Glenn Strauss [Fri, 27 Aug 2021 20:32:43 +0000 (16:32 -0400)]
lighttpd: update to lighttpd 1.4.60 release hash
also remove patches incorporated upstream into lighttpd 1.4.60
Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(cherry picked from commit
07446a73cabefb9f0afeb3c2fcf3d4159be68191)
Philip Prindeville [Thu, 28 Oct 2021 19:44:44 +0000 (13:44 -0600)]
bind: Bump to 9.17.19
The following CVE updates are included:
* CVE-2021-25219: The "lame-ttl" option is now forcibly set to 0. This
effectively disables the lame server cache, as it could previously be
abused by an attacker to significantly degrade resolver performance.
* CVE-2021-25218: An assertion failure occurred when named attempted
to send a UDP packet that exceeded the MTU size, if Response Rate
Limiting (RRL) was enabled.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
(cherry-picked from commit
c2de702cbdb0034a84550589195fe95df25572b9)
Rosen Penev [Tue, 2 Mar 2021 03:27:10 +0000 (19:27 -0800)]
nginx: fix compilation with BUILD_NLS
Requires nls.mk because of libxml2.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
de176d6f6f7bbe8abd8ae26c9b2350a9f9f38916)
Rosen Penev [Tue, 20 Apr 2021 01:28:14 +0000 (18:28 -0700)]
generate-ipv6-address: fix PIC compilation
This is a single C file. Don't bother using the Makefile.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
6123f3b48e3bd89ee7731ba442c21367558e372f)
Michael Heimpold [Wed, 27 Oct 2021 07:45:10 +0000 (09:45 +0200)]
Merge pull request #16989 from mhei/21.02-php8-update
[21.02] php8: update to 8.0.12
Michael Heimpold [Wed, 27 Oct 2021 07:44:57 +0000 (09:44 +0200)]
Merge pull request #16991 from mhei/21.02-php7-update
[21.02] php7: update to 7.4.25
Michael Heimpold [Fri, 22 Oct 2021 20:28:27 +0000 (22:28 +0200)]
php7: update to 7.4.25
This fixes:
- CVE-2021-21703
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
1df333bfb0e67fe879fde51b0ca9ab6f2127692e)
Michael Heimpold [Fri, 22 Oct 2021 19:04:15 +0000 (21:04 +0200)]
php8: update to 8.0.12
This fixes:
- CVE-2021-21703
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
fb7a33a114c27bc127e10bffca01e3ec3c6c0bdc)
Nick Hainke [Tue, 26 Oct 2021 15:16:21 +0000 (17:16 +0200)]
dawn: set symm_enc default to 0
User mpeleshenko reported that symm encryption breaks hearing map.
Set the default to 0.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
8b7fb614dd35a5fc88aa1d7d6e539aa5be50c7cd)
Rosen Penev [Mon, 22 Feb 2021 22:50:50 +0000 (14:50 -0800)]
mariadb: update to 10.4.18
Remove uClibc depends. It's gone now.
Remove CMAKE_INSTALL to avoid installing to InstallDev.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
8a62f2ea6b8462fea85905490099290983914cc5)
Michal Vasilek [Mon, 27 Sep 2021 15:52:46 +0000 (17:52 +0200)]
python-websockets: new package
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
bc10fbaebffb036731b4e9a1fdc40c9d1f535ba0)
Eneas U de Queiroz [Sat, 9 Oct 2021 00:38:25 +0000 (21:38 -0300)]
atlas-probe: allow parallel build
Set PKG_BUILD_PARALLEL:=1
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
9e8f127c31384da55473b81693fcecf7200b0c78)
Eneas U de Queiroz [Thu, 7 Oct 2021 19:50:04 +0000 (16:50 -0300)]
atlas-probe: Fix compilation with gcc11
This uses some definitions from <sys/cdefs.h> in gcc 8.4.0, not present
in musl or gcc11.
Also use clock_gettime() instead of syscall(__NR_clock_gettime,...),
which is not currently defined.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
281df4bcf5bb36f44f7163d045df74c6144b7daf)
Michal Vasilek [Thu, 14 Oct 2021 22:27:35 +0000 (00:27 +0200)]
knot-resolver: update to 5.4.2
* refresh patches
* disabling kres_gen_test is not required anymore for cross compilation, it was fixed upstream with the 5.4.1 release
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
2b3b2ffe42cab96504e4e56683317ff1cb6dc4f6)
Josef Schlehofer [Sun, 17 Oct 2021 08:01:24 +0000 (10:01 +0200)]
git: update to version 2.33.1
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
972e6ed2e7073f3c1adc2e9ffab705ce36b2f0c4)
Josef Schlehofer [Sun, 17 Oct 2021 07:24:29 +0000 (09:24 +0200)]
msmtp: update to version 1.8.17
- Use AUTORELEASE fce
It helps when someone forgets to bump PKG_RELEASE
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
18261fcd313b073e36a5ba39eeaf0aef808a1694)
Josef Schlehofer [Sat, 16 Oct 2021 20:45:27 +0000 (22:45 +0200)]
syslog-ng: update to version 3.34.1
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
d8e88ef51ec85c3f459fb4e8bf0e08fa26cffb29)
Josef Schlehofer [Mon, 18 Oct 2021 01:23:25 +0000 (03:23 +0200)]
dnscrypt-proxy2: update to version 2.1.1
Update copyright
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
6b37a1523043f0488fedae8c38e995c4f206b5be)
Jan Pavlinec [Mon, 18 Oct 2021 21:24:33 +0000 (23:24 +0200)]
checksec: update to version 2.5.0
Signed-off-by: Jan Pavlinec <jan.pavlinec1@gmail.com>
(cherry picked from commit
db358e8a89b363dca2fe17130a6f058ce6ce3ae9)
Michal Vasilek [Mon, 4 Oct 2021 15:32:33 +0000 (17:32 +0200)]
miniflux: new package
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
9697b69609b10aed8ca1a92859d1dce460144884)
Jan Pavlinec [Sun, 24 Oct 2021 12:41:47 +0000 (14:41 +0200)]
redis: update to version 6.2.6
Fixes:
- CVE-2021-41099
- CVE-2021-32762
- CVE-2021-32687
- CVE-2021-32675
- CVE-2021-32672
- CVE-2021-32628
- CVE-2021-32627
- CVE-2021-32626
Signed-off-by: Jan Pavlinec <jan.pavlinec1@gmail.com>
(cherry picked from commit
766a5b285e169a438b7b0642eec00be00fc610b9)
Jan Pavlinec [Wed, 11 Aug 2021 06:38:50 +0000 (08:38 +0200)]
redis: update to version 6.2.5
Fixes CVE-2021-32761
Signed-off-by: Jan Pavlinec <jan.pavlinec1@gmail.com>
(cherry picked from commit
3cc8a1f37e6dfd6297e550956a3570726f7f3236)
Jan Pavlinec [Mon, 14 Jun 2021 12:33:22 +0000 (14:33 +0200)]
redis: update to version 6.2.4
Fixes CVE-2021-32625
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
c7ffa391f19b6d5292969d697511853446f27a8d)
Jan Pavlinec [Tue, 11 May 2021 07:58:54 +0000 (09:58 +0200)]
redis: update to version 6.2.3
Fixes CVE-2021-29477
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
5f47bec5e8505d609917d41fdf0f089f87558fe5)
Jan Pavlinec [Mon, 26 Apr 2021 09:49:33 +0000 (11:49 +0200)]
redis: update to version 6.2.2
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
5894ca38b2177d15dcfee5881c740e6335548345)
Jan Pavlinec [Mon, 8 Mar 2021 13:48:07 +0000 (14:48 +0100)]
redis: update to version 6.2.1
Changes:
-remove zmalloc patch which is part of release
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
d4ead62706cac0d1b5a9d4bdcc3def6a9d038111)
Jan Pavlinec [Mon, 1 Mar 2021 11:26:14 +0000 (12:26 +0100)]
redis: update to version 6.2.0
Fixes CVE-2021-21309
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
(cherry picked from commit
4e0962e8f484fa64381f9b12f176e66bb8723ded)
Jan Hák [Mon, 25 Oct 2021 08:58:04 +0000 (10:58 +0200)]
knot: update to version 3.1.3
Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit
175087bf250d1e1043ecad1ee352297398816d51)
Nick Hainke [Mon, 25 Oct 2021 22:29:20 +0000 (00:29 +0200)]
dawn: update to 2021-10-26
ddc007e32ced ubus: avoid use after free in handle_probe_req()
e1275713c057 github: fix workflow
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
2e02deb5a95c75012d4078425417fc3c960db744)
Nick Hainke [Wed, 20 Oct 2021 08:26:54 +0000 (10:26 +0200)]
dawn: respawn dawn in case of crash
Some users report that DAWN sometimes crashes after a while. Mostly
this happens after the new update has been rolled out.
Since I would not like to go back to the older version, I add as
a workaround for now that DAWN automatically respawned.
Workaround for:
https://github.com/berlin-open-wireless-lab/DAWN/issues/151
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
c1490175d3e47319235ab47fa8e4184d46698265)
Nick Hainke [Wed, 13 Oct 2021 09:11:08 +0000 (11:11 +0200)]
dawn: update to 2021-10-13
d222d12bcb58 ubus: use local blub_buffer definitions and free
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
147c401d195218f12822ee292c9d07fcf0d92758)
Nick Hainke [Sat, 7 Aug 2021 08:54:21 +0000 (10:54 +0200)]
dawn: update to 2021-08-05
*
c70773a - datastorage: use signal strength as a metric
*
14e0f83 - Don't display debugging output with DAWN_NO_OUTPUT
*
97e5de1 - uci: add neighbor list priority options
*
2b1a53c - dawn_uci: set default values
*
6eb747b - Use separate configs for 802.11g & 802.11a bands
*
1e34357 - Verify compatibility before parsing config message
*
a7a8309 - List all neighbors with same score when kicking
*
3ba0fa4 - Change beacon request fields to appropriate values
*
009aab9 - Change mode config parameter from int to string
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit
2039e3fce068d39ff51cf2be514bf50f66468043)
Michal Vasilek [Tue, 5 Oct 2021 14:06:19 +0000 (16:06 +0200)]
docker: update to 20.10.9
* switch to AUTORELEASE
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
Michal Vasilek [Tue, 5 Oct 2021 14:06:14 +0000 (16:06 +0200)]
dockerd: update to 20.10.9
* switch to AUTORELEASE
* fixes CVE-2021-41089
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
Tianling Shen [Fri, 22 Oct 2021 16:24:12 +0000 (00:24 +0800)]
yq: Update to 4.13.5
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
336577fe29f569d8a7455603ba92cdde14dde300)
Olivier Poitrey [Fri, 22 Oct 2021 13:29:24 +0000 (13:29 +0000)]
nextdns: Update to version 1.37.3
Signed-off-by: Olivier Poitrey <rs@nextdns.io>
Marcos Del Sol Vives [Sun, 17 Oct 2021 14:49:23 +0000 (16:49 +0200)]
ksmbd-tools: update to 3.4.2
Signed-off-by: Marcos Del Sol Vives <marcos@orca.pet>
(cherry picked from commit
212f057df74b3937ebaf8b347852c937484ee7bb)
Rosen Penev [Wed, 11 Aug 2021 23:29:58 +0000 (16:29 -0700)]
ksmbd-tools: update to 3.4.1
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
ac5097af94a6e63a4089c7c4bc1ecd443c6248e7)
Fritz D. Ansel [Sun, 15 Aug 2021 15:05:56 +0000 (17:05 +0200)]
ksmbd: use hostname only as name
even if a fqdn (with domain) is set by user
Signed-off-by: Fritz D. Ansel <fdansel@yandex.ru>
(cherry picked from commit
47e87e1b75dfd5286a7e87cbfee25db3d9c78f8a)
Rosen Penev [Mon, 19 Jul 2021 04:09:44 +0000 (21:09 -0700)]
ksmbd-tools: update to 3.4.0
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
0162bd3a9f449ee92ee73232db10f541576be162)
Alexandru Ardelean [Mon, 18 Oct 2021 08:18:28 +0000 (11:18 +0300)]
django: bump to version 3.2.8
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Stan Grishin [Tue, 19 Oct 2021 06:35:23 +0000 (23:35 -0700)]
Merge pull request #16930 from stangri/openwrt-21.02
[21.02] vpn-policy-routing: bugfixes: killall and tmpfs params
Stan Grishin [Tue, 19 Oct 2021 05:24:34 +0000 (05:24 +0000)]
vpn-policy-routing: bugfixes: killall and tmpfs params
* bugfix: change killall param from -HUP to -s HUP
* bugfix: change tmpfs param from status to gateway
Signed-off-by: Stan Grishin <stangri@melmac.net>
(cherry picked from commit
2b6c8d827369a29d3546c6bae27121aeb93e7f9a)
Hirokazu MORIKAWA [Mon, 18 Oct 2021 06:47:01 +0000 (15:47 +0900)]
node: bump to 14.18.1 / October 12th 2021 Security Releases
October 12th 2021 Security Releases:
HTTP Request Smuggling due to spaced in headers (Medium)(CVE-2021-22959)
HTTP Request Smuggling when parsing the body (Medium)(CVE-2021-22960)
Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
Stan Grishin [Tue, 19 Oct 2021 02:58:33 +0000 (19:58 -0700)]
Merge pull request #16924 from stangri/openwrt-21.02
[21.02] vpn-policy-routing: revert to 0.3.4-8
Stan Grishin [Sun, 17 Oct 2021 15:08:31 +0000 (15:08 +0000)]
vpn-policy-routing: revert to 0.3.4-8
* there are reports that 0.3.5-x versions do not work on some configs
* the development of the new features moved to the new package (pbr)
* revert to the last known good version of vpn-policy-routing
Signed-off-by: Stan Grishin <stangri@melmac.net>
(cherry picked from commit
77514c10a7795a395167213f02cb9669ea9a1d77)
Tianling Shen [Tue, 12 Oct 2021 07:42:36 +0000 (15:42 +0800)]
msgpack-c: Update to 4.0.0
- Fixed typo error in PKG_LICENSE_FILES.
- Updated CMAKE_OPTIONS.
- Refreshed the patch.
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
e4d463b89d300bb6148a4e232667bb5838cd718a)
Rosen Penev [Thu, 24 Jun 2021 08:11:27 +0000 (01:11 -0700)]
msgpack-c: don't check for GTest
Not available with OpenWrt. Fixes compilation when host GTest is
present.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
7f34b03356e770d6aa14a9fa5152ac4020338b93)
Michal Vasilek [Wed, 22 Sep 2021 14:02:43 +0000 (16:02 +0200)]
nnn: update to 4.2
* switch to AUTORELEASE
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
42bf46039c48d7a7b03c292e1975870b1d360269)
Rosen Penev [Sat, 21 Aug 2021 00:23:59 +0000 (17:23 -0700)]
fakepop: fix compilation with PKG_ASLR
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
15d2ed15caa23003447e83d1de219b7968919088)
Rosen Penev [Thu, 15 Jul 2021 02:02:42 +0000 (19:02 -0700)]
lxc: update to 4.0.10
Remove getline patch. It seems to be for uClibc, which is no longer in
the tree.
Remove commands patch. Issue was fixed upstream. Same with the tests
patch.
Remove gpg patch. It's an upstream backport.
Refreshed others.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
3df43e2f66a8f089e7b0b2af9c012a2e300229b0)
Stan Grishin [Fri, 15 Oct 2021 22:29:16 +0000 (15:29 -0700)]
Merge pull request #16899 from stangri/openwrt-21.02
[21.02] simple-adblock: update to 1.8.8-1
Stan Grishin [Fri, 15 Oct 2021 21:25:08 +0000 (21:25 +0000)]
simple-adblock: update to 1.8.8-1
* update 'check' function
Signed-off-by: Stan Grishin <stangri@melmac.net>
(cherry picked from commit
d11f310230497ea81cf207f9214528bd9d221eee)
Stan Grishin [Fri, 15 Oct 2021 21:15:48 +0000 (14:15 -0700)]
Merge pull request #16896 from stangri/openwrt-21.02
[21.02] curl: update to 7.79.1
Stan Grishin [Sun, 26 Sep 2021 18:32:27 +0000 (18:32 +0000)]
curl: update to 7.79.1
* update to [7.79.1](https://curl.se/changes.html#7_79_1)
Signed-off-by: Stan Grishin <stangri@melmac.net>
Josef Schlehofer [Fri, 15 Oct 2021 13:09:51 +0000 (15:09 +0200)]
Merge pull request #16889 from paper42/knot-3.1.2-21
[21.02]: knot: update to 3.1.2
Michal Vasilek [Thu, 14 Oct 2021 22:02:33 +0000 (00:02 +0200)]
knot: update to 3.1.2
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
Kerma Gérald [Sat, 9 Oct 2021 09:11:05 +0000 (11:11 +0200)]
crowdsec-firewall-bouncer: initial package v0.0.15
/net/crowdsec-firewall-bouncer/
crowdsec-firewall-bouncer will fetch new and old decisions from
a CrowdSec API to add them in a blocklist used by supported firewalls.
Signed-off-by: Kerma Gérald <gandalf@gk2.net>
(cherry picked from commit
676a621647000c2618360a7752151c7110bd6c58)
Kerma Gérald [Thu, 29 Jul 2021 15:36:58 +0000 (17:36 +0200)]
crowdsec: initial package v1.2.0
/net/crowdsec/
Crowdsec - An open-source, lightweight agent to detect
and respond to bad behaviours.
It also automatically benefits from a global community-wide
IP reputation database.
Signed-off-by: Kerma Gérald <gandalf@gk2.net>
(cherry picked from commit
8903d1b7ca403bcffaead372ac288213252d5d75)
Tianling Shen [Tue, 12 Oct 2021 08:16:37 +0000 (16:16 +0800)]
yq: Update to 4.13.4
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
2f51a0188c36ed99b21d53fa9ddb123458b935e8)
Stan Grishin [Thu, 14 Oct 2021 05:08:27 +0000 (22:08 -0700)]
Merge pull request #16884 from stangri/openwrt-21.02
[21.02] https-dns-proxy: update to 2021-09-27
Stan Grishin [Thu, 30 Sep 2021 18:44:30 +0000 (18:44 +0000)]
https-dns-proxy: update to 2021-09-27
* update to [2021-09-27](https://github.com/aarond10/https_dns_proxy/commit/
da2501f542a732167a78f1851a511d9c0abc2fd8)
* fixes https://github.com/aarond10/https_dns_proxy/issues/125
* restart instead of reload on interface hotplug
* fixes https://github.com/openwrt/packages/issues/16794
* produce output and log entries on service start/stop
* prevent unnecessary dnsmasq restarts if service has previously updated dnsmasq settings
* allow both named and typed dnsmasq instance settings to be updated
* update 010-fix-cmakelists patch file
Signed-off-by: Stan Grishin <stangri@melmac.net>
(cherry picked from commit
f8d16338da979ad20908bd2a16ca62857a902e91)
Michal Vasilek [Tue, 12 Oct 2021 12:49:07 +0000 (14:49 +0200)]
tor: update to 0.4.5.10
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
Georgi Valkov [Sun, 10 Oct 2021 10:00:44 +0000 (13:00 +0300)]
acme: update to 3.0.1
On September the 29th, the certificate for R3, the intermediate
CA of Let's Encrypt expired, followed by the root CA expiration
on September the 30th. Update the acme client to 3.0.1,
to make sure newly generated certificates are using the new CA.
This is a backport of
468fc5fca429ca4276dfcfb4136a0d741ed9038b.
https://github.com/openwrt/packages/pull/16801
Default to letsencrypt because the upstream default may change.
Passing --staging is no longer needed, since --serever will
select a staging server if needed.
Signed-off-by: Georgi Valkov <gvalkov@abv.bg>
Tested-by: Georgi Valkov <gvalkov@abv.bg>
Acked-by: Toke Høiland-Jørgensen <toke@toke.dk>
Jeffery To [Sun, 10 Oct 2021 21:49:00 +0000 (05:49 +0800)]
golang: Update to 1.17.2
Includes fix for CVE-2021-38297 (passing very large arguments to WASM
module functions can cause portions of the module to be overwritten).
Signed-off-by: Jeffery To <jeffery.to@gmail.com>
(cherry picked from commit
dd986cde7fba08b7c01e3c2a7e25ae612319041f)
Michael Heimpold [Sat, 9 Oct 2021 08:58:45 +0000 (10:58 +0200)]
Merge pull request #16806 from mhei/21.02-php8-update
[21.02] php8: update to 8.0.11
Michael Heimpold [Sat, 9 Oct 2021 08:58:29 +0000 (10:58 +0200)]
Merge pull request #16805 from mhei/21.02-php7-update
[21.02] php7: update to 7.4.24
Eneas U de Queiroz [Mon, 16 Aug 2021 14:07:35 +0000 (11:07 -0300)]
perl: perlmod.mk: use flock when hostpkg/perl used
Avoid parallel relinking and usage of the host perl binary by wrapping
its usage around flock calls.
Sometimes, two packages will try to relink the static host perl binary
at the same time. Neither of them will have the other's module linked
in, and one of them will unavoidably clobber the other one's binary.
This will lead to errors when a package will not be able to find a
module that was supposed to be installed.
To fix that, an exclusive flock is used when relinking, with a 900
seconds timeout to avoid locking up the build process forever.
This is not enough because the binary may be concurrently used to build
another module package; perl is used in Configure, Compile, and Install
procedures. If timing is right, a package will fail with a "permission
denied" error.
So a shared flock call is added in Configure, Compile, and Install
definitions for host and target, with a shorter, 300 seconds timeout.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit
1e18c4324fd1fb43764057fb8f4e9c1ea4a17553)
Max S Kash [Sun, 26 Sep 2021 19:52:30 +0000 (00:52 +0500)]
ttyd: fix ssl ca option init
Signed-off-by: Max S Kash <asukms@ya.ru>
Alexandru Ardelean [Mon, 4 Oct 2021 12:12:12 +0000 (15:12 +0300)]
python-pytz: bump to version 2021.3
And switch to AUTORELEASE for PKG_RELEASE.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Hannu Nyman [Wed, 6 Oct 2021 18:46:47 +0000 (21:46 +0300)]
nano: update to 5.9
Update nano editor to version 5.9.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
(cherry picked from commit
38143e6f8b9d1ff0a3e33a15d655306cc9f74c27)
Moritz Warning [Fri, 8 Oct 2021 14:22:36 +0000 (16:22 +0200)]
smcroute: update to version 2.5.3
Signed-off-by: Moritz Warning <moritzwarning@web.de>
Leo Soares [Wed, 6 Oct 2021 13:03:42 +0000 (14:03 +0100)]
autossh: fix procd env issue
This commit fixes an issue where the `AUTOSSH_GATETIME` is not available in the `procd` environment which gets overwritten by the second `procd_set_param env` call.
It now calls the `procd_set_param env` once with the two variables, instead of twice.
Signed-off-by: Leo Soares <leo@hyper.ag>
(cherry picked from commit
9c4d79519ced3d0ccf6917e24b32b747e1672c62)
Rosen Penev [Sun, 13 Jun 2021 01:26:19 +0000 (18:26 -0700)]
autossh: fix compilation without ssh installed
configure script looks for host ssh. Just pass the configure variable
directly. --with-ssh doesn't work.
Also get rid of custom Compile section. It's not needed.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit
63b7febf5f62a120539611b1f7c252db5dc244cb)
Michael Heimpold [Mon, 27 Sep 2021 18:46:19 +0000 (20:46 +0200)]
php8: update to 8.0.11
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
6969fedfd96010dbab67e83d4e761d581bbb3a1d)
Michael Heimpold [Sun, 26 Sep 2021 20:05:15 +0000 (22:05 +0200)]
php8: fix module loading with glibc (refs #16642)
Without -ldl linker flag .so extensions are not loaded
when glibc is used. Fix it by providing adjusted LDFLAGS
for this case.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
1bff138517bd4ea93b59873590f7dfd0c7fe1931)
Michael Heimpold [Mon, 30 Aug 2021 11:34:46 +0000 (13:34 +0200)]
php8: update to 8.0.10
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
449acc7dacf867db2a00ea886b7e4484ceeca6d9)
Michael Heimpold [Mon, 27 Sep 2021 18:42:47 +0000 (20:42 +0200)]
php7: update to 7.4.24
This fixes:
- CVE-2021-21706
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
96a04adbf3a3c76360c8be6f7a18c7e9c04561d4)
Michael Heimpold [Sun, 26 Sep 2021 19:57:36 +0000 (21:57 +0200)]
php7: fix module loading with glibc (refs #16642)
Without -ldl linker flag .so extensions are not loaded
when glibc is used. Fix it by providing adjusted LDFLAGS
for this case.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
d153c61650c0e5a55f4d9d00fcae6f257992c35f)
Kamil Trzciński [Fri, 1 Oct 2021 13:17:00 +0000 (16:17 +0300)]
travelmate: support meta-refresh with single-quote
Currently `travelmate` only support `<meta` tag
if it contains `"`. This updates `travelmate.sh` to support
`'` as well.
```html
<meta...content='1; url=
```
Signed-off-by: Kamil Trzciński <ayufan@ayufan.eu>
(cherry picked from commit
2cbd9a2eb1a1658bed9d766e7397ff9ee39cd83b)
Gerard Ryan [Fri, 1 Oct 2021 02:00:38 +0000 (12:00 +1000)]
cache-domains: Fixed remote script usage change
* Removed all unnecessary files after configuration
* Reduced code duplication
* Changed to symlinking config instead of copying
Signed-off-by: Gerard Ryan <G.M0N3Y.2503@gmail.com>
Hannu Nyman [Sun, 3 Oct 2021 18:05:06 +0000 (21:05 +0300)]
haveged: update to 1.9.15
Update haveged to version 1.9.15.
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Tianling Shen [Sat, 2 Oct 2021 15:33:38 +0000 (23:33 +0800)]
yq: Update to 4.13.3
Fixes: CVE-2021-33196
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
86e26a0c3b18883d8e6884c538d68e04160eaf47)
Alexandru Ardelean [Mon, 27 Sep 2021 19:09:16 +0000 (22:09 +0300)]
openpyxl: bump to version 3.0.9
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
Niels Widger [Mon, 27 Sep 2021 18:48:46 +0000 (14:48 -0400)]
[openwrt-21.02] delve: Update to 1.7.2
See https://github.com/go-delve/delve/blob/master/CHANGELOG.md for
changes.
Signed-off-by: Niels Widger <niels@qacafe.com>
Chukun Pan [Sun, 26 Sep 2021 03:35:10 +0000 (11:35 +0800)]
zerotier: update to 1.6.6
This is a security release (see [1]).
[1] https://www.zerotier.com/2021/09/21/incident-response-to-september-20th-2021
Signed-off-by: Chukun Pan <amadeus@jmu.edu.cn>
(cherry picked from commit
7f50af89496751206a764c244a7f93a4acde9c34)
Tianling Shen [Fri, 24 Sep 2021 07:05:34 +0000 (15:05 +0800)]
xray-core: Update to 1.4.5
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
0a2fb81acc71a687b7f8a29baff5ad2ef7d58497)
Tianling Shen [Mon, 20 Sep 2021 18:36:46 +0000 (02:36 +0800)]
yq: Update to 4.13.2
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit
f97d8182b8cbfc89db70cf99052b924883136464)
Paul Spooren [Fri, 24 Sep 2021 03:25:56 +0000 (17:25 -1000)]
attendedsysupgrade-common: use sysupgrade.openwrt.org
A new server was added which runs within the OpenWrt cloud, it's much
faster and should be used instead. For development the server at
https://asu.aparcar.org stays available.
Signed-off-by: Paul Spooren <mail@aparcar.org>
Nicholas Smith [Sun, 6 Jun 2021 10:53:56 +0000 (20:53 +1000)]
libmbim: bump to 1.24.8
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
2e3fb9c996afa9b0a026f92d9a1b57cb4238e012)
Nicholas Smith [Sun, 6 Jun 2021 10:54:44 +0000 (20:54 +1000)]
modemmanager: bump to 1.16.6
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
5bfe8ed2dffb8b8af37b78d8399b19344ba49311)
Nicholas Smith [Sun, 22 Aug 2021 05:49:41 +0000 (15:49 +1000)]
libqmi: bump to 1.28.8
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
4e67af0cc1f96217a483e5196edf06cb1d216573)
Nicholas Smith [Sun, 6 Jun 2021 10:52:36 +0000 (20:52 +1000)]
libqmi: bump to 1.28.6
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
(cherry picked from commit
875e7a759de89cb86f44cace9622549d7e9855af)
John Audia [Tue, 7 Sep 2021 10:02:13 +0000 (06:02 -0400)]
lxc: remove legacy cgroups from common.conf
I am unaware of any kernel currently provided that retains cgroup v1 support.
This patch removes these lines in /usr/share/lxc/config/common.conf to allow
for error free usage.
Providing common.conf as-is will result in failure to start. One solution is to
comment out the legacy lines.[1] This requires users to either provide a custom
version of this file on their builds or to manually edit it with each update.
Since many do not build their own, the first option is not available to them.
Manually editing the file with each update will cause a failure to start
containers set to auto-start upon rebooting into the update.
1. https://forum.openwrt.org/t/openwrt-arm64-quick-lxc-howto-guide-lms-in-debian-system-in-lxc-container/99835
Signed-off-by: John Audia <graysky@archlinux.us>
(cherry picked from commit
049cf1e1b0fef97f98ad77a8a26d0fa1b6dad174)
Michal Vasilek [Fri, 17 Sep 2021 20:06:44 +0000 (22:06 +0200)]
syncthing: update to 1.18.2
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
9a172a52fbd293c742d02cdb49f77ddf06928c7f)
Josef Schlehofer [Mon, 6 Sep 2021 13:33:05 +0000 (15:33 +0200)]
python-astral: update to version 2.2
Update copyright
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit
1deaf6dbbeb1247ff34c1b569ccd922a0e656511)
Michal Vasilek [Thu, 16 Sep 2021 21:32:36 +0000 (23:32 +0200)]
fail2ban: patch CVE-2021-32749
* switch to AUTORELEASE
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit
273a6d19c5aa29b84873a765a942b204b4249200)
Michael Heimpold [Thu, 16 Sep 2021 06:14:00 +0000 (08:14 +0200)]
Merge pull request #16635 from mhei/21.02-php7-update
[21.02] php7: update to 7.4.23
Rosen Penev [Thu, 16 Sep 2021 04:18:51 +0000 (21:18 -0700)]
Merge pull request #16633 from
1715173329/yq-2102
[openwrt-21.02] yq: Update to 4.13.0
Michael Heimpold [Thu, 9 Sep 2021 05:39:21 +0000 (07:39 +0200)]
php7: fix config file upgrade issue (fixes #14623)
The addressed issue is related to #6893 as its resolution
is actually causing the problem.
When changing the priority of the config file it happens
that after a sysupgrade the previous file is restored
and the new file is added, ending up in a situation
like this:
/etc/php7/15_openssl.ini
/etc/php7/20_openssl.ini
Causing a double extension=openssl.so to be parsed,
which is not appropriate and leads to error message.
The same problem might also occur for mysqli since there
was also a priority change - let's take care about this
at the same time.
The solution is to remove one of the files. Since it is
a configuration file, the user might have adjusted it, so
lets just use the previous version to replace the new
installed version.
Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit
e51a04930153dad8f7bf74fbde4cfd8e8bd4d0f8)