Upgrade to version 2.0.22, which is compatible with cmake 4.x
* backport a post-release fix for nossl build
Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
Move all global options (--protocol, --loglevel, --logfile, --config,
--origincert, etc.) before the 'run' subcommand, and keep --token
after it to match the correct cloudflared CLI syntax.
Signed-off-by: Akihiro Nagai <bashing.tremors_0f@icloud.com>
Changelog: https://github.com/snort3/snort3/releases/tag/3.9.7.0
% snort --version
,,_ -*> Snort++ <*-
o" )~ Version 3.9.7.0
'''' By Martin Roesch & The Snort Team
http://snort.org/contact#team
Copyright (C) 2014-2025 Cisco and/or its affiliates. All rights reserved.
Copyright (C) 1998-2013 Sourcefire, Inc., et al.
Using DAQ version 3.0.22
Using Vectorscan version 5.4.12 2025-11-02
Using libpcap version 1.10.5 (with TPACKET_V3)
Using LuaJIT version 2.1.0-beta3
Using LZMA version 5.8.1
Using OpenSSL 3.5.4 30 Sep 2025
Using PCRE2 version 10.46 2025-08-27
Using ZLIB version 1.3.1
Build system: x86/64
Build-tested: x86/64-glibc
Run-tested: x86/64-glibc
Signed-off-by: John Audia <therealgraysky@proton.me>
Changelog: https://github.com/ndilieto/uacme/blob/master/ChangeLog
2024-12-29 Nicola Di Lieto <nicola.dilieto@gmail.com>
* Release 1.7.6
- Fix OpenSSL 3.x deprecated APIs
- Fix cross compilation
- uacme: Add environment variables
- uacme: Add support for ACME Renewal Information (ARI)
- uacme: Try obtaining new Reply-Nonce if server doesn't supply one
- uacme: Add hook environment variables
- uacme: Allow matching alternative chain by Authority Key Id
- Documentation update
- Add link to linode api hook
2024-01-28 Nicola Di Lieto <nicola.dilieto@gmail.com>
* Release 1.7.5
- fix ualpn exit code in client mode
- fix build with autoconf version 2.71
- uacme: nsupdate.sh overhaul and DNAME redirection support
- add link to deSEC.io DNS integration
- minor documentation changes including copyright year
Signed-off-by: Goetz Goerisch <ggoerisch@gmail.com>
Resolved conflict between remotely-managed tunnel and locally-managed
tunnel configurations.
- Bumped PKG_RELEASE to 2
- Commented out 'config' and 'origincert' options in default
configuration file
- Preserved options as comments for user reference
Signed-off-by: Akihiro Nagai <bashing.tremors_0f@icloud.com>
Before:
checking for python... /myworkingdir/build/staging_dir/host/bin/python
checking for python version... xcode-select: Failed to locate 'python', requesting installation of command line developer tools.
checking for python platform... xcode-select: Failed to locate 'python', requesting installation of command line developer tools.
checking for GNU default python prefix... ${prefix}
checking for GNU default python exec_prefix... ${exec_prefix}
checking for python script directory (pythondir)... xcode-select: Failed to locate 'python', requesting installation of command line developer tools.
checking for python extension module directory (pyexecdir)... xcode-select: Failed to locate 'python', requesting installation of command line developer tools.
After:
checking for python version... 3.11
checking for python platform... darwin
checking for GNU default python prefix... ${prefix}
checking for GNU default python exec_prefix... ${exec_prefix}
checking for python script directory (pythondir)... ${PYTHON_PREFIX}/lib/python3.11/site-packages
checking for python extension module directory (pyexecdir)... ${PYTHON_EXEC_PREFIX}/lib/python3.11/site-packages
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
Files such as config file and init script related to OpenWrt
were removed in upstream [1]. Config file was same as umurmur.conf.example,
thus use it and init script, we need to ship our own. Add a simple one.
[1] 209edb5c88
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
This was changed in version 0.3.1 [1]
Fixes initial start of umurmur:
```
root@turris:~# umurmurd
Error in config file /etc/umurmur/umurmur.conf line 0: file I/O error
```
And also while running help of umurmurd, the defailt location is /etc/umurmur/umurmur.conf
```
Usage: umurmurd [-d] [-r] [-h] [-p <pidfile>] [-t] [-c <conf file>] [-a <addr>] [-b <port>]
-c <conf file> - Specify configuration file (default /etc/umurmur/umurmur.conf)
```
[1] 4f3ed41357
Fixes: c4a23ca996 ("umurmur: update to version 0.3.1")
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
This adds UCI support for xl2tpd. To maintain backward compatibility, I
have introduced the config option “use_legacy_config,” which is enabled
by default.
If you want to use the UCI config, you must disable or delete this
option.
Signed-off-by: Martin Schiller <ms@dev.tdt.de>
Requires conversion to meson.
Unfortunately, upstream needlessly relies on cc.run() to figure out
various things instead of cc.compile(). Requires massive patch.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
Some targets are failing due likely to build order issues suggested by
Daniel[1] so disable these two options for the v4 package.
Example:
make[4]: Leaving directory '/builder/shared-workdir/build/sdk/build_dir/target-aarch64_cortex-a53_musl/nfs-utils-2.8.4'
Package nfs-kernel-server-v4 is missing dependencies for the following libraries:
libgssapi_krb5.so.2
libldap.so.2
1. https://github.com/openwrt/packages/pull/27150#issuecomment-3446589119
Signed-off-by: John Audia <therealgraysky@proton.me>
The OpenWrt package will not provide the correct version information
but the date of the last git commit
in order to ease packaging following the discussions in #27482 and #27614.
Co-authored-by: Nora Matthias Schiffer <neocturne@universe-factory.net>
Co-authored-by: Moritz Warning <moritzwarning@web.de>
Signed-off-by: Jan-Niklas Burfeind <git@aiyionpri.me>
Fixes the following security issues:
- CVE-2025-8677: DNSSEC validation fails if matching but invalid
DNSKEY is found.
- CVE-2025-40778 Address various spoofing attacks.
- CVE-2025-40780 Cache-poisoning due to weak pseudo-random number
generator.
The complete list of changes from version 9.20.11 is available in the
upstream changelog at
https://ftp.isc.org/isc/bind9/9.20.15/doc/arm/html/changelog.html
Signed-off-by: Noah Meyerhans <frodo@morgul.net>
- fix a logical glitch in opensta-handling
- add a list option 'trm_ssidfilter' to maintain a list of SSID patterns
for filtering/skipping specific open uplinks, e.g. 'Chromecast*' (fix#26406)
Signed-off-by: Dirk Brenken <dev@brenken.org>
ZNC can modify its own config file (znc.conf) during runtime, for
example using controlpanel or webadmin modules. Manually editing the
znc.conf file while znc is running is strongly discouraged.
Thus prodc should not watch this file, it would just lead to znc being
restarted unnecessarily.
As it happens, no restarts were done, because the watched path was
specified incorrectly. It used ZNC_CONFIG instead of ZNC_CONFIG_DIR,
and so it watched /tmp/etc/znc/configs/znc.conf/configs/znc.conf which
does not exist.
Remove the watch of znc.conf as it is not needed.
Signed-off-by: Ralph Siemsen <ralph.siemsen@linaro.org>
- add a new lan/wan subnet check, to to show conflicts with router LAN network
- clean up bogus debug log outputs
- minor code clean ups
- readme update
Signed-off-by: Dirk Brenken <dev@brenken.org>
Running as a dedicated user is better from both a security and an
isolation perspective than running as root.
Signed-off-by: John Audia <therealgraysky@proton.me>
Major change is:
- set server signing to auto by default.
In recent versions of Windows 11, server signing is required.
However, server signing is disabled by default in ksmbd server.
So It is recommended to set server signing = auto as default,
so that it is used whenever it is required.
Signed-off-by: Andrea Pesaresi <andreapesaresi82@gmail.com>
Add a comment to the package description to inform users that the build
system will not automatically pick gperftools-runtime and vectorscan-
runtime when building from source.
References to performance benefits of using them:
c1b4e80825b6b2d1e305
Signed-off-by: John Audia <therealgraysky@proton.me>
Release notes: https://github.com/snort3/snort3/releases/tag/3.9.6.0
% snort --version
,,_ -*> Snort++ <*-
o" )~ Version 3.9.6.0
'''' By Martin Roesch & The Snort Team
http://snort.org/contact#team
Copyright (C) 2014-2025 Cisco and/or its affiliates. All rights reserved.
Copyright (C) 1998-2013 Sourcefire, Inc., et al.
Using DAQ version 3.0.21
Using Vectorscan version 5.4.12 2025-10-06
Using libpcap version 1.10.5 (with TPACKET_V3)
Using LuaJIT version 2.1.0-beta3
Using LZMA version 5.8.1
Using OpenSSL 3.6.0 1 Oct 2025
Using PCRE2 version 10.46 2025-08-27
Using ZLIB version 1.3.1
Build system: x86/64
Build-tested: x86/64-glibc
Run-tested: x86/64-glibc
Signed-off-by: John Audia <therealgraysky@proton.me>
Since vectorscan-runtime was dropped in the following commit, need to
replace references to it with just vectorscan in order to compile
snort3 against it: 8a3c7a69e6
Without this change, even having CONFIG_PACKAGE_vectorscan=y in the
.config will result in a failure to compile against it, e.g:
...
Feature options:
DAQ Modules: Dynamic
libatomic: User-specified
Hyperscan: OFF
...
Signed-off-by: John Audia <therealgraysky@proton.me>
