Commit graph

701 commits

Author SHA1 Message Date
Steven Barth
e544c1607a odhcpd: add preliminary support for managed DHCPv6-PD and CER-ID
SVN-Revision: 40355
2014-04-01 18:52:09 +00:00
Steven Barth
a22190340a odhcp6c: add preliminary CER-ID support
SVN-Revision: 40351
2014-03-31 06:43:50 +00:00
John Crispin
c78af071de samba36: revert r40341
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 40343
2014-03-30 19:05:25 +00:00
John Crispin
ca1a527187 samba: update to 3.6.23 Signed-off-by: John Crispin <blogic@openwrt.org>
SVN-Revision: 40341
2014-03-30 19:03:12 +00:00
John Crispin
c7168b64ef dhcp: Fix broadcast parameter validation support, remove unused netmask parameter
Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 40332
2014-03-30 13:07:52 +00:00
John Crispin
1335853ae5 ltq-vdsl: add led status reporting
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 40322
2014-03-30 09:16:27 +00:00
Felix Fietkau
3ecffab050 dropbear: move options.h editing to Build/Configure
fixes incremental build with change to CONFIG_DROPBEAR_ECC
drop --with-shared which is unknown to configure

Patch by Catalin Patulea <cat@vv.carleton.ca>

SVN-Revision: 40300
2014-03-29 17:10:52 +00:00
Felix Fietkau
f2fdd8ebdb dropbear: add options SSHKeepAlive and IdleTimeout.
Without timeout mechanism, if ssh client disconnected without sending
FIN or RST, forked dropbear servers would hang there for
KEX_RETRY_TIMEOUT seconds (8 hours).

TCP keepalive is not implemented in dropbear yet, thus the name
SSHKeepAlive.

300 seconds in this patch is selected from the default value of
ServerAliveInterval for Debian ssh client (See man ssh_config).

Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>

SVN-Revision: 40299
2014-03-29 17:05:35 +00:00
Felix Fietkau
dd5a12c5a1 dropbear: fix interface config setting
Patch from #15070

SVN-Revision: 40298
2014-03-29 16:59:33 +00:00
Felix Fietkau
ad52658be7 dropbear: update to 2014.63
Upstream changelog:
https://matt.ucc.asn.au/dropbear/CHANGES

This adds elliptic curve cryptography (ECC) support as an option, disabled
by default.

dropbear mips 34kc uClibc binary size:
before: 161,672 bytes
after, without ECC (default): 164,968
after, with ECC: 198,008

Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>

SVN-Revision: 40297
2014-03-29 16:59:26 +00:00
Steven Barth
0555ebf66d 6rd / ds-lite: make the firewall-zones of nested-protocols configurable
SVN-Revision: 40020
2014-03-26 10:12:49 +00:00
Steven Barth
2a893c2057 dhcp: send 6rd-ORO when expecting 6rd-information
SVN-Revision: 40019
2014-03-26 09:48:20 +00:00
Felix Fietkau
abd13cd85b uhttpd: update to latest version, improves cgi path handling
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 40005
2014-03-22 19:38:48 +00:00
Felix Fietkau
9138e8015e uhttpd: update to latest version, fixes HEAD requests to CGI scripts
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 40003
2014-03-21 20:49:56 +00:00
Felix Fietkau
5c53e63836 netifd: update to the latest version, adds support for reloading proto handlers on toplogy changes
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 40001
2014-03-21 15:55:27 +00:00
Felix Fietkau
c53c7a0fe0 hostapd: add pbc_in_m1 option
Option pbc_in_m1 is being used as a WPS capability discovery
workaround for PBC with Windows 7.
Add possibility to enable this workaround from UCI.

To enable it, turn on wps and set wps_pbc_in_m1 parameter to 1.

Signed-off-by: Pawel Kulakowski <pawel.kulakowski@tieto.com>

SVN-Revision: 39995
2014-03-21 15:55:03 +00:00
Felix Fietkau
5a6f00b846 ead: clean up
Remove unused variables
Correct some (non important) memory leaks
Remove fclose(NULL)
Correct possible out of bound access

spotted with cppcheck

Signed-off-by: Etienne CHAMPETIER <etienne.champetier@free.fr>

SVN-Revision: 39994
2014-03-21 15:54:59 +00:00
Felix Fietkau
7c029cc262 ead: set_nonblock() is doing nothing (typo)
spotted with cppcheck

Signed-off-by: Etienne CHAMPETIER <etienne.champetier@free.fr>

SVN-Revision: 39993
2014-03-21 15:54:56 +00:00
Felix Fietkau
0945555e14 ppp: remove ppp requirement from chat
This patch removes dependancy of PPP from chat application as chat application can be used for other serial communication as well that is not dependant on PPP and therefore one should be able to install chat without PPP. There also are no dependencies within chat application for PPP.

Signed-off-by: Oskari Rauta <oskari.rauta at gmail.com>

SVN-Revision: 39992
2014-03-21 15:54:52 +00:00
Felix Fietkau
3eb2d6d5d4 netifd: update to the latest version, fixes ubus handling of proto data items
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39970
2014-03-20 20:06:59 +00:00
Felix Fietkau
e926cfd9ac netifd: update to latest version, fixes an autostart handling with link detection
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39967
2014-03-20 13:57:28 +00:00
Felix Fietkau
66393168d3 firewall: update to latest version, fixes a musl build error
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39965
2014-03-20 13:51:43 +00:00
Felix Fietkau
0ccec8179d iptables: fix issues with the new musl version
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39964
2014-03-20 13:51:40 +00:00
Felix Fietkau
7fa3fe6741 pppd: fix build errors with musl
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39963
2014-03-20 13:51:36 +00:00
Steven Barth
f4ace532c8 odhcpd: fix more segfaults + ubus interaction
SVN-Revision: 39960
2014-03-20 12:25:17 +00:00
Steven Barth
b5cc199ec9 odhcpd: fix possible segfaults
SVN-Revision: 39958
2014-03-20 09:39:00 +00:00
Felix Fietkau
ad72198abb netifd: update to latest version, adds support for specifying a config path
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39956
2014-03-19 14:26:51 +00:00
Felix Fietkau
b9825247c2 polarssl: update to version 1.3.4 and add openssl compat patch
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39930
2014-03-14 15:05:46 +00:00
Steven Barth
7ac0057c1f odhcp6c: pass on delegate-flag on to ds-lite interface
SVN-Revision: 39910
2014-03-13 10:40:56 +00:00
Steven Barth
edd75e332c netifd: pass on delegate flag from dhcp to 6rd
SVN-Revision: 39909
2014-03-13 10:33:26 +00:00
John Crispin
7baf4957cf 72ca3bfc401a4f1b695dcc86640dddee62716cea contained too many files
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39908
2014-03-13 07:42:59 +00:00
John Crispin
0dc9d8d6ff fstools: add the new fstools package
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39895
2014-03-12 19:32:51 +00:00
Steven Barth
97ea9e3c2a iptables/netfilter: add connlimit to conntrack-extra
SVN-Revision: 39878
2014-03-11 14:58:00 +00:00
Steven Barth
09fd40c28f iptables: bump to 1.4.21
SVN-Revision: 39877
2014-03-11 14:57:55 +00:00
Felix Fietkau
75ac488f4d openvpn: make size optimization configurable
Signed-off-by: Christoph Kottke <christoph.kottke@gmx.de>

SVN-Revision: 39872
2014-03-11 12:07:17 +00:00
Felix Fietkau
83f9fc12d6 netifd: update to latest version, includes interface handling fixes by Hans Dedecker
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39870
2014-03-11 09:28:28 +00:00
Steven Barth
cd695565fb odhcpd/odhcp6c: fix HMAC-MD5 in DHCPv6-Reconfigure
SVN-Revision: 39868
2014-03-11 08:21:58 +00:00
Felix Fietkau
24dae38f43 iproute2: add ip-full variant to disable IP_CONFIG_TINY
This change creates a new ip-full variant for the ip package.
It disables IP_CONFIG_TINY to make some iproute2 features available like xfrm, gretap, ...

Signed-off-by: Thomas Wouters <thomaswouters@gmail.com>

SVN-Revision: 39854
2014-03-09 13:32:59 +00:00
Felix Fietkau
452d019d3e netifd: update to latest version, adds a bridge reload fix and fixes #15157
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39791
2014-03-07 18:14:41 +00:00
Steven Barth
d3f39e89a3 odhcp6c: fix int-overflow after 50d (thx Hauke Mehrtens)
SVN-Revision: 39785
2014-03-07 09:35:17 +00:00
Steven Barth
f294f23c02 netifd: don't incorrectly announce up-status via ubus
Signed-off-by: Steven Barth <steven@midlink.org>

SVN-Revision: 39777
2014-03-05 17:36:14 +00:00
Steven Barth
0a3cb4cdff odhcp6c: several fixes
* Reduce RA/DHCPv6 spam filter to 30s by default and make it configurable
* Don't set nd_ra_{reachable,retransmit] to 0 when received in RAs

SVN-Revision: 39775
2014-03-05 08:59:11 +00:00
Felix Fietkau
a9d4cd35fc hostapd: fix deletion of wds sta interfaces in AP mode
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39765
2014-02-28 14:43:53 +00:00
Steven Barth
1b3a868309 netifd: Reintroduce link-layer sensing (thx Hans Decker, Karl Vogel)
SVN-Revision: 39757
2014-02-27 12:42:38 +00:00
Steven Barth
0bf9032145 netifd: don't always assume addrs & routes are applied
netifd didn't check the netlink return values and kept assuming
routes are in place even if they weren't

SVN-Revision: 39755
2014-02-26 13:27:32 +00:00
Felix Fietkau
c01d211259 hostapd: link against librt if eglibc is used
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39741
2014-02-24 15:03:06 +00:00
Steven Barth
8aa91b167f odhcpd: avoid the unspecificed address being advertised as DNS
SVN-Revision: 39740
2014-02-24 13:37:11 +00:00
Steven Barth
e6044ef1c0 odhcpd: fix DNS-server and MSR-entries in RA
Similarly to the previously broken address pools, DNS-servers and some
MSRs could be advertised incorrectly as well. This is now fixed.

SVN-Revision: 39739
2014-02-24 13:33:45 +00:00
Felix Fietkau
a15524582c netifd: depend on libubox directly to rebuild on ABI changes
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39723
2014-02-23 17:32:15 +00:00
Felix Fietkau
6c8300df3d netifd: update to latest version, fixes wireless device reload handling
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39706
2014-02-23 08:13:28 +00:00
Steven Barth
980626aa32 odhcpd: fix wrong address pool being advertised
SVN-Revision: 39651
2014-02-21 18:02:25 +00:00
Jo-Philipp Wich
b22ad85bc6 firewall: fix validation constraints
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 39649
2014-02-21 00:22:23 +00:00
Jo-Philipp Wich
354efde275 netifd: fix validation constraints
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 39648
2014-02-21 00:17:04 +00:00
Jo-Philipp Wich
21f4cf1a73 firewall: fix several ipset integration issues (#15016)
- Do not consider bitmap storage for IPv6 family sets
	- Move ipset family parameter before any additional option
	- Only emit family parameter for hash sets
	- Do not allow IPv6 iprange for IPv4 sets and vice versa

Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>

SVN-Revision: 39647
2014-02-20 23:20:10 +00:00
Steven Barth
12fa3eae23 6in4: add support for he.net updatekey
SVN-Revision: 39646
2014-02-20 21:36:15 +00:00
Steven Barth
97faa098a2 odhcp6c: readd userclass and vendorclass
SVN-Revision: 39628
2014-02-18 18:30:47 +00:00
John Crispin
0da7d381f0 odhcp6c: add validation rules to proto handler
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39624
2014-02-18 13:34:16 +00:00
John Crispin
159ee2bbd3 relayd: add uci validation
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39623
2014-02-18 13:34:12 +00:00
John Crispin
8fb44e0d1e netifd: add validation support
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39621
2014-02-18 13:34:04 +00:00
John Crispin
26e850dafa hostapd: add validation rules to wireless handler
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39620
2014-02-18 13:33:59 +00:00
John Crispin
ee5cb76c66 ppp: add validation rules to proto handler
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39619
2014-02-18 13:33:56 +00:00
John Crispin
ed72f7102c comgt: add validation rules to proto handler
Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39618
2014-02-18 13:33:52 +00:00
John Crispin
15ebcfc04e firewall3: update init.d script to make use of procd
add validation data

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39617
2014-02-18 13:33:47 +00:00
John Crispin
204e859542 netifd: update to latest git head
this adds support for proto and wireless handler adding uci validation rules

Signed-off-by: John Crispin <blogic@openwrt.org>

SVN-Revision: 39614
2014-02-18 13:33:36 +00:00
John Crispin
9bf6569f68 authsae: update to latest version
Signed-off-by: Stefan May <smay@4finger.net>

SVN-Revision: 39608
2014-02-18 13:33:13 +00:00
Steven Barth
f906a7f565 odhcp6c: send reconfigure-accept again to be compliant
SVN-Revision: 39605
2014-02-17 20:31:21 +00:00
Steven Barth
2f2a73f862 odhcpd: Fix RA interval + add support for prefixes > 64 and < 97
SVN-Revision: 39604
2014-02-17 20:30:29 +00:00
Steven Barth
41acaaf893 netifd: work around dangling prefix kernel-routes (fixes #14963)
SVN-Revision: 39597
2014-02-16 11:20:22 +00:00
Steven Barth
af8f06beca netifd: fix source-routing breaking 6in4 + others
6in4 historically allowed an ip6addr without a mask however the newly
introduced source-routing segfaulted in this scenario (#14958 + #14858).

Fixes include: "Fix ubus route src mask printing" and
"Disable netlink auto ack" (thanks to Hans Dedecker)

SVN-Revision: 39586
2014-02-14 21:21:44 +00:00
Steven Barth
3194834c55 odhcp6c: remove source-restriction from local routes again (broke relaying)
SVN-Revision: 39575
2014-02-12 08:54:43 +00:00
Hauke Mehrtens
6d1fdf875a authsae: Update authsae to latest version
Only compile tested but the changes are minimal
f5693a3...1d1a122

Signed-off-by: Etienne CHAMPETIER <etienne.champetier@free.fr>

SVN-Revision: 39518
2014-02-06 22:20:20 +00:00
Steven Barth
c666dcfe08 odhcp6c: Fix timing and some regressions from yesterday
SVN-Revision: 39502
2014-02-06 10:38:02 +00:00
Hauke Mehrtens
3f07af337c iw: update to iw 3.14
- update iw to 3.14
- remove some patches that are obsolete
- 200-reduce_size.patch has new coalesce removed from Makefile matching prev. ver
- refresh patches

This increases the size of the binary by 6.7%:
  87801	   4400	    320	  92521	  16969	iw-3.10/iw
  93995	   4424	    324	  98743	  181b7	iw-3.14/iw

Signed-off-by: Dirk Neukirchen <dirkneukirchen@web.de>

SVN-Revision: 39486
2014-02-05 20:52:34 +00:00
Steven Barth
ef7bc81961 odhcpd: fix homenet dhcpv6 filter
SVN-Revision: 39479
2014-02-05 15:42:02 +00:00
Steven Barth
05c9507cd3 odhcp6c: Add support for userclass and vendorclass
SVN-Revision: 39478
2014-02-05 14:56:37 +00:00
Felix Fietkau
8c737e1864 tcpdump: update to current upstream version 4.5.1
-size_of(old tcpdump-mini 4.2.1) = 145245 Byte
-size_of(new tcpdump-mini 4.5.1) = 149416 Byte
=> ~4.2 KByte increase

Signed-off-by: Thomas Huehn <thomas@net.t-labs.tu-berlin.de>

SVN-Revision: 39474
2014-02-05 09:54:38 +00:00
Felix Fietkau
38587f87ed wifi: Introduce 802.11ac support
This patch introduces 802.11ac support to mac80211 and hostapd. The split of
VHT160 in two 80 MHz bands is not yet supported, since it requires an
additional user supplied parameter for the channel of the second band.

Signed-off-by: Matti Laakso <malaakso@elisanet.fi>
Signed-off-by: Simon Wunderlich <simon@open-mesh.com>
[sven@open-mesh.com: Rebased patch, merged htmode and vhtmode,
removed special hwmode, replaced uci vht_capab list with overwritable
autoconfig, fixed hostapd integration, fixed commit description, add HT40+/-
for VHT modes, add VHT40 center_freq autoconfig, refactored major parts]
Signed-off-by: Sven Eckelmann <sven@open-mesh.com>

SVN-Revision: 39456
2014-02-03 13:31:44 +00:00
Steven Barth
02c763c4ab odhcp6c: Revert to slightly modified version of old behaviour
Latest changes broke source-restriction of on-link routes. Restoring
old-behaviour but adding correct source-restrictions which prevents
the offlink handler to remove the on-link route.

SVN-Revision: 39454
2014-02-03 09:06:25 +00:00
Steven Barth
a9a0b62785 odhcp6c: improve handling of RA on-link routes and addresses
SVN-Revision: 39451
2014-02-02 19:40:33 +00:00
Felix Fietkau
50417b58ad hostapd: do not get basic_rate as a simple string variable
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39448
2014-02-02 14:25:02 +00:00
Steven Barth
8fa06b7e3c odhcpd: fix internal router DHCPv4 filter
SVN-Revision: 39441
2014-02-01 13:33:05 +00:00
Steven Barth
b965dab148 odhcp6c: several bugfixes and improvements
* Fixed broken stateless-mode (fixes #14863)
* Support for multiple IAIDs, improved server compatibility,
  improved NTP/SNTP support and other fixes (thanks to T-Labs)

SVN-Revision: 39433
2014-01-31 11:23:00 +00:00
Felix Fietkau
cfc20090f1 hostapd: fix basic rate list handling with netifd
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39431
2014-01-31 10:43:18 +00:00
Felix Fietkau
2725913d2a hostapd: fix frequency selection for ap+sta
Signed-off-by: Felix Fietkau <nbd@openwrt.org>

SVN-Revision: 39426
2014-01-30 13:21:30 +00:00
Jo-Philipp Wich
76e28f6b6e lldpd: build without libreadline
lldpcli uses libreadline for tab completion. libreadline take around 110kb.

Signed-off-by: Alexander Couzens <lynxis@fe80.eu>

SVN-Revision: 39421
2014-01-29 13:10:39 +00:00
Jo-Philipp Wich
b2593a3f49 lldpd: add missing lldpcli
lldpd calls on startup lldpcli to configure itself.

Signed-off-by: Alexander Couzens <lynxis@fe80.eu>

SVN-Revision: 39420
2014-01-29 13:10:35 +00:00
Jo-Philipp Wich
3aefca6b07 lldpd: push to version 0.7.7
Signed-off-by: Alexander Couzens <lynxis@fe80.eu>

SVN-Revision: 39419
2014-01-29 13:10:31 +00:00
Jo-Philipp Wich
b5400c775e hostapd: Fix 80211w setup with netifd
Signed-off-by: Helmut Schaa <helmut.schaa@googlemail.com>

SVN-Revision: 39412
2014-01-28 21:12:45 +00:00
Jo-Philipp Wich
c1cb867c13 hostapd: Fix basic_rate setup with netifd
Signed-off-by: Helmut Schaa <helmut.schaa@googlemail.com>

SVN-Revision: 39411
2014-01-28 21:12:36 +00:00
Steven Barth
3787078b26 odhcpd: fix certain config values being overwritten
Thanks to Hans Dedecker for the fix.

SVN-Revision: 39371
2014-01-23 11:02:18 +00:00
Steven Barth
e1c5111997 6rd: Make don't fragment bit (df) a configurable variable
Make the IPv4 "do not fragment" bit a configurable variable for the 6rd
tunnel interface as the bit should not be set in the encapsulating IPv4
header according to RFC3056.
On top the config variable allows to enable/disable path mtu discovery
for tunnel interfaces.
Config variable can be passed to netifd as tunnel config support is
already present for the "do not fragment" bit.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>

SVN-Revision: 39370
2014-01-23 10:59:04 +00:00
Steven Barth
229d186490 netifd: don't add unnecessary NOP policy rules
SVN-Revision: 39351
2014-01-20 18:23:02 +00:00
Steven Barth
c67ec51c85 6in4: fix typo in config variable (fixes #14830)
SVN-Revision: 39347
2014-01-20 12:53:15 +00:00
Steven Barth
fac5e62abd firewall: don't reload if there were no address or data changes
This fixes packet loss due to reloading firewall every minute with IPv6
implementation of certain ISPs.

SVN-Revision: 39332
2014-01-19 17:35:33 +00:00
Steven Barth
471095f869 odhcpd: Fix a memory corruption when static leases are used
SVN-Revision: 39319
2014-01-18 10:11:03 +00:00
Steven Barth
24ba434185 odhcpd: be even less verbose and don't start unnecessary relays
SVN-Revision: 39315
2014-01-17 19:05:54 +00:00
Steven Barth
2c9d868900 odhcpd: fix logspam
SVN-Revision: 39314
2014-01-17 15:53:43 +00:00
Steven Barth
17b0d874eb odhcpd: use hybrid management mode by default
SVN-Revision: 39313
2014-01-17 15:48:02 +00:00
Steven Barth
9ec0e5df14 dnsmasq: add dnsmasq.d config folder & improve odhcpd coexistence
SVN-Revision: 39312
2014-01-17 14:00:09 +00:00
Steven Barth
140a5b22d9 odhcp6c: Use sourcerouting by default
SVN-Revision: 39311
2014-01-17 14:00:04 +00:00