openwrt/staging/luka.git
8 years agobase-files: fix check for empty password warning
Matthias Schiffer [Mon, 26 Sep 2016 13:25:37 +0000 (15:25 +0200)]
base-files: fix check for empty password warning

Now that we know that the password is in /etc/shadow and not in
/etc/passwd, we can properly fix the logic for the empty password check.
Only 'root::' is an empty password, 'root:x:' and 'root:!:' allow no
password login at all.

This fixes the empty password warning still showing after the root password
has been locked using 'passwd -l root' (e.g. to allow public-key auth
only).

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoconfig: enable shadow passwords unconditionally
Matthias Schiffer [Mon, 26 Sep 2016 13:25:37 +0000 (15:25 +0200)]
config: enable shadow passwords unconditionally

Configurations without shadow passwords have been broken since the removal
of telnet: as the default entry in /etc/passwd is not empty (but rather
unset), there will be no way to log onto such a system by default. As
disabling shadow passwords is not useful anyways, remove this configuration
option.

The config symbol is kept (for a while), as packages from feeds depend on
it.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agomac80211: fix crash in mac80211_hwsim
Felix Fietkau [Mon, 26 Sep 2016 14:10:39 +0000 (16:10 +0200)]
mac80211: fix crash in mac80211_hwsim

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agomvebu: add switch config for clearfog pro
Jonas Gorski [Mon, 26 Sep 2016 11:25:44 +0000 (13:25 +0200)]
mvebu: add switch config for clearfog pro

Check for switch0 existance and add default switch config if found.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
8 years agomvebu: add sysupgrade support for clearfog
Jonas Gorski [Mon, 26 Sep 2016 10:02:40 +0000 (12:02 +0200)]
mvebu: add sysupgrade support for clearfog

Add and enable sysupgrade support for clearfog boards, based on how the
brcm2708 target does it.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agomvebu: add switch node to clearfog
Jonas Gorski [Sun, 25 Sep 2016 11:34:10 +0000 (13:34 +0200)]
mvebu: add switch node to clearfog

Add a switch node to clearfog to probe and initialize it on Clearfog
Pro. This make the switch work and allows using all six switch ports.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agomvsw61xx: enable SerDes on 6176 if required
Jonas Gorski [Sat, 24 Sep 2016 19:00:14 +0000 (21:00 +0200)]
mvsw61xx: enable SerDes on 6176 if required

If the cpu port is connected through SGMII we need to enable SerDes for
it to work.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agomvsw61xx: reset phys on probe to enable switch ports on clearfog pro
Jonas Gorski [Sat, 24 Sep 2016 10:36:34 +0000 (12:36 +0200)]
mvsw61xx: reset phys on probe to enable switch ports on clearfog pro

The clearfog u-boot does not initialize the switch at all, so we need to
power up the phys ourselves.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agomvebu: replace ClearFog dts files with patches from upstream
Jonas Gorski [Sat, 24 Sep 2016 09:52:02 +0000 (11:52 +0200)]
mvebu: replace ClearFog dts files with patches from upstream

Make the dts file match with what is upstream, to ensure it has the
latest changes and switching to newer kernels is easier.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agomvebu: enable PCA955x driver for clearfog to enable pcie and usb
Jonas Gorski [Fri, 23 Sep 2016 12:32:21 +0000 (14:32 +0200)]
mvebu: enable PCA955x driver for clearfog to enable pcie and usb

Some of the PCIe and USB signals use a GPIO expander on I2C on ClearFog,
so enable the driver so that they can be configured to their required
values.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agouboot-mvebu: reset the 88E1512 PHY to make the wan port work
Jonas Gorski [Fri, 23 Sep 2016 12:03:11 +0000 (14:03 +0200)]
uboot-mvebu: reset the 88E1512 PHY to make the wan port work

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agouboot-mvebu: make hidden and be m for clearfog to fix IB failing to add it
Jonas Gorski [Fri, 23 Sep 2016 11:53:27 +0000 (13:53 +0200)]
uboot-mvebu: make hidden and be m for clearfog to fix IB failing to add it

Uboot-mvebu isn't a real package, which will break the image builder
when it tries to install it during the packing step. Instead of cleafog
selecting it through its default packages, make it default to m if the
clearfog profile is selected.

This will ensure it is always build, but never added to the rootfs. This
fixes creating images for clearfog with IB.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agouboot-mvebu: also install into KDIR to ensure it packaged in IB
Jonas Gorski [Fri, 23 Sep 2016 11:45:21 +0000 (13:45 +0200)]
uboot-mvebu: also install into KDIR to ensure it packaged in IB

The clearfog image requires u-boot, so package it into KDIR to make sure
it is available in imageBuilder.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
Acked-by: Felix Fietkau <nbd@nbd.name>
8 years agoptgen: work around gcc miscompilation
Jonas Gorski [Mon, 12 Sep 2016 10:59:21 +0000 (12:59 +0200)]
ptgen: work around gcc miscompilation

Some gcc versions seem to miscompile code using ternary operators,
work around this by just returning the result if exp is 0.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
8 years agoramips: move /lib/ramips.sh include in /etc/init.d/bootcount into start()
Matthias Schiffer [Sun, 25 Sep 2016 21:06:48 +0000 (23:06 +0200)]
ramips: move /lib/ramips.sh include in /etc/init.d/bootcount into start()

Enabling the init script offline will print an error otherwise.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agofstools: mark as nonshared and add missing PKG_CONFIG_DEPENDS
Matthias Schiffer [Sun, 25 Sep 2016 20:44:36 +0000 (22:44 +0200)]
fstools: mark as nonshared and add missing PKG_CONFIG_DEPENDS

The fstools build depends on the CONFIG_NAND_SUPPORT flag, which is
target-specific.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoimage: fix CONFIG_CLEAN_IPKG with CONFIG_TARGET_PER_DEVICE_ROOTFS
Matthias Schiffer [Sun, 25 Sep 2016 07:30:55 +0000 (09:30 +0200)]
image: fix CONFIG_CLEAN_IPKG with CONFIG_TARGET_PER_DEVICE_ROOTFS

Running prepare_rootfs on TARGET_DIR deletes the opkg state when
CONFIG_CLEAN_IPKG is enabled, making the per-device rootfs package install
fail.

To avoid this, create a copy of the TARGET_DIR before prepare_rootfs is run
and use this as basis for per-device rootfs generation.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agokernel: remove duplicate br-netfilter file and Kconfig symbol from kmod-ebtables
Matthias Schiffer [Sat, 24 Sep 2016 21:37:54 +0000 (23:37 +0200)]
kernel: remove duplicate br-netfilter file and Kconfig symbol from kmod-ebtables

br_netfilter.ko and the corresponding Kconfig symbol are already provided
by kmod-br-netfilter, which is a dependency of kmod-ebtables.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoopenssl: backport build fix when hardware support is used
Hauke Mehrtens [Sat, 24 Sep 2016 17:50:27 +0000 (19:50 +0200)]
openssl: backport build fix when hardware support is used

This fix added to the openssl 1.0.2 branch.
In addition add the header for the existing backport.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agoar71xx: add model detection for many Ubiquiti AirMax XM devices
Neal Oakey [Sat, 24 Sep 2016 17:00:14 +0000 (19:00 +0200)]
ar71xx: add model detection for many Ubiquiti AirMax XM devices

Signed-off-by: Neal Oakey <neal.oakey@bingo-ev.de>
[Matthias Schiffer: minor adjustments]
Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoimage: per-device rootfs: don't fail without opkg
Matthias Schiffer [Sat, 24 Sep 2016 16:36:36 +0000 (18:36 +0200)]
image: per-device rootfs: don't fail without opkg

Ignore errors caused by /etc/opkg not existing (i.e. when opkg is not
selected).

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoimage: allow specifying additional packages for device-specific rootfs
Matthias Schiffer [Sat, 24 Sep 2016 16:25:25 +0000 (18:25 +0200)]
image: allow specifying additional packages for device-specific rootfs

Add a new option to each device in multi-profile mode, allowing to provide
a list of packages to add or remove. In case of added packages, the user
must take care that these are selected to be built.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agotreewide: remove bad local shell variable declarations
Jo-Philipp Wich [Sat, 24 Sep 2016 12:30:24 +0000 (14:30 +0200)]
treewide: remove bad local shell variable declarations

Local variable declarations outside of functions are illegal since the Busybox
update to v1.25.0, therfore remove them from the appropriate places.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
8 years agocurl: update to version 7.50.3
Hauke Mehrtens [Sat, 24 Sep 2016 11:48:05 +0000 (13:48 +0200)]
curl: update to version 7.50.3

This fixes the following security problems:
7.50.1:
 CVE-2016-5419 TLS session resumption client cert bypass
 CVE-2016-5420 Re-using connections with wrong client cert
 CVE-2016-5421 use of connection struct after free
7.50.2:
 CVE-2016-7141 Incorrect reuse of client certificates
7.50.3:
 CVE-2016-7167 curl escape and unescape integer overflows

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agoopenssl: update to 1.0.2i
Magnus Kroken [Sat, 24 Sep 2016 09:36:49 +0000 (11:36 +0200)]
openssl: update to 1.0.2i

Drop 302-fix_no_cmac_build.patch, it has been applied upstream.

Security fixes:
* (Severity: High) OCSP Status Request extension unbounded memory growth (CVE-2016-6304)
* (Severity: Moderate) SSL_peek() hang on empty record (CVE-2016-6305)
* 10 Low severity issues

Security advisory: https://www.openssl.org/news/secadv/20160922.txt
Changelog: https://www.openssl.org/news/cl102.txt

Signed-off-by: Magnus Kroken <mkroken@gmail.com>
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agoimage: don't override opkg list directory in per-device rootfs mode
Matthias Schiffer [Sat, 24 Sep 2016 01:29:31 +0000 (03:29 +0200)]
image: don't override opkg list directory in per-device rootfs mode

opkg's -l option is always interpreted relative to the installation root.
This leads to very weird paths inside the rootfs (containing the whole path
to the LEDE tree on the build machine) and causes the subsequent deletion
of the list directory to fail (cluttering the resulting images).

Instead, use the default list directory and remove its contents in
prepare_rootfs.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoramips: do not "local" variables outside of a function
Martin Blumenstingl [Fri, 23 Sep 2016 22:07:24 +0000 (00:07 +0200)]
ramips: do not "local" variables outside of a function

Older busybox versions allowed using the local keyword outside of
functions, whereas 1.25.0 (which was introduced in 06fa1c46fc32) do not
allow this anymore (leading to the following error when executing the
script: "file: local: line nn: not in a function").

Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
8 years agolantiq: do not "local" variables outside of a function
Martin Blumenstingl [Fri, 23 Sep 2016 22:07:25 +0000 (00:07 +0200)]
lantiq: do not "local" variables outside of a function

Older busybox versions allowed using the local keyword outside of
functions, whereas 1.25.0 (which was introduced in 06fa1c46fc32) do not
allow this anymore (leading to the following error when executing the
script: "file: local: line nn: not in a function").

Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
8 years agoscripts/package-metadata.pl: fix generation of dependencies on virtual packages
Matthias Schiffer [Fri, 23 Sep 2016 21:17:09 +0000 (23:17 +0200)]
scripts/package-metadata.pl: fix generation of dependencies on virtual packages

Dependencies on purely virtual packages (satisfied by PROVIDES) that were
not using "selects" ("+" flag) would be prepended with the prefix
"PACKAGE_" twice, breaking the first alternative.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agolinux-firmware: update to current Git head
Jo-Philipp Wich [Fri, 23 Sep 2016 10:06:51 +0000 (12:06 +0200)]
linux-firmware: update to current Git head

Update the linux-firmware package in order to force the buildbots to fetch the
proper mirrored version.

Currently each builder has its own copy of the linux-firmware checkout staged
in its own dl/, since the package was updated before the mirrored copy has
been uploaded. The builders then subsequently uploaded their own copy instead,
leading to md5sum mismatches since each clone produces different tarballs.

By bumping the package to a new version and uploading the mirrored archive
with the proper md5sum beforehand, the builders will fetch that instead and
not upload their own copies.

To properly solve that problem in the future we need to ensure that packed
checkouts become reproducable.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
8 years agokernel: fix broken dependency of kmod-owl-loader on kmod-ath9k
Felix Fietkau [Thu, 22 Sep 2016 18:09:19 +0000 (20:09 +0200)]
kernel: fix broken dependency of kmod-owl-loader on kmod-ath9k

It messes up the build order of package/kernel/linux vs
package/kernel/mac80211

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agotools/firmware-utils: fix portability issue in mkmerakifw-old
Felix Fietkau [Thu, 22 Sep 2016 11:37:22 +0000 (13:37 +0200)]
tools/firmware-utils: fix portability issue in mkmerakifw-old

Fixes build failure on Mac OS X

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agolinux-firmware: update md5sum
Jo-Philipp Wich [Thu, 22 Sep 2016 08:47:45 +0000 (10:47 +0200)]
linux-firmware: update md5sum

Since the md5sum of the mirrored Git clone archive has been set in the Makefile
before that particular archive was uploaded to the source mirror, the buildbots
uploaded their own, different copy instead invalidating the mirror md5sum for
anyone else.

In order to fix the mismatch, update the md5sum to reflect the archive being
present on the download server.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
8 years agobcm53xx: move BCM53573 USB 2.0 patch to use backports prefix
Rafał Miłecki [Wed, 21 Sep 2016 12:18:25 +0000 (14:18 +0200)]
bcm53xx: move BCM53573 USB 2.0 patch to use backports prefix

It was pushed into the usb-next branch.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agobusybox: fix md5sum
Hauke Mehrtens [Tue, 20 Sep 2016 20:55:19 +0000 (22:55 +0200)]
busybox: fix md5sum

The md5sum was not updated in commit 06fa1c46fc3 "busybox: update
to version 1.25.0"

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agoltq-vdsl-app: update to version 4.17.18.6
Hauke Mehrtens [Fri, 26 Aug 2016 22:07:43 +0000 (00:07 +0200)]
ltq-vdsl-app: update to version 4.17.18.6

Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
8 years agoltq-vdsl: update to version 4.17.18.6
Hauke Mehrtens [Fri, 26 Aug 2016 22:07:03 +0000 (00:07 +0200)]
ltq-vdsl: update to version 4.17.18.6

Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
8 years agoltq-vdsl-mei: update mei driver to version 1.5.17.6
Hauke Mehrtens [Fri, 26 Aug 2016 22:06:21 +0000 (00:06 +0200)]
ltq-vdsl-mei: update mei driver to version 1.5.17.6

Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
8 years agodsl-vrx200-firmware-xdsl: update to more recent versions
Hauke Mehrtens [Fri, 26 Aug 2016 22:03:58 +0000 (00:03 +0200)]
dsl-vrx200-firmware-xdsl: update to more recent versions

The Annex A firmware will be updated to:
05.08.01.08.01.06_05.08.00.0B.01.01_osc

The Annex B firmware will be updated to:
05.07.09.09.00.06_05.07.04.04.00.02_osc

Signed-off-by: Hauke Mehrtens <hauke.mehrtens@intel.com>
8 years agobusybox: update to version 1.25.0
Hauke Mehrtens [Sun, 18 Sep 2016 21:26:26 +0000 (23:26 +0200)]
busybox: update to version 1.25.0

The following patches were removed:
010-networking-fix-uninitialized-memory-when-displaying-.patch
  https://git.busybox.net/busybox/commit/?id=f2c043acfcf9dad9fd3d65821b81f89986bbe54e

030-ip-fix-problem-on-mips64-n64-big-endian-musl-systems.patch
  https://git.busybox.net/busybox/commit/?id=4ab372d49a6e82b0bf097dedb96d26330c5f2d5f

204-udhcpc_src_ip_rebind.patch
  https://git.busybox.net/busybox/commit/?id=abe8f7515aded80889d78c2c1c8947997918cf90

230-ntpd_delayed_resolve.patch
  https://git.busybox.net/busybox/commit/?id=c8641962e4cbde48108ddfc1c105e3320778190d
  https://git.busybox.net/busybox/commit/?id=e4caf1dd9ce8569371a0eeb77ccf02a572dc0f11

260-arping_missing_includes.patch
  Not needed any more, still builds with musl for me.
  Add in 92fd6e6f1a "busybox: fix arping applet building on musl"

The Kconfig files were updated with these commands:
cd config
../convert_menuconfig.pl .../build_dir/target-*/busybox-1.25.0
cd ..
./convert_defaults.pl < .../build_dir/target-*/busybox-1.25.0/.config > Config-defaults.in

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agobase-files: Allow subtargets to define base-files.mk
Florian Fainelli [Tue, 20 Sep 2016 00:52:37 +0000 (17:52 -0700)]
base-files: Allow subtargets to define base-files.mk

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
8 years agokernel: owl-loader for delayed Atheros ath9k fixup
Christian Lamparter [Sun, 18 Sep 2016 15:12:55 +0000 (10:12 -0500)]
kernel: owl-loader for delayed Atheros ath9k fixup

Some devices (like the Cisco Meraki Z1 Cloud Managed Teleworker Gateway)
need to be able to initialize the PCIe wifi device. Normally, this is done
during the early stages of booting linux, because the necessary init code
is read from the memory mapped SPI and passed to pci_enable_ath9k_fixup.
However,this isn't possible for devices which have the init code for the
Atheros chip stored on NAND in an UBI volume. Hence, this module can be
used to initialze the chip when the user-space is ready to extract the
init code.

Martin Blumenstingl made a few fixes and added support for lantiq:
kernel: owl-loader: add support for OWL emulation PCI devices
kernel: owl-loader: don't re-scan the bus when ath9k_pci_fixup failed
kernel: owl-loader: use dev_* instead of pr_* logging functions
kernel: owl-loader: auto-generate the eeprom filename as fallback
kernel: owl-loader: add a debug message when swapping the eeprom data
kernel: owl-loader: add missing newlines in log messages
kernel: owl-loader: add support for the lantiq platform

These patches have been integrated. Thanks!

Signed-off-by: Martin Blumenstingl <martin.blumenstingl@googlemail.com>
Signed-off-by: Christian Lamparter <chunkeey@googlemail.com>
8 years agofirmware-utils mkmerakifw-old: firmware generator for Z1
Christian Lamparter [Sun, 18 Sep 2016 15:12:54 +0000 (10:12 -0500)]
firmware-utils mkmerakifw-old: firmware generator for Z1

This patch adds firmware generation tool for Cisco's Z1

Signed-off-by: Christian Lamparter <chunkeey@googlemail.com>
8 years agocyassl: remove duplicate submenu level
John Crispin [Mon, 19 Sep 2016 14:07:58 +0000 (16:07 +0200)]
cyassl: remove duplicate submenu level

Signed-off-by: John Crispin <john@phrozen.org>
8 years agocyassl: make CyaSSL/WolfSSL more configurable
Andreas Schultz [Sat, 20 Aug 2016 10:52:42 +0000 (12:52 +0200)]
cyassl: make CyaSSL/WolfSSL more configurable

The default configuration might not be suitable for
every use case. Add options to enable/disable additional
options.

Signed-off-by: Andreas Schultz <aschultz@tpip.net>
8 years agodnsmasq: Add match section support
Hans Dedecker [Fri, 2 Sep 2016 11:51:09 +0000 (13:51 +0200)]
dnsmasq: Add match section support

Match sections allow to set a tag specified by the option networkid if the client
sends an option and optionally the option value specified by the match option.
The force option will convert the dhcp-option to force-dhcp-option if set to 1 in
the dnsmasq config if options are specified in the dhcp_option option.

config match
    option networkid tag
    option match 12,myhost
    option force 1
    list dhcp_option '3,192.168.1.1'

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
8 years agoiwinfo: Bump to 2016-07-29
Florian Fainelli [Sat, 17 Sep 2016 20:20:49 +0000 (13:20 -0700)]
iwinfo: Bump to 2016-07-29

Signed-off-by: Florian Fainelli <f.fainelli@gmail.com>
8 years agoar71xx: update kernel config symbols
Piotr Dymacz [Wed, 24 Aug 2016 13:59:25 +0000 (15:59 +0200)]
ar71xx: update kernel config symbols

Signed-off-by: Piotr Dymacz <pepe2k@gmail.com>
8 years agoar71xx: mark U-Boot and radio calibration data partitions as read-only
Piotr Dymacz [Wed, 24 Aug 2016 13:42:20 +0000 (15:42 +0200)]
ar71xx: mark U-Boot and radio calibration data partitions as read-only

General convention is to keep U-Boot and radio calibration
data (ART) mtd partitions marked as read-only.

Signed-off-by: Piotr Dymacz <pepe2k@gmail.com>
8 years agokirkwood: fix uimage creation for some kirkwood devices
bobafetthotmail [Sat, 3 Sep 2016 15:03:34 +0000 (17:03 +0200)]
kirkwood: fix uimage creation for some kirkwood devices

because with the current system I'm getting fake uImages that are actually a
renamed zImage, and that's plain wrong.
This fixes bug https://bugs.lede-project.org/index.php?do=details&task_id=131
and https://bugs.lede-project.org/index.php?do=details&task_id=139

Signed-off-by: Alberto Bursi <alberto.bursi@outlook.it>
8 years agobase-files: remind users to set root password
John Crispin [Sat, 17 Sep 2016 02:21:25 +0000 (04:21 +0200)]
base-files: remind users to set root password

print a warning when a shell spawns, telling users to set a root password.

Signed-off-by: John Crispin <john@phrozen.org>
8 years agocns3xxx: eliminate hardcoded kernel/rootfs partition split
Felix Fietkau [Thu, 15 Sep 2016 10:51:57 +0000 (12:51 +0200)]
cns3xxx: eliminate hardcoded kernel/rootfs partition split

This changes the sysupgrade format. To support upgrades from the old
firmware to the new one, legacy images are provided. Because of the old
partition split, these have to be specific to the NOR or SPI device.

The new sysupgrade images are suitable for begin put on flash directly,
and they are independent of NOR vs SPI flash variant.

Flashing back to old firmware is supported via using the old full-flash
images instead of the old sysupgrade images.

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agocns3xxx: move laguna.c changes out of patches, update it in files/
Felix Fietkau [Thu, 15 Sep 2016 09:45:31 +0000 (11:45 +0200)]
cns3xxx: move laguna.c changes out of patches, update it in files/

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agoubifs: add full overlayfs support
Felix Fietkau [Wed, 14 Sep 2016 08:15:40 +0000 (10:15 +0200)]
ubifs: add full overlayfs support

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agobcm53xx: use upstream accepted ILP clk driver for BCM53573
Rafał Miłecki [Sat, 17 Sep 2016 19:42:57 +0000 (21:42 +0200)]
bcm53xx: use upstream accepted ILP clk driver for BCM53573

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agokernel: add nlmon kernel module
Hauke Mehrtens [Mon, 12 Sep 2016 20:45:47 +0000 (22:45 +0200)]
kernel: add nlmon kernel module

This driver allows to monitor netlink communication on the system.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agobusybox: libnetlink: fix alignment of netlink messages
Hauke Mehrtens [Fri, 16 Sep 2016 20:44:41 +0000 (22:44 +0200)]
busybox: libnetlink: fix alignment of netlink messages

A padding to align a message should not only be added between
different attributes of a netlink message, but also at the end of the
message to pad it to the correct size.

Without this patch the following command does not work and returns an
error code:
ip link add type nlmon

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agobase-files: reduce vm.min_free_kbytes for devices with 32M RAM
Felix Fietkau [Fri, 16 Sep 2016 14:44:28 +0000 (16:44 +0200)]
base-files: reduce vm.min_free_kbytes for devices with 32M RAM

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agolinux-firmware: update to the commit from 2016-09-15
Rafał Miłecki [Fri, 16 Sep 2016 10:30:04 +0000 (12:30 +0200)]
linux-firmware: update to the commit from 2016-09-15

This adds e.g. BCM43430 firmware (not packaged yet).

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agoarm64: fix build for linux 4.4.21
Álvaro Fernández Rojas [Fri, 16 Sep 2016 10:11:10 +0000 (12:11 +0200)]
arm64: fix build for linux 4.4.21

linux 4.4.21 adds 2 new symbols for arm64.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agokernel: update kernel 4.4 to version 4.4.21
Álvaro Fernández Rojas [Fri, 16 Sep 2016 08:17:27 +0000 (10:17 +0200)]
kernel: update kernel 4.4 to version 4.4.21

Refresh patches for all targets that support kernel 4.4.
Compile-tested on brcm2708 only.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agosunxi: add rtl8xxxu into pcduino v3 profile
Álvaro Fernández Rojas [Thu, 15 Sep 2016 18:21:40 +0000 (20:21 +0200)]
sunxi: add rtl8xxxu into pcduino v3 profile

Now that RTL8188EU is supported in rtl8xxu select it for pcDuino v3

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agortl8xxxu: add support for rtl8188eu
Álvaro Fernández Rojas [Wed, 29 Jun 2016 15:04:05 +0000 (17:04 +0200)]
rtl8xxxu: add support for rtl8188eu

Patches by Jes Sorensen:
https://git.kernel.org/cgit/linux/kernel/git/jes/linux.git/

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agolinux-firmware: rename r8188eu-firmware to rtl8188eu-firmware
Álvaro Fernández Rojas [Wed, 27 Jul 2016 10:24:04 +0000 (12:24 +0200)]
linux-firmware: rename r8188eu-firmware to rtl8188eu-firmware

This is consistent with the names used for other realtek firmwares.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agomac80211: stop brcmfmac from selecting all SDIO firmwares
Álvaro Fernández Rojas [Thu, 15 Sep 2016 07:09:46 +0000 (09:09 +0200)]
mac80211: stop brcmfmac from selecting all SDIO firmwares

Now that we have firmwares separated and brcm2708 being the only target that
actually selects SDIO support, avoid selecting all firmwares by default.
sunxi should select the proper firmwares once SDIO support is enabled and
tested.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agobrcmfmac43430-firmware: rename to brcmfmac-firmware-43430-sdio
Álvaro Fernández Rojas [Thu, 15 Sep 2016 07:07:50 +0000 (09:07 +0200)]
brcmfmac43430-firmware: rename to brcmfmac-firmware-43430-sdio

This is consistent with the rest of brcmfmac firmwares.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agolinux-firmware: separate packages for Broadcom FullMAC SDIO firmwares
Álvaro Fernández Rojas [Thu, 15 Sep 2016 07:00:35 +0000 (09:00 +0200)]
linux-firmware: separate packages for Broadcom FullMAC SDIO firmwares

Using few packages will allow saving some space by decreasing rootfs
size.

Moreover there are more firmware files that may require packaging and
even more to come later.

This can especially useful now, with per device rootfs.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agoar71xx: set region code of TP-Link TL-WDR3600/4300 to US
Matthias Schiffer [Thu, 15 Sep 2016 17:24:58 +0000 (19:24 +0200)]
ar71xx: set region code of TP-Link TL-WDR3600/4300 to US

There are currently two stock firmwares for the TL-WDR3600/4300, a US and
a universal version. Both allow installing images with US region code, so
we don't need to provide multiple images.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agoar71xx: separate TP-Link TL-WDR3600/4300/4310 profiles
Matthias Schiffer [Thu, 15 Sep 2016 17:17:43 +0000 (19:17 +0200)]
ar71xx: separate TP-Link TL-WDR3600/4300/4310 profiles

Simplify modifying some of the images without affecting the others.

While we're at it, also unify the profiles to use := syntax and add "v1" to
the TL-WDR4300 name to make things more consistent.

Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
8 years agokernel: fix missing rename on usb gadget kmod cleanup
Felix Fietkau [Thu, 15 Sep 2016 15:01:40 +0000 (17:01 +0200)]
kernel: fix missing rename on usb gadget kmod cleanup

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agocns3xxx: Enable driver support for onboard m25p80 SPI flash
Koen Vandeputte [Wed, 14 Sep 2016 14:46:00 +0000 (16:46 +0200)]
cns3xxx: Enable driver support for onboard m25p80 SPI flash

This device is present on the Gateworks Laguna cns3xxx family.

As the SPI bus master is enabled, also enable driver support for
this typical slave.

[    3.920000] m25p80 spi1.0: found m25p32, expected m25p80
[    3.930000] m25p80 spi1.0: m25p32 (4096 Kbytes)
[    3.930000] Creating 4 MTD partitions on "spi1.0":
[    3.940000] 0x000000000000-0x000000040000 : "uboot"
[    3.940000] 0x000000040000-0x000000080000 : "params"
[    3.950000] 0x000000080000-0x000000200000 : "kernel"
[    3.950000] 0x000000200000-0x000000400000 : "rootfs"

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
8 years agokernel: clean up usb gadget support
Tim Harvey [Thu, 8 Sep 2016 15:40:03 +0000 (08:40 -0700)]
kernel: clean up usb gadget support

clean up usb gadget support:
- rename gadget modules so that they appear together and are easier to
  identify as gadget modules
- make usb-lib-composite and usb-gadget hidden as there is no point in
  selecting those without gadget drivers that require them as deps

Signed-off-by: Tim Harvey <tharvey@gateworks.com>
8 years agoramips: fix wrong blocksizes
Mathias Kresin [Wed, 14 Sep 2016 17:11:19 +0000 (19:11 +0200)]
ramips: fix wrong blocksizes

The D-Link DIR-860L B1 has a flash chip which doesn't support
4K sectors. Since the DIR-860L B1 was the only mt7621 board which had
the 4k blocksize set, the 4K sector support is removed from the kernel
config.

I've checked the flash chips of all boards having set a 4K blocksize
again. This time I searched harder to finding bootlogs instead of
relying on wikis articles and/or the device tree source file.

The Planex MZK-DP150N has an en25q32b instead of the mentioned one in
the dts. Albeit the en25q32b supports 4K sectors, 4K support is not
enabled in the driver. Change the blocksize for this board back to 64K.

Reported-by: Russell Senior <russell@personaltelco.net>
Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agokernel: update kernel 4.4 to version 4.4.20
Álvaro Fernández Rojas [Thu, 15 Sep 2016 06:10:55 +0000 (08:10 +0200)]
kernel: update kernel 4.4 to version 4.4.20

Refresh patches for all targets that support kernel 4.4.
Compile-tested on brcm2708 only.

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agomac80211: stop brcmfmac from selecting all PCIe firmwares
Rafał Miłecki [Tue, 13 Sep 2016 09:28:07 +0000 (11:28 +0200)]
mac80211: stop brcmfmac from selecting all PCIe firmwares

Now we have firmwares separated and bcm53xx selecting required ones make
use of it to actually save that rootfs space.
Other targets using brcmfmac (brcm2708 and sunxi) use SDIO interface and
firmware so they don't won't be affected.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agomountd: update to latest git HEAD
John Crispin [Wed, 14 Sep 2016 19:37:21 +0000 (21:37 +0200)]
mountd: update to latest git HEAD

fixes cleanup of mount points

Signed-off-by: John Crispin <john@phrozen.org>
8 years agoramips: enable 4K sector support in kernel config
Mathias Kresin [Tue, 13 Sep 2016 19:47:25 +0000 (21:47 +0200)]
ramips: enable 4K sector support in kernel config

This is a follow up to 28110727f1d513a6c4c13aa87ecb606aa5d306eb
"ramips: set blocksize for 4MB devices". I've missed to include the
required changes of the kernel configs to enable 4K sector size
support.

The option is only enabled for targets having boards with 4k sector
size flash chips.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agoimage: remove padding parameter from append-kernel/append-rootfs
Mathias Kresin [Sun, 11 Sep 2016 17:05:20 +0000 (19:05 +0200)]
image: remove padding parameter from append-kernel/append-rootfs

Using pad-to instead of passing the optional padding to append-kernel
or append-rootfs. It could be that the value of a variable is passed.
In case the variable is empty no error is thrown.

Furthermore the purpose of the extra parameter is hard to get without
reading the code.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agoimage: use check-size from new image build code
Mathias Kresin [Tue, 13 Sep 2016 05:18:10 +0000 (07:18 +0200)]
image: use check-size from new image build code

Use the new image build code and deduplicate the code.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agoimage: add KERNEL_SIZE to the default device vars
Mathias Kresin [Tue, 13 Sep 2016 17:23:52 +0000 (19:23 +0200)]
image: add KERNEL_SIZE to the default device vars

This reverts commit ec37a565878fd79d4127cbb843c17ce3b8dc97c0 and fixes
the underlying issue.

8 years agobcm53xx: use the latest submitted version of ILP clock driver
Rafał Miłecki [Tue, 13 Sep 2016 10:24:36 +0000 (12:24 +0200)]
bcm53xx: use the latest submitted version of ILP clock driver

It switched to syscon to better describe PMU block.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agohostapd: fix regression breaking brcmfmac
Rafał Miłecki [Tue, 13 Sep 2016 10:05:33 +0000 (12:05 +0200)]
hostapd: fix regression breaking brcmfmac

The latest update of hostapd broke brcmfmac due to upstream regression.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agobcm53xx: specify brcmfmac firmware for every device
Rafał Miłecki [Tue, 13 Sep 2016 09:03:02 +0000 (11:03 +0200)]
bcm53xx: specify brcmfmac firmware for every device

This will allow us to include required firmwares only and save some
rootfs space.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agolinux-firmware: separate packages for Broadcom FullMAC PCIe firmwares
Rafał Miłecki [Sun, 11 Sep 2016 20:56:45 +0000 (22:56 +0200)]
linux-firmware: separate packages for Broadcom FullMAC PCIe firmwares

Using few packages will allow saving some space by decreasing rootfs
size. Dropping 43602a1 firmware saves 316 580 B. Dropping 4366b1 saves
468 188 B.

Moreover there are more firmware files that may require packaging and
even more to come later (e.g. 4366c0).

This can especially useful now, with per device rootfs.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
8 years agokernel: Backport pending appended DTB handling patches
Daniel Gimpelevich [Sun, 17 Jul 2016 15:30:42 +0000 (08:30 -0700)]
kernel: Backport pending appended DTB handling patches

Backport patches from upstream Linux kernel which are making the
kernel stores the appended dtb not in the same resisters as defined in
the UHI specification, use a separate variable on MIPS.

Signed-off-by: Daniel Gimpelevich <daniel@gimpelevich.san-francisco.ca.us>
[some modifications]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
8 years agobuild: drop UBI EOF marker from images by default
Felix Fietkau [Mon, 12 Sep 2016 16:20:50 +0000 (18:20 +0200)]
build: drop UBI EOF marker from images by default

Only add them where they are actually required.
Should help with compatibility issues with stock U-Boot images that
access UBI

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agomac80211: fix tx issue with CCMP PN generated in hardware
Felix Fietkau [Mon, 12 Sep 2016 09:25:20 +0000 (11:25 +0200)]
mac80211: fix tx issue with CCMP PN generated in hardware

Signed-off-by: Felix Fietkau <nbd@nbd.name>
8 years agoramips: improve Linksys EA8500 build code
Mathias Kresin [Sun, 11 Sep 2016 15:46:09 +0000 (17:46 +0200)]
ramips: improve Linksys EA8500 build code

Use of the kernel size variable.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agomvebu: fix OpenBlocks AX3 image
Mathias Kresin [Sun, 11 Sep 2016 17:06:32 +0000 (19:06 +0200)]
mvebu: fix OpenBlocks AX3 image

The KERNEL_SIZE variable is unset and no padding is applied. This looks
like a typo to me since the ubinized image need to be aligned to the
flash blocksize.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agoar71xx: fix typo in image build code
Mathias Kresin [Sun, 11 Sep 2016 15:50:29 +0000 (17:50 +0200)]
ar71xx: fix typo in image build code

The kernel size isn't passed to the append-kernel build step and the
resulting image bricks the device.

Fixes FS#168.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agocleanup ucidef_set_interface* usage
Mathias Kresin [Sat, 10 Sep 2016 07:46:14 +0000 (09:46 +0200)]
cleanup ucidef_set_interface* usage

- quote the interface name
- remove call of not existing function
- remove the proto if it's the default proto

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agouse immediate set in target Makefiles
Mathias Kresin [Fri, 9 Sep 2016 19:10:54 +0000 (21:10 +0200)]
use immediate set in target Makefiles

No functional change, it's just to have the same style everywhere. This
way I don't need to use any regex magic to extract all subtargets for
compile tests.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agoramips: board.d merge redundant switch/interface configs
Mathias Kresin [Fri, 9 Sep 2016 18:57:58 +0000 (20:57 +0200)]
ramips: board.d merge redundant switch/interface configs

Fix alphabetical order distortions as well.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agolantiq: board.d: apply alphabetical order
Mathias Kresin [Thu, 25 Aug 2016 20:19:00 +0000 (22:19 +0200)]
lantiq: board.d: apply alphabetical order

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agolantiq: board.d: cleanup default switch config
Mathias Kresin [Tue, 23 Aug 2016 05:36:00 +0000 (07:36 +0200)]
lantiq: board.d: cleanup default switch config

Add or fix the physical port number of switch ports to allow LuCI to
display the ports in physical order.

Remove the physical port number in case bridge port and physical port
order are the same.

Reorder the ucidef_add_switch parameter to be aligned with the switch
port number.

Remove board settings which are covered by the default case and remove
comments.

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agolantiq: enable cpu temp driver for more tested boards
Mathias Kresin [Thu, 18 Aug 2016 19:14:41 +0000 (21:14 +0200)]
lantiq: enable cpu temp driver for more tested boards

Signed-off-by: Mathias Kresin <dev@kresin.me>
8 years agobrcm2708: update linux 4.4 patches to latest version
Álvaro Fernández Rojas [Sat, 10 Sep 2016 12:54:26 +0000 (14:54 +0200)]
brcm2708: update linux 4.4 patches to latest version

As usual these patches were extracted and rebased from the raspberry pi repo:
https://github.com/raspberrypi/linux/tree/rpi-4.4.y

Also adds support for Raspberry Pi Compute Module 3 (untested).

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agobrcm2708-gpu-fw: update to latest version
Álvaro Fernández Rojas [Sat, 10 Sep 2016 12:54:08 +0000 (14:54 +0200)]
brcm2708-gpu-fw: update to latest version

Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
8 years agodnsmasq: make NO_ID optional in full variant
Kevin Darbyshire-Bryant [Fri, 9 Sep 2016 08:03:27 +0000 (09:03 +0100)]
dnsmasq: make NO_ID optional in full variant

Permit users of the full variant to disable the NO_ID *.bind pseudo
domain masking.

Defaulted 'on' in all variants.

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
8 years agodropbear: hide dropbear version
Kevin Darbyshire-Bryant [Wed, 7 Sep 2016 16:23:51 +0000 (17:23 +0100)]
dropbear: hide dropbear version

As security precaution and to limit the attack surface based on
the version reported by tools like nmap mask out the dropbear
version so the version is not visible anymore by snooping on the
wire. Version is still visible by 'dropbear -V'

Based on a patch by Hans Dedecker <dedeckeh@gmail.com>

Signed-off-by: Kevin Darbyshire-Bryant <kevin@darbyshire-bryant.me.uk>
Signed-off-by: Felix Fietkau <nbd@nbd.name> [remove trailing _]