aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* sdk: add missing change from r3328-f55c29e4c7Felix Fietkau2017-02-081-1/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* odhcp6c: update to GIT head versionHans Dedecker2017-02-081-3/+3
| | | | | | cfd986c odhcp6c: fix possible stack corruption when parsing proc if_inet6 Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* brcm2708: add more patches for linux 4.9Álvaro Fernández Rojas2017-02-0814-173463/+1662
| | | | | | Also removes unneeded wireless patches Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: bcm2710: add 64 bit support for Raspberry Pi 3Álvaro Fernández Rojas2017-02-083-99/+118
| | | | | | | 64 bit support for Raspberry Pi 3 is experimental. However, bcm2709 subtarget should serve as a stable and compatible 32 bit support. Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: bcm2709: add support for Raspberry Pi 3Álvaro Fernández Rojas2017-02-083-6/+8
| | | | | | | This adds support for Raspberry Pi 3 on the bcm2709 subtarget, in order to keep 32 bit image support when 64 bit support is added on bcm2710 subtarget. Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* generic: add missing symbols for linux 4.9Álvaro Fernández Rojas2017-02-081-0/+15
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* mac80211: brcmfmac: update Raspberry Pi patches for linux 4.9Álvaro Fernández Rojas2017-02-072-2/+2
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: remove duplicated gzip from image generationÁlvaro Fernández Rojas2017-02-071-1/+0
| | | | | | Images are now automatically gziped so remove custom image command Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: remove linux 4.4 supportÁlvaro Fernández Rojas2017-02-07564-198905/+0
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: switch to linux 4.9Álvaro Fernández Rojas2017-02-071-1/+1
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: add linux 4.9 supportÁlvaro Fernández Rojas2017-02-07148-0/+301419
| | | | | | | Patches from Raspberry Pi repo: https://github.com/raspberrypi/linux/commits/rpi-4.9.y Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* kernel: of-mdio: add missing dependency for linux 4.9Álvaro Fernández Rojas2017-02-071-1/+3
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* generic: add missing kernel symbolsÁlvaro Fernández Rojas2017-02-071-0/+23
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* bcm53xx: include Broadcom PHY driver in the kernelRafał Miłecki2017-02-071-0/+2
| | | | | | | | | | | | | | | | | Initial idea was to use package with this PHY driver for devices that need it. Unfortunately this can't work as bgmac is built-in and PHY probing happens before loading modules - it results in PHY subsystem picking default (generic) PHY driver. There were two ways of solving this: 1) Making bcm53xx use bgmac as module xor 2) Built-in Broadcom PHY driver After some quick discussion it seems we can simply built-in the driver as increased kenel size is relatively small (1805 B). Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* x86: remove linux 4.4 supportFelix Fietkau2017-02-077-692/+0
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* x86: switch to Linux 4.9Felix Fietkau2017-02-078-43/+599
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* build: remove libc version suffix from build/staging directoriesFelix Fietkau2017-02-072-4/+3
| | | | | | Our supported libcs are ABI compatible across version upgrades Signed-off-by: Felix Fietkau <nbd@nbd.name>
* toolchain/gdb: update to version 7.12.1Etienne Haarsma2017-02-071-2/+2
| | | | | | | | | | | | | | | | | | | | | | Update gdb to version 7.12.1. GDB 7.12.1 brings the following fixes and enhancements over GDB 7.12: * PR tdep/20682 (aarch64 regression: gdb.cp/nextoverthrow.exp) * PR server/20733 (Failed to build aarch64_be-linux-gnu GDBserver) * PR tdep/20953 (GDB crashes after "set architecture rl78") * PR tdep/20954 (GDB crashes if "set architecture rx") * PR tdep/20955 (GDB internal error in cris-tdep.c) * PR build/20712 (gdb 7.12+ doesn't build as C++ on Solaris) * PR breakpoint/20653 (string_to_explicit_location has some weird code) * PR build/20753 (MinGW compilation errors due to strcasecmp) * PR gdb/20977 (GDB exception handling is broken on i686-w64-mingw32) * PR python/21048 (backtrace is broken on i686) * PR sim/20808 (mips sim build fails due to undefined SD/CPU variables) * PR sim/20809 (mips sim build fails for r3900 cpus) * PR gdb/20939 (GDB aborts Signed-off-by: Etienne Haarsma <bladeoner112@gmail.com>
* binutils: remove 2.25.1 support and leftovers of older versionsFelix Fietkau2017-02-077-123/+0
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* toolchain/binutils: Switch to 2.27 as default versionDaniel Engberg2017-02-072-2/+2
| | | | | | | | | Use 2.27 as default which is the current relese. Makes it easier to get support and submit patches upstream if needed. Tested on ar71xx, mt7621, kirkwood (arm) Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* kernel: update spi-nor in 4.9 to spi-nor tree version (next branch)Rafał Miłecki2017-02-0712-28/+784
| | | | | | | These are patches queued for 4.11. It adds support for even more hw and removes some annoying WARN_ONCE. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* kernel: update spi-nor in 4.9 to version from Linus's tree (4.10)Rafał Miłecki2017-02-0713-15/+200
| | | | | | This adds support for more devices. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* brcmfmac: improve Raspberry Pi 3 stabilityÁlvaro Fernández Rojas2017-02-072-2/+25
| | | | | | | - Really disable power management (wrong config flags). - Disable internal roaming engine. Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* bcm53xx: add missing system.sh includeRafał Miłecki2017-02-071-0/+1
| | | | | | | It's needed for macaddr_add. Fixes: 50efd403e67c ("bcm53xx: set WAN MAC address to don't share one with LAN interface") Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* kernel: fix build error in mtdsplit driverKoen Vandeputte2017-02-071-1/+1
| | | | | | | Add missing parentheses. Fixes kernel build issue when using this driver. Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
* cns3xxx: use proper macro's for ID handlingKoen Vandeputte2017-02-071-3/+3
| | | | | | Compiled & tested on cns3xxx Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
* mac80211: fix ath9k kernel crash with linux 4.9Felix Fietkau2017-02-071-1/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx/ipq806x/mediatek/mvebu: fix network defaultsJo-Philipp Wich2017-02-074-29/+29
| | | | | | | | | | | After "73d923e base-files: emit tagged switch configuration by default" some default network configurations are broken because the lan and wan ifnames are forcibly set to untagged netdevs. Adjust the offending set_interfaces_lan_wan() calls to use the proper tagged device names. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* arc770: fix broken upstream changeJo-Philipp Wich2017-02-071-0/+31
| | | | | | | Add a patch to revert upstream commit 9aed02feae57bf7a40cb04ea0e3017cb7a998db4 which introduces syntax errors. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* tcpdump: update to version 4.9.0Hauke Mehrtens2017-02-064-81/+81
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes the following 41 security problems: + CVE-2016-7922: buffer overflow in print-ah.c:ah_print(). + CVE-2016-7923: buffer overflow in print-arp.c:arp_print(). + CVE-2016-7924: buffer overflow in print-atm.c:oam_print(). + CVE-2016-7925: buffer overflow in print-sl.c:sl_if_print(). + CVE-2016-7926: buffer overflow in print-ether.c:ethertype_print(). + CVE-2016-7927: buffer overflow in print-802_11.c:ieee802_11_radio_print(). + CVE-2016-7928: buffer overflow in print-ipcomp.c:ipcomp_print(). + CVE-2016-7929: buffer overflow in print-juniper.c:juniper_parse_header(). + CVE-2016-7930: buffer overflow in print-llc.c:llc_print(). + CVE-2016-7931: buffer overflow in print-mpls.c:mpls_print(). + CVE-2016-7932: buffer overflow in print-pim.c:pimv2_check_checksum(). + CVE-2016-7933: buffer overflow in print-ppp.c:ppp_hdlc_if_print(). + CVE-2016-7934: buffer overflow in print-udp.c:rtcp_print(). + CVE-2016-7935: buffer overflow in print-udp.c:rtp_print(). + CVE-2016-7936: buffer overflow in print-udp.c:udp_print(). + CVE-2016-7937: buffer overflow in print-udp.c:vat_print(). + CVE-2016-7938: integer overflow in print-zeromq.c:zmtp1_print_frame(). + CVE-2016-7939: buffer overflow in print-gre.c, multiple functions. + CVE-2016-7940: buffer overflow in print-stp.c, multiple functions. + CVE-2016-7973: buffer overflow in print-atalk.c, multiple functions. + CVE-2016-7974: buffer overflow in print-ip.c, multiple functions. + CVE-2016-7975: buffer overflow in print-tcp.c:tcp_print(). + CVE-2016-7983: buffer overflow in print-bootp.c:bootp_print(). + CVE-2016-7984: buffer overflow in print-tftp.c:tftp_print(). + CVE-2016-7985: buffer overflow in print-calm-fast.c:calm_fast_print(). + CVE-2016-7986: buffer overflow in print-geonet.c, multiple functions. + CVE-2016-7992: buffer overflow in print-cip.c:cip_if_print(). + CVE-2016-7993: a bug in util-print.c:relts_print() could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM). + CVE-2016-8574: buffer overflow in print-fr.c:frf15_print(). + CVE-2016-8575: buffer overflow in print-fr.c:q933_print(). + CVE-2017-5202: buffer overflow in print-isoclns.c:clnp_print(). + CVE-2017-5203: buffer overflow in print-bootp.c:bootp_print(). + CVE-2017-5204: buffer overflow in print-ip6.c:ip6_print(). + CVE-2017-5205: buffer overflow in print-isakmp.c:ikev2_e_print(). + CVE-2017-5341: buffer overflow in print-otv.c:otv_print(). + CVE-2017-5342: a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print(). + CVE-2017-5482: buffer overflow in print-fr.c:q933_print(). + CVE-2017-5483: buffer overflow in print-snmp.c:asn1_parse(). + CVE-2017-5484: buffer overflow in print-atm.c:sig_print(). + CVE-2017-5485: buffer overflow in addrtoname.c:lookup_nsap(). + CVE-2017-5486: buffer overflow in print-isoclns.c:clnp_print(). The size of the package is only incread very little: new size: 306430 tcpdump_4.9.0-1_mips_24kc.ipk 130324 tcpdump-mini_4.9.0-1_mips_24kc.ipk old size: 302782 tcpdump_4.8.1-1_mips_24kc.ipk 129033 tcpdump-mini_4.8.1-1_mips_24kc.ipk Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* brcm2708-gpu-fw: update to latest versionÁlvaro Fernández Rojas2017-02-061-8/+8
| | | | Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* brcm2708: update linux 4.4 patches to latest versionÁlvaro Fernández Rojas2017-02-06560-529/+2859
| | | | | | | | n As usual these patches were extracted and rebased from the raspberry pi repo: https://github.com/raspberrypi/linux/tree/rpi-4.4.y Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
* bcm53xx: set Netgear R8000 USB LEDsRafał Miłecki2017-02-061-0/+18
| | | | Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* bcm53xx: refresh Linux 4.4 configRafał Miłecki2017-02-061-0/+7
| | | | Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* bcm53xx: image: use one style of adding TARGET_DEVICES entriesRafał Miłecki2017-02-061-4/+4
| | | | | | | It just makes code consistent. This trivial change may be a 17.01 candidate to provide simpler backporting experience. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* kernel: merge b53 API patch with the one handling all switch driversRafał Miłecki2017-02-062-88/+88
| | | | Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* Revert "uClibc-ng: update to 1.0.21"Jo-Philipp Wich2017-02-062-2/+2
| | | | | | | | | This reverts commit dde5c729ec92cbb11cf6367d93887e634b0ac756. The uClibc update was completely untested, does not build with Kernel 4.4 and did not adjust the configuration to predeclare new config symbols. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* mac80211: update to wireless-testing 2017-01-31Felix Fietkau2017-02-06204-12870/+1419
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* kernel: add missing config symbols for 4.9Felix Fietkau2017-02-061-0/+25
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* kernel: fix crashlog build error on 4.9Felix Fietkau2017-02-061-2/+2
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* kernel: add compile fix for linux 4.9 on x86Felix Fietkau2017-02-061-0/+13
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* kernel: port b53 to use kernel 4.5+ APIRafał Miłecki2017-02-063-17/+96
| | | | | | For backward 4.4 compatibility I added patch reverting my changes. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* bcm53xx: move bcm47xx_sprom driver to 4.4 specific directoryRafał Miłecki2017-02-061-0/+0
| | | | | | | In kernel 4.9 it's already present so we don't want to overwite it (with older & API incompatible version). Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* bcm53xx: add Linux 4.9 patchesRafał Miłecki2017-02-0634-0/+3107
| | | | Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* bcm53xx: backport upstream DTS files for Linksys devicesRafał Miłecki2017-02-063-16/+92
| | | | | | | We dont't build officialy images for them yet due to partitioning issues. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
* kernel: update kernel 4.4 to version 4.4.47Stijn Tintel2017-02-065-10/+10
| | | | | | | | | | Refresh patches for all targets that support kernel 4.4. Compile-tested on all targets that use kernel 4.4 and aren't marked broken, except arc770 and arch38 due to broken toolchain. Runtime-tested on ar71xx, octeon, ramips and x86/64. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* dnsmasq: update to dnsmasq 2.77test1Kevin Darbyshire-Bryant2017-02-056-257/+145
| | | | | | | | | | | | | | | | | | | | | | | Bump to dnsmasq 2.77test1 - this includes a number of fixes since 2.76 and allows dropping of 2 LEDE carried patches. Notable fix in rrfilter code when talking to Nominum's DNS servers especially with DNSSEC. A patch to switch dnsmasq back to 'soft fail' for SERVFAIL responses from dns servers is also included. This mean dnsmasq tries all configured servers before giving up. A 'localise queries' enhancement has also been backported (it will appear in test2/rc'n') this is especially important if using the recently imported to LEDE 'use dnsmasq standalone' feature 9525743c I have been following dnsmasq HEAD ever since 2.76 release. Compile & Run tested: ar71xx, Archer C7 v2 Tested-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk> Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
* dnsmasq: fix instances in dhcp_add()Eric Luehrsen2017-02-051-2/+2
| | | | | | | | | ref commit 9525743c076393336cd2129539c974f8a01c7894 dnsmasq: make DHCPv6 viable for standalone dnsmasq install Above commit broke instancing by missing filter_dnsmasq() as part of the dhcp_add() execution. Signed-off-by: Eric Luehrsen <ericluehrsen@hotmail.com>
* ramips: add support for Sanlinking D240Kristian Evensen2017-02-057-0/+175
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The Sanlinking Technologies D240 (http://www.sanlinking.com/en/29-dual-4g-wifi-router.html) is basically the same device as the ZBT WE826, so adding support for it in LEDE is straight forward. The differences is that the D240 has two mini-PCIe slots (instead of one), blue LEDs and supports PoE. Specification: * CPU: MT7620A * 1x 10/100Mbps POE (802.3af/802.3at) Ethernet, 4x 10/100Mbps. * 16 MB Flash. * 128 MB RAM. * 1x USB 2.0 port. * 2x mini-PCIe slots. * 2x SIM slots. * 1x 2.4Ghz WIFI. * 1x button. Wifi, USB, switch and both mini-PCIe slots are working. I have not been able to test the SD card reader. The device comes pre-installed with an older version of OpenWRT, including Luci. In order to install LEDE, you need to follow the existing procedure for updating OpenWRT/LEDE using Luci. I.e., you need to access the UI and update the firmware using the sysupgrade-image. Remember to select that you do not want to keep existing settings. The default router address is 192.168.10.1 and username/password admin/root (at least on my devices). If you brick the device, the procedure for recovery is the same as for the WE826. Please see the wiki page for that device for instructions. Signed-off-by: Kristian Evensen <kristian.evensen@gmail.com>
* build: add missing wildcard for ignoring .pkgdir in dependency checksFelix Fietkau2017-02-051-1/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>