As gluon-web uses standard multipart/form-data requests, browsers don't
enforce any cross-origin restrictions. To prevent malicious injection of
POST requests into the config mode, match the Origin header against the
Host header of the request.
Actually raise an error and turn it into an HTTP 400 return code when
something goes wrong, rather than ignoring the error.
We also improve the conditions under which errors are thrown before
pump() is called: We don't need to check for the multipart/form-data
content-type twice, and a POST without this content-type is now always
an error.
By applying a label `backport <branch>` the action will automatically
try to cherry-pick the change to the target branch after the pull
request was successfully merged.
Swap the interfaces so than the PoE input port LAN0 is used for WAN and
config mode, and LAN1 becomes LAN.
To this end, the code previously used for ar71xx and removed in
commit 9fdc57c175 ("treewide: drop ar71xx platform specific code") is
reintroduced.
Fixes#2384
1472a8fa42 procd: update to git HEAD
015f170fe6 procd: update to git HEAD
cd5ba0cfbb ustream-ssl: variants conflict with each other
6eced97ce4 lantiq: flag FritzBox 7360 family buttons active-low
b59f3b08b4 firmware-utils: tplink-safeloader: fix Archer A7v5 factory flashing from vendor fw > v1.1.x
43d105ec2a kernel: bump 5.4 to 5.4.171
1db847488d ath79: rb912: fix pll init issues
6ced8cad8e kernel: backport workaround for Realtek RTL8672 and RTL9601C chips
77ee281a3e kernel: add kmod-ledtrig-pattern
aa2de44cdd kernel: fix AutoLoad parameter for uleds module
bc37a699e5 kernel: add kmod-leds-uleds
96b5962704 mvebu: remove patch that was applied into linux stable
5beaa75d94 openssl: bump to 1.1.1m
93842b20dc bcm4908: include ATF in bootfs images
18b10db2f1 arm-trusted-firmware-bcm63xx: add ATF for Broadcom devices
739e359241 kernel: backport support for multicolor & RGB LEDs to 5.4
608c7dccf2 bcm4908: sysupgrade: add pkgtb format support
b6ed2641df busybox: backport dd support for iflag=count_bytes
7e4485fd5b bcm4908: add uboot-envtools to default packages
4cd5d11fa3 bcm4908: add fdt-utils to default packages
1d4a28d5e1 dtc: support printing binary data with fdtget
ce5d0378bf dtc: import package for dtc & fdt from packages feed
6292d1e354 bcm4908: sysupgrade: refactor handling different firmware formats
a00854040d ipq40xx: specify FritzBox 7530 LAN port label numbers
27225e3538 kernel: ath10k: provide a build variant for small RAM devices
104774c3b0 mvebu: puzzle: wan LED and fix default network
47d82f0710 mvebu: enable Aquantia phy driver for Puzzle devices
164ed6069c mvebu: add id for AQR112 Ethernet phy variants
daf4301071 mvebu: import patch enabling AQR113 PHY
ee5750043c mvebu: import patch enabling AQR112 and AQR412 PHY
a03840a1a9 mvebu: puzzle-m901: add LEDs, fan and reset button
280bb7c10c mvebu: puzzle-m902: add GPIO reset button
1e5df4d550 mvebu: puzzle-mcu: improve led driver
99a1e88297 mvebu: puzzle-m902: add driver for MCU driving LEDs, fan and buzzer
3b14ddf8d2 build: fix opkg install step for large package selection
This copies the code from web-admin and uses it to create a neat
cli-accessible summary about a node
This could also be extended or possibly have all the data the status
page has
Co-Authored-By: Matthias Schiffer <mschiffer@universe-factory.net>
We currently don't have any deprecated devices, so it doesn't make much
sense to force every site to specify this variable. Make it default to 0
instead.
All our targets use the OpenWrt device abstraction. Since commit
6ba58c9b17c90e41b521d796ab76e5723ee017170
("generic: force per-device RootFS") building non-device targets is not
possible anymore, so we can remove these obsolete handlers.
4dddb7ca36 tcpdump: libpcap: Remove http://www.us.tcpdump.org mirror
47a5b9744b linux-firmware: amd: consolidate amd's linux-firmware entries
6003752394 linux-firmware: Update to version 20211216
7306b9e810 linux-firmware: update to 20210511
d0b0ebf966 linux-firmware: update to version 20210315 and trim down broadcom FW
209c77e90f linux-firmware: ath10k: add support for Qualcomm Atheros QCA9377
2ed471a12a firmware: intel-microcode: update to 20210608
a20e9474df cypress-nvram: fix firmware is not exist for raspberry pi compute 4
dbe2a6343f base-files: fix service_running check
e81dd8a10a base-files: upgrade: fix efi partitions size calculation
8166bbf680 ccache: update to 4.2.1
5e2a2b086c mvebu: Turris Omnia: use SFP module, if present
24e564d327 mvebu: backport Turris Omnia DTS changes to 5.4
32c74552b2 kernel: bump 5.4 to 5.4.168
a8ad881b83 apm821xx: fix WD MyBook Live DUO USB-Port
d655eea053 hostapd: only attempt to set qos map if supported by the driver
With older versions of the RTD theme, paragraphs in nested lists would
lead to inconsistent spacing. This has been fixed, so we can remove our
workaround to use line blocks instead of paragraphs.
Using `make container` or, if you don't have automake/gmake on your host
system, `./scripts/container.sh` will build an image for the current
branch your are on and drop you into a shell running inside a container
using that image.
From there all tooling required to work on Gluon is available.
Supports both podman (preferred) and docker.
a85b7c7 opennds: Release v9.5.1 (for 21.02)
d4622d8 ohybridproxy: revert to default log level
47436b0 batman-adv: Prevent use from libc headers to not build with BIG_ENDIAN
a87752712 python-lxml: update to version 4.6.5
944e937d9 php8: update to 8.0.14
4308764d8 seafile: remove myself as maintainer of these packages
aa7454e46 python-packages: remove myself as maintainer
f01af1e66 crowdsec-firewall-bouncer: update to 0.0.18
f4519023c php7: update to 7.4.27
e818e3ed3 nano: update to version 6.0
e7e91ca07 libqmi: fix missing CONFIG_ prefix
7164762fd ldns: update to 1.8.1
59e70a29c unbound: update to 1.14.0
e6628357a htop: update to 3.1.2-1
c28d3dcb5 htop: explicitly disable some build options
97574e9de htop: update to 3.1.0
6ddb16bc3 node: bump to 14.18.2
4f251d6df hwdata: update to version 0.354
92129f9cf python-babel: update to version 2.9.1
134bae302 python-babel: update to version 2.9.0
5750f8337 knot: update to 3.1.4
149c3014f gnutls: don't run aclocal --install
4ee031906 bind: bump to 9.17.20
cbc9de5f1 knot-resolver: update to version 5.4.3
bb89205f5 yq: Update to 4.16.1
1743adc23 python3: update to version 3.9.9
5ebaa73d5 msmtp: update to version 1.8.1.9
a9fed2403 mariadb: Create compatibility symlinks
0e40e25fc mariadb: Install all supporting sql files
753fe1d21 mariadb: Tweak default configuration
ed572e389 mariadb: Init script improvements
fb4c9e5c4 mariadb-common: Drop package and adjust configuration
e84c48890 nextdns: Update to version 1.37.7
75a0ffc21 nextdns: Update to version 1.37.6
a97bd3135 syslog-ng: update to version 3.35.1
3cad5b76d yggdrasil: bump to 0.4.2
a7a724733 yggdrasil: uci ifname is now known as device
271961e3a nextdns: Update to version 1.37.5
5d82c0716 ddns-scripts: use HTTPS for spdyn
ff5728497 icu: bump to 70.1
8162066e1 curl: update to 7.80.0
4877a3b72 yq: Update to 4.15.1
4f78eb825 crowdsec: update to 1.2.1 crowdsec-firewall-boucer: update to 0.0.16
103484c4b nebula: update to 1.5.0
e1b79b1dc3 mac80211: optimize airtime fairness code to reduce cpu usage
5414aa88ae kernel: backport the upstream implementation of threaded NAPI to 5.4
4b52d89531 mac80211: Update toversion 5.10.85
5a8faa407a bcm53xx: sysupgrade: fix support for Luxul's legacy firmware format
052619a71b bcm4908: build chk image for Netgear RAXE500
d5f9c6729f bcm4908: start working on Netgear RAXE500 image
76ccf10c59 bcm4908: enable MTD_CMDLINE_PARTS
97b76de576 bcm4908: continue work on images for U-Boot based devices
1da38bb4db bcm4908: backport upstream DT commits
570c26f664 bcm4908: add watchdog support
027dd3c50b bcm4908: start work on images for devices using U-Boot
2c1f27bf4b bcm4908img: detect Linksys images
1d1c695273 bcm4908img: store offset of tail data
f24e745b25 bcm63xx-cfe: update to the latest master
c808c55b39 bcm53xx: sysupgrade: refactor handling different firmware formats
29f73a7968 bcm53xx: sysupgrade: simplify extracting image from Seama seal
0ebf62e7f4 bcm53xx: enable Linksys EA6300 & EA9200 builds
67978e4ce5 bcm53xx: backport the latest upstream DT changes
6f9e9d978a bcm53xx: fix Luxul XWR-3150 LAN ports numbering
2912bba4cb otrx: update to the latest master
3d05cd40a6 otrx: use firmware-utils.git to avoid code duplication
14940aee45 kernel: bump 5.4 to 5.4.163
06547e0a58 ath79: add support for Xiaomi AIoT Router AC2350
c67509efd7 ramips: fix tl-mr3020-v3 switch topology to configure vlans via luci
5124b96e72 busybox: update to 1.33.2 bugfix release
266890bb12 mt76: update to the latest version
efc76b1361 mac80211: bump PKG_RELEASE
1276ef9c1c mac80211: fix tx aggregation locking issue
b1e684fa88 mac80211: fix queue assignment of aggregation start requests
462ccf90be mt76: update to the latest version
36848e2c29 uboot-lantiq: danube: fix hanging lzma kernel uncompression #2
4172a8e0ad lantiq: set maximum kernel size for P2812HNUF3
0e0192098a mac80211: backport fix for dealing with stripped IV on rx
77667a7eb6 hostapd: add a patch that allows processing auth requests for peers in blocked state
9127e5193e hostapd: bump PKG_RELEASE
4679c4ae25 mac80211: bump PKG_RELEASE
36c3103cba mac80211: add a fix for kernel warnings when forwarding packets in mesh mode
ea91ebedce mac80211: fix regression in SSN handling of addba tx
Declare the clock variable as extern in the header file.
Fixes compilation of gluon-ebtables-limit-arp with OpenWrt master:
multiple definition of `clock'; /gluon/openwrt/tmp/ccuynR0G.o:(.bss+0x230): first defined here
Signed-off-by: David Bauer <mail@david-bauer.net>