Commit Graph

472 Commits (66f724f3ad51c9b0de1c2cae3b22c69e08e51e49)

Author SHA1 Message Date
Steven Barth 0cbcc1e6b2 odhcpd: various bugfixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38454 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 13:39:48 +00:00
Steven Barth e9965e62b7 netifd: various improvements
* Add ubus methods for global interface status
* Add ubus function to create nested interfaces
* Add protocol update notifications and hotplug legacy calls
* Fix: key to data elements point at wrong memory area
* Add support for source-restricted routes
* Add option "delegate" to toggle prefix delegation
* Reevaluate target routes also on interface update

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38453 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 13:39:43 +00:00
Jo-Philipp Wich 9620e5bae9 wpa_supplicant: fix beacon_int configuration option
wpa_supplicant expects beacon_int instead of beacon_interval in its config
file.

Signed-off-by: Bruno Randolf <br1@einfach.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38451 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 11:47:47 +00:00
Jo-Philipp Wich 04f2b28bd6 iw: add patch to support 802.11j frequencies
A similar change was recently merged in iw commit
58b46da26ab9b5ff31c7033e175351eb1301d9af

Signed-off-by: Bruno Randolf <br1@einfach.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38449 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 11:43:02 +00:00
Jo-Philipp Wich 533eac9728 iwinfo: make 'type' visible in wrapped iwinfo
There are several cases within 'luci' that attempt to access the interface
'type' from within the 'type' specific meta tables; however, 'type' is not
currently available there.  Replicate the common metadata in the 'type'
specific meta tables.

Signed-off-by: Nathan Hintz <nlhintz@hotmail.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38448 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-18 11:42:43 +00:00
Steven Barth 56e7732aa0 netifd: rename customopts to sendopts for consistency
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38437 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-17 13:12:06 +00:00
Steven Barth b8574ae0b5 Added 'customopts' dhcp protocol option, which is an array passed along to udhcpc as series of -x options.
Signed-off-by: Markus Stenberg <markus.stenberg@iki.fi>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38436 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-17 12:55:40 +00:00
Steven Barth 092ba3c09a odhcp6c: fix parsing of IA_PD adverts
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38433 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-17 07:19:32 +00:00
Steven Barth 7ba0aa8dcf odhcpd: add new experimental dhcp-server
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38428 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-16 09:03:55 +00:00
Jo-Philipp Wich 9ba3fcdf85 dropbear: add dropbear.nl mirror, provided by dropbear maintainer
Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38413 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-15 13:10:32 +00:00
Luka Perkov 731d18c6ed [package] openvpn: make comp_lzo a parameter
Possible parameters are yes, no and adaptive. See manpage for more information.

Signed-off-by: Philipp Borgers <borgers@mi.fu-berlin.de>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38412 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-15 12:42:58 +00:00
Jo-Philipp Wich 8a41acee91 openvpn-easy-rsa: restore essential patch to make it actually work on the target (#14324)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38411 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-15 12:23:21 +00:00
Steven Barth da88af3641 odhcp6c: various fixes
* Make SOL_MAX_RT configurable and default back to 120s
* Prefer servers with bigger prefixes (allows to use Comcast /60)
* Don't hang indefinitely if DHCPv6 REQUEST is not answered

Signed-off-by: Steven Barth <steven@midlink.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38393 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-14 18:53:02 +00:00
Hauke Mehrtens 77517a6a27 iputils: do not compile this for brcm47xx with -O2
ping is now working for me with -Os on brcm47xx.
This revert r26278.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38389 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-13 22:51:33 +00:00
Hauke Mehrtens 0a0af9433f switch: remove old switch driver
The switch driver is not used by brcm47xx any more and can be removed, 
instead of this switch driver b53 is used now.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38387 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-13 22:15:31 +00:00
Hauke Mehrtens fad1f4d6ec lantiq: add some missing PKG_SOURCE_URLs
These URLs where missing and causes build failures.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>


git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38376 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-12 22:33:55 +00:00
Jo-Philipp Wich c081113e44 dnsmasq: add option broadcast to host sections
There are certain consumer devices which are outliers in protocol conformance.
An example is Samsung bluray players, which require broadcast DHCP responses
(on Ethernet only, strangely not on Wifi).

By specifying:

config host
	...
	option broadcast 1

this will enable the response to be sent as an Ethernet broadcast and not as
a unicast.

Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38365 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-11 18:33:15 +00:00
Jo-Philipp Wich fb47dac0bd firewall: small improvements in nat reflection
- do not insert duplicate rules when setting up reflection to a zone containing multiple interfaces
	- set up reflection for any protocol, not just TCP and UDP

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38361 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-10 18:15:10 +00:00
Jo-Philipp Wich 5a8864448a ppp: correct module loaded check in proto_pptp_setup
proto_pptp_setup is responsible for loading the required modules to establish
a pptp connection to a foreign peer. The function checks whether all required
modules are already loaded, before actually loading them.

It seems that the filter being used to accomplish this, is not restrictive
enough in some cases. For instance when pptp nat helper modules are present on
a system, and already loaded before a pptp connection is enabled. Then the
search filter (possibly) returns the following for module=pptp, where actually
no matches are expected, resulting in the pptp.ko module not being loaded,
thereby failing to establish the pptp connection.

# module="pptp" ; grep "$module" /proc/modules
nf_nat_pptp 1312 0 - Live 0x86ce7000
nf_conntrack_pptp 3072 1 nf_nat_pptp, Live 0x86cb9000
nf_nat_proto_gre 784 1 nf_nat_pptp, Live 0x86cba000
nf_conntrack_proto_gre 2368 1 nf_conntrack_pptp, Live 0x86cbf000
nf_nat 9792 13 nf_nat_rtsp,nf_nat_tftp,nf_nat_sip,nf_nat_pptp,nf_nat_h323,nf_nat_proto_gre,nf_nat_amanda,nf_nat_irc,nf_nat_ftp,ipt_REDIRECT,ipt_NETMAP,ipt_MASQUERADE,iptable_nat, Live 0x86ca8000
nf_conntrack 37264 31 nf_nat_rtsp,nf_conntrack_rtsp,nf_nat_tftp,nf_conntrack_tftp,nf_nat_snmp_basic,nf_conntrack_snmp,nf_nat_sip,nf_conntrack_sip,nf_nat_pptp,nf_conntrack_pptp,nf_nat_h323,nf_conntrack_h323,nf_conntrack_proto_gre,nf_nat_amanda,nf_conntrack_amanda,nf_conntrack_broadcast,nf_nat_irc,nf_conntrack_irc,nf_nat_ftp,nf_conntrack_ftp,ipt_MASQUERADE,iptable_nat,nf_nat,xt_helper,xt_connmark,xt_connbytes,xt_conntrack,xt_CT,xt_NOTRACK,xt_state,nf_conntrack_ipv4, Live 0x86c90000

The search filter can be made more accurate/restrictive, by requiring the
occurance of the exact name of the module at the beginning of a line in
/proc/modules.

# module="pptp" ; grep "^$module " /proc/modules
pptp 13296 2 - Live 0x86e80000

Signed-off-by: Tijs Van Buggenhout <tvb@able.be>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38358 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-10 14:58:12 +00:00
Jo-Philipp Wich 08715f05ef dropbear: update to 2013.59 (released 4 october 2013)
- drop mirror www.mirrors.wiretapped.net (not working anymore)
- drop patch 300-ipv6_addr_port_split.patch, included upstream
- refresh patches
- various upstream changes: http://matt.ucc.asn.au/dropbear/CHANGES

Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38356 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-10 14:42:05 +00:00
Luka Perkov b883412931 [package] openvpn: rework initscript (fixes #14299)
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38351 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-09 11:25:09 +00:00
Felix Fietkau 03dbfd74ae hostapd: recognize 8021x as an authentication mode
Currently, in order to configure the authentication daemon in
8021x mode, we need to set wireless.@wifi-iface[0].encryption="wpa"
Though it works it confuses folks as 8021x is using WEP
encryption and not WPA. Therefore the terminology itself is
confusing. This change adds 8021x as a recognized string for 8021x
authentication.

Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38339 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:52 +00:00
Felix Fietkau 7dbd213406 hostapd: add external registrar support
Setting wireless.@wifi-iface[N].ext_registrar=1 will enable UPNP
advertising and add an external registrar to the interface this vif
belongs to (br-lan if the vif is included in the LAN bridge). By
enabling this we append upnp_iface=xxx to the hostapd config file.

Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>
Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38338 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:48 +00:00
Felix Fietkau a8cf4fe00a hostapd: enable WPS2 support on hostapd-full.config
Enable CONFIG_WPS2 for hostapd. This is required to support
options like Virtual Push Button in WPS.

Signed-off-by: Sujith Manoharan <c_manoha@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38337 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:44 +00:00
Felix Fietkau 66614d7572 hostapd: fix hostapd RSN preauthentication PMKSA caching
In 2009 OpenWrt's hostapd config added an "auth_cache" boolean
to be used to address a reported issue #12129 [0] on a forum [1].
The reported issue on the ticket is different that the one
described on the forum. The commit was r33359. This change broke
proper RSN preauthentication [2] [3] [4] expectations on hostapd's
configuration for WPA2 and this in turn disabled PMKSA caching and
Opportunistic Key Caching. This change:

  * Leaves the "auth_cache" to be used only for WPA networks for those
    looking to use this as a workaround to a reported issue but annotates
    a warning over its usage.

  * Separate "auth_cache" from WPA2 RSN preauthentication, leaving
    WPA2 RSN preauthentication to enabled only with "rsn_preauth" with
    the expected and recommended settings.

  * Adds a new WPA2 RSN preauthentication "rsn_preauth_testing" to
    be used when evaluating funcionality for WPA2 RSN preauthentication
    with the expected and recommended settings with the only difference
    so far with what should be enabled by default to disable Opportunistic
    Key Caching.

Disabling the PMKSA cache should mean the STA could not roam off and back
onto the AP that had PMKSA caching disabled and would require a full
authentication cycle. This fixes this for WPA2 networks with
RSN preauthentication enabled.

This change should be applied to AA as well as trunk.

  TL DR;

The issue described on the forum has to do with failure of a STA
being able to try to authenticate again with the AP if it failed
its first try. This may have been an issue with hostapd in 2009
but as per some tests I cannot reproduce this today on a WPA2
network.

The issue described on the ticket alludes to a security issue with the
design of using a Radius server to authenticate to an AP. The issue
vaguely alludes to the circumstances of zapping a user, deleting their
authentication credentials to log in to the network, and that if
RSN preauthentication is enabled with PMKSA caching that the user
that was zapped would still be able to authenticate.

Lets treat these as separate issues.

I cannot reproduce the first issue reported on the forums of not
being able to authenticate anymore on a WPA2 network.

The issue reported on the ticket modified WPA2 RSN preauthentication
by adding two fields to the hostapd configuration if auth_cache
was enabled:

  * disable_pmksa_caching=1
  * okc=0

The first one disables PMKSA authentication cache.
The second one disables Opportunistic Key Caching.

The issue reported on the ticket was fixed by implementing a workaround
in hostapd's configuration. Disabling PMKSA caching breaks proper use
of WPA2 RSN pre authentication. The usage of disable_pmksa_caching=1
prevents hostapd from adding PMKSA entries into its cache when a successful
802.1x authentication occurs. In practice RSN preauthentication would
trigger a STA to perform authentication with other APs on the same SSID,
it would then have its own supplicant PMKSA cache held. If a STA roams
between one AP to another no new authenitcation would need to be performed
as the new AP would already have authenticated the STA. The purpose of the
PMKSA cache on the AP side would be for the AP to use the same PMKID for
a STA when the STA roams off onto another BSSID and later comes back to it.

Disabling Opportunistic Key Caching could help the reported issue
as well but its not the correct place to address this. Opportunistic
Key Caching enables an AP with different interfaces to share the
PMKSA cache. Its a technical enhancement and disabling it would
be useful to let a testing suite properly test for RSN preauthentication
given that otherwise Opportunistic Key Caching would enable an
interface being tested to derive its own derive the PMKSA entry.
In production though okc=1 should be enabled to help with RSN
preauthentication.

The real fix for this particular issue outside of the scope of hostapd's
configuration and it should not be dealt with as a workaround to
its configuration and breaking expected RSN preauthentication and
technical optimizations. Revert this change and enable users to pick
and choose to enable or disable disable_pmksa_caching and okc expecting them
to instead have read clearly more what these do.

As for the core issure ported, the correct place to fix this is to
enable a sort of messaging between the RADIUS server and its peers
so that if caching for authentication is enabled that cache can be
cleared upon user credential updates. Updating a user password
(not just zapping a user) is another possible issue that would need
to be resolved here. Another part of the solution might be to reduce
the cache timing to account for any systematic limitations (RADIUS
server not able to ask peers to clear cache might be
one).

[0] https://dev.openwrt.org/changeset/33359
[1] https://forum.openwrt.org/viewtopic.php?id=19596
[2] http://wireless.kernel.org/en/users/Documentation/hostapd#IEEE_802.11i.2FRSN.2FWPA2_pre-authentication
[3] http://wireless.kernel.org/en/users/Documentation/wpa_supplicant#RSN_preauthentication
[4] http://wiki.openwrt.org/doc/recipes/rsn_preauthentication

Signed-off-by: Luis R. Rodriguez <mcgrof@do-not-panic.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38336 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:40 +00:00
Felix Fietkau 6ff7614c07 hostapd: Add WPS unconfigured & WPS pin method support
Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38335 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:36 +00:00
Felix Fietkau 21108bc210 hostapd: Add eap_reauth_period config option
This adds the eap_reauth_period to be used for modifying
the RADIUS server reauthentication authentication period,
a parameter that gets passed directly to the hostapd
configuration file.

Signed-off-by: Mathieu Olivari <mathieu@qca.qualcomm.com>
Signed-off-by: Luis R. Rodriguez <mcgrof@qca.qualcomm.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38334 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-08 11:09:27 +00:00
Luka Perkov 337f454532 [package] openvpn: switch to new procd init script style
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38331 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-07 21:28:14 +00:00
Steven Barth 9f6f08e80d odhcp6c: improve server selection, introduce "forceprefix" option
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38314 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-07 08:43:33 +00:00
Luka Perkov 7dbe386104 [package] iproute2: update to 3.11
Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38313 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-07 08:26:41 +00:00
Felix Fietkau c8eba693d0 netifd: update to latest version, adds macvlan support
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38299 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-03 14:51:34 +00:00
Steven Barth 09838598c1 odhcp6c: validate hop-limit on RAs
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38285 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-02 14:16:05 +00:00
Steven Barth a21d544dc5 6relayd: remove compat ULA setting by default (too many bad sideeffects)
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38283 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-02 06:14:39 +00:00
Steven Barth 077620aa6b netifd: don't remove & readd addresses that only have a changed lifetime
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38269 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-10-01 17:30:05 +00:00
Felix Fietkau b8672f84cb uhttpd: add a config option for using ustream-polarssl, and use it by default
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38250 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-29 11:26:09 +00:00
Felix Fietkau 3a931a5b0c uhttpd: fix appending https ports to cmdline
Otherwise it is started only on non-secure ports.

Signed-off-by: Wojciech Dubowik <Wojciech.Dubowik@neratec.com>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38171 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-25 07:44:48 +00:00
Gabor Juhos c0739badb2 iwinfo: add Ubiquiti WispStation M5 to hardware.txt
Signed-off-by: Gabor Juhos <juhosg@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38145 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-24 05:58:29 +00:00
Luka Perkov cebf051302 [package] fix various init scripts
Changes include:

* removing unused variables
* replacing spaces with tabs where appropriate
* more consistency with variable declarations

Signed-off-by: Luka Perkov <luka@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38142 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-23 21:58:36 +00:00
Felix Fietkau 8d82afd3a4 xtables-addons: fix missing conversion from r38021 (resolves a broken dependency)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38124 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-22 19:49:23 +00:00
Steven Barth 880d5d81a2 odhcp6c: handle NoAddrsAvail IA-status
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38092 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-21 10:54:13 +00:00
Steven Barth c89032631c odhcp6c: Restart when server returns IAID error
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38032 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-18 10:27:15 +00:00
John Crispin d330d9fac4 procd: convert various packages to procd style init.d scripts
Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38023 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-17 21:45:30 +00:00
John Crispin 751f928815 kernel: make most modules use AutoProbe
now that we have modprobe we can set more than half of the modules to AutoProbe

Signed-off-by: John Crispin <blogic@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@38021 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-17 21:45:17 +00:00
Felix Fietkau e2a5d64c3e hostapd: adjust the md5sum for the uploaded source tarball (fixes #14155)
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37990 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-14 20:07:35 +00:00
Felix Fietkau 32bcbe7b96 iwinfo: when using nl80211, parse interface combinations instead of creating/deleting interfaces
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37983 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-14 14:46:51 +00:00
Jo-Philipp Wich 546a43923a uhttpd: udpat to git head
- fixes buffer corruption with JSON-RPC list calls
	- change JSON-RPC protocol to include the session ID into the call
	  attributes instead of passing it via the URL
	- forcibly pass effective session ID as "ubus_rpc_session" attribute
	  to called procedures
	- change ubus acl checking to conform with new ubus session namespace

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37962 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-13 13:24:45 +00:00
Steven Barth e7aed7d6a9 odhcp6c: Timing workaround for buggy servers
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37951 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-12 12:57:42 +00:00
Steven Barth f919a7b85b odhcp6c: more compatibility fixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37907 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-05 21:13:51 +00:00
Steven Barth 47c281f29c netfilter: Add IPv6-NAT support for kernel and ipt
Thanks to Berni, Adam Novak and Sedat Dilek for patches and inspiration

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37866 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-01 17:59:48 +00:00
Steven Barth 794da7c235 iptables: Update to 1.4.20
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@37865 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-09-01 13:46:10 +00:00