From a26210a91bacaf31bc5b4f3b3dc649b3b20986ff Mon Sep 17 00:00:00 2001
From: Yanase Yuki <dev@zpc.st>
Date: Fri, 15 May 2026 16:49:41 +0900
Subject: [PATCH] redsocks: remove package

It seems this software is no longer maintained because
the latest commit is 7 years ago.
Also some people reports UAF bugs.

https://github.com/darkk/redsocks/issues/177
https://github.com/darkk/redsocks/issues/178

No packages depends on this.

Signed-off-by: Yanase Yuki <dev@zpc.st>
---
 net/redsocks/Makefile                         |  57 ---------
 net/redsocks/files/redsocks.conf              | 108 ------------------
 net/redsocks/files/redsocks.init              |  36 ------
 .../0006-fix_default_config_location.patch    |  17 ---
 ..._use_cc_dumpmachine_instead_of_uname.patch |  34 ------
 5 files changed, 252 deletions(-)
 delete mode 100644 net/redsocks/Makefile
 delete mode 100644 net/redsocks/files/redsocks.conf
 delete mode 100644 net/redsocks/files/redsocks.init
 delete mode 100644 net/redsocks/patches/0006-fix_default_config_location.patch
 delete mode 100644 net/redsocks/patches/100_use_cc_dumpmachine_instead_of_uname.patch

diff --git a/net/redsocks/Makefile b/net/redsocks/Makefile
deleted file mode 100644
index 495477ce2b..0000000000
--- a/net/redsocks/Makefile
+++ /dev/null
@@ -1,57 +0,0 @@
-#
-# Copyright (C) 2014-2015 OpenWrt.org
-#
-# This is free software, licensed under the GNU General Public License v2.
-# See /LICENSE for more information.
-#
-
-include $(TOPDIR)/rules.mk
-
-PKG_NAME:=redsocks
-PKG_VERSION:=0.5
-PKG_RELEASE:=2
-
-PKG_SOURCE:=$(PKG_NAME)-release-$(PKG_VERSION).tar.gz
-PKG_SOURCE_URL:=https://codeload.github.com/darkk/redsocks/tar.gz/release-$(PKG_VERSION)?
-PKG_HASH:=bbeb531d7f1986d7102f1bd6733dacce41d3f3ba7d604f1aab61c63e0ba2ee62
-PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_NAME)-release-$(PKG_VERSION)
-
-PKG_MAINTAINER:=Johannes Morgenroth <jm@m-network.de>
-PKG_LICENSE:=Apache-2.0
-
-include $(INCLUDE_DIR)/package.mk
-
-define Package/redsocks
-  SECTION:=net
-  CATEGORY:=Network
-  DEPENDS:=+libevent2-core
-  TITLE:=Redirect any TCP connection to a SOCKS or HTTPS proxy server
-endef
-
-define Package/redsocks/conffiles
-/etc/redsocks.conf
-endef
-
-define Package/redsocks/description
- Redsocks is a daemon running on the local system, that will transparently
- tunnel any TCP connection via a remote SOCKS4, SOCKS5 or HTTP proxy server. It
- uses the system firewall's redirection facility to intercept TCP connections,
- thus the redirection is system-wide, with fine-grained control, and does
- not depend on LD_PRELOAD libraries.
-
- Redsocks supports tunneling TCP connections and UDP packets. It has
- authentication support for both, SOCKS and HTTP proxies.
-
- Also included is a small DNS server returning answers with the "truncated" flag
- set for any UDP query, forcing the resolver to use TCP.
-endef
-
-define Package/redsocks/install
-	$(INSTALL_DIR) $(1)/usr/sbin/
-	$(INSTALL_BIN) $(PKG_BUILD_DIR)/redsocks $(1)/usr/sbin/
-	$(INSTALL_DIR) $(1)/etc/init.d/
-	$(INSTALL_BIN) files/redsocks.init $(1)/etc/init.d/redsocks
-	$(INSTALL_CONF) files/redsocks.conf $(1)/etc/
-endef
-
-$(eval $(call BuildPackage,redsocks))
diff --git a/net/redsocks/files/redsocks.conf b/net/redsocks/files/redsocks.conf
deleted file mode 100644
index 64307c715d..0000000000
--- a/net/redsocks/files/redsocks.conf
+++ /dev/null
@@ -1,108 +0,0 @@
-base {
-	// debug: connection progress & client list on SIGUSR1
-	log_debug = off;
-
-	// info: start and end of client session
-	log_info = on;
-
-	/* possible `log' values are:
-	 *   stderr
-	 *   "file:/path/to/file"
-	 *   syslog:FACILITY  facility is any of "daemon", "local0"..."local7"
-	 */
-	// log = stderr;
-	// log = "file:/path/to/file";
-	log = "syslog:local7";
-
-	// detach from console
-	daemon = on;
-
-	/* Change uid, gid and root directory, these options require root
-	 * privilegies on startup.
-	 * Note, your chroot may requre /etc/localtime if you write log to syslog.
-	 * Log is opened before chroot & uid changing.
-	 */
-	// user = nobody;
-	// group = nobody;
-	// chroot = "/var/chroot";
-
-	/* possible `redirector' values are:
-	 *   iptables   - for Linux
-	 *   ipf        - for FreeBSD
-	 *   pf         - for OpenBSD
-	 *   generic    - some generic redirector that MAY work
-	 */
-	redirector = iptables;
-}
-
-redsocks {
-	/* `local_ip' defaults to 127.0.0.1 for security reasons,
-	 * use 0.0.0.0 if you want to listen on every interface.
-	 * `local_*' are used as port to redirect to.
-	 */
-	local_ip = 127.0.0.1;
-	local_port = 12345;
-
-	// listen() queue length. Default value is SOMAXCONN and it should be
-	// good enough for most of us.
-	// listenq = 128; // SOMAXCONN equals 128 on my Linux box.
-
-	// `max_accept_backoff` is a delay to retry `accept()` after accept
-	// failure (e.g. due to lack of file descriptors). It's measured in
-	// milliseconds and maximal value is 65535. `min_accept_backoff` is
-	// used as initial backoff value and as a damper for `accept() after
-	// close()` logic.
-	// min_accept_backoff = 100;
-	// max_accept_backoff = 60000;
-
-	// `ip' and `port' are IP and tcp-port of proxy-server
-	// You can also use hostname instead of IP, only one (random)
-	// address of multihomed host will be used.
-	ip = example.org;
-	port = 1080;
-
-
-	// known types: socks4, socks5, http-connect, http-relay
-	type = socks5;
-
-	// login = "foobar";
-	// password = "baz";
-}
-
-redudp {
-	// `local_ip' should not be 0.0.0.0 as it's also used for outgoing
-	// packets that are sent as replies - and it should be fixed
-	// if we want NAT to work properly.
-	local_ip = 127.0.0.1;
-	local_port = 10053;
-
-	// `ip' and `port' of socks5 proxy server.
-	ip = 10.0.0.1;
-	port = 1080;
-	login = username;
-	password = pazzw0rd;
-
-	// redsocks knows about two options while redirecting UDP packets at
-	// linux: TPROXY and REDIRECT.  TPROXY requires more complex routing
-	// configuration and fresh kernel (>= 2.6.37 according to squid
-	// developers[1]) but has hack-free way to get original destination
-	// address, REDIRECT is easier to configure, but requires `dest_ip` and
-	// `dest_port` to be set, limiting packet redirection to single
-	// destination.
-	// [1] http://wiki.squid-cache.org/Features/Tproxy4
-	dest_ip = 8.8.8.8;
-	dest_port = 53;
-
-	udp_timeout = 30;
-	udp_timeout_stream = 180;
-}
-
-dnstc {
-	// fake and really dumb DNS server that returns "truncated answer" to
-	// every query via UDP, RFC-compliant resolver should repeat same query
-	// via TCP in this case.
-	local_ip = 127.0.0.1;
-	local_port = 5300;
-}
-
-// you can add more `redsocks' and `redudp' sections if you need.
diff --git a/net/redsocks/files/redsocks.init b/net/redsocks/files/redsocks.init
deleted file mode 100644
index 56c9de3273..0000000000
--- a/net/redsocks/files/redsocks.init
+++ /dev/null
@@ -1,36 +0,0 @@
-#!/bin/sh /etc/rc.common
-# Copyright (C) 2007 OpenWrt.org
-
-START=90
-
-# check if configuration exists
-[ -e "/etc/redsocks.conf" ] || exit 0
-
-start() {
-	if [ -e "/var/run/redsocks.pid" ]; then
-		echo "redsocks is already running"
-		exit 0
-	fi
-
-	/bin/echo -n "running redsocks ..."
-	
-	# startup the safety-wrapper for the daemon
-	/usr/sbin/redsocks -p /var/run/redsocks.pid
-	
-	/bin/echo " done"
-}
-
-stop() {
-	if [ ! -e "/var/run/redsocks.pid" ]; then
-		echo "redsocks is not running"
-		exit 0
-	fi
-
-	/bin/echo -n "stopping redsocks ..."
-	
-	# kill the process
-	/bin/kill $(cat /var/run/redsocks.pid)
-	rm /var/run/redsocks.pid
-	
-	echo " done"
-}
diff --git a/net/redsocks/patches/0006-fix_default_config_location.patch b/net/redsocks/patches/0006-fix_default_config_location.patch
deleted file mode 100644
index cb0bdf9363..0000000000
--- a/net/redsocks/patches/0006-fix_default_config_location.patch
+++ /dev/null
@@ -1,17 +0,0 @@
-Description: change the default config file location
- redsocks by default looks for ./redsocks.conf. Change this to
- /etc/redsocks.conf for a more deterministic behaviour.
-Author: Apollon Oikonomopoulos <apoikos@gmail.com>
-Forwared: no
-Last-Update: 2013-04-23
---- a/main.c
-+++ b/main.c
-@@ -45,7 +45,7 @@ app_subsys *subsystems[] = {
- 	&dnstc_subsys,
- };
- 
--static const char *confname = "redsocks.conf";
-+static const char *confname = "/etc/redsocks.conf";
- static const char *pidfile = NULL;
- 
- static void terminate(int sig, short what, void *_arg)
diff --git a/net/redsocks/patches/100_use_cc_dumpmachine_instead_of_uname.patch b/net/redsocks/patches/100_use_cc_dumpmachine_instead_of_uname.patch
deleted file mode 100644
index a56ca128e8..0000000000
--- a/net/redsocks/patches/100_use_cc_dumpmachine_instead_of_uname.patch
+++ /dev/null
@@ -1,34 +0,0 @@
-From https://github.com/darkk/redsocks/pull/105
-
-commit d5cabecb6a8369fb2bd883b43205035dd87187a5
-Author: a7ypically <a7ypically@gmail.com>
-Date:   Sat Jun 3 21:33:20 2017 +0300
-
-    Update Makefile
-
---- a/Makefile
-+++ b/Makefile
-@@ -26,11 +26,11 @@ tags: *.c *.h
- 	ctags -R
- 
- $(CONF):
--	@case `uname` in \
--	Linux*) \
-+	@case `$(CC) -dumpmachine` in \
-+	*linux*) \
- 		echo "#define USE_IPTABLES" >$(CONF) \
- 		;; \
--	OpenBSD) \
-+	*openbsd*) \
- 		echo "#define USE_PF" >$(CONF) \
- 		;; \
- 	*) \
-@@ -66,7 +66,7 @@ gen/.build:
- base.c: $(CONF)
- 
- $(DEPS): $(SRCS)
--	gcc -MM $(SRCS) 2>/dev/null >$(DEPS) || \
-+	$(CC) -MM $(SRCS) 2>/dev/null >$(DEPS) || \
- 	( \
- 		for I in $(wildcard *.h); do \
- 			export $${I//[-.]/_}_DEPS="`sed '/^\#[ \t]*include \?"\(.*\)".*/!d;s//\1/' $$I`"; \