Commit Graph

726 Commits (27f53b6560d97128bdc6c7d25c2a72d80565401b)

Author SHA1 Message Date
Steven Barth a413fcd1bf firewall: Improve ubus support
* Use network.interface dump call instead of individual status calls
  to reduce overall netifd lookups and invokes to 1 per fw3 process.

* Allow protocol handlers to assign a firewall zone for an interface
  in the data section to allow for dynamic firewall zone assignment.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38504 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-23 10:25:26 +00:00
Steven Barth 7002de6567 odhcpd: fix cleaning of configuration on reload
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38503 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-23 09:30:28 +00:00
Steven Barth ddd9ba8547 6relayd: reduce fallout of RA spamming a bit
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38488 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-21 10:26:57 +00:00
Steven Barth 2406418273 netifd: Fix ifupdate events
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38458 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-19 11:01:25 +00:00
Steven Barth 0cbcc1e6b2 odhcpd: various bugfixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38454 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 13:39:48 +00:00
Steven Barth e9965e62b7 netifd: various improvements
* Add ubus methods for global interface status
* Add ubus function to create nested interfaces
* Add protocol update notifications and hotplug legacy calls
* Fix: key to data elements point at wrong memory area
* Add support for source-restricted routes
* Add option "delegate" to toggle prefix delegation
* Reevaluate target routes also on interface update

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38453 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 13:39:43 +00:00
Jo-Philipp Wich 9620e5bae9 wpa_supplicant: fix beacon_int configuration option
wpa_supplicant expects beacon_int instead of beacon_interval in its config
file.

Signed-off-by: Bruno Randolf <br1@einfach.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38451 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 11:47:47 +00:00
Jo-Philipp Wich 04f2b28bd6 iw: add patch to support 802.11j frequencies
A similar change was recently merged in iw commit
58b46da26ab9b5ff31c7033e175351eb1301d9af

Signed-off-by: Bruno Randolf <br1@einfach.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38449 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 11:43:02 +00:00
Jo-Philipp Wich 533eac9728 iwinfo: make 'type' visible in wrapped iwinfo
There are several cases within 'luci' that attempt to access the interface
'type' from within the 'type' specific meta tables; however, 'type' is not
currently available there.  Replicate the common metadata in the 'type'
specific meta tables.

Signed-off-by: Nathan Hintz <nlhintz@hotmail.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38448 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 11:42:43 +00:00
Steven Barth 56e7732aa0 netifd: rename customopts to sendopts for consistency
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38437 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-17 13:12:06 +00:00
Steven Barth b8574ae0b5 Added 'customopts' dhcp protocol option, which is an array passed along to udhcpc as series of -x options.
Signed-off-by: Markus Stenberg <markus.stenberg@iki.fi>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38436 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-17 12:55:40 +00:00
Steven Barth 092ba3c09a odhcp6c: fix parsing of IA_PD adverts
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38433 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-17 07:19:32 +00:00
Steven Barth 7ba0aa8dcf odhcpd: add new experimental dhcp-server
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38428 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-16 09:03:55 +00:00
Jo-Philipp Wich 9ba3fcdf85 dropbear: add dropbear.nl mirror, provided by dropbear maintainer
Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38413 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-15 13:10:32 +00:00
Luka Perkov 731d18c6ed [package] openvpn: make comp_lzo a parameter
Possible parameters are yes, no and adaptive. See manpage for more information.

Signed-off-by: Philipp Borgers <borgers@mi.fu-berlin.de>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38412 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-15 12:42:58 +00:00
Jo-Philipp Wich 8a41acee91 openvpn-easy-rsa: restore essential patch to make it actually work on the target (#14324)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38411 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-15 12:23:21 +00:00
Steven Barth da88af3641 odhcp6c: various fixes
* Make SOL_MAX_RT configurable and default back to 120s
* Prefer servers with bigger prefixes (allows to use Comcast /60)
* Don't hang indefinitely if DHCPv6 REQUEST is not answered

Signed-off-by: Steven Barth <steven@midlink.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38393 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-14 18:53:02 +00:00
Hauke Mehrtens 77517a6a27 iputils: do not compile this for brcm47xx with -O2
ping is now working for me with -Os on brcm47xx.
This revert r26278.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38389 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-13 22:51:33 +00:00
Hauke Mehrtens 0a0af9433f switch: remove old switch driver
The switch driver is not used by brcm47xx any more and can be removed, 
instead of this switch driver b53 is used now.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38387 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-13 22:15:31 +00:00
Hauke Mehrtens fad1f4d6ec lantiq: add some missing PKG_SOURCE_URLs
These URLs where missing and causes build failures.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38376 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-12 22:33:55 +00:00
Jo-Philipp Wich c081113e44 dnsmasq: add option broadcast to host sections
There are certain consumer devices which are outliers in protocol conformance.
An example is Samsung bluray players, which require broadcast DHCP responses
(on Ethernet only, strangely not on Wifi).

By specifying:

config host
	...
	option broadcast 1

this will enable the response to be sent as an Ethernet broadcast and not as
a unicast.

Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38365 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-11 18:33:15 +00:00
Jo-Philipp Wich fb47dac0bd firewall: small improvements in nat reflection
- do not insert duplicate rules when setting up reflection to a zone containing multiple interfaces
	- set up reflection for any protocol, not just TCP and UDP

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38361 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-10 18:15:10 +00:00
Jo-Philipp Wich 5a8864448a ppp: correct module loaded check in proto_pptp_setup
proto_pptp_setup is responsible for loading the required modules to establish
a pptp connection to a foreign peer. The function checks whether all required
modules are already loaded, before actually loading them.

It seems that the filter being used to accomplish this, is not restrictive
enough in some cases. For instance when pptp nat helper modules are present on
a system, and already loaded before a pptp connection is enabled. Then the
search filter (possibly) returns the following for module=pptp, where actually
no matches are expected, resulting in the pptp.ko module not being loaded,
thereby failing to establish the pptp connection.

# module="pptp" ; grep "$module" /proc/modules
nf_nat_pptp 1312 0 - Live 0x86ce7000
nf_conntrack_pptp 3072 1 nf_nat_pptp, Live 0x86cb9000
nf_nat_proto_gre 784 1 nf_nat_pptp, Live 0x86cba000
nf_conntrack_proto_gre 2368 1 nf_conntrack_pptp, Live 0x86cbf000
nf_nat 9792 13 nf_nat_rtsp,nf_nat_tftp,nf_nat_sip,nf_nat_pptp,nf_nat_h323,nf_nat_proto_gre,nf_nat_amanda,nf_nat_irc,nf_nat_ftp,ipt_REDIRECT,ipt_NETMAP,ipt_MASQUERADE,iptable_nat, Live 0x86ca8000
nf_conntrack 37264 31 nf_nat_rtsp,nf_conntrack_rtsp,nf_nat_tftp,nf_conntrack_tftp,nf_nat_snmp_basic,nf_conntrack_snmp,nf_nat_sip,nf_conntrack_sip,nf_nat_pptp,nf_conntrack_pptp,nf_nat_h323,nf_conntrack_h323,nf_conntrack_proto_gre,nf_nat_amanda,nf_conntrack_amanda,nf_conntrack_broadcast,nf_nat_irc,nf_conntrack_irc,nf_nat_ftp,nf_conntrack_ftp,ipt_MASQUERADE,iptable_nat,nf_nat,xt_helper,xt_connmark,xt_connbytes,xt_conntrack,xt_CT,xt_NOTRACK,xt_state,nf_conntrack_ipv4, Live 0x86c90000

The search filter can be made more accurate/restrictive, by requiring the
occurance of the exact name of the module at the beginning of a line in
/proc/modules.

# module="pptp" ; grep "^$module " /proc/modules
pptp 13296 2 - Live 0x86e80000

Signed-off-by: Tijs Van Buggenhout <tvb@able.be>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38358 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-10 14:58:12 +00:00
Jo-Philipp Wich 08715f05ef dropbear: update to 2013.59 (released 4 october 2013)
- drop mirror www.mirrors.wiretapped.net (not working anymore)
- drop patch 300-ipv6_addr_port_split.patch, included upstream
- refresh patches
- various upstream changes: http://matt.ucc.asn.au/dropbear/CHANGES

Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38356 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-10 14:42:05 +00:00
Luka Perkov b883412931 [package] openvpn: rework initscript (fixes #14299)
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38351 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-09 11:25:09 +00:00
Felix Fietkau 03dbfd74ae hostapd: recognize 8021x as an authentication mode
Currently, in order to configure the authentication daemon in
8021x mode, we need to set wireless.@wifi-iface[0].encryption="wpa"
Though it works it confuses folks as 8021x is using WEP
encryption and not WPA. Therefore the terminology itself is
confusing. This change adds 8021x as a recognized string for 8021x
authentication.

Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38339 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:52 +00:00
Felix Fietkau 7dbd213406 hostapd: add external registrar support
Setting wireless.@wifi-iface[N].ext_registrar=1 will enable UPNP
advertising and add an external registrar to the interface this vif
belongs to (br-lan if the vif is included in the LAN bridge). By
enabling this we append upnp_iface=xxx to the hostapd config file.

Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>
Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38338 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:48 +00:00
Felix Fietkau a8cf4fe00a hostapd: enable WPS2 support on hostapd-full.config
Enable CONFIG_WPS2 for hostapd. This is required to support
options like Virtual Push Button in WPS.

Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38337 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:44 +00:00
Felix Fietkau 66614d7572 hostapd: fix hostapd RSN preauthentication PMKSA caching
In 2009 OpenWrt's hostapd config added an "auth_cache" boolean
to be used to address a reported issue #12129 [0] on a forum [1].
The reported issue on the ticket is different that the one
described on the forum. The commit was r33359. This change broke
proper RSN preauthentication [2] [3] [4] expectations on hostapd's
configuration for WPA2 and this in turn disabled PMKSA caching and
Opportunistic Key Caching. This change:

  * Leaves the "auth_cache" to be used only for WPA networks for those
    looking to use this as a workaround to a reported issue but annotates
    a warning over its usage.

  * Separate "auth_cache" from WPA2 RSN preauthentication, leaving
    WPA2 RSN preauthentication to enabled only with "rsn_preauth" with
    the expected and recommended settings.

  * Adds a new WPA2 RSN preauthentication "rsn_preauth_testing" to
    be used when evaluating funcionality for WPA2 RSN preauthentication
    with the expected and recommended settings with the only difference
    so far with what should be enabled by default to disable Opportunistic
    Key Caching.

Disabling the PMKSA cache should mean the STA could not roam off and back
onto the AP that had PMKSA caching disabled and would require a full
authentication cycle. This fixes this for WPA2 networks with
RSN preauthentication enabled.

This change should be applied to AA as well as trunk.

  TL DR;

The issue described on the forum has to do with failure of a STA
being able to try to authenticate again with the AP if it failed
its first try. This may have been an issue with hostapd in 2009
but as per some tests I cannot reproduce this today on a WPA2
network.

The issue described on the ticket alludes to a security issue with the
design of using a Radius server to authenticate to an AP. The issue
vaguely alludes to the circumstances of zapping a user, deleting their
authentication credentials to log in to the network, and that if
RSN preauthentication is enabled with PMKSA caching that the user
that was zapped would still be able to authenticate.

Lets treat these as separate issues.

I cannot reproduce the first issue reported on the forums of not
being able to authenticate anymore on a WPA2 network.

The issue reported on the ticket modified WPA2 RSN preauthentication
by adding two fields to the hostapd configuration if auth_cache
was enabled:

  * disable_pmksa_caching=1
  * okc=0

The first one disables PMKSA authentication cache.
The second one disables Opportunistic Key Caching.

The issue reported on the ticket was fixed by implementing a workaround
in hostapd's configuration. Disabling PMKSA caching breaks proper use
of WPA2 RSN pre authentication. The usage of disable_pmksa_caching=1
prevents hostapd from adding PMKSA entries into its cache when a successful
802.1x authentication occurs. In practice RSN preauthentication would
trigger a STA to perform authentication with other APs on the same SSID,
it would then have its own supplicant PMKSA cache held. If a STA roams
between one AP to another no new authenitcation would need to be performed
as the new AP would already have authenticated the STA. The purpose of the
PMKSA cache on the AP side would be for the AP to use the same PMKID for
a STA when the STA roams off onto another BSSID and later comes back to it.

Disabling Opportunistic Key Caching could help the reported issue
as well but its not the correct place to address this. Opportunistic
Key Caching enables an AP with different interfaces to share the
PMKSA cache. Its a technical enhancement and disabling it would
be useful to let a testing suite properly test for RSN preauthentication
given that otherwise Opportunistic Key Caching would enable an
interface being tested to derive its own derive the PMKSA entry.
In production though okc=1 should be enabled to help with RSN
preauthentication.

The real fix for this particular issue outside of the scope of hostapd's
configuration and it should not be dealt with as a workaround to
its configuration and breaking expected RSN preauthentication and
technical optimizations. Revert this change and enable users to pick
and choose to enable or disable disable_pmksa_caching and okc expecting them
to instead have read clearly more what these do.

As for the core issure ported, the correct place to fix this is to
enable a sort of messaging between the RADIUS server and its peers
so that if caching for authentication is enabled that cache can be
cleared upon user credential updates. Updating a user password
(not just zapping a user) is another possible issue that would need
to be resolved here. Another part of the solution might be to reduce
the cache timing to account for any systematic limitations (RADIUS
server not able to ask peers to clear cache might be
one).

[0] https://dev.openwrt.org/changeset/33359
[1] https://forum.openwrt.org/viewtopic.php?id=19596
[2] http://wireless.kernel.org/en/users/Documentation/hostapd#IEEE_802.11i.2FRSN.2FWPA2_pre-authentication
[3] http://wireless.kernel.org/en/users/Documentation/wpa_supplicant#RSN_preauthentication
[4] http://wiki.openwrt.org/doc/recipes/rsn_preauthentication

Signed-off-by: Luis R. Rodriguez <mcgrof@do-not-panic.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38336 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:40 +00:00
Felix Fietkau 6ff7614c07 hostapd: Add WPS unconfigured & WPS pin method support
Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38335 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:36 +00:00
Felix Fietkau 21108bc210 hostapd: Add eap_reauth_period config option
This adds the eap_reauth_period to be used for modifying
the RADIUS server reauthentication authentication period,
a parameter that gets passed directly to the hostapd
configuration file.

Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38334 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:27 +00:00
Luka Perkov 337f454532 [package] openvpn: switch to new procd init script style
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38331 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-07 21:28:14 +00:00
Steven Barth 9f6f08e80d odhcp6c: improve server selection, introduce "forceprefix" option
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38314 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-07 08:43:33 +00:00
Luka Perkov 7dbe386104 [package] iproute2: update to 3.11
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38313 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-07 08:26:41 +00:00
Felix Fietkau c8eba693d0 netifd: update to latest version, adds macvlan support
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38299 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-03 14:51:34 +00:00
Steven Barth 09838598c1 odhcp6c: validate hop-limit on RAs
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38285 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-02 14:16:05 +00:00
Steven Barth a21d544dc5 6relayd: remove compat ULA setting by default (too many bad sideeffects)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38283 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-02 06:14:39 +00:00
Steven Barth 077620aa6b netifd: don't remove & readd addresses that only have a changed lifetime
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38269 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-01 17:30:05 +00:00
Felix Fietkau b8672f84cb uhttpd: add a config option for using ustream-polarssl, and use it by default
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38250 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-29 11:26:09 +00:00
Felix Fietkau 3a931a5b0c uhttpd: fix appending https ports to cmdline
Otherwise it is started only on non-secure ports.

Signed-off-by: Wojciech Dubowik <Wojciech.Dubowik@neratec.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38171 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-25 07:44:48 +00:00
Gabor Juhos c0739badb2 iwinfo: add Ubiquiti WispStation M5 to hardware.txt
Signed-off-by: Gabor Juhos <juhosg@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38145 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-24 05:58:29 +00:00
Luka Perkov cebf051302 [package] fix various init scripts
Changes include:

* removing unused variables
* replacing spaces with tabs where appropriate
* more consistency with variable declarations

Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38142 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-23 21:58:36 +00:00
Felix Fietkau 8d82afd3a4 xtables-addons: fix missing conversion from r38021 (resolves a broken dependency)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38124 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-22 19:49:23 +00:00
Steven Barth 880d5d81a2 odhcp6c: handle NoAddrsAvail IA-status
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38092 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-21 10:54:13 +00:00
Steven Barth c89032631c odhcp6c: Restart when server returns IAID error
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38032 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-18 10:27:15 +00:00
John Crispin d330d9fac4 procd: convert various packages to procd style init.d scripts
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38023 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-17 21:45:30 +00:00
John Crispin 751f928815 kernel: make most modules use AutoProbe
now that we have modprobe we can set more than half of the modules to AutoProbe

Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38021 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-17 21:45:17 +00:00
Felix Fietkau e2a5d64c3e hostapd: adjust the md5sum for the uploaded source tarball (fixes #14155)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37990 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-14 20:07:35 +00:00
Felix Fietkau 32bcbe7b96 iwinfo: when using nl80211, parse interface combinations instead of creating/deleting interfaces
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37983 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-14 14:46:51 +00:00
Jo-Philipp Wich 546a43923a uhttpd: udpat to git head
- fixes buffer corruption with JSON-RPC list calls
	- change JSON-RPC protocol to include the session ID into the call
	  attributes instead of passing it via the URL
	- forcibly pass effective session ID as "ubus_rpc_session" attribute
	  to called procedures
	- change ubus acl checking to conform with new ubus session namespace

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37962 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-13 13:24:45 +00:00
Steven Barth e7aed7d6a9 odhcp6c: Timing workaround for buggy servers
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37951 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-12 12:57:42 +00:00
Steven Barth f919a7b85b odhcp6c: more compatibility fixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37907 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-05 21:13:51 +00:00
Steven Barth 47c281f29c netfilter: Add IPv6-NAT support for kernel and ipt
Thanks to Berni, Adam Novak and Sedat Dilek for patches and inspiration

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37866 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-01 17:59:48 +00:00
Steven Barth 794da7c235 iptables: Update to 1.4.20
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37865 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-01 13:46:10 +00:00
Felix Fietkau 91ad2566f0 netifd: update to the latest version, fixes a bridge handling corner case on config reload
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37856 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-29 22:20:36 +00:00
Vasilis Tsiligiannis 482f6fb9db lldpd: Add libbsd dependency when using eglibc
Signed-off-by: Vasilis Tsiligiannis <acinonyx@openwrt.gr>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37837 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-25 18:47:08 +00:00
Jo-Philipp Wich 4e0f16aad4 firewall: update to git head
- uses "-j CT --notrack" instead of deprecated "-j NOTRACK"
	- fixes support for rule sections with target "NOTRACK"

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37777 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-14 15:40:38 +00:00
Felix Fietkau a1fe46a80c hostapd: fix typo in version number
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37742 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-08 20:45:15 +00:00
Felix Fietkau fbf4f2e570 hostapd: fix ubus reconnect handling
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37741 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-08 20:45:12 +00:00
Felix Fietkau b6e54cd812 hostapd: add a build variant for wpa_supplicant with p2p (aka Wi-Fi Direct) support
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37739 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-08 16:24:50 +00:00
Felix Fietkau 58b0b6c534 hostapd: update to latest version (20130707)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37738 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-08 16:04:19 +00:00
Felix Fietkau 388917caf9 hostapd: Settings for DAE/CoA server
hostapd supports "Dynamic Authorization Extensions", making it possible
to forcibly disconnect a user by sending it a RADIUS "Disconnect-Request"
packet.

I've added three new variables to enable setting of the
"radius_das_client" and "radius_das_port" variables in the hostapd
configuration, which enable these extensions.

* dae_client - IP of the client that can send disconnect requests
* dae_secret - shared secret for DAE packets

These are combined into the "radius_das_client" option in hostapd.conf
To enable the server, both dae_client and dae_secret must be set.

* dae_port - optional, default value is 3799 as specified in RFC 5176

Signed-off-by: Martijn van de Streek <martijn@vandestreek.net>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37734 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-06 18:55:30 +00:00
Felix Fietkau 485af0c163 hostapd: Fix WDS/WEP usage
WEP in WDS is currently broken in hostapd. Add a patch
to fix the issue.

Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37733 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-06 17:59:12 +00:00
Felix Fietkau 2905bd034c hostapd: Refresh patches
Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37731 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-06 17:59:05 +00:00
Felix Fietkau 5e0ba1f79b hostapd: Add an option to disable beaconing
Add a patch for hostapd that introduces a config option
"start_disabled" which can be used to bring up an AP
interface with beaconing disabled. This is useful in
a Repeater-AP setup where the Repeater AP has to start
beaconing only after the WDS link has been established.

Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37730 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-08-06 17:59:02 +00:00
Felix Fietkau 5cd74c5c9b uhttpd: update to the latest version, fixes a crash on early cgi/lua process termination
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37628 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-31 22:07:09 +00:00
Luka Perkov 684a833b31 [package] iproute2: update to 3.10.0
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37590 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-28 23:27:35 +00:00
Felix Fietkau ac4dea772d openvpn: update to 2.3.2
this patches updates openvpn to v2.3.2
and adds a PKG_MD5SUM to the Makefile

This release fixes a memory access violation when cipher none is used
on ar71xx - at least with my config

Signed-off-by: Peter Wagner <tripolar@gmx.at>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37560 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-26 12:35:22 +00:00
Steven Barth 4b105ab178 6relayd: Overridden DNS should affect DHCPv6
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37558 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-26 11:59:25 +00:00
Felix Fietkau 6a732cad77 uhttpd: update to latest version, fixes issues with POST and keep-alive (#13940)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37556 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-26 10:03:07 +00:00
Felix Fietkau 6fe49b24d1 authsae: add myself as a maintainer
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37555 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-26 10:03:03 +00:00
Felix Fietkau 2b073b7b73 authsae: adapt uci scripts to use authsae
This patch modifies the uci scripts to be able to
start meshd-nl80211 for encrypted mesh networks,
therefor a new script (authsae.sh) is inserted.

Signed-off-by: Emanuel Taube <emanuel.taube@gmail.com>
[etienne.champetier@free.fr: just update mac80211.sh path]
Signed-off-by: Etienne CHAMPETIER <etienne.champetier@free.fr>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37554 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-26 10:02:59 +00:00
Felix Fietkau a22105f7ce authsae 80211s authentication daemon
This patch adds authsae open80211s authentication daemon (http://open80211s.org)
It's a rework of Peter Naulls patch (http://patchwork.openwrt.org/patch/1350/)
I've excluded the sample conf file as it's useless when used with mac80211.sh (Emanuel Taube patch)
It now link against libnl-tiny instead of libnl (patch merged in authsae git)
Authsae is 58 Ko (OPENSSL_WITH_EC option adds 35Ko to libopenssl)

Signed-off-by: Peter Naulls <peter@chocky.org>
Signed-off-by: Etienne CHAMPETIER <etienne.champetier@free.fr>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37553 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-26 10:02:55 +00:00
Felix Fietkau e66785dcf8 ead: fix compile errors with recent kernels
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37482 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-20 12:56:07 +00:00
Hauke Mehrtens fef52b65dc kernel: fix xtables-addons dependencies with kernel 3.3
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37461 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-19 22:36:47 +00:00
Jo-Philipp Wich a7a9911bba xtables-addons: use a select of kmod-ipt-core instead of depending on it
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37425 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-19 09:58:17 +00:00
Jo-Philipp Wich 8101167ca4 xtables-addons: add missing kmod dependencies
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37424 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-19 09:58:11 +00:00
Jo-Philipp Wich 380cbeb729 firewall: update to git head
- handles redirects as port relocations if the dest_ip points to the router itself

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37374 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-16 14:04:59 +00:00
Steven Barth 3b7e47ae52 netifd: Fix IPv6-prefix assignment with continuous hints
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37371 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-16 12:07:11 +00:00
Steven Barth 33fbf466a8 6relayd: Fix DHCPv6-PD with continuous hints
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37370 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-16 12:07:06 +00:00
Steven Barth 148e692f60 Bump iptables version
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37329 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-15 06:12:07 +00:00
Steven Barth 0ce0c8ad59 iptables: restore reap functionality to recent module
The reap functionality appears to have been accidentally disabled by
commit 74ded7257e5da5e309844d386290f24ae91950a6 to iptables.git, see:

  git://git.netfilter.org/iptables.git

and subsequently in iptables 1.4.15 and later.  This adds a patch to
restore reap functionality for recent_opts_v1.

Signed-off-by: Russell Senior <russell@personaltelco.net>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37328 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-15 06:12:03 +00:00
Luka Perkov 23ff0696be netifd: update to latest version, add bridge_empty option
with this option enabled it's possible to create empty bridges

Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37318 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-14 18:50:04 +00:00
John Crispin a741a5ff14 swconfig: fix dependency bug introduced by [37304]
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37316 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-14 18:16:42 +00:00
Hauke Mehrtens 4cd2167005 brcm47xx: use b53 phy driver for the switch in kernel 3.10
This makes it possible to use swconfig to controll the switch.

This was tested with devices using b43 and bgmac.
This was not tested on devices using tg3.
This does not support the adm switch used in some very old devices.


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37304 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-14 14:11:17 +00:00
John Crispin 9af7d06947 dropbear: register a config.change trigger
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37245 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-11 17:00:40 +00:00
Felix Fietkau e91e245a2d ipset: force the shell to bash to fix build issues on mac os x
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37227 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-10 14:59:00 +00:00
Felix Fietkau 747a5fa8dc xtables-addons: update to version 2.3, adds linux 3.10 compatibility
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37226 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-10 14:51:13 +00:00
Felix Fietkau 9441aef40a firewall: add missing dependencies
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37224 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-10 11:33:48 +00:00
John Crispin 995a33804f lantiq: move dsl tools to package/network/config
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37198 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-08 09:01:38 +00:00
Luka Perkov 24ad605866 [package] linux-atm: fix dependencies
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37189 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-08 00:37:49 +00:00
Jo-Philipp Wich fb5527b8db firewall: allow routed lan<->lan traffic by default
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37171 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-04 18:10:36 +00:00
Jo-Philipp Wich 990e4f90d6 lldpd: upgrade to 0.7.5
lldpd 0.7.1 has several alignment issues that trip a system configured
to fault on misaligned accesses.  Version 0.7.5 fixes that along with a
few other minor issues.

Signed-off-by: John Szakmeister <john@szakmeister.net>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37168 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-04 16:57:03 +00:00
Steven Barth d867d59821 odhcp6c: avoid integer overflows in resend logic
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37150 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-03 16:14:24 +00:00
Steven Barth 02cdd819fb odhcp6c: add missing config parameter
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37148 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-03 13:50:06 +00:00
Jo-Philipp Wich 17a7b9cb50 hostapd: truncate default mac file before adding entries to it (#13797)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37114 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-07-01 10:52:35 +00:00
Felix Fietkau 378caa3427 hostapd: fix multi-ssid and AP+STA, clean up code
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37111 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-30 21:01:13 +00:00
Felix Fietkau 5cdd493473 hostapd: update to latest git version
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37110 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-30 20:27:38 +00:00
Felix Fietkau dc7be3f64c mac80211: update to wireless-testing 2013-06-27, fix ATH_USER_REGD handling
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37097 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-30 10:44:19 +00:00
Jo-Philipp Wich 24632d6be8 firewall: update to git head
- uses custom formatting for mac addresses to ensure leading zeroes, required for older iptables mac match parser

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37082 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-29 13:28:27 +00:00
Steven Barth bf72314fcb netifd: fix typo in dhcp script
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37051 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-28 04:19:21 +00:00
Florian Fainelli 50e5b62bcd 6relayd: prevent build on AVR32
AVR32 misses a bunch of updated syscalls, including timerfd_create()
which is used by 6relayd. Since that requires Linux/libc changes, just
prevent building it for now.

Signed-off-by: Florian Fainelli <florian@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37040 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-27 15:33:05 +00:00
Steven Barth c4eb9cde4d odhcp6c: Add missing config option "ifaceid"
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37033 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-25 05:18:20 +00:00
John Crispin eed5ffcc11 hostapd: fix superflous coma
this cause the wps trigegr to be copied to the wrong place

https://dev.openwrt.org/ticket/13753

Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37031 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-24 16:44:18 +00:00
Steven Barth 051a298a7e arptables: Bump to 0.0.4
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37020 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-24 05:48:12 +00:00
Steven Barth 2978fda395 6relayd: don't accidentally remove regular prefix routes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37018 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-23 16:26:09 +00:00
Steven Barth 065773c16e 6relayd: fix lease-update behaviour for clients without reconfigure
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37011 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-22 08:31:28 +00:00
Steven Barth cffbfac7f9 6relayd: Keep PD-downstream across RENEW/REBIND
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37009 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-22 08:19:25 +00:00
John Crispin f1b4824c86 packages: clean up the package folder
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37007 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-21 16:54:37 +00:00
John Crispin eaa7932386 hostapd: remove old button hotplug script
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36991 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-21 16:53:07 +00:00
Steven Barth 28f17b5ff9 6relayd: Fix DHCPv6-PD assignment logic
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36980 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-21 06:15:09 +00:00
Steven Barth ae618e0e3e 6relayd: correctly set downstream routes for DHCPv6-PD
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36969 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-19 13:08:33 +00:00
Felix Fietkau 3ce3b38c70 netifd: update to latest version, fixes a NULL pointer deref bug
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36965 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-18 16:24:48 +00:00
Jo-Philipp Wich 85f4e54cbe firewall: update to git head
- fixes misprocessing of unknown symbolic protocol names

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36963 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-18 14:30:51 +00:00
Jo-Philipp Wich b403f780e9 firewall: update to git head
- fixes calculation of IPv4 netmasks derived from 0.0.0.0/0 CIDRs

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36960 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-18 14:14:35 +00:00
Steven Barth a84a14bb3b odhcp6c: Add option to override interface identifier in RA-client
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36959 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-18 12:51:14 +00:00
Steven Barth 28aeb64578 netifd: IPv6: Fix sorting order in last commit.
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36952 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-17 21:29:14 +00:00
Steven Barth 89fe8241e4 netifd: Satisfy IPv6 assignments ordered by prefix length
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36950 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-17 21:16:22 +00:00
Jo-Philipp Wich 49f5201b52 hostapd: correctly handle macfile uci option
Make hostapd.sh correctly handle the macfile uci option.

Such option specifies the macfile name to pass into the
hostapd configuration file. Moreover, if a maclist option
has been specified, copy the macfile before appending new
entries.

Signed-off-by: Antonio Quartulli <antonio@open-mesh.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36944 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-17 11:59:29 +00:00
Jo-Philipp Wich bf4c0b1b8a dnsmasq: use host-record instead of address
Using "--address" for individual host A records is broken, use "--host-record" instead.
The following patch changes dnsmasq.init to build individual host records using "--host-record" instead of "--address".

Signed-off-by: Adam Gensler <openwrt at gnslr.us>

[jow: shorter description, simplified shell script code]

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36943 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-17 11:55:30 +00:00
Jo-Philipp Wich 8cbd945e7c firewall: update to git head
- properly process intermediate "!" options in argument list (fixes negated ipsets)

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36935 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-13 18:54:49 +00:00
Jo-Philipp Wich fdcddce043 firewall: update to git head
- fixes handling of reject target for rule sections with specific destination zone

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36933 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-13 12:49:00 +00:00
Jo-Philipp Wich f5a4945636 uhttpd: expose missing options to uci
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36932 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-13 11:55:12 +00:00
Steven Barth 97065080b9 odhcp6c: add sanity checks for NDP and MTU parameters from RAs
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36930 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-13 06:38:48 +00:00
Steven Barth 9a246f0762 6relayd: make route preference and prefix on-link flag configurable
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36922 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-11 20:52:27 +00:00
Steven Barth 7a187e61cd iproute2: add drop-failed rule action (patch by Jonas Gorski)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36910 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-11 09:27:46 +00:00
Felix Fietkau 81450bd00d netifd: update to latest version, uses the new uci/blob code from libuci
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36909 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-10 12:42:30 +00:00
Steven Barth 5882e71509 ppp: correctly handle address when reloading
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36904 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-10 10:42:34 +00:00
Steven Barth 5bab66f331 netifd: improve reloading behaviour
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36903 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-10 10:42:15 +00:00
Jo-Philipp Wich 4314ac851c iwinfo: add phyname attribute, this is useful to group networks by radio phy
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36889 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-09 14:39:14 +00:00
Jo-Philipp Wich 113981176c libiwinfo: ignore log messages from wpa_supplicant while scanning
wpa_supplicant may send log and event messages intermixed with the
expected scan results.  This makes "iwinfo wlan0 scan" and LuCI
"site survey" display nothing when many AP's are around.

Eliminate the CTRL-EVENT-BSS-ADDED events, interspersed log messages,
lines with unexpected format.  Increase timeout to handle the max
number of channels (2.4, 3.6, 4.9, 5 GHz).  Insure receive buffer is
null-terminated.

Signed-off-by: Jean-Pierre Tosoni <jp.tosoni@acksys.fr>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36888 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-09 14:39:09 +00:00
Steven Barth f70a350203 netifd: Improve IPv6 source-routing policies
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36884 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-08 13:26:33 +00:00
Jonas Gorski 3d9c1a0ebc netifd: bring wifi down before shutting down
works around wifiX references not being freed on network restart.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36883 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-08 11:44:12 +00:00
Jo-Philipp Wich f77f1322b8 firewall: udpate to git head (#13652, #13654, #13658)
- optimizes chain usage for ingress rules
  - adds limit match support for redirect rules
  - fixes automatic redirect dest detection on little endian systems
  - leaves base chains in place on reload to allow user rules to target e.g. "reject"

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36871 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-06 14:12:02 +00:00
Jo-Philipp Wich 36e8f9b769 firewall: copy libext*.a from staging dir and drop kernel.mk includes, solves problem with colliding CONFIG_IPV6 symbols
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36868 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-06 14:02:29 +00:00
Jo-Philipp Wich db43350712 iptables: install libext*.a into staging dir
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36867 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-06 14:02:24 +00:00
Jo-Philipp Wich ab659cd65b firewall: update to git head (#13652)
- simplifies using ipsets for rules and redirects, match direction can be specified in-place like option ipset 'setname src dst dst'
  - uses zone_name_src_ACTION chains for input rules, this fixes logging with log enabled src zones

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36854 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-05 11:40:40 +00:00
Jo-Philipp Wich 3e804240df firewall3: fix accidentally changed install directive
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36840 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-04 12:30:50 +00:00
Jo-Philipp Wich ea4472d138 firewall: fix git source url
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36839 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-04 12:23:47 +00:00
Jo-Philipp Wich 0f0fb56719 firewall3: rename to firewall, move into base system menu, update to git head with compatibility fixes for AA
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36838 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-04 12:21:52 +00:00
Jo-Philipp Wich 484c42a934 Drop legacy firewall package
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36837 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-04 12:21:44 +00:00
Jo-Philipp Wich 2c61fc7f42 firewall3: update to git head (#13641)
* Fixes wrong chain used for zone forward policy

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36830 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-04 10:26:49 +00:00
Jo-Philipp Wich d3cb5e8ecb firewall3: update to git head
- Fixes problems with reusing matches or targets from loadable extensions

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36826 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-03 16:38:29 +00:00
Felix Fietkau 93ac2d0351 uhttpd: update to latest version, fixes CGI related crashes
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36817 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-01 21:43:06 +00:00
Steven Barth c73c43a3a0 6relayd: Work around Windows DHCPv6 quirks
Announcing deprecated addresses breaks Windows clients

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36815 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-06-01 17:51:02 +00:00
Steven Barth 3a67765ef7 odhcp6c: work around spurious false-positive address DECLINEs
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36809 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-31 13:49:17 +00:00
Jo-Philipp Wich 13abaf7561 firewall3: use list notation for default zone network config to avoid "uci add_list" coercing the value wrongly
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36806 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-31 13:23:23 +00:00
Steven Barth 4a532d16c3 odhcp6c: fix handling of multiple RAs in a row
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36804 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-31 10:02:39 +00:00
Steven Barth e547011ac2 6relayd: Better compatibility with misbheaving DHCPv6 clients
* Make the "best" address / prefix the first one being announced
* Only add the "best" address to the hosts-file

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36772 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-30 15:42:30 +00:00
Steven Barth 2837eb86ef netifd: updated IPv6 prefix delegation
* Added support for prefix classes
* Various bugfixes

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36771 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-30 15:42:25 +00:00
Felix Fietkau 1d886ef03c uhttpd: update again to fix a ubus plugin crash bug
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36770 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-30 13:16:38 +00:00
Felix Fietkau 25681e5dbd uhttpd: update to latest version, fixes script timeout for ubus requests
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36767 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-30 10:44:20 +00:00
Steven Barth 5223919c3f 6relayd: more verbosity in leases and logging
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36764 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-30 07:56:55 +00:00
Steven Barth 95dbacb74f iptables: bump to 1.4.19.1
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36760 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-29 14:58:04 +00:00
Steven Barth c802b55757 netifd: fix IPv6-addresses disappearing due to lifetime-overflows
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36748 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-28 18:32:01 +00:00
Steven Barth 929c94d94e odhcp6c: fix or debug disappearing IPv6 addresses
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36745 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-28 16:28:14 +00:00
Felix Fietkau fbe37f1e87 mac80211: add support for "active" monitor interfaces which allow userspace tools to connect to APs via injection
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36743 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-28 11:10:41 +00:00
Steven Barth cf58fd647b 6relayd: RFC 6204 and naming improvements
* Announce delegated prefixes using route info according to RFC 6204 L-3
* Enable hybrid stateless + stateful DHCPv6-mode as default

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36738 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-27 20:38:13 +00:00
Jo-Philipp Wich e461a87b6f firewall3: update to git head
- allows building without IPv6 support
	- uses more robust rules to cope with missing libext.a
	- uses better linking strategy to avoid symbol clashes with older iptables
	- introduces source compatiblity layer for different libxtables versions

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36736 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-27 15:13:19 +00:00
Jo-Philipp Wich bebdc6222a firewall3: update to git head
- allows symbolic notation for src_ip, src_dip and dest_ip options, e.g. option src_ip 'lan' to automatically resolve to "192.168.1.0/24"
  - automatically infer destination zone for redirects from target ip, this makes 'dest' optional and nat reflection setup more robust
  - properly support output rules with dest '*' to hook directly into delegate_output
  - fixes crash when processing rules with unresolved targets

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36721 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-26 15:48:04 +00:00
Steven Barth 2427e3c873 6relayd: Fix DHCPv6-server picking up addresses from master interface
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36718 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-26 10:06:02 +00:00
Jo-Philipp Wich 7a2cfe6c7b firewall3: update to git head
- fixes linking issues with some toolchains

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36703 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-24 12:49:06 +00:00
Steven Barth 7c4f549443 6relayd: fix a lease-timing issue with stateful DHCPv6
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36702 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-24 12:31:30 +00:00
Jo-Philipp Wich ab98ef05fc firewall3: update to git head
- Use weak references for instantiating libext*.a matches, makes fw3 independant from the compile time features of iptables
  - Do not leak memory when processing rules with unknown targets or matches

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36698 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-23 13:07:44 +00:00
Felix Fietkau 4ffd43dbc7 uhttpd: update to latest version, fixes #13564, #13560, improves error handling as pointed out in #13537
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36696 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-23 10:50:42 +00:00
Steven Barth cee5ff18de firewall3: Remove abandonend include
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36692 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-23 06:38:25 +00:00
Jo-Philipp Wich d164d12b83 firewall3: update to git head
- fix build on Linux < 3.7
  - limit zone names to 14 bytes

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36691 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-22 14:15:53 +00:00
Steven Barth 3ba70f3735 6relayd: Let OpenWrt override default CFLAGS
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36690 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-22 11:58:54 +00:00
Jo-Philipp Wich 2d37cb839e firewall3: update to git head
- fixes reload when firewall is not running already
  - fixes crash when ipsets are supported but undeclared
  - fixes handling of per zone user chains on reload

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36689 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-22 11:37:41 +00:00
Steven Barth b9453b277b 6relayd: Fix a segfault when multiple downstream interfaces are present
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36687 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 18:05:37 +00:00
Jo-Philipp Wich d3c5b49487 firewall3: update to git head
- fixes segfault in flush command if ipset support is not available
  - fixes internal rule generation if custom chains are enabled

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36686 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 14:49:37 +00:00
Jo-Philipp Wich dc6ea761b5 ipset: remove dependency on iptables-mod-ipset - technically it does not depend on it and the iptables matches are now part of the base
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36685 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 13:00:28 +00:00
Jo-Philipp Wich 557bb37cc1 firewall3: move libext*.a copying to compile phase
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36684 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 12:58:36 +00:00
Jo-Philipp Wich 2952cc9bc7 netfilter: move time, mark, set matches and MARK, REDIRECT, SET targets into base iptables package - drop iptables-mod-ipset
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36683 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 12:58:15 +00:00
Jo-Philipp Wich 3538668acf firewall3: update to git head
* use libiptc and libxtables directly to manage ruleset, iptables-restore is unreliable and prone to race conditions
 * make ipset integration more reliable

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36681 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 10:15:14 +00:00
Jo-Philipp Wich 7962222d78 iptables: use -ffunction-sections, -fdata-sections and --gc-sections
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36680 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 10:15:10 +00:00
Steven Barth 8e44875fa6 odhcp6c: Various fixes
* Honour T1 and T2 values from servers better
* Correctly send Reconfigure-Accept option in requests

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36678 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 09:13:48 +00:00
Steven Barth 4b922c28c7 6relayd: Various DHCPv6-fixes
* Be more standards-compliant in stateful mode
* Handle hostnames from Windows-clients correctly
* Handle messages from DHCPv6-relays better

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36677 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-21 09:13:40 +00:00
Steven Barth faf3d16ffa odhcp6c: Fix address / prefix expiry logic
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36675 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-20 14:54:20 +00:00
Steven Barth b846672f60 dnsmasq: add directory for external hosts-files
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36655 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-17 14:44:12 +00:00
Steven Barth e474674f51 6relayd: Add stateful DHCPv6-support (IA_NA)
* Add management_level option (0: set O-flag, >=1: set M-flag)
* Add support for static DHCPv6-leases
* Various fixes for DHCPv6-PD

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36654 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-17 14:44:07 +00:00
Steven Barth 456cbe5af8 netifd: Unify interface-based routing for IPv4 and IPv6
* Add interface option to set routing table for protocol routes
* Enabled for IPv6 for source-based filtering, disabled for IPv4

Based on a patch by Kristian Evensen. Thank You.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36653 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-17 14:44:02 +00:00
Felix Fietkau 8ca26bf040 uhttpd: update to latest version, fixes index page processing order
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36644 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-16 11:38:19 +00:00
Luka Perkov 2b66fe5d47 [package] iproute2: workaround compile issues with gcc 4.8.x
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36642 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-16 00:04:48 +00:00
Steven Barth 6e1d7c26c9 odhcp6c: Fix handling of RAs when no DHCPv6-server is present
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36641 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-15 11:07:01 +00:00
Luka Perkov 6f7b2ac2c6 [package] iproute2: upgrade to 3.9.0
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36638 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-14 23:49:34 +00:00
Luka Perkov 5349a138da [package] iproute2: print help in connmark
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36637 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-14 23:49:31 +00:00
Felix Fietkau e252bdb152 uhttpd: update to latest version, fixes a SSL connection memory leak
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36636 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-14 17:43:00 +00:00
Felix Fietkau a9020a0859 package: fold the IPv6 menu into Network
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36634 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-14 15:02:31 +00:00
Steven Barth cf6fa4f194 6relayd: Always announce the current MAC-address
* Fixes #13516 thanks to berni for the detailed bugreport.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36629 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:54:36 +00:00
Steven Barth 7171040fb1 ds-lite: add ds-lite network protocol handler
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36628 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:39 +00:00
Steven Barth 18473a01f8 netifd: Various IPv6 improvements
* Add support for IP-in-IPv6 tunnels (DS-Lite)
* Use source-based routing for IPv6 to allow multi-wan
* Various smaller tunnel setup improvements

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36627 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:34 +00:00
Steven Barth 683810fbff netifd: added support for setting up 6rd from DHCP
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36626 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:30 +00:00
Steven Barth 1f64838bbc odhcp6c: added support for DS-Lite + various fixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36625 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:25 +00:00
Steven Barth 761238ce0a firewall3: Remove obsoleted ULA-border
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36624 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:20 +00:00
Steven Barth b20c42e9d1 firewall3: add wan6 interface to wan-zone by default
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36623 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:15 +00:00
Steven Barth ac82d7ad0a firewall: Remove obsoleted ULA-border rule
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36622 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-13 17:12:10 +00:00
Steven Barth 9d99dd82f9 6rd: increase metric of default route
This will prefer native IPv6 over 6rd if both are present.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36605 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-12 08:07:15 +00:00
Jo-Philipp Wich 333261901e iwinfo: only consider joined bss when finding current operating frequency, fixes spurious misreporting of frequencies in ad-hoc mode
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36604 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-12 01:12:56 +00:00
Steven Barth 47fcfd999d add uci support for "proxy-dnssec" in dnsmasq
This patch simply adds support for the "--proxy-dnssec" command in dnsmasq into the init file so it can be used with /etc/config/dhcp.

Signed-off-by: Adam Gensler <openwrt@kristenandadam.net>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36570 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-07 07:19:51 +00:00
Felix Fietkau f4f4d54058 iw: update to 3.10, sync with nl80211.h changes in compat-wireless
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36569 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-06 22:35:50 +00:00
Steven Barth 528c719a3f odhcp6c: Make SLAAC-only work without reqprefix=no
Previously if the upstream router did not provide any DHCPv6-service
the wan6 interface would not come up even if RAs were received. The new
behavior allows the wan6 interface to comeup with RA-only configuration
after a timeout of 10s.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36555 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-06 10:20:43 +00:00
Jo-Philipp Wich 7f8b27f0e5 ipset-dns: support simultaneously populating IPv4 and IPv6 sets
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36554 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-06 10:01:45 +00:00
Jo-Philipp Wich 280eac850b Add ipset-dns - a tiny DNS proxy service which puts resolved ip addresses into a specified ipset
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36552 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-06 08:44:54 +00:00
Felix Fietkau a1caa0f493 hostapd: enable 802.11r for the -full variant (#13250)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36533 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-03 10:39:57 +00:00
Jo-Philipp Wich 339f78f6e9 firewall3: update to git head
- assume "tcp+udp" if no protcol is specified in rules or redirects (#13422, #13386)
	- add support for fwmark matches and mark setting targets

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36521 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-02 13:42:20 +00:00
Jo-Philipp Wich 07664b6ac3 Fix install of iptables pkg-config files.
libiptc.pc depends on libip[4|6]tc.pc, thus all of those need to be
installed.
Should fix collectd build and thus #13146; which should make collectd
appear in snapshots again.

Signed-off-by: Danny Baumann <dannybaumann@web.de>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36509 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-05-02 08:10:55 +00:00
Jo-Philipp Wich fde7fcd36c iwinfo: fix iwinfo_hardware() return value if chip id is not found
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36471 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-28 14:04:39 +00:00
Jo-Philipp Wich 8605639a3a netifd: update to git head - disables multicast snooping by default on bridges
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36463 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-27 09:28:40 +00:00
Jo-Philipp Wich 6aef46b32b iwinfo: add hw database file
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36450 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-26 13:21:01 +00:00
Jo-Philipp Wich 9e66c65f62 iwinfo: move builtin hardware database to /usr/share/libiwinfo/hardware.txt
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36449 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-26 13:20:15 +00:00
Felix Fietkau d9de51dff4 netifd: update to the latest version, fixes interface reload issues when removing the ifname option
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36424 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-25 16:28:19 +00:00
Steven Barth d7fe9e70d8 6relayd: Fix generation of RA-messages
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36419 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-24 18:22:08 +00:00
Jo-Philipp Wich 9e42ab43f2 iwinfo: add SR71-15 radio info, fix nl80211 channel/frequency reporting on some architectures
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36417 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-24 14:44:20 +00:00
Steven Barth 6ada49b194 firewall3: Make IPv6 ULA-Border generation dynamic
This fixes working behind another router which gives out ULAs.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36416 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-24 14:17:24 +00:00
Steven Barth 8eaa488397 6relayd: update package description
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36413 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-24 07:21:42 +00:00
Steven Barth b97eb9b08e dnsmasq: update to 2.66
Thanks to Christoph König for patches.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36412 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-24 05:55:39 +00:00
Steven Barth 812209d870 odhcp6c: Set default SOL_MAX_RT to 1h
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36411 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-24 05:02:45 +00:00
Felix Fietkau 58519ae974 hostapd: return the frequency to some ubus calls to make integration easier
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36410 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-23 18:35:50 +00:00
Jo-Philipp Wich 72dfd60fe5 lldpd: upgrade to 0.7.1
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36401 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-23 10:37:23 +00:00
Steven Barth 5108102e9b netifd: Improve IPv6-ULA assignment handling
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36383 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-22 19:40:06 +00:00
Steven Barth 0fd7fb5a84 odhcp6c: Several fixes and improvements
* Add preliminary support for RFC 6603 prefix exclusion
* Fix reconfigure-support and reconfigure authentication
* Set maximum retransmission timeout for solicitations to 2h
* Fix a segfault when parsing IA_PD in advertise messages

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36382 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-22 19:40:01 +00:00
Steven Barth e0e6b055fe 6relayd: Add DHCPv6-PD server support, fix relaying in stateful mode
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36381 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-22 19:39:55 +00:00
Felix Fietkau a1e5d209da hostapd: update to 2013-04-05
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36376 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-22 13:24:48 +00:00
Felix Fietkau ab8468d344 build: consistently use 'depends on' instead of 'depends'
make the syntax more compatible with kernel menuconfig

Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36351 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-17 15:36:41 +00:00
Jo-Philipp Wich 49df5264b6 uhttpd: update to git head, fixes regression when parsing IPv6 listen arguments
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36348 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-17 11:34:39 +00:00
Jo-Philipp Wich e8b3e8e7f2 iwinfo: print info of all existing wireless ifaces when cli is called without arguments
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36339 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-15 15:00:16 +00:00
Felix Fietkau c916e833c0 uhttpd: update to latest version, fixes compile error with latest libubox
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36338 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-15 14:49:52 +00:00
Felix Fietkau b9cc991070 netifd: update to latest version, fixes some device handling crashes
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36336 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-15 14:21:45 +00:00
Felix Fietkau 78f6958dea qos-scripts: add queue length and quantum limit, suggested by dtaht
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36294 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 14:59:10 +00:00
Jo-Philipp Wich 64e2eeb91c iwinfo: fix frequency/channel and channel/frequency conversions to properly implement 802.11j
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36292 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 14:37:55 +00:00
John Crispin d0f94eff4a [swconfig] add portmap support to userland
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36284 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 14:19:13 +00:00
John Crispin d2f8216c54 [swconfig] add "swconfig list" support
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36282 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 14:19:05 +00:00
Jo-Philipp Wich a2a15cdf8f netifd: fix route / route6 regression (#13303)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36281 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 12:21:12 +00:00
Steven Barth ef5bbd5008 Remove deprecated ip6slaac option
* use proto=dhcpv6 with reqprefix=no instead

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36280 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 12:12:30 +00:00
Steven Barth 936588ed30 Remove obsoleted ipv6-support meta-package
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36279 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-09 09:45:51 +00:00
Steven Barth 3b9ea165f7 netifd: Bump to latest version
* Fix a memory corruption when updating IPv6 prefixes
* Fix route sorting order (nbd)
* Add support for ip rules (jow)
* Implement support for route / route6 table attribute (jow)

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36196 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-05 12:28:06 +00:00
Steven Barth d8961984f2 netifd: Rewrite IPv6 prefix assignment
* Add ip6hint option to specify assigned subprefixes
* Add preliminary support for RFC 6603 prefix exclusion

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36193 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-03 17:08:21 +00:00
Felix Fietkau eb2800098d openvpn: enable password save support (#13245)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36144 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-04-01 10:02:43 +00:00
Steven Barth e2a416671c odhcp6c: Fix a race-condition in RA-handling
Thanks to Markus Stenberg for investigating and providing a fix

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36132 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-26 13:39:17 +00:00
Steven Barth a800a4a788 iptables: don't use --enable-ipv6 if IPv6 is disabled
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36125 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-25 11:22:12 +00:00
Steven Barth 795bb7a15c odhcp6c: minor bug fixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36123 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-25 10:58:48 +00:00
Jo-Philipp Wich 8ad3c5dce6 firewall3: update to git head
* fixes parsing of src/dest '*'
	* fixes parsing of proto 'all'

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36111 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-22 14:10:29 +00:00
Jo-Philipp Wich 6cce0f0ddb firewall3: update to git head
* fixes port remapping rules (#13217)

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36100 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-21 14:25:17 +00:00
Hauke Mehrtens 0efdcebf5d kernel: add some fixes for kernel 3.9
This patch fixes some compile problems with kernel 3.9 and adds some missing linux 3.9 handling into kernel packages.


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36098 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-20 21:59:24 +00:00
Steven Barth faf465e51c netifd: Fix adding IPv6 DNS-servers to resolv.conf
In some cases IPv6 DNS-servers were not added correctly.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36095 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-20 13:49:39 +00:00
Steven Barth edbf7afcd3 odhcp6c: Fix metric for on-link prefix routes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36094 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-20 09:26:52 +00:00
Jo-Philipp Wich 7384872325 firewall3: update to git head
* fixes reload handling of zones and ipsets that are still running but already deleted from the config

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36092 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-19 16:18:05 +00:00
Jo-Philipp Wich e4fa9433ea firewall3: update to git head
- support network names in per-zone 'masq_src', 'masq_dest' and 'subnet' options (#13197)
	- do not allow src_mac option for SNAT rules

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36090 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-19 13:54:34 +00:00
Felix Fietkau d482f42efb hostapd: fix build errors on supplicant-only builds
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36085 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-18 16:11:32 +00:00
Steven Barth 72786daa1b odhcp6c: fix preference handling, custom client-ID
* thanks to mbidewell for investigating

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36083 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-18 07:24:49 +00:00
Felix Fietkau 77a736a2b6 hostapd: initial prototype of an ubus binding
Supports listing, removing and banning clients, and hooking into
probe/assoc/auth requests via object subscribe.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36081 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-17 20:47:18 +00:00
Felix Fietkau 54ae3b1981 uhttpd: update to latest version, fixes an occasional crash on CGI scripts
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36034 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-15 13:43:55 +00:00
Jo-Philipp Wich 35c2fb3bf7 firewall3: update to git head
* Introduce "option reload" for includes to specify whether includes should be processed on reload (e.g. when tapping into internal chains)
 * Allow "network" and "device" commands while firewall is running (to make them usable in includes)

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36009 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-14 15:29:43 +00:00
John Crispin b715f860d7 [hostapd] use new button scheme
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@36004 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-13 18:11:25 +00:00
Jo-Philipp Wich a95bb0d75b firewall3: update to git head
* Adds support for emitting hotplug events when creating and clearing zones (fixes miniupnpd)
 * Make NAT reflection direction configurable
 * Map init script stop action to flush
 * Map init script reload action to reload
 * Respect init script disabled state in hotplug handler

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35998 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-13 15:46:30 +00:00
Felix Fietkau a3c6b189ae hostapd: fix client reassociation after too many ACK failures
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35973 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-12 00:19:25 +00:00
Jo-Philipp Wich 13b7b380b2 firewall3: update to git head
* Fixes compilation against eglibc
 * Fixes tracking logic when selectively restarting IPv4 or IPv6 firewall
 * Fixes tracking logic for user chains by differentiating between reloads and restarts
 * Introduces per-zone user chains {input,output,forwarding,prerouting,postrouting}_$zone_rule
 * Supports legacy "tcpudp" protocol notation again

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35969 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-11 20:52:20 +00:00
Jo-Philipp Wich 1287a5a543 Revert "firewall3: update to git head"
This reverts commit 89969fa333c90fdb217b7289272f3427add107de.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35904 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-08 19:52:18 +00:00
Jo-Philipp Wich 0a093289e6 firewall3: update to git head
- introduce per-zone user chains
	- support legacy "tcpudp" protocol notation

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35903 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-08 15:27:33 +00:00
Steven Barth 0bf76485e2 odhcp6c: various bugfixes
* Don't prematurely send RENEW / REBIND when T1 or T2 is > 1 day
* Add "norelease" option to not send a RELEASE when stopping

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35902 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-08 07:04:38 +00:00
Steven Barth b15a62570b iptables: Add missing IPv6 builtin modules
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35898 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-07 08:48:41 +00:00
Steven Barth bd1e6a2a71 iptables: redo update to 1.4.18 with old linking-behaviour
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35896 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-06 17:05:34 +00:00
Steven Barth bddbaf57c5 Revert "iptables: update to 1.4.18" due to toolchain-issue:
binaries cause segfaults when stripped on ar71xx

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35894 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-06 12:55:48 +00:00
Felix Fietkau 0b5d0905be hostapd: include the madwifi headers in the package directory to avoid compile breakage if the madwifi build fails
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35893 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-05 22:06:30 +00:00
Steven Barth 1942d2db25 iptables: update to 1.4.18
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35892 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-05 20:51:57 +00:00
Jo-Philipp Wich 58e4a0f346 firewall3: add default config and firewall.user
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35889 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-05 13:45:09 +00:00
Felix Fietkau bd0313c2fb hostapd: update to git version 2013-03-02
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35887 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-04 17:16:38 +00:00
Jo-Philipp Wich 4de2e16d3f firewall3: update to git head, introduces support for "enabled" option
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35845 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-02 17:09:33 +00:00
Steven Barth c3ba5abe93 6relayd: Fix illegal memory accesses
Spurious errors when receiving netlink-messages lead to unhandled errors
which caused SIGBUS. Thanks to tdavis for debugging

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35836 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-28 16:37:20 +00:00
Steven Barth 4ff987eec6 6relayd: various fixes
cap preferred and valid lifetimes at more reasonable limits
decrease memory usage (remove unnecessary book-keeping)

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35835 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-28 14:57:19 +00:00
Jo-Philipp Wich 48ff06196e xtables-addons: fix packaging of iptaccount
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35831 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-28 10:58:12 +00:00
Jo-Philipp Wich ffd425c151 firewall3: clear contnrack table on flush, set policies to drop during rule reload
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35820 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-27 14:09:37 +00:00
Steven Barth 13ada38511 6relayd: Fix config behaviour for rewrite_dns_addr option
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35804 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-26 12:50:52 +00:00
Steven Barth 579f6c4632 6relayd: compatibility with broken IPv6 devices
* Announce ULA as deprecated if other addresses are available
* Allow the announced DNS-server to be overwritten

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35803 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-26 12:42:53 +00:00
Jo-Philipp Wich e249d2a240 firewall: fix logging rule regression (#12999)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35745 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-22 13:45:20 +00:00
Jo-Philipp Wich 157ef93d0e firewall3: add support for shell script and iptables-restore style includes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35744 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-22 12:45:38 +00:00
Steven Barth 660caa9c81 netifd: only update resolv.conf.auto if changed
This avoids logspam under certain conditions.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35743 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-22 08:56:29 +00:00
Jo-Philipp Wich 7f0500f664 firewall3: update to git head
- all uci rules are boxed in custom chains now, so a firewall stop leaves user rules intact
	- properly handle selective ipv4 or ipv6 only firewall start/stop/restart actions
	- support ip ranges (e.g. option src_ip '!192.168.1.1-192.168.1.100' -> -m iprange ! --src-range 192.168.1.1-192.168.1.100')
	- support time options (e.g. option weekdays 'Mon Tue Sat' -> -m time --weekdays 1,2,6')

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35738 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-21 22:33:44 +00:00
Florian Fainelli f13200ffac dante: fix broken configure script not using CFLAGS for conftest
Spotted by doing an ARM hard float build.

Signed-off-by: Florian Fainelli <florian@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35685 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-19 17:22:55 +00:00
Steven Barth 1fb35f7831 6relayd: Fix possible memory corruption issue
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35673 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-19 12:04:41 +00:00
Steven Barth a96a74fc06 6relayd: Workaround potential signal handling issue
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35665 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-18 12:50:36 +00:00
Jo-Philipp Wich bc882ab1f1 firewall3 - a C implementation of the current firewall scripts
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35643 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-17 19:26:52 +00:00
Felix Fietkau 452522c6de hostapd: fix the scan wait patch for multiple interfaces
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35630 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-16 19:00:34 +00:00
Felix Fietkau 8db109478c hostapd: add back the patch that waits for interface bringup in ht40, it got lost with the update
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35619 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-16 14:26:03 +00:00
Jonas Gorski ea88007d4b samba36: fix segmentation fault when trying to add non-existent users
Based on a patch from НКВД. Closes #12962.

Signed-off-by: Jonas Gorski <jogo@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35610 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-16 11:39:42 +00:00
Steven Barth d0fe67f1df odhcp6c: allow setting a user-provided prefix as well
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35570 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-12 08:23:54 +00:00
Jo-Philipp Wich b0036a67c3 iptables: fix bad PKG_RELEASE in previous commit
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35569 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-11 22:14:38 +00:00
Jo-Philipp Wich 543e4fb934 iptables: add --lenient switch to iptables-restore and ip6tables-restore that allows to skip erroneous lines
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35568 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-11 21:58:42 +00:00
Felix Fietkau 2256cbf372 mac80211/hostapd: short_preamble is a per-vif option and should be enabled by default
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35565 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-11 18:59:10 +00:00
Steven Barth de9ca73143 odhcp6c: Various bugfixes
* Don't send undesired suggestions for preferred and valid lifetimes
* Be less verbose in logging

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35553 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-11 12:30:16 +00:00
Felix Fietkau 40228ded56 openvpn-easy-rsa: fix typo in version (#12958)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35508 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-06 22:17:11 +00:00
Felix Fietkau 711882cca5 openvpn: remove the stale PKG_REV variable
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35499 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-05 10:40:19 +00:00
Felix Fietkau e6106c9b0a openvpn: split easy-rsa into a separate package, it is no longer bundled with the release tarball
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35498 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-05 10:40:13 +00:00
Jo-Philipp Wich 292b4e42b3 firewall: various enhancements
- reduce mssfix related log spam (#10681)
	- separate src and dest terminal chains (#11453, #12945)
	- disable per-zone custom chains by default, they're rarely used

Additionally introduce options "device", "subnet", "extra", "extra_src" and "extra_dest"
to allow defining zones not related to uci interfaces, e.g. to match "ppp+" or any tcp
traffic to and from a specific port.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35484 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-04 14:38:33 +00:00
Steven Barth f5b834c1bd odhcp6c: Fix timing issues
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35472 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-03 17:26:40 +00:00
Jo-Philipp Wich 4f1d9c7067 libiwinfo: reset ioctl_socket fd in iwinfo_close(), fixes random failures with multiple cycles of iwinfo_finish() / iwinfo_backend()
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35471 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-03 12:03:24 +00:00
Steven Barth 15d5fae260 odhcp6c: Fix RENEW and REBIND requests
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35454 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-02 10:44:13 +00:00
Steven Barth deed0b0198 odhcp6c: allow IPv6-config via SLAAC-only if no prefix is requested
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35421 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-01 13:38:47 +00:00
Steven Barth 109d4f04b0 netifd: Improved IPv6 featureset
* Fix reloading of ula-prefixes
* Added support for temporary addresses and routes
* Added support for offlink addresses
* Improved status-output for assigned prefixes

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35420 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-01 12:28:43 +00:00