aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* tools/squashfs: use host cflagsFelix Fietkau2017-10-241-0/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: re-enable 4k sectors for the mikrotik subtargetsFelix Fietkau2017-10-241-0/+1
| | | | | | | | On RB91x (and possibly others), there is a small SPI flash to store boot loader and configuration. It needs 4K sectors to be able to write the configuration using rbcfg Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: fix mikrotik routerboard nand driver issues with linux 4.9Felix Fietkau2017-10-243-27/+108
| | | | | | The mtd device is now embedded inside the nand chip data structure Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: fix secondary gpio controller base valuesFelix Fietkau2017-10-245-29/+29
| | | | | | | | In 4.9, gpio count is rounded up to 32 due to the use of bgpio in the ath79 gpio controller driver. Fix base values in mach files to account for that Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: lzma loader use LTOJulien Dusser2017-10-241-3/+5
| | | | | | | Change the Makefile to use LTO for better code optimisations. Gains are very low, only 270 bytes saved, but it's only Makefile changes. Signed-off-by: Julien Dusser <julien.dusser@free.fr>
* ar71xx: fix lzma loader performance issuesJulien Dusser2017-10-241-0/+13
| | | | | | | | | | | Some bootloaders set a cache cohenrency to a very slow mode. Use code from Linux kernel to set it to "Cacheable, noncoherent, write-back, write allocate". Perfomance impact is significant on TP-Link EAP245 board, kernel decompression time fall from 33 seconds to less than 1. Signed-off-by: Julien Dusser <julien.dusser@free.fr>
* libs/lzo: Reenable unaligned access on ARM, PPC, ...Stefan Oberhumer2017-10-241-4/+0
| | | | | | | | | | | | Due a compiler bug on ARM targets ( https://gcc.gnu.org/bugzilla/show_bug.cgi?id=64516 ) unaligned access was disabled on all targets other than i386 and x86_64 with commit 061319ec3dfe9b6d14af1286a1d9979db56048d7 . A fix has been added to lzo-2.09 so it is not necessary to disable unaligned access within the Makefile anymore. Signed-off-by: Stefan Oberhumer <stefan@obssys.com>
* kernel: fixup KARCH for powerpc64 buildsFlorian Larysch2017-10-241-0/+2
| | | | | | | The kernel calls both ppc64 and ppc32 "powerpc", so we need to fixup LINUX_KARCH when building with ARCH=powerpc64. Signed-off-by: Florian Larysch <fl@n621.de>
* config: set ARCH if powerpc64 is selected in the configurationFlorian Larysch2017-10-241-0/+1
| | | | Signed-off-by: Florian Larysch <fl@n621.de>
* target: add cpu flags for powerpc64Florian Larysch2017-10-241-0/+4
| | | | Signed-off-by: Florian Larysch <fl@n621.de>
* toolchain: use glibc for powerpc64 buildsFlorian Larysch2017-10-241-3/+5
| | | | | | | Neither uClibc nor musl currently have working support for powerpc64 in big endian mode. Thus, default to using glibc for this architecture. Signed-off-by: Florian Larysch <fl@n621.de>
* toolchain: remove powerpc64 featureFlorian Larysch2017-10-241-3/+0
| | | | | | | | The powerpc64 feature flag was introduced with the PS3 support, which has been removed for quite a while and is now unused. Remove it and the special biarch handling it triggered during the toolchain build. Signed-off-by: Florian Larysch <fl@n621.de>
* include/site: add powerpc64 configFlorian Larysch2017-10-241-0/+26
| | | | | Signed-off-by: Florian Larysch <fl@n621.de> Signed-off-by: Felix Fietkau <nbd@nbd.name>
* uboot-sunxi: Backport fix for stale CONFIG_SUNXIG_GMAC referencesFlorian Fainelli2017-10-235-28/+84
| | | | | | | | | | This backports the upstream commit fixing stale references to CONFIG_SUNXI_GMAC which have been later replaced by CONFIG_SUN7I_GMAC. This fixes the designware MAC pinmuxing on e.g: Lamobo R1. Refresh patches while we are at it. Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
* bcm53xx: Fix SmartRG SR400AC initramfs imageFlorian Fainelli2017-10-231-0/+2
| | | | | | | The SmartRG SR400AC CFE does not accept a TRX image, just a normal binary image. Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
* include: Include new location for DT bindingsFlorian Fainelli2017-10-231-0/+1
| | | | | | | | | Starting with commit d5d332d3f7e8 ("devicetree: Move include prefixes from arch to separate directory") included in 4.12 and newer relocated the dt-bindings directory, so account for that while passing CPPFLAGS before DTC runs. Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
* kernel: bump 4.9 to 4.9.58Stijn Tintel2017-10-239-217/+195
| | | | | | | | Refresh patches. Compile-tested: ar71xx, octeon, x86/64. Runtime-tested: octeon, x86/64. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* kernel: add kmod-iio-bmp280Stijn Tintel2017-10-231-0/+48
| | | | | | | | | | This driver supports the Bosch Sensortec BMP180/BMP280 pressure and temperature sensors. It also supports the BME280 sensors with an additional humidity channel. Tested I2C and SPI modes with a BME280 sensor on a Raspberry Pi Zero W. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* kernel: move IIO modules to iio.mkStijn Tintel2017-10-232-65/+72
| | | | Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* brcm2708: restore /boot/config.txt before rebootStijn Tintel2017-10-232-0/+2
| | | | | | | | | | | | | | The Raspberry Pi bootloader reads configuration values from config.txt in the boot partition. This file allows to specify the amount of memory to assign to the GPU, the license keys for hardware MPEG-2 and VC-1 decoding, Device Tree parameters and overlays, and lots of other things. Since sysupgrade only restores the configuration after booting the newly flashed image, these values will not be active, even if sysupgrade would save /boot/config.txt. To solve this, add the file to the files to be backed up, and restore it in platform_copy_config, before reboot. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* ar71xx: deactivate some boards with too small kernel partitionsHauke Mehrtens2017-10-223-5/+2
| | | | | | | | | | | | | | | | | | | This affects the following boards: * dr344 * archer-c58-v1 * archer-c60-v1 * tl-wr902ac-v1 * tl-wr942n-v1 * ubnt-uap-pro * ubnt-unifi-outdoor-plus The build fails for any of these boards because the resulting kernel image will not fit into the kernel partition. When CONFIG_KERNEL_KALLSYMS is not set it could be that the kernel will fit onto the board again, this is the case for release images. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* ar71xx: use kernel 4.9 by defaultHauke Mehrtens2017-10-221-1/+1
| | | | | | | | | Kernel 4.9 support was added about 2 weeks ago and we haven't seen any major regression so far. This patch was not ported to kernel 4.9, this needs some additional work: 821-serial-core-add-support-for-boot-console-with-arbitr.patch Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* at91: remove unused at91part driverHauke Mehrtens2017-10-221-122/+0
| | | | | | | There is no patch in the kernel 4.4 and 4.9 patches which adds this driver to the build system. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* at91: update to kernel 4.9Hauke Mehrtens2017-10-229-23/+26
| | | | | | | This brings the at91 target to kernel 4.9. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> Tested-by: Ben Whitten <ben.whitten@gmail.com>
* kernel: add config optionHauke Mehrtens2017-10-221-0/+1
| | | | | | | | When the kmod-at91-adc package is activated for the at91 target the new option CONFIG_AT91_SAMA5D2_ADC is selectable and not handled. Add this option to the kernel 4.9 configuration. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* netifd: bump to git HEAD version (FS#1037)Hans Dedecker2017-10-191-3/+3
| | | | | | | 0f96606 proto: add point-to-point IPv4 address config support (FS#1037) 1ee788d ubus: display the point-to-point IPv4 address Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* ar71xx: add support for TP-LINK Archer C7 v4Felix Fietkau2017-10-1912-2/+338
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | TP-Link Archer C7 v4 is a dual-band AC1750 router, based on Qualcomm/Atheros QCA9561+QCA9888. Specification: - 775/650/258 MHz (CPU/DDR/AHB) - 128 MB of RAM (DDR2) - 16 MB of FLASH (SPI NOR) - 3T3R 2.4 GHz - 3T3R 5 GHz - 5x 10/100/1000 Mbps Ethernet - 7x LED, 2x button - UART header on PCB Flash instruction: 1. Upload lede-ar71xx-generic-archer-c7-v4-squashfs-factory.bin via Web interface Flash instruction using TFTP recovery: 1. Set PC to fixed ip address 192.168.0.66 2. Download lede-ar71xx-generic-archer-c7-v4-squashfs-factory.bin and rename it to ArcherC7v4_tp_recovery.bin 3. Start a tftp server with the file tp_recovery.bin in its root directory 4. Turn off the router 5. Press and hold Reset button 6. Turn on router with the reset button pressed and wait ~15 seconds 7. Release the reset button and after a short time the firmware should be transferred from the tftp server 8. Wait ~30 second to complete recovery. Flash instruction under U-Boot, using UART: 1. tftp 0x81000000 lede-ar71xx-...-sysupgrade.bin 2. erase 0x9f040000 +$filesize 3. cp.b $fileaddr 0x9f040000 $filesize 4. reset Signed-off-by: Felix Fietkau <nbd@nbd.name>
* uboot-envtools: add support for Nokia WI2A-AC200iFelix Fietkau2017-10-191-0/+3
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: add support for Nokia WI2A-AC200iFelix Fietkau2017-10-1914-0/+286
| | | | | | | | | | | | | | | | | Specifications: - SoC: Qualcomm QCA9558 (720 MHz) - RAM: 256MB - Storage: 1MB NOR, 128 MB NAND flash - Ethernet: 1x1000M Installation: 1. Connect to serial console on the board 2. Boot initramfs image over u-boot 3. Copy image to the device and run sysupgrade Installation without serial console is not supported at this time Signed-off-by: Felix Fietkau <nbd@nbd.name>
* brcm47xx: use kernel 4.9 by defaultHauke Mehrtens2017-10-181-1/+1
| | | | | | | | Kernel 4.9 is now working on the brcm47xx boards, we just recently fixed the problem that some boards did not boot at all, by changing the memory regions used to relocate the kernel to in the loader. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* broadcom-wl: fix compile with kernel 4.9Hauke Mehrtens2017-10-181-4/+5
| | | | | | | ENOENT could not be found by the compiler when compiling again kernel 4.9. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* kernel: fix ftrace support on 4.9Felix Fietkau2017-10-181-0/+27
| | | | | | | | When porting the kernel patches from 4.4 to 4.9, they were missing a small chunk that ensures that ftrace sections are kept in the vmlinux image, even when linked with --gc-sections Signed-off-by: Felix Fietkau <nbd@nbd.name>
* lantiq: ARV752DPW22: fix wireless mac addressMathias Kresin2017-10-181-0/+1
| | | | | | | | | | The ARV752DPW22 has the same generic mac address in the EEPROM as it was already noticed for other lantiq boards using a ralink wireless. Use the base mac address from the boardconfig partition as it is done by the stock firmware. Signed-off-by: Mathias Kresin <dev@kresin.me>
* lantiq: ARV752DPW22: set correct wireless led triggerMathias Kresin2017-10-181-0/+3
| | | | | | | The ARV752DPW22 has a ralink based wireless and can not use the ath9k only phy0tpt trigger. Signed-off-by: Mathias Kresin <dev@kresin.me>
* omap: clean up configurationHauke Mehrtens2017-10-182-17/+1
| | | | | Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> Acked-by: Alexander Couzens <lynxis@fe80.eu>
* omap: Add support for kernel 4.9Hauke Mehrtens2017-10-184-1/+759
| | | | | | | | | | | | | | | | This adds support for kernel 4.9 and replaces the kernel 4.4 support. These are lynxis test results: panda-board a3 - works, but no network, but master/4.4 doesn't have network either. panda-board-a4 - u-boot SPL refuse to boot. beaglebone-black - works beagle-board - usb attached network doesn't come up and I doesn't have a serial around. beagle-board-xm - ToDo: image code is missing. Kernel 4.4 does not look better, so we merge this anyway. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> Acked-by: Alexander Couzens <lynxis@fe80.eu>
* kernel: bump 4.4 to 4.4.93Kevin Darbyshire-Bryant2017-10-181-2/+2
| | | | | | | | | | | | | | No patch refresh required. Compile-tested for ar71xx - Archer C7 v2 Runtime-tested on ar71xx - Archer C7 v2 Fixes the following CVEs: - CVE-2017-15265 - CVE-2017-0786 Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* kernel: bump 4.9 to 4.9.57Kevin Darbyshire-Bryant2017-10-1822-236/+252
| | | | | | | | | | | | | | | | Refresh patches. Compile-tested for ar71xx - Archer C7 v2 Runtime-tested on ar71xx - Archer C7 v2 Fixes the following CVEs: - CVE-2017-7518 - CVE-2017-0786 - CVE-2017-1000255 - CVE-2017-12188 - CVE-2017-15265 Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* hostapd: bump PKG_RELEASEStijn Tintel2017-10-181-1/+1
| | | | | | | | | | The previous commit did not adjust PKG_RELEASE, therefore the hostapd/wpad/wpa_supplicant packages containing the AP-side workaround for KRACK do not appear as opkg update. Bump the PKG_RELEASE to signify upgrades to downstream users. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* wireguard: version bump to 0.0.20171017Jason A. Donenfeld2017-10-171-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a simple version bump. Changes: * noise: handshake constants can be read-only after init * noise: no need to take the RCU lock if we're not dereferencing * send: improve dead packet control flow * receive: improve control flow * socket: eliminate dead code * device: our use of queues means this check is worthless * device: no need to take lock for integer comparison * blake2s: modernize API and have faster _final * compat: support READ_ONCE * compat: just make ro_after_init read_mostly Assorted cleanups to the module, including nice things like marking our precomputations as const. * Makefile: even prettier output * Makefile: do not clean before cloc * selftest: better test index for rate limiter * netns: disable accept_dad for all interfaces Fixes in our testing and build infrastructure. Now works on the 4.14 rc series. * qemu: add build-only target * qemu: work on ubuntu toolchain * qemu: add more debugging options to main makefile * qemu: simplify shutdown * qemu: open /dev/console if we're started early * qemu: phase out bitbanging * qemu: always create directory before untarring * qemu: newer packages * qemu: put hvc directive into configuration This is the beginning of working out a cross building test suite, so we do several tricks to be less platform independent. * tools: encoding: be more paranoid * tools: retry resolution except when fatal * tools: don't insist on having a private key * tools: add pass example to wg-quick man page * tools: style * tools: newline after warning * tools: account for padding being in zero attribute Several important tools fixes, one of which suppresses a needless warning. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* hostapd: add wpa_disable_eapol_key_retries optionStijn Tintel2017-10-171-0/+5
| | | | | | | | | | | | | | Commit 2127425434046ae2b9f02fdbbdd37cac447af19c introduced an AP-side workaround for key reinstallation attacks. This option can be used to mitigate KRACK on the station side, in case those stations cannot be updated. Since many devices are out there will not receive an update anytime soon (if at all), it makes sense to include this workaround. Unfortunately this can cause interoperability issues and reduced robustness of key negotiation, so disable the workaround by default, and add an option to allow the user to enable it if he deems necessary. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* hostapd: backport extra changes related to KRACKStijn Tintel2017-10-179-9/+442
| | | | | | | | While these changes are not included in the advisory, upstream encourages users to merge them. See http://lists.infradead.org/pipermail/hostap/2017-October/037989.html Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* Revert "ar71xx: Add GRO support to ag71xx"Felix Fietkau2017-10-171-3/+3
| | | | | | | | | | This reverts commit 13e5e473699b92f171205e0f5c57c9ebe7922492. This commit causes a severe regression in LAN->WAN routing performance for several devices. This appears to be caused by the extra requirement to validate the SKB checksum early in the rx path, which the ethernet hardware does not do Signed-off-by: Felix Fietkau <nbd@nbd.name>
* hostapd: bump PKG_RELEASEStijn Tintel2017-10-171-1/+1
| | | | | | | | | The previous CVE bugfix commit did not adjust PKG_RELEASE, therefore the fixed hostapd/wpad/wpa_supplicant packages do not appear as opkg update. Bump the PKG_RELEASE to signify upgrades to downstream users. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* mac80211: backport kernel fix for CVE-2017-13080Stijn Tintel2017-10-171-0/+81
| | | | Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* at91: fix legacy buildHauke Mehrtens2017-10-161-2/+1
| | | | | | | | | | | The build system took the DTB_SIZE definition from Default and not from production-dtb under some conditions. Move the size definitions to Default now as it is only used in production-dtb anyway. Thanks Mathias Kresin for helping me with this. Fixes: c2f052acaeb ("at91: convert boards to generic build target") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* ppp: make the patches apply correctly againHauke Mehrtens2017-10-161-1/+1
| | | | | | | This fixes a compile problem recently introduced by me. Fixes: f40fd43ab2f ("ppp: fix compile warning") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* wireguard: add wireguard to base packagesJason A. Donenfeld2017-10-162-0/+308
| | | | | | | | | | | | | | | | | | | | | | | Move wireguard from openwrt/packages to base a package. This follows the pattern of kmod-cake and openvpn. Cake is a fast-moving experimental kernel module that many find essential and useful. The other is a VPN client. Both are inside of core. When you combine the two characteristics, you get WireGuard. Generally speaking, because of the extremely lightweight nature and "stateless" configuration of WireGuard, many view it as a core and essential utility, initiated at boot time and immediately configured by netifd, much like the use of things like GRE tunnels. WireGuard has a backwards and forwards compatible Netlink API, which means the userspace tools should work with both newer and older kernels as things change. There should be no versioning requirements, therefore, between kernel bumps and userspace package bumps. Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Acked-by: Jo-Philipp Wich <jo@mein.io> Acked-by: Felix Fietkau <nbd@nbd.name>
* ramips: fix typo in MT7621 NAND driverFelix Fietkau2017-10-161-1/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* hostapd: merge fixes for WPA packet number reuse with replayed messages and ↵Felix Fietkau2017-10-1614-29/+965
| | | | | | | | | | | | | | | | | | | | | key reinstallation Fixes: - CERT case ID: VU#228519 - CVE-2017-13077 - CVE-2017-13078 - CVE-2017-13079 - CVE-2017-13080 - CVE-2017-13081 - CVE-2017-13082 - CVE-2017-13086 - CVE-2017-13087 - CVE-2017-13088 For more information see: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt Signed-off-by: Felix Fietkau <nbd@nbd.name>