Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 6ffab7728e3b53aef91c438924d2a2457fca4c13)

Changelog: https://github.com/fatedier/frp/release



Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>

When PAM is available, the build system will detect and use it, but the
package dependency was missing.

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit 626be115)

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 92f0b1b5)

* update to lighttpd 1.4.66 release hash

Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
(cherry picked from commit 5eaf000c)

Changelog: https://github.com/mayswind/AriaNg/releases



Signed-off-by: Van Waholtz <vanwaholtz@gmail.com>

Signed-off-by: Jan Hák <jan.hak@nic.cz>
(cherry picked from commit 39a08a7a)

With the new OW release approaching, it might be better to get an officially
tagged upstream release in as PR#19087 just contained a fix for CVE-2022-29154
which itself introduced a few bugs.

Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit eeaacc90)

Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit ad7d2e52)

Signed-off-by: Liangbin Lian <jjm2473@gmail.com>
(cherry picked from commit 7af716f1)

Bump to latest upstream release.

Signed-off-by: John Audia <graysky@archlinux.us>
(cherry picked from commit 48764011)

The rsync package is vulnerable to CVE-2022-29154[1], which is not yet in a
non-preview release. This commit applies the upstream commit to fix it and
several subsequent commits needed to fix bugs the initial fix introduced[2].

1. https://rsync.samba.org/ftp/rsync/NEWS#SECURITY_FIXES-3.2.5
2. https://bugs.archlinux.org/task/75558



Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit 2611b865)

- Update copyright

Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit ce1679a0)

Maintainer: @EricLuehrsen
Compile tested: x86/64
Run tested: x86/64
Description: Update to 1.16.2, fix CVE-2022-30698 and CVE-2022-30699.

Signed-off-by: Pascal Ernster <git@hardfalcon.net>
(cherry picked from commit 21794329)

Maintainer: @EricLuehrsen
Compile tested: realtek/rtl838x, x86/64
Run tested: realtek/rtl838x, x86/64
Description: Update to 1.16.1

Signed-off-by: Pascal Ernster <git@hardfalcon.net>
(cherry picked from commit e702a660)

ANTFS does not compile with OpenWrt's current testing kernel 5.15,
as it needs to be modified for the Linux 5.12 idmapped mounts changes
2f221d6f7b88 ("attr: handle idmapped mounts")
https://lore.kernel.org/all/20210121131959.646623-1-christian.brauner@ubuntu.com/



Signed-off-by: John Thomson <git@johnthomson.fastmail.com.au>
(cherry picked from commit f043d0a7)

Some header change requires to include musl's headers first.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 46886312)

Fixes compilation with kernel 5.15.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit 3bd4564d)

Fixes compilation with kernel 5.15

Signed-off-by: Rosen Penev <rosenp@gmail.com>
(cherry picked from commit f8f2146b)

Remove nft rules file generated by ss-rules if ss-rules was or should be
turned off for by configuration.  Use "fw4 restart" instead of "fw4
reload" to force the runtime rule reloading

Ref: https://github.com/openwrt/packages/pull/17937#issuecomment-1207357037


Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
(cherry picked from commit 04ee0326)

Supersedes: https://github.com/openwrt/packages/pull/18852
Fixes: https://github.com/openwrt/packages/issues/18850


Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
(cherry picked from commit a67ad632b6721434a26cacb56b21323c0e7b8f69)

901b0f0 main: fix two one-byte overreads in header_value()

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
(cherry picked from commit 443c6c1c)

[22.03] php8: update to 8.1.9

Fix for issue #19010

Signed-off-by: John Kohl <jtk.git@bostonpog.org>
Signed-off-by: Michal Kowalski <18610805+kofec@users.noreply.github.com>
(cherry picked from commit 406adc53)

Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
(cherry picked from commit 82a45b28)

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
(cherry picked from commit 55e06d66)

[22.03] squashfs-tools: enable zstd compression by default

The uuid module has been split out into a separate package with the
update to Python 3.10.

Signed-off-by: Jan Hoffmann <jan@3e8.eu>
(cherry picked from commit 52ae0a20)

libgpg-error: update to 1.45

Change notes:
	Updated Makefile package version and hash.
	Added libpcre2 dependency
	Removed USELIBPCRE make flag (no longer optional within sslh)
	Updated patch 001 to work with new sslh Makefile

Signed-off-by: Martin Moreno <fett3270@yahoo.com>
(cherry picked from commit 9b90bb37)

makes LuaJit builds for mpc85xx targets with SPE ISA extension
enabled possible

Quoting inner commit message:

This allows building LuaJit for systems with Power ISA SPE
extension[^1] support by using soft float on LuaJit side.

While e500 CPU cores support SPE instruction set extension
allowing them to perform floating point arithmetic natively,
this isn't required. They can function with software floating
point to integer arithmetic translation as well,
just like FPU-less PowerPC CPUs without SPE support.

Therefore I see no need to prevent them from running LuaJit
explicitly.

[^1]: https://www.nxp.com/docs/en/reference-manual/SPEPEM.pdf



Signed-off-by: Pali Rohár <pali@kernel.org>
Signed-off-by: Šimon Bořek <simon.borek@nic.cz>
(cherry picked from commit a4a484fb)

Signed-off-by: W. Michael Petullo <mike@flyn.org>
(cherry picked from commit c4842bdd)

Requested via:
  https://github.com/openwrt/packages/issues/19111



PKG_RELEASE is set to AUTORELEASE, so no need to bump.

Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit f0d45ba3)

Use PKG_FIXUP:=autoreconf when building cryptsetup to prevent
accidental linkage against host libraries.

Fixes: #19011
Reported-by: @dreirund
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cherry picked from commit ad0ac519)

Bump to latest upstream version, manually rebased: 050-glibc.patch

Tested using:
ffmpeg -f lavfi -i testsrc=duration=10:size=1280x720:rate=30 testsrc.mpg

Resulting mpg was good.

Build system: x86_64
Build-tested: bcm2711/RPi4B
Run-tested: bcm2711/RPi4B

Signed-off-by: John Audia <therealgraysky@proton.me>
(cherry picked from commit 5436f78d)

Avoid building unused gnutls and ca dependencies

Signed-off-by: Boris Krasnovskiy <borkra@gmail.com>
(cherry picked from commit 089eabed)

Avoid building unused python and libstdcpp dependecies

Signed-off-by: Boris Krasnovskiy <borkra@gmail.com>
(cherry picked from commit 0c245fda)

Avoid building unused gnutls dependency

Signed-off-by: Boris Krasnovskiy <borkra@gmail.com>
(cherry picked from commit 32f4d46f)

89d5d2e0 only patched importing
MutableMapping from collections, but importing Mapping has to be patched
too

Closes: #18681
Signed-off-by: Michal Vasilek <michal.vasilek@nic.cz>
(cherry picked from commit 4bd2169e)

Fixes https://nvd.nist.gov/vuln/detail/CVE-2022-34265



Signed-off-by: Alexandru Ardelean <ardeleanalex@gmail.com>
(cherry picked from commit b0ddec31)