openwrt/staging/chunkeey.git
5 years agojffs2: Fix use of uninitialized delayed_work, lockdep breakage
Daniel Santos [Fri, 19 Oct 2018 08:59:20 +0000 (03:59 -0500)]
jffs2: Fix use of uninitialized delayed_work, lockdep breakage

I've sent this one upstream.  This patch is critical if you want to run
with "prove lock correctness" (lockdep) and you happen to have certain
mtd devices.  The misuse of the uninitialized object is undefined
behaviour, but being zeroed it does not appear to have actually broken
anything other than the lockdep engine.

Signed-off-by: Daniel Santos <daniel.santos@pobox.com>
5 years agotools/sdimage: update to latest git version
Michael Heimpold [Sun, 18 Nov 2018 09:21:18 +0000 (10:21 +0100)]
tools/sdimage: update to latest git version

This includes code cleanups and fixes some portability issues,
compiler warnings about printf arguments etc.

Signed-off-by: Michael Heimpold <mhei@heimpold.de>
5 years agokernel/modules: HMC5843 3D-compass kernel module support enabled.
Roman Bazalevsky [Thu, 6 Dec 2018 11:54:41 +0000 (14:54 +0300)]
kernel/modules: HMC5843 3D-compass kernel module support enabled.

Signed-off-by: Roman Bazalevsky <rvb@rvb.name>
5 years agombedtls: Update to 2.14.1
Daniel Engberg [Sat, 24 Nov 2018 23:42:10 +0000 (00:42 +0100)]
mbedtls: Update to 2.14.1

Update mbedtls to 2.14.1

This fixes:
* CVE-2018-19608: Local timing attack on RSA decryption

Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
[Update to 2.14.1]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agonetfilter: Add fib support for nftables
Brett Mastbergen [Tue, 11 Dec 2018 19:09:22 +0000 (14:09 -0500)]
netfilter: Add fib support for nftables

Signed-off-by: Brett Mastbergen <bmastbergen@untangle.com>
5 years agokernel: mv88e6060: disable hardware level MAC learning
Anderson Luiz Alves [Sun, 12 Aug 2018 12:18:27 +0000 (09:18 -0300)]
kernel: mv88e6060: disable hardware level MAC learning

Disable Marvell's hardware level MAC learning because it breaks station roaming.

When enabled it drops all frames that arrive from a MAC address
that is on a different port at learning table.

Problem description:
Multiple APs with inter-AP roaming connected to different ports,
when station moves from one AP on one port to another AP on another port,
traffic flow breaks down because the learning table is not updated.

Signed-off-by: Anderson Luiz Alves <alacn1@gmail.com>
[Replaced with upstream version, move to generic]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: add mv88e61xx switch port-mirroring support
Deng Qingfang [Fri, 14 Dec 2018 10:24:11 +0000 (18:24 +0800)]
kernel: add mv88e61xx switch port-mirroring support

Compile & run tested on mvebu

Signed-off-by: Deng Qingfang <dengqf6@mail2.sysu.edu.cn>
5 years agomt76: fix dependencies
Deng Qingfang [Fri, 14 Dec 2018 10:21:49 +0000 (18:21 +0800)]
mt76: fix dependencies

Only MT76x0U needs kmod-mt76x02-usb

Signed-off-by: Deng Qingfang <dengqf6@mail2.sysu.edu.cn>
5 years agoswconfig: Add missing include
Rosen Penev [Thu, 6 Dec 2018 21:12:06 +0000 (13:12 -0800)]
swconfig: Add missing include

Fixes these warnings:

swlib.c:455:18: warning: implicit declaration of function 'isspace'
swlib.c:461:9: warning: implicit declaration of function 'isdigit'

Signed-off-by: Rosen Penev <rosenp@gmail.com>
5 years agof2fs-tools: Update to 1.12.0
Rosen Penev [Mon, 10 Dec 2018 03:58:21 +0000 (19:58 -0800)]
f2fs-tools: Update to 1.12.0

Added two upstream mailing list patches that fix behavior under big endian
systems. Issue was present since version 1.11.0.

Tested on Turris Omnia.

Original discussion: https://github.com/openwrt/openwrt/pull/1575

Signed-off-by: Rosen Penev <rosenp@gmail.com>
5 years agolantiq: add integer latency stat for lantiq-dsl
Andre Heider [Mon, 10 Dec 2018 09:06:50 +0000 (10:06 +0100)]
lantiq: add integer latency stat for lantiq-dsl

The current stats always have a 'ms' suffix, and they're used by luci.
Introduce dsl.latency_[down|up] values, exported in µs without suffix.

Signed-off-by: Andre Heider <a.heider@gmail.com>
5 years agortl8812au: Add out-of-tree driver.
Ben Greear [Thu, 13 Dec 2018 23:22:32 +0000 (23:22 +0000)]
rtl8812au: Add out-of-tree driver.

Use a forked version of the rtl8812au driver that works better
with OpenWRT (fix compile bugs, fix phy MAC address, etc)

Signed-off-by: Ben Greear <greearb@candelatech.com>
[update to 2018-11-16, replace rtw_byteorder.h, rename folder]
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agoomcproxy: fix compilation on little-endian CPUs
Eneas U de Queiroz [Fri, 14 Dec 2018 18:25:27 +0000 (16:25 -0200)]
omcproxy: fix compilation on little-endian CPUs

Don't use cpu_to_be32 outside of a function.

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
5 years agoath79: add support for TP-Link TL-WR842N/ND v1 router
Marcin Jurkowski [Tue, 11 Dec 2018 15:14:21 +0000 (16:14 +0100)]
ath79: add support for TP-Link TL-WR842N/ND v1 router

This ports support for TP-Link TL-WR842N/ND v1 from ar71xx.

CPU: Atheros AR7241 400 MHz
RAM: 32 MiB
FLASH: 8 MiB
PORTS: 4 Port 100/10 Switch, 1 Port 100/10 Wan
WiFi: Atheros AR9287
LED: SYS, WiFi, LAN, WAN, 3G, QSS
BTN: WiFi, Reset/WPS

AR71xx target used "tl-mr3420" as board id so force flag is needed
if upgrading from old target.

Signed-off-by: Marcin Jurkowski <marcin1j@gmail.com>
Signed-off-by: Christian Lamparter <chunkeey@gmail.com> [trivial cleanup]
5 years agoipq806x: add ath10k calibration data MAC addresses patching
Christian Lamparter [Sun, 28 Oct 2018 16:39:43 +0000 (17:39 +0100)]
ipq806x: add ath10k calibration data MAC addresses patching

Ben Greear reported in his patch:
|Subject: netgear r7800: Fix mac address of radios.
|
|Reloading the driver causes the phyX to change, and that
|caused the MAC address to change.

This is because all ODM/OEMs except QCA bothered to write
the correct MAC address for the ath10k wifi into the
calibration data.

This patch copies over the MAC patching helper functions from ipq40xx's
target/linux/ipq40xx/base-files/etc/hotplug.d/firmware/11-ath10k-caldata
file and converts all the devices to patch the correct MACs into the
extracted calibration data before it gets sent to the driver, which sets
up the device with the correct MAC address. It also removes the entries
in the 10_fix_wifi_mac file as they have served their purpose for good.

Please note the C2600: There is conflicting information on what
the offset for the second wifi is supposed to be. This patch uses
what was specified in 10_fix_wifi_mac.

According to Ben Greear this method is save to use with the
stock firmware too. As he explained that the stock firmware
messes up rx-bssid mask calculation when the MAC is changed
after the first vif is created.

Reported-by: Ben Greear <greearb@candelatech.com>
Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
5 years agoramips: mt7620: add usb packages
Mathias Kresin [Sat, 8 Dec 2018 11:25:00 +0000 (12:25 +0100)]
ramips: mt7620: add usb packages

Add the usb drivers for all boards with enabled ochi/ehci node in the
dts file.

Fixes: FS#1987
Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: mt7620: remove unnecessary usb packages
Mathias Kresin [Sat, 8 Dec 2018 10:48:47 +0000 (11:48 +0100)]
ramips: mt7620: remove unnecessary usb packages

These are either installed as dependency or not required at all.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: mt7620: add usb ohci driver
Mathias Kresin [Sat, 8 Dec 2018 10:46:57 +0000 (11:46 +0100)]
ramips: mt7620: add usb ohci driver

Add the USB 1.1 driver for all boards not having a fixed USB 2.0
device attached to the USB bus.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: several fixes for HC5x61
Deng Qingfang [Fri, 14 Dec 2018 10:15:52 +0000 (18:15 +0800)]
ramips: several fixes for HC5x61

 - Mark other partitions as read-only for HC5x61

 - Only enable USB and PCIe for HC5761/HC5861
   HC5661 doesn't have a USB port, and there is nothing attached to its PCIe.

 - Fix HC5761 switch ports
   HC5761 has only 3 ethernet ports (1x WAN + 2x LAN). Remove unused ports.

 - Fix HC5861 5GHz radio
   HC5861 has MT7612EN 5GHz WiFi chip, not MT7610EN.

 - Fix HC5761/HC5861 WiFi LEDs
   After 5GHz is enabled, it becomes wlan0. And 2.4GHz would be wlan1.

 - Fix HC5x61 image size
   It should be 15872k (0xf80000)

Signed-off-by: Deng Qingfang <dengqf6@mail2.sysu.edu.cn>
5 years agoipq40xx: integrate ath10kcal_patch_mac into ath10kcal_patch_mac_crc
Christian Lamparter [Sat, 15 Dec 2018 15:56:24 +0000 (16:56 +0100)]
ipq40xx: integrate ath10kcal_patch_mac into ath10kcal_patch_mac_crc

In the thread: "ipq806x: add ath10k calibration data MAC addresses patching"
Chuanhong Guo <gch981213@gmail.com> noted that:
"All ath10k calibration data have a checksum at 0x2.
ath10kcal_patch_mac works for QCA9880/QCA9882 only because
the ath10k firmware for these two chips doesn't check the
checksum value. (QCA proprietary driver checks this and
refuses to use caldata with incorrect checksum.)"

This patch updates 11-ath10k-caldata of the ipq40xx target accordingly.

Reported-by: Chuanhong Guo <gch981213@gmail.com>
Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
5 years agoath10k-firmware: update all CT firmware variants
Michael Yartys [Wed, 12 Dec 2018 19:29:50 +0000 (20:29 +0100)]
ath10k-firmware: update all CT firmware variants

Wave-1 firmware (988x, 9887): bug fixes
Wave-2 firmware (4019, 9888, 99x0, 9984): fix protected management frames, rate-ctrl fixes, and performance improvements

Signed-off-by: Michael Yartys <michael.yartys@gmail.com>
5 years agoath10k-ct: Update to 2018-12-11 and use version based on 4.19
Hauke Mehrtens [Sun, 25 Nov 2018 20:24:05 +0000 (21:24 +0100)]
ath10k-ct: Update to 2018-12-11 and use version based on 4.19

This updates the ath10k-ct driver to the version from 2018-12-11 and
selects the ath10k-ct version based on kernel 4.19 by default.

CONFIG_ATH10K_CE was introduced between kernel 4.16 and 4.19 and is a
mandatory option.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agogcc: update to version 7.4.0
Hauke Mehrtens [Sun, 9 Dec 2018 18:08:06 +0000 (19:08 +0100)]
gcc: update to version 7.4.0

This updates the GCC to the next minor release which fixes 178 bugs.
The two removed patches are included in gcc 7.4.0

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Tested-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agokernel: netfilter: chain filters merged into nf_tables.ko
Hauke Mehrtens [Fri, 2 Nov 2018 23:31:22 +0000 (00:31 +0100)]
kernel: netfilter: chain filters merged into nf_tables.ko

In mainline kernel commit 02c7b25e5f5 ("netfilter: nf_tables: build-in
filter chain type") all chain filters were merged into one file and into
one kernel module to save some memory. The code protected by these
configuration options CONFIG_NF_TABLES_BRIDGE, CONFIG_NF_TABLES_IPV4,
CONFIG_NF_TABLES_ARP, CONFIG_NF_TABLES_IPV6, CONFIG_NF_TABLES_NETDEV and
CONFIG_NF_TABLES_INET was merged into the nft_chain_filter.c file which
is now always compiled into the nf_tables.ko file.

This only happened in kernel 4.19 and OpenWrt has to select these as
modules in older kennel versions. Mark them as build-in in the kernel
4.19 specific kernel configuration file which will then not be
overwritten by the package specific settings which try to make them
modular again.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: netfilter: Adapt merge ipv4/ipv6 masquerade code
Hauke Mehrtens [Tue, 27 Nov 2018 22:40:21 +0000 (23:40 +0100)]
kernel: netfilter: Adapt merge ipv4/ipv6 masquerade code

In kernel commit 0168e8b361 ("netfilter: nat: merge ipv4/ipv6 masquerade
code into main nat module") the CONFIG_NF_NAT_MASQUERADE_IPV4 and
CONFIG_NF_NAT_MASQUERADE_IPV6 kernel configuration option were changed
to bool and the code will not be compiled as a own module any more, but
it will be integrated into nf_nat_ipv4.ko or nf_nat_ipv6.ko to save some
memory.

Activate these options as bool in the generic kernel 4.19 configuration
only, to always build them into the nf_nat_ipv*.ko modules. The kmod
file will still try to select them as module, but the generic
configuration will not be overwritten.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: netfilter: Add nf_conncount.ko
Hauke Mehrtens [Tue, 27 Nov 2018 22:37:19 +0000 (23:37 +0100)]
kernel: netfilter: Add nf_conncount.ko

Some kernel modules from kmod-ipt-conntrack-extra depend on
nf_conncount.ko, which was added in kernel 4.16, add it to the kmod.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: netfilter: Add nf_tproxy_ipv{4,6} and nf_socket_ipv{4,6}
Hauke Mehrtens [Sun, 18 Nov 2018 17:15:56 +0000 (18:15 +0100)]
kernel: netfilter: Add nf_tproxy_ipv{4,6} and nf_socket_ipv{4,6}

The nf_socket.ko module was split in commit 8db4c5be88f ("netfilter:
move socket lookup infrastructure to nf_socket_ipv{4,6}.c") into a
common, n IPv4 and an IPv6 part.
The nf_tproxy.ko module was split in commit 45ca4e0cf27 ("netfilter:
Libify xt_TPROXY") into a common, an IPv4 and an IPv6 part.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: netfilter: Add nf_defrag_ipv6.ko to NF_CONNTRACK on 4.19
Hauke Mehrtens [Sun, 18 Nov 2018 13:40:07 +0000 (14:40 +0100)]
kernel: netfilter: Add nf_defrag_ipv6.ko to NF_CONNTRACK on 4.19

In kernel commit a0ae2562c6c ("netfilter: conntrack: remove l3proto
abstraction") The modules nf_conntrack_ipv4.ko, nf_conntrack_ipv6.ko and
nf_conntrack.ko were squashed together into one module. This module now
depends on nf_defrag_ipv6 when IPv6 support was activated. This is part
of the main netfilter packages, so add nf_defrag_ipv6.ko also to the
default netfilter packages on kernel 4.19 and later.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Make CONFIG_NVMEM tristate
Hauke Mehrtens [Fri, 2 Nov 2018 23:32:39 +0000 (00:32 +0100)]
kernel: Make CONFIG_NVMEM tristate

CONFIG_OF_NET depends on CONFIG_NVMEM in kernel 4.19. To fix some build
problems in mainline Linux kernel CONFIG_NVMEM was changed from tristate
to bool in commit 2a37ce25d9 ("nvmem: disallow modular CONFIG_NVMEM").

This patch in OpenWrt revert the upstream commit and changes
CONFIG_NVMEM back to tristate we just have to make sure to build this in
for all targets which select CONFIG_OF_NET.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: tg3: Do not depend on kmod-hwmon-core on kernel 4.19
Hauke Mehrtens [Mon, 26 Nov 2018 23:18:08 +0000 (00:18 +0100)]
kernel: tg3: Do not depend on kmod-hwmon-core on kernel 4.19

Like on kernel 4.14 this dependency is deactivated in OpenWrt.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Add missing dependency to kmod-regmap
Hauke Mehrtens [Mon, 26 Nov 2018 23:17:47 +0000 (00:17 +0100)]
kernel: Add missing dependency to kmod-regmap

Like on kernel 4.14 some kernel modules depend now on regmap.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Make video-gspca-core depend on vidobuf2
Hauke Mehrtens [Fri, 2 Nov 2018 23:30:55 +0000 (00:30 +0100)]
kernel: Make video-gspca-core depend on vidobuf2

This new dependency is needed for kernel 4.19.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Always activate CONFIG_HW_RANDOM_TPM
Hauke Mehrtens [Fri, 2 Nov 2018 23:29:51 +0000 (00:29 +0100)]
kernel: Always activate CONFIG_HW_RANDOM_TPM

CONFIG_HW_RANDOM_TPM does not activate a separate kernel module any
more, but it only activates the random code in the tpm.ko.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Make kmod-mpls depend on iptunnel in kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 23:28:52 +0000 (00:28 +0100)]
kernel: Make kmod-mpls depend on iptunnel in kernel 4.19

This new dependency is needed with kernel 4.19.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Adapt to move of autofs4 in kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 23:27:55 +0000 (00:27 +0100)]
kernel: Adapt to move of autofs4 in kernel 4.19

autofs4 is now in the fs/autofs/ folder in kernel 4.19

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Adapt to new location of video-videobuf2 in kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 19:41:37 +0000 (20:41 +0100)]
kernel: Adapt to new location of video-videobuf2 in kernel 4.19

The video-videobuf2 kernel modules were moved to a new folder in kernel
4.19. videobuf2-v4l2.ko is only available since kernel 4.4, blacklist
this kmod completely on kernel 3.18.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Add dependencies for kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 19:40:25 +0000 (20:40 +0100)]
kernel: Add dependencies for kernel 4.19

These dependencies are needed on kernel 4.14 and kernel 4.19.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Use crypto_simd.ko instead of lrw.ko for x86
Hauke Mehrtens [Sat, 8 Dec 2018 13:47:11 +0000 (14:47 +0100)]
kernel: Use crypto_simd.ko instead of lrw.ko for x86

The x86 optimized cryptographic algorithm kernel modules now mostly use
crypto_simd.ko instead of lrw.ko in kernel 4.19. Add the new module to
the kmod-crypto-misc package.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Remove crypto/ablk_helper.ko on kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 19:36:35 +0000 (20:36 +0100)]
kernel: Remove crypto/ablk_helper.ko on kernel 4.19

This module was removed in kernel 4.17, all users are refactored to not
need this any more.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: extract asn1_decoder.ko
Hauke Mehrtens [Fri, 2 Nov 2018 18:25:06 +0000 (19:25 +0100)]
kernel: extract asn1_decoder.ko

The asn1_decoder.ko module is needed by the kmod-nf-nathelper-extra
package in kernel 4.19, extract it and add the missing dependencies.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: add missing dependency to kmod-crypto-acompress
Hauke Mehrtens [Fri, 2 Nov 2018 18:23:39 +0000 (19:23 +0100)]
kernel: add missing dependency to kmod-crypto-acompress

Like kernel on 4.14 some modules need the dependency to
kmod-crypto-acompress on kernel 4.19.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Adapt to moved kvaser_usb.ko in kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 18:21:54 +0000 (19:21 +0100)]
kernel: Adapt to moved kvaser_usb.ko in kernel 4.19

In kernel 4.19 the kvaser_usb.ko file moved into its own directory.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Use kmod-dax on kernel 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 18:15:59 +0000 (19:15 +0100)]
kernel: Use kmod-dax on kernel 4.19

Like on kernel 4.14 kmod-dax is needed by kmod-dm also in kernel 4.19.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agoi2c-gpio-custom: Adapt to moved include file
Hauke Mehrtens [Fri, 2 Nov 2018 18:14:47 +0000 (19:14 +0100)]
i2c-gpio-custom: Adapt to moved include file

The i2c-gpio.h file was moved in kernel 4.18.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Deactivate *-gpio-custom drivers for 4.19
Hauke Mehrtens [Fri, 2 Nov 2018 18:13:03 +0000 (19:13 +0100)]
kernel: Deactivate *-gpio-custom drivers for 4.19

Kernel interface changed with kernel 4.19, it does not accept raw GPIO
numbers any more. Deactivate these drivers on kernel 4.19 for now.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Add kmod-phy-realtek
Hauke Mehrtens [Fri, 2 Nov 2018 13:34:12 +0000 (14:34 +0100)]
kernel: Add kmod-phy-realtek

The r8169 driver uses the phy lib with the realtek phy driver in kernel
4.19 instead of integrating the phy driver into the mac driver.
Add the new phy driver and add this missing dependency.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Remove deprecated generic linux,part-probe patch
Hauke Mehrtens [Fri, 7 Dec 2018 21:53:41 +0000 (22:53 +0100)]
kernel: Remove deprecated generic linux,part-probe patch

This is now replaced by some other mtd partition parsing which was
merged into upstream.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Make the patches apply on top of 4.19
Hauke Mehrtens [Thu, 1 Nov 2018 17:01:44 +0000 (18:01 +0100)]
kernel: Make the patches apply on top of 4.19

This makes the patches which were just copied in the previous commit
apply on top of kernel 4.19.

The patches in the backports-4.19 folder were checked if they are really
in kernel 4.19 based on the title and only removed if they were found in
the upstream kernel.

The following additional patches form the pending folder went into
upstream Linux 4.19:
pending-4.19/171-usb-dwc2-Fix-inefficient-copy-of-unaligned-buffers.patch
pending-4.19/190-2-5-e1000e-Fix-wrong-comment-related-to-link-detection.patch
pending-4.19/478-mtd-spi-nor-Add-support-for-XM25QH64A-and-XM25QH128A.patch
pending-4.19/479-mtd-spi-nor-add-eon-en25qh32.patch
pending-4.19/950-tty-serial-exar-generalize-rs485-setup.patch
pending-4.19/340-MIPS-mm-remove-mips_dma_mapping_error.patch

Bigger changes were introduced to the m25p80 spi nor driver, as far as I
saw it in the new code, it now has the functionality provided in this
patch:
pending-4.19/450-mtd-m25p80-allow-fallback-from-spi_flash_read-to-reg.patch

Part of this patch went upstream independent of OpenWrt:
hack-4.19/220-gc_sections.patch
This patch was reworked to match the changes done upstream.

The MIPS DMA API changed a lot, this patch was rewritten to match the
new DMA handling:
pending-4.19/341-MIPS-mm-remove-no-op-dma_map_ops-where-possible.patch

I did bigger manual changes to the following patches and I am not 100% sure if they are all correct:
pending-4.19/0931-w1-gpio-fix-problem-with-platfom-data-in-w1-gpio.patch
pending-4.19/411-mtd-partial_eraseblock_write.patch
pending-4.19/600-netfilter_conntrack_flush.patch
pending-4.19/611-netfilter_match_bypass_default_table.patch
pending-4.19/670-ipv6-allow-rejecting-with-source-address-failed-policy.patch
hack-4.19/211-host_tools_portability.patch
hack-4.19/221-module_exports.patch
hack-4.19/321-powerpc_crtsavres_prereq.patch
hack-4.19/902-debloat_proc.patch

This is based on patchset from Marko Ratkaj <marko.ratkaj@sartura.hr>

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Copy patches from kernel 4.14 to 4.19
Hauke Mehrtens [Thu, 1 Nov 2018 16:57:55 +0000 (17:57 +0100)]
kernel: Copy patches from kernel 4.14 to 4.19

This just copies the files from the kernel 4.14 specific folders into
the kernel 4.19 specific folder, no changes are done to the files in
this commit.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Move modifications of b53.h into patch
Hauke Mehrtens [Wed, 14 Nov 2018 20:37:47 +0000 (21:37 +0100)]
kernel: Move modifications of b53.h into patch

The b53 driver was added as a dsa driver into the mainline Linux kernel,
but we still use the swconfig based driver. The header file b53.h is
used by both drivers, but the swconfig one needs an extra member, add
this one in a patch to not overwrite the version shipped with the
mainline kernel.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Replace ledtrig-netdev with upstream backport
Hauke Mehrtens [Wed, 14 Nov 2018 20:22:39 +0000 (21:22 +0100)]
kernel: Replace ledtrig-netdev with upstream backport

The ledtrig-netdev was added to upstream Linux kernel 4.16, replace our
own version with the patch based on the upstream version.
This will remove the ledtrig-netdev support from kernel 3.18, because I
not want to spend time on backporting it to 3.18. This will make it
easier to use the upstream version with kernel 4.19, by just not
applying this patch.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: Reorder configuration
Hauke Mehrtens [Mon, 26 Nov 2018 00:02:21 +0000 (01:02 +0100)]
kernel: Reorder configuration

This reorders the generic kernel configuration files.
This was done with the following commands:
$ ./scripts/kconfig.pl '+' target/linux/generic/config-4.14 /dev/null > target/linux/generic/config-4.14-new
$ mv target/linux/generic/config-4.14-new target/linux/generic/config-4.14
$ ./scripts/kconfig.pl '+' target/linux/generic/config-4.9 /dev/null > target/linux/generic/config-4.9-new
$ mv target/linux/generic/config-4.9-new target/linux/generic/config-4.9

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agonghttp2: bump to 1.35.1
Hans Dedecker [Sat, 15 Dec 2018 11:27:14 +0000 (12:27 +0100)]
nghttp2: bump to 1.35.1

63843750 Update manual pages
27801e98 Bump up version number to 1.35.1
60e020a8 nghttpx: Fix broken trailing slash handling

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
5 years agodnsmasq: Fix dhcp-boot, dhcp-reply-delay and pxe-prompt regressions
Kevin Darbyshire-Bryant [Fri, 14 Dec 2018 14:06:27 +0000 (14:06 +0000)]
dnsmasq: Fix dhcp-boot, dhcp-reply-delay and pxe-prompt regressions

The above options were incorrectly changed to required tags.  Make them
optional again.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
5 years agoglibc: update to latest 2.27 commit (BZ #23927)
Hans Dedecker [Fri, 14 Dec 2018 15:06:03 +0000 (16:06 +0100)]
glibc: update to latest 2.27 commit (BZ #23927)

f6d0e8c36f Fix rwlock stall with PREFER_WRITER_NONRECURSIVE_NP (bug 23861)
2794474c65 powerpc: Add missing CFI register information (bug #23614)
d8ca7a0c71 Fix _dl_profile_fixup data-dependency issue (Bug 23690)
f1e211096b inet/tst-if_index-long: New test case for CVE-2018-19591 [BZ #23927]
4e9f34e54f support: Implement <support/descriptors.h> to track file descriptors
e75481a7a7 support: Close original descriptors in support_capture_subprocess
0f79dc0be3 support_quote_string: Do not use str parameter name
6b2dd53aa0 support: Implement support_quote_string
50477165b9 malloc: Add another test for tcache double free check.
4b246928bd malloc: tcache double free check

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
5 years agokernel: bump 4.14 to 4.14.88
Koen Vandeputte [Thu, 13 Dec 2018 10:53:31 +0000 (11:53 +0100)]
kernel: bump 4.14 to 4.14.88

Refreshed all patches.

Altered patches:
- 180-usb-xhci-add-support-for-performing-fake-doorbell.patch

Fixes CVE:
- CVE-2018-14625

Compile-tested on: ar71xx, cns3xxx, imx6
Runtime-tested on: ar71xx, cns3xxx, imx6

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agokernel: bump 4.9 to 4.9.145
Koen Vandeputte [Thu, 13 Dec 2018 10:52:59 +0000 (11:52 +0100)]
kernel: bump 4.9 to 4.9.145

Refreshed all patches.

Fixes CVE:
- CVE-2018-14625

Compile-tested on: brcm2708
Runtime-tested on: brcm2708

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
Tested-by: Stijn Tintel <stijn@linux-ipv6.be>
5 years agokernel: bump 3.18 to 3.18.129
Koen Vandeputte [Thu, 13 Dec 2018 10:47:25 +0000 (11:47 +0100)]
kernel: bump 3.18 to 3.18.129

Refreshed all patches.

Compile-tested on: adm5120
Runtime-tested on: none

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agoiproute2: backport patch fixing incorrect usage of LDFLAGS
Hans Dedecker [Fri, 14 Dec 2018 08:47:05 +0000 (09:47 +0100)]
iproute2: backport patch fixing incorrect usage of LDFLAGS

Backport upstream patch fixing incorrect passing of -lxtables to
LDFLAGS instead of LDLIBS in the tc/Makefile

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
5 years agonetifd: update to latest git HEAD
Hans Dedecker [Thu, 13 Dec 2018 21:02:34 +0000 (22:02 +0100)]
netifd: update to latest git HEAD

1ac1c78 system-linux: get rid of SIOCSDEVPRIVATE

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
5 years agomac80211: Update to version 4.19.7-1
Hauke Mehrtens [Thu, 6 Dec 2018 22:39:52 +0000 (23:39 +0100)]
mac80211: Update to version 4.19.7-1

This updates the backports package used in mac80211 to version 4.19.7-1
which is based on kernel 4.19.7. This integrates all the stable fixes
introduces in this kernel version.

The deleted patches are not needed any more because they are either
included in the upstream Linux kernel 4.19.7 or in backports 4.19.7-1.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
5 years agokernel: drop unneeded LINUX_VERSION_CODE checks
Rafał Miłecki [Thu, 13 Dec 2018 15:59:21 +0000 (16:59 +0100)]
kernel: drop unneeded LINUX_VERSION_CODE checks

All those parsers are used by 4.14 targets. They don't need that
backward compatibility code.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
5 years agokernel: add DT binding support to the LZMA and WRG parsers
Rafał Miłecki [Thu, 13 Dec 2018 15:58:43 +0000 (16:58 +0100)]
kernel: add DT binding support to the LZMA and WRG parsers

It allows specifying those parsers directly in the DT.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
5 years agoramips: mt7621: disable CONFIG_MTD_SPLIT_FIRMWARE
Rafał Miłecki [Sun, 9 Dec 2018 13:10:16 +0000 (14:10 +0100)]
ramips: mt7621: disable CONFIG_MTD_SPLIT_FIRMWARE

It's no longer needed as all mt7621 devices use DT binding (supported by
upstream mtd code) for specifying "firmware" part format explicitly.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
5 years agoramips: mt7621: specify "firmware" partition format for remaining devices
Rafał Miłecki [Sun, 9 Dec 2018 13:10:15 +0000 (14:10 +0100)]
ramips: mt7621: specify "firmware" partition format for remaining devices

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
5 years agokmod-dma-buf: fix build with external kernel
Stijn Tintel [Wed, 12 Dec 2018 20:00:44 +0000 (22:00 +0200)]
kmod-dma-buf: fix build with external kernel

In hack/904-debloat_dma_buf.patch, DMA_SHARED_BUFFER is changed from
bool to tristate. As this patch is not applied to external kernel
sources, build fails if kmod-dma-buf is enabled. Fix this by only
including the module file if CONFIG_EXTERNAL_KERNEL_TREE and
CONFIG_KERNEL_GIT_CLONE_URI are not enabled.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
5 years agoipq806x: fix and cleanup dts for NEC WG2600HP
INAGAKI Hiroshi [Tue, 11 Dec 2018 06:40:28 +0000 (15:40 +0900)]
ipq806x: fix and cleanup dts for NEC WG2600HP

This commit fixes and cleanups qcom-ipq8064-wg2600hp.dts to improve the
support for WG2600HP.

- Use dt label in qcom-ipq8064.dtsi:

  - gmac1
  - gmac2
  - gsbi4
    - gsbi4_serial
  - gsbi5
  - hs_phy_0
  - ss_phy_0
  - usb3_0
  - usb3_1
  - pcie0
  - pcie1
  - qcom_pinmux

- Fix wrong pcie reset (perst) gpios

  - drop reset-gpio and use perst-gpios in qcom-ipq8064.dtsi

- Remove unnecessary dt label from device dts

  - flash
  - phy0, phy4

- Rename spi-nor node to "flash" from "m25p80"

- Fix qca,ar8327-initvals

  - use oem settings

    - fix: PAD0_MODE, PAD6_MODE
    - drop: PAD5_MODE (unnecessary)

- Move mtd partitions under partitions (fixed-partitions) node

- Specify "firmware" partition format

  - WG2600HP uses uImage format (denx,uimage)

- Change failsafe status LED to power_red

Signed-off-by: INAGAKI Hiroshi <musashino.open@gmail.com>
5 years agoopenvpn: re-add option comp_lzo
Martin Schiller [Wed, 12 Dec 2018 12:43:20 +0000 (13:43 +0100)]
openvpn: re-add option comp_lzo

This option is deprecated but needs to be kept for backward compatibility. [0]

[0] https://community.openvpn.net/openvpn/wiki/DeprecatedOptions#a--comp-lzo

Signed-off-by: Martin Schiller <ms@dev.tdt.de>
5 years agorpcd: update to latest Git head
Jo-Philipp Wich [Wed, 12 Dec 2018 15:32:53 +0000 (16:32 +0100)]
rpcd: update to latest Git head

3aa81d0 file: access exec timeout via daemon ops structure
7235f34 plugin: store pointer to exec timeout value in the ops structure
ccd7c0a treewide: rename exec_timeout to rpc_exec_timeout

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
5 years agodnsmasq: fix ipv6 ipset bug
Kevin Darbyshire-Bryant [Wed, 12 Dec 2018 11:51:02 +0000 (11:51 +0000)]
dnsmasq: fix ipv6 ipset bug

During upstream removal of conditional ipv6 support an order swap error
was made in a ternary operator usage.

This patch sent upstream.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
5 years agoiproute2: backport upstream patch to fix print_0xhex on 32 bit
Hans Dedecker [Wed, 12 Dec 2018 11:32:46 +0000 (12:32 +0100)]
iproute2: backport upstream patch to fix print_0xhex on 32 bit

The argument to print_0xhex is converted to unsigned long long
so the format string give for normal printout has to be some
variant of %llx. Backport the patch as otherwise, bogus values
will be printed on 32 bit platforms.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
5 years agoath9k: register GPIO chip for OF targets
Mathias Kresin [Fri, 7 Dec 2018 08:42:09 +0000 (09:42 +0100)]
ath9k: register GPIO chip for OF targets

This partitialy reverts commit ccab68f2d399.

Registering the GPIO chip without a parent device completely breaks the
ath9k GPIOs for device tree targets.

As long as boards using the devicetree don't have the gpio-controller
property set for the ath9k node, the unloading of the driver works as
expected.

Register the GPIO chip with the ath9k device as parent only for OF
targets to find a trade-off between the needs of driver developers and
the broken LEDs and buttons seen by users.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoath79: fix dtc compiler warnings
Mathias Kresin [Thu, 6 Dec 2018 09:07:30 +0000 (10:07 +0100)]
ath79: fix dtc compiler warnings

The qca9557/qca956x reset-controller aren't a simple bus. A simple bus
would require node unit addresses.

Add the node unit addresses for the qca9557 usb phys. Add the regs for
the USB_PWRCTL and USB_CONFIG registers even not yet used.

Fix the wrong ar7100 pcie controller node unit address as well.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: drop old image validation code
Mathias Kresin [Thu, 29 Nov 2018 23:04:06 +0000 (00:04 +0100)]
ramips: drop old image validation code

Due to the enforced image metadata we ensure that the correct image is
uploaded. Checks based on a magic arn't required any more.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: enforce image metadata verification
Mathias Kresin [Thu, 29 Nov 2018 23:03:19 +0000 (00:03 +0100)]
ramips: enforce image metadata verification

Now that we got rid of all legacy images, we can enforce image metadata
verification.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: drop support for ALLNET ALL0239-3G and Sitecom WL-341 v3
Mathias Kresin [Thu, 29 Nov 2018 10:07:48 +0000 (11:07 +0100)]
ramips: drop support for ALLNET ALL0239-3G and Sitecom WL-341 v3

Beside one exception, no one took care of these two remaining boards
still using the legacy image build code during the last two years.

Since OpenWrt 14.07 the ALLNET ALL0239-3G image building is broken.

The Sitecom WL-341 v3 image build code looks pretty hackish and broken.
It's questionable if the legacy image works as all.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoramips: use new image build code for D-Link DCS-930 family
Mathias Kresin [Thu, 29 Nov 2018 22:40:12 +0000 (23:40 +0100)]
ramips: use new image build code for D-Link DCS-930 family

Drop the factory images and the firmware tool to create them. They don't
work any more, since the factory image has an uImage header covering the
whole kernel + rootfs. This way the uImage splitter will not be able to
find the rootfs and the kernel will panic later on.

The factory images were most likely added at a time the board had
distinct partitions for kernel and rootfs.

Signed-off-by: Mathias Kresin <dev@kresin.me>
5 years agoelfutils: install library files for pkg-config
Tony Ambardar [Sat, 24 Nov 2018 00:40:24 +0000 (16:40 -0800)]
elfutils: install library files for pkg-config

Support other packages using pkg-config to query existence and details of
libelf and libdw libraries at build time.

Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
5 years agohostapd: add support for WPS pushbutton station
Daniel Golle [Thu, 22 Nov 2018 19:53:09 +0000 (20:53 +0100)]
hostapd: add support for WPS pushbutton station

similar to hostapd, also add a ubus interface for wpa_supplicant
which will allow handling WPS push-button just as it works for hostapd.
In order to have wpa_supplicant running without any network
configuration (so you can use it to retrieve credentials via WPS),
configure wifi-iface in /etc/config/wireless:

  config wifi-iface 'default_radio0'
      option device 'radio0'
      option network 'wwan'
      option mode 'sta'
      option encryption 'wps'

This section will automatically be edited if credentials have
successfully been acquired via WPS.

Size difference (mips_24kc): roughly +4kb for the 'full' variants of
wpa_supplicant and wpad which do support WPS.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
5 years agouboot-fritz4040: update package to 2018-12-09
Christian Lamparter [Tue, 11 Dec 2018 22:00:07 +0000 (23:00 +0100)]
uboot-fritz4040: update package to 2018-12-09

This patch updates the uboot-fritz4040 package to the latest version.
The portability and private-libgcc patches, as well as the
upload-to-f4040.sh script have been added to the upstream repository.
Furthermore, the upload-to-f4040 has been updated to take the first
parameter as the file it is supposed to flash, otherwise it defaults
to the previous "uboot-fritz4040.bin". Furthermore the error messages
have been improved and ftp will now dump some "progress information"
to the user's console.

Also included is support for gcc 8+ and a fix for the obnoxous error
that currently breaks the builders:
| fritz/src/lzma2eva.c:23:30: fatal error: zlib.h: No such file or directory

Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
5 years agobrcm63xx: HG655b: fix the imagetag at dts
Daniel Gonzalez Cabanelas [Sun, 9 Dec 2018 20:29:48 +0000 (21:29 +0100)]
brcm63xx: HG655b: fix the imagetag at dts

Fix the imagetag on the HG655b to allow a correct partition detection at boot time.

It turns out that it was defined at the wrong partition. Just move the imagetag to
the linux firmware partition.

The bug is present since the 18.06 release. Without this fix, the board won't boot.

Fixes: a27d59bb4274 ("brcm63xx: switch to new partition layout specification")
Signed-off-by: Daniel Gonzalez Cabanelas <dgcbueu@gmail.com>
Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
5 years agobrcm63xx: fix ethernet switch core reset mask for BCM6368
Jonas Gorski [Tue, 11 Dec 2018 12:11:51 +0000 (13:11 +0100)]
brcm63xx: fix ethernet switch core reset mask for BCM6368

The reset mask for the bcm6368 switch core was left at 0 due to a copy &
paste error. Fix this by setting it to the correct value.

Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
5 years agobrcm63xx: drop legacy profile for SR102
Jonas Gorski [Tue, 11 Dec 2018 12:11:10 +0000 (13:11 +0100)]
brcm63xx: drop legacy profile for SR102

Remove the sky.mk causing a duplicate device profile to be added in
image builder. The generic device code already generates a profile for
the device.

Fixes FS#1780.

Fixes: d59126040701 ("brcm63xx: initial support for Sky SR102 router")
Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
5 years agokernel: add missing symbol in some 4.9 subtargets
Koen Vandeputte [Tue, 11 Dec 2018 10:33:12 +0000 (11:33 +0100)]
kernel: add missing symbol in some 4.9 subtargets

Buildbot revealed some subtargets are still missing the new symbol.

Fixes: dfbf836a52e4 ("kernel: bump 4.9 to 4.9.143")
Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agokernel: bump 4.14 to 4.14.87
Koen Vandeputte [Mon, 10 Dec 2018 14:45:27 +0000 (15:45 +0100)]
kernel: bump 4.14 to 4.14.87

Refreshed all patches.

Remove upstreamed:
- 0008-MIPS-ralink-Fix-mt7620-nd_sd-pinmux.patch

Compile-tested: cns3xxx, imx6
Runtime-tested: cns3xxx, imx6

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agokernel: bump 4.9 to 4.9.144
Koen Vandeputte [Mon, 10 Dec 2018 11:39:53 +0000 (12:39 +0100)]
kernel: bump 4.9 to 4.9.144

Refreshed all patches.

Remove upstreamed:
- 014-Kbuild-suppress-packed-not-aligned-warning-for-defau.patch

Compile-tested: ar7, brcm2708
Runtime-tested: none

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agokernel: bump 4.14 to 4.14.86
Koen Vandeputte [Thu, 6 Dec 2018 10:06:03 +0000 (11:06 +0100)]
kernel: bump 4.14 to 4.14.86

Refreshed all patches.

Altered patches:
- 180-usb-xhci-add-support-for-performing-fake-doorbell.patch

Compile-tested on: ar71xx, cns3xxx, imx6
Runtime-tested on: ar71xx, cns3xxx, imx6

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agokernel: bump 4.9 to 4.9.143
Koen Vandeputte [Thu, 6 Dec 2018 09:48:21 +0000 (10:48 +0100)]
kernel: bump 4.9 to 4.9.143

Refreshed all patches.

Altered patches:
- 950-0063-Improve-__copy_to_user-and-__copy_from_user-performa.patch
- 201-extra_optimization.patch

New symbol:
- CONFIG_HARDEN_BRANCH_PREDICTOR

Compile-tested on: ar7, at91, brcm2708, ixp4xx, layerscape, orion
Runtime-tested on: none

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
[fix brcm2708/950-0149-Update-vfpmodule.c.patch]
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
5 years agokernel: bump 3.18 to 3.18.128
Koen Vandeputte [Wed, 28 Nov 2018 10:01:46 +0000 (11:01 +0100)]
kernel: bump 3.18 to 3.18.128

Refreshed all patches.

Altered patches:
- 002-phy_drivers_backport.patch

Compile-tested on: adm5120
Runtime-tested on: none

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
5 years agodnsmasq: follow upstream dnsmasq pre-v2.81 v2
Kevin Darbyshire-Bryant [Thu, 25 Oct 2018 09:20:25 +0000 (10:20 +0100)]
dnsmasq: follow upstream dnsmasq pre-v2.81 v2

Backport upstream commits.  Most interesting 122392e which changes how
SERVFAIL is handled especially in event of genuine server down/failure
scenarios with multiple servers.  a799ca0 also interesting in that
answered received via TCP are now cached, DNSSEC typically using TCP
meant until now answers weren't cached, hence reducing performance.

59e4703 Free config file values on parsing errors.
48d12f1 Remove the NO_FORK compile-time option, and support for uclinux.
122392e Revert 68f6312d4bae30b78daafcd6f51dc441b8685b1e
3a5a84c Fix Makefile lines generating UBUS linker config.
24b8760 Do not rely on dead code elimination, use array instead. Make options bits derived from size and count. Use size of option bits and last supported bit in computation. No new change would be required when new options are added. Just change OPT_LAST constant.
6f7812d Fix spurious AD flags in some DNS replies from local config.
cbb5b17 Fix logging in cf5984367bc6a949e3803a576512c5a7bc48ebab
cf59843 Don't forward *.bind/*.server queries upstream
ee87504 Remove ability to compile without IPv6 support.
a220545 Ensure that AD bit is reset on answers from --address=/<domain>/<address>.
a799ca0 Impove cache behaviour for TCP connections.

Along with an additional patch to fix compilation without DHCPv6, sent
upstream.

I've been running this for aaaages without obvious issue hence brave
step of opening to wider openwrt community.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
5 years agoRevert "dnsmasq: follow upstream dnsmasq pre-v2.81"
Kevin Darbyshire-Bryant [Mon, 10 Dec 2018 09:53:51 +0000 (09:53 +0000)]
Revert "dnsmasq: follow upstream dnsmasq pre-v2.81"

This reverts commit a6a8fe0be5cd2edb1560bfc3f3094c3d34f2d2b0.

buildbot found an error
option.c: In function 'dhcp_context_free':
option.c:1042:15: error: 'struct dhcp_context' has no member named 'template_interface'
       free(ctx->template_interface);

revert for the moment

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
5 years agodnsmasq: follow upstream dnsmasq pre-v2.81
Kevin Darbyshire-Bryant [Thu, 25 Oct 2018 09:20:25 +0000 (10:20 +0100)]
dnsmasq: follow upstream dnsmasq pre-v2.81

Backport upstream commits.  Most interesting 122392e which changes how
SERVFAIL is handled especially in event of genuine server down/failure
scenarios with multiple servers.  a799ca0 also interesting in that
answered received via TCP are now cached, DNSSEC typically using TCP
meant until now answers weren't cached, hence reducing performance.

59e4703 Free config file values on parsing errors.
48d12f1 Remove the NO_FORK compile-time option, and support for uclinux.
122392e Revert 68f6312d4bae30b78daafcd6f51dc441b8685b1e
3a5a84c Fix Makefile lines generating UBUS linker config.
24b8760 Do not rely on dead code elimination, use array instead. Make options bits derived from size and count. Use size of option bits and last supported bit in computation. No new change would be required when new options are added. Just change OPT_LAST constant.
6f7812d Fix spurious AD flags in some DNS replies from local config.
cbb5b17 Fix logging in cf5984367bc6a949e3803a576512c5a7bc48ebab
cf59843 Don't forward *.bind/*.server queries upstream
ee87504 Remove ability to compile without IPv6 support.
a220545 Ensure that AD bit is reset on answers from --address=/<domain>/<address>.
a799ca0 Impove cache behaviour for TCP connections.

I've been running this for aaaages without obvious issue hence brave
step of opening to wider openwrt community.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
5 years agodnsmasq: drop dnssec timestamp file patch
Kevin Darbyshire-Bryant [Sun, 9 Dec 2018 19:34:05 +0000 (19:34 +0000)]
dnsmasq: drop dnssec timestamp file patch

Openwrt no longer uses and has not used since 5acfe55d71 Jun 2016 the
timestamp file (/etc/dnsmasq.time) method of resolving the dnssec/ntp
dnslookup chicken/egg problem, having used signals from ntp since that
change.

Drop the 'dnssec-improve-timestamp-heuristic' patch since it is neither
used nor sent upstream.  One less thing to refresh & maintain.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
5 years agonettle: bump to 3.4.1
Nikos Mavrogiannopoulos [Sat, 8 Dec 2018 16:47:23 +0000 (17:47 +0100)]
nettle: bump to 3.4.1

This is a security fix adding safer APIs for RSA use.

Compile tested for: ar71xx

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
5 years agobase-files: add sysupgrade -k to save list of pkgs
Luiz Angelo Daros de Luca [Fri, 17 Aug 2018 23:49:53 +0000 (20:49 -0300)]
base-files: add sysupgrade -k to save list of pkgs

When '-k' is used, sysupgrade inserts into backup a new file
/etc/backup/installed_packages.txt which contains pkgname and origin (rom,
overlay, unknown) without touching rootfs.

It's mainly used to reinstall all extra packages:

 # opkg update
 # grep "\toverlay" /etc/backup/installed_packages.txt | cut -f1 | xargs -r opkg install
 # rm /etc/backup/installed_packages.txt

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
5 years agobase-files: add sysupgrade -o to save all overlay files
Luiz Angelo Daros de Luca [Fri, 17 Aug 2018 23:49:52 +0000 (20:49 -0300)]
base-files: add sysupgrade -o to save all overlay files

Add sysupgrade '-o' option in order to include all overlay files in
backup, except for those that are from packages but including files
listed in conffiles, sysupgrade.conf or /lib/upgrade/keep.d.

With '-u' option, it will skip files equals to /rom and conffiles that
were not changed.

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
5 years agobase-files: add sysupgrade -u to skip unchanged files
Luiz Angelo Daros de Luca [Fri, 17 Aug 2018 23:49:51 +0000 (20:49 -0300)]
base-files: add sysupgrade -u to skip unchanged files

With '-u', for a file /aaa/bbb/ccc enlisted for backup,
it will only get into backup if /rom/aaa/bbb/ccc does not
exist or /aaa/bbb/ccc is different from /rom/aaa/bbb/ccc.

It also works with '-c', but only effective for files touched
but not modified.

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
5 years agobase-files: minor cleanups on sysupgrade
Luiz Angelo Daros de Luca [Fri, 17 Aug 2018 23:49:50 +0000 (20:49 -0300)]
base-files: minor cleanups on sysupgrade

Renamed add_uci_conffiles to add_conffiles as it includes
any conffiles listed, not only UCI ones.

Make do_save_conffiles arg mandatory

Allow other options after -l (like -c)

Do not use stdout for error messages (fixes backup to stdout)

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
5 years agofirewall: update to latest git HEAD
Hans Dedecker [Sun, 9 Dec 2018 16:33:57 +0000 (17:33 +0100)]
firewall: update to latest git HEAD

14589c8 redirects: properly handle src_dport in SNAT rules

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
5 years agoapm821xx: WNDAP620: remove bad semicolon in dts after #include
Christian Lamparter [Sat, 8 Dec 2018 16:38:05 +0000 (17:38 +0100)]
apm821xx: WNDAP620: remove bad semicolon in dts after #include

This patch fixes a build warning triggered by a semicolon in
the dts after the #include directive.

netgear-wndap620.dts:11:33: warning: extra tokens at end of #include directive

Signed-off-by: Christian Lamparter <chunkeey@gmail.com>