aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* ramips: fix pinmux typoJohn Crispin2016-06-301-0/+77
| | | | | Reported-by: Joy Kicer <joykicer@gmail.com> Signed-off-by: John Crispin <john@phrozen.org>
* base-files: seed /dev/urandomEtienne CHAMPETIER2016-06-303-0/+54
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit: 1) seed /dev/urandom with the saved seeds as early as possible (see /lib/preinit/81_urandom_seed) 2) save a seed at /etc/urandom.seed if it doesn't exists 3) save a new seed each boot at "system.@system[0].urandom_seed" (see /etc/init.d/urandom_seed) We use getrandom() so we are sure /dev/urandom pool is initialized Seed size is 512 bytes (ie /proc/sys/kernel/random/poolsize / 8) it's the same size as in ubuntu 14.04 and all systemd systems Seeding /dev/urandom doesn't change entropy estimation, so we still have "random: ubus urandom read with 4 bits of entropy available" messages in the logs, but we can now ignore them if after "urandom-seed: Seeding with ..." message Saving a new seed on each boot is disabled by default to avoid too much writes without user consent v2: log preinit messages to /dev/kmsg v3: use non generic function name for logging, as /lib/preinit/ files are all sourced together in /etc/preinit v4: after a lot of discussion on the ML, use a uci config param v5: config param is now the path of the seed Signed-off-by: Etienne CHAMPETIER <champetier.etienne@gmail.com> Acked-by: Jo-Philipp Wich <jo@mein.io>
* kernel: Add option to make using filesystem ACL support the defaultDaniel Dickinson2016-06-304-1/+95
| | | | | | | This adds a configuration options that allows to make filesystem ACL support the default in the kernel, except for old nfs. Signed-off-by: Daniel Dickinson <openwrt@daniel.thecshore.com>
* package/kernel: Enable XATTR by defaultDaniel Dickinson2016-06-301-1/+3
| | | | | | | | OpenWrt enables XATTR support pretty much universally, therefore for filesystems that a loaded as modules also enable XATTR support so that there are no unexpected missing capabilities. Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
* e2fsprogs: fix build problem with very old libmagicHauke Mehrtens2016-06-301-0/+25
| | | | | | | | The libmagic shipped with RedHat 5 does not define MAGIC_NO_CHECK_ELF and MAGIC_NO_CHECK_COMPRESS. e2fsprogs should check for that, otherwise the build will fail. Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
* prism54-firmware: add also other p54 firmware to own packageHauke Mehrtens2016-06-302-47/+74
| | | | | | Extract the other p54 firmware files into the prism54-firmware package. Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
* firmware: extract prism54-firmware into own packageHauke Mehrtens2016-06-302-16/+40
| | | | | | | | | | | | | Instead of downloading the firmware for prism54 devices in the wireless.mk do it in an extra package Makefile. To ship the complete source code Intel ships our modified OpenWrt/LEDE + the content of the dl directory. We do not want to have any files in the dl/ directory which are not needed to build our images. The prism54 gets downloaded every time independently of building kmod-net-prism54 or not. When it is in a own package it only gets downloaded when the firmware package is selected. Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
* ramips: set correct LAN/WAN MAC addresses on DIR-860L B1Matthias Schiffer2016-06-301-0/+4
| | | | | Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net> Reviewed-by: Jo-Philipp Wich <jo@mein.io>
* ramips: add button support and make LEDs known to userspace for DIR-860L B1Matthias Schiffer2016-06-303-0/+16
| | | | | Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net> Reviewed-by: Jo-Philipp Wich <jo@mein.io>
* ramips: fix fixseama call on first bootMatthias Schiffer2016-06-301-3/+3
| | | | | | | | | | | | | Commit "kernel: mtdsplit: calculate kernel partition precisely for Seama" changed the kernel partition to only contain the kernel itself and not the Seama header. Adjust the fixseama call to match what is used on brcm53xx. This fixes failing to boot a second time after flashing the factory image on the affected devices. Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net> Reviewed-by: Jo-Philipp Wich <jo@mein.io>
* odhcp6c: Upstep to latest versionHans Dedecker2016-06-301-2/+2
| | | | | | | | | Following fixes are included in the latest version: -Script is launched with incorrect action -Possible buffer overflows -Lots of minor bugfixes Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
* kmod-sched-cake: Switch to COBALT algorithmKevin Darbyshire-Bryant2016-06-301-7/+5
| | | | | | | | COBALT is a hybrid codel/blue algo combining best elements of both. Exhibits improved behaviour in presence of abuse from unresponsive flows handled by 'blue', whereas responsive flows are still handled by codel. Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
* iproute2: cake AQM prepare tc for COBALT algorithmKevin Darbyshire-Bryant2016-06-302-11/+14
| | | | | | | | Cake AQM is experimenting with a codel/blue hybrid AQM COBALT instead of just using codel alone. This patch updates tc to cope with some new stats produced by COBALT. Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
* dnsmasq: Add broken realtime clock build switch in full variantHans Dedecker2016-06-301-3/+8
| | | | | | | | | | | | | By default dnsmasq uses the time function; which returns the time since Epoch; to retrieve the current time. On boards which have no realtime clock this can lead to side effects when the time is synced via ntp as the "time wrap" forces dhcp leases to be considered as expired. By enabling the broken realtime clock build switch dnsmasq uses the times utility which returns the number of clock tick. Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> [Jo-Philipp Wich: change symbol name, add sym to PKG_CONFIG_DEPENDS] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* rpcd: iwinfo plugin fixesJo-Philipp Wich2016-06-301-2/+2
| | | | | | | - Expose supported HT rate information in info call - Zero out ccode buffer when listing countries Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* kmod-bmp085: add dependency on !LINUX_3_18 !LINUX_4_1Alexander Couzens2016-06-291-1/+1
| | | | | | | 93d5629a introduced a build failure on older platforms (<4.4) because bmp085 is a boolean and not a tristate. Signed-off-by: Alexander Couzens <lynxis@fe80.eu>
* modules: add BMP085 pressure sensorDirk Neukirchen2016-06-291-0/+48
| | | | | | | | | | | | | | | add BMP085 and BMP180 pressure sensors this driver supports the SPI and I2C and older chips (BMP280 is supported by iio subsystem) issue found when cleaning up omap/config found while writing this patch that a similar patch was submitted in June/July 2014 but not integrated only compile tested Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>
* mac80211: fix skb size calculation in 4addr mode (FS#24)Jo-Philipp Wich2016-06-281-0/+11
| | | | | | | | | | | | | | | | | | | | | | | | | The PDU length of incoming LLC frames is set to the total skb payload size in __ieee80211_data_to_8023() of net/wireless/util.c which incorrectly includes the length of the IEEE 802.11 header. The resulting LLC frame header has a too large PDU length, causing the llc_fixup_skb() function of net/llc/llc_input.c to reject the incoming skb, effectively breaking STP. Solve the problem by properly substracting the IEEE 802.11 frame header size from the PDU length, allowing the LLC processor to pick up the incoming control messages. Special thanks to Gerry Rozema for tracking down the regression and proposing a suitable patch. Fixes FS#24. References: https://bugs.lede-project.org/index.php?do=details&task_id=24 Reported-by: Gerry Rozema <gerryr@rozeware.com> Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* base-files: use LEDE NTP vendor poolJo-Philipp Wich2016-06-282-5/+5
| | | | | | The vendor NTP pool for the LEDE project got approved, so switch to it now. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* openvpn: fix missing cipher list for polarssl in v2.3.11Jo-Philipp Wich2016-06-282-1/+43
| | | | | | | | | | | Upstream OpenSSL hardening work introduced a change in shared code that causes polarssl / mbedtls builds to break when no --tls-cipher is specified. Import the upstream fix commit as patch until the next OpenVPN release gets released and packaged. Reported-by: Sebastian Koch <seb@metafly.info> Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* lldpd: Use /etc/os-release instead of /etc/openwrt_*Daniel Dickinson2016-06-272-43/+4
| | | | | | | | | With the addition of /etc/os-release patching lldpd to use /etc/openwrt_release and to have the initscript use /etc/openwrt_release and/or /etc/openwrt_version becomes unnecessary. Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
* ar71xx: further legacy image build fixesJo-Philipp Wich2016-06-271-1/+6
| | | | | | | - Add missing macro to trigger the generation of 64k padded squashfs images - Revert Zcomax image generation to use the prepared 64k squashfs image Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* Revert "lantiq: enable SMP for XRX200"Felix Fietkau2016-06-271-19/+0
| | | | | | | | | This reverts commit cc3bfdb62f941dff3e2983591c78b6d39ca8d88a. Apparently the ethernet driver is not SMP safe, as reported in https://bugs.lede-project.org/index.php?do=details&task_id=27 Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: disable pdata->use_flow_control for QCA9558Felix Fietkau2016-06-271-1/+0
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: rename ethernet pdata->builtin_switch to use_flow_controlFelix Fietkau2016-06-273-8/+8
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: merge profiles into image building codeJo-Philipp Wich2016-06-2759-2503/+959
| | | | | | | | | | | - Remove old style device profiles and convert them to device definitions within the image building code - Fix the legacy build macros for the changed eval depth in the legacy image build wrapper Signed-off-by: John Crispin <john@phrozen.org> Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* kernel: fix missing break in ubi auto-mounting patchHauke Mehrtens2016-06-273-4/+7
| | | | | Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> Reviewed-by: Jo-Philipp Wich <jo@mein.io>
* kernel: remove igb: Fix Null-pointer dereference patchHauke Mehrtens2016-06-263-120/+0
| | | | | | | This patch is already included in the Linux mainline kernel since v3.15, remove it from LEDE, see the lines directly before this patch. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* kernel: remove full cache flush in fuse_copy_do() for MIPSHauke Mehrtens2016-06-264-97/+1
| | | | | | | | | | | | | | | | | | | | | | | | This patch was introduced in commit r16412 for the brcm47xx target only and then moved to generic in commit r32395. It was initially added because of ticket #5186 and should fix some problems with fuse file systems and MIPS caches. The commit comment in r32395 says that this a generic problem in MIPS CPUs, but does not name any specifics about that. There was a fix added to kernel 2.6.21 in commit commit 7575a49f20 "[MIPS] Implement flush_anon_page()." that should fix this problem, but that was already available before both commits were done to OpenWrt. I just tested fuse with ntfs.3g without this patch on a BCM4704 (BMIPS3300 V0.6) SoC and haven't seen any problems. Someone reported that removing this patch improves some fuse operations by 5 times on some modern MIPS cores. My test was only a simple "dd if=/dev/zero of=/mnt/zero bs=5000" to an USB stick. This patch removes the patch to OpenWrt, because I assume that it is not needed any more and Felix, the orginal author, also thinks so. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* kernel: remove one of two patches deactivating broken vdso support on mipsHauke Mehrtens2016-06-261-9/+0
| | | | | | | The patch target/linux/generic/patches-4.4/206-mips-disable-vdso.patch should be sufficient. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* kernel: update to version 4.4.14Hauke Mehrtens2016-06-2647-1054/+561
| | | | | | | | | Changelog: https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.14 Some manual changes to target/linux/generic/patches-4.4/610- netfilter_match_bypass_default_checks.patch were needed. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* Revert "ar71xx: prevent spurious ethernet resets from dma hang check false ↵Felix Fietkau2016-06-262-6/+5
| | | | | | positives" This reverts commit 3d58d7f053eae83b59baf5c8b8a58da78653f605.
* libnetfilter_queue: fix checksum computationAlin Năstac2016-06-261-0/+113
| | | | | | | | | | | There are 2 issues fixed by this patch: - UDP checksum is computed incorrectly, the used pseudo IP header contains transport protocol 6 iso 17 - on big endian arches the UDP/TCP checksum is incorrectly computed when payload length is odd Signed-off-by: Alin Nastac <alin.nastac@gmail.com> Signed-off-by: Felix Fietkau <nbd@nbd.name> [refresh patch]
* build: Adds the ability to disable personal initramfs build for target deviceSergey Sergeev2016-06-261-1/+1
| | | | | | | | If KERNEL_INITRAMFS := in the target/linux/*/image/Makefile->Device/%NAME% section is set to '' then personal initramfs file for this target device will not be created. This var is similar to the Device/Build/kernel KERNEL_INSTALL := Signed-off-by: Sergey Sergeev <adron@yapic.net>
* ar71xx: prevent spurious ethernet resets from dma hang check false positivesFelix Fietkau2016-06-262-5/+6
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ar71xx: enable flow control for ethernet MACs with built-in switchFelix Fietkau2016-06-263-1/+11
| | | | | | | | Should fix LAN speed issues on some devices. This is an updated version of the previously reverted commit with the same name. It improves the check for MACs connected to a built-in switch Signed-off-by: Felix Fietkau <nbd@nbd.name>
* linux-firmware: fix md5sumHauke Mehrtens2016-06-251-1/+1
| | | | | | | | The copy on the mirror has a different md5sum as specified in this package Makefile. The content of the file on the mirror is the same as in the checkout so just update our md5sum. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* rtl8192su-firmware: move firmware to own packageHauke Mehrtens2016-06-252-17/+8
| | | | | | | Instead of downloading the firmware from some website take it from linux-firmware package and do not download it separately any more. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* rtl8192se-firmware: fix package buildHauke Mehrtens2016-06-251-1/+1
| | | | | | | The package did not pack the firmware because of a problem which looks like a copy and past error. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* Revert "ar71xx: fix legacy image building"John Crispin2016-06-2359-938/+2492
| | | | | | | | | | | | | | This reverts commit 59e98b27c93d282edb62fad756fd1c1e587c067f. and Revert "ar71xx: merge profiles into image building code" This reverts commit 636089ead6864364798ac988299429d171051c0e. these are still causing issues Signed-off-by: John Crispin <john@phrozen.org>
* ebtables: fix segmentation fault due to uninitialized extension dataJo-Philipp Wich2016-06-242-1/+250
| | | | | | | | | | | | | | | | | | | The ebtables code relies on the `-nostartfiles` linker argument to execute the extension modules' `_init()` functions automatically which is not working reliably across all supported targets and gcc versions. Running an ebtables executable linked this way just crashes with a segmentation fault at runtime on program startup, e.g. on ARM architectures. In order to fix the issue ... - remove the use of the -nostartfiles linker flag - rename the init procedures to a generic name without implicit semantics - explicitely annotate those init procedures as constructors The patch has been taken from the Alpine Linux distribution at http://git.alpinelinux.org/cgit/aports/tree/main/ebtables/fix-extension-init.patch Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* base-files: sysfixtime no longer exclude dnsmasq.timeKevin Darbyshire-Bryant2016-06-241-1/+1
| | | | | | | | dnsmasq's dnssec time checking method now uses a ntp hotplug mechanism, therefore dnsmasq.time is redudant and no longer needs to be explicitly excluded from sysfixtime. Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
* dnsmasq: dnssec time handling uses ntpd hotplugKevin Darbyshire-Bryant2016-06-244-25/+26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change dnsmasq's dnssec time check handling to use time validity indicated by ntpd rather than maintaining a cross boot/upgrade /etc/dnsmasq.time timestamp file. This saves flash device wear. If ntpd client is configured in uci and you're using dnssec, then dnsmasq will not check dnssec timestamp validity until ntpd hotplug indicates sync via a stratum change. The ntpd hotplug leaves a status flag file to indicate to dnsmasq.init that time is valid and that it should now start in 'check dnssec timestamp valid' mode. If ntpd client is not configured and you're using dnssec, then it is presumed you're using an alternate time sync mechanism and that time is correct, thus dnsmasq checks dnssec timestamps are valid from 1st start. Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk> V2 - stratum & step ntp changes indicate time is valid V3 - on initial flag file step signal dnsmasq with SIGHUP if running V4 - only accept step ntp changes. Accepting both stratum & step could result in unpleasant script race conditions V5 - Actually only accepting stratum is the correct thing to do after further testing V6 - improve handling of non busybox ntpd if sysntpd not executable dnsmasq checks dnssec timestamps else sysntp script disabled - look for timestamp file - allows external mechanism to use hotplug flag file sysntp script enabled & uci ntp enabled - look for timestamp file sysntp script enabled & uci ntp disabled - dnsmasq checks dnssec timestamps fi
* base-files: Add standard os-release fileDaniel Dickinson2016-06-245-6/+48
| | | | | | | | | | | /etc/os-release is the standard distribution release information file, therefore add it (and image configuration options for fields not previously present in LEDE). Once it is deemed reasonable the non-standard openwrt_release, openwrt_version, and device_info files could be removed (that is with this patch we consider them deprecated in favour of the standard file). Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
* ar71xx: fix legacy image buildingJo-Philipp Wich2016-06-241-20/+14
| | | | | | | | | | | | | | | | | | After the conversion from legacy device profiles to the newer profile information embedded in the image building code, the legacy recipes got triggered twice with different eval depths, leading to shell syntax errors when processing certain images. The double processing was caused by the remaining Image/Build macro in legacy.mk which serves as main entry point for the new style image build code in conjunction with the newly introduced LegacyDevice/* macros which caused the legacy image build fallback code to kick in. In order to fix the issue, rework all legacy macros to work under the legacy image build wrapper and remove the Image/Build macro of legacy.mk to prevent legacy profiles getting executed in the context of the new build code. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* tools: e2fsprogs: bump to 1.43.1Kevin Darbyshire-Bryant2016-06-225-16/+6
| | | | | | Bump e2fsprogs to v1.43.1 & refresh patches Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
* ar71xx: merge profiles into image building codeJohn Crispin2016-06-2259-2472/+924
| | | | Signed-off-by: John Crispin <john@phrozen.org>
* ramips: add suport for ZBT APE522IIRoger Pueyo Centelles2016-06-226-0/+161
| | | | | | | | | The ZBT APE522II is a dual-radio outdoor CPE based on the MT7620a SoC. It has 64 MB RAM, 8 MB flash, 2 Fast Ethernet ports via internal switch (one with 802.3af 48V PoE support), a 802.11b/g/n SoC 2.4 GHz radio and an 802.11a/n/ac MT7612E-based 5 GHz radio. Signed-off-by: Roger Pueyo Centelles <roger.pueyo@guifi.net>
* mountd: update to latest git HEADJohn Crispin2016-06-221-2/+2
| | | | | | adds HFS+ support Signed-off-by: John Crispin <john@phrozen.org>
* ipq806x: enable ieee80211 phy hotplug and patch macaddressAdrian Panella2016-06-221-0/+23
| | | | | | | | Calibration data for QCA99x0 in this device has bogus macaddress. The data cannot be modified directly, as it breaks checksum control. Instead change the macaddress from phy add hotplug event. Signed-off-by: Adrian Panella <ianchi74@outlook.com>