Mirror of packages feed https://git.openwrt.org/feed/packages/atom?h=master 2026-05-06T18:09:03Z 2026-05-06T18:09:03Z Stan Grishin 2026-05-04T03:01:56Z urn:sha1:97b710a5b395825da71170870a9b81d1ac61f661 Maintainer: me Compile tested: x86_64, Dell EMC Edge620, OpenWrt 25.12.1 Run tested: x86_64, Dell EMC Edge620, OpenWrt 25.12.1 Description: Fix nftables rule directory creation - Bump PKG_RELEASE to 2. files/etc/init.d/https-dns-proxy: - Add 'mkdir -p' before writing nftables rules to ensure the parent directory exists. This fixes an issue where the directory might not exist on initial installation, causing errors. tests/run_tests.sh: - Add comprehensive regression tests for notrack_nft. - Mock 'nft' to track invocations and control return codes for testing. - Patch 'NOTRACK_NFT_FILE' to a test-specific path for isolated testing. - Verify 'notrack_nft' correctly creates the parent directory if missing. - Test content of generated nftables snippet, idempotence, and removal. Signed-off-by: Stan Grishin <stangri@melmac.ca> 2026-05-02T01:04:56Z Stan Grishin 2026-04-29T17:38:35Z urn:sha1:81f0ef48e1ead04776eb784f4403c95bc471ada5 Maintainer: me Compile tested: x86_64, Dell EMC Edge620, OpenWrt 25.12.1 Run tested: x86_64, Dell EMC Edge620, OpenWrt 25.12.1 Description: update to 2026.03.18, improve nftables rules - Update PKG_VERSION to 2026.03.18. - Set PKG_RELEASE to 1. - Update PKG_SOURCE_VERSION to 801881210ba8215dc9cd577222d8c10372423360. - Update PKG_MIRROR_HASH to 4c356c19b62fc7bdef3a67fd678e48f3659d709da10517c2eadef76e3409f5ce. files/etc/init.d/https-dns-proxy: - Wrap the notrack chain in its own `inet https_dns_proxy_notrack` table. A top-level `chain` outside any table is invalid nftables syntax and is rejected on kernel 6.18+, breaking firewall load. Fixes mossdef-org/https-dns-proxy#7. - Syntax-check the generated snippet with `nft -c -f` after write and report OK/FAIL on the start path. - On remove, explicitly `nft delete table` in addition to removing the snippet file, so the live ruleset is cleaned up immediately rather than waiting for the next fw4 reload. Signed-off-by: Stan Grishin <stangri@melmac.ca> 2026-04-25T05:16:17Z Stan Grishin 2026-04-24T18:28:04Z urn:sha1:ebe149b7f37ef7d91f85a1a7e8e626a58ac2cd48 Maintainer: me Compile tested: x86_64, Dell EMC Edge620, OpenWrt 25.12.1 Run tested: x86_64, Dell EMC Edge620, OpenWrt 25.12.1 Description:Add nftables notrack for localhost traffic - Removed. License is now included in the main project. net/https-dns-proxy/Makefile: - Bumped PKG_RELEASE to 5. net/https-dns-proxy/files/etc/config/https-dns-proxy: - Added 'option notrack_dns '1'' to the default configuration. net/https-dns-proxy/files/etc/init.d/https-dns-proxy: - Defined NOTRACK_NFT_FILE constant. - Added 'notrack_dns' and 'notrack_ports' variables. - Implemented 'notrack_nft' function to manage nftables rules for notracking local DNS traffic. - Enabled loading of 'notrack_dns' boolean from configuration. - Modified start_instance to collect listen_port into notrack_ports if notrack_dns is enabled. - Modified start_service to call notrack_nft update/remove based on notrack_dns and collected ports. - Modified stop_service to call notrack_nft remove. - Updated service_started and service_stopped to trigger firewall config changes when notrack_dns is enabled. Signed-off-by: Stan Grishin <stangri@melmac.ca> 2026-03-04T01:43:22Z Stan Grishin 2026-03-02T20:21:48Z urn:sha1:7d0db39fc88c047e98ff9fd8bc746e0e68b100f2 * add explicit LICENSE file to the repository * pretty up Makefile * minor shell script styling improvements * better parsing if individual dnsmasq instances are used in config * functional test Signed-off-by: Stan Grishin <stangri@melmac.ca> 2026-01-09T02:04:03Z Stan Grishin 2026-01-08T03:22:38Z urn:sha1:c46fe559b01de869f79533fc54cc1d77b299a473 * bump binary to 2025.12.29 with support for -S * update README and delete README in files/ * bugfix: properly load global option for `force_ipv6_resolvers` * add global and per-instance `source_addr` option Thanks to @karl82 for adding source_addr support upstream. Signed-off-by: Stan Grishin <stangri@melmac.ca> 2025-10-11T00:41:21Z Stan Grishin 2025-10-10T23:30:41Z urn:sha1:62cc35aca94b0e2d1fab0539aa8692a3533f7e60 Signed-off-by: Stan Grishin <stangri@melmac.ca> 2025-10-09T18:26:35Z Stan Grishin 2025-10-07T16:38:50Z urn:sha1:ad2477e102059bc0690e3d4109e48c14157a3a32 Makefile: * update to latest upstream: https://github.com/aarond10/https_dns_proxy/commit/7b27ecd5598d03bbe79651cc80efca886d433cd9 * update version, release * drop CONFIGURE_ARGS as the build is curl-independent * update the link to the documentation README: * add small README with the link to documentation Config: * rename procd_fw_src_interfaces to force_dns_src_interface to better reflect meaning * add heartbeat_domain, heartbeat_sleep_timeout, heartbeat_wait_timeout options * add default user, group and listen_addr options to the main config * drop the user, group and listen_addr options from the instance configs Init-script: * start much earlier so that on boot, the procd_add_raw_trigger works on all systems * create a ubus() helper function so that service delete does not produce "Command not found" * new options handling where the global config options can be used for instance options * some renaming of global/instance variables due to abovementioned redesign * new open port detection, no longer relying on netstat * new uci_changes() logic where it returns 0 or 1 instead of text * new append_parm logic for not adding default value options to CLI * new boolean options handling logic * move config loading to load_package_config() function * new logic for calling procd_set_config_changed firewall based solely on "$force_dns" * source network.sh based on "${IPKG_INSTROOT}" path * rename procd_fw_src_interfaces to force_dns_src_interface to better reflect meaning * rename use_http1 to force_http1 * rename use_ipv6_resolvers_only to force_ipv6_resolvers Uci-defaults: * migrate to new option names Signed-off-by: Stan Grishin <stangri@melmac.ca> 2025-08-24T14:27:19Z Aleksey Vasilenko 2025-08-22T10:29:55Z urn:sha1:9edb3c86864f5c6a6f3aacc8e4315723c84483cb - match updated curl config options Signed-off-by: Aleksey Vasilenko <aleksey.vasilenko@gmail.com> 2025-05-12T22:53:36Z Stan Grishin 2025-05-12T01:55:03Z urn:sha1:aafff5ff987a45d6bdb49abce8b312edda37ebe9 * update to 2025.05.11 from upstream: https://github.com/aarond10/https_dns_proxy/commit/a34e20d6e24df603427d91bac8f58c2d3a8aa0a6 * update default config with default value for procd_fw_src_interfaces Signed-off-by: Stan Grishin <stangri@melmac.ca> 2025-04-14T00:18:20Z Stan Grishin 2025-04-01T04:00:44Z urn:sha1:e67e30d0e10ed7e0bb3168c56e86a1997e5a6d87 * fixes https://github.com/openwrt/packages/issues/25522 Signed-off-by: Stan Grishin <stangri@melmac.ca>