5c95dda730
unbound: update to 1.13.1
...
Signed-off-by: Eric Luehrsen <ericluehrsen@gmail.com >
2021-02-28 16:01:03 -05:00
3abe9d0aef
vpn-policy-routing: bugfix: netflix user file missing redirect
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-02-26 22:03:41 +00:00
904d911c55
vpn-policy-routing: update user netflix file
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-02-26 02:16:44 +00:00
7d26130b33
vpn-policy-routing: custom user scripts improvements
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-02-24 19:44:10 +00:00
8550232147
adblock: update blocklist sources
...
* change adguard url
* remove malwaredomains (discontinued)
Signed-off-by: Dirk Brenken <dev@brenken.org >
2021-02-23 15:46:43 +01:00
04f8ded56d
Merge pull request #14869 from stangri/19.07-vpn-policy-routing
...
[19.07] vpn-policy-routing: update to version 0.3
2021-02-23 05:12:03 -08:00
39f3941cd4
knot: update to version 3.0.4
...
Signed-off-by: Jan Hak <jan.hak@nic.cz >
(cherry picked from commit 341fffb8dd
2021-02-23 12:25:02 +01:00
1662ca26ba
knot: update to 3.0.3
...
Signed-off-by: Jan Hak <jan.hak@nic.cz >
(cherry picked from commit 5cd9378653
2021-02-23 12:24:57 +01:00
9389a5dd1f
knot: disable embedded xdp
...
Signed-off-by: Jan Hák <jan.hak@nic.cz >
(cherry picked from commit 1f9d6fbb26
2021-02-23 12:24:52 +01:00
7619ff0dfc
knot: update to 3.0.2
...
Signed-off-by: Jan Hák <jan.hak@nic.cz >
(cherry picked from commit a54828926d
2021-02-23 12:24:47 +01:00
5ddcc2e050
knot: disable libnghttp2 autodetection
...
Signed-off-by: Daniel Salzman <daniel.salzman@nic.cz >
(cherry picked from commit 67e3c594de
2021-02-23 12:24:43 +01:00
fb103be86b
knot: update to version 3.0.1
...
definition of PSELECT_COMPAT could be removed many years ago, is no longer needed
Signed-off-by: Jan Hak <jan.hak@nic.cz >
(cherry picked from commit 4069bb1e72
2021-02-23 12:24:38 +01:00
8e1b62d4bb
openvswitch: update to version 2.11.6 (security fix)
...
Fixes CVEs:
- CVE-2020-35498
- In DPDK: CVE-2015-8011 and CVE-2020-27827
- In LLDP: CVE-2019-14818, CVE-2020-10722, CVE-2020-10723 and CVE-2020-10724
Removed patches:
- 0001-compat-Include-confirm_neigh-parameter-if-needed.patch because they
are included in this release as it was backported
- 0010-acinclude-Fix-build-with-kernels-with-prandom-moved-.patch
included in this release as it was backported
Other patches were refreshed.
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com >
2021-02-23 17:14:37 +08:00
5e24f6db6d
vpn-policy-routing: update to version 0.3
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-02-23 01:20:14 +00:00
3be5d565cf
Merge pull request #14710 from stangri/19.07-https-dns-proxy
...
[19.07] https-dns-proxy: support for force DNS/DNS hijacking
2021-02-22 16:27:00 -08:00
7be89f1f34
zerotier: bump to 1.6.4
...
Signed-off-by: Moritz Warning <moritzwarning@web.de >
2021-02-21 08:48:36 +01:00
fcf72948ae
bind: bump to 9.16.12
...
Includes fix for security issues:
* CVE-2020-8625: BIND servers are vulnerable if they are running an
affected version and are configured to use GSS-TSIG features.
Disable backtrace functionality, as it is unreliable across
architectures and generally only supported by upstream on amd64
Remove a patch that has been incorporated upstream
Signed-off-by: Noah Meyerhans <frodo@morgul.net >
2021-02-18 15:46:39 -08:00
90af10d015
Merge pull request #14647 from neheb/k9
...
[19.07] ksmbd(-tools): update to 3.3.4
2021-02-16 22:26:50 +00:00
3f0dbcdae1
isc-dhcp: seeing crashes when attempting to update dynamic dns
...
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com >
2021-02-10 12:00:53 -07:00
1a4184c076
https-dns-proxy: support for force DNS/DNS hijacking
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-02-10 05:59:24 +00:00
b1fec2b7b5
mosquitto: bump to 1.6.13
...
Includes various fixes: (2.0.7 + 1.6.13 dual release)
https://mosquitto.org/blog/2021/02/version-2-0-7-released/
Signed-off-by: Karl Palsson <karlp@etactica.com >
2021-02-08 15:20:53 +00:00
db69f0b57c
zerotier: update to 1.6.3
...
Signed-off-by: Moritz Warning <moritzwarning@web.de >
2021-02-06 22:06:37 +01:00
86c8807120
ksmbd-tools: update to 3.3.4
...
Manually updated.
Signed-off-by: Rosen Penev <rosenp@gmail.com >
2021-02-03 17:26:48 -08:00
cf79695645
simple-adblock: remove dependency on jsonfilter & old code
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-02-02 22:11:20 +00:00
46d327a59b
samba4: fix for #13758
...
* fix for possible exploit #13758
* sanetize all external template/config inputs
* fix some shellcheck warnings
Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com >
2021-01-26 12:24:57 +01:00
e8d15424b4
nextdns: Update to version 1.10.1
...
Signed-off-by: Olivier Poitrey <rs@nextdns.io >
2021-01-25 17:55:29 +00:00
46253b17d4
https-dns-proxy: bugfix: high CPU utilization
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-01-18 15:28:06 +00:00
7707d2d78c
haproxy: Update HAProxy to v2.0.20
...
- Update haproxy download URL and hash
Signed-off-by: Christian Lachner <gladiac@gmail.com >
2021-01-11 17:38:14 +02:00
8cc7aef3ce
nextdns: Update to version 1.9.6
...
Signed-off-by: Olivier Poitrey <rs@nextdns.io >
2021-01-10 23:25:34 +00:00
9e29bd4dee
https-dns-proxy: update to 2020-11-25: add HTTP auth and DSCP codepoint support
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2021-01-06 17:53:15 +00:00
0563feebc6
adblock: backport fixes
...
* set PROCD_RELOAD_DELAY correctly
* source changes:
- add new source 'games_tracking' (https://www.gameindustry.eu )
- change malwaredomains source mirror
- remove malwarelist source (source is empty)
- remove youtube source (does not work at all)
* add check for gnu-sort
Signed-off-by: Dirk Brenken <dev@brenken.org >
2020-12-23 21:20:28 +01:00
6bd3f5c377
mwan3: use ping -I for ipv6 after tunnel kernel fix
...
Now that tunnels have been fixed with openwrt commit
c9c7b4b3945c01c2aadf3ef5d9a77c8200db80f1 for stable branch 19.07
ping with src ip is no longer needed.
fixes #13655
Signed-off-by: Florian Eckert <fe@dev.tdt.de >
* Update commit message
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu >
2020-12-22 11:24:21 +01:00
2a7bbad223
noddos: remove
...
According to https://github.com/openwrt/packages/issues/14248 , this
is totally abandoned. The website isn't even up anymore.
Fixes: https://github.com/openwrt/packages/issues/14248
Signed-off-by: Rosen Penev <rosenp@gmail.com >
(backported from commit eb9d5bbf39
2020-12-21 20:02:08 +02:00
9f0c6921b4
Merge pull request #14280 from commodo/openwrt-19.07-ulogd
...
[19.07] ulogd: backports from master
2020-12-20 09:11:45 -08:00
182264c5bd
ulogd: Add back autoreconf
...
Compile fails at times, probably because of the patches.
Signed-off-by: Rosen Penev <rosenp@gmail.com >
(cherry picked from commit 0fa6b85686
2020-12-20 11:44:49 +02:00
6106d1f287
ulogd2: Build IPFIX module
...
add ulogd_output_IPFIX.so to ulogd-mod-extra
Signed-off-by: Sebastian Fleer <dev@dwurp.de >
(cherry picked from commit 3a06581ad7
2020-12-20 11:44:41 +02:00
c8730e9515
ulogd2: Backport upstream patches
...
IPFIX support was requested.
Signed-off-by: Rosen Penev <rosenp@gmail.com >
(cherry picked from commit 79c881200f
2020-12-20 11:44:35 +02:00
5845691cba
net: ulogd2: add myself as maintainer
...
Since this package has been abandoned, I don't mind taking it over.
If there are issues with it, I can also investigate, and be a point-man.
Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com >
(cherry picked from commit 2a5fb656f2
2020-12-20 11:44:29 +02:00
df1c29679e
nut: fix _ handling
...
Taken from https://github.com/openwrt/packages/issues/13359
Signed-off-by: Rosen Penev <rosenp@gmail.com >
(cherry picked from commit 4d39346fb4
2020-12-19 22:27:45 -08:00
3eb2e140eb
simple-adblock: config update
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2020-12-18 22:05:12 -06:00
e7d814a2b0
Merge pull request #14251 from Andy2244/samba-4.11.17
...
[19.07] samba4: update to 4.11.17
2020-12-17 14:38:38 -08:00
dc529c8cdd
wsdd2: update to git 2020-11-19
...
* update to git 2020-11-19
* cleanup comments
* use uppercase for none mdns option
Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com >
2020-12-17 21:04:33 +01:00
adb2143388
samba4: update to 4.11.17
...
* update to 4.11.17
* fix CVE-2020-1472, CVE-2020-14318, CVE-2020-14323, CVE-2020-14383
Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com >
2020-12-17 20:51:58 +01:00
dc015ffe27
simple-adblock: bugfix - config update
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2020-12-12 15:58:36 -06:00
9ca6bdaa05
https-dns-proxy: update binary to 2020-08-21
...
Signed-off-by: Stan Grishin <stangri@melmac.net >
2020-12-09 23:33:08 -10:00
13d999882b
zerotier: add patch to avoid including sys/auxv.h
...
It seems it's not needed and not supported under uClibc-ng.
Signed-off-by: Rosen Penev <rosenp@gmail.com >
(cherry picked from commit e632e189fd
2020-12-09 17:14:22 -08:00
061f81ff6d
miniupnpd: Don't override ipv6_listening_ip
...
Fixes: https://github.com/openwrt/packages/issues/14145
Signed-off-by: Jitao Lu <dianlujitao@gmail.com >
(cherry picked from commit c89a1f3e8b
2020-12-08 23:22:46 -08:00
e82884cafb
miniupnpd: Pass ipv6 addr to ipv6_listening_ip
...
Unlike ipv4, this option is supposed to be an IP address, otherwise, an
error occurs on startup:
can't parse "br-lan" as valid IPv6 listening address
Signed-off-by: Jitao Lu <dianlujitao@gmail.com >
(cherry picked from commit 7077fd8c79
2020-12-03 17:58:39 -08:00
33bd6b6afa
Merge pull request #14115 from mwarning/zt
...
zerotier: update to 1.6.2
2020-12-02 15:50:32 -08:00
ace81238c1
zerotier: update to 1.6.2
...
Signed-off-by: Moritz Warning <moritzwarning@web.de >
2020-12-02 19:01:33 +01:00
Eric Luehrsen