Commit Graph

10592 Commits (35497a04001210a9288b70e9d05afab62ce84c76)

Author SHA1 Message Date
Jo-Philipp Wich 35497a0400 firewall: link iptables extensions dynamically
Use shared libipt{,4,6}ext.so libraries instead of statically linking
the userspace matches into the fw3 executable.

As a side effect the match initialization is extremely simplified
compared to the weak function pointer juggling performed before.

This also fixes the initialization of the multiport match.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 45764
2015-05-26 11:11:48 +00:00
Jo-Philipp Wich 1c00b6bc7f iptables: reduce binary size
* drop unused lenient restore patch
 * instead of statically linking core extensions, build shared libraries
   for reuse in fw3
 * strip outdated match revisions and aliases to trim down library size

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 45758
2015-05-26 09:16:50 +00:00
Felix Fietkau ecb14f4a5d build: allow creating empty package feeds
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45757
2015-05-26 09:09:07 +00:00
Felix Fietkau 27aada7658 ppp: do not warn if connect() before close() on pppoe terminate fails (fixes #19651)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45755
2015-05-26 07:02:49 +00:00
Felix Fietkau 85d5ada56f fstools: update to the latest version, makes filesystem initialization state tracking more reliable (#19564)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45751
2015-05-25 22:00:06 +00:00
Felix Fietkau 8450300079 ubus: update to the latest version, switch to git.openwrt.org, fixes a lua binding memory leak
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45750
2015-05-25 21:15:42 +00:00
Felix Fietkau 4eeeb91661 netifd: bump to current HEAD
This introduces a new config parameter "no-proto-task" useful for
xl2tpd.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

SVN-Revision: 45748
2015-05-25 21:15:31 +00:00
Nicolas Thill 47e0c28153 gdb: disable liblzma explictly
* fix build failure when gdb is build after liblzma
 * bump release number

Signed-off-by: Nicolas Thill <nico@openwrt.org>

SVN-Revision: 45745
2015-05-24 19:15:54 +00:00
Nicolas Thill fa8cea1e33 fuse: fix exec environment for mount and umount
* add upstream patch (CVE-2015-3202)
 * refresh patches
 * bump release number

Signed-off-by: Nicolas Thill <nico@openwrt.org>

SVN-Revision: 45744
2015-05-24 17:56:26 +00:00
Nicolas Thill 9fedd6d837 package/kernel: remove reference to ep93xx target
Signed-off-by: Nicolas Thill <nico@openwrt.org>

SVN-Revision: 45743
2015-05-24 01:55:14 +00:00
Nicolas Thill 4476fb013e package/kernel: remove reference to 3.12 kernel version
Signed-off-by: Nicolas Thill <nico@openwrt.org>

SVN-Revision: 45742
2015-05-24 01:48:52 +00:00
John Crispin 841b50a665 comgt: the package contained too many files
fixes #19698

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 45741
2015-05-23 15:29:46 +00:00
John Crispin 1cfe6b6847 fuse: fix build on arm64
error:
../include/fuse_kernel.h:93:15: error: conflicting types for 'int64_t'
../include/fuse_kernel.h:92:15: error: conflicting types for 'uint64_t'

reported by buildbot

fix by adopting upstream patch:
http://git.baserock.org/cgi-bin/cgit.cgi/delta/fuse.git/commit/include/fuse_kernel.h?id=914871b20a901e3e1e981c92bc42b1c93b7ab81b

Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>

SVN-Revision: 45740
2015-05-23 15:29:31 +00:00
John Crispin 61c23c2eaa w1-gpio-custom: Fix uninitialised variable causing 1-wire to not bind to GPIO
Signed-off-by: Andrew McDonnell <bugs@andrewmcdonnell.net>

SVN-Revision: 45739
2015-05-23 15:29:20 +00:00
John Crispin a2d0d58a8e conntrack-tools: add init script for conntrackd
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>

SVN-Revision: 45737
2015-05-23 15:28:56 +00:00
John Crispin fe35352d84 modules/sound: cleanup by removing unsupported Kernel cases
Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>

SVN-Revision: 45735
2015-05-23 15:28:36 +00:00
John Crispin e2521a4bce modules/usb: another cleanup: remove ancient module names
modules relating to CONFIG_USB_AUDIO
Kernel <2.6.35 is not supported in trunk

Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>

SVN-Revision: 45734
2015-05-23 15:28:32 +00:00
John Crispin c0b0ee9d9e modules/usb: cleanup remove old module names
delete cases for Kernel <3.10 (nop-usb-xceiv), <3.12 (phy-nop)

Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>

SVN-Revision: 45733
2015-05-23 15:28:26 +00:00
John Crispin 09bf72ae05 ubox: various logd cleanups
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 45721
2015-05-23 15:26:29 +00:00
John Crispin 86b573fa31 procd: make the jail code also work on arm
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 45719
2015-05-23 15:26:09 +00:00
Jonas Gorski 5caa23551e ds-lite: fix resolve retry for fqdn peeraddrs
If the first resolveip call will fail, peeraddr will be now empty, and
the subsequent resolveip call will try to resolve an empty string.

Fix this by storing the result in a temporary variable.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

SVN-Revision: 45712
2015-05-22 10:24:30 +00:00
Jonas Gorski 072937888e mac80211: make it work with 3.18.12+
3.18.12 backported 61ada528dea028331e99e8ceaed87c683ad25de2 ("sched/wait:
Provide infrastructure to deal with nested blocking") from 3.19, causing
the following error on load:

[   13.588000] compat: exports duplicate symbol woken_wake_function (owned by kernel)

Fix this by guarding it with a check for 3.18.11 or earlier instead of
3.19.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

SVN-Revision: 45710
2015-05-21 19:32:16 +00:00
Steven Barth 8304c0c04d odhcpd: fix DHCPv6 downstream PD
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45707
2015-05-21 15:07:54 +00:00
Jonas Gorski d0af85c9a5 base-files: fix default pre-/postrm for packages with a dot
Instead of stripping everything after the first dot, strip everything
after the last dot.
This fixes pre-/postrm actions for packages with a dot in their name,
like libusb-1.0.

Fixes #19668.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

SVN-Revision: 45702
2015-05-19 09:13:17 +00:00
Steven Barth 241dbffcf9 netifd: improve IPv6 onlink-route handling
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45701
2015-05-19 09:01:34 +00:00
Steven Barth 08f057c703 ipv6: remove now unneeded source-dest-routing workarounds
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45700
2015-05-19 07:53:08 +00:00
Jo-Philipp Wich 62b1ce098a rpcd: unload package after uci reverts
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 45695
2015-05-17 12:16:27 +00:00
Steven Barth 51d97db185 dnsmasq: bump to dnsmasq2.73rc8 Important.
Bump dnsmasq to v2.73rc8

Important - fixes remotely exploitable buffer overflow introduced in all v2.73 test/release candidates.

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>

SVN-Revision: 45693
2015-05-17 08:06:45 +00:00
Steven Barth 1ffe824e81 map: set ealen to psidlen for lw4over6
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45689
2015-05-16 10:12:15 +00:00
Steven Barth 356a9f0280 odhcp6c: fix parsing of LW4over6 parameters
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45688
2015-05-16 07:29:42 +00:00
Steven Barth a11d2f1cb2 odhcpd: ignore /64 on interface when doing PD
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45679
2015-05-13 12:31:06 +00:00
Steven Barth e9999a7168 odhcpd: remove invalid call to free()
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 45675
2015-05-11 19:49:03 +00:00
Felix Fietkau 53a5647414 ppp: remove the persist option, netifd handles reconnects
Significantly reduces reconnect delay

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45654
2015-05-09 21:14:46 +00:00
Felix Fietkau 29f8f90de4 mac80211: apply mesh parameters after starting authsae/wpa_supplicant (#16697)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45651
2015-05-09 08:58:12 +00:00
Felix Fietkau 3f4011ad36 mt76: include generated mac80211 config file and add an appropriate define for mesh support (fixes #19474)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45649
2015-05-08 21:46:42 +00:00
Felix Fietkau c43444aa1b usign: update to the latest version, use libubox base64 code
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45642
2015-05-08 12:37:26 +00:00
Felix Fietkau e79506709f libubox: update to the latest version, adds a base64 implementation
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45641
2015-05-08 12:35:41 +00:00
Felix Fietkau bf84a53f9b netifd-dhcp: supply parameters to user-script
hand over parameters to user-script e.g. $1=deconfig

Signed-off-by: Leon George <leon@georgemail.de>
Signed-off-by: Christian Mehlis <christian@m3hlis.de>

SVN-Revision: 45626
2015-05-08 10:44:19 +00:00
Felix Fietkau 9bb7046a19 trace-cmd: update to 2.4.2
fixes compile error:
(observed w. target arm64, all kernel build opts enabled)
error: call to '__open_missing_mode' declared with attribute
error: open with O_CREAT in second argument needs 3 arguments

Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>

SVN-Revision: 45625
2015-05-08 10:44:08 +00:00
Felix Fietkau af9672cfde ustream-ssl: correct year in PKG_VERSION string
ustream-ssl: correct the year in the PKG_VERSION string, as both r45157 and
r45441 left the old year 2014 there. For a casual user it may seem that the
current code is from April 2014, although
a4ca61527236e89eb9efb782fd9bfd04796144e3 is from April 2015.

http://nbd.name/gitweb.cgi?p=ustream-ssl.git;a=commit;h=a4ca61527236e89eb9efb782fd9bfd04796144e3
https://dev.openwrt.org/changeset/45441/
https://dev.openwrt.org/changeset/45157/

signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>

SVN-Revision: 45623
2015-05-08 10:43:48 +00:00
Felix Fietkau 06556a8e6b hostapd: fix remote denial of service vulnerability in WMM action frame parsing
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45619
2015-05-06 09:45:39 +00:00
Felix Fietkau 1f689613b6 iptables: disable unused xml support to save some space
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45617
2015-05-06 00:59:41 +00:00
Felix Fietkau a503023ec2 hostapd: enable 802.11w only for the full variants
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45616
2015-05-06 00:59:36 +00:00
Felix Fietkau 102522e0cd uboot-envtools: disable AES support, reduces code size
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45615
2015-05-06 00:59:28 +00:00
Steven Barth d534883a52 firewall: Allow IGMP and MLD input on WAN
The WAN port should at least respond to IGMP and MLD queries as
otherwise a snooping bridge/switch might drop traffic.

RFC4890 recommends to leave IGMP and MLD unfiltered as they are always
link-scoped anyways.

Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>

SVN-Revision: 45613
2015-05-05 13:22:41 +00:00
Steven Barth 336fc7a702 netsupport: l2tp-ip: only depend on IPv6 if IPv6 support is enabled
Before r45593 kmod-l2tp-ip did not depend on kmod-ipv6.
With r45593 support for L2TP IPv6 encapsulation was added and
included in the kmod-l2tp-ip package. This change also
added the dependency to kmod-ipv6 to kmod-l2tp-ip, regardless
of whether the user chose to generally include IPv6 support
or not.
Change this so L2TP over IPv6 and the resulting dependency
to kmod-ipv6 is only included in kmod-l2tp-ip if IPv6 support
is enabled.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>

SVN-Revision: 45612
2015-05-05 13:22:33 +00:00
Jo-Philipp Wich 2a196a68cd procd: fix uid/gid changing for service instances
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 45611
2015-05-05 11:00:53 +00:00
Felix Fietkau 334ad1d49f polarssl: include PKG_RELEASE in ABI_VERSION
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45610
2015-05-05 10:14:04 +00:00
Felix Fietkau 632ba15a56 curl: replace polarssl run-time version check with a compile-time one
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45609
2015-05-05 10:12:49 +00:00
Felix Fietkau 5533a67e3a openvpn: replace polarssl run-time version check with a compile-time one
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 45608
2015-05-05 10:09:16 +00:00