Commit Graph

4349 Commits

Author SHA1 Message Date
David Bauer
c5f43add3d gluon-core: add OWE MAC-assignment
Fixes commit 6692095f9d
2020-04-11 15:14:05 +02:00
David Bauer
c4d70f29e6 docs: dev: add OWE MAC-assignment
Fixes commit 6692095f9d
2020-04-11 15:13:57 +02:00
Martin Weinelt
46cd214bb8
modules update packages
619961596 mosh: use mips16 and remove configure patch
376d0b76f mosh: Fix compilation with libcxx
913f95a4b mosh: Add protobuf host build dependency
d0bf13630 mosh: add package
9e581d578 Merge pull request #11800 from dibdot/adblock-19.07
5e69c9961 adblock: release 4.0.3
f207f2bf3 Merge pull request #11802 from stangri/19.07-simple-adblock
af1e0a533 simple-adblock: bugfixes: remove escape chars from log, restore from cache on boot
b7f2b61da nano: update to 4.9.2
c5a7fba5c graphicsmagic: update to version 1.3.35 (security fix)
574a5af56 Merge pull request #11772 from micmac1/19.07-apache-2443
fa572d135 meson: update to 0.53.2
75c1baa9f meson: update to 0.53.1
c7e1a3453 meson: fix building host binaries with ccache
eeeadde02 python-requests: update to version 2.23.0
ca555a054 dnscrypt-proxy2: update to version 2.0.42
8a4d0b206 apache: security bump to 2.4.43
626bda56d nano: update to 4.9.1
a10dd9369 Merge pull request #11755 from gladiac1337/haproxy-2.0.14-openwrt-19.07
7e48c36cc haproxy: Update HAProxy to v2.0.14
c8eb843fb Merge pull request #11729 from stangri/19.07-vpn-policy-routing
153892633 vpn-policy-routing: separation between auto/all proto; compatibility with mwan3; README update
92a4c6933 gnutls: updated to 3.6.13
0d9a89370 Merge pull request #11699 from stangri/19.07-simple-adblock
9923323db simple-adblock: support multiple dnsmasq instances; rework communication between principal package and luci app
7fba38e3f avahi: update to 0.8
0da04e56d avahi: convert to procd
97a0abf46 avahi: Fix pkgconfig files to be cross compile friendly
ca7da040e flac: Update to 1.33
4bd47a5eb msmtp: remove myself as maintainer
7ccf6f235 msmtp: Update to 1.8.7
efab88dc3 msmtp: Update to 1.8.6
97fcfe955 mpg123: Update to 1.25.13
2dbdb7de3 screen: update to 4.8.0
c133dc75d screen: Update to 4.7.0
a677166dd zstd: Fix compilation with uClibc-ng
6c5b9424e zstd: Update to 1.4.4
18efffaf9 nano: update to 4.9
c983b0844 tor: update to version 0.4.2.7 (security fix)
fb0996711 collectd: disable onewire plugin, BROKEN since 2009
afccb8069 collectd: disable dpdk_telemetry module
45dfd3b51 collectd: update to 5.11.0
9ba7b1799 acme: Backport two bug fixes from master
40c5dd0ba openvswitch: depend on IPV6 for intree kmods
ec0a9d4d0 openvswitch: rework skipping intree kmod build for unsupported kernels
d8c836f6a fish: update to 3.1.0
aae54e90c fish: Fix compilation with libcxx
2ea76a676 fish: Convert to CMake
33eda8575 syncthing: configuration cleanup & hardening
e4c685e5b syncthing: bump to 1.4.0
b8dafa475 syncthing: fixup version detection
f7308a55f strongswan: add conffiles for swanctl util
ba76d4274 strongswan: quote 'comment' parameter in Config.in
1cd3f5fdc net/pagekitec: support status reporting json file
1688807f1 net/pagekitec: Update to newest version
407438796 Merge pull request #11647 from jefferyto/byobu-5.133-openwrt-19.07
97e68c1cb Merge pull request #11646 from jefferyto/python-pyasn1-modules-0.2.8-openwrt-19.07
3c6d37bfa Merge pull request #11645 from jefferyto/python-idna-2.9-openwrt-19.07
72ccf6726 Merge pull request #11644 from jefferyto/python-pycparser-2.20-openwrt-19.07
2c8681870 Merge pull request #11643 from jefferyto/python-enum34-1.1.10-openwrt-19.07
897b76d32 Merge pull request #11641 from jefferyto/python-zope-interface-4.7.2-openwrt-19.07
72731c08c Merge pull request #11639 from jefferyto/python-twisted-security-fix-openwrt-19.07
7fa240521 Merge pull request #11636 from jefferyto/golang-1.13.9-openwrt-19.07
34a77ee37 byobu: Update to 5.133
db63e1208 python-pyasn1-modules: Update to 0.2.8
4da9026f2 python-idna: Update to 2.9
a6b32c675 python-pycparser: Update to 2.20
364c24dd2 python-enum34: Update to 1.1.10, refresh patch
da05e0829 python-enum34: Update to 1.1.9, refresh patch
4e5642de1 python-zope-interface: Update to 4.7.2, refresh patch
261d6cbaa python-twisted: Fix several request smuggling attacks
0b654d52e golang: Update to 1.13.9
8677a0e3e libredblack: pass CFLAGS properly
ad782ffff Merge pull request #11615 from stangri/19.07-https-dns-proxy
fc16e964c Merge pull request #11617 from nxhack/19_07_icu_66_1
6abb6bb2a https-dns-proxy: support for dnsmasq noresolv option
2509b0e89 icu: update to 66.1
df7e27dfe youtube-dl: update to version 2020.3.8
0b8102940 haveged: move init script from 13 to 01
2085b990f libarchive: update to 3.4.2
8bd2d5e53 Merge pull request #11566 from BKPepe/python3-update-19.07
f043afe46 openvswitch: fix PIE build against 4.14 kernel
5827a1ed2 x264: add CONFIGURE_VARS and MAKE_FLAGS when NASM is not selected
5746e4a2b nfs-kernel-server: Fix compile with uClibc-ng
17924b128 xtables-addons: disable ASLR PIE
fd4da9667 python3: update to version 3.7.7
3b9648db3 django: bump to version 1.11.29
55176058f Merge pull request #11540 from neheb/softee
dc524aa2a softethervpn: disable PIC
381153d59 softethervpn: Fix openssl header patch
aba0dd872 softethervpn: Add missing OpenSSL header
f09028fcd softethervpn: Update to rtm version 4.29-9680
b546ff127 stubby: fix init script
c5219c8af stubby: makefile and init script cleanup
9b64ae0ba btrfs-progs: fix check for btrfs in btrfs scan
2f5fce820 syslog-ng: update to version 3.26.1
79186664e Merge pull request #11526 from wvdakker/openwrt-19.07
43c5aba9e Merge pull request #11524 from micmac1/1907arc_aio2
62d9ba9a0 Shorewall6: Bump to 5.2.3.7.
e14ee2480 Shorewall: Bump to 5.2.3.7.
84cca11fa Shorewall6-lite: Bump to 5.2.3.7.
803ab2f44 Shorewall-lite: Bump to 5.2.3.7.
7b67a0b91 Shorewall-core: Bump to 5.2.3.7.
c84786237 mariadb: add dependency on libaio for arc as well
b2f00d8b7 youtube-dl: update to version 2020.3.6
c4795d941 youtube-dl: update to version 2020.3.1
c81415a80 Merge pull request #11501 from Bloup1net/phantap19.07
408f666e6 libuv: update to 1.34.2
b97f33e02 cgi-io: fix compilation against uClibc
68aa303ef cgi-io: use O_TMPFILE for uploads and attempt to directly link target file
7f00eebab cgi-io: use dynamic memory for post decoding, support proc files
ce9229d2e Merge pull request #11500 from fantom-x/irqbalance-backport
bbc1b3025 irqbalance: support reload_config & start later
cdd892c9b irqbalance: add support of interval and banirq
cceb2c3ad irqbalance: upgrade to 1.6.0
801a908a1 phantap: add to 19.07
ca93667c8 Merge pull request #11482 from BKPepe/libaio_update
61b732e62 libaio: Update to 0.3.112
abdbeb350 mosquitto: bump to 1.6.9
a7d3b91ce syncthing: enable via config, lower priority, cleanup
0b9578a1d Merge pull request #11472 from fantom-x/syncthing-19.07
653014528 syncthing: bump to 1.3.4
56af7bcf1 syncthing: add package
2020-04-10 20:25:56 +02:00
Martin Weinelt
d333bffb67
modules: update OpenWrt
5b9b833f8c bcm53xx: add support for Luxul FullMAC WiFi devices
ab3549a870 bcm53xx: refactor board.d code in 02_network
35413b047c bcm53xx: sysupgrade: optimize building UBI image
55c29c398c busybox: enable truncate on bcm53xx target
a89731ad7a bcm53xx: fix ASUS firmwares to use vendor format
36373c5ddb openssl: bump to 1.1.1f
470f7c046c ath79: add support for TP-Link TL-WDR4310 v1
96ee7c8bfd libpcap: Update shared-lib patch from Debian to fix linking problems
96092a8eea mkrasimage: fix segmentation fault
bf5ea2a8dc rpcd: fix respawn settings
83381ce95d readline: needs host depend on ncurses to build
45b586c4a6 tools: squashfskit4: fix build with GCC10
79b60d878d squashfskit4/Makefile: introduce PKG_RELEASE=1
a08394b3c6 build: prereq: tidy gcc version checks
66cbfeeaae build: add GCC 10 version detection
eea3a9625c openssl: revert EOF detection change in 1.1.1
c6c3f6bb0a mac80211: Update to version 4.19.112
794fd4c6cf procd: turn error into debug message for missing ujail binary
f5b3cd1539 ar71xx: Fix gigabit switch support for Mikrotik RB951G-2HnD
bdbda30384 ath79: add support for TP-Link TL-WA860RE v1
2e6bfab8c5 ath79: add support for TP-Link TL-WA850RE v1
dba6f418fa mac80211: fix brcmfmac monitor interface crash
27e77922a1 ar71xx: use status led for GL.iNet GL-AR750S
2020-04-10 20:24:33 +02:00
David Bauer
d3f5adcfa4 github: actions: only build certain branches
This enables build-testing only on master as well as next and release
branches.
2020-04-10 03:50:31 +02:00
Matthias Schiffer
7b7cde7256
Merge pull request #1970 from Kasalehlia/fix-form-reset
gluon-web-model: update inputs on form reset
2020-04-09 23:17:39 +02:00
Jan Alexander
17b49e20ee ath79-generic: add support for GL.iNet GL-AR750S 2020-04-09 20:29:24 +02:00
Matthias Schiffer
2a8943e516 build: use .SILENT instead of adding @ to each recipe 2020-04-09 14:30:44 +02:00
Matthias Schiffer
4e02d9ba9f docs: start doc page on the build system 2020-04-09 14:30:44 +02:00
Matthias Schiffer
584d215f56 build: allow overriding the base feed list 2020-04-09 14:30:44 +02:00
Matthias Schiffer
6155bf82c8 build: reduce build environment pollution
Instead of exporting various variables (unintendedly making them
available to the OpenWrt build, possibly bypassing .config), pass the
environment only to commands that need it.
2020-04-09 14:30:44 +02:00
Matthias Schiffer
a180bb8689 build: use .ONESHELL
By using .ONESHELL and adding -e to .SHELLFLAGS, we can simplify complex
shell commands (like manifest generation) and gain a simple way to pass
multi-line environment variables into shell commands.

The @ and + flags for recipe commands are moved to the top of each
recipe.
2020-04-09 14:30:44 +02:00
Matthias Schiffer
47f1509e75 build: indent non-recipe Makefile lines with two spaces 2020-04-09 14:30:44 +02:00
Jan Alexander
016b323a17 gluon-status-page: set fixed layout and responsive view for data tables 2020-04-07 22:34:23 +02:00
Martin Weinelt
8aa30b7099 ci: add chown step to resolve permissions on openwrt dl cache 2020-04-07 19:26:26 +02:00
David Bauer
95b133d4fd x86-geode: add target class
x86-geode does not include the common x86 target-settings. Thus we need
to specify the device class in order to build images with all necessary
packages included.
2020-04-06 21:36:28 +02:00
David Bauer
1b0288d539 contrib: actions: remove surplus package sources 2020-04-05 19:49:44 +02:00
David Bauer
366ba8ab99 contrib: actions: add custom sources.list 2020-04-05 19:43:57 +02:00
David Bauer
83b2c41cee contrib: actions: enable verbose output 2020-04-05 19:19:58 +02:00
David Bauer
bb905b3351 actions: move dependencies to dedicated step 2020-04-05 19:08:15 +02:00
Ruben Barkow-Kuder
24dd731019 docs: compress PNG for mtu diagram 2020-04-05 16:35:11 +02:00
Kasalehlia
bf090a8a83 gluon-web-model: update inputs on form reset
Register to 'reset' event on form element and make call to 'update' function
delayed in 'data-update' handler to allow the form values to update beforehand.

When using a form's 'reset' button, form field visibility was not updated.
This could lead to situations where a checkbox had to be toggled again
twice to display the detail text inputs. (Example taken from private
wifi package)
2020-04-05 12:47:49 +02:00
Martin Weinelt
3fb4cdad13 gluon-respondd: allow queries from extra_prefix6
Fixes #1959
2020-04-04 22:13:10 +02:00
David Bauer
c21d95bf34 github: add build workflow 2020-04-04 18:04:31 +02:00
David Bauer
b427a3b1ad modules: use GitHub mirror
Then using GitHub actions, the OpenWrt Git service occasinally returns a
504 leading to a failed build.
2020-04-04 18:04:31 +02:00
David Bauer
ebac7e4459 contrib: add build-script for GitHub actions 2020-04-04 18:04:31 +02:00
David Bauer
a37098da6b contrib: add generation script for GitHub actions 2020-04-04 18:04:31 +02:00
David Bauer
59a4cd63b8 gluon-respondd: expose OWE clients in nodeinfo
Provide the number of OWE stations in addition to the number of all
connected wireless clients.
2020-04-01 01:15:38 +02:00
David Bauer
b7ac32efbc docs: include OWE documentation 2020-04-01 01:15:38 +02:00
David Bauer
9720be5112 gluon-web-wifi-config: set state of OWE VAP 2020-04-01 01:15:38 +02:00
David Bauer
6692095f9d gluob-client-bridge: add support for OWE encryption 2020-04-01 01:15:38 +02:00
David Bauer
c9f90c3ef8 build: add class-packages for targets without devices
When adding device classes, targets without devices such as x86 were not
handled. As site and feature packages are included on such a per-device
decision, x86 images ended up without most packages.

Include a class setting for a target and include the class-packages
target-wide when this setting is configured.

Fixes 9c52365077 ("build: introduce device classes")
2020-03-27 23:35:24 +01:00
David Bauer
17db337d95 modules: update OpenWrt
81264ebb51 brcm2708: fix build failure

Compile-tested: brcm2708
2020-03-26 01:40:29 +01:00
Martin Weinelt
9fb4be6104 modules: update OpenWrt
39405644d5 dnsmasq: add 'scriptarp' option
d5b1f4430f openssl: update to 1.1.1e
798ff37aaa openssl: add configuration example for afalg-sync
168acbb36d oxnas: yet another irqchip related patch
cf4520d15e oxnas: backport another fix for irqchip
456e1c60d6 ath79: add support for TP-Link WDR3500 v1
e7fae8fc97 ath79: add support for TP-Link Archer C60 v3
2bd9d2e08b oxnas: backport patch fixing hang after reboot
74a8e36975 layerscape: add kmod-i2c-mux to DEVICE_PACKAGES for traverse-ls1043
7ae345ecb7 ath79: add support for TP-Link TL-WR740N v5
76c1c1daea ar71xx: fix port order on TP-Link Archer C60 v1/v2
f1a3a6b79c ath79: fix port order on TP-Link Archer C60 v1/v2
e4107e30a7 ar71xx: remove wrong MAC address adjustment for Archer C60 v2
83f1015a6c ar71xx: fix swapped LAN/WAN MAC address for Archer C60 v1/v2
9f024d3587 ath79: fix swapped LAN/WAN MAC address for Archer C60 v1/v2
b32129d30b rssileds: add dependencies based on LDFLAGS
9da31d0fb4 mt76: update to the latest version
68351990dc ar71xx/ath79: ew-dorin, fix the trigger level for WPS button
6e4453aecc kernel: backport out-of-memory fix for non-Ethernet devices
06f5a8d3e9 kernel: bump 4.14 to 4.14.172
e7f1313bbb rpcd: add respawn param
f6f0cd54a2 rpcd: update to latest Git HEAD

Compile-tested: ipq40xx-generic, ramips-mt7621
2020-03-25 02:21:24 +01:00
David Bauer
051b275055 build: add class specific GLUON_SITE_PACKAGES
This allows to define a list of packages, which are only installed
for a specific device-class.
2020-03-25 02:05:18 +01:00
David Bauer
a9c5b83cad docs: private-wlan: add WPA3 documentation 2020-03-25 02:05:18 +01:00
David Bauer
c7fa1927aa gluon-web-private-wifi: enable WPA3 configuration
This allows a user to enable WPA3-Personal and WPA2-WPA3-MM for the
private WiFi in case it is supported by the platform.
2020-03-25 02:05:18 +01:00
David Bauer
86b5104790 gluon-core: add WPA3 platorm helper
This adds a helper method, which determines if the current platform
supports WPA3 or not.

WPA3 is supported if
 - the device is not in the featureset category "tiny"
 - the WiFi driver supports 802.11w management frame protection
2020-03-25 02:05:18 +01:00
David Bauer
88bed04679 build: remove hostapd from default packages 2020-03-25 02:05:18 +01:00
David Bauer
00e029500e features: add hostapd-mini by default
If WPA3 is not selected as a feature, autmatically include
hostapd-mini.
2020-03-25 02:05:18 +01:00
David Bauer
b057015455 gluon-wireless-encryption: add package
The gluon-wireless-encryption package selects a WPA3 supporting
hostapd package as a dependency and stores the information, which
encryption method is supported to the device.
2020-03-25 02:05:18 +01:00
David Bauer
1df243d1b3 build: add class specific GLUON_FEATURES 2020-03-25 02:05:18 +01:00
David Bauer
7903d9eb64 docs: add device-classes 2020-03-25 02:05:18 +01:00
David Bauer
7fd7116e2a targets: add device-class flags
This commit assigns class-flags to devices. The following scheme is
used:

 - ath9k & ath10k: tiny if RAM <128M
 - ath10k & ath10k: tiny if RAM <256M
 - all: tiny if RAM <64M
 - all: tiny if flash <8M

All other devices automatically have the default device-class selected.
2020-03-25 02:05:18 +01:00
David Bauer
9c52365077 build: introduce device classes
This commit allows to define a device-class flag in the target
definitions. This way, it is possible to distinguish between groups
of devices in the build-process in terms of package or feature
selection.
2020-03-25 02:05:18 +01:00
David Bauer
3d5a693026
x86: add common wireless packages (#1947) 2020-03-23 19:00:28 +01:00
Martin Weinelt
461d904086 Add gluon-mesh-wireless-sae package
This package adds support for SAE on 802.11s mesh connections.

Enabling this package will require all 802.11s mesh connections
to be encrypted using the SAE key agreement scheme. The security
of SAE relies upon the authentication through a shared secret.

In the context of public mesh networks a shared secret is an
obvious oxymoron. Still this functionality provides an improvement
over unencrypted mesh connections in that it protects against a
passive attacker who did not observe the key agreement. In addition
Management Frame Protection (802.11w) gets automatically enabled on
mesh interfaces to prevent protocol-level deauthentication attacks.

If `wifi.mesh.sae` is enabled a shared secret will automatically be
derived from the `prefix6` variable. This is as secure as it gets
for a public mesh network.

For *private* mesh networks `wifi.mesh.sae_passphrase` should be
set to your shared secret.

Fixes #1636
2020-03-23 17:06:43 +01:00
Martin Weinelt
bf04107048 docs: v2020.1: add Edgerouter X NAND driver problem to known issues
Resolves #1937
2020-03-19 20:39:36 +01:00
Matthias Schiffer
d7e724ada9
target_lib: replace envtrue with more intuitive istrue helper
Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
2020-03-14 16:51:43 +01:00
Matthias Schiffer
c9f3017ac5
Merge pull request #1955 from freifunk-gluon/dgn3500b
lantiq-xway: add support for NETGEAR DGN3500B
2020-03-14 16:32:34 +01:00