Commit Graph

33646 Commits

Author SHA1 Message Date
Peter van Dijk e1c57dc2c4 pdns-recursor: update to 5.2.2
includes fix for CVE-2025-30195 (which was in 5.2.1)

Signed-off-by: Peter van Dijk <peter.van.dijk@powerdns.com>
2025-04-24 17:59:52 +08:00
Paul Donald db051c6ad9 sqlite3: bump to 3.47.2
https://sqlite.org/changes.html

build: x86_64
run tested: x86_64

```
3.47.2 2024-12-07 20:39:59 2aabe05e2e8cae4847a802ee2daddc1d7413d8fc560254d93ee3e72c14685b6c (64-bit)
```

Signed-off-by: Paul Donald <newtwen+github@gmail.com>
2025-04-24 17:59:29 +08:00
Javier Marcet 5af23930d3 docker-compose: Update to version 2.35.1
Release notes:
https://github.com/docker/compose/releases/tag/v2.35.1

Signed-off-by: Javier Marcet <javier@marcet.info>
2025-04-24 17:56:29 +08:00
Wesley Gimenes 2ac31acc54 netbird: update to 0.42.0
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.42.0

Signed-off-by: Wesley Gimenes <wehagy@proton.me>
2025-04-24 17:54:07 +08:00
Wesley Gimenes 2da44915c9 netbird: update to 0.41.3
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.3

Signed-off-by: Wesley Gimenes <wehagy@proton.me>
2025-04-24 17:54:07 +08:00
Christian Lachner 83345c51fd haproxy: update to v3.0.10
- Update haproxy PKG_VERSION and PKG_HASH
- See changes: http://git.haproxy.org/?p=haproxy-3.0.git;a=shortlog

Signed-off-by: Christian Lachner <gladiac@gmail.com>
2025-04-24 17:53:35 +08:00
Maximilian Trüpschuch 711a19c4b2 jq: provide regex support in additional package jq-full
I modified the makefile, so that it will build two packages: jq and
jq-full. The former will remain unchanged and the latter will have a
dependency to the oniguruma library, so jq-full will have regex functions
enabled.

Signed-off-by: Maximilian Trüpschuch <milanx@gmx.net>
2025-04-24 01:22:48 +08:00
Rye Sears 5ab824b7fb coremark: fix error when it was built in the second run
When there is an error building packages other than coremark 
and re-run with make -j1 V=s, the coremark package will report error.
the root cause is the folder was already created in the first run, 
and not removed before the second run.

To fix this, use 'mkdir -p' instead of 'mkdir'.

Co-authored-by: Jonas Gorski <jonas.gorski@gmail.com>

Signed-off-by: Rye Sears <xlighting@gmail.com>
2025-04-23 15:14:09 +02:00
Daniel Golle 29a6674cb5 modemmanager: backport commit fixing crash with Fibocom mtk-7xx modems
Backport commit
046b79a676

See also
https://gitlab.freedesktop.org/mobile-broadband/ModemManager/-/issues/975

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
2025-04-23 15:11:06 +02:00
Dobroslaw Kijowski 97b7ee1815 adguardhome: Add George Sapkin as maintainer
Signed-off-by: Dobroslaw Kijowski <dobo90@gmail.com>
2025-04-23 15:07:50 +02:00
Wei-Ting Yang babc163fe3 net-snmp: fix PRIdPTR macro undefined error
This commit includes inttypes.h to prevent the following error:

```
mibgroup/ieee802dot11.c: In function 'displayWiExt':
mibgroup/ieee802dot11.c:4563:26: error: expected ')' before 'PRIdPTR'
 4563 |     printf ( "%s sens: %" PRIdPTR "\n", "SIOCGIWSENS", *(intptr_t *)&info.sens );
      |            ~             ^~~~~~~~
      |                          )
mibgroup/ieee802dot11.c:31:1: note: 'PRIdPTR' is defined in header '<inttypes.h>'; did you forget to '#include <inttypes.h>'?
   30 | #include "util_funcs/header_generic.h"
  +++ |+#include <inttypes.h>
   31 |
```

Signed-off-by: Wei-Ting Yang <williamatcg@gmail.com>
2025-04-23 15:06:16 +02:00
David Bauer 533d32face poemgr: update to latest HEAD
eaaf7ea contrib: update GPIO numbering
28774ac poemgr: add error logging

Signed-off-by: David Bauer <mail@david-bauer.net>
2025-04-23 02:49:29 +02:00
Liangbin Lian d827297546 transmission: add syscalls to seccomp filter
Add missing syscalls found with `/etc/init.d/transmission trace`.

fix crash on boot on x86_64 platform

Signed-off-by: Liangbin Lian <jjm2473@gmail.com>
2025-04-21 19:18:11 +01:00
Rikki Vizcarra 1de23c1c12 ddns-script: Change CURL call and redirect output in update_porkbun_v3
This also fixes: https://github.com/openwrt/packages/issues/26181

CURL funciton change was patterned on other ddns update scripts
that uses also JSON request/response payloads similar to
update_digitalocean_v2.sh: 15014f93e1/net/ddns-scripts/files/usr/lib/ddns/update_digitalocean_com_v2.sh (L29)
update_gcp_v1.sh: 15014f93e1/net/ddns-scripts/files/usr/lib/ddns/update_gcp_v1.sh (L212)

rebased and bumbped ddns-script version

Signed-off-by: Rikki Vizcarra <rikki.vizcarra@gmail.com>
2025-04-20 22:10:44 +02:00
Mieczyslaw Nalewaj b093eea601 xtables-addons: bump to 3.27
Updated for compatibility with kernel 6.12.

Signed-off-by: Mieczyslaw Nalewaj <namiltd@poczta.onet.pl>
2025-04-20 21:37:59 +02:00
Stephen Howell 6ade11fc3a realtek-poe: Build for all targets
* realtek-poe was only being built for realtek/rtl838x with mips-4kec
* needed by targets in realtek/rtl839x with mips-24kc

Signed-off-by: Stephen Howell <howels@allthatwemight.be>
2025-04-20 16:34:22 +02:00
Dirk Brenken 519c7fcf96
adblock: update 4.4.1-1
* add an uci-defaults script for housekeeping and option migration from former versions
* update the readme

Signed-off-by: Dirk Brenken <dev@brenken.org>
2025-04-19 20:01:23 +02:00
Paul Donald bed8c8ae33 ddns-scripts: bump package release
Signed-off-by: Paul Donald <newtwen+github@gmail.com>
2025-04-18 18:06:14 +02:00
Paul Donald 9f3d6fed24 ddns-scripts: fix daemon to reload instead of kill
Instead of just killing all the processes, let's actually reload them,
since that's what the user would expect when issuing a 'reload' command.

Move the killall portion to a kill function

Signed-off-by: Paul Donald <newtwen+github@gmail.com>
2025-04-18 18:06:14 +02:00
Paul Donald 081f1856a5 ddns-scripts: fix daemon start - background the script
omitted the ampersand in the re-factor in commit
a361672882

Signed-off-by: Paul Donald <newtwen+github@gmail.com>
2025-04-18 18:06:14 +02:00
Ryan Press 939939bcee modemmanager: bump to 1.24.0
100-ublox-remove-ID_MM_PROCESS-tags.patch has been removed as this change is now upstream.

Signed-off-by: Ryan Press <ryan@presslab.us>
2025-04-18 18:00:40 +02:00
Ryan Press 589debf53d libmbim: bump to 1.32.0
Signed-off-by: Ryan Press <ryan@presslab.us>
2025-04-17 15:10:28 +02:00
Ryan Press bd8d110e5e libqmi: bump to 1.36.0
Signed-off-by: Ryan Press <ryan@presslab.us>
2025-04-17 15:10:17 +02:00
Eric Fahlgren 3e2576c54c owut: update to 2025.04.08
Bug fixes:
    efahl/owut@ef2bfb4d4c owut: remove trailing commas in json dump
Enhancements:
    efahl/owut@2586b2cfd5 owut: minor name cleanup

Signed-off-by: Eric Fahlgren <ericfahlgren@gmail.com>
2025-04-17 10:15:27 +02:00
Dirk Brenken 3e99991067
adblock: update 4.4.0-3
* checked and fixed the kresd and smartdns support
* fixed another ETAG issue
* changed the enabled feeds in default config to certpl, aguard and adguard_tracking
* various other small fixes
* update the readme

Signed-off-by: Dirk Brenken <dev@brenken.org>
2025-04-16 21:37:07 +02:00
George Sapkin 7b2daf0f0a external-protocol: add missing ip dependency
external.sh requires ip with -json flag that is not supported by the
BusyBox ip.

Fixes: https://github.com/openwrt/packages/issues/26302
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 19:04:08 +02:00
George Sapkin e076de270a syncthing: bump to 1.29.5
Bugfixes:

- use separate lock file instead of locking the certificate

Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.5
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 18:53:35 +02:00
George Sapkin e23dceaf4d syncthing: bump to 1.29.4
Bugfixes:

- Tildes break directory autocomplete

Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.4
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 18:53:35 +02:00
George Sapkin d7525fca43 syncthing: bump to 1.29.3
Bugfixes:

- Unintelligible error message "setting metadata: lookup failed"

Changelog: https://github.com/syncthing/syncthing/releases/tag/v1.29.3
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 18:53:35 +02:00
John Audia 343f1151f9 lxc: update to 6.0.4
Added upstream patch to fix starting containers with complex hooks.
No existing patches needed to be rebased/simple version bump to 6.0.4.

Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64

Signed-off-by: John Audia <therealgraysky@proton.me>
2025-04-16 18:53:16 +02:00
John Audia 0ec5c1e1a9 openssh: bump to 10.0p1
This update requires sshd-auth to be packaged due to the authentication
bin split introduced in this version.

Changelog: https://www.openssh.com/txt/release-10.0

Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64

Signed-off-by: John Audia <therealgraysky@proton.me>
2025-04-16 18:52:44 +02:00
George Sapkin 8c49ed8ade yt-dlp: bump to 2025.03.31
Core changes

- Add --compat-options 2024

Extractor changes

- francaisfacile: Add extractor
- generic: Validate response before checking m3u8 live status
- microsoftlearnepisode: Extract more formats
- mlbtv: Fix radio-only extraction
- on24: Support mainEvent URLs
- sbs: Fix subtitles extraction
- stvr: Rename extractor from RTVS to STVR
- twitch: clips: Extract portrait formats
- youtube
  - Add player_js_variant extractor-arg
  - tab: Fix playlist continuation extraction

Pick up the package as a maintainer as per previous maintainer's
request.

Changelog: https://github.com/yt-dlp/yt-dlp/releases/tag/2025.03.31
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 18:51:49 +02:00
George Sapkin 303f7973f7 yt-dlp: assign PKG_CPE_ID
Link: https://nvd.nist.gov/products/cpe/detail/2739DE26-F16B-478E-A270-32C659C7F2C6?namingFormat=2.2&orderBy=CPEURI&keyword=yt-dlp&status=FINAL
Link: https://github.com/openwrt/packages/issues/8534
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 18:51:49 +02:00
George Sapkin afe9935ff4 yt-dlp: add CI version check
Signed-off-by: George Sapkin <george@sapk.in>
2025-04-16 18:51:49 +02:00
Tianling Shen df9ba18578
librespeed-go: add missing conffiles
Add missing uci configuration to conffiles.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2025-04-16 17:25:07 +08:00
Stan Grishin 71f596840b adblock-fast: bugfixes: empty allow-lists, support for swap
* do not produce an error on empty allow-lists, fixes https://github.com/openwrt/packages/issues/26228
* do not produce an error when swap is available, fixes https://github.com/openwrt/packages/issues/26313

Signed-off-by: Stan Grishin <stangri@melmac.ca>
2025-04-15 21:35:58 -07:00
Wesley Gimenes 9c557d206b netbird: update to 0.41.2
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.2

Signed-off-by: Wesley Gimenes <wehagy@proton.me>
2025-04-15 22:12:45 +03:00
Wesley Gimenes 4dee0fc39e netbird: update to 0.41.1
changelog: https://github.com/netbirdio/netbird/releases/tag/v0.41.1

Signed-off-by: Wesley Gimenes <wehagy@proton.me>
2025-04-15 22:12:45 +03:00
Tianling Shen 87ed509841
cloudflared: Update to 2025.4.0
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2025-04-15 19:42:45 +08:00
Tianling Shen 1d73b25ed8
v2ray-geodata: Update to latest version
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2025-04-15 19:42:31 +08:00
Tianling Shen 6f869c6ceb
v2ray-core: Update to 5.29.3
Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2025-04-15 19:41:59 +08:00
John Audia 151156c9cc htop: update to 3.4.1
Changelog: https://github.com/htop-dev/htop/blob/main/ChangeLog#L1-L10

Build system: x86/64
Build-tested: x86/64
Run-tested: x86/64

Signed-off-by: John Audia <therealgraysky@proton.me>
2025-04-15 02:56:17 +08:00
Tianling Shen 1fc56e79d5 libcbor: disable sanitize by default
musl libc does not support this feature, and for glibc, additional
library libasan is required. Disable it explicitly to avoid build issue
when CONFIG_DEBUG is selected.

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
2025-04-14 14:41:18 +03:00
Petr Štetiar 4803944c5a libarchive: bump to 3.7.9 fixing CVE-2025-25724, CVE-2025-1632, CVE-2024-57970
Libarchive 3.7.9 is a bugfix release, fixing a regression in libarchive
3.7.8 regarding GNU sparse entries was fixed.

Libarchive 3.7.8 is a bugfix and security release:

  Security fixes:

    * tar reader: Handle truncation in the middle of a GNU long linkname (CVE-2024-57970)
    * unzip: fix null pointer dereference (CVE-2025-1632)
    * tar reader: fix unchecked return value in list_item_verbose() (CVE-2025-25724)

  Important bugfixes:

    * 7zip reader: add SPARC and POWERPC filter support for non-LZMA compressors
    * tar reader: Ignore ustar size when pax size is present
    * tar writer: Fix bug when -s/a/b/ used more than once with b flag
    * cpio: Fix a Y2038 bug on Windows
    * libarchive: Handle ARCHIVE_FILTER_LZOP in archive_read_append_filter
    * libarchive: Adding missing seeker function to archive_read_open_FILE()

Full Changelog: https://github.com/libarchive/libarchive/compare/v3.7.7...v3.7.8

Signed-off-by: Petr Štetiar <ynezz@true.cz>
2025-04-14 10:41:40 +02:00
Stan Grishin e67e30d0e1 https-dns-proxy: update to 2025.03.13 upstream
* fixes https://github.com/openwrt/packages/issues/25522

Signed-off-by: Stan Grishin <stangri@melmac.ca>
2025-04-13 17:18:20 -07:00
Dirk Brenken d10813d62f
adblock: update 4.4.0-2
* minor ETAG fixes and improvements
* permanently set the addnmount option for dnsmasq
* cosmetics

Signed-off-by: Dirk Brenken <dev@brenken.org>
2025-04-13 21:41:56 +02:00
Mikael Magnusson 2bd00ef789 openssh: add FIDO U2F and FIDO2 hardware token support
Add openssh-sk-helper package containing ssh-sk-helper.

The helper can be used by openssh-client, openssh-sftp-client,
and openssh-keygen to access `ecdsa_sk` and `ed25519_sk keys
provided by a FIDO U2F or FIDO2 hardware token connected over USB.

Close #24509

Signed-off-by: Mikael Magnusson <mikma@users.sourceforge.net>
2025-04-13 16:48:17 +08:00
Mikael Magnusson 0a3ef8cbf4 Revert "openssh: Add FIDO2 hardware token support"
This reverts commit 855db864b0.

The reverted commit doesn't make sense since the component
(ssh-sk-helper) that uses libfido2, which is mentioned in
the commit message, isn't packaged.

Signed-off-by: Mikael Magnusson <mikma@users.sourceforge.net>
2025-04-13 16:48:17 +08:00
Javier Marcet daa3161704 docker-compose: Update to version 2.35.0
Release notes:
https://github.com/docker/compose/releases/tag/v2.35.0

Signed-off-by: Javier Marcet <javier@marcet.info>
2025-04-13 16:45:20 +08:00
Matthias Franck 39b1179bd6 libarchive: bump to 3.7.7 fixing a lot of security issues
libarchive fixed a lot of security issues in the last few releases, listing only
notable changes,

libarchive 3.7.5:

   * rar4: protect copy_from_lzss_window_to_unp()  CVE-2024-20696
   * rar4: fix CVE-2024-26256

libarchive 3.7.6:

   * this release fixes a tar regression introduced in libarchive 3.7.5

libarchive 3.7.7:

   * gzip: prevent a hang when processing a malformed gzip inside a gzip (OSS-Fuzz)
   * tar: don't crash on truncated tar archives (OSS-Fuzz)
   * tar: fix two leaks in tar header parsing

Link: https://github.com/libarchive/libarchive/releases

Signed-off-by: Matthias Franck <matthias.franck@softathome.com>
2025-04-13 16:43:29 +08:00