Commit Graph

1067 Commits (90283e410bd6227125427f0f240b87ecd1cc4e1c)

Author SHA1 Message Date
Steven Barth 8691d75917 odhcp6c: add route-workaround for broken IPv6-ISPs
Some ISP seem to only do stateful DHCPv6 and not sending RAs.
This is technically broken because plain DHCPv6 doesn't carry routes.

We work around here by faking a default route to the DHCPv6 server
if we do not receive a useful RA from the ISP.

This workaround can be turned off with: option fakeroutes 0

Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42803
2014-10-06 11:19:33 +00:00
Steven Barth 8243e57167 nftables: bump to 2014-09-30, disable gmp
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42802
2014-10-06 06:24:53 +00:00
John Crispin 74397a14ca iwinfo: add AR9580 with new subsystem device ID and QCA9880 with no subsystem vendor/device IDs
The AR9580 with the new ID can be found in the EnGenius ESR900 and the
QCA9880 without any subsystem IDs can be found in the EnGenius ESR1750.

Signed-off-by: Forest Crossman <cyrozap@gmail.com>

SVN-Revision: 42793
2014-10-06 04:53:04 +00:00
John Crispin 70d56d749b hostapd: read missing parameter for dynamic VLANs
In r41872 Dynamic VLAN support was reintroduced, but the vlan_naming
parameter is not read while setting up the config, so it always
defaults to 1.

Signed-off-by: Reiner Herrmann <reiner@reiner-h.de>

SVN-Revision: 42787
2014-10-06 04:52:21 +00:00
Felix Fietkau 5121981a9e iproute2: add conflict for ip with ip-full
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42774
2014-10-05 17:13:34 +00:00
Felix Fietkau bf0305725a hostapd: add conflicts with wpad(-mini) to hostapd and wpa_supplicant
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42772
2014-10-05 16:41:50 +00:00
Felix Fietkau 62e6e788dd relayd: update to the latest version, fixes a build error with the new gcc (#18010)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42765
2014-10-05 11:01:49 +00:00
Felix Fietkau 281f40cef2 hostapd: allow using iapp for any encryption type (fixes #18022)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42764
2014-10-05 10:55:55 +00:00
Felix Fietkau cd80931e03 hostapd: merge an upstream patch for pmksa cache
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42762
2014-10-05 10:26:26 +00:00
Felix Fietkau b5529ed26b iwinfo: detect AC PHY for broadcom-wl
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42761
2014-10-05 10:26:17 +00:00
Felix Fietkau dac05f6724 iwinfo: detect HT PHY for broadcom-wl
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42760
2014-10-05 10:26:10 +00:00
Felix Fietkau 349b20c197 iwinfo: fix handling of accessing nl80211 interfaces via radio*
look up device path via uci instead of assuming a direct phy index

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42759
2014-10-05 10:26:05 +00:00
Felix Fietkau 0e439d8a2a iwinfo: enable nl80211 support based on cfg80211, not mac80211
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42758
2014-10-05 10:25:55 +00:00
Jo-Philipp Wich 3158e7cca2 iwinfo: handle 802.11ac mode for lua
Signed-off-by: Bartosz Markowski <bartosz.markowski@tieto.com>

SVN-Revision: 42757
2014-10-04 09:38:17 +00:00
Steven Barth e15f03e5de authsae: update to latest version
Send a netlink call to leave the mesh when meshd exits
Make hunting-and-pecking loop (more) resistant to side channel attack

Signed-off-by: Michel Stam <m.stam@fugro.nl>

SVN-Revision: 42750
2014-10-02 19:47:28 +00:00
Steven Barth 75572d0d31 6in4: Tos support
Tos support is added as a string parameter which can have the following values :
   -inherit (outer header inherits the tos value of the inner header)
   -hex value

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 42749
2014-10-02 19:38:15 +00:00
Steven Barth e7e54ef672 6to4: Tos support
Tos support is added as a string parameter which can have the following values :
   -inherit (outer header inherits the tos value of the inner header)
   -hex value

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 42748
2014-10-02 19:38:04 +00:00
Steven Barth e9d15da0da 6rd: Tos support
Tos support is added as a string parameter which can have the following values :
     -inherit (outer header inherits the tos value of the inner header)
     -hex value

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 42747
2014-10-02 19:37:58 +00:00
Steven Barth 36b05bbed3 IPIP: IP in IP package support
The package supports IP in IP by registering the ipip protocol handler

Following options are configurable
    -peeraddr (IPv4 remote address)
    -ipaddr (IPv4 local address)
    -ttl (time to live of encapsulating packet)
    -tos (type of service of encapsulating packet either inherit (outer header inherits the value of the inner header) or hex value)
    -df (don't fragment flag of encapsulating packet)
    -mtu (IPIP tunnel mtu)
    -tunlink (bind tunnel to this interface)
    -zone (firewall zone to which the IPIP tunnel will be added)

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 42746
2014-10-02 19:37:36 +00:00
Steven Barth 73179a188c netifd: fix an error message during network shutdown
When 'wifi down' is called by /etc/init.d/network, it is run from
stop_service( ). This function is in turn invoked from stop( ).
stop( ) messes up the order by first procd_kill-ing the network
settings, then calling wifi to down the wifi networking
interfaces. By redefining stop( ) instead, the proper order is
restored.

Signed-off-by: Michel Stam <m.stam@fugro.nl>

SVN-Revision: 42745
2014-10-02 19:37:25 +00:00
Steven Barth 1c166058df netifd: add IPIP tunnel support (thx Hans Dedecker)
SVN-Revision: 42744
2014-10-02 19:37:17 +00:00
Steven Barth def69a96e9 map: fix portsets starting with 0 and use regular NAT for 1:1 MAP
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42741
2014-10-02 19:15:38 +00:00
Felix Fietkau f9fb48c6bc uqmi: set data format to 802.3 at startup
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42724
2014-10-02 12:19:37 +00:00
Felix Fietkau bf4cab37b7 uqmi: do not wait for network connection before starting dhcp
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42723
2014-10-02 12:19:26 +00:00
Felix Fietkau 179bfca038 uqmi: update to the latest version
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42722
2014-10-02 12:19:09 +00:00
Felix Fietkau 4955a2cd10 uqmi: use the autoconnect feature
Instead of connecting once and saving the packet data handle, let the
firmware handle connecting/reconnecting automatically. This is more
reliable and reduces reliance on potentially stale data.

Use the global packet data handle to attempt to disable autoconnect
before restarting the connection. This ensures that the firmware will
take the new APN/auth settings.

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42721
2014-10-02 12:18:58 +00:00
Felix Fietkau b54144a4c7 uqmi: replace logger calls in netifd with echo
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42720
2014-10-02 12:18:43 +00:00
Felix Fietkau cf595fe834 uqmi: work out the ifname instead of relying on it being in uci
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42719
2014-10-02 12:18:28 +00:00
Steven Barth 6e2262898f GRE: Tos support
Tos support is added as a generic grev4/grev6 parameter which can have the following values :
     -inherit (outer header inherits the tos value of the inner header)
     -hex value

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 42700
2014-09-29 18:00:02 +00:00
Steven Barth 30912c5d81 netifd: add support for promisc and GRE tos option
SVN-Revision: 42699
2014-09-29 17:59:50 +00:00
Steven Barth c2f510f2bd nftables: bump for bugfixes
SVN-Revision: 42698
2014-09-29 08:35:18 +00:00
Felix Fietkau ca25f76e82 iw: add support for dynamic distance selection (supported by ath9k now)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42689
2014-09-27 21:19:27 +00:00
Felix Fietkau d27893122d iw: sync nl80211.h
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42688
2014-09-27 21:19:18 +00:00
Steven Barth 36115321be odhcp6c: work around weird ISP RS behaviour
SVN-Revision: 42674
2014-09-27 16:57:47 +00:00
Felix Fietkau 16b3eae040 comgt: fix directip auth type
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42671
2014-09-26 15:55:45 +00:00
Steven Barth e5190a77e1 comgt: fireup a dhcpv6-client for directip as well
SVN-Revision: 42670
2014-09-26 13:58:40 +00:00
Felix Fietkau 45bd5ebfef comgt: in directip, derive the wwan ifname automatically instead of specifying it in the config
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42669
2014-09-26 13:44:21 +00:00
Steven Barth dd948b7990 dnsmasq: bump to 2.72
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42668
2014-09-26 08:57:36 +00:00
Steven Barth 71960baa7d odhcpd: fix segfault when parsing domain options in UCI
SVN-Revision: 42663
2014-09-25 11:53:12 +00:00
Felix Fietkau 6edad5a849 curl: only set ca path for openssl
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42662
2014-09-25 10:51:56 +00:00
Felix Fietkau 5ad7d7cc97 curl: use the system certificates
Signed-off-by: Cristian Morales Vega <cristian@samknows.com>

SVN-Revision: 42661
2014-09-25 10:37:06 +00:00
Felix Fietkau cb2642b09b comgt: initialize ifname for directip
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42658
2014-09-24 17:04:20 +00:00
Felix Fietkau d234ad9dd9 comgt: add no_device=1 for directip proto
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42657
2014-09-24 08:07:45 +00:00
Felix Fietkau 9fa791f62b comgt: fix misplaced : in directip setup script
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42656
2014-09-24 08:07:40 +00:00
Steven Barth 2ccf88744c dnsmasq: fix lockup when interfaces disappear
SVN-Revision: 42648
2014-09-22 12:07:20 +00:00
Jo-Philipp Wich 68147004e2 firewall: allow '*' as synonym for any / all in family and proto options
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42620
2014-09-19 18:18:58 +00:00
Jo-Philipp Wich 36e2179c10 firewall: fix heap corruption in fw3_bitlen2netmask() with IPv6 addresses
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42610
2014-09-18 12:05:12 +00:00
Jo-Philipp Wich cbf50a0ffd firewall: fix invalid memory access when processing /128 IPv6 addresses from ubus, properly emit REDIRECT rules for local port forwards
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42604
2014-09-17 22:09:52 +00:00
Steven Barth 72e6e0b85b nftables: introduce experimental nftables
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42598
2014-09-17 12:11:06 +00:00
John Crispin ed2fff7452 hostapd: do not remove foreign wpa_supplicant sockets
https://dev.openwrt.org/ticket/17886

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42586
2014-09-17 07:41:31 +00:00
John Crispin 50d313f409 lantiq: revert vr9 driver update as it causes problems
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42556
2014-09-15 16:19:33 +00:00
Felix Fietkau 7ff276afd3 hostapd: remove bogus default setting for wps_pin (#17873)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42553
2014-09-15 16:09:23 +00:00
John Crispin 88cc0ea21d iproute2: update from v3.15.0 to v3.16.0
Signed-off-by: Russell Senior <russell@personaltelco.net>

SVN-Revision: 42546
2014-09-15 10:18:50 +00:00
Hauke Mehrtens 2c605ba1f1 ppp: update to version 2.4.7
This fixes: CVE-2014-3158 and some other bugs.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>

SVN-Revision: 42525
2014-09-13 20:56:13 +00:00
Hauke Mehrtens 275ba42c52 curl: 7.36.0 -> 7.38.0
Main changes:
- URL parser: IPv6 zone identifiers are now supported
- cyassl: Use error-ssl.h when available (drop local patch)
- polarssl: support CURLOPT_CAPATH / --capath
- mkhelp: generate code for --disable-manual as well (drop local patch)

Full release notes: http://curl.haxx.se/changes.html

MIPS 34kc binary size:
- 7.36.0 before: 82,539 bytes
- 7.38.0 after: 83,321 bytes

Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>

SVN-Revision: 42517
2014-09-13 20:26:08 +00:00
Felix Fietkau 8d699086c3 qos-scripts: disable fq_codel ecn by default to improve compatibility
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42479
2014-09-11 23:13:24 +00:00
John Crispin e9dab2de72 lantiq: update to a newer versions of the vr9 drivers
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42478
2014-09-11 18:22:31 +00:00
John Crispin 5920eac8ee lldp: remove calls to user/group_add/exists
use the new ipkg based mechanism

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42472
2014-09-11 12:28:22 +00:00
John Crispin e61cd71564 umbim: remove superflous jshn call
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42467
2014-09-11 12:26:52 +00:00
John Crispin c9d15fbd59 umbim: update to latest git
adds handling for username/password

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42466
2014-09-11 12:26:41 +00:00
John Crispin 7bad68804c comgt: add directip proto
add a proto handler for sierra wireless directip modems

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42465
2014-09-11 12:26:31 +00:00
Felix Fietkau 96b74d4eef hostapd: add ubus bindings for wps
With this patch WPS discovery can be started or canceled over ubus if
WPS is enabled in wireless configuration. This is equivalent of
'hostapd_cli wps_pbc' and 'hostapd_cli wps_cancel' commands.

Signed-off-by: Petar Koretic <petar.koretic@sartura.hr>

SVN-Revision: 42459
2014-09-10 13:01:53 +00:00
Steven Barth bd74df01b1 netifd: work-around kernel IPv6 on-link route issue
SVN-Revision: 42439
2014-09-08 14:45:56 +00:00
John Crispin f769949e72 mdns: update to latest git head
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42407
2014-09-02 21:39:40 +00:00
Felix Fietkau 008c7a9e5a netifd: update to the latest version, adds interface cleanup fixes
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42345
2014-08-31 13:09:01 +00:00
Felix Fietkau ba62bcbf24 netifd: update to the latest version, fixes proto-shell teardown after renew
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42344
2014-08-31 12:26:26 +00:00
John Crispin 7f260ef6b7 dropbear: add mdns support to the init.d script
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42326
2014-08-29 18:16:41 +00:00
John Crispin 645ee59a2d mdns: update to latest git
* ipv6
* 4 bugs in the dns parser
* service announcement
* tx goodbye support
* proper handling of rx goodbye

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42325
2014-08-29 18:16:32 +00:00
John Crispin f65ff468f7 dnsmasq: Make the --dhcp-host logic easier to understand
Use an if/else statement to cover the two different syntaxes.  Add
comments explaining what the end results should look like.

This patch should not change the script's output.

Signed-off-by: Kevin Cernekee <cernekee@gmail.com>

SVN-Revision: 42320
2014-08-28 06:27:57 +00:00
John Crispin 5046209312 dnsmasq: Fix hosts file format when MAC address is not specified
An entry like this in /etc/config/dhcp:

    config 'host'
        option 'name' 'pc2'
        option 'ip' '192.168.100.56'
        option 'dns' '1'

results in a /tmp/hosts/dhcp entry that looks like this:

    192.168.100.56 .lan

Obviously it should say "pc2.lan".

This happens because $name is set to "" in order to support the MAC-less
syntax: "--dhcp-host=lap,192.168.0.199".  Fix this by reordering the
operations.  Also, refuse to add a DNS entry if the hostname or IP is
missing.

Fixes #17683

Reported-by: Kostas Papadopoulos <kpapad75@travelguide.gr>
Signed-off-by: Kevin Cernekee <cernekee@gmail.com>

SVN-Revision: 42319
2014-08-28 06:27:53 +00:00
John Crispin 449994b8c2 dnsmasq: Create rDNS records for LuCI "Hostnames"
LuCI creates "domain" UCI config sections, which the dnsmasq init file
then, currently, translates into "address" config lines. This is not
the correct usage of "address" (see r36943), and also causes rDNS
records to not be created. This patches dnsmasq.init to utilize the
additional hosts file introduced in r40799 for such domain names,
resolving both issues.

Signed-off-by: Tyler Fenby <tylerf@securecominc.com>

SVN-Revision: 42318
2014-08-28 06:27:49 +00:00
John Crispin 8686e23873 umbim: update to latest git
add pincode sanitization and handling for authproto/user/pass

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42299
2014-08-26 09:36:59 +00:00
Jo-Philipp Wich 730589281e uhttpd: do not configure TLS parameters if libustream-ssl is not present
A quite frequent problem after sysupgrading from an older, SSL enabled build
is that ustream-ssl is not installed so uhttpd fails to come up again due to
https listening directives in the preserved configuration.

Skip key/cert and ssl listen options when libustream-ssl.so is not present.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42284
2014-08-25 12:39:34 +00:00
John Crispin 2ae05c57f8 package/*: remove useless explicit set of function returncode
somebody started to set a function returncode in the validation
stuff and everybody copies it, e.g.

myfunction()
{
	fire_command

	return $?
}

a function automatically returns with the last returncode,
so we can safely remove the command 'return $?'. reference:

http://tldp.org/LDP/abs/html/exit-status.html
"The last command executed in the function or script determines the exit status."

Signed-off-by: Bastian Bittorf <bittorf@bluebottle.com>

SVN-Revision: 42278
2014-08-25 06:35:50 +00:00
Steven Barth 75cbca0a40 odhcp6c: enable softwires support by default
SVN-Revision: 42274
2014-08-25 06:11:53 +00:00
Jo-Philipp Wich 9d2bdd8585 iwinfo: properly decode SSIDs when scanning through wpa_supplicant
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42273
2014-08-24 21:42:26 +00:00
Steven Barth befad7432b odhcpd: fix static lease behavior with dhcpv4
SVN-Revision: 42270
2014-08-24 08:12:57 +00:00
John Crispin 0aa8214ae9 umbim: add netifd proto handler for mbim style lte modems
tested on vodafone k5105

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42262
2014-08-22 19:02:30 +00:00
Felix Fietkau 53d1cb9409 xtables-addons: update to version 2.5
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42256
2014-08-21 19:12:34 +00:00
Jonas Gorski bb6905bd23 dropbear: restore performance by disabling mips16
Disable MIPS16 to prevent it negatively affecting performance.
Observed was a increase of connection delay from ~6 to ~11 seconds
and a reduction of scp speed from 1.1MB/s to 710kB/s on brcm63xx.

Fixes #15209.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

SVN-Revision: 42250
2014-08-21 11:29:04 +00:00
Jonas Gorski 932305f854 dropbear: fix keepalive more
Add a further upstream commit to more closely match the keepalive
to OpenSSH.

Should now really fix #17523.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

SVN-Revision: 42249
2014-08-21 11:29:02 +00:00
John Crispin b9ea44f947 firewall: the firewall did not start properly on boot
https://dev.openwrt.org/ticket/17593

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 42233
2014-08-21 09:53:25 +00:00
Steven Barth 0f49b1940e dnsmasq: fix a race condition possibly leading to lockup
SVN-Revision: 42225
2014-08-20 09:52:29 +00:00
Steven Barth fe3d4f2176 odhcpd: various DHCPv4 and DHCPv6 fixes
SVN-Revision: 42217
2014-08-19 05:58:51 +00:00
Steven Barth c36e312647 dnsmasq: respect option dhcpv4 disabled in dhcp-config
SVN-Revision: 42216
2014-08-19 05:58:44 +00:00
Jonas Gorski 006cdbfdbc dropbear: fix keepalive with putty
Don't send SSH_MSG_UNIMPLEMENTED for keepalive responses, which broke
at least putty.

Fixes #17522 / #17523.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

SVN-Revision: 42162
2014-08-13 20:49:56 +00:00
Steven Barth 92ef017054 netifd: assign ipv6-prefixes with length <64 with /64 on-link routes
SVN-Revision: 42161
2014-08-13 14:57:11 +00:00
Steven Barth a8a07e5156 odhcpd: improve DHCPv6-PD detection
SVN-Revision: 42160
2014-08-13 14:57:07 +00:00
Steven Barth af964cafc3 ppp: enable IPv6CP by default
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42158
2014-08-13 10:18:20 +00:00
Steven Barth eba984b94b odhcpd: multiple DHCPv4 improvements (thx Christian Mehlis)
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42153
2014-08-12 13:30:04 +00:00
Jo-Philipp Wich eb02b887ff package: fix segfault of iwinfo.scanlist("radio0").
This is a bug revealed in r41830.

First, the static variable `char nif[IFNAMSIZ]` of nl80211_phy2ifname()
would be zeroed out if the argument is "wlan0" or the like.  This will
happen in the following call stack.

 nl80211_get_scanlist("radio0", buf, len);
   nl80211_phy2ifname("radio0")			// return static var nif with content "wlan0"
   nl80211_get_scanlist(nif, buf, len);		// tail call
     nl80211_get_mode(nif);
        nl80211_phy2ifname(nif);		// zero out nif

Later we try nl80211_ifadd("") which was supposed to create interface
"tmp.", but that won't happen because nl80211_msg() will put an invalid
ifidx 0 to the nlmsg.

Then iwinfo_ifup() and iwinfo_ifdown() would fail and happily
nl80211_get_scanlist() returned 0 and left *len undefined.

Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>

SVN-Revision: 42151
2014-08-12 11:14:11 +00:00
Jo-Philipp Wich aa9e69908e firewall: fix potential NULL pointer access
Properly skip struct ifaddr entries with NULL ifa_addr, thanks Kostas Papadopoulos for reporting.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42138
2014-08-11 17:45:18 +00:00
Steven Barth ff6363dc19 dropbear: update to 2014.65
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 42131
2014-08-11 13:02:43 +00:00
Jo-Philipp Wich fa37594f50 firewall: implement selective conntrack flushing (#10225)
Utilize the new selective conntrack flushing facility to clear
out active conntrack entries referring to old IP addresses after
a firewall reload.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 42114
2014-08-11 09:41:20 +00:00
Luka Perkov bc69ee8eab hostapd: fix some whitespaces
Signed-off-by: Luka Perkov <luka@openwrt.org>

SVN-Revision: 42111
2014-08-11 08:44:48 +00:00
Steven Barth c1d698fce4 odhcpd: avoid logspam in certain corner cases
SVN-Revision: 42067
2014-08-08 08:45:33 +00:00
Steven Barth 74941a0d25 odhcpd: write host-entries for all leased IPv6 addresses
SVN-Revision: 42065
2014-08-08 05:30:59 +00:00
Felix Fietkau 4d39f186bc xtables-addons: remove version 1.x for old kernels
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42047
2014-08-07 19:30:33 +00:00
Steven Barth 28007326d4 odhcpd: update hostfile more often
SVN-Revision: 42042
2014-08-07 18:07:37 +00:00
Steven Barth ddbd2cf781 iptables: add kmod-ipt-nf* to dependency list of iptables-mod-nf*.
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>

SVN-Revision: 42034
2014-08-07 12:32:33 +00:00
Steven Barth b95b4ede4c netifd: unblock some proto shell actions in teardown state
SVN-Revision: 42032
2014-08-07 10:21:08 +00:00
Steven Barth 4659a5f920 odhcpd: correct incorrect commit-id in last commit
SVN-Revision: 42026
2014-08-07 05:50:44 +00:00
Steven Barth 7dbe0cb7b1 odhcpd: skip MSRs in RAs for prefixes with same size as DP
SVN-Revision: 42024
2014-08-07 05:34:02 +00:00
Steven Barth 9f2a17103f iptables: NFLOG and NFQUEUE targets' full support
NFLOG and NFQUEUE targets' full support for iptables.

Includes all needed kernel modules (Xtables's and Netlink's)
 and userspace libraries.
All added kernel modules can be individually disabled,
 all other new libraries get their own individual packages.

Reported-by: Fabian Hugelshofer <hugelshofer2006@gmx.ch>
Reported-by: Rainer Poisel <rainer.poisel@fhstp.ac.at>
Reported-by: Derek LaHousse <dlahouss@mtu.edu>
Signed-off-by: Guillaume Déflache <guillaume.deflache@ibwag.com>

SVN-Revision: 42022
2014-08-07 04:42:22 +00:00
Steven Barth 6656292619 netifd: disable ds-lite, map & gre for old kernels
this unbreaks netifd compilation on old kernels

SVN-Revision: 42019
2014-08-06 19:57:19 +00:00
Felix Fietkau b465cf412f iwinfo: allow scans in AP mode on nl80211
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 42014
2014-08-06 17:07:18 +00:00
Steven Barth 1e6ab23098 netifd: minor fixes (thanks Hans Dedecker)
SVN-Revision: 42000
2014-08-05 10:03:10 +00:00
Steven Barth bc0acb9db9 gre: Change hostdependcy to remote endpoint tunnel address
Depend on the GRE tunnel peeraddr to trigger setup of the tunnel interface.
Addresses the issue reported in https://lists.openwrt.org/pipermail/openwrt-devel/2014-August/027201.html

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 41998
2014-08-05 09:57:55 +00:00
Felix Fietkau 44cb68c038 hostapd: revert bogus version that was added in r41872
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41960
2014-08-03 10:53:40 +00:00
Felix Fietkau 49d00e95db iputils: add missing includes, fix musl support
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41958
2014-08-03 10:45:36 +00:00
Felix Fietkau 3e0247b95f igmpproxy: add missing include
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41957
2014-08-03 10:45:31 +00:00
Felix Fietkau 34a1ee8410 iwcap: add missing include
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41956
2014-08-03 10:45:28 +00:00
Felix Fietkau 5a506ca595 iwinfo: add missing include statement
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41955
2014-08-03 10:45:23 +00:00
Jo-Philipp Wich baa7c211f5 netfilter: introduce xt_id match
This commit implements a new netfilter match "xt_id" which can be used to
attach unsigned 32bit IDs to iptables rules.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41945
2014-08-01 22:49:47 +00:00
Steven Barth 7dabdbde78 gre: Generic Routing Encapsulation package support
The package supports Generic Routing Encapsulation support by registering following protocol kinds:
    -gre
    -gretap
    -grev6
    -grev6tap

Following options are valid for gre and gretap kinds:
    -ipaddr
    -peeraddr
    -df
    -mtu
    -ttl
    -tunlink
    -zone
    -ikey
    -okey
    -icsum
    -ocsum
    -iseqno
    -oseqno

The gretap kind supports additionally the network option

Following options are valid for grev6 and grev6tap kinds:
    -ip6addr
    -peer6addr
    -weakif
    -mtu
    -ttl
    -tunlink
    -zone
    -ikey
    -okey
    -icsum
    -ocsum
    -iseqno
    -oseqno

The grev6tap kind supports additionally the network option

Typical network config for a GREv4 tunnel :

config interface 'gre'
        option peeraddr '172.16.18.240'
        option mtu '1400'
        option proto 'gre'
        option tunlink 'wan'
        option zone 'tunnel'

Typical network config for a GREv4 tap tunnel :

config interface 'gretap'
        option peeraddr '195.207.5.79'
        option mtu '1400'
        option proto 'gretap'
        option zone 'tunnel'
        option tunlink 'wan'
        option network 'wlan_ap'

I added myself as maintainer for the moment; feel free to change.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 41897
2014-07-30 13:22:24 +00:00
Steven Barth e413bb0e7e netifd: fixes and GRE support (thx Hans Dedecker)
SVN-Revision: 41896
2014-07-30 13:21:52 +00:00
Steven Barth 462023f45a odhcp6c: Fix white space typo in dhcpv6.script
Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 41893
2014-07-30 13:18:01 +00:00
Steven Barth 86671615de netifd: suppress fw3 warnings in dhcp script
Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 41892
2014-07-30 13:17:56 +00:00
Steven Barth 6a50e69b21 netifd: more race condition fixes in proto-shell
SVN-Revision: 41887
2014-07-29 17:24:23 +00:00
John Crispin 8d3f839da7 ppp: fix a buffer overrun in the ms chap code
https://dev.openwrt.org/ticket/17296

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 41882
2014-07-29 12:18:52 +00:00
Jo-Philipp Wich b6153f92ad hostapd: Reintroduce Full Dynamic VLAN support
This patch brings full dynamic vlan support to netifd that existed in hostapd.sh in Attitude Adjustment.

Signed-off-by: Joseph CG Walker <Joe@ChubbyPenguin.net>
[jow@openwrt.org: changed commit message, rebased on top of current hostapd.sh]
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41872
2014-07-29 09:48:02 +00:00
Felix Fietkau c6d1992701 hostapd: add more missing ifdefs
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41863
2014-07-28 22:52:39 +00:00
Steven Barth 7f17639742 netifd: more dynamic interface improvements
SVN-Revision: 41862
2014-07-28 20:35:53 +00:00
Felix Fietkau fd619513d1 hostapd: add missing ifdef
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41855
2014-07-28 10:36:51 +00:00
Felix Fietkau 76d7397bc2 netifd: fix a small issue in r41831
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41836
2014-07-26 14:35:15 +00:00
Felix Fietkau e7ece301fe odhcp6c: suppress fw3 warnings
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41833
2014-07-26 12:23:28 +00:00
Felix Fietkau ee4f8c8b99 netifd: update to the latest version, fixes a race condition with renew/setup
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41831
2014-07-26 01:46:34 +00:00
Jo-Philipp Wich b84346e141 iwinfo: avoid creating tmp.* ifaces for scanning
If the iface to scan on already is in ad-hoc, station or monitor mode
then do not spawn a temporary iface.

Also preventively disable IPv6 on temporary ifaces before bringing them
up to avoid potential security issues.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41830
2014-07-25 15:52:17 +00:00
Jo-Philipp Wich bd7642f1a9 iwinfo: fix secondary radios being misreported as ralink device
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41829
2014-07-25 14:36:43 +00:00
Felix Fietkau eaa3c4a11d hostapd: prevent spurious 20/40 mhz channel bandwidth switches if noscan is enabled
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41828
2014-07-25 14:29:58 +00:00
Jo-Philipp Wich 833820dc8b iwinfo: continue scanning even if temporary mac cannot be changed
So far iwinfo aborted a wifi scan attempt if the mac of the spawned
interface could not be changed. Change the code to try anyway - this
should fix wifi scanning on RaLink devices.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41826
2014-07-25 14:11:50 +00:00
Steven Barth ae50480d77 netifd: Fix some race-conditions in interface handling
SVN-Revision: 41825
2014-07-24 22:05:19 +00:00
Steven Barth 9231df5665 softwires: redesign dhcp(v6) provisioning
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 41823
2014-07-24 14:17:41 +00:00
Felix Fietkau 5206b2dac0 netifd: update to the latest version, enables bridge multicast querier and fixes interface reload issues with wifi
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41818
2014-07-24 09:13:04 +00:00
Steven Barth 22419ae4cb odhcpd: don't lose downstream routes for managed PD
SVN-Revision: 41816
2014-07-23 21:14:56 +00:00
Steven Barth b4a3863875 odhcpd: revert NDP relay rewrite (performance issue still fixed)
SVN-Revision: 41808
2014-07-22 21:52:20 +00:00
Steven Barth b864faa47c odhcpd: fix typo in ubus integration (thanks Markus Stenberg)
SVN-Revision: 41796
2014-07-21 21:57:15 +00:00
John Crispin 64a07e6a8b lantiq-dsl: add 2 ugly workarounds for the IB to work
the IB tries to run the enable target on all init.d scripts.
It fails when including the dsl_control helper. Check for existence
prior to the include.

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 41787
2014-07-21 18:41:46 +00:00
Steven Barth 683b622fcd odhcp6c: Send RS with source link-layer address if possible
SVN-Revision: 41778
2014-07-21 10:11:09 +00:00
Jo-Philipp Wich 2dd087ccee firewall: implement support for abritary netmasks
Properly parse and pass arbritary netmasks to iptables, this allows
specifying ranges like '::c23f:eff:fe7a:a094/::ffff:ffff:ffff:ffff' to
match the host part of an IPv6 address regardless of the currently active
IPv6 prefix.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41760
2014-07-19 16:30:47 +00:00
Felix Fietkau 51fbfde474 netifd: update to the latest version, adds a small validation fix
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41731
2014-07-18 11:45:42 +00:00
Felix Fietkau 4ecb9289ef qos-scripts: convert to procd
Signed-off-by: John Crispin <blogic@openwrt.org>
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41730
2014-07-18 11:25:07 +00:00
Steven Barth c05d6ba1ff odhcpd: rewrite NDP proxy feature
SVN-Revision: 41703
2014-07-17 19:11:17 +00:00
Felix Fietkau 51b11ba5ea netifd: update to the latest version, enables igmp snooping by default
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41683
2014-07-17 14:55:17 +00:00
Felix Fietkau 4ef8d2e014 qos-scripts: fix ingress packet marking with ifb
Split connection mark into two parts:

The lower nibble contains the confirmed conntrack mark which is not
generated by default/reclassify rules.
The upper nibble contains the current value specified by
default/reclassify rules.

For egress, the default/reclassify value is preferred
For ingress, the connection mark is preferred

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41682
2014-07-17 12:02:06 +00:00
Felix Fietkau 1ecb74024b iwinfo: fix crash on parsing mtd (#15807)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41675
2014-07-16 18:57:23 +00:00
Felix Fietkau b24e77714e hostapd: add a require_mode option in wifi-device sections to select the minimum hardware mode that the AP requires from clients
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 41665
2014-07-15 10:30:08 +00:00
Steven Barth 7264389699 odhcpd: disable packet socket if unneeded to preserve performance
SVN-Revision: 41644
2014-07-14 13:39:03 +00:00
Jo-Philipp Wich f4781cae6d firewall: fix segfault introduced by latest update
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41558
2014-07-10 16:44:20 +00:00
Jo-Philipp Wich 8b0650838d firewall: fix regressions introduced after latest ubus rework
The commit 92281eb747b56e748b7c3d754055919c23befdd4 broke fw3_ubus_addresses() so that
no addresses where returned at all, this caused fw3 to not emit NAT reflection rules
anymore.

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 41556
2014-07-10 10:21:17 +00:00