwrt/packages/issues/18876.
Fixes https://github.com/openwrt/packages/issues/18879.

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2 years agodnslookup: Update to 1.7.1
Tianling Shen [Thu, 7 Jul 2022 05:17:57 +0000 (13:17 +0800)]
dnslookup: Update to 1.7.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agocloudflared: Update to 2022.7.1
Tianling Shen [Thu, 7 Jul 2022 05:12:48 +0000 (13:12 +0800)]
cloudflared: Update to 2022.7.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agotravelmate: update 2.0.9
Dirk Brenken [Wed, 6 Jul 2022 21:16:20 +0000 (23:16 +0200)]
travelmate: update 2.0.9

* various vpn fixes/optimizations (run tested by forum users)
* refine several log statements

Signed-off-by: Dirk Brenken <dev@brenken.org>
2 years agolibarchive: fix ext2fs build race error condition
Petr Štetiar [Thu, 16 Jun 2022 11:38:11 +0000 (13:38 +0200)]
libarchive: fix ext2fs build race error condition

libarchive looks for ext2fs headers during configure, and if it finds
them it will expect to find them during compile, or on the rare occasion
when they aren't it will fail:

 libarchive/archive_entry.c:59:55: fatal error: ext2fs/ext2_fs.h: No such file or directory

As we just need headers for some type constants, let's re-use headers
from tools/e2fsprogs package which are always available.

Reported-by: Adam Dov <adov@maxlinear.com>
Suggested-by: Paul Eggleton <paul.eggleton@linux.intel.com>
References: https://git.yoctoproject.org/poky/commit/?id=f0b9a7cf9f80be1917e45266fa201f464a28c1e5
Signed-off-by: Petr Štetiar <ynezz@true.cz>
2 years agoxfrpc: update to 1.06.579
Dengfeng Liu [Thu, 30 Jun 2022 08:10:05 +0000 (16:10 +0800)]
xfrpc: update to 1.06.579

Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
2 years agoxfrpc: set xfrpc's disabled default value to 0
Dengfeng Liu [Thu, 30 Jun 2022 05:54:19 +0000 (13:54 +0800)]
xfrpc: set xfrpc's disabled default value to 0

change this to satisfy luci-app-xfrpc's need

Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
2 years agomodemmanager: explicitly disconnect even if no bearers found
Aleksander Morgado [Mon, 13 Jun 2022 10:24:43 +0000 (12:24 +0200)]
modemmanager: explicitly disconnect even if no bearers found

A network restart where netifd is cleanly restarted involves bringing
the network interfaces down. The 'modemmanager' protocol handler will
run a mmcli --simple-disconnect in this case, but only if there are
bearer objects found.

If the network restart happened *during* the connection attempt
procedure, while the modem is e.g. being registered in the network, no
bearer objects exist yet, and so, we would skip doing anything during
the interface teardown operation. This would lead to the original
connection attempt succeeding, so leaving the modem in ModemManager
in connected state, while the associated interface in netifd is
reported down.

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
2 years agokea: create /var/run/kea in init script
Stijn Tintel [Mon, 13 Jun 2022 07:42:29 +0000 (10:42 +0300)]
kea: create /var/run/kea in init script

Kea expects /var/run/kea to exist. Without it, errors occur:

  Mon Jun 13 10:31:45 2022 daemon.err kea-dhcp6[2977]: Unable to use interprocess sync lockfile (No such file or directory): /var/run/kea/logger_lockfile

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
2 years agoncdu: update to 1.17 and add blue option
John Audia [Sat, 18 Jun 2022 12:52:17 +0000 (08:52 -0400)]
ncdu: update to 1.17 and add blue option

Upstream bump and add a patch to use a blue highlight color for the dark
color scheme (--color dark) as some users find the default bright green is
too intense.

Note that invoking ncdu without the --color switch at use uses the upstream
default bright green, so users will need to call ncdu with --color dark in
order to get the blue color.

Signed-off-by: John Audia <therealgraysky@proton.me>
2 years agotor: bump to 0.4.7.8 stable
Rui Salvaterra [Tue, 28 Jun 2022 11:07:30 +0000 (12:07 +0100)]
tor: bump to 0.4.7.8 stable

From the changelog…

  o Major bugfixes (congestion control, TROVE-2022-001):
    - Fix a scenario where RTT estimation can become wedged, seriously
      degrading congestion control performance on all circuits. This
      impacts clients, onion services, and relays, and can be triggered
      remotely by a malicious endpoint. Tracked as CVE-2022-33903. Fixes
      bug 40626; bugfix on 0.4.7.5-alpha.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on June 17, 2022.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2022/06/17.

  o Minor bugfixes (linux seccomp2 sandbox):
    - Allow the rseq system call in the sandbox. This solves a crash
      issue with glibc 2.35 on Linux. Patch from pmu-ipf. Fixes bug
      40601; bugfix on 0.3.5.11.

  o Minor bugfixes (logging):
    - Demote a harmless warn log message about finding a second hop to
      from warn level to info level, if we do not have enough
      descriptors yet. Leave it at notice level for other cases. Fixes
      bug 40603; bugfix on 0.4.7.1-alpha.
    - Demote a notice log message about "Unexpected path length" to info
      level. These cases seem to happen arbitrarily, and we likely will
      never find all of them before the switch to arti. Fixes bug 40612;
      bugfix on 0.4.7.5-alpha.

  o Minor bugfixes (relay, logging):
    - Demote a harmless XOFF log message to from notice level to info
      level. Fixes bug 40620; bugfix on 0.4.7.5-alpha.

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
2 years agoautossh: improve uci and procd support
Jaymin Patel [Mon, 4 Jul 2022 10:09:51 +0000 (15:39 +0530)]
autossh: improve uci and procd support

- convert autossh into procd instances
- add new uci config options to handle local and remote
  port forwarding
- remove hotplug down actions causing service to stop on
  any interface down event

Signed-off-by: Jaymin Patel <jem.patel@gmail.com>
2 years agonetifyd: Updated to v4.2.0.
Darryl Sokoloski [Tue, 5 Jul 2022 19:36:16 +0000 (15:36 -0400)]
netifyd: Updated to v4.2.0.

Signed-off-by: Darryl Sokoloski <darryl@sokoloski.ca>