aboutsummaryrefslogtreecommitdiffstats
path: root/package
Commit message (Collapse)AuthorAgeFilesLines
* mt76: switch to AutoProbeJonas Gorski2017-10-271-3/+2
| | | | | | | Now that we have working module dependency generation, we can switch to AutoProbe and let modprobe handle loading required modules. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* mac80211: ath10k: switch to AutoProbeJonas Gorski2017-10-271-1/+1
| | | | | | | Now that we have working module dependency generation, we can switch to AutoProbe and let modprobe handle loading required modules. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* broadcom-wl: switch to AutoProbeJonas Gorski2017-10-271-1/+1
| | | | | | | Now that we have working module dependency generation, we can switch to AutoProbe and let modprobe handle loading required modules. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* broadcom-wl: reorder kmod build and pass EXTRA_VERSIONSJonas Gorski2017-10-271-5/+7
| | | | | | | | | Reoder the build to build the glue module first and pass the glue module's Module.symvers to the wl driver builds. This allows modpost to properly store a wl_glue dependency in the driver. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* broadcom-wl: define module directoriesJonas Gorski2017-10-271-0/+2
| | | | | | | Define the module subdirs so our build system properly picks up the Module.symvers. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* ath10k-ct: switch to AutoProbeJonas Gorski2017-10-271-1/+1
| | | | | | | Now that we have working module dependency generation, we can switch to AutoProbe and let modprobe handle loading required modules. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* ath10k-ct: define module directoriesJonas Gorski2017-10-271-0/+1
| | | | | | | Define the module subdir so our buildsystem properly picks up the Module.symvers. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* acx-mac80211: drop PKG_BUILD_DEPENDSJonas Gorski2017-10-271-1/+0
| | | | | | | We already have a DEPENDS on mac80211, which should be enough to ensure headers are available before build. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* acx-mac80211: switch to AutoProbeJonas Gorski2017-10-271-1/+1
| | | | | | | Now that we have working module dependency generation, we can switch to AutoProbe and let modprobe handle loading required modules. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* Revert "wpa_supplicant: log to syslog instead of stdout"Jo-Philipp Wich2017-10-272-2/+2
| | | | | | | | | | | | | | This reverts commit e7373e489d8a215402d6b0c408a26188342c7c17. Support of "-s" depends on the CONFIG_DEBUG_SYSLOG compile time flag which is not enabled for all build variants. Revert the change for now until we can properly examine the size impact of CONFIG_DEBUG_SYSLOG. Fixes FS#1117. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* mdadm: fix parameter quotingJo-Philipp Wich2017-10-271-8/+12
| | | | | | | Ensure that path defines are passed quoted to the compiler in order to avoid cpp syntax errors. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* mdadm: Fix config generationRosen Penev2017-10-272-11/+9
| | | | | | | | | | | | | | | | | The init script generated something like "DEVICE=/dev/sda" when it should have been generating "DEVICE /dev/sda". mdadm errors on this. Patch by jow. Also changed the default sendmail path to /usr/sbin/sendmail. No package in LEDE provides /sbin/sendmail. msmtp provides /usr/sbin/sendmail so use that. Also add a patch to fix file paths for mdadm runtime files. mdadm currently errors on them since /run is missing. Once /run is added to stock LEDE, this patch can be removed. Signed-off-by: Rosen Penev <rosenp@gmail.com> [rewrap commit message] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* iptables: Fix target TRACE issueMartin Wetterwald2017-10-271-0/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | The package kmod-ipt-debug builds the module xt_TRACE, which allows users to use '-j TRACE' as target in the chain PREROUTING of the table raw in iptables. The kernel compilation flag NETFILTER_XT_TARGET_TRACE is also enabled so that this feature which is implemented deep inside the linux IP stack (for example in sk_buff) is compiled. But a strace of iptables -t raw -I PREROUTING -p icmp -j TRACE reveals that an attempt is made to read /usr/lib/iptables/libxt_TRACE.so, which fails as this dynamic library is not present on the system. I created the package iptables-mod-trace which takes care of that, and target TRACE now works! https://dev.openwrt.org/ticket/16694 https://dev.openwrt.org/ticket/19661 Signed-off-by: Martin Wetterwald <martin.wetterwald@corp.ovh.com> [Jo-Philipp Wich: also remove trace extension from builtin extension list and depend on kmod-ipt-raw since its required for rules] Signed-off-by: Jo-Philipp Wich <jo@mein.io> Tested-by: Enrico Mioso <mrkiko.rs@gmail.com>
* ath10k-firmware: qca9888 firmware: remove board.binHenryk Heisig2017-10-271-3/+0
| | | | Signed-off-by: Henryk Heisig <hyniu@o2.pl>
* mac80211: backport fixes for fix for CVE-2017-13080Jonas Gorski2017-10-262-0/+106
| | | | | | | Backport two fixes for the fix of CVE-2017-13080, preventing side channel attacks and making it work for TKIP. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* hostapd: fix up ubus supportJohn Crispin2017-10-252-23/+45
| | | | Signed-off-by: John Crispin <john@phrozen.org>
* ltq-xdsl-app: script style nitKevin Darbyshire-Bryant2017-10-252-2/+2
| | | | | | Fix missing space style nit. Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
* ltq-adsl-app: add more script notificationsMathias Kresin2017-10-252-1/+43
| | | | | | | | Backport HANDSHAKE and TRAINING notification from ltq-vdsl-app. It unifies the dsl led blinking pattern accross all subtargets and allows to get the current line status from the dsl led. Signed-off-by: Mathias Kresin <dev@kresin.me>
* ltq-atm: remove xrx200 special handlingMathias Kresin2017-10-251-5/+1
| | | | | | | | The lantiq ATM driver is load for all subtargets on demand now. There is not need to handle the xrx200 ATM driver in a special way any longer. Signed-off-by: Mathias Kresin <dev@kresin.me>
* lantiq: xway: rename nas0/ptm0 to dsl0Mathias Kresin2017-10-252-3/+11
| | | | | | | | | | | This change makes it possible to configure the wan/dsl ppp interface settings independantly from the used TC-Layer (ATM/PTM). By using dsl0 as interface name as for the xrx200 we can get rid of a few conditionals which were introduced because of the different default TC-Layer in xway and xrx200. Signed-off-by: Mathias Kresin <dev@kresin.me>
* ltq-adsl-app: use notification based ATM/PTM driver loadMathias Kresin2017-10-254-6/+65
| | | | | | | This patch removes the fixed atm/ptm driver loading and switches to notification based driver loading. Signed-off-by: Mathias Kresin <dev@kresin.me>
* ltq-adsl-app: convert init script to procdMathias Kresin2017-10-251-6/+11
| | | | | | Use the procd features for the init script. Signed-off-by: Mathias Kresin <dev@kresin.me>
* libs/lzo: Reenable unaligned access on ARM, PPC, ...Stefan Oberhumer2017-10-241-4/+0
| | | | | | | | | | | | Due a compiler bug on ARM targets ( https://gcc.gnu.org/bugzilla/show_bug.cgi?id=64516 ) unaligned access was disabled on all targets other than i386 and x86_64 with commit 061319ec3dfe9b6d14af1286a1d9979db56048d7 . A fix has been added to lzo-2.09 so it is not necessary to disable unaligned access within the Makefile anymore. Signed-off-by: Stefan Oberhumer <stefan@obssys.com>
* uboot-sunxi: Backport fix for stale CONFIG_SUNXIG_GMAC referencesFlorian Fainelli2017-10-235-28/+84
| | | | | | | | | | This backports the upstream commit fixing stale references to CONFIG_SUNXI_GMAC which have been later replaced by CONFIG_SUN7I_GMAC. This fixes the designware MAC pinmuxing on e.g: Lamobo R1. Refresh patches while we are at it. Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
* kernel: add kmod-iio-bmp280Stijn Tintel2017-10-231-0/+48
| | | | | | | | | | This driver supports the Bosch Sensortec BMP180/BMP280 pressure and temperature sensors. It also supports the BME280 sensors with an additional humidity channel. Tested I2C and SPI modes with a BME280 sensor on a Raspberry Pi Zero W. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* kernel: move IIO modules to iio.mkStijn Tintel2017-10-232-65/+72
| | | | Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* netifd: bump to git HEAD version (FS#1037)Hans Dedecker2017-10-191-3/+3
| | | | | | | 0f96606 proto: add point-to-point IPv4 address config support (FS#1037) 1ee788d ubus: display the point-to-point IPv4 address Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* uboot-envtools: add support for Nokia WI2A-AC200iFelix Fietkau2017-10-191-0/+3
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* broadcom-wl: fix compile with kernel 4.9Hauke Mehrtens2017-10-181-4/+5
| | | | | | | ENOENT could not be found by the compiler when compiling again kernel 4.9. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* hostapd: bump PKG_RELEASEStijn Tintel2017-10-181-1/+1
| | | | | | | | | | The previous commit did not adjust PKG_RELEASE, therefore the hostapd/wpad/wpa_supplicant packages containing the AP-side workaround for KRACK do not appear as opkg update. Bump the PKG_RELEASE to signify upgrades to downstream users. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* wireguard: version bump to 0.0.20171017Jason A. Donenfeld2017-10-171-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is a simple version bump. Changes: * noise: handshake constants can be read-only after init * noise: no need to take the RCU lock if we're not dereferencing * send: improve dead packet control flow * receive: improve control flow * socket: eliminate dead code * device: our use of queues means this check is worthless * device: no need to take lock for integer comparison * blake2s: modernize API and have faster _final * compat: support READ_ONCE * compat: just make ro_after_init read_mostly Assorted cleanups to the module, including nice things like marking our precomputations as const. * Makefile: even prettier output * Makefile: do not clean before cloc * selftest: better test index for rate limiter * netns: disable accept_dad for all interfaces Fixes in our testing and build infrastructure. Now works on the 4.14 rc series. * qemu: add build-only target * qemu: work on ubuntu toolchain * qemu: add more debugging options to main makefile * qemu: simplify shutdown * qemu: open /dev/console if we're started early * qemu: phase out bitbanging * qemu: always create directory before untarring * qemu: newer packages * qemu: put hvc directive into configuration This is the beginning of working out a cross building test suite, so we do several tricks to be less platform independent. * tools: encoding: be more paranoid * tools: retry resolution except when fatal * tools: don't insist on having a private key * tools: add pass example to wg-quick man page * tools: style * tools: newline after warning * tools: account for padding being in zero attribute Several important tools fixes, one of which suppresses a needless warning. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* hostapd: add wpa_disable_eapol_key_retries optionStijn Tintel2017-10-171-0/+5
| | | | | | | | | | | | | | Commit 2127425434046ae2b9f02fdbbdd37cac447af19c introduced an AP-side workaround for key reinstallation attacks. This option can be used to mitigate KRACK on the station side, in case those stations cannot be updated. Since many devices are out there will not receive an update anytime soon (if at all), it makes sense to include this workaround. Unfortunately this can cause interoperability issues and reduced robustness of key negotiation, so disable the workaround by default, and add an option to allow the user to enable it if he deems necessary. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* hostapd: backport extra changes related to KRACKStijn Tintel2017-10-179-9/+442
| | | | | | | | While these changes are not included in the advisory, upstream encourages users to merge them. See http://lists.infradead.org/pipermail/hostap/2017-October/037989.html Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* hostapd: bump PKG_RELEASEStijn Tintel2017-10-171-1/+1
| | | | | | | | | The previous CVE bugfix commit did not adjust PKG_RELEASE, therefore the fixed hostapd/wpad/wpa_supplicant packages do not appear as opkg update. Bump the PKG_RELEASE to signify upgrades to downstream users. Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* mac80211: backport kernel fix for CVE-2017-13080Stijn Tintel2017-10-171-0/+81
| | | | Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
* ppp: make the patches apply correctly againHauke Mehrtens2017-10-161-1/+1
| | | | | | | This fixes a compile problem recently introduced by me. Fixes: f40fd43ab2f ("ppp: fix compile warning") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* wireguard: add wireguard to base packagesJason A. Donenfeld2017-10-162-0/+308
| | | | | | | | | | | | | | | | | | | | | | | Move wireguard from openwrt/packages to base a package. This follows the pattern of kmod-cake and openvpn. Cake is a fast-moving experimental kernel module that many find essential and useful. The other is a VPN client. Both are inside of core. When you combine the two characteristics, you get WireGuard. Generally speaking, because of the extremely lightweight nature and "stateless" configuration of WireGuard, many view it as a core and essential utility, initiated at boot time and immediately configured by netifd, much like the use of things like GRE tunnels. WireGuard has a backwards and forwards compatible Netlink API, which means the userspace tools should work with both newer and older kernels as things change. There should be no versioning requirements, therefore, between kernel bumps and userspace package bumps. Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Acked-by: Jo-Philipp Wich <jo@mein.io> Acked-by: Felix Fietkau <nbd@nbd.name>
* hostapd: merge fixes for WPA packet number reuse with replayed messages and ↵Felix Fietkau2017-10-1614-29/+965
| | | | | | | | | | | | | | | | | | | | | key reinstallation Fixes: - CERT case ID: VU#228519 - CVE-2017-13077 - CVE-2017-13078 - CVE-2017-13079 - CVE-2017-13080 - CVE-2017-13081 - CVE-2017-13082 - CVE-2017-13086 - CVE-2017-13087 - CVE-2017-13088 For more information see: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ppp: fix compile warningHauke Mehrtens2017-10-151-0/+1
| | | | Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* lantiq: xrx200: rename nas0/ptm0 to dsl0Martin Schiller2017-10-152-2/+10
| | | | | | | | | | | | | This change makes it possible to configure the wan/dsl ppp interface settings independantly from the used TC-Layer (ATM/PTM). Now you can move a device from an ADSL/ATM port to an VDSL/PTM port without any configuration changes for example. Signed-off-by: Martin Schiller <ms@dev.tdt.de> [use the dsl0 interface name for the default netdev trigger in 01_led, add ip dependency] Signed-off-by: Mathias Kresin <dev@kresin.me>
* mac80211: ath6kl: add missing usb-core dependency to kmod-ath6kl-usbHauke Mehrtens2017-10-151-1/+1
| | | | | | | This fixes a build problem with many targets. Fixes 618ed77a17422a ("mac80211: add ath6kl kernel modules") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* kernel: kmod-macsec module for 4.9Christian Lamparter2017-10-151-0/+15
| | | | | | | | | | | | | | | | | | | MACsec/IEEE 802.1AE is useful to secure communication to and from endpoints at Layer 2. Starting with 4.6, the linux kernel provides a universal macsec driver for authentication and encryption of traffic in a LAN, typically with GCM-AES-128, and optional replay protection. http://standards.ieee.org/getieee802/download/802.1AE-2006.pdf Note: LEDE can utilize MACsec with a static connectivity association key (static PSK) with the ip-full package installed. <http://man7.org/linux/man-pages/man8/ip-macsec.8.html> Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
* libs/libnl: Update to 3.3.0Daniel Engberg2017-10-156-115/+298
| | | | | | | | | | Update libnl to 3.3.0 Import patches to fix compilation Source: https://git.busybox.net/buildroot/tree/package/libnl Source: https://gitweb.gentoo.org/proj/musl.git/diff/dev-libs/libnl/files/libnl-3.3.0_rc1-musl.patch?id=48d2a287 Use more automatic toolchain logic Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* package/kernel/leds-apu2: add apu3 board detectionFlorian Eckert2017-10-151-1/+4
| | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* package/kernel/leds-apu2: fix whitespacesFlorian Eckert2017-10-151-15/+15
| | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* wpan-tools: add the wpan-ping to test the 6LoWPAN networkYunhui Fu2017-10-151-0/+1
| | | | | | | This patch adds the help tool wpan-ping to test the 6LoWPAN network to help the user debug network problem. Signed-off-by: Yunhui Fu <yhfudev@gmail.com>
* mac80211: add ath6kl kernel modulesBen Whitten2017-10-151-2/+47
| | | | | | Allow board to include the ath6kl kernel modules. Signed-off-by: Ben Whitten <ben.whitten@gmail.com>
* linux-firmware: add ath6k firmware to packageBen Whitten2017-10-151-0/+10
| | | | | | | Systems which include the ath6k chipset need to have the firmware included in the image. Signed-off-by: Ben Whitten <ben.whitten@gmail.com>
* busybox: provide "ip"Hans Dedecker2017-10-141-0/+1
| | | | | | | Let busybox provide "ip" as it supports the ip applets link, address, route, rule and neighbor Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* at91bootstrap: remove manual copy of binaries to BIN_DIRSandeep Sheriker Mallikarjun2017-10-141-2/+10
| | | | | | | removed copying of binaries to BIN_DIR during install and using default/install to install binaries to BIN_DIR folder. Signed-off-by: Sandeep Sheriker Mallikarjun <sandeepsheriker.mallikarjun@microchip.com>