openwrt/staging/ynezz.git
3 years agoselinux-policy: update to version v0.8
Dominick Grift [Sun, 14 Mar 2021 11:42:29 +0000 (12:42 +0100)]
selinux-policy: update to version v0.8

3d7da7a igmpproxy tidy some loose ends
c84ba0f rcigmpproxy: add entries to /etc when creating /etc/igmpproxy.conf
5a18967 adds igmpproxy skeleton
7e6a218 logread: support resolving dns names
e39ca8b netifd: add support for /etc/udhcpc.user
7952bd0 odhcp6c: support /etc/odhcp6c.user
ba0eb4e swconfig, fwenv, agent
4556b8a pppd cosmetic
9324d9d pppd: sends AT commands to model using /dev/ttyUSBN
417b14a ttydev: add some more ttyUSB
ed739dc example: dont depend on policycoreutils
97613f9 dropbear: using dropbear as scp: dns name resolving
12c193b dropbear tcp connect ssh ports for scp
c050077 rcdnsmasq: remove redundant rule and make rcsysntpd optional
8c5de35 this is a bug
8d5c463 uhttpd rcboot rcdnsmasq
094266e hostapd and wpa_supplicant
aef0bd7 mountroot: maintains /tmp/sysupgrade.tar
24f0406 dropbear: allow it to read tmp.fs files
2901433 firstboot mkfsf2fs rcboot
2c4afb7 blockmount mmc
465ca98 adds industrial i/o (iio) nodedev
82f686e mtd stordev: back that ubiblock0_4p1 up with a filecon
7df78bd ubus: "support" older ubusd versions that run as root
4458bce swconfig: allow using terminal (to print output)
e8d606d sslcert: openssl linked: this shaves off 200 bytes
93afffb jshn ntpdhotplug
0b847f0 wpad: reads /etc/ssl/openssl.cnf
f14ee34 indent fix
a0c7cad mtd, uhttpd, ubus and ntpdhotplug
d74f98f adds a not about checkreqprot requirement in some scenarios
affacce example: add policycoreutils-setfiles for make check
4f944dc kmodloader and fwenv:
efe36a3 netifd: adds a comment/reminder
581b087 more fw_printenv loose ends
30177a4 fw_setenv: needs mtd write access to set and delete env
da28f4c fw_printenv: some minor clean ups
a062053 fw_printenv missing rules
244ba5f blockmount: extroot and /rwm
0745a6a squid: allow squid to run sslcrtd with domain transition
b851df6 squid fix
8c55acd squid: adds certfile and allow connect http but...
b7c1f6d Makefile: exclude tinyproxy from mintesttgt (using squid)
5ff39bd squid: forgot about luci
5366c97 squid/rcsquid some basic fill in
8743da6 squid skeleton
687a43b adds squid 3128 port to httpproxy port

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agobmips: add experimental ethernet support
Álvaro Fernández Rojas [Mon, 1 Mar 2021 07:21:59 +0000 (08:21 +0100)]
bmips: add experimental ethernet support

This adds experimental ethernet support for BCM6318, BCM6328, BCM6362, BCM6368
and BCM63268.
BCM6358 needs a different driver, so there's no support for now.

Working devices:
- Comtrend AR-5315u
- Comtrend AR-5387un
- Comtrend VR-3025u
- Comtrend VR-3032u

Not working devices:
- Netgear DGND3700 v2 (no idea on how the external switch is connected)
- Huawei HG556a ver B (BCM6358 needs a separate driveer)

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agotools/libelf: remove unneeded host library
Tony Ambardar [Fri, 12 Mar 2021 01:45:05 +0000 (17:45 -0800)]
tools/libelf: remove unneeded host library

This old ELF library dating to 2009 used to be necessary on MacOS but
is not required for building the kernel or tools since [1]. On Linux
systems, libelf is already an OpenWRT build-system prerequisite [2].

Presence of the older library can mask or conflict with the system libelf
and lead to build errors, as seen compiling Linux kernels since v5.8 or
host tools such as dwarves (e.g. pahole).

Remove the unnecessary tools/libelf library and avoid the related issues.

[1] 5f8e587240 ("build: force disable stack validation during kernel build
                 on non-linux systems")
[2] https://openwrt.org/docs/guide-developer/build-system/install-buildsystem#prerequisites

Tested-by: Rosen Penev <rosenp@gmail.com> (Linux)
Tested-by: Georgi Valkov <gvalkov@abv.bg> (MacOS)
Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
3 years agoelfutils: remove host build from target package
Tony Ambardar [Tue, 26 Jan 2021 22:37:04 +0000 (14:37 -0800)]
elfutils: remove host build from target package

Commit f4da28c301 ("elfutils: Add host build") supplied a libelf host
library to fix a glib2 host build error, but this need was later removed
by b6212c8769 ("glib2: don't use libelf during host build").

More importantly, there are already two sources for libelf host libraries:
OpenWRT build prerequisites [1] and tools/libelf. A third is not needed.

Ref [1]: https://openwrt.org/docs/guide-developer/build-system/install-buildsystem#prerequisites

Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
3 years agobusybox: backport fixes for 1.33.0
Hannu Nyman [Tue, 9 Mar 2021 15:46:52 +0000 (17:46 +0200)]
busybox: backport fixes for 1.33.0

Backport two fixes for 1.33.0
* history file storing
* traceroute command option parsing

Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
3 years agouboot-mediatek: import fix for AHCI and enable SATA
Daniel Golle [Sat, 13 Mar 2021 19:07:09 +0000 (19:07 +0000)]
uboot-mediatek: import fix for AHCI and enable SATA

Import patch form Frank Wunderlich <frank-w@public-files.de> to fix
build of MediaTek AHCI SATA driver.
Enable that driver on Bananapi BPi-R64.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agomvebu: LS421DE: make cosmetics changes in dts file
Daniel González Cabanelas [Sat, 13 Mar 2021 11:57:46 +0000 (12:57 +0100)]
mvebu: LS421DE: make cosmetics changes in dts file

Make some cosmetic changes in the Buffalo LinkStation LS421DE NAS:
  - Delete pointless #xxx-cells
  - bootargs: replace earlyprintk with earlycon and remove unneeded args.
  - Separate pinmux nodes with empty lines.

Signed-off-by: Daniel González Cabanelas <dgcbueu@gmail.com>
3 years agoxfrm: simplify the check for necessary kernel support
Alin Nastac [Mon, 1 Mar 2021 08:51:31 +0000 (09:51 +0100)]
xfrm: simplify the check for necessary kernel support

[ -d /sys/module/xfrm_interface ] is enough to check if
CONFIG_XFRM_INTERFACE support was enabled in kernel.

Signed-off-by: Alin Nastac <alin.nastac@technicolor.com>
3 years agovti: use alternative way to check if kernel support is enabled
Alin Nastac [Mon, 1 Mar 2021 08:49:43 +0000 (09:49 +0100)]
vti: use alternative way to check if kernel support is enabled

When necessary support is built in kernel, vti protocol support is
not enabled in netifd.

Signed-off-by: Alin Nastac <alin.nastac@technicolor.com>
3 years agogre: use alternative way to check if kernel support is enabled
Alin Nastac [Tue, 23 Feb 2021 12:05:09 +0000 (13:05 +0100)]
gre: use alternative way to check if kernel support is enabled

When necessary support is built in kernel, gre protocol support is
not enabled in netifd.

Signed-off-by: Alin Nastac <alin.nastac@gmail.com>
3 years agokernel: bump 5.10 to 5.10.23
Kabuli Chana [Wed, 10 Mar 2021 02:19:12 +0000 (19:19 -0700)]
kernel: bump 5.10 to 5.10.23

update kernel to 5.10.23, rebase patches, deleted upstreamed patch:

target/linux/generic/backport-5.10/830-v5.12-0001-net-usb-qmi_wwan-support-ZTE-P685M-modem.patch

compile / test - mvebu / mamba, rango

Signed-off-by: Kabuli Chana <newtownBuild@gmail.com>
[refresh again]
Signed-off-by: Adrian Schmutzler <freifunk@adrianschmutzler.de>
3 years agokernel: bump 5.4 to 5.4.105
John Audia [Sun, 7 Mar 2021 12:26:24 +0000 (07:26 -0500)]
kernel: bump 5.4 to 5.4.105

Ran update_kernel.sh in a fresh clone without any existing toolchains.

Removed upstreamed generic-backports:
  830-v5.12-0001-net-usb-qmi_wwan-support-ZTE-P685M-modem.patch
  831-v5.9-usbip-tools-fix-build-error-for-multiple-definition.patch
  755-v5.8-net-dsa-add-GRO-support-via-gro_cells.patch

Build system: x86_64
Build-tested: ipq806x/R7800
Run-tested: ipq806x/R7800

No dmesg regressions, everything functional

Signed-off-by: John Audia <graysky@archlinux.us>
Tested-by: Curtis Deptuck <curtdept@me.com> [x86/64]
[squash patches]
Signed-off-by: Adrian Schmutzler <freifunk@adrianschmutzler.de>
3 years agomediatek: image: don't use 'M' unit as dd may not support that
Daniel Golle [Sat, 13 Mar 2021 14:59:33 +0000 (14:59 +0000)]
mediatek: image: don't use 'M' unit as dd may not support that

dd on Mac OS X apparently fails when using 'M' unit for bs.
dd: bs: illegal numeric value
Use 'k' unit instead for 'pad-to' to fix that.

Reported-by: Georgi Valkov <gvalkov@abv.bg>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agouboot-mediatek: fix build on Mac OS X
Daniel Golle [Sat, 13 Mar 2021 13:38:25 +0000 (13:38 +0000)]
uboot-mediatek: fix build on Mac OS X

Copy patch added to uboot-sunxi by commit 3cc57ba462
("uboot-sunxi: add missing type __u64") also to uboot-mediatek.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agobcm47xx: make WGT634U NVRAM patch apply again
Rafał Miłecki [Fri, 12 Mar 2021 20:08:24 +0000 (21:08 +0100)]
bcm47xx: make WGT634U NVRAM patch apply again

Fixes: 1c48eee5b2bc ("kernel: backport Broadcom NVRAM driver cleanups")
Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agokernel: add compatibility with upstream threaded NAPI patch
Felix Fietkau [Fri, 12 Mar 2021 13:45:19 +0000 (14:45 +0100)]
kernel: add compatibility with upstream threaded NAPI patch

Enable threading if dev->threaded is set. This will be used to bring mt76 back
in sync with upstream

Signed-off-by: Felix Fietkau <nbd@nbd.name>
3 years agokernel: update 5.10 flow offload patches
Felix Fietkau [Mon, 8 Mar 2021 16:20:20 +0000 (17:20 +0100)]
kernel: update 5.10 flow offload patches

Includes PPPoE support and VLAN related fixes

Signed-off-by: Felix Fietkau <nbd@nbd.name>
3 years agokernel: add pending mtd patches adding NVMEM support
Rafał Miłecki [Fri, 12 Mar 2021 17:30:01 +0000 (18:30 +0100)]
kernel: add pending mtd patches adding NVMEM support

It's meant to provide upstream support for mtd & NVMEM. It's required
e.g. for reading MAC address from mtd partition content. It seems to be
in a final shape so it's worth testing.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agokernel: move mtd ofpart accepted patch
Rafał Miłecki [Fri, 12 Mar 2021 16:37:59 +0000 (17:37 +0100)]
kernel: move mtd ofpart accepted patch

Move upstream patch to the backport directory.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agokernel: add two more missed 5.10 backports
Rafał Miłecki [Fri, 12 Mar 2021 16:36:58 +0000 (17:36 +0100)]
kernel: add two more missed 5.10 backports

Those were added to 5.4 but missed while introducing 5.10 kernel.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agobcm53xx: initialize NVRAM from NVMEM driver
Rafał Miłecki [Fri, 12 Mar 2021 17:10:09 +0000 (18:10 +0100)]
bcm53xx: initialize NVRAM from NVMEM driver

NVRAM access may be needed early in boot process. Reading it using mtd
happens quite late in the init process. Add NVRAM initialization to the
NVMEM driver which comes up early and depends on IO mapping only.

This is required by Linksys devices which use NVRAM content for proper
partitioning (detecting current firmware partition).

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agokernel: backport Broadcom NVRAM driver cleanups
Rafał Miłecki [Fri, 12 Mar 2021 17:07:57 +0000 (18:07 +0100)]
kernel: backport Broadcom NVRAM driver cleanups

Refactoring of bcm47xx_nvram driver. It's used by bcm47xx and bcm53xx.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agobmips: switch to upstream bcm2835-rng reset patch
Álvaro Fernández Rojas [Fri, 12 Mar 2021 13:29:51 +0000 (14:29 +0100)]
bmips: switch to upstream bcm2835-rng reset patch

This patch has been accepted upstream.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agouboot-mediatek: update configs for MT7622 devies
Daniel Golle [Thu, 11 Mar 2021 21:52:07 +0000 (21:52 +0000)]
uboot-mediatek: update configs for MT7622 devies

 * make sure USB 2.0 works (useful for UEFI-booting eg. memtest86)
 * include more useful U-Boot config options on BPi-R64.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agorealtek: drop ethtool log noise
Bjørn Mork [Thu, 11 Mar 2021 12:35:38 +0000 (13:35 +0100)]
realtek: drop ethtool log noise

Demote a number of debugging printk's to pr_debug to avoid log
nosie.  Several of these functions are called as a result of
userspace activity.  This can cause a lot of log noise when
userspace does periodic polling.

Most of this could probably be removed completely, but let's
keep it for now since these drivers are still in development.

Signed-off-by: Bjørn Mork <bjorn@mork.no>
Tested-by: Stijn Tintel <stijn@linux-ipv6.be>
3 years agouboot-mediatek: update to 2021.04-rc3 with MediaTek's patches
Daniel Golle [Sat, 20 Feb 2021 13:04:38 +0000 (13:04 +0000)]
uboot-mediatek: update to 2021.04-rc3 with MediaTek's patches

MediaTek published their current U-Boot patchset on github:
https://github.com/mtk-openwrt/u-boot/commits/mtksoc

Import the platform patches from there (`00-mtk-*.patch`), arrange,
them nicely, drop no longer needed local patches and rebase on top of
U-Boot 2021.04-rc3.

Tested and works well on Linksys E8450 (snand-1ddr) as well as
Bananapi BPi-R64 (sdmmc-2ddr, emmc-2ddr).

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agoarm-trusted-firmware-mediatek: update to 2021-03-10
Daniel Golle [Thu, 11 Mar 2021 16:01:32 +0000 (16:01 +0000)]
arm-trusted-firmware-mediatek: update to 2021-03-10

Most prominently this adds changes which allow replacing the binary-
only 'bromimage' tool by U-Boot's 'mkimage' (see previous commit).
This fixes build on non-Linux and/or non-x86 platforms.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agotools: mkimage: add patches for 64-bit MediaTek BootROM
Daniel Golle [Thu, 11 Mar 2021 16:00:20 +0000 (16:00 +0000)]
tools: mkimage: add patches for 64-bit MediaTek BootROM

Add patches for mkimage to allow using it instead of the binary-only
'bromimage' tool to generate bl2 for MT7622.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agorpcd: update to git HEAD
Daniel Golle [Thu, 11 Mar 2021 00:23:11 +0000 (00:23 +0000)]
rpcd: update to git HEAD

 d3f2041 uci: manually clear uci_ptr flags after uci_delete() operations
 ccb7517 sys: packagelist: drop ABI version from package name

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agoopkg: update to git HEAD
Daniel Golle [Thu, 11 Mar 2021 00:22:12 +0000 (00:22 +0000)]
opkg: update to git HEAD

 d71856a pkg: pass-through ABIVersion to status file

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agobcm53xx: backport NVMEM NVRAM driver
Rafał Miłecki [Wed, 10 Mar 2021 22:22:18 +0000 (23:22 +0100)]
bcm53xx: backport NVMEM NVRAM driver

It supports NVRAM access described using DT binding. Right now NVRAM
data is exposed using /sys/bus/nvmem/ only.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agoRevert "bcm53xx: add support for reading NVRAM based on DT mapping"
Rafał Miłecki [Wed, 10 Mar 2021 21:28:30 +0000 (22:28 +0100)]
Revert "bcm53xx: add support for reading NVRAM based on DT mapping"

This reverts commit b0376462c164344d6be9fe1568a9f13ffd8fbb16. Those
changes were rejected and were replaced with an NVMEM driver.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agoglibc: update to latest 2.33 commit (BZ #27462, BZ #27318, BZ #27389)
Hans Dedecker [Wed, 10 Mar 2021 19:48:02 +0000 (20:48 +0100)]
glibc: update to latest 2.33 commit (BZ #27462, BZ #27318, BZ #27389)

a151f2e05a nscd: Fix double free in netgroupcache [BZ #27462]
ee9f98d9ca x86: Set minimum x86-64 level marker [BZ #27318]
3e880d7337 nss: Re-enable NSS module loading after chroot [BZ #27389]
71b2463f61 x86: Add CPU-specific diagnostics to ld.so --list-diagnostics
a1eb3915e7 x86: Automate generation of PREFERRED_FEATURE_INDEX_1 bitfield
33dc1dd602 ld.so: Implement the --list-diagnostics option
8d4241b897 string: Work around GCC PR 98512 in rawmemchr
6efa2d44c8 S390: Add new hwcap values.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
3 years agonetifd: add a udhcpc.user placeholder script
Rui Salvaterra [Tue, 9 Mar 2021 22:22:09 +0000 (22:22 +0000)]
netifd: add a udhcpc.user placeholder script

Document the existence of this feature. This allows the user to execute a script
at each DHCPv4 event. This is useful, for example, as an ad-hoc way to update a
DDNS entry when (and only when) required.

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
3 years agoodhcp6c: add a odhcp6c.user placeholder script
Rui Salvaterra [Tue, 9 Mar 2021 22:16:05 +0000 (22:16 +0000)]
odhcp6c: add a odhcp6c.user placeholder script

Document the existence of this feature. This allows the user to execute a script
at each DHCPv6 event. This is useful, for example, as an ad-hoc way to update a
DDNS entry when (and only when) required.

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
3 years agoinclude: store ABIVersion in Packages index
Paul Spooren [Mon, 8 Mar 2021 04:09:32 +0000 (18:09 -1000)]
include: store ABIVersion in Packages index

With the existence of ABI versions there is no clean way to determine
the package name without an attached ABI version. The Packages index is
stored on device to know what packages are installed.

The ABIVersion was recently removed in c921650382 "build: drop ABI
version from metadata", while ABI versions still exists. This becomes a
problem if a user tries to export installed packages via `ubus call
rpcd-sys packagelist` which would return package names including the ABI
version. Trying to find these packages in a later release with changes
ABI version is impossible.

This commits adds the `ABIVersion` field again. Knowing both the
combined (SourceName + ABIVersion) and the `ABIVersion` it is possible
to calculate the package `SourceName` without storing it in the
on-device package list.

Signed-off-by: Paul Spooren <mail@aparcar.org>
3 years agoarm-trusted-firmware-mediatek: fix typo SPI-SNAND -> SPI-NAND
Daniel Golle [Mon, 8 Mar 2021 21:27:07 +0000 (21:27 +0000)]
arm-trusted-firmware-mediatek: fix typo SPI-SNAND -> SPI-NAND

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agocheckpolicy: update to version 3.2
Dominick Grift [Sat, 6 Mar 2021 20:02:41 +0000 (21:02 +0100)]
checkpolicy: update to version 3.2

521e6a2f libsepol/cil: fix signed overflow caused by using (1 << 31) - 1
42ae834a libsepol,checkpolicy: optimize storage of filename transitions

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agosecilc: update to version 3.2
Dominick Grift [Sat, 6 Mar 2021 20:02:40 +0000 (21:02 +0100)]
secilc: update to version 3.2

49ff851c secilc: fixes cil_role_statements.md example
03881703 secilc/docs: add custom color theme
4c8d6094 secilc/docs: add syntax highlighting for secil
057d72af secilc/docs: use fenced code blocks for cil examples
e8bcdb84 cil_network_labeling_statements: fixes nodecon examples
eefa5511 cil_access_vector_rules: allowx, auditallowx and dontauditx fixes
9e9b8103 secilc/docs: document expandtypeattribute
fbe1e526 Update the cil docs to match the current behaviour.

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agopolicycoreutils: update to version 3.2
Dominick Grift [Sat, 6 Mar 2021 20:02:39 +0000 (21:02 +0100)]
policycoreutils: update to version 3.2

d464187c policycoreutils: sestatus belongs to bin not sbin
d59932a7 policycoreutils: Resolve path in restorecon_xattr
5682c0d5 policycoreutils/fixfiles.8: add missing file systems and merge check and verify
57dd1f65 policycoreutils/setfiles: Drop unused nerr variable
be7f54cb setfiles: drop ABORT_ON_ERRORS and related code
9207823c setfiles: Do not abort on labeling error
c064d214 selinux_config(5): add a note that runtime disable is deprecated
8bc865e1 newrole: support cross-compilation with PAM and audit
ba2d6c10 fixfiles: correctly restore context of mountpoints

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agolibsemanage: update to version 3.2
Dominick Grift [Sat, 6 Mar 2021 20:02:38 +0000 (21:02 +0100)]
libsemanage: update to version 3.2

c35919a7 libsemanage: sync filesystem with sandbox
5b05e829 Revert "libsemanage/genhomedircon: check usepasswd"
edae9275 libsemanage: Free contents of modkey in semanage_direct_remove
ce46daab libsemanage/genhomedircon: check usepasswd
6ebb35d2 libsemanage: Bump libsemanage.so version
c08b73d7 libsemanage: Drop deprecated functions
b46406de libsemanage: Remove legacy and duplicate symbols

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agolibselinux: update to version 3.2
Dominick Grift [Sat, 6 Mar 2021 20:02:37 +0000 (21:02 +0100)]
libselinux: update to version 3.2

142826a3 libselinux: fix segfault in add_xattr_entry()
398d2cee libselinux: rename gettid() to something which never conflicts with the libc
8f0f0a28 selinux(8,5): Describe fcontext regular expressions
9cc6b5cf libselinux/getconlist: report failures
156dd0de libselinux: update getseuser
e2dca5df libselinux: accept const fromcon in get_context API
da4829d0 libselinux: Always close status page fd
45b15c22 selinux(8): explain that runtime disable is deprecated
3c16aaef selinux(8): mark up SELINUX values
c2a58cc5 libselinux: LABEL_BACKEND_ANDROID add option to enable
db0f2f38 libselinux: Add build option to disable X11 backend
4a142ac4 libsepol: Bump libsepol.so version
d23342a9 libselinux: convert matchpathcon to selabel_lookup()
7ef5b185 libselinux: Change userspace AVC setenforce and policy load messages to audit format.
f5d644c7 libselinux: Add additional log callback details in man page for auditing.
075f9cfe libselinux: Fix selabel_lookup() for the root dir.
a4149e0e libselinux: Add new log callback levels for enforcing and policy load notices.
a63f93d8 libselinux: initialize last_policyload in selinux_status_open()
ef902db9 libselinux: safely access shared memory in selinux_status_updated()
9e4480b9 libselinux: Remove trailing slash on selabel_file lookups.
21fb5f20 libselinux: use full argument specifiers for security_check_context in man page
e7abd802 libselinux: fix build order
05bdc031 libselinux: use kernel status page by default

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agolibsepol: update to version 3.2
Dominick Grift [Sat, 6 Mar 2021 20:02:36 +0000 (21:02 +0100)]
libsepol: update to version 3.2

a9e0004f libsepol: invalidate the pointer to the policydb if policydb_init fails
6238e025 libsepol/cil: fix NULL pointer dereference in cil_fill_ipaddr
b69d77bc libsepol/cil: handle SID without assigned context when writing policy.conf
0861c659 libsepol: Validate policydb values when reading binary policy
8f5409cf libsepol: Create function ebitmap_highest_set_bit()
0451adeb libsepol/cil: Destroy disabled optional blocks after pass is complete
32f8ed3d libsepol/cil: introduce intermediate cast to silence -Wvoid-pointer-to-enum-cast
4662bdc1 libsepol/cil: be more robust when encountering <src_info>
6b561058 libsepol/cil: fix NULL pointer dereference with empty macro argument
0d0e47c7 libsepol/cil: Fix integer overflow in the handling of hll line marks
1b36ace2 libsepol: include header files in source files when matching declarations
1f1fa9d4 libsepol: uniformize prototypes of sepol_mls_contains and sepol_mls_check
72a88d75 libsepol: remove unused files
eba0ffee libsepol/cil: Fix heap-use-after-free when using optional blockinherit
1048f8d3 libsepol/cil: unlink blockinherit->block link when destroying a block
b3202918 libsepol/cil: fix memory leak when a constraint expression is too deep
f0d98f83 libsepol/cil: Fix heap-use-after-free in __class_reset_perm_values()
5d021d66 libsepol/cil: Update symtab nprim field when adding or removing datums
34bd9a9d libsepol: destroy filename_trans list properly
bdf4e332 libsepol/cil: fix NULL pointer dereference when parsing an improper integer
b7ea65f5 libsepol/cil: destroy perm_datums when __cil_resolve_perms fails
228c06d9 libsepol/cil: fix out-of-bound read in cil_print_recursive_blockinherit
a25d9104 libsepol/cil: constify some strings
e2d01842 libsepol/cil: propagate failure of cil_fill_list()
6c8fca10 libsepol/cil: do not add a stack variable to a list
38a09b74 libsepol/cil: fix NULL pointer dereference when using an unused alias
3c357285 libsepol/cil: remove useless print statement
90809674 libsepol/cil: always destroy the lexer state
d16a1e46 libsepol/cil: Use the macro FLAVOR() whenever possible
2aac859a libsepol/cil: Use the macro NODE() whenever possible
d317b470 libsepol/cil: Remove unnecessary assignment in cil_resolve_name_keep_aliases()
9b9761cf libsepol/cil: Remove unused field from struct cil_args_resolve
e257d4c7 libsepol/cil: Get rid of unnecessary check in cil_gen_node()
ebba2b00 libsepol/cil: cil_tree_walk() helpers should use CIL_TREE_SKIP_*
89dab467 libsepol: free memory when realloc() fails
2d353bd5 libsepol/cil: Give error for more than one true or false block
4a142ac4 libsepol: Bump libsepol.so version
506c7b95 libsepol: Drop deprecated functions
ae58e84b libsepol: Get rid of the old and duplicated symbols
c97d63c6 libsepol: silence potential NULL pointer dereference warning
64387cb3 libsepol: drop confusing BUG_ON macro
521e6a2f libsepol/cil: fix signed overflow caused by using (1 << 31) - 1
a152653b libsepol/cil: Fix neverallow checking involving classmaps
734e4beb libsepol/cil: Validate conditional expressions before adding to binary policy
685f577a libsepol/cil: Validate constraint expressions before adding to binary policy
8206b8cb libsepol: implement POLICYDB_VERSION_COMP_FTRANS
42ae834a libsepol,checkpolicy: optimize storage of filename transitions

Signed-off-by: Dominick Grift <dominick.grift@defensec.nl>
3 years agobmips: automatically detect RAM size
Álvaro Fernández Rojas [Mon, 8 Mar 2021 16:47:10 +0000 (17:47 +0100)]
bmips: automatically detect RAM size

Introduce new patch for automatically detecting RAM size.
Some boards have a different amount of RAM depending on the HW revision.
Therefore, automatically detecting the RAM size instead of hard-coding it will
reduce the number of device definitions.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agobmips: improve CPU frequency patch
Álvaro Fernández Rojas [Mon, 8 Mar 2021 16:45:33 +0000 (17:45 +0100)]
bmips: improve CPU frequency patch

Fixes BCM6358 address and calculations.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agobcm63xx: AD1018-nor: add NAND flash
Daniel González Cabanelas [Sat, 6 Mar 2021 18:59:19 +0000 (19:59 +0100)]
bcm63xx: AD1018-nor: add NAND flash

The Sercomm AD1018 has a NAND flash. We recently added support for NANDs
in this target.

Use the internal NAND as additional storage.

Signed-off-by: Daniel González Cabanelas <dgcbueu@gmail.com>
3 years agogitignore: add .vscode for VS Code users
Álvaro Fernández Rojas [Mon, 8 Mar 2021 09:46:06 +0000 (10:46 +0100)]
gitignore: add .vscode for VS Code users

For Visual Studio Code users, .vscode is created inside the workspace.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agobmips: dts: comestic changes
Álvaro Fernández Rojas [Mon, 8 Mar 2021 09:42:25 +0000 (10:42 +0100)]
bmips: dts: comestic changes

Improve and refactor device tree files.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agobmips: remove unneeded console from bootargs
Álvaro Fernández Rojas [Mon, 8 Mar 2021 09:12:42 +0000 (10:12 +0100)]
bmips: remove unneeded console from bootargs

console parameter is no longer needed after latest procd update.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agobmips: automatically detect CPU frequency
Álvaro Fernández Rojas [Fri, 5 Mar 2021 16:51:39 +0000 (17:51 +0100)]
bmips: automatically detect CPU frequency

Some BCM63xx SoCs support multiple CPU frequencies depending on HW
configuration.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agoprocd: update to git HEAD
Daniel Golle [Mon, 8 Mar 2021 00:10:51 +0000 (00:10 +0000)]
procd: update to git HEAD

 945d0d7 utils: fix C style in header file
 2cfc26f inittab: detect active console from kernel if no console= specified

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agobpftools: fix param order for install on macOS
Georgi Valkov [Tue, 2 Mar 2021 10:41:10 +0000 (12:41 +0200)]
bpftools: fix param order for install on macOS

Fix: bpftools 5.11.2 does not compile on macOS, because the -m option
was placed between src and dst. Corrected by moving -m 644 before src.

Signed-off-by: Georgi Valkov <gvalkov@abv.bg>
3 years agobpftools: fix libbpf pkgconfig file
Tony Ambardar [Mon, 1 Mar 2021 09:07:45 +0000 (01:07 -0800)]
bpftools: fix libbpf pkgconfig file

The pkgconfig file hardcodes a host library directory which cannot be
overridden by OpenWrt during builds. Use SED to fix this and potential
include directory problems, as is done with several other packages.

This fixes a strange issue intermittently seen building iproute2 on the
oxnas target:

iptables modules directory: /usr/lib/iptables
libc has setns: yes
SELinux support: no
libbpf support: no
libbpf version 0.3.0 is too low, please update it to at least 0.1.0
LIBBPF_FORCE=on set, but couldn't find a usable libbpf

Fixes: 2f0d672088c3 ("bpftools: add utility and library packages
supporting eBPF usage")
Reported-by: Russell Senior <russell@personaltelco.net>
Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
3 years agomediatek: remove no longer needed sysupgrade hack
Daniel Golle [Sun, 7 Mar 2021 18:15:50 +0000 (18:15 +0000)]
mediatek: remove no longer needed sysupgrade hack

Keeping configuration is now handled in fstools like for other types
of flash as well.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agomediatek: mt7622: remove execute bit and shebang from 01_leds
Adrian Schmutzler [Sat, 6 Mar 2021 19:22:15 +0000 (20:22 +0100)]
mediatek: mt7622: remove execute bit and shebang from 01_leds

This was added recently and thus overlooked in 85b1f4d8ca2d
("treewide: remove execute bit and shebang from board.d files").

Signed-off-by: Adrian Schmutzler <freifunk@adrianschmutzler.de>
3 years agoipq806x: work-around borked QCA SDK bootloader
Daniel Golle [Sat, 6 Mar 2021 19:04:15 +0000 (19:04 +0000)]
ipq806x: work-around borked QCA SDK bootloader

The bootloader of many ipq806x boards seems to require the config node
of the FIT image to be 'config@1' (or a secific different value).
This requirement used to be implicitely satisfied because OpenWrt used
to also call the configuration node inside a FIT image 'config@1'.
However, as recent U-Boot now prohibits the use of the '@' symbol as
part of node names, this was changed by
commit 5ec60cbe9d ("scripts: mkits.sh: replace @ with - in nodes")
Explicitely restore the default name of the configuration node to
'config@1' on ipq806x.
(ipq807x is unaffected as DEVICE_DTS_CONFIG default is set
"config@hk01" in target/linux/ipq807x/image/Makefile)

Reported-by: Chen Minqiang <ptpt52@gmail.com>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agoipq40xx: work-around borked QCA SDK bootloader
Daniel Golle [Sat, 6 Mar 2021 18:59:16 +0000 (18:59 +0000)]
ipq40xx: work-around borked QCA SDK bootloader

The bootloader of many ipq40xx boards seems to require the config node
of the FIT image to be 'config@1' (or a secific different value).
This requirement used to be implicitely satisfied because OpenWrt used
to also call the configuration node inside a FIT image 'config@1'.
However, as recent U-Boot now prohibits the use of the '@' symbol as
part of node names, this was changed by
commit 5ec60cbe9d ("scripts: mkits.sh: replace @ with - in nodes")
Explicitely restore the default name of the configuration node to
'config@1' on ipq40xx.

Reported-by: Chen Minqiang <ptpt52@gmail.com>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agomediatek: disable RTC on Bananapi R64 and refresh patches
Daniel Golle [Sat, 6 Mar 2021 18:38:30 +0000 (18:38 +0000)]
mediatek: disable RTC on Bananapi R64 and refresh patches

The in-SoC RTC of the Bananapi R64 is more disruptive than useful
without a battery connected. Disable it to not have Linux use the
RTC provided time 2000-01-01 00:00:00 after power-loss.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agotreewide: make AddDepends/usb-serial selective
Adrian Schmutzler [Thu, 25 Feb 2021 10:54:43 +0000 (11:54 +0100)]
treewide: make AddDepends/usb-serial selective

Make packages depending on usb-serial selective, so we do not have
to add kmod-usb-serial manually for every device.

Signed-off-by: Adrian Schmutzler <freifunk@adrianschmutzler.de>
3 years agotreewide: remove execute bit and shebang from board.d files
Adrian Schmutzler [Fri, 26 Feb 2021 13:43:50 +0000 (14:43 +0100)]
treewide: remove execute bit and shebang from board.d files

So far, board.d files were having execute bit set and contained a
shebang. However, they are just sourced in board_detect, with an
apparantly unnecessary check for execute permission beforehand.

Replace this check by one for existance and make the board.d files
"normal" files, as would be expected in /etc anyway.

Note:

This removes an apparantly unused '#!/bin/sh /etc/rc.common' in
target/linux/bcm47xx/base-files/etc/board.d/01_network

Signed-off-by: Adrian Schmutzler <freifunk@adrianschmutzler.de>
3 years agoramips: 5.10: refresh configs
Ilya Lipnitskiy [Sun, 28 Feb 2021 07:17:47 +0000 (23:17 -0800)]
ramips: 5.10: refresh configs

Run-tested on Ubiquiti EdgeRouter X.

Compile tested on all other subtargets.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoramips: 5.10: port and refresh patches, ralink drv
Ilya Lipnitskiy [Sat, 20 Feb 2021 03:11:14 +0000 (19:11 -0800)]
ramips: 5.10: port and refresh patches, ralink drv

Enable testing kernel.

Fix compile errors by using new kernel APIs.

Fix fuzz by manually editing patches to ensure the code goes in the
right place.

For 721-NET-no-auto-carrier-off-support.patch, revert upstream commit
a307593a6 to keep the OpenWrt ralink driver operational.

Add mt7621-pci-phy patch to select REGMAP_MMIO as discussed in PR #3693
and #3952.

Run automatic quilt refresh on the rest.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoramips: 5.10: rename patches to follow guide
Ilya Lipnitskiy [Sun, 28 Feb 2021 00:00:24 +0000 (16:00 -0800)]
ramips: 5.10: rename patches to follow guide

Rename patches to follow the 3-digit classification from the OpenWrt
Developer Guide.

https://openwrt.org/docs/guide-developer/build-system/use-patches-with-buildsystem#naming_patches

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoramips: 5.10: delete upstreamed patches
Ilya Lipnitskiy [Sat, 20 Feb 2021 03:04:38 +0000 (19:04 -0800)]
ramips: 5.10: delete upstreamed patches

0098-disable_cm.patch is not needed because upstream fixed CM handling.

The rest are straightforward removals of upstreamed patches.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoramips: 5.10: copy patches from 5.4
Ilya Lipnitskiy [Sat, 20 Feb 2021 02:59:29 +0000 (18:59 -0800)]
ramips: 5.10: copy patches from 5.4

Strict copy, no changes made.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoramips: copy config-5.4 to config-5.10
Ilya Lipnitskiy [Sat, 27 Feb 2021 23:12:21 +0000 (15:12 -0800)]
ramips: copy config-5.4 to config-5.10

Strict copy, no changes made.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoRevert "ramips: add support for kernel 5.10"
Adrian Schmutzler [Sat, 6 Mar 2021 10:23:38 +0000 (11:23 +0100)]
Revert "ramips: add support for kernel 5.10"

This reverts commit b4aad29a1d7ad77d67073c1c54b28c429c64ed9b.

This was accidentally folded into a single commit. Remove it and
apply it properly again.

Signed-off-by: Adrian Schmutzler <freifunk@adrianschmutzler.de>
3 years agokernel: fix kmod-usb3 on platforms without PCI
Daniel Golle [Sat, 6 Mar 2021 04:18:10 +0000 (04:18 +0000)]
kernel: fix kmod-usb3 on platforms without PCI

Partially restore the wild-card matching for kmod-usb3 modules to fix
build on platforms without PCI which otherwise file, as seen on
buildbot:

ERROR: module '[...]/linux-5.4.102/drivers/usb/host/xhci-pci.ko' is missing.
modules/usb.mk:1675: recipe for target '[...]/kmod-usb3_5.4.102-1_mips_mips32.ipk' failed

Fixes: 7bda2e9aba ("kernel: fix kmod-usb3 dependencies")
Fixes: be23f9818a ("apm821xx: add support for kernel 5.10")
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agoapm821xx, mt7621, oxnas, rockchip, zynq: remove PLUGIN_HOSTCC
Ilya Lipnitskiy [Sat, 6 Mar 2021 02:28:43 +0000 (18:28 -0800)]
apm821xx, mt7621, oxnas, rockchip, zynq: remove PLUGIN_HOSTCC

This config symbol should not be defined in target configs.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agokernel: generic: filter out CONFIG_PLUGIN_HOSTCC
Ilya Lipnitskiy [Sat, 6 Mar 2021 02:28:42 +0000 (18:28 -0800)]
kernel: generic: filter out CONFIG_PLUGIN_HOSTCC

It appears to be an automatic Kconfig symbol that varies depending on
the host platform. There is no need to define it in target configs, so
filter it out.

Also sort config-filter entries alphabetically.

Cc: Adrian Schmutzler <mail@adrianschmutzler.de>
Cc: Felix Fietkau <nbd@nbd.name>
Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoarm-trusted-firmware-mediatek: prune now uneeded declarations
Daniel Golle [Sat, 6 Mar 2021 03:28:52 +0000 (03:28 +0000)]
arm-trusted-firmware-mediatek: prune now uneeded declarations

Remove unneeded delcarations form package Makefile now that everything
comes from github.com/mtk-openwrt upstream.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agokernel: fix kmod-usb3 dependencies
Ilya Lipnitskiy [Sat, 6 Mar 2021 02:06:02 +0000 (18:06 -0800)]
kernel: fix kmod-usb3 dependencies

Adding CONFIG_USB_XHCI_PCI_RENESAS to KCONFIG made it so it was set
for all targets that included kmod-usb3, not just the intended
apm821xx/nand. xhci-pci has a dependency on xhci-pci-renesas if
CONFIG_USB_XHCI_PCI_RENESAS is set, breaking kmod-usb3 builds on
Linux 5.10 on all other targets.

Rework the dependencies by breaking out xhci-hcd, xhci-mtk, and
xhci-pci-renesas into new hidden kernel modules and setting kmod-usb3
dependencies properly.

Tested by building mt7621 and apm821xx/nand with kmod-usb3 on Linux 5.10

Fixes: be23f981 ("apm821xx: add support for kernel 5.10")
Cc: Christian Lamparter <chunkeey@gmail.com>
Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoarm-trusted-firmware-mediatek: don't select DDR3_FLYBY for 1ddr
Daniel Golle [Fri, 5 Mar 2021 23:53:51 +0000 (23:53 +0000)]
arm-trusted-firmware-mediatek: don't select DDR3_FLYBY for 1ddr

DDR3_FLYBY has accidentally been set also for the 1-chip variant which
lead to broken, unbootable images. Fix that.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agoramips: add support for kernel 5.10
Ilya Lipnitskiy [Sat, 27 Feb 2021 23:12:21 +0000 (15:12 -0800)]
ramips: add support for kernel 5.10

Enable testing kernel.

Delete upstreamed patches:
 0098-disable_cm.patch can be dropped, upstream fixed CM handling.

Fix compile errors by using new kernel APIs.

Fix fuzz by manually editing patches to ensure the code goes in the
right place.

For 721-NET-no-auto-carrier-off-support.patch, revert upstream commit
a307593a6 to keep the OpenWrt ralink driver operational.

Add mt7621-pci-phy patch to select REGMAP_MMIO as discussed in PR #3693
and #3952.

Rename patches to follow the 3-digit classification from the OpenWrt
Developer Guide.

Run automatic quilt refresh.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoramips: 5.4: refresh configs
Ilya Lipnitskiy [Fri, 5 Mar 2021 20:07:40 +0000 (12:07 -0800)]
ramips: 5.4: refresh configs

Automatic refresh by running make kernel_oldconfig on each target.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agoapm821xx: add support for kernel 5.10 for testing
Christian Lamparter [Sat, 20 Feb 2021 16:44:12 +0000 (17:44 +0100)]
apm821xx: add support for kernel 5.10 for testing

This patch copies over refreshed patches from 5.4.

 - dropped crypto patches (they got upstreamed)

 - dropped renesas USB 3 firmware loader (they got upstreamed)

 - NAND now needs extra device-properties for ECC settings.

Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
3 years agomediatek: mt7622: bpi-r64: allow MAC addresses to be inherited
Daniel Golle [Fri, 5 Mar 2021 19:09:10 +0000 (19:09 +0000)]
mediatek: mt7622: bpi-r64: allow MAC addresses to be inherited

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agouboot-mediatek: improve BPi-R64 support
Daniel Golle [Fri, 5 Mar 2021 19:07:54 +0000 (19:07 +0000)]
uboot-mediatek: improve BPi-R64 support

 * allow MAC address from U-Boot env to be inhertied
 * allow eMMC installation to succeed also without recovery present
   on the SD Card.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agokernel: bump 5.10 to 5.10.20
Rui Salvaterra [Thu, 4 Mar 2021 19:51:39 +0000 (19:51 +0000)]
kernel: bump 5.10 to 5.10.20

Also add a new kconfig symbol (CONFIG_KCMP) to the generic config,
disabling the SYS_kcmp syscall (it was split from
CONFIG_CHECKPOINT_RESTORE, which is disabled by default, so the
previous behaviour is kept).

Removed (upstreamed) patches:
  070-net-icmp-pass-zeroed-opts-from-icmp-v6-_ndo_send-bef.patch
  081-wireguard-device-do-not-generate-ICMP-for-non-IP-pac.patch
  082-wireguard-queueing-get-rid-of-per-peer-ring-buffers.patch
  083-wireguard-kconfig-use-arm-chacha-even-with-no-neon.patch
  830-v5.12-0002-usb-serial-option-update-interface-mapping-for-ZTE-P685M.patch

Manually rebased patches:
  313-helios4-dts-status-led-alias.patch
  104-powerpc-mpc85xx-change-P2020RDB-dts-file-for-OpenWRT.patch

Run tested:
  ath79 (TL-WDR3600)
  mvebu (Turris Omnia)

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
3 years agoarm-trusted-firmware-mediatek: update to ATF 2.4 (2021-02-25)
Daniel Golle [Fri, 5 Mar 2021 17:14:02 +0000 (17:14 +0000)]
arm-trusted-firmware-mediatek: update to ATF 2.4 (2021-02-25)

All necessary blobs are now contained in the upstream repository, no
more wild replacing of blobs needed.
This new version also contains new storage drivers for (SPI-)NAND which
already comes with support for FM35Q1GA, so that patch can be dropped
as well.
Tested on:
 * Bananapi BPi-R64
   - sdmmc-2ddr
   - emmc-2ddr
 * Linksys E8450
   - snand-1ddr

All works fine (booting Bananapi BPi-R64 from SD Card does NOT require
a signed image, so patch arm-trusted-firmware-mediatek to allow doing
that).

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agobuild: use config-1 instead of config@1 as default
Robert Marko [Thu, 4 Mar 2021 11:37:22 +0000 (12:37 +0100)]
build: use config-1 instead of config@1 as default

U-boot will reject all nodes with @ since commit:
https://gitlab.denx.de/u-boot/u-boot/-/commit/79af75f7776fc20b0d7eb6afe1e27c00fdb4b9b4

This will cause the OpenWrt images to fail booting,
to rectify use the config-1 as default.

Signed-off-by: Robert Marko <robert.marko@sartura.hr>
3 years agoscripts: mkits.sh: replace @ with - in nodes
Robert Marko [Thu, 4 Mar 2021 11:37:21 +0000 (12:37 +0100)]
scripts: mkits.sh: replace @ with - in nodes

U-boot will reject the nodes with @ for the address since
commit:
https://gitlab.denx.de/u-boot/u-boot/-/commit/79af75f7776fc20b0d7eb6afe1e27c00fdb4b9b4

This in turn will cause the failure to boot with OpenWrt
generated images.

So, to rectify that simply replace @ with -.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
(cover also newly added rootfs@1 and initrd@1 nodes)
Signed-off-by: Robert Marko <robert.marko@sartura.hr>
3 years agobcm4908: prepare to support TP-Link Archer C2300 V1
Rafał Miłecki [Fri, 5 Mar 2021 13:38:41 +0000 (14:38 +0100)]
bcm4908: prepare to support TP-Link Archer C2300 V1

It's a BCM4906 based device (2 CPU cores). It has 512 MiB of RAM, 4 LAN
ports, 1 WAN port, 2 USB ports, NAND flash. WiFi unknown at this point.

Flashing is possible using CFE only, proper image will be worked on
later.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agobcm63xx-cfe: update to the latest master
Rafał Miłecki [Fri, 5 Mar 2021 13:37:01 +0000 (14:37 +0100)]
bcm63xx-cfe: update to the latest master

d035016 tp-link: rename to tplink to match DT vendor prefix

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agokernel/modules: fix CDC NCM dependencies
Rui Salvaterra [Wed, 3 Mar 2021 14:24:17 +0000 (14:24 +0000)]
kernel/modules: fix CDC NCM dependencies

CDC NCM support only depends on CDC Ethernet with Linux 5.10. Fix thusly.

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
3 years agogeneric: config-5.10: add missing symbols
Ilya Lipnitskiy [Wed, 3 Mar 2021 16:58:22 +0000 (08:58 -0800)]
generic: config-5.10: add missing symbols

Add symbols missing after latest crypto.mk and WireGuard changes.

Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agokernel: backport GCC 10 usbip build fix for 5.4
Rui Salvaterra [Fri, 5 Mar 2021 12:09:31 +0000 (12:09 +0000)]
kernel: backport GCC 10 usbip build fix for 5.4

From the original commit message:

"With GCC 10, building usbip triggers error for multiple definition
of 'udev_context', in:
- libsrc/vhci_driver.c:18 and
- libsrc/usbip_host_common.c:27.

Declare as extern the definition in libsrc/usbip_host_common.c."

Signed-off-by: Rui Salvaterra <rsalvaterra@gmail.com>
3 years agokernel: remove symbols from 5.10 no longer present on upstream
Luis Araneda [Thu, 4 Mar 2021 01:03:52 +0000 (22:03 -0300)]
kernel: remove symbols from 5.10 no longer present on upstream

REFCOUNT_FULL was removed for linux 5.5:
commit fb041bb7c0a9 (locking/refcount: Consolidate implementations of refcount_t)

COMMON_CLK_VERSATILE was removed on linux 5.8:
commit 5f55f1fb187d (clk: versatile: Fix kconfig dependency on COMMON_CLK_VERSATILE)

Signed-off-by: Luis Araneda <luaraneda@gmail.com>
3 years agobcm63xx: rename upstreamed patch
Sieng Piaw Liew [Wed, 24 Feb 2021 01:23:43 +0000 (09:23 +0800)]
bcm63xx: rename upstreamed patch

Patch to fix kernel panic was recently accepted upstream so rename patch
and add acked lines to reflect that.

Signed-off-by: Sieng Piaw Liew <liew.s.piaw@gmail.com>
(add the same patch for v5.10)
Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agokernel: b53: update the BCM5365 UID in the fixup
Daniel González Cabanelas [Sat, 27 Feb 2021 10:58:33 +0000 (11:58 +0100)]
kernel: b53: update the BCM5365 UID in the fixup

The BCM5365 UID was updated in the driver, but we should also update it in the
fixup.

Fixes: cbcac4fde8ba ("kernel: b53: update the BCM5365 UID")
Signed-off-by: Daniel González Cabanelas <dgcbueu@gmail.com>
(Ammend commit description, add Fixes tag)
Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agobcm27xx: bcm2711: disable HW_RANDOM_BCM2835
Álvaro Fernández Rojas [Fri, 5 Mar 2021 11:13:45 +0000 (12:13 +0100)]
bcm27xx: bcm2711: disable HW_RANDOM_BCM2835

This driver is only present on BCM2708, BCM2709 and BCM2710.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
3 years agorssileds: use new application led trigger backend
Florian Eckert [Wed, 5 Feb 2020 08:20:39 +0000 (09:20 +0100)]
rssileds: use new application led trigger backend

This will use the new application led trigger backend. For now this is
the only package that uses leds trigger in user space to configure the
kernel led triggers.

The callback script only emmits a message for now, so that this LED is now
managed by the rssileds service. Until now a generic warning was emitted that
this LED trigger is not supported. But that is not true.

-> Skipping trigger 'rssileds' for led '<name>' due to missing kernel module

I think this callback should be changed in the future to restart the
service.

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
3 years agobase-files: add new application led trigger backend
Florian Eckert [Wed, 5 Feb 2020 08:23:27 +0000 (09:23 +0100)]
base-files: add new application led trigger backend

For now we have only kernel LED trigger support. With this change it is now
possible to use application triggers.

If we configure a LED with a non kernel trigger, then we check on every
restart and boot of the LED service if we have this trigger as an application
in "/usr/libexec/led-trigger". If this file with the name is found, then we
execute this to init the LED.

Possible use cases are:

- Start/Stop/Restart an application led trigger service for this led
- Init a LED that is configured by a hotplug script (VPN tunnel established)

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
3 years agoramips: rename mtk-hsdma to hsdma-mt7621
Ilya Lipnitskiy [Fri, 5 Mar 2021 03:53:21 +0000 (19:53 -0800)]
ramips: rename mtk-hsdma to hsdma-mt7621

Follows upstream rename:
https://lore.kernel.org/driverdev-devel/20210130034507.2115280-1-ilya.lipnitskiy@gmail.com/

Fixes ramips builds on 5.4.102

Cc: John Audia <graysky@archlinux.us>
Cc: David Bauer <mail@david-bauer.net>
Cc: Petr Štetiar <ynezz@true.cz>
Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
3 years agobcm63xx-cfe: update to the latest master
Rafał Miłecki [Fri, 5 Mar 2021 09:14:28 +0000 (10:14 +0100)]
bcm63xx-cfe: update to the latest master

3fb6f1c tp-link: c2300-v1: add cferam file
79f9578 sercomm: vox-2.5: add cferam file

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
3 years agofstools: fix build with glibc
Daniel Golle [Fri, 5 Mar 2021 02:03:58 +0000 (02:03 +0000)]
fstools: fix build with glibc

stropts.h is unavailable under glibc (and unneeded when building
against glibc). Include it only if not building against glibc.

Reported-by: @DazzyWalkman
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
3 years agoipq40xx: net: phy: qca807x: fix GPIO driver
Robert Marko [Thu, 4 Mar 2021 11:38:31 +0000 (12:38 +0100)]
ipq40xx: net: phy: qca807x: fix GPIO driver

While rebasing into setting bits instead of magic values,
I accidentally forgot to actually set the force bit.

Without it using the pins as GPIO-s did not actually work.

Fixes: b5c93ed ("ipq40xx: add Qualcomm QCA807x driver")
Signed-off-by: Robert Marko <robert.marko@sartura.hr>
3 years agoath79: enable AT803X PHY for kernel 5.10
David Bauer [Wed, 3 Mar 2021 22:50:41 +0000 (23:50 +0100)]
ath79: enable AT803X PHY for kernel 5.10

The config symbol for the AT803x device driver was lost when adding
kernel 5.10.

Signed-off-by: David Bauer <mail@david-bauer.net>
3 years agoath79: replace chipselect workaround with a proper patch
David Bauer [Wed, 3 Mar 2021 16:23:16 +0000 (17:23 +0100)]
ath79: replace chipselect workaround with a proper patch

Debugging the SPI CS issue with kernel 5.10 resulted in a better
understanding for the root cause and a proper patch with a better
explanation.

Exchange the old hack patch with a more efficient (and upstreamable)
solution.

Signed-off-by: David Bauer <mail@david-bauer.net>
3 years agoarm-trusted-firmware-mediatek: don't try to install absent files
Daniel Golle [Thu, 4 Mar 2021 21:56:56 +0000 (21:56 +0000)]
arm-trusted-firmware-mediatek: don't try to install absent files

Don't try to install files which no longer exist
Since {e,sd}mmc are now produced by ptgen they have been removed.

Fixes: 5a3562cd1d ("arm-trusted-firmware-mediatek: remove {e,sd}mmc headers")
Signed-off-by: Daniel Golle <daniel@makrotopia.org>