openwrt/staging/blocktrron.git
7 years agoiptables: Fix target TRACE issue
Martin Wetterwald [Thu, 12 Jan 2017 14:06:00 +0000 (15:06 +0100)]
iptables: Fix target TRACE issue

The package kmod-ipt-debug builds the module xt_TRACE, which allows
users to use '-j TRACE' as target in the chain PREROUTING of the table
raw in iptables.

The kernel compilation flag NETFILTER_XT_TARGET_TRACE is also enabled so
that this feature which is implemented deep inside the linux IP stack
(for example in sk_buff) is compiled.

But a strace of iptables -t raw -I PREROUTING -p icmp -j TRACE reveals
that an attempt is made to read /usr/lib/iptables/libxt_TRACE.so, which
fails as this dynamic library is not present on the system.

I created the package iptables-mod-trace which takes care of that, and
target TRACE now works!

https://dev.openwrt.org/ticket/16694
https://dev.openwrt.org/ticket/19661

Signed-off-by: Martin Wetterwald <martin.wetterwald@corp.ovh.com>
[Jo-Philipp Wich: also remove trace extension from builtin extension list
                  and depend on kmod-ipt-raw since its required for rules]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
Tested-by: Enrico Mioso <mrkiko.rs@gmail.com>
7 years agokernel: enable CONFIG_ADVISE_SYSCALLS
Rosen Penev [Sun, 15 Oct 2017 00:07:19 +0000 (17:07 -0700)]
kernel: enable CONFIG_ADVISE_SYSCALLS

Without this, posix_[fm]advise does not work. This causes issues with
btrfs-progs, which uses fadvise to drop caches.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
7 years agoath10k-firmware: qca9888 firmware: remove board.bin
Henryk Heisig [Mon, 3 Jul 2017 21:59:54 +0000 (23:59 +0200)]
ath10k-firmware: qca9888 firmware: remove board.bin

Signed-off-by: Henryk Heisig <hyniu@o2.pl>
7 years agoar71xx: fix board.bin used by QCA9886 in Archer C58/C59/C60
Henryk Heisig [Thu, 29 Jun 2017 13:38:22 +0000 (15:38 +0200)]
ar71xx: fix board.bin used by QCA9886 in Archer C58/C59/C60

Signed-off-by: Henryk Heisig <hyniu@o2.pl>
7 years agomac80211: backport fixes for fix for CVE-2017-13080
Jonas Gorski [Thu, 26 Oct 2017 13:31:15 +0000 (15:31 +0200)]
mac80211: backport fixes for fix for CVE-2017-13080

Backport two fixes for the fix of CVE-2017-13080, preventing side channel
attacks and making it work for TKIP.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
7 years agoar71xx: Archer C58/C59/C60 fix qca9886 wireless interface
Henryk Heisig [Thu, 29 Jun 2017 13:20:31 +0000 (15:20 +0200)]
ar71xx: Archer C58/C59/C60 fix qca9886 wireless interface

This commit fix 5GHz wireless interface used in Archer C58/C59/C60v1
and set correctly MAC address on this interface.

Signed-off-by: Henryk Heisig <hyniu@o2.pl>
7 years agotreewide: do not use IMG_PREFIX in Image/Prepare
Jonas Gorski [Fri, 13 Oct 2017 12:21:53 +0000 (14:21 +0200)]
treewide: do not use IMG_PREFIX in Image/Prepare

IMG_PREFIX can be modified in ImageBuilder by passing EXTRA_IMAGE_NAME
on command line, but Image/Prepare is not run in ImageBuilder. This
causes missing files when IMG_PREFIX is used for target file names in
Image/Prepare, then as source file names in Image/BuildKernel or
Image/Build.

Fix this by using a fixed output file name in Image/Prepare, and copy to
the expected file name in Image/BuildKernel instead, which is run by
ImageBuilder.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
7 years agohostapd: fix up ubus support
John Crispin [Sat, 21 Oct 2017 20:02:31 +0000 (22:02 +0200)]
hostapd: fix up ubus support

Signed-off-by: John Crispin <john@phrozen.org>
7 years agoramips: remove erroneous "wdt rst" DTS entries
Kevin Darbyshire-Bryant [Wed, 25 Oct 2017 08:21:35 +0000 (09:21 +0100)]
ramips: remove erroneous "wdt rst" DTS entries

Remove reference to pinmux group "wdt rst" on EW1200, ZBT-WG2626 and
ZBT-WG3526 devices. "wdt rst" is a pinmux function and not a pinmux
group.

Fixes the following error message during boot:

  rt2880-pinmux pinctrl: invalid group "wdt rst" for function "gpio"

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
7 years agoltq-xdsl-app: script style nit
Kevin Darbyshire-Bryant [Wed, 25 Oct 2017 09:39:23 +0000 (10:39 +0100)]
ltq-xdsl-app: script style nit

Fix missing space style nit.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
7 years agoipq806x: fix Zyxel NBG6817 WiFi button
Tolga Cakir [Tue, 24 Oct 2017 20:03:33 +0000 (22:03 +0200)]
ipq806x: fix Zyxel NBG6817 WiFi button

Zyxel NBG6817 features a WiFi button, which becomes functional by setting
correct GPIO. It is a switch-type button, so it emits KEY_RFKILL on each ON
and OFF state. This is achieved by setting input-type to EV_SW.

Signed-off-by: Tolga Cakir <tolga@cevel.net>
7 years agoar71xx: fix LED names for GL-AR150
Paul Wassi [Tue, 24 Oct 2017 12:23:58 +0000 (14:23 +0200)]
ar71xx: fix LED names for GL-AR150

Add the respective colour to the LED's names for the GL-AR150 to be conform
to the kernel. Also add netdev triggers for the LAN and WAN LED.

Signed-off-by: Paul Wassi <p.wassi@gmx.at>
7 years agoar71xx: base-files: alphabetical reordering
Paul Wassi [Tue, 24 Oct 2017 08:58:39 +0000 (10:58 +0200)]
ar71xx: base-files: alphabetical reordering

Re-order the cases of base-files/* alphabetically.
Also merge some cases in diag.sh

Signed-off-by: Paul Wassi <p.wassi@gmx.at>
7 years agompc85xx: use image metadata
Mathias Kresin [Tue, 24 Oct 2017 04:57:29 +0000 (06:57 +0200)]
mpc85xx: use image metadata

Append and enforce image metadata. Remove the device specific image
checks, they are replaced by image metadata.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agompc85xx: use the generic board detect
Mathias Kresin [Mon, 15 May 2017 21:59:25 +0000 (23:59 +0200)]
mpc85xx: use the generic board detect

Use the values populated by the generic board detect function. The
first compatible from the device tree source file will be the board
name in userspace. The model property from the device tree source file
will be the model name.

Change the board name where used in the userspace and drop the target
specific board detect, to use the generic one.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agompc85xx: fix TL-WDR4900 v1 compatible string
Mathias Kresin [Mon, 15 May 2017 21:52:02 +0000 (23:52 +0200)]
mpc85xx: fix TL-WDR4900 v1 compatible string

Use the vendor as it is listed in vendor.txt. Use a standard lower case
compatible string.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agompc85xx: update HiveAP-330 dts
Chris Blake [Fri, 20 Oct 2017 15:32:37 +0000 (10:32 -0500)]
mpc85xx: update HiveAP-330 dts

initramfs is not the proper name for this, as it stores a boot ramdisk
and not a filesystem. Update the name to reflect it's usage correctly.

If CMDLINE_OVERRIDE is enabled, the chosen bootargs aren't used at all.
Drop them from the device tree source file to not cause confusion.

Remove the noinitrd bootarg. Due to the empty ramdisk this parameter
isn't required any longer:

  [    0.000000] Initrd not found or empty - disabling initrd

Use the LEDE mtd-mac-address* device tree properties to set the interfaces
MAC-Addresses.

Signed-off-by: Chris Blake <chrisrblake93@gmail.com>
Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agompc85xx: cleanup kernel config
Mathias Kresin [Sat, 21 Oct 2017 13:44:30 +0000 (15:44 +0200)]
mpc85xx: cleanup kernel config

Move the kernel config changes added with the HiveAP 330 to the
subtarget the board belongs to instead of changing the target kernel
config.

While at it, move the TL_WDR4900_V1 config symbol to the containing
subtarget and disable boards we don't support.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agompc85xx: use new build code style
Chris Blake [Fri, 20 Oct 2017 17:36:25 +0000 (12:36 -0500)]
mpc85xx: use new build code style

The following moves the mpc85xx target (generic & P1020) to the new
build code style.

Compile & Flash tested on an Aerohive HiveAP-330.

Signed-off-by: Chris Blake <chrisrblake93@gmail.com>
Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agoramips: don't enable usb for the WT3020-4M
Mathias Kresin [Mon, 23 Oct 2017 06:17:44 +0000 (08:17 +0200)]
ramips: don't enable usb for the WT3020-4M

That device does not have a USB port. It as the same board as the
WT3020-8M, but without soldered USB port port. Also the case lacks the
opening for the port.

Reported-by: Alberto Bursi <alberto.bursi@outlook.it>
Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agoramips: fix default usb support for nexx wt3020-8M
Alberto Bursi [Sat, 21 Oct 2017 21:53:49 +0000 (23:53 +0200)]
ramips: fix default usb support for nexx wt3020-8M

the nexx wt3020-8M has a usb 2.0 port,
add usb 2.0 support packages to its default package list.

Signed-off-by: Alberto Bursi <alberto.bursi@outlook.it>
7 years agoltq-adsl-app: add more script notifications
Mathias Kresin [Mon, 16 Oct 2017 19:08:26 +0000 (21:08 +0200)]
ltq-adsl-app: add more script notifications

Backport HANDSHAKE and TRAINING notification from ltq-vdsl-app. It
unifies the dsl led blinking pattern accross all subtargets and allows
to get the current line status from the dsl led.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agoltq-atm: remove xrx200 special handling
Mathias Kresin [Sun, 15 Oct 2017 10:34:33 +0000 (12:34 +0200)]
ltq-atm: remove xrx200 special handling

The lantiq ATM driver is load for all subtargets on demand now. There
is not need to handle the xrx200 ATM driver in a special way any
longer.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agolantiq: xway: rename nas0/ptm0 to dsl0
Mathias Kresin [Sat, 14 Oct 2017 18:52:22 +0000 (20:52 +0200)]
lantiq: xway: rename nas0/ptm0 to dsl0

This change makes it possible to configure the wan/dsl ppp interface
settings independantly from the used TC-Layer (ATM/PTM).

By using dsl0 as interface name as for the xrx200 we can get rid of a
few conditionals which were introduced because of the different default
TC-Layer in xway and xrx200.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agoltq-adsl-app: use notification based ATM/PTM driver load
Mathias Kresin [Sun, 15 Oct 2017 10:29:22 +0000 (12:29 +0200)]
ltq-adsl-app: use notification based ATM/PTM driver load

This patch removes the fixed atm/ptm driver loading and
switches to notification based driver loading.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agoltq-adsl-app: convert init script to procd
Mathias Kresin [Sun, 15 Oct 2017 08:33:29 +0000 (10:33 +0200)]
ltq-adsl-app: convert init script to procd

Use the procd features for the init script.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agolantiq: match default adsl annex and firmware
Mathias Kresin [Mon, 16 Oct 2017 21:25:04 +0000 (23:25 +0200)]
lantiq: match default adsl annex and firmware

Set a default Annex matching the the annex of the selected adsl
firmware.

Set Annex B for xrx200 board which are known to have an ADSL hybrid for
Annex B.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agolantiq: add missing default lan interface
Mathias Kresin [Wed, 25 Oct 2017 06:32:00 +0000 (08:32 +0200)]
lantiq: add missing default lan interface

With removing the boards from the the default case to fix the xDSL WAN
MAC-Address, the setting for the default LAN interface wasn't added.

Fixes: 92a12c434ca3 ("lantiq: fix avm fritz box mac addresses")
Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agobcm53xx: Fix Generic profile description
Florian Fainelli [Wed, 25 Oct 2017 01:08:25 +0000 (18:08 -0700)]
bcm53xx: Fix Generic profile description

Fix the sentence describing the bcm53xx generic profile.

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agoorion: Switch to 4.9 kernel
Florian Fainelli [Wed, 25 Oct 2017 00:46:15 +0000 (17:46 -0700)]
orion: Switch to 4.9 kernel

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agoorion: Add support for 4.9 kernel
Florian Fainelli [Wed, 25 Oct 2017 00:46:02 +0000 (17:46 -0700)]
orion: Add support for 4.9 kernel

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agoinclude: Silence external kernel version checks
Florian Fainelli [Tue, 24 Oct 2017 23:59:15 +0000 (16:59 -0700)]
include: Silence external kernel version checks

During the initial configuration phases, we have not set-up the kernel
source directory, which would lead to such messages:

cat:
/local/users/fainelli/openwrt/trunk/build_dir/target-x86_64_musl/linux-uml/linux-4.9.58/include/config/kernel.release:
No such file or directory

Just silence it, since it does not create a functional problem.

Fixes: 8e0e0e7d8bfb ("include: Determine MODULES_DIR correctly for external/git kernels")
Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agouml: Switch to 4.9 kernel
Florian Fainelli [Tue, 24 Oct 2017 22:10:05 +0000 (15:10 -0700)]
uml: Switch to 4.9 kernel

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agouml: Add 4.9 kernel patches
Florian Fainelli [Sun, 22 Oct 2017 21:56:12 +0000 (14:56 -0700)]
uml: Add 4.9 kernel patches

102-pseudo-random-mac.patch required an update to the new style asynchronous
crypto

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agopending-4.9: 610-netfilter_match_bypass_default_check: fix 32bit compat layer
Hans Dedecker [Tue, 24 Oct 2017 20:08:54 +0000 (22:08 +0200)]
pending-4.9: 610-netfilter_match_bypass_default_check: fix 32bit compat layer

Patch 610-netfilter_match_bypass_default_check added an extra flag IPT_F_NO_DEF_MATCH
which is copied to user space in function copy_entries_to_user. The 32bit compat
layer function was missing the same logic to copy the flag IPT_F_NO_DEF_MATCH to
user space for a 64bit kernel and 32 bit user space.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
Signed-off-by: Thierry Dutre <thierry.dutre@dtsystems.be>
7 years agopending-4.4: 610-netfilter_match_bypass_default_check: fix 32bit compat layer
Hans Dedecker [Mon, 16 Oct 2017 09:29:55 +0000 (11:29 +0200)]
pending-4.4: 610-netfilter_match_bypass_default_check: fix 32bit compat layer

Patch 610-netfilter_match_bypass_default_check added an extra flag IPT_F_NO_DEF_MATCH
which is copied to user space in function copy_entries_to_user. The 32bit compat
layer function was missing the same logic to copy the flag IPT_F_NO_DEF_MATCH to
user space for a 64bit kernel and 32 bit user space.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
Signed-off-by: Thierry Dutre <thierry.dutre@dtsystems.be>
7 years agopending-3.18: 610-netfilter_match_bypass_default_check: fix 32bit compat layer
Hans Dedecker [Tue, 24 Oct 2017 14:46:53 +0000 (16:46 +0200)]
pending-3.18: 610-netfilter_match_bypass_default_check: fix 32bit compat layer

Patch 610-netfilter_match_bypass_default_check added an extra flag IPT_F_NO_DEF_MATCH
which is copied to user space in function copy_entries_to_user. The 32bit compat
layer function was missing the same logic to copy the flag IPT_F_NO_DEF_MATCH to
user space for a 64bit kernel and 32 bit user space.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
Signed-off-by: Thierry Dutre <thierry.dutre@dtsystems.be>
7 years agotools/squashfs: use host cflags
Felix Fietkau [Tue, 24 Oct 2017 11:22:09 +0000 (13:22 +0200)]
tools/squashfs: use host cflags

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agoar71xx: re-enable 4k sectors for the mikrotik subtargets
Felix Fietkau [Tue, 24 Oct 2017 10:33:46 +0000 (12:33 +0200)]
ar71xx: re-enable 4k sectors for the mikrotik subtargets

On RB91x (and possibly others), there is a small SPI flash to store boot
loader and configuration. It needs 4K sectors to be able to write the
configuration using rbcfg

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agoar71xx: fix mikrotik routerboard nand driver issues with linux 4.9
Felix Fietkau [Tue, 24 Oct 2017 10:30:48 +0000 (12:30 +0200)]
ar71xx: fix mikrotik routerboard nand driver issues with linux 4.9

The mtd device is now embedded inside the nand chip data structure

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agoar71xx: fix secondary gpio controller base values
Felix Fietkau [Tue, 24 Oct 2017 08:32:21 +0000 (10:32 +0200)]
ar71xx: fix secondary gpio controller base values

In 4.9, gpio count is rounded up to 32 due to the use of bgpio in the
ath79 gpio controller driver.
Fix base values in mach files to account for that

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agoar71xx: lzma loader use LTO
Julien Dusser [Wed, 19 Jul 2017 13:45:08 +0000 (15:45 +0200)]
ar71xx: lzma loader use LTO

Change the Makefile to use LTO for better code optimisations. Gains are
very low, only 270 bytes saved, but it's only Makefile changes.

Signed-off-by: Julien Dusser <julien.dusser@free.fr>
7 years agoar71xx: fix lzma loader performance issues
Julien Dusser [Wed, 19 Jul 2017 12:52:35 +0000 (14:52 +0200)]
ar71xx: fix lzma loader performance issues

Some bootloaders set a cache cohenrency to a very slow mode. Use code from
Linux kernel to set it to "Cacheable, noncoherent, write-back, write
allocate".

Perfomance impact is significant on TP-Link EAP245 board, kernel
decompression time fall from 33 seconds to less than 1.

Signed-off-by: Julien Dusser <julien.dusser@free.fr>
7 years agolibs/lzo: Reenable unaligned access on ARM, PPC, ...
Stefan Oberhumer [Wed, 31 May 2017 05:37:03 +0000 (07:37 +0200)]
libs/lzo: Reenable unaligned access on ARM, PPC, ...

Due a compiler bug on ARM targets
 ( https://gcc.gnu.org/bugzilla/show_bug.cgi?id=64516 )
unaligned access was disabled on all targets other than i386 and
x86_64 with commit 061319ec3dfe9b6d14af1286a1d9979db56048d7 .

A fix has been added to lzo-2.09 so it is not necessary to disable
unaligned access within the Makefile anymore.

Signed-off-by: Stefan Oberhumer <stefan@obssys.com>
7 years agokernel: fixup KARCH for powerpc64 builds
Florian Larysch [Thu, 3 Nov 2016 12:58:24 +0000 (13:58 +0100)]
kernel: fixup KARCH for powerpc64 builds

The kernel calls both ppc64 and ppc32 "powerpc", so we need to fixup
LINUX_KARCH when building with ARCH=powerpc64.

Signed-off-by: Florian Larysch <fl@n621.de>
7 years agoconfig: set ARCH if powerpc64 is selected in the configuration
Florian Larysch [Thu, 3 Nov 2016 12:46:23 +0000 (13:46 +0100)]
config: set ARCH if powerpc64 is selected in the configuration

Signed-off-by: Florian Larysch <fl@n621.de>
7 years agotarget: add cpu flags for powerpc64
Florian Larysch [Thu, 3 Nov 2016 14:54:19 +0000 (15:54 +0100)]
target: add cpu flags for powerpc64

Signed-off-by: Florian Larysch <fl@n621.de>
7 years agotoolchain: use glibc for powerpc64 builds
Florian Larysch [Thu, 3 Nov 2016 13:30:40 +0000 (14:30 +0100)]
toolchain: use glibc for powerpc64 builds

Neither uClibc nor musl currently have working support for powerpc64 in
big endian mode. Thus, default to using glibc for this architecture.

Signed-off-by: Florian Larysch <fl@n621.de>
7 years agotoolchain: remove powerpc64 feature
Florian Larysch [Thu, 3 Nov 2016 13:30:53 +0000 (14:30 +0100)]
toolchain: remove powerpc64 feature

The powerpc64 feature flag was introduced with the PS3 support, which
has been removed for quite a while and is now unused. Remove it and the
special biarch handling it triggered during the toolchain build.

Signed-off-by: Florian Larysch <fl@n621.de>
7 years agoinclude/site: add powerpc64 config
Florian Larysch [Thu, 3 Nov 2016 12:45:58 +0000 (13:45 +0100)]
include/site: add powerpc64 config

Signed-off-by: Florian Larysch <fl@n621.de>
Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agouboot-sunxi: Backport fix for stale CONFIG_SUNXIG_GMAC references
Florian Fainelli [Sat, 14 Oct 2017 20:24:07 +0000 (13:24 -0700)]
uboot-sunxi: Backport fix for stale CONFIG_SUNXIG_GMAC references

This backports the upstream commit fixing stale references to
CONFIG_SUNXI_GMAC which have been later replaced by CONFIG_SUN7I_GMAC.
This fixes the designware MAC pinmuxing on e.g: Lamobo R1.

Refresh patches while we are at it.

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agobcm53xx: Fix SmartRG SR400AC initramfs image
Florian Fainelli [Tue, 10 Oct 2017 03:50:27 +0000 (20:50 -0700)]
bcm53xx: Fix SmartRG SR400AC initramfs image

The SmartRG SR400AC CFE does not accept a TRX image, just a normal
binary image.

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agoinclude: Include new location for DT bindings
Florian Fainelli [Tue, 10 Oct 2017 03:33:34 +0000 (20:33 -0700)]
include: Include new location for DT bindings

Starting with commit d5d332d3f7e8 ("devicetree: Move include prefixes
from arch to separate directory") included in 4.12 and newer relocated
the dt-bindings directory, so account for that while passing CPPFLAGS
before DTC runs.

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
7 years agokernel: bump 4.9 to 4.9.58
Stijn Tintel [Sun, 22 Oct 2017 11:00:42 +0000 (14:00 +0300)]
kernel: bump 4.9 to 4.9.58

Refresh patches.
Compile-tested: ar71xx, octeon, x86/64.
Runtime-tested: octeon, x86/64.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agokernel: add kmod-iio-bmp280
Stijn Tintel [Wed, 18 Oct 2017 17:17:56 +0000 (20:17 +0300)]
kernel: add kmod-iio-bmp280

This driver supports the Bosch Sensortec BMP180/BMP280 pressure and
temperature sensors. It also supports the BME280 sensors with an
additional humidity channel.

Tested I2C and SPI modes with a BME280 sensor on a Raspberry Pi Zero W.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agokernel: move IIO modules to iio.mk
Stijn Tintel [Wed, 18 Oct 2017 17:13:27 +0000 (20:13 +0300)]
kernel: move IIO modules to iio.mk

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agobrcm2708: restore /boot/config.txt before reboot
Stijn Tintel [Sat, 21 Oct 2017 11:51:14 +0000 (14:51 +0300)]
brcm2708: restore /boot/config.txt before reboot

The Raspberry Pi bootloader reads configuration values from config.txt
in the boot partition. This file allows to specify the amount of memory
to assign to the GPU, the license keys for hardware MPEG-2 and VC-1
decoding, Device Tree parameters and overlays, and lots of other things.

Since sysupgrade only restores the configuration after booting the newly
flashed image, these values will not be active, even if sysupgrade would
save /boot/config.txt. To solve this, add the file to the files to be
backed up, and restore it in platform_copy_config, before reboot.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agoar71xx: deactivate some boards with too small kernel partitions
Hauke Mehrtens [Sun, 22 Oct 2017 21:10:08 +0000 (23:10 +0200)]
ar71xx: deactivate some boards with too small kernel partitions

This affects the following boards:
 * dr344
 * archer-c58-v1
 * archer-c60-v1
 * tl-wr902ac-v1
 * tl-wr942n-v1
 * ubnt-uap-pro
 * ubnt-unifi-outdoor-plus

The build fails for any of these boards because the resulting kernel
image will not fit into the kernel partition.

When CONFIG_KERNEL_KALLSYMS  is not set it could be that the kernel will
fit onto the board again, this is the case for release images.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agoar71xx: use kernel 4.9 by default
Hauke Mehrtens [Sun, 22 Oct 2017 13:20:39 +0000 (15:20 +0200)]
ar71xx: use kernel 4.9 by default

Kernel 4.9 support was added about 2 weeks ago and we haven't seen any
major regression so far. This patch was not ported to kernel 4.9, this
needs some additional work:
821-serial-core-add-support-for-boot-console-with-arbitr.patch

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agoat91: remove unused at91part driver
Hauke Mehrtens [Sun, 15 Oct 2017 17:06:31 +0000 (19:06 +0200)]
at91: remove unused at91part driver

There is no patch in the kernel 4.4 and 4.9 patches which adds this
driver to the build system.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agoat91: update to kernel 4.9
Hauke Mehrtens [Sun, 15 Oct 2017 17:06:08 +0000 (19:06 +0200)]
at91: update to kernel 4.9

This brings the at91 target to kernel 4.9.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Tested-by: Ben Whitten <ben.whitten@gmail.com>
7 years agokernel: add config option
Hauke Mehrtens [Sun, 15 Oct 2017 17:21:38 +0000 (19:21 +0200)]
kernel: add config option

When the kmod-at91-adc package is activated for the at91 target the new
option CONFIG_AT91_SAMA5D2_ADC is selectable and not handled. Add this
option to the kernel 4.9 configuration.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agonetifd: bump to git HEAD version (FS#1037)
Hans Dedecker [Thu, 19 Oct 2017 19:36:25 +0000 (21:36 +0200)]
netifd: bump to git HEAD version (FS#1037)

0f96606 proto: add point-to-point IPv4 address config support (FS#1037)
1ee788d ubus: display the point-to-point IPv4 address

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
7 years agoar71xx: add support for TP-LINK Archer C7 v4
Felix Fietkau [Tue, 25 Jul 2017 11:32:47 +0000 (13:32 +0200)]
ar71xx: add support for TP-LINK Archer C7 v4

TP-Link Archer C7 v4 is a dual-band AC1750 router, based on Qualcomm/Atheros
QCA9561+QCA9888.

Specification:

- 775/650/258 MHz (CPU/DDR/AHB)
- 128 MB of RAM (DDR2)
- 16 MB of FLASH (SPI NOR)
- 3T3R 2.4 GHz
- 3T3R 5 GHz
- 5x 10/100/1000 Mbps Ethernet
- 7x LED, 2x button
- UART header on PCB

Flash instruction:
1. Upload lede-ar71xx-generic-archer-c7-v4-squashfs-factory.bin via Web interface

Flash instruction using TFTP recovery:
1. Set PC to fixed ip address 192.168.0.66
2. Download lede-ar71xx-generic-archer-c7-v4-squashfs-factory.bin
and rename it to ArcherC7v4_tp_recovery.bin
3. Start a tftp server with the file tp_recovery.bin in its root directory
4. Turn off the router
5. Press and hold Reset button
6. Turn on router with the reset button pressed and wait ~15 seconds
7. Release the reset button and after a short time
the firmware should be transferred from the tftp server
8. Wait ~30 second to complete recovery.

Flash instruction under U-Boot, using UART:

1. tftp 0x81000000 lede-ar71xx-...-sysupgrade.bin
2. erase 0x9f040000 +$filesize
3. cp.b $fileaddr 0x9f040000 $filesize
4. reset

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agouboot-envtools: add support for Nokia WI2A-AC200i
Felix Fietkau [Tue, 27 Jun 2017 21:56:15 +0000 (23:56 +0200)]
uboot-envtools: add support for Nokia WI2A-AC200i

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agoar71xx: add support for Nokia WI2A-AC200i
Felix Fietkau [Tue, 27 Jun 2017 21:26:03 +0000 (23:26 +0200)]
ar71xx: add support for Nokia WI2A-AC200i

Specifications:
 - SoC: Qualcomm QCA9558 (720 MHz)
 - RAM: 256MB
 - Storage: 1MB NOR, 128 MB NAND flash
 - Ethernet: 1x1000M

Installation:
 1. Connect to serial console on the board
 2. Boot initramfs image over u-boot
 3. Copy image to the device and run sysupgrade

Installation without serial console is not supported at this time

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agobrcm47xx: use kernel 4.9 by default
Hauke Mehrtens [Wed, 18 Oct 2017 19:53:31 +0000 (21:53 +0200)]
brcm47xx: use kernel 4.9 by default

Kernel 4.9 is now working on the brcm47xx boards, we just recently fixed
the problem that some boards did not boot at all, by changing the memory
regions used to relocate the kernel to in the loader.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agobroadcom-wl: fix compile with kernel 4.9
Hauke Mehrtens [Wed, 18 Oct 2017 20:55:59 +0000 (22:55 +0200)]
broadcom-wl: fix compile with kernel 4.9

ENOENT could not be found by the compiler when compiling again kernel
4.9.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agokernel: fix ftrace support on 4.9
Felix Fietkau [Wed, 18 Oct 2017 20:46:29 +0000 (22:46 +0200)]
kernel: fix ftrace support on 4.9

When porting the kernel patches from 4.4 to 4.9, they were missing a
small chunk that ensures that ftrace sections are kept in the vmlinux
image, even when linked with --gc-sections

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agolantiq: ARV752DPW22: fix wireless mac address
Mathias Kresin [Wed, 18 Oct 2017 04:59:38 +0000 (06:59 +0200)]
lantiq: ARV752DPW22: fix wireless mac address

The ARV752DPW22 has the same generic mac address in the EEPROM as it
was already noticed for other lantiq boards using a ralink wireless.

Use the base mac address from the boardconfig partition as it is done
by the stock firmware.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agolantiq: ARV752DPW22: set correct wireless led trigger
Mathias Kresin [Mon, 16 Oct 2017 20:36:35 +0000 (22:36 +0200)]
lantiq: ARV752DPW22: set correct wireless led trigger

The ARV752DPW22 has a ralink based wireless and can not use the ath9k
only phy0tpt trigger.

Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agoomap: clean up configuration
Hauke Mehrtens [Sun, 15 Oct 2017 19:58:22 +0000 (21:58 +0200)]
omap: clean up configuration

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Acked-by: Alexander Couzens <lynxis@fe80.eu>
7 years agoomap: Add support for kernel 4.9
Hauke Mehrtens [Sun, 15 Oct 2017 19:43:59 +0000 (21:43 +0200)]
omap: Add support for kernel 4.9

This adds support for kernel 4.9 and replaces the kernel 4.4 support.

These are lynxis test results:
panda-board a3 - works, but no network, but master/4.4 doesn't have network either.
panda-board-a4 - u-boot SPL refuse to boot.
beaglebone-black - works
beagle-board - usb attached network doesn't come up and I doesn't have a serial around.
beagle-board-xm - ToDo: image code is missing.

Kernel 4.4 does not look better, so we merge this anyway.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Acked-by: Alexander Couzens <lynxis@fe80.eu>
7 years agokernel: bump 4.4 to 4.4.93
Kevin Darbyshire-Bryant [Wed, 18 Oct 2017 12:27:48 +0000 (13:27 +0100)]
kernel: bump 4.4 to 4.4.93

No patch refresh required.

Compile-tested for ar71xx - Archer C7 v2
Runtime-tested on  ar71xx - Archer C7 v2

Fixes the following CVEs:

- CVE-2017-15265
- CVE-2017-0786

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
7 years agokernel: bump 4.9 to 4.9.57
Kevin Darbyshire-Bryant [Wed, 18 Oct 2017 12:19:10 +0000 (13:19 +0100)]
kernel: bump 4.9 to 4.9.57

Refresh patches.
Compile-tested for ar71xx - Archer C7 v2
Runtime-tested on  ar71xx - Archer C7 v2

Fixes the following CVEs:

- CVE-2017-7518
- CVE-2017-0786
- CVE-2017-1000255
- CVE-2017-12188
- CVE-2017-15265

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
7 years agohostapd: bump PKG_RELEASE
Stijn Tintel [Wed, 18 Oct 2017 10:01:23 +0000 (13:01 +0300)]
hostapd: bump PKG_RELEASE

The previous commit did not adjust PKG_RELEASE, therefore the
hostapd/wpad/wpa_supplicant packages containing the AP-side workaround
for KRACK do not appear as opkg update.

Bump the PKG_RELEASE to signify upgrades to downstream users.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agowireguard: version bump to 0.0.20171017
Jason A. Donenfeld [Tue, 17 Oct 2017 17:34:20 +0000 (19:34 +0200)]
wireguard: version bump to 0.0.20171017

This is a simple version bump. Changes:

  * noise: handshake constants can be read-only after init
  * noise: no need to take the RCU lock if we're not dereferencing
  * send: improve dead packet control flow
  * receive: improve control flow
  * socket: eliminate dead code
  * device: our use of queues means this check is worthless
  * device: no need to take lock for integer comparison
  * blake2s: modernize API and have faster _final
  * compat: support READ_ONCE
  * compat: just make ro_after_init read_mostly

  Assorted cleanups to the module, including nice things like marking our
  precomputations as const.

  * Makefile: even prettier output
  * Makefile: do not clean before cloc
  * selftest: better test index for rate limiter
  * netns: disable accept_dad for all interfaces

  Fixes in our testing and build infrastructure. Now works on the 4.14 rc
  series.

  * qemu: add build-only target
  * qemu: work on ubuntu toolchain
  * qemu: add more debugging options to main makefile
  * qemu: simplify shutdown
  * qemu: open /dev/console if we're started early
  * qemu: phase out bitbanging
  * qemu: always create directory before untarring
  * qemu: newer packages
  * qemu: put hvc directive into configuration

  This is the beginning of working out a cross building test suite, so we do
  several tricks to be less platform independent.

  * tools: encoding: be more paranoid
  * tools: retry resolution except when fatal
  * tools: don't insist on having a private key
  * tools: add pass example to wg-quick man page
  * tools: style
  * tools: newline after warning
  * tools: account for padding being in zero attribute

  Several important tools fixes, one of which suppresses a needless warning.

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
7 years agohostapd: add wpa_disable_eapol_key_retries option
Stijn Tintel [Tue, 17 Oct 2017 13:35:03 +0000 (16:35 +0300)]
hostapd: add wpa_disable_eapol_key_retries option

Commit 2127425434046ae2b9f02fdbbdd37cac447af19c introduced an AP-side
workaround for key reinstallation attacks. This option can be used to
mitigate KRACK on the station side, in case those stations cannot be
updated. Since many devices are out there will not receive an update
anytime soon (if at all), it makes sense to include this workaround.

Unfortunately this can cause interoperability issues and reduced
robustness of key negotiation, so disable the workaround by default, and
add an option to allow the user to enable it if he deems necessary.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agohostapd: backport extra changes related to KRACK
Stijn Tintel [Tue, 17 Oct 2017 13:24:14 +0000 (16:24 +0300)]
hostapd: backport extra changes related to KRACK

While these changes are not included in the advisory, upstream
encourages users to merge them.
See http://lists.infradead.org/pipermail/hostap/2017-October/037989.html

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agoRevert "ar71xx: Add GRO support to ag71xx"
Felix Fietkau [Tue, 17 Oct 2017 13:52:08 +0000 (15:52 +0200)]
Revert "ar71xx: Add GRO support to ag71xx"

This reverts commit 13e5e473699b92f171205e0f5c57c9ebe7922492.
This commit causes a severe regression in LAN->WAN routing performance
for several devices. This appears to be caused by the extra requirement
to validate the SKB checksum early in the rx path, which the ethernet
hardware does not do

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agohostapd: bump PKG_RELEASE
Stijn Tintel [Mon, 16 Oct 2017 23:13:34 +0000 (02:13 +0300)]
hostapd: bump PKG_RELEASE

The previous CVE bugfix commit did not adjust PKG_RELEASE, therefore the
fixed hostapd/wpad/wpa_supplicant packages do not appear as opkg update.

Bump the PKG_RELEASE to signify upgrades to downstream users.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agomac80211: backport kernel fix for CVE-2017-13080
Stijn Tintel [Mon, 16 Oct 2017 22:49:58 +0000 (01:49 +0300)]
mac80211: backport kernel fix for CVE-2017-13080

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
7 years agoat91: fix legacy build
Hauke Mehrtens [Mon, 16 Oct 2017 19:36:17 +0000 (21:36 +0200)]
at91: fix legacy build

The build system took the DTB_SIZE definition from Default and not from
production-dtb under some conditions. Move the size definitions to
Default now as it is only used in production-dtb anyway.

Thanks Mathias Kresin for helping me with this.

Fixes: c2f052acaeb ("at91: convert boards to generic build target")
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agoppp: make the patches apply correctly again
Hauke Mehrtens [Mon, 16 Oct 2017 18:08:56 +0000 (20:08 +0200)]
ppp: make the patches apply correctly again

This fixes a compile problem recently introduced by me.

Fixes: f40fd43ab2f ("ppp: fix compile warning")
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agowireguard: add wireguard to base packages
Jason A. Donenfeld [Fri, 13 Oct 2017 15:05:18 +0000 (17:05 +0200)]
wireguard: add wireguard to base packages

Move wireguard from openwrt/packages to base a package.

This follows the pattern of kmod-cake and openvpn. Cake is a fast-moving
experimental kernel module that many find essential and useful. The
other is a VPN client. Both are inside of core. When you combine the two
characteristics, you get WireGuard. Generally speaking, because of the
extremely lightweight nature and "stateless" configuration of WireGuard,
many view it as a core and essential utility, initiated at boot time
and immediately configured by netifd, much like the use of things like
GRE tunnels.

WireGuard has a backwards and forwards compatible Netlink API, which
means the userspace tools should work with both newer and older kernels
as things change. There should be no versioning requirements, therefore,
between kernel bumps and userspace package bumps.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Acked-by: Jo-Philipp Wich <jo@mein.io>
Acked-by: Felix Fietkau <nbd@nbd.name>
7 years agoramips: fix typo in MT7621 NAND driver
Felix Fietkau [Mon, 16 Oct 2017 10:15:08 +0000 (12:15 +0200)]
ramips: fix typo in MT7621 NAND driver

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agohostapd: merge fixes for WPA packet number reuse with replayed messages and key reins...
Felix Fietkau [Mon, 16 Oct 2017 09:39:23 +0000 (11:39 +0200)]
hostapd: merge fixes for WPA packet number reuse with replayed messages and key reinstallation

Fixes:
- CERT case ID: VU#228519
- CVE-2017-13077
- CVE-2017-13078
- CVE-2017-13079
- CVE-2017-13080
- CVE-2017-13081
- CVE-2017-13082
- CVE-2017-13086
- CVE-2017-13087
- CVE-2017-13088

For more information see:
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt

Signed-off-by: Felix Fietkau <nbd@nbd.name>
7 years agomalta: activate some more standard kernel features
Hauke Mehrtens [Sun, 15 Oct 2017 12:33:56 +0000 (14:33 +0200)]
malta: activate some more standard kernel features

These options where deactivated in the malta kernel, take the default
options form the generic kernel configuration now to better match the
other targets.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agomalta: upgrade to kernel 4.9
Hauke Mehrtens [Sun, 15 Oct 2017 10:42:33 +0000 (12:42 +0200)]
malta: upgrade to kernel 4.9

This brings the MIPS malta target to kernel 4.9.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agomalta: add 64 bit qemu commands to README
Hauke Mehrtens [Sun, 15 Oct 2017 12:18:40 +0000 (14:18 +0200)]
malta: add 64 bit qemu commands to README

This shows how to boot up the 64 bit images.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agoppp: fix compile warning
Hauke Mehrtens [Sun, 15 Oct 2017 12:19:20 +0000 (14:19 +0200)]
ppp: fix compile warning

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agolantiq: xrx200: rename nas0/ptm0 to dsl0
Martin Schiller [Mon, 9 Oct 2017 06:26:01 +0000 (08:26 +0200)]
lantiq: xrx200: rename nas0/ptm0 to dsl0

This change makes it possible to configure the wan/dsl ppp interface
settings independantly from the used TC-Layer (ATM/PTM).

Now you can move a device from an ADSL/ATM port to an VDSL/PTM port
without any configuration changes for example.

Signed-off-by: Martin Schiller <ms@dev.tdt.de>
[use the dsl0 interface name for the default netdev trigger in 01_led,
add ip dependency]
Signed-off-by: Mathias Kresin <dev@kresin.me>
7 years agomac80211: ath6kl: add missing usb-core dependency to kmod-ath6kl-usb
Hauke Mehrtens [Sun, 15 Oct 2017 08:53:46 +0000 (10:53 +0200)]
mac80211: ath6kl: add missing usb-core dependency to kmod-ath6kl-usb

This fixes a build problem with many targets.

Fixes 618ed77a17422a ("mac80211: add ath6kl kernel modules")
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agobinutils: add version 2.29.1
Hauke Mehrtens [Sat, 14 Oct 2017 19:28:11 +0000 (21:28 +0200)]
binutils: add version 2.29.1

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
7 years agokernel: kmod-macsec module for 4.9
Christian Lamparter [Sat, 14 Oct 2017 15:57:19 +0000 (17:57 +0200)]
kernel: kmod-macsec module for 4.9

MACsec/IEEE 802.1AE is useful to secure communication to and
from endpoints at Layer 2.

Starting with 4.6, the linux kernel provides a universal
macsec driver for authentication and encryption of traffic
in a LAN, typically with GCM-AES-128, and optional replay
protection.

http://standards.ieee.org/getieee802/download/802.1AE-2006.pdf

Note:
LEDE can utilize MACsec with a static connectivity association
key (static PSK) with the ip-full package installed.
<http://man7.org/linux/man-pages/man8/ip-macsec.8.html>

Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
7 years agolibs/libnl: Update to 3.3.0
Daniel Engberg [Sat, 13 May 2017 14:38:56 +0000 (16:38 +0200)]
libs/libnl: Update to 3.3.0

Update libnl to 3.3.0
Import patches to fix compilation
Source: https://git.busybox.net/buildroot/tree/package/libnl
Source: https://gitweb.gentoo.org/proj/musl.git/diff/dev-libs/libnl/files/libnl-3.3.0_rc1-musl.patch?id=48d2a287
Use more automatic toolchain logic

Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
7 years agopackage/kernel/leds-apu2: add apu3 board detection
Florian Eckert [Thu, 6 Jul 2017 09:20:20 +0000 (11:20 +0200)]
package/kernel/leds-apu2: add apu3 board detection

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
7 years agopackage/kernel/leds-apu2: fix whitespaces
Florian Eckert [Thu, 6 Jul 2017 09:32:44 +0000 (11:32 +0200)]
package/kernel/leds-apu2: fix whitespaces

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
7 years agotoolchain/glibc: Update to 2.26
Daniel Engberg [Sat, 12 Aug 2017 18:02:20 +0000 (20:02 +0200)]
toolchain/glibc: Update to 2.26

Update glibc to 2.26

Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
7 years agomvebu: clean up ClearFog Base package selection
Ryan Mounce [Sun, 1 Oct 2017 09:44:02 +0000 (20:14 +1030)]
mvebu: clean up ClearFog Base package selection

It is unclear why so many packages are selected for ClearFog Base compared
to its big brother, and there is no reason to not append metadata for Base.

Tidy this up as the only hardware difference between Base/Pro is the
presence of a switch and a different board name / device tree.

Signed-off-by: Ryan Mounce <ryan@mounce.com.au>