feed/packages.git
2 years agoslang2: try to fix compilation without BUILD_NLS
Rosen Penev [Sat, 16 Jul 2022 02:39:39 +0000 (19:39 -0700)]
slang2: try to fix compilation without BUILD_NLS

Using --with-iconv like this causes -liconv to get added, which is not
desirable.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agonetsniff-ng: Update to version 0.6.8
Martin Blumenstingl [Wed, 6 Jul 2022 23:44:35 +0000 (01:44 +0200)]
netsniff-ng: Update to version 0.6.8

The update fixes GCC-10 (or newer) builds. Remove 010-uclibc.patch as it
has been applied upstream in this new version.

Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
2 years agompd: add missing AUDIO_SUPPORT in CONFIG_DEPENDS
Pacien TRAN-GIRARD [Sun, 17 Jul 2022 15:05:13 +0000 (17:05 +0200)]
mpd: add missing AUDIO_SUPPORT in CONFIG_DEPENDS

Signed-off-by: Pacien TRAN-GIRARD <pacien.trangirard@pacien.net>
2 years agompd-full: remove partial BUILD_PATENTED on ffmpeg
Pacien TRAN-GIRARD [Sat, 16 Jul 2022 19:52:37 +0000 (21:52 +0200)]
mpd-full: remove partial BUILD_PATENTED on ffmpeg

This removes the guard "CONFIG_BUILD_PATENTED" for the ffmpeg build
feature for mpd-full. ffmpeg was already unconditionally registered as a
dependency (at line 51).

The ffmpeg package already handles whether or not to include patented
codecs internally using the same config flag, so guarding its use as a
dependency here does not appear necessary anymore.

(For reference: guard "BUILD_PATENTED" was introduced in 44eb12f for
ffmpeg, then partially removed by 326c973).

Signed-off-by: Pacien TRAN-GIRARD <pacien.trangirard@pacien.net>
2 years agosoftethernetvpn: remove libiconv/host dependency
Rosen Penev [Fri, 15 Jul 2022 20:58:21 +0000 (13:58 -0700)]
softethernetvpn: remove libiconv/host dependency

No longer present and with the nls.mk removal, no longer needed.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18954 from paper42/postfix-tls
Josef Schlehofer [Sun, 17 Jul 2022 13:03:13 +0000 (15:03 +0200)]
Merge pull request #18954 from paper42/postfix-tls

postfix: fix download failure

2 years agotravelmate: update 2.0.9-2
Dirk Brenken [Sun, 17 Jul 2022 11:12:21 +0000 (13:12 +0200)]
travelmate: update 2.0.9-2

* fix another vpn corner case
* add support for javascript based captive portals (location.href)

Signed-off-by: Dirk Brenken <dev@brenken.org>
2 years agopostfix: fix download failure
Michal Vasilek [Sat, 16 Jul 2022 20:43:08 +0000 (22:43 +0200)]
postfix: fix download failure

cdn.postfix.johnriley.me serves a certificate for a different domain
name.

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
2 years agocoreutils: update to 9.1
John Audia [Sat, 16 Jul 2022 10:47:26 +0000 (06:47 -0400)]
coreutils: update to 9.1

Removed upstreamed patch[1]:
  002-chmod-fix_exit_status_when_ignoring_sylinks.patch

Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B

1. https://debbugs.gnu.org/cgi/bugreport.cgi?msg=28;bug=50784

Signed-off-by: John Audia <therealgraysky@proton.me>
2 years agodawn: update to 2022-07-16
Nick Hainke [Sat, 16 Jul 2022 17:36:32 +0000 (19:36 +0200)]
dawn: update to 2022-07-16

0689b5e ubus: add missing lock for ubus hearing_map
4b7db09 CONFIGURE.md: fix typo
b3f61d4 CONFIGURE.md: adjust documentation about log levels

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agoglib2: remove libiconv/host build dependency
Rosen Penev [Fri, 15 Jul 2022 20:54:35 +0000 (13:54 -0700)]
glib2: remove libiconv/host build dependency

No longer present. The original reason for having it was an unfortunate
side effect of the way meson uses HOST_LDFLAGS. Since the transistion to
use dependency('iconv'), this is no longer relevant.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibuwsc: fix compiltation with wolfSSL
Eneas U de Queiroz [Fri, 15 Jul 2022 18:00:20 +0000 (15:00 -0300)]
libuwsc: fix compiltation with wolfSSL

wolfssl/options.h needs to be included before the other wolfssl headers
to enable OpenSSL API required to build the package.

Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
2 years agowatchcat: add support to run a script
John Kohl [Sun, 5 Jun 2022 00:56:56 +0000 (20:56 -0400)]
watchcat: add support to run a script

Signed-off-by: John Kohl <jtk.git@bostonpog.org>
2 years agowatchcat: add IP version selection support; fix bug with unlockbands
John Kohl [Sun, 5 Jun 2022 00:53:26 +0000 (20:53 -0400)]
watchcat: add IP version selection support; fix bug with unlockbands

Signed-off-by: John Kohl <jtk.git@bostonpog.org>
2 years agompd: update to 0.23.8
Rosen Penev [Thu, 14 Jul 2022 04:01:30 +0000 (21:01 -0700)]
mpd: update to 0.23.8

Simplify iconv patch.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18939 from neheb/18
Alexandru Ardelean [Fri, 15 Jul 2022 06:15:09 +0000 (09:15 +0300)]
Merge pull request #18939 from neheb/18

sudo: don't build with MIPS16

2 years agospoofer: update to 1.4.8
Rosen Penev [Sat, 9 Jul 2022 06:00:26 +0000 (23:00 -0700)]
spoofer: update to 1.4.8

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agopcre2: add zlib build dependency
Rosen Penev [Sat, 9 Jul 2022 05:19:09 +0000 (22:19 -0700)]
pcre2: add zlib build dependency

Otherwise the host zlib gets picked up.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibxcrypt: update to 4.4.28
Rosen Penev [Sat, 9 Jul 2022 05:35:36 +0000 (22:35 -0700)]
libxcrypt: update to 4.4.28

Build position independent to fix compilation.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibnpupnp: update to 4.2.3
Rosen Penev [Thu, 14 Jul 2022 04:13:04 +0000 (21:13 -0700)]
libnpupnp: update to 4.2.3

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agosudo: don't build with MIPS16
Rosen Penev [Sat, 9 Jul 2022 05:17:03 +0000 (22:17 -0700)]
sudo: don't build with MIPS16

GCC12 doesn't implement some security flags used by sudo.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoelektra: actually fix compilation with iconv
Rosen Penev [Thu, 14 Jul 2022 08:04:59 +0000 (01:04 -0700)]
elektra: actually fix compilation with iconv

find_package needs to be moved outside of if.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoliborcania: bump to 2.3.0
Toni Uhlig [Wed, 13 Jul 2022 15:50:17 +0000 (17:50 +0200)]
liborcania: bump to 2.3.0

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2 years agotelegraf: Update to version 1.23.2
Jonathan Pagel [Wed, 13 Jul 2022 10:37:18 +0000 (12:37 +0200)]
telegraf: Update to version 1.23.2

Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
2 years agogsocket: add a new package with version 1.4.37
Ralf Kaiser [Sun, 3 Jul 2022 20:46:28 +0000 (22:46 +0200)]
gsocket: add a new package with version 1.4.37

Global Socket allows two workstations on different private networks to
communicate with each other. Through firewalls and through NAT - like
there is no firewall.

The TCP connection is secured with AES-256 and using OpenSSL's SRP
protocol (RFC 5054). It does not require a PKI and has forward
secrecy and (optional) TOR support.

The gsocket tools derive temporary session keys and IDs and connect
two TCP pipes through the Global Socket Relay Network (GSRN). This is
done regardless and independent of the local IP Address or geographical
location.

The session keys (secrets) never leave the workstation. The GSRN sees only
the encrypted traffic.

The workhorse is 'gs-netcat' which opens a ssh-like interactive PTY
command shell to a remote workstation (which resides on a private and
remote network and/or behind a firewall).

Also added test.sh file to run test it inside containeer

Signed-off-by: Ralf Kaiser <skyper@thc.org>
2 years agopdns-recursor: update to 4.7.1
Peter van Dijk [Wed, 13 Jul 2022 08:26:33 +0000 (10:26 +0200)]
pdns-recursor: update to 4.7.1

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2 years agopdns: update to 4.6.3
Peter van Dijk [Wed, 13 Jul 2022 08:28:34 +0000 (10:28 +0200)]
pdns: update to 4.6.3

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2 years agolibfmt: bump to new upstream version 9.0.0
Othmar Truniger [Mon, 11 Jul 2022 18:07:52 +0000 (20:07 +0200)]
libfmt: bump to new upstream version 9.0.0

Signed-off-by: Othmar Truniger <github@truniger.ch>
2 years agolibndpi: update to 4.4
Toni Uhlig [Tue, 12 Jul 2022 01:07:32 +0000 (03:07 +0200)]
libndpi: update to 4.4

Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
2 years agoMerge pull request #18913 from jempatel/improve_apinger-procd-uci
Florian Eckert [Tue, 12 Jul 2022 07:24:05 +0000 (09:24 +0200)]
Merge pull request #18913 from jempatel/improve_apinger-procd-uci

apinger: improve uci and procd support

2 years agoapinger: improve uci and procd support
Jaymin Patel [Wed, 6 Jul 2022 09:45:59 +0000 (15:15 +0530)]
apinger: improve uci and procd support

- convert apinger into procd instances
- generate instance specific apinger.conf from uci
- hotplug handling for apinger alarms
- restart apinger interface instance on ifup action of interface
- don't exit on packet count mismatch, allows to use apinger as monitor
  for multiple targets handling
- add srcip option to target configuration, allows specifying source ip
  used to monitor target
- allow creating status file in script parseable format

Patches are ported against latest version of apinger and referenced from
https://git.pld-linux.org/?p=packages/apinger.git;a=summary

Signed-off-by: Jaymin Patel <jem.patel@gmail.com>
2 years agottymidi-sysex: support more System messages
Daniel Golle [Mon, 11 Jul 2022 21:46:20 +0000 (22:46 +0100)]
ttymidi-sysex: support more System messages

add support System Realtime and System Common
This patch has also been submitted upstream:
https://github.com/cchaussat/ttymidi-sysex/pull/2

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
2 years agolibv4l: change dependence from libudev-zero to libudev
Volodymyr Nazarchuk [Mon, 11 Jul 2022 09:00:12 +0000 (12:00 +0300)]
libv4l: change dependence from libudev-zero to libudev

Signed-off-by: Volodymyr Nazarchuk <vavooon@gmail.com>
2 years agoMerge pull request #18811 from turris-cz/bind
Josef Schlehofer [Mon, 11 Jul 2022 10:44:35 +0000 (12:44 +0200)]
Merge pull request #18811 from turris-cz/bind

bind: update to version 9.18.4

2 years agotelegraf: Update to version 1.23.1
Jonathan Pagel [Mon, 11 Jul 2022 06:56:51 +0000 (08:56 +0200)]
telegraf: Update to version 1.23.1

Signed-off-by: Jonathan Pagel <jonny_tischbein@systemli.org>
2 years agolibextractor: fix iconv handling
Rosen Penev [Sun, 10 Jul 2022 07:32:58 +0000 (00:32 -0700)]
libextractor: fix iconv handling

Autoreconf is enough to fix.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agosoftethervpn: get rid of external iconv
Rosen Penev [Sat, 9 Jul 2022 07:51:41 +0000 (00:51 -0700)]
softethervpn: get rid of external iconv

Not really needed.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agotransmission: get rid of iconv dependency
Rosen Penev [Sat, 9 Jul 2022 07:49:04 +0000 (00:49 -0700)]
transmission: get rid of iconv dependency

No need for an external one.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agonode: July 7th 2022 Security Releases
Hirokazu MORIKAWA [Fri, 8 Jul 2022 23:26:01 +0000 (08:26 +0900)]
node: July 7th 2022 Security Releases

Update to v16.16.0

Release for the following issues:
HTTP Request Smuggling - Flawed Parsing of Transfer-Encoding (Medium)(CVE-2022-32213)
HTTP Request Smuggling - Improper Delimiting of Header Fields (Medium)(CVE-2022-32214)
HTTP Request Smuggling - Incorrect Parsing of Multi-line Transfer-Encoding (Medium)(CVE-2022-32215)
DNS rebinding in --inspect via invalid IP addresses (High)(CVE-2022-32212)

https://nodejs.org/en/blog/vulnerability/july-2022-security-releases/

No vulnerabilities related with openssl (uses system openssl)

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
2 years agoelektra: fix compilation with external iconv
Rosen Penev [Thu, 9 Jun 2022 22:33:02 +0000 (15:33 -0700)]
elektra: fix compilation with external iconv

Patch mostly taken from hidapi.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoMerge pull request #18898 from mhei/ser2net-service-start
Michael Heimpold [Sun, 10 Jul 2022 08:04:11 +0000 (10:04 +0200)]
Merge pull request #18898 from mhei/ser2net-service-start

ser2net: schedule start later during boot (fixes #18872)

2 years agoser2net: schedule start later during boot (fixes #18872)
Michael Heimpold [Sat, 9 Jul 2022 19:46:37 +0000 (21:46 +0200)]
ser2net: schedule start later during boot (fixes #18872)

Usually, no other local service depends on the start of ser2net, so
let's start it later in the boot process.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
2 years agoclamav: fix compilation without libiconv-stub
Rosen Penev [Thu, 9 Jun 2022 22:35:40 +0000 (15:35 -0700)]
clamav: fix compilation without libiconv-stub

Ported similar patch from hidapi.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agolibmad: update to 0.16.2
Rosen Penev [Fri, 8 Jul 2022 07:15:53 +0000 (00:15 -0700)]
libmad: update to 0.16.2

Backport aarch64 patch.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
2 years agoliburing: Update to v2.2
Christian Lachner [Fri, 8 Jul 2022 05:32:19 +0000 (07:32 +0200)]
liburing: Update to v2.2

- Updated download URL and hash

Signed-off-by: Christian Lachner <gladiac@gmail.com>
2 years agopython-requests: bump to version 2.28.1
Alexandru Ardelean [Mon, 4 Jul 2022 09:59:12 +0000 (12:59 +0300)]
python-requests: bump to version 2.28.1

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopython-lxml: bump to version 4.9.1
Alexandru Ardelean [Mon, 4 Jul 2022 09:57:41 +0000 (12:57 +0300)]
python-lxml: bump to version 4.9.1

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopillow: bump to version 9.2.0
Alexandru Ardelean [Mon, 4 Jul 2022 09:56:43 +0000 (12:56 +0300)]
pillow: bump to version 9.2.0

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopython-chardet: bump to version 5.0.0
Alexandru Ardelean [Mon, 4 Jul 2022 09:55:21 +0000 (12:55 +0300)]
python-chardet: bump to version 5.0.0

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agorsyslog: apply shellcheck SC3014 to init
Giacomo Sanchietti [Wed, 6 Jul 2022 15:00:56 +0000 (17:00 +0200)]
rsyslog: apply shellcheck SC3014 to init

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: replace spaces with tabs inside init
Giacomo Sanchietti [Tue, 21 Jun 2022 12:40:29 +0000 (14:40 +0200)]
rsyslog: replace spaces with tabs inside init

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: improve default config
Giacomo Sanchietti [Mon, 20 Jun 2022 16:07:37 +0000 (18:07 +0200)]
rsyslog: improve default config

Check also for config files containing comment lines starting
with white spaces.

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: apply shellcheck suggestions to init
Giacomo Sanchietti [Mon, 20 Jun 2022 14:54:45 +0000 (16:54 +0200)]
rsyslog: apply shellcheck suggestions to init

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: preserve existing configuration
Giacomo Sanchietti [Thu, 9 Jun 2022 12:27:12 +0000 (14:27 +0200)]
rsyslog: preserve existing configuration

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: include original config file
Giacomo Sanchietti [Thu, 9 Jun 2022 10:47:28 +0000 (12:47 +0200)]
rsyslog: include original config file

Allow advanced configurations from /etc/rsyslog.conf file

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: write config file to RAM
Giacomo Sanchietti [Thu, 9 Jun 2022 10:46:29 +0000 (12:46 +0200)]
rsyslog: write config file to RAM

Avoid wearing out flash storage

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agorsyslog: add uci support
Giacomo Sanchietti [Thu, 12 May 2022 15:58:25 +0000 (17:58 +0200)]
rsyslog: add uci support

Signed-off-by: Giacomo Sanchietti <giacomo.sanchietti@nethesis.it>
2 years agoMerge pull request #18883 from jefferyto/python-cryptography-fix-build
Alexandru Ardelean [Thu, 7 Jul 2022 12:49:50 +0000 (15:49 +0300)]
Merge pull request #18883 from jefferyto/python-cryptography-fix-build

python-cryptography: Fix failing build

2 years agopython-cryptography: Fix failing build
Jeffery To [Thu, 7 Jul 2022 09:35:41 +0000 (17:35 +0800)]
python-cryptography: Fix failing build

Fixes https://github.com/openwrt/packages/issues/18876.
Fixes https://github.com/openwrt/packages/issues/18879.

Signed-off-by: Jeffery To <jeffery.to@gmail.com>
2 years agodnslookup: Update to 1.7.1
Tianling Shen [Thu, 7 Jul 2022 05:17:57 +0000 (13:17 +0800)]
dnslookup: Update to 1.7.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agocloudflared: Update to 2022.7.1
Tianling Shen [Thu, 7 Jul 2022 05:12:48 +0000 (13:12 +0800)]
cloudflared: Update to 2022.7.1

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agotravelmate: update 2.0.9
Dirk Brenken [Wed, 6 Jul 2022 21:16:20 +0000 (23:16 +0200)]
travelmate: update 2.0.9

* various vpn fixes/optimizations (run tested by forum users)
* refine several log statements

Signed-off-by: Dirk Brenken <dev@brenken.org>
2 years agolibarchive: fix ext2fs build race error condition
Petr Štetiar [Thu, 16 Jun 2022 11:38:11 +0000 (13:38 +0200)]
libarchive: fix ext2fs build race error condition

libarchive looks for ext2fs headers during configure, and if it finds
them it will expect to find them during compile, or on the rare occasion
when they aren't it will fail:

 libarchive/archive_entry.c:59:55: fatal error: ext2fs/ext2_fs.h: No such file or directory

As we just need headers for some type constants, let's re-use headers
from tools/e2fsprogs package which are always available.

Reported-by: Adam Dov <adov@maxlinear.com>
Suggested-by: Paul Eggleton <paul.eggleton@linux.intel.com>
References: https://git.yoctoproject.org/poky/commit/?id=f0b9a7cf9f80be1917e45266fa201f464a28c1e5
Signed-off-by: Petr Štetiar <ynezz@true.cz>
2 years agoxfrpc: update to 1.06.579
Dengfeng Liu [Thu, 30 Jun 2022 08:10:05 +0000 (16:10 +0800)]
xfrpc: update to 1.06.579

Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
2 years agoxfrpc: set xfrpc's disabled default value to 0
Dengfeng Liu [Thu, 30 Jun 2022 05:54:19 +0000 (13:54 +0800)]
xfrpc: set xfrpc's disabled default value to 0

change this to satisfy luci-app-xfrpc's need

Signed-off-by: Dengfeng Liu <liudf0716@gmail.com>
2 years agomodemmanager: explicitly disconnect even if no bearers found
Aleksander Morgado [Mon, 13 Jun 2022 10:24:43 +0000 (12:24 +0200)]
modemmanager: explicitly disconnect even if no bearers found

A network restart where netifd is cleanly restarted involves bringing
the network interfaces down. The 'modemmanager' protocol handler will
run a mmcli --simple-disconnect in this case, but only if there are
bearer objects found.

If the network restart happened *during* the connection attempt
procedure, while the modem is e.g. being registered in the network, no
bearer objects exist yet, and so, we would skip doing anything during
the interface teardown operation. This would lead to the original
connection attempt succeeding, so leaving the modem in ModemManager
in connected state, while the associated interface in netifd is
reported down.

Signed-off-by: Aleksander Morgado <aleksander@aleksander.es>
2 years agokea: create /var/run/kea in init script
Stijn Tintel [Mon, 13 Jun 2022 07:42:29 +0000 (10:42 +0300)]
kea: create /var/run/kea in init script

Kea expects /var/run/kea to exist. Without it, errors occur:

  Mon Jun 13 10:31:45 2022 daemon.err kea-dhcp6[2977]: Unable to use interprocess sync lockfile (No such file or directory): /var/run/kea/logger_lockfile

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
2 years agoncdu: update to 1.17 and add blue option
John Audia [Sat, 18 Jun 2022 12:52:17 +0000 (08:52 -0400)]
ncdu: update to 1.17 and add blue option

Upstream bump and add a patch to use a blue highlight color for the dark
color scheme (--color dark) as some users find the default bright green is
too intense.

Note that invoking ncdu without the --color switch at use uses the upstream
default bright green, so users will need to call ncdu with --color dark in
order to get the blue color.

Signed-off-by: John Audia <therealgraysky@proton.me>
2 years agotor: bump to 0.4.7.8 stable
Rui Salvaterra [Tue, 28 Jun 2022 11:07:30 +0000 (12:07 +0100)]
tor: bump to 0.4.7.8 stable

From the changelog…

  o Major bugfixes (congestion control, TROVE-2022-001):
    - Fix a scenario where RTT estimation can become wedged, seriously
      degrading congestion control performance on all circuits. This
      impacts clients, onion services, and relays, and can be triggered
      remotely by a malicious endpoint. Tracked as CVE-2022-33903. Fixes
      bug 40626; bugfix on 0.4.7.5-alpha.

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on June 17, 2022.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2022/06/17.

  o Minor bugfixes (linux seccomp2 sandbox):
    - Allow the rseq system call in the sandbox. This solves a crash
      issue with glibc 2.35 on Linux. Patch from pmu-ipf. Fixes bug
      40601; bugfix on 0.3.5.11.

  o Minor bugfixes (logging):
    - Demote a harmless warn log message about finding a second hop to
      from warn level to info level, if we do not have enough
      descriptors yet. Leave it at notice level for other cases. Fixes
      bug 40603; bugfix on 0.4.7.1-alpha.
    - Demote a notice log message about "Unexpected path length" to info
      level. These cases seem to happen arbitrarily, and we likely will
      never find all of them before the switch to arti. Fixes bug 40612;
      bugfix on 0.4.7.5-alpha.

  o Minor bugfixes (relay, logging):
    - Demote a harmless XOFF log message to from notice level to info
      level. Fixes bug 40620; bugfix on 0.4.7.5-alpha.

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
2 years agoautossh: improve uci and procd support
Jaymin Patel [Mon, 4 Jul 2022 10:09:51 +0000 (15:39 +0530)]
autossh: improve uci and procd support

- convert autossh into procd instances
- add new uci config options to handle local and remote
  port forwarding
- remove hotplug down actions causing service to stop on
  any interface down event

Signed-off-by: Jaymin Patel <jem.patel@gmail.com>
2 years agonetifyd: Updated to v4.2.0.
Darryl Sokoloski [Tue, 5 Jul 2022 19:36:16 +0000 (15:36 -0400)]
netifyd: Updated to v4.2.0.

Signed-off-by: Darryl Sokoloski <darryl@sokoloski.ca>
2 years agoMerge pull request #18868 from PolynomialDivision/fix-gnutls
Nikos Mavrogiannopoulos [Tue, 5 Jul 2022 13:53:11 +0000 (15:53 +0200)]
Merge pull request #18868 from PolynomialDivision/fix-gnutls

  gnutls: adjust to new configure.ac syntax

2 years agognutls: disable brotli
Nick Hainke [Tue, 5 Jul 2022 13:30:48 +0000 (15:30 +0200)]
gnutls: disable brotli

Disable the brotli library by default. It is not used and may prevent
linking issues in the future.

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agognutls: fix disable zstd
Nick Hainke [Tue, 5 Jul 2022 06:49:36 +0000 (08:49 +0200)]
gnutls: fix disable zstd

Configure.ac syntax changed to:
  Old: --without-libbrotli --without-libzstd (also --with-*)
  New: --without-brotli --without-zstd (also --with-*)
  https://github.com/gnutls/gnutls/commit/6b794e49d1a14e43f9e08023f958364712c3c89a

Fixes: 6385813ddfb4 ("gnutls: update to 3.7.5")
Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agozerotier: update to 1.10.1
Moritz Warning [Sun, 3 Jul 2022 22:14:40 +0000 (00:14 +0200)]
zerotier: update to 1.10.1

Signed-off-by: Moritz Warning <moritzwarning@web.de>
2 years agognutls: update to 3.7.6
Nick Hainke [Sun, 3 Jul 2022 20:46:28 +0000 (22:46 +0200)]
gnutls: update to 3.7.6

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agognutls: update to 3.7.5
Nick Hainke [Sun, 3 Jul 2022 20:41:34 +0000 (22:41 +0200)]
gnutls: update to 3.7.5

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agognutls: cleanup Makefile
Nick Hainke [Sun, 3 Jul 2022 20:40:36 +0000 (22:40 +0200)]
gnutls: cleanup Makefile

- Add PKG_LICENSE_FILES
- Use SPDX
- Rearrange

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agoMerge pull request #18858 from PolynomialDivision/update-radcli
Nikos Mavrogiannopoulos [Mon, 4 Jul 2022 06:05:39 +0000 (08:05 +0200)]
Merge pull request #18858 from PolynomialDivision/update-radcli

radcli: uptdate to 1.3.0

2 years agoradsecproxy: update to 1.9.1
Nick Hainke [Sun, 3 Jul 2022 20:53:27 +0000 (22:53 +0200)]
radsecproxy: update to 1.9.1

Remove upstreamed patches:
- 100-fix-setstacksize-for-glibc-2.34.patch

Refresh patches:
- 200-logdest-on-foreground.patch

Changes:
  Misc:
  - OpenSSL 3.0 compatibility

  Bug Fixes:
  - Fix refused startup with openssl <1.1
  - Fix compiler issue for Fedora 33 on s390x
  - Fix small memory leak in config parser
  - Fix lazy certificate check when connecting to TLS servers
  - Fix connect is aborted if first host in list has invalid certificate
  - Fix setstacksize for glibc 2.34
  - Fix system defaults/settings for TLS version not honored

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agoradcli: uptdate to 1.3.0
Nick Hainke [Sun, 3 Jul 2022 21:03:01 +0000 (23:03 +0200)]
radcli: uptdate to 1.3.0

- Removed duplicate function definition from util.h
- Increased size of dictionary vendor and values to 32-bits from 16;
  this breaks the ABI from the previous release.
- Corrected a string termination issue in rc_avpair_tostr()
- Added functions to create dictionary without a file:
      rc_dict_addattr
      rc_dict_addval
      rc_dict_addvend

Signed-off-by: Nick Hainke <vincent@systemli.org>
2 years agototem-pl-parser: depend on shared-mime-info
W. Michael Petullo [Fri, 1 Jul 2022 20:25:21 +0000 (15:25 -0500)]
totem-pl-parser: depend on shared-mime-info

The totem-pl-parser library seems to rely on freedesktop.org's MIME-type
definitions to parse playlist files. Without them, parsing will produce
a TOTEM_PL_PARSER_RESULT_IGNORED error.

Signed-off-by: W. Michael Petullo <mike@flyn.org>
2 years agousteer: bump to git HEAD
Stijn Tintel [Tue, 28 Jun 2022 00:31:27 +0000 (03:31 +0300)]
usteer: bump to git HEAD

  5be6819 policy: allow disabling load balancing
  80b0b65 main: disable load balancing by default
  fca4b87 policy: improve readability
  73c424b usteer: add option for probe steering
  87de1ab main: disable probe steering by default

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
2 years agosudo: bump to verison 1.9.11p3
Alexandru Ardelean [Thu, 30 Jun 2022 12:21:44 +0000 (15:21 +0300)]
sudo: bump to verison 1.9.11p3

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
2 years agopython-jsonschema: Update to 4.6.1
Javier Marcet [Wed, 29 Jun 2022 12:17:42 +0000 (14:17 +0200)]
python-jsonschema: Update to 4.6.1

What's Changed:

 - Type annotate format checker methods by @sirosen
 - Fix fuzzer to include instrumentation by @DavidKorczynski
 - [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci

Signed-off-by: Javier Marcet <javier@marcet.info>
2 years agotgt: update to 1.0.83
Maxim Storchak [Thu, 30 Jun 2022 18:03:30 +0000 (21:03 +0300)]
tgt: update to 1.0.83

Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
2 years agotmux: update to 3.3a
Maxim Storchak [Tue, 28 Jun 2022 12:33:00 +0000 (12:33 +0000)]
tmux: update to 3.3a

Signed-off-by: Maxim Storchak <m.storchak@gmail.com>
2 years agoMerge pull request #18510 from nemesisdesign/openwisp-monitoring
Florian Eckert [Wed, 29 Jun 2022 07:52:52 +0000 (09:52 +0200)]
Merge pull request #18510 from nemesisdesign/openwisp-monitoring

openwisp-monitoring: added 0.1.1

2 years agoopenwisp-monitoring: added 0.1.1
Federico Capoano [Tue, 10 May 2022 20:06:34 +0000 (16:06 -0400)]
openwisp-monitoring: added 0.1.1

Signed-off-by: Federico Capoano <f.capoano@openwisp.io>
2 years agoMerge pull request #18796 from nemesisdesign/openwisp-config
Florian Eckert [Tue, 28 Jun 2022 06:40:12 +0000 (08:40 +0200)]
Merge pull request #18796 from nemesisdesign/openwisp-config

openwisp-config: update to 1.0.1

2 years agoyq: Update to 4.25.3
Tianling Shen [Mon, 27 Jun 2022 08:18:05 +0000 (16:18 +0800)]
yq: Update to 4.25.3

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2 years agodocker-compose: Update to version 2.6.1
Javier Marcet [Sun, 26 Jun 2022 16:24:40 +0000 (18:24 +0200)]
docker-compose: Update to version 2.6.1

Enhancements:

 - Support for setting secret from env variable by @ndeloof

Fixes:

 - Do not start unrelated dependencies on run by @laurazard
 - Fix service not found errors when using --no-deps by @nicksieger
 - Respect COMPOSE_REMOVE_ORPHANS env var on down by @nicksieger
 - Fix project level bind mounts volumes by @ulyssessouza
 - Respect deploy.limits.cpus and deploy.limits.pids by @glours

Internal:

 - Upgrade: Go v1.18.3 by @thaJeztah
 - Upgrade: compose-go v1.2.8 by @milas
 - Upgrade: buildx v0.8.2 by @dependabot
 - Upgrade: containerd v1.6.6 by @dependabot

Signed-off-by: Javier Marcet <javier@marcet.info>
2 years agotravelmate: update 2.0.8-3
Dirk Brenken [Mon, 27 Jun 2022 09:27:17 +0000 (11:27 +0200)]
travelmate: update 2.0.8-3

* refine vpn timeout

Signed-off-by: Dirk Brenken <dev@brenken.org>
2 years agoMerge pull request #18823 from mhei/php8-update
Michael Heimpold [Sun, 26 Jun 2022 19:49:47 +0000 (21:49 +0200)]
Merge pull request #18823 from mhei/php8-update

php8: update to 8.1.7

2 years agopython-websocket-client: update to 1.3.3
Javier Marcet [Sat, 25 Jun 2022 12:05:53 +0000 (14:05 +0200)]
python-websocket-client: update to 1.3.3

 - Fix unclosed socket error
 - Update header dict access
 - Add utf8 workaround to docs

Signed-off-by: Javier Marcet <javier@marcet.info>
2 years agotravelmate: update 2.0.8-2
Dirk Brenken [Sat, 25 Jun 2022 07:34:59 +0000 (09:34 +0200)]
travelmate: update 2.0.8-2

* make vpn handling more reliable

Signed-off-by: Dirk Brenken <dev@brenken.org>
2 years agoyt-dlp: update to 2022.6.22.1
Michal Vasilek [Fri, 24 Jun 2022 19:05:17 +0000 (21:05 +0200)]
yt-dlp: update to 2022.6.22.1

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
2 years agoopenwisp-config: update to 1.0.1
Federico Capoano [Tue, 21 Jun 2022 23:16:54 +0000 (19:16 -0400)]
openwisp-config: update to 1.0.1

Signed-off-by: Federico Capoano <f.capoano@openwisp.io>
2 years agosyslog-ng: update to version 3.37.1
Josef Schlehofer [Fri, 24 Jun 2022 12:25:57 +0000 (14:25 +0200)]
syslog-ng: update to version 3.37.1

- Changelog:
https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-3.37.1

- Bump config version

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
2 years agolxc: export systemd cgroups after install
Michal Vasilek [Wed, 8 Jun 2022 12:48:22 +0000 (14:48 +0200)]
lxc: export systemd cgroups after install

otherwise, a user would have to either manually run /etc/init.d/lxc-auto
boot or reboot the system to start using lxc.

originally committed in 2cde10b95053bf958a4001fb0a82c4563bf345e2
reverted in 039912dec5d3ba2b0f6f53ab8330ab9fea2f7adf

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>