A vulnerability was found in ecdsautils which allows forgery of ECDSA
signatures. An adversary exploiting this vulnerability can create an update
manifest accepted by the autoupdater, which can be used to distribute
malicious firmware updates by spoofing a Gluon node's connection to the
update server.
Remove support for the TP-Link WDR4900, as it us currently unable to
load its kernel sure to factory bootloader constraints.
Progress on this topic is tracked in #2491
0d142ffd2 telegraf: Update to version 1.22.2
587caf22a xray-core: Update to 1.5.5
87f14264f prometheus-node-exporter-lua: improve ubnt-manager
959860dc4 git: update to version 2.34.3
636342ee4 golang: Update to 1.17.9
51231fc5c ffmpeg: update to version 4.3.4
45426fa3d ruby: update to 3.0.4
4d34758b6 ci: use openwrt/gh-action-sdk@v4
edc9829bd delve: Update to 1.8.2
fe3e0493d usteer: update to latest HEAD
8995d3f02 python3-speedtest-cli: update to 2.1.3
827c37533 ooniprobe: Update 3.14.2
04a580232 ooniprobe: update to version 3.10.1
a33113111 ooniprobe: update to version 3.9.2
9f90da736 ooniprobe: update to version 3.9.0
918ca913b ooniprobe: update to version 3.8.0
a11f9a412 ooniprobe: update to version 3.7.0
915fed260 ooniprobe: update to version 3.5.2
78bcd00c1 yq: Update to 4.24.5
8406439bd yq: Update to 4.24.4
754c075a8 prometheus-node-exporter-lua: fix ubnt-manager collector
8ac019e76 prometheus-node-exporter-lua: add ubnt-manager collector
406abcbcc ubnt-manager: add ubnt-manager
216a37d65 pdns-recursor: add patch for CVE-2022-27227
f618daa55 pdns: add patch for CVE-2022-27227
427f2f995 haveged: update to 1.9.18
25a2c9f70 php7-pecl-redis: update to 5.3.7
3094dfadd php7-pecl-http: update to 3.2.5
77dcb4c90 php8: update to 8.0.17
e74e59d04 telegraf: Update to version 1.22.1
14d7e1608 keepalived: fix libip6tc dependency
3fbe10e59 keepalived: add missing CONFIG_ prefix to PKG_CONFIG_DEPENDS elements
bbb13556d adguardhome: Update adguardhome to v0.107.5
19e621a43 adguardhome: Bump adguardhome to v0.107.3 stable
d86d6d02b adguardhome: Update to v0.107.2 stable
9fa3942a8 nextdns: Update to version 1.37.11
894f58ceb yq: Update to 4.24.2
fbcaa8bce ksmbd-tools: revert update to 3.4.4
5b7d01b427 iwinfo: update to latest HEAD
39aaec62ca hostapd: refresh patches
e2030fcfa7 hostapd: add ubus link-measurements notifications
1a2940f68e hostapd: add ubus method for requesting link measurements
b4a9597154 hostapd: add support for enabling link measurements
5a18028c69 iwinfo: update to latest HEAD
b519d76276 iwinfo: update to latest Git head
01cc5e195d iwinfo: update to latest Git HEAD
44781b265c iwinfo: update to the latest version
f7c445aa7d iwinfo: update to the latest version
75cbd8de00 wolfssl: fix compilation with /dev/crypto
1418439da9 kernel: add missing config symbols
39f1815b3e mac80211: fix QCA9561 PA bias
1769e3162e ramips: mt7620: disable SOC VLANs for external switches
30e47fb1e4 ramips: mt7620: ethernet: use more macros and bump version
3f976d0225 ramips: mt7620: fix RGMII TXID PHY mode
6685eb29e5 ramips: mt7620: add ephy-disable option to switch driver
47db830b82 ramips: mt7620: move mt7620_mdio_mode() to ethernet driver
6876465875 ramips: mt7620: use DTS to set PHY base address for external PHYs
5d7805c78b ramips: mt7620: allow both internal and external PHYs
01bbed7444 ramips: mt7620: fix ethernet driver GMAC port init
6491212ea7 ramips: mt7620: remove useless GMAC nodes
a14c2d409c ramips: mt7620: simplify DTS properties for GMAC
c652a06eef ramips: mt7620: enable autonegotiation for all ports
08ec622c46 ramips: make PHY initialization more descriptive
4123f177f9 ramips: add support for the Wavlink WL-WN579X3
92af15077f ramips: split Youku YK1 to YK-L1 and YK-L1c
55f8eb84d2 ramips: improve pinctrl for Youku YK-L1
92489b4f82 ramips: speed up spi frequency for Youku YK-L1
bea1891182 ramips: remove obsolete mx25l25635f compatible hack
6c44b157e5 mvebu: kernel: enable CONFIG_BLK_DEV_NVME
f0f9b7ac5c OpenWrt v21.02.3: revert to branch defaults
42a15ca378 OpenWrt v21.02.3: adjust config defaults
1d4dea6d4f ath79: Move TPLink WPA8630Pv2 to ath79-tiny target
41a97c2074 bcm27xx: add AMP2 to HifiBerry DAC+ / DAC+ Pro package
9a765554f4 ath79: add support for MikroTik RouterBOARD mAP lite
2cc9ee8000 ath79: add support for Yuncore A930
06874171d1 ath79: add support for Yuncore XD3200
c5ef62a218 wolfssl: bump to 5.2.0
99b00edf35 mac80211: Update to version 5.10.110-1
9132344444 bpftools: fix feature override for masking clang
169c9e3a88 ramips: fix reboot for remaining 32 MB boards
39bf2aee0e kernel: bump 5.4 to 5.4.188
3008f1f441 imagebuilder: fix broken image generation with external targets
The mpc85xx-generic target was renamed to mpc85xx-p1010 in OpenWrt
21.02. The target name in Gluon docs was never adjusted however.
Signed-off-by: David Bauer <mail@david-bauer.net>
Instead of using roles.wan directly as the default for roles.single,
create a copy of the table, so subsequent modifications of roles.single
don't affect roles.wan as well.
Fixes migration of Mesh-on-WAN status when no default for "single"
interfaces is set in site.conf.
Gone due to
commit 45c84a117b ("ar71xx: drop target")
Changed subtarget in between, similar change in
commit bed66fa248 ("ath79: move GL.iNet GL-AR750S to NAND subtarget")
c96b101 babeld: bump to version 1.11
5edac3e ci: use openwrt/gh-action-sdk@v4
0d5e814 CI: update SDK action to v3
15d83ef babeld: add add_filter function