Compare commits

..

47 Commits

Author SHA1 Message Date
David Bauer
367806af10 mbedtls: move source modification to patch 2023-01-18 22:31:01 +01:00
Martin Weinelt
13053bf6bc
Merge pull request #2761 from blocktrron/v2022.1.x-updates
[2022.1.x] modules: update to latest HEAD
2023-01-17 20:45:31 +00:00
David Bauer
d8724b0a6d modules: update routing
1a87333 bird2: bump to version 2.0.11
0fb5e3c opennds: Release v9.9.1
d9cd6ef batman-adv: Merge bugfixes from 2022.3
2023-01-17 15:57:23 +01:00
David Bauer
ff8737bb16 modules: update packages
9e9eb8240 pbr: update to 1.0.1-14
2417b74fc atlas-sw-probe: update to version 5080
18fa44a14 golang: Update to 1.19.5
e81ff3fcc atlas-probe: update to 2.6.3
3232bd049 simple-adblock: update sed for allowing domains
360bce6f3 xz: update to version 5.4.1
68d3d099b docker-compose: Update to version 2.15.1
2feedb1e2 speedtestpp: drop libxml2 dependency
df3799fe0 yt-dlp: update to 2023.1.6
69a8305f7 ocserv: disable libmaxminddb detection
5234dc93b knot: disable libmaxminddb detection
709172c95 python-pytz: bump to version 2022.7
0d346fe7f bind: disable geoip
e4a7f86bf docker-compose: Update to version 2.15.0
f709ba1ee stubby: Restart on interface trigger
4ff16a7bf stubby: Update to 0.4.3
8038868ba getdns: Update to 1.7.3
4b30c97b5 libtorrent-rasterbar: Update to 2.0.8
db78655bb syncthing: update to 1.23.0
f8cd48207 libmaxminddb: install pkgconfig file
55222315f libmaxminddb: update to 1.7.1
27db10b96 AdGuardHome: update to v0.107.21
2048c5bbf libnetwork: Update to dcdf8f1 for Docker v20.10.22
b7500ff2d containerd: Update to v1.6.13 for Docker v20.10.22
27e985f32 docker: Update to v20.10.22
7426365de dockerd: Update to v20.10.22
511de74ce owntone: Update to 28.5
90c25ab10 owntone: update to 28.4
94a947f1c mxml: update to 3.3.1
b5fd276fd docker-compose: Update to version 2.14.2
5c9215b20 docker-compose: Update to version 2.14.1
7bd647a50 docker-compose: Update to version 2.14.0
dad5db7a2 docker-compose: Update to version 2.12.2
d3d580daa docker-compose: Update to version 2.12.0
ec76dce13 docker-compose: Update to version 2.11.2
3d9f6f2fa docker-compose: Update to version 2.11.1
8353f504a docker-compose: Update to version 2.11.0
41ab6565b docker-compose: Update to version 2.10.2
e65d20aee docker-compose: Update to version 2.9.0
0aff8059f docker-compose: Update to version 2.7.0
3846dc1f4 docker-compose: Update to version 2.6.1
a749254bd docker-compose: Update to version 2.6.0
66f07e340 docker-compose: Update to version 2.5.1
01d6208e5 docker-compose: Update to version 2.5.0
1900774ad docker-compose: Update to version 2.4.1
07647d822 docker-compose: Update to version 2.4.0
7dc695f35 docker-compose: Update to version 2.3.4
5b32db43f telnet-bsd: add package
60af04fa4 domoticz: update to 2022.1
801c00193 bind: update to version 9.18.10
82a4e7a46 golang: backport an upstream fix for non-retpoline-compatible error
01406a6ca v2ray-geodata: Update to latest version
17d72277e v2ray-core: Update to 5.2.0
c5a51a440 xray-core: Update to 1.7.0
5f5d9ddf6 rclone: Update to 1.61.1
c2f2b6977 cloudreve: Update to 3.6.2
02a6ad64d xray-core: Update to 1.6.6-2
2d059c5d9 yq: Update to 4.30.6
334c598b1 dnsproxy: Update to 0.46.5
bb646b65f dnslookup: Update to 1.8.1
5c9ffc34d cloudflared: Update to 2022.12.1
58b61913d natmap: update to 20221225
f6db13442 natmap: fix service not stopped when disabled in luci
4b9641eea natmap: add Package/conffiles
e4fc50644 libarchive: add missing CONFLICT
a139b554c libarchive: fix CVE-2022-36227
ab468882d libarchive: update to 3.5.3
2023-01-17 15:57:23 +01:00
David Bauer
5961575c33 modules: update openwrt
807483d336 dosfstools: switch to AC_CHECK_LIB
3bc6d2af76 tools/dosfstools: fix PKG_SOURCE
c0b4303d2e toolchaini/gcc: fix libstdc++ dual abi model
aa5023b9cd scripts/dl_github_archieve.py: fix generating unreproducible tar
e88e0ace7a ksmbd: Fix ZDI-CAN-18259
aca915e847 ksmbd: update to 3.4.6
4b7f9e42e2 lantiq-xrx200: fix wan LED on o2 box 6431
7c10b7b6f0 CI: build: fix external toolchain use with release tag tests
b08e1e978c OpenWrt v22.03.3: revert to branch defaults
221fbfa2d8 OpenWrt v22.03.3: adjust config defaults
43d71ad93e mac80211: Do not build brcmsmac on bcm47xx_legacy
181390f57d uml: fix 5.10 build
1fd2f9f7be kernel: Add missing kernel configuration options
8446d22aaa gdb: Do not link against xxhash
558aa1f482 odhcpd: fix null pointer dereference for INFORM messages
af4f635eed ipq40xx: sysupgrade: allow flashing Linksys factory firmware
4bda308657 base-files: stage2: add 'tail' to sysupgrade environment
2f1b73b70d treewide: Trigger reinstall of all wolfssl dependencies
77e2a24e62 wolfssl: update to 5.5.4-stable
158a33591d mbedtls: update to version 2.28.2
b23cab2fcf toolchain: gcc: import patch fixing asm machine directive for powerpc
6be9e3e636 kernel: remove hack patch, move kirkwood specific kmods to target modules.mk
b1722a048a kernel: bump 5.10 to 5.10.161
cdce4a0bfa uhttpd: update to latest Git HEAD
2023-01-17 15:57:23 +01:00
David Bauer
9b840d1d87
Merge pull request #2740 from freifunk-gluon/v2022.1.x-modules-bump
[v2022.1.x] modules: update to latest in master
2023-01-01 23:14:00 +01:00
Andreas Ziegler
c82fc9616b
modules: update packages
91312dbde node: bump to v16.19.0
8445e9361 Merge pull request #20160 from stangri/openwrt-22.03-pbr
1478867e5 pbr: bugfix: Makefile, rt_tables fix
6c1d003fe Merge pull request #20154 from ysc3839/natmap-fix-2203
a426a62da natmap: add forward_port option
3730093bc Merge pull request #20114 from stangri/openwrt-22.03-pbr
8e9b85daf pbr: update to 1.0.1-1
40714e889 mwan3: make mwan3.user executable
d0a0fcad8 mwan3: update to 2.11.3
0dedc2059 mwan3: only send disconnected event if interface was connected before
8d1f90b7b mwan3: change log message on already added route
c70e2ad39 mwan3: support offload routing modifier
d8a77e90f mwan3: Switch default track_ip targets from Google DNS to Cloudflare DNS
33e0c6b20 mwan3: fix balanced default config
09604ee3e golang: Update to 1.19.4
694026540 privoxy: fix preinst/postinst script indentation
c54148631 tailscale: preserve tailscaled state file
f553dab19 knot: update to version 3.2.4
bf124d380 yt-dlp: update to 2022.11.11
91ca31025 perl: enable threading support for aarch64 by default
1f3b5ba00 lxc-auto: made init script compatible with image builder
ac64d8809 igmpproxy: update to version 0.4.0
e9bc14cf3 apr-util: disable parallel build
9481f437a python3-pytz: bump to version 2022.6
ea8cfdf02 nano: update to 7.1
4cd549b1e Merge pull request #20017 from commodo/stress-ng-update-22.03
cde7af980 wget: apply upstream fix to avoid nettle linking in nossl
e3a60c072 wget: update to 1.21.3
80443fc66 stress-ng: disable xxhash & libegl stressors
54a387fb9 Merge pull request #20063 from stangri/openwrt-22.03-pbr
9b29ac76a syncthing: update to 1.22.2
c4e6977a0 Merge pull request #20077 from stangri/openwrt-22.03-simple-adblock
6b6776ab5 Merge pull request #20073 from luizluca/22.03/ruby-3.0.5
cabc98c44 simple-adblock: bugfix: add dnsmasq.nftset to uci_load_validate
43c05fbed ruby: update to 3.0.5
c6ac63b5c pbr: detect missing iptables
e4813f4fe Merge pull request #20053 from stangri/openwrt-22.03-https-dns-proxy
8dc325222 https-dns-proxy: fix restart
2075769c4 Merge pull request #20043 from stangri/openwrt-22.03-https-dns-proxy
598197373 Merge pull request #20051 from stangri/openwrt-22.03-simple-adblock
1c6c8cee4 simple-adblock: support new OISD dnsmasq config
04eadf860 dnsproxy: Update to 0.46.4
f5547cfde cloudflared: Update to 2022.11.1
4962ad8e8 https-dns-proxy: add mdns service records
4abdc2f33 github-ci: error on any shell errors
8506ba587 Merge pull request #20033 from peter-stadler/openwrt-22.03
798fe3f59 django: bump version 4.0.8
ce3e9d4b4 natmap: merge "ipv4" and "ipv6" options into single "family" option
0393a5c19 snowflake: update to version 2.4.1
ec2fbd57e natmap: add new package
f6a688776 xz: update to 5.2.9
b1b1281da xz: update to 5.2.7
ed99f2f00 xz: update to 5.2.6
bdc161a07 tailscale: Update to version 1.32.3
26dabd374 tailscale: update to v1.32.0
023fe9700 Merge pull request #20010 from stangri/openwrt-22.03-pbr
fda81981b adguardhome: bump to 0.107.18
aa61ca8bf AdGuardHome: update to v0.107.16
acb201a0a AdGuardHome: update to v0.107.12
820bcedfd AdGuardHome: update to v0.107.11
3352cf56d Merge pull request #20003 from mhei/22.03-php8-update-8.1.13
12bc0789a btrfs-progs: Update to version 6.0.1
7e75519ac libgpg-error: copy gpg-error.pc to staging directory
c38abeb95 gnupg: compile with -fcommon
6d14306a6 privoxy: fix postinst missing $
7c1b94bb1 privoxy: correctly format /etc/services additions
a505d6f26 golang: update to v1.19.3
e0238d309 golang: update to v1.19.2
b90c80aae pbr: initial commit
e5083a9db Merge pull request #19994 from stangri/openwrt-22.03-simple-adblock
6b21bd34f borgbackup: add package for 1.2.2
5a7ecd11e python-pyfuse3: add package for 3.2.2
bdf7a73cb python-trio: add package for 0.22.0
e2b1c2cd4 python-sniffio: add package for 1.3.0
e029bdb32 python-outcome: add package for 1.2.0
dd9ff1b6c python-async-generator: add package for 1.10
f0a093701 python-exceptiongroup: add package for 1.0.4
0310a6edf python-sortedcontainers: add package for 2.4.0
c5877bd65 xxhash: add package for 0.8.1
452681ea7 samba4: support both user map and valid users on same time
6de7a04c4 lighttpd: lighttpd.conf vars, comments, guidance
bc6431a94 lighttpd: print stderr trace if validation fails
cf8ce7a4e php8: update to 8.1.13
e057ed882 v2raya: backports upstream fixes and add 3 new options
fe96d64b8 v2ray-geodata: Update to latest version
a8858d1e3 xray-core: Update to 1.6.5
85a0f22ca yq: Update to 4.30.5
f19180a1d libqmi: bump to 1.30.8
6cf7648bd simple-adblock: localizable error/warning messages
a99116f20 Merge pull request #19988 from stangri/openwrt-22.03-simple-adblock
d59f56bb6 Merge pull request #19986 from stangri/openwrt-22.03-https-dns-proxy
91b205481 librespeed-go: add new package
2e7ce8a23 simple-adblock: bugfix: detect dnsmasq ipset support
80dd929bf https-dns-proxy: improve performance on restart
6f405bd56 pdns-recursor: update to 4.7.4
11d749180 liburing: Update to v2.3
17b54726d liburing: Update to v2.2
44781b792 ices: Update to 2.0.3
198459abe gphoto2: update to 2.5.28
b7c43947f libgphoto2: update to 2.5.30
a02a11f68 syncthing: update to 1.22.1
fdd9f725a syncthing: update to 1.20.1
94f709720 syncthing: add stdiscosrv and strelaysrv
8e7192b9b tvheadend: update to git master 2022-11-20
8a0333ed7 knot: update to version 3.2.3
0e190e5cd cloudflared: Update to 2022.11.0
beb67db2e Merge pull request #19957 from stangri/openwrt-22.03-https-dns-proxy
714075bb6 ooniprobe: Update to 3.16.5
0de8e969e unbound: update to 1.17.0
7e25e745f librespeed-cli: rename binary to librespeed-cli
dfdf74ef9 rclone: Update to 1.60.1
e769b3fdb gg: Update to 0.2.15
bee5b07c6 sqlite3: Update to 3.40.0
554f0aed0 https-dns-proxy: update Makefile package descrition
03b41dbb5 xray-core: Update to 1.6.4
dcb6389f2 nextdns: Update to version 1.38.0
ee07ea15c Merge pull request #19901 from stangri/openwrt-22.03-simple-adblock
ffa5f4db8 nano: update to 7.0
20d5a2216 bcp38: migrate to nftables
fd3e15543 yq: Update to 4.30.4
b7166a81f frp: update to 0.45.0
b2081557f ariang: update to 1.3.2
5c1e58973 Revert "openthread-br: new package"
553d07845 simple-adblock: update to 1.9.3-1
71e8e63a3 yq: Update to 4.30.2
bf8a6584f yq: Update to 4.30.1
67b2ba78e rsync: update to 3.2.7
6fb9da0cd rsync: incorporate upstream fixes
0c4379d16 rsync: bump to 3.2.6
a74d1b82e zerotier: update to 1.10.2
8aec58f78 irqbalance: update to 1.9.2
fc62b59a9 gg: Update to 0.2.14
5423b2d10 v2ray-geodata: Update to latest version
ddc4edc5b xray-core: Update to 1.6.3
27dd30aad openthread-br: new package
bf2eb2333 golang: update to version 1.18.8
4f15ecf5e Merge pull request #19871 from blocktrron/qcsuper-2203
48fc50950 qcsuper: add package
3e63425d7 python-pycrate: add package
2466b3c0d python-crcmod: add package
c2b7f86a8 ffmpeg: libffmpeg-full package should provide libffmpeg package, too
419f67377 Merge pull request #19861 from stangri/openwrt-22.03-simple-adblock
2f7a640bc simple-adblock: update to 1.9.2-4
c5974e7d1 xray-core: Update to 1.6.2
b639d7b43 Merge pull request #19835 from mhei/22.03-php8-update-to-8.1.12
458836e6c pulseadio: fix conffiles for pulseadio-daemon-avahi package
01cb4fc41 hub-ctrl: trim trailing spaces
3f4cc35d1 announce: trim trailing spaces
58b48b2df knot: update to version 3.2.2
8a106f066 pulseaudio: change homepage URLs to freedesktop.org
58a5e8a5e pulseaudio: use AUTORELEASE variable
05be550e7 pulseaudio: daemons should conflict to each other
6a4b1d195 pulseaudio: simplify and rework Makefile
e8c169693 luaexpat: trim trailing spaces
8f85f8984 squid: trim trailing space
8ff324419 mini_snmpd: trim trailing spaces
1fcbe2d6e lynx: trim trailing space
e4a3e0d94 librespeed-cli: add package
503e3a0e3 zoneinfo: updated to the latest release
db2989ebc zoneinfo: updated to the latest release
de77e2320 zoneinfo: updated to the latest release
cb7fe299f mpd: depend the full variant on pulseaudio instead of pulseaudio-daemon
6b8c90260 Merge pull request #19793 from stangri/openwrt-22.03-curl-7.86.0
1b384f4c4 Merge pull request #19710 from stangri/openwrt-22.03-simple-adblock
341e50de0 Merge pull request #19708 from stangri/openwrt-22.03-https-dns-proxy
4d8a00e54 php8: update to 8.1.12
1f71809d6 cloudflared: Update to 2022.10.3
18854f6f8 rclone: Update to 1.60.0
81b355ec5 yq: Update to 4.29.2
58bd7b001 curl: bugfix: building as selected package doesn't break build
cc160ea8d curl: update to 7.86.0
6f4e73287 python3-pytz: bump to version 2022.5
0bca5e2a0 curl: include nls.mk
56380fb01 dnsproxy: Update to 0.46.2
1acc8e3e7 v2ray-geodata: Update to latest version
ab97e3d50 xray-core: Update to 1.6.1
a1fbaa704 xray-core: remove orphan xray-geodata definition
0b68bfd6c node: bump to v16.18.0
f916e3426 ffmpeg: add conflicts and provides
f7d592607 bandwidthd: fix time_t problem Fixes issue #19510 with the change in time_t with musl 1.2
ddc4edc5b xray-core: Update to 1.6.3
27dd30aad openthread-br: new package
bf2eb2333 golang: update to version 1.18.8
4f15ecf5e Merge pull request #19871 from blocktrron/qcsuper-2203
48fc50950 qcsuper: add package
3e63425d7 python-pycrate: add package
2466b3c0d python-crcmod: add package
c2b7f86a8 ffmpeg: libffmpeg-full package should provide libffmpeg package, too
419f67377 Merge pull request #19861 from stangri/openwrt-22.03-simple-adblock
2f7a640bc simple-adblock: update to 1.9.2-4
c5974e7d1 xray-core: Update to 1.6.2
b639d7b43 Merge pull request #19835 from mhei/22.03-php8-update-to-8.1.12
458836e6c pulseadio: fix conffiles for pulseadio-daemon-avahi package
01cb4fc41 hub-ctrl: trim trailing spaces
3f4cc35d1 announce: trim trailing spaces
58b48b2df knot: update to version 3.2.2
8a106f066 pulseaudio: change homepage URLs to freedesktop.org
58a5e8a5e pulseaudio: use AUTORELEASE variable
05be550e7 pulseaudio: daemons should conflict to each other
6a4b1d195 pulseaudio: simplify and rework Makefile
e8c169693 luaexpat: trim trailing spaces
8f85f8984 squid: trim trailing space
8ff324419 mini_snmpd: trim trailing spaces
1fcbe2d6e lynx: trim trailing space
e4a3e0d94 librespeed-cli: add package
503e3a0e3 zoneinfo: updated to the latest release
db2989ebc zoneinfo: updated to the latest release
de77e2320 zoneinfo: updated to the latest release
cb7fe299f mpd: depend the full variant on pulseaudio instead of pulseaudio-daemon
6b8c90260 Merge pull request #19793 from stangri/openwrt-22.03-curl-7.86.0
1b384f4c4 Merge pull request #19710 from stangri/openwrt-22.03-simple-adblock
341e50de0 Merge pull request #19708 from stangri/openwrt-22.03-https-dns-proxy
4d8a00e54 php8: update to 8.1.12
1f71809d6 cloudflared: Update to 2022.10.3
18854f6f8 rclone: Update to 1.60.0
81b355ec5 yq: Update to 4.29.2
58bd7b001 curl: bugfix: building as selected package doesn't break build
cc160ea8d curl: update to 7.86.0
6f4e73287 python3-pytz: bump to version 2022.5
0bca5e2a0 curl: include nls.mk
56380fb01 dnsproxy: Update to 0.46.2
1acc8e3e7 v2ray-geodata: Update to latest version
ab97e3d50 xray-core: Update to 1.6.1
a1fbaa704 xray-core: remove orphan xray-geodata definition
0b68bfd6c node: bump to v16.18.0
f916e3426 ffmpeg: add conflicts and provides
f7d592607 bandwidthd: fix time_t problem Fixes issue #19510 with the change in time_t with musl 1.2
1cebcd66f atlas-probe: fix SIGSEGV error on 32bit system
ea7a0739a samplicator: update to latest master commit 2021-10-11
b4d1b8424 libwebsockets: fix recursive dependency
b2727bbe0 simple-adblock: rename wan6_trigger option
fa567eef0 https-dns-proxy: rename options
fefd89f77 libwebsockets: OpenSSL and mbedTLS variants should conflict
21ac9491f libwebsockets: full variant provides OpenSSL
deefa58a8 lighttpd: backport patch to fix dummy Sec-WebSocket-Key
5caff2eca Merge pull request #19700 from stangri/openwrt-22.03-https-dns-proxy
944a36af4 Merge pull request #19697 from stangri/openwrt-22.03-simple-adblock
54f3c8444 mariadb: Drop unused rundir fix socket dir perms
6f49212bc https-dns-proxy: add version information to binary
0be9e78c0 simple-adblock: service_triggers improvements
14125f800 Merge pull request #19692 from stangri/openwrt-22.03-https-dns-proxy
2022-12-30 01:53:27 +01:00
Andreas Ziegler
b85a9c54d5
modules: update openwrt
6c3e16055a kernel: backport ksmbd security fix ZDI-22-1690
275c51bf40 Revert "image-commands.mk: Be consistent in command invocation"
fec4fb3a56 sunxi: remove frequency for NanoPi R1
51a763ab0f arm-trusted-firmware-sunxi: drop CPE ID
377d805887 trusted-firmware-a.mk: use correct CPE ID
f30414c56d kernel: bump 5.10 to 5.10.160
47ac52a7c4 ath79: image: don't depend on other COMPILE targets
da79da3ac1 image: fix device profile specific COMPILE targets
9aa95bbebb rules: fix broken commitcount on alpine system
fcff234fd8 image-commands.mk: Be consistent in command invocation
be7b97d873 sunxi: fix typo in device packages for MarsBoard A10
709351bf32 kernel: Make KERNEL_MAKEOPTS recursively expanded
3b066a6581 lantiq: vr9: include usb driver for fritz 7430
39dcfcd987 wolfssl: fix build with /dev/crypto
e51f3a22aa toolchain: Update glibc 2.34 to recent HEAD
298d2d0412 Revert "mbedtls: import patch to fix illegal instruction on mpc85xx"
3de4572ed3 tools/ccache: fix build with musl and gcc 12
8e43a44f08 rpcd: update to latest Git HEAD
f43ceb60d5 iwinfo: update to latest Git HEAD
31baecb70e iwinfo: update to the latest version
f34c4a950e iwinfo: update to the latest version
9b7a3e1a5e iwinfo: update to the latest version
ce881873c0 kernel: add missing dependency to KERNEL_RPI_AXIPERF
7ccb4c6651 kernel: add missing symbol for bcm27xx
b18a0d0b92 generic: add support for EON EN25QX128A spi nor flash
d909fb1d3b kernel: bump 5.10 to 5.10.159
e5cec69484 kernel: bump 5.10 to 5.10.158
3a58bda06b kernel: bump 5.10 to 5.10.157
ee2341cac6 kernel: add symbol in generic config for 5.10.157
bc64ca15d4 kernel: kmod-net-rtl8192su: Remove package
b1204ce28c umbim: Allow roaming and partner connections
15bc6b23c7 kernel: further cleanup of xfrm[4|6]_mode*
6e396eff1a kernel: remove handling of xfrm[4|6]_mode_* modules
78fc12ddd0 kernel: fix typo for tegra crypto-sha1 module
4408f7d564 kernel: add kmod-btsdio package
6b2c445b88 kernel: remove CONFIG_MMC_BLOCK_BOUNCE
aef33ab13a ath79: fix Teltonika RUT230 v1 MAC assignment
6cd1035d8d ramips: add support for Wavlink WS-WN572HP3 4G
3f7ce4bd40 comgt-ncm: add support for quectel modem EC200T-EU
03ab5a60da realtek: update GPIO bindings for DGS-1210-10P
63fde4607c ustream-ssl: update to Git version 2022-12-07
1c174fe0ba CI: kernel: don't checkout and install feeds
385f78780c CI: build: skip sdk adapt to external toolchain on cache hit
8be50c369b CI: build: fix use of sdk as toolchain
1af58a2d39 ramips: mt7621: enable lzma-loader for ZyXEL WAP6805
8fbf03690e ramips: mt7621: enable lzma-loader for netis WF2881
282dd271ad kernel: ca8210: Fix crash by zero initializing data
1a0f2c3a3e e2fsprogs: Fix CVE-2022-1304
1285938d2c bcm4908: Refresh kernel patches
eb639e54fc ucode: update to latest Git HEAD
9b6dcf322b mvebu: disable also wrt32x due to broken switch
69ed96fba8 kernel: netconsole: add network console logging support
1f9bf1ee82 kernel: kmod-isdn4linux: Remove package
a3dee42206 kernel: kmod-w1-slave-ds2760: Remove package
2a1bf860f3 kernel: kmod-rtc-pt7c4338: Remove package
a0bae2fef8 mvebu: cortexa9: disable devices using broken mv88e6176 switch
309a6f22ba CI: trigger check also on build and check-kernel-patches workflow change
ec9ca325c0 CI: build: fix matching for openwrt release branch for toolchain parsing
63a2ea5470 CI: fix matching for openwrt release branch for container selection
9db78a7e86 CI: build: add support to fallback to sdk for external toolchain
47519a574c CI: build: add support for external toolchains from stable branch
05c3ee608f CI: build: add support for per branch tools container
f3cb0cfdf9 CI: tools: support per branch tools container
5fc4182f1e CI: Build all boards and testing kernel
31fb360f57 CI: Allow building with internal toolchain
e74479d559 CI: Extract the OpenWrt building to own sub workflow
b7e2e14912 CI: Simplify if conditions
8ac2cf6de9 CI: packages.yml: Fix usage of pre-build tools
db347be0b3 CI: packages: Add github CI job to build all packages
99524d49b4 CI: kernel: fix deprecation of set-output
de29c8bda7 ci: kernel: trigger build check on changes in kernel.mk as well
b93a59352f CI: kernel: check if patch are refreshed for each target
d070707379 CI: bump actions/download,upload-artifact action to v3
69414201ae CI: bump actions/checkout action to v3
8c4e39eb08 CI: kernel: generate ccache cache on kernel push
6c3e16055a kernel: backport ksmbd security fix ZDI-22-1690
275c51bf40 Revert "image-commands.mk: Be consistent in command invocation"
fec4fb3a56 sunxi: remove frequency for NanoPi R1
51a763ab0f arm-trusted-firmware-sunxi: drop CPE ID
377d805887 trusted-firmware-a.mk: use correct CPE ID
f30414c56d kernel: bump 5.10 to 5.10.160
47ac52a7c4 ath79: image: don't depend on other COMPILE targets
da79da3ac1 image: fix device profile specific COMPILE targets
9aa95bbebb rules: fix broken commitcount on alpine system
fcff234fd8 image-commands.mk: Be consistent in command invocation
be7b97d873 sunxi: fix typo in device packages for MarsBoard A10
709351bf32 kernel: Make KERNEL_MAKEOPTS recursively expanded
3b066a6581 lantiq: vr9: include usb driver for fritz 7430
39dcfcd987 wolfssl: fix build with /dev/crypto
e51f3a22aa toolchain: Update glibc 2.34 to recent HEAD
298d2d0412 Revert "mbedtls: import patch to fix illegal instruction on mpc85xx"
3de4572ed3 tools/ccache: fix build with musl and gcc 12
8e43a44f08 rpcd: update to latest Git HEAD
f43ceb60d5 iwinfo: update to latest Git HEAD
31baecb70e iwinfo: update to the latest version
f34c4a950e iwinfo: update to the latest version
9b7a3e1a5e iwinfo: update to the latest version
ce881873c0 kernel: add missing dependency to KERNEL_RPI_AXIPERF
7ccb4c6651 kernel: add missing symbol for bcm27xx
b18a0d0b92 generic: add support for EON EN25QX128A spi nor flash
d909fb1d3b kernel: bump 5.10 to 5.10.159
e5cec69484 kernel: bump 5.10 to 5.10.158
3a58bda06b kernel: bump 5.10 to 5.10.157
ee2341cac6 kernel: add symbol in generic config for 5.10.157
bc64ca15d4 kernel: kmod-net-rtl8192su: Remove package
b1204ce28c umbim: Allow roaming and partner connections
15bc6b23c7 kernel: further cleanup of xfrm[4|6]_mode*
6e396eff1a kernel: remove handling of xfrm[4|6]_mode_* modules
78fc12ddd0 kernel: fix typo for tegra crypto-sha1 module
4408f7d564 kernel: add kmod-btsdio package
6b2c445b88 kernel: remove CONFIG_MMC_BLOCK_BOUNCE
aef33ab13a ath79: fix Teltonika RUT230 v1 MAC assignment
6cd1035d8d ramips: add support for Wavlink WS-WN572HP3 4G
3f7ce4bd40 comgt-ncm: add support for quectel modem EC200T-EU
03ab5a60da realtek: update GPIO bindings for DGS-1210-10P
63fde4607c ustream-ssl: update to Git version 2022-12-07
1c174fe0ba CI: kernel: don't checkout and install feeds
385f78780c CI: build: skip sdk adapt to external toolchain on cache hit
8be50c369b CI: build: fix use of sdk as toolchain
1af58a2d39 ramips: mt7621: enable lzma-loader for ZyXEL WAP6805
8fbf03690e ramips: mt7621: enable lzma-loader for netis WF2881
282dd271ad kernel: ca8210: Fix crash by zero initializing data
1a0f2c3a3e e2fsprogs: Fix CVE-2022-1304
1285938d2c bcm4908: Refresh kernel patches
eb639e54fc ucode: update to latest Git HEAD
9b6dcf322b mvebu: disable also wrt32x due to broken switch
69ed96fba8 kernel: netconsole: add network console logging support
1f9bf1ee82 kernel: kmod-isdn4linux: Remove package
a3dee42206 kernel: kmod-w1-slave-ds2760: Remove package
2a1bf860f3 kernel: kmod-rtc-pt7c4338: Remove package
a0bae2fef8 mvebu: cortexa9: disable devices using broken mv88e6176 switch
309a6f22ba CI: trigger check also on build and check-kernel-patches workflow change
ec9ca325c0 CI: build: fix matching for openwrt release branch for toolchain parsing
63a2ea5470 CI: fix matching for openwrt release branch for container selection
9db78a7e86 CI: build: add support to fallback to sdk for external toolchain
47519a574c CI: build: add support for external toolchains from stable branch
05c3ee608f CI: build: add support for per branch tools container
f3cb0cfdf9 CI: tools: support per branch tools container
5fc4182f1e CI: Build all boards and testing kernel
31fb360f57 CI: Allow building with internal toolchain
e74479d559 CI: Extract the OpenWrt building to own sub workflow
b7e2e14912 CI: Simplify if conditions
8ac2cf6de9 CI: packages.yml: Fix usage of pre-build tools
db347be0b3 CI: packages: Add github CI job to build all packages
99524d49b4 CI: kernel: fix deprecation of set-output
de29c8bda7 ci: kernel: trigger build check on changes in kernel.mk as well
b93a59352f CI: kernel: check if patch are refreshed for each target
d070707379 CI: bump actions/download,upload-artifact action to v3
69414201ae CI: bump actions/checkout action to v3
8c4e39eb08 CI: kernel: generate ccache cache on kernel push
303b784cc8 build: harden GitHub workflow permissions
b3e8d58151 Revert "build: harden GitHub workflow permissions"
431875b3df CI: kernel: use ccache to speedup workflow
8bbaa486cb CI: tools: compile tools with ccache support for tools container
c2df98c49c CI: Add workaround for github uppercase usernames
daeb367dc1 CI: use tools:latest container to speedup kernel workflow
fccf42cb05 CI: create Docker container containing compiled tools
047e68adb1 CI: use buildbot container for building
a69b9a8962 ci: show build failures directly in job log output
f2fb3ffd71 ci: move scripts into separate directory
7ff1477b3d CI: package kmods in kernel workflow
2f9b35624d CI: kernel: Cache external toolchain
1f13c8cd24 CI: kernel: Build all kernel modules
c3ed9f36ee CI: kernel: Checkout feeds from github
0987df4af1 CI: kernel: Show used OpenWrt configuration
f7affcd614 CI: kernel: Use downloads.cdn.openwrt.org
0f71cf7ab6 CI: kernel: Trigger workflow for more directories
586be47078 CI: run inside the buildbot docker container
0e46907ff5 CI: add Kernel compile tests
119c6573c4 CI: usability improvements for tools
ac7b1c8e94 build: handle directory with whitespace in AUTOREMOVE clean
439e19de96 scripts/ext-tools: introduce new script to install prebuilt tools
d419136ad5 build: make find_md5 reproducible with AUTOREMOVE
be2da47ced ath79: expand rootfs for DIR-825-B1 with unused space
087a2a4691 mac80211: Update to version 5.15.81
83c70346ac base-files: support "metric" in board.json
5167bcf2fc kernel: update U-Boot nvmem driver to v6.2 release version
bf1c4f1eba bcm4908: update DTS files with the latest changes
44fad4b1f6 bcm4908: fix Asus GT-AX6000 image
c45f44165b bcm4908: use upstream patches for Asus GT-AC5300 LEDs
7d63c39bf4 CI: labeler: fix wrong label for pr targeting stable branch
e516c31e14 CI: add support to tag pr targeting stable branch
8b95e14e32 Revert "CI: Add release/22.03 label to all pull requests"
ce1de42096 layerscape: Fix SPI-NOR issues with vendor patches
a704216259 mt76: move the mt7921 firmware to its own package
e7497d1083 CI: Add release/22.03 label to all pull requests
c43b5e71b8 CI: labeler: target major version of labeler action
008e9a335d build: harden GitHub workflow permissions
c7757810fc CI: include automatic Pull Request Labeler
2b5154214c ipq40xx: luma_wrtq-acn329: swap ethernet MAC addresses
68add5f364 ath79: mikrotik: use OpenWrt loader for initram image
a907c20340 kernel: add kmod-hwmon-sht3x support
a4af427d80 procd: service: pass all arguments to service
106fedd9ed ath79: fix MAC address assigment for TP-Link TL-WR740N/TL-WR741ND v4
8040f74f8d tools/patch: apply patch for EACCES on xattr copy
eda395a5e0 wolfssl: update to v5.5.3
0b22e87db0 ath79: D-Link DIR-825 B1 add factory.bin recipe
de6c3cca4d mbedtls: import patch to fix illegal instruction on mpc85xx
302ef2137d mt76: add firmware package for mt7916
844de50b7b ath79: disable image building for Ubiquiti EdgeSwitch 8XP
af0c128368 lantiq: add 6.1 tag to upstream patch
a4e8ff5ab4 lantiq: enable interrupts on second VPEs
dca73263a4 lantiq: xrx200: backport upstream network fixes
078bdc1856 kernel: bump 5.10 to 5.10.156
b7388191a5 kernel: bump 5.10 to 5.10.155
61e1f6541d kernel: modules: package Marvell gigE PHY driver
64da7c8af7 bcm27xx: fix CI build after config refresh
3564c22e46 bcm27xx: disable duplicate sdhost driver
353e468f47 kernel: support "linux,rootfs" DT property for splitting rootfs
b66037f53b bcm53xx: update DTS files with the latest changes
58a73b1135 kernel: improve description of NTFS kernel packages
932378aeb6 kernel: backport support for "linux,rootfs" in DT
af20d9d03b kernel: split out mtd hack for CONFIG_FIT_PARTITION + rootfs
8c1f8f9978 ipq40xx: ZTE MF286D: fix DEVICE_PACKAGES
54dc60e71d generic: fix unset symbol
c837fc9cdb kernel: bump 5.10 to 5.10.154
bbad2ee4de kernel: bump 5.10 to 5.10.153
d2ae7613b5 ramips: improve compatibility for Youku YK-L2 and YK-L1 series
9155d40513 ramips: gl-mt1300: downclock SPI to 50MHz
ca124d2e4b ramips: mt7621: use seama-lzma-loader for D-Link DIR-860L B1
fafc9448ae ramips: rt3883: use seama-lzma-loader for D-Link DIR-645
292d3f00c7 ramips: define lzma-loader recipe for SEAMA devices
d25e1a3bde ath79: fix MAC address assignment for TP-Link ar7241 devices
7fa6351310 tools/expat: update to 2.5.0
8122aa92fd ath79: add support for Linksys EA4500 v3
1133a8f805 ath79: add support to TrendNet TEW-673GRU
5725b773b4 qoriq: fix typo in FEATURES
615dbec223 mac80211: fix mesh airtime link metric estimation
a26f7e61e8 mac80211: fix issues with receiving small STP packets
bfeffb8aed mac80211: fix decap offload for stations on AP_VLAN interfaces
88c43b5887 hostapd: remove invalid dtim_period option processing
4628e7ae4d ramips: backport TP-Link RE200 v3/v4 LED fix
1d095c1d43 strace: replace PKG_CPE_ID
d84cf62000 strace: update to 5.19
8650f77314 strace: add nls.mk
0b80a7da58 strace: update to 5.18
faf9d20a21 strace: update to 5.17
e95b359eaa kernel: netsupport: Add FQ-PIE as an optional sched kmod and extract PIE
051c24c69a kernel: extract kmod-sched-act-ipt from kmod-sched
23ccc71c61 kernel: netsupport: Extract act_police
3ca45248fd kernel: netsupport: Add kmod-sched-act-sample
7ee55d82fc kernel: netsupport: Extract sched-prio and sched-red
31fd96bdbd kernel: netsupport: Add kmod-sched-drr
c61ed09228 kernel: netsupport: kmod-sched: Reorder packages
26b58991b0 ipq40xx: fix ZTE MF289F port mapping
71178a8506 ipq40xx: Fix wrong GPIO for internal status LED on ZTE MF289F
3e15a54bb0 ipq40xx: Add ZTE MF289F
7a77aacb31 uboot-envtools: Fix format of autogenerated sectors
b3b3428a0e openssl: bump to 1.1.1s
e313cd8d15 uboot-layerscape: adjust LS1012A-IOT config and env
77522d4eb7 dnsmasq: Backport DHCPv6 server fix (CVE-2022-0934)
13bd217821 busybox: awk: fix use after free (CVE-2022-30065)
fe5cd3c9d9 util-linux: Update to version 2.37.4
84b3eafe39 bcm4908: backport upstream BQL support for bcm4908_enet
0ff3adfa11 kernel: bump 5.10 to 5.10.152
0abcea19d7 kernel: bump 5.10 to 5.10.151
0667688a40 kernel: bump 5.10 to 5.10.150
fe58ee9057 ramips: Correct Unielec 01 and 06 dts wan macaddr byte location
6c5313d77c bcm4908: backport bcm4908_enet fix for NULL dereference
91e4a74fff bcm4908: optimize Ethernet driver by using build_skb()
b4bc9eb837 kernel: mtd: backport SafeLoader parser
18c77387c5 kernel: mtd: backport extended dynamic partitions support
2022-12-30 01:53:15 +01:00
Jan-Niklas Burfeind
8c1f5e9c9c
Merge pull request #2685 from T-X/v2022.1.x-pr-backport-bridge-mcast-wakeupcall
[Backport v2022.1.x] kernel: bridge: readding MLD wakeup call feature
2022-12-13 21:49:38 +01:00
github-actions[bot]
7e6a0995d2
docs: update v2022.1.x release notes' known issues section (#2718)
add link to issue #2672 in known issues section of the release notes

(cherry picked from commit fd213e71b9)

Co-authored-by: Andreas Ziegler <dev@andreas-ziegler.de>
2022-12-10 23:57:15 +01:00
Jan-Niklas Burfeind
940874972b
Merge pull request #2715 from freifunk-gluon/backport-2705-to-v2022.1.x
[Backport v2022.1.x] docs: configmode: mention gluon-enter-setup-mode
2022-12-07 22:01:25 +01:00
Tom Herbers
4b4765fbe7 docs: configmode: mention gluon-enter-setup-mode
The command was introduced in v2022.1 with #2459.

Co-authored-by: Jan-Niklas Burfeind <github@aiyionpri.me>
(cherry picked from commit b4f174a41d)
2022-12-07 21:00:36 +00:00
Martin Weinelt
ccd7fa3d7b
Merge pull request #2680 from freifunk-gluon/backport-2600-to-v2022.1.x 2022-11-09 11:18:02 +01:00
David Bauer
d0565bc3b5
Merge pull request #2694 from herbetom/v2022.1.x-updates
[Backport v2022.1.x] modules: update to latest in master
2022-11-07 02:30:06 +01:00
Tom Herbers
b24c73509d
modules: update routing
6b612cd alfred: Rebuild on CONFIG*_ALFRED_* changes
2e28186 batman-adv: Rebuild on CONFIG_BATMAN_ADV_* changes

(cherry picked from commit 9c2ee67009)
2022-11-04 22:06:58 +01:00
Tom Herbers
7614ac047d
modules: update packages
7132a6b55 adblock: update 4.1.5-4
55c412f4b softflowd: use %lld for time_t always
507620154 mariadb: Update to the latest version 10.6.10
7278c00b2 adblock: update 4.1.5-3
15ce9af90 treewide: fix procd service inactive
31b99e256 dnsproxy: Update to 0.45.4
ad1d25d0b https-dns-proxy: bugfix: prevent creation of empty interface trigger
45cdc8646 simple-adblock: remove unnecessary procd_add_reload_interface_trigger
667ba4294 adblock: update 4.1.5-2
1b93c3104 https-dns-proxy: bugfix: remove canary domains
7a7b95639 https-dns-proxy: bugfix: remove wan6 from procd triggers
9b6e0fde7 irqbalance: update to 1.9.1
40006c97c irqbalance: add meson
dc768d941 irqbalance: handle deepestcache option
b365fdf8c adblock: update 4.1.5
de80dad8c ddns-scripts: fix cloudflare&digitalocean provides
b0e520855 ddns-scripts: add PROVIDES for old package names
e8fc00367 simple-adblock: update to 1.9.2-1
f8262f405 tailscale: add version tests
20595747f tailscale: fix -version
37fd7c031 libxml2: update to 2.10.3
ceba4b361 https-dns-proxy: upstream bugfix for ca_info
b201f469c numpy: bump to version 1.23.3
93d378788 nebula: implement netifd support
746c6519f smartdns: update to 1.2022.38.1

(cherry picked from commit db6b9deca6)
2022-11-04 22:06:48 +01:00
Tom Herbers
8b35fab23e
modules: update openwrt
00d7702796 mac80211: Update to version 5.15.74-1
7a3d5959af ath79: fix reference clock for RouterBoard 912UAG
b5cb5f352d ramips: fix WAN mac address allocation for Unielec 01 and 06 models
ef5b1ffb9e ramips: rt3883: enable lzma-loader for Belkin F9K1109v1
b0ab21d9d0 ramips: mt7621: enable lzma-loader for Asus RT-N56U-B1
40465adbbf bcm53xx: enable Broadcom 4366b1 firmware for Asus RT-AC88U
b37ff14302 wireless-tools: add package CPE ID
69e6486136 ncurses: add package CPE ID
573606991e arm-trusted-firmware-sunxi: add package CPE ID
714345d35a libnftnl: add package CPE ID
e946d9aa9d octeon: fix imagebuilder generation by introducing generic target
6cffcb2e9f ath79: support Ruckus ZoneFlex 7321
85a7588c90 ath79: support Ruckus ZoneFlex 7372
08969f61b0 kernel: add kmod-nvme package
c1c85629b9 kernel: mtd: fix unbalanced of_node_put() in dynamic partitions code
5c0c01d226 kernel: bump 5.10 to 5.10.149
980aad01d1 kernel: bump 5.10 to 5.10.148
fb11c63511 kernel: bump 5.10 to 5.10.147
8fefd5c26c mt7621: hiwifi_hc5962: fix reboot loop by using LZMA loader
f59dcb92cf ucode: update to latest Git HEAD
f1d7f1c70f firewall4: update to latest Git HEAD
36a808b7bc mt7621: netgear_ex6150: fix reboot loop by using LZMA loader
12acecd114 OpenWrt v22.03.2: revert to branch defaults
ea845f76ea OpenWrt v22.03.2: adjust config defaults
9a599fee93 firewall4: update to latest Git HEAD
30de1b5031 ucode: update to latest Git HEAD
fa4ec03993 rpcd: update to latest Git HEAD

(cherry picked from commit 1a7acd4699)
2022-11-04 22:06:29 +01:00
Tom Herbers
51d5293ee6 patches: rebase MLD Querier wake up calls Android bug workaround (#2629)
[linus.luessing@c0d3.blue: updated hashes to v2022.1.x branch]
2022-10-22 19:58:47 +02:00
T-X
6244c59524 kernel: bridge: readding MLD wakeup call feature (#2365)
With the update to OpenWrt 21.02 the bridge MLD wakeup call feature was
removed. However the issue with Android devices and MLD is still
present. Therefore readding the bridge MLD wakeup call patch and porting
it to Linux 5.10 / OpenWrt 22.03.

Link: https://issuetracker.google.com/issues/149630944
Fixes: aab2b914b8 ("modules: switch to OpenWrt 21.02")
Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>

Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>
2022-10-22 19:01:22 +02:00
Tom Herbers
a4243e0376 gluon-core: enable bridge port isolation for br-mesh_other interfaces
(cherry picked from commit 33779ccd96)
2022-10-18 10:50:54 +00:00
Martin Weinelt
ab1fb054f6
Merge pull request #2670 from blocktrron/v2022.1.1-rn 2022-10-18 10:39:01 +02:00
David Bauer
30e97e8d6d docs, readme: Gluon 2022.1.1 2022-10-18 10:36:15 +02:00
David Bauer
59c5eb6866 docs: add Gluon 2022.1.1 release notes 2022-10-18 10:36:15 +02:00
Jan-Niklas Burfeind
7ca56084bc
Merge pull request #2677 from freifunk-gluon/backport-2673-to-v2022.1.x
[Backport v2022.1.x] ramips-mt7621: add support for ZyXEL NWA50AX
2022-10-17 18:18:03 +02:00
Jan-Niklas Burfeind
5d088754f0
Merge pull request #2676 from freifunk-gluon/backport-2674-to-v2022.1.x
[Backport v2022.1.x] supported_devices: specify revision of wdr4900 v1
2022-10-17 18:17:30 +02:00
David Bauer
1b547f9181 ramips-mt7621: add support for ZyXEL NWA50AX
(cherry picked from commit 33fa77a760)
2022-10-17 16:06:33 +00:00
Jan-Niklas Burfeind
f03ada1816 supported_devices: specify revision of wdr4900 v1
(cherry picked from commit 267124b520)
2022-10-17 16:04:57 +00:00
Martin Weinelt
5942f2925c
Merge pull request #2675 from freifunk-gluon/backport-2671-to-v2022.1.x 2022-10-17 15:48:03 +02:00
David Bauer
81a643476b mpc85xx-p1010: re-enable TP-Link WDR4900
Upstream added a standalone SPI kernel-loader which fixes the unbootable
image for the WDR4900. Thus, we can re-introduce this device to Gluon.

Signed-off-by: David Bauer <mail@david-bauer.net>
(cherry picked from commit 301443da02)
2022-10-17 12:26:12 +00:00
David Bauer
10a126e117 modules: update packages
dba8a0102 gnunnet: halt build if any command fails
c1700e3a3 gnunnet: don't copy non-existing files
9c68da83e gnunet: gnunet-rest: add libjose dependency
e1d799255 opendoas: avoid libpam dependency
53c0a2767 Revert "wget: update to 1.21.3"
e0502e477 zabbix: add variants for SSL support opkg does not offer ssl varients: zabbix-agentd zabbix-sender zabbix-get zabbix-proxy zabbix-server
f9bbda2e4 wget: update to 1.21.3
0f48935ab auc: update to 0.3.1
62a7ef57d auc: update to version 0.3.0
427008a2a snowflake: update to version 2.3.1
d57a6a35b perl-net-dns: update to version 1.35
b4be6d6b1 pcsc-lite: update to verion 1.9.9
37de51dba gawk: update to version 5.2.0
5ca1c82f8 libksba: update to version 1.6.1
c033edcca gnunet: update to version 0.17.5
30b493619 libp11: update to version 0.4.12
f8f768f90 libinput: update to version 1.19.4
19874c3a7 libevdev: update to version 1.13.0
7dc69e306 postgresql: update to version 14.5
4493098f6 pcsc-lite: update to version 1.9.8
5d5348bc5 exim: update to version 4.96
8013e8929 gpgme: update to version 1.18.0
d0dd2a730 cryptsetup: update to version 2.5.0
c2296d930 lvm2: update to release 2.03.16

(cherry picked from commit 95385f6de7)
2022-10-17 12:26:12 +00:00
David Bauer
f69be80ac3 modules: update openwrt
a7fb589e8a image: always rebuild kernel loaders
5db6914f7c mpc85xx: p1010: make TP-Link WDR4900 v1 build again
f7a43e4606 mpc85xx: add SPI kernel loader for TP-Link TL-WDR4900 v1
c1fcca50ba ramips: fix ZyXEL NWA55AXE model name
2050bc4f64 ramips: add support for ZyXEL NWA50AX / NWA55AXE
bc8e24c654 busybox: nslookup: ensure unique transaction IDs for the DNS queries

(cherry picked from commit c5e297e9c8)
2022-10-17 12:26:12 +00:00
David Bauer
183f345979
Merge pull request #2669 from herbetom/v2022.1.x-updates
[v2022.1.x] modules: update to latest HEAD
2022-10-14 03:01:39 +02:00
Tom Herbers
7838e68c20
modules: update routing
8502870 opennds: Release v9.9.0
2022-10-13 18:28:19 +02:00
Tom Herbers
34383285b1
modules: update packages
33d0a7adc python3: update to 3.10.7
bb4943d55 curl: error out if wolfSSL is not usable
4d900b2a1 v2ray-geodata: split from xray-geodata
9bdab0d79 v2ray-core: add new package
bda5d8e3b yq: Update to 4.28.1
0e4e3743f cloudflared: Update to 2022.10.0
f5d5326c0 cloudflared: Update to 2022.9.1
972fb7861 gg: Update to 0.2.13
c243509b6 dnsproxy: Update to 0.45.2
44034384a dnsproxy: Update to 0.45.0
a1d8cd172 python3-pytz: bump to version 2022.4
d3a4c41a5 bind: bump to 9.18.7
47e5343d5 https-dns-proxy: update to 2022-08-12-1
2022-10-13 18:28:18 +02:00
Tom Herbers
17a6e1d8d7
modules: update openwrt
f1de43d0a0 mac80211: backport security fixes
a077c6da98 mac80211: merge upstream fixes
b6487c3ccc ramips: skip bbt scan on mt7621
33457ebf0b ramips: enable support for mtk_bmt in the nand flash driver
cc8326443d ramips: mt7621_nand: initialize ECC_FDMADDR
1918404b1d ramips: mt7621_nand: reduce log verbosity
07ea71c7b7 ramips: move mt7621_nand driver to files
fb31038e1f kernel: mtdsplit: support UBI after FIT images
329b1543f3 kernel: mtk_bmt: skip bitflip check if threshold isn't set
42c8610efc kernel: mtk_bmt: add debugfs file to attempt repair of remapped sectors
bb5d415b19 kernel: add support for mediatek NMBM flash mapping support
737ee934d2 kernel: mtk_bmt: on error, do not attempt to remap out-of-range blocks
a78fd5bbb6 kernel: mtk_bmt: fix block copying on remap with bmt v2
0c21f06ef7 kernel: mtk_bmt: allow get_mapping_block to return an error
a2ce32579f kernel: split up mtk_bmt driver code
c2d55b73d9 OpenWrt v22.03.1: revert to branch defaults
eca6fc6ea0 OpenWrt v22.03.1: adjust config defaults
2853b6d652 ath79: fix model name of Extreme Networks WS-AP3805i
2022-10-13 18:28:16 +02:00
github-actions[bot]
9667075b54
ath79-generic: Fix autoupdater for Loco M XW from v2021.1.x to v2022.1.x (#2667)
Ubiquiti Nanostation Loco M XW was renamed in v2022.1.x, but the alias to the old name was missing, so devices running the old release did not update.

(cherry picked from commit dc8055682e)

Co-authored-by: goligo <ich@malte.de>
2022-10-12 01:50:40 +02:00
David Bauer
da41247139
Merge pull request #2658 from herbetom/v2022.1.x-updates
[v2022.1.x] modules: update to latest HEAD
2022-10-08 01:19:23 +02:00
Tom Herbers
73df762ec1
modules: update packages
5df363db7 libgd: avoid recursive and redundant dependencies
24ad5359f tor: update to 0.4.7.10
1a070a289 expat: update to 2.4.9
2f2989e3e lighttpd: remove deprecated modules
f9515613f node: bump to v16.17.1
7869127db https-dns-proxy: add settings for canary domains
a4a6411e1 https-dns-proxy: bugfix: prevent canary domains duplicates
f624e41f3 treewide: fix security issues by bumping all packages using libwolfssl
ea8108a31 Revert "treewide: fix security issues by bumping all packages using libwolfssl"
0ddec62e6 treewide: fix security issues by bumping all packages using libwolfssl
2d061d1cb openvpn: explicitly disable engine parameter for openssl variant
0c670f870 openvpn: update to 2.5.7
50ae0353a openvpn: update to 2.5.6
8377e516e rtty: update to 8.0.1
7acb46001 php8: update to 8.1.11
52ddf2f0b nextdns: initialize nextdns from /etc/uci-defaults
eddc92a17 dnslookup: Update to 1.8.0
356534dd4 simple-adblock: allow domains bugfix & canary domains support
de00aad59 https-dns-proxy: uci wrappers & iCloud canary domains
b0e693092 bandwidthd: fix format warnings
a9423d894 unbound: update to version 1.16.3
d053da000 simple-adblock: update to 1.9.1-1
bc1598892 curl: bugfix: github source url
eed717e6e pdns-recursor: update to 4.7.3
8df44cb6e libs/cjson: bump to 1.7.15
44f898f98 pagekite: add patchs for 64bit time
d5aa9d76e mosquitto: bump to 2.0.15
4419a76ba mosquitto: add missing 'persistence' section in config
376f1afdd poemgr: update to latest HEAD
1eea84cca poemgr: fix conffiles path
5092dbd14 adblock: update 4.1.4-5
3f9a88d21 adblock: add lightswitch05 blocklist source
0247d720e hping3: add new package
be7e4f8e3 snowflake: run snowflake-proxy with procd-ujail
8c028f4fd snowflake: add package
aaedc165d squid: fix compilation with libxml (fixes #19099)
e563fe383 gatling: add package gatling
81c068840 gg: Update to 0.2.11
40106c7dc yq: Update to 4.27.5
05d1265cb xray-core: Update to 1.6.0
8a2bd2754 lighttpd: update to lighttpd 1.4.67 release hash
4df5d1348 tang: update directory
f50dc54f2 Revert "jose: remove libjose"
9550d45fd Revert "jose: fix static library usage"
5a02ae2fe knot-resolver: update to 5.5.3
88257a87a libtorrent-rasterbar: Update to 2.0.7
954dd3b90 dockerd: Update to v20.10.18
a2defb8a6 docker: Update to v20.10.18
78949c659 libnetwork: Update to 0dde5c8 for Docker v20.10.18
3ffff095c containerd: Update to v1.6.8 for Docker v20.10.18
3ef01e4dd runc: Update to v1.1.4 for Docker v20.10.18
1e329ed5e libxml2: update to 2.10.2
74d181312 php8: update to 8.1.10
d86df0df5 jose: fix static library usage
fd5ba6154 adblock: update 4.1.4-3
dfaa4bad5 uacme: add libev dependency to uacme-ualpn
ed56ca2aa nextdns: Update to version 1.37.11
c4d8769c8 curl: update to 7.85.0
2022-10-06 16:21:35 +02:00
Tom Herbers
a6d75c010e
modules: update openwrt
f579b8538b ath79: add low_mem to tiny image
4b5bd15091 ath79: move ubnt-xm to tiny
977f6f36a0 kernel: fix possible mtd NULL pointer dereference
562894b39d treewide: fix security issues by bumping all packages using libwolfssl
ce59843662 wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173)
3d2be75b0c wolfssl: refresh patches
0c8425bf11 wolfssl: bump to 5.5.0
2c49ad36fb kernel: bump 5.10 to 5.10.146
f04515e7bd kernel: bump 5.10 to 5.10.145
a91f391b59 kernel: bump 5.10 to 5.10.144
25747a4c04 ramips: fix switch setup for ASUS RT-AX53U
23d23038dd uboot-mvebu: backport LibreSSL patches for older version of LibreSSL
1ff2993edb uboot-mvebu: backport patch to fix compilation on non glibc system
d30ddfbac4 ramips: enable LZMA loader to fix Linksys RE6500 boot
ed905fce58 tools/meson: backport WSL2 fix
e5ab159fbf firmware: intel-microcode: update to 20220809
938ae92675 toolchain: Include ./include/fortify for external musl toolchain
8f72f5e4c0 toolchain: Select USE_SSTRIP with external musl toolchain
4ad6925a9e scripts: ext-toolchain: add support for musl
65bd632069 scripts: ext-toolchain: add support for info.mk in probe_cc
b0622d1221 scripts: ext-toolchain: actually probe libc type on config generation
d1a6c35591 scripts: ext-toolchain: add option to overwrite config
24cf766dfe scripts: ext-toolchain: fix wrong prefix in print_config generation
18a88668b8 rules_mk: don't include wrapped bin with external toolchains
29927e347a rules_mk: use gcc versions for external toolchain
cd117f0596 bcm53xx: backport clk driver fix for DT nodes names
9dc46d6549 ath79: fix LibreRouter-v1 watchdog and poe_pass
0cb3a616e4 build: fix warnings from grep
463fe05d9e Makefile: fix stray \ warnings with grep-3.8
25d8b9cad6 build: fix issues with targets installed via feeds
74eeee1698 build: fix including modules.mk for targets pulled in from feeds
dafac183f3 mpc85xx: add patch to fix gpio mpc8xxx
7707b47c72 ramips: fix fw_setsys
f3ffb04a43 kernel: add missing symbol
2a6346725a bcm4908: fix -EPROBE_DEFER support in bcm4908_enet
700f5d2990 kernel: update U-Boot NVMEM driver
acc78a9cf6 bcm4908: backport mtd parser for Broadcom's U-Boot partition
b472753d79 mediatek: fix Unifi 6LR network config
c0b7b2049e mpc85xx: fix unset kernel symbols
7c459ac1d5 mac80211: rt2x00: experimental improvements for MT7620 wifi
d004110ef7 mac80211: rt2x00: fix typo
0755c18ff1 mac80211: add patch descriptions to rt2x00 patches
7a26f40217 mediatek: fix ledbar of UniFi 6 LR when running custom U-Boot
f54d4ea0bb ramips: add support for Ubiquiti UniFi FlexHD
a28ccd58ed ath79: Make patches apply again
2419546cee generic: move ledbar driver from mediatek target
420a86436f mediatek: add led count
40610c5322 mediatek: add initialization after reset
26cd0c1ee9 mediatek: add support for reset gpio
b5665a0045 mediatek: support reading more than one byte of response
cd0283788f mediatek: cast literal value to char
a2d251573b mediatek: correctly log i2c response
7366ee86ef mediatek: remove gpiod_direction_output()
ba6c780acb mediatek: do not use gpiod_set_raw_value()
745d3cd4aa kernel: modules: package kmod-crypto-essiv
a3f9b42789 mediatek: fix typo in bpi-r64 image recipe
29c5d5d3da mediatek: bpi-r64: make initramfs/recovery optional
d10352917b ramips: fix GB-PC1 and GB-PC2 LEDs
0c9833d0e0 wireless-regdb: update to 2022-08-12
be4abbd84a kernel: bump 5.10 to 5.10.143
4e05e7dddf kernel: bump 5.10 to 5.10.142
1b0db300cb kernel: bump 5.10 to 5.10.141
bf65d2dcba kernel: bump 5.10 to 5.10.139
e7ef88ff1d kernel: build crypto md5/sha1/sha256 modules for powerpc
2022-10-06 16:21:33 +02:00
David Bauer
ecd9f8cfe8
Merge pull request #2649 from blocktrron/v2022.1.x-device-bp
[v2022.1.x] Backport device support introduced in master
2022-09-19 20:31:05 +02:00
David Bauer
411f6c3859 ipq40xx-generic: add suppot for GL.iNet GL-AP1300 (#2635)
(cherry picked from commit 3ab8007a1e)
2022-09-19 02:27:38 +02:00
David Bauer
8a2fdc502a rockchip-armv8: add support for NanoPi R4S (#2633)
(cherry picked from commit dd30a6e658)
2022-09-19 02:27:30 +02:00
David Bauer
81cf8164d5 ath79-nand: add support for ZTE MF281
Signed-off-by: David Bauer <mail@david-bauer.net>
(cherry picked from commit 94249bfa6a)
2022-09-19 02:27:21 +02:00
David Bauer
43b1fc99dd
Merge pull request #2647 from herbetom/v2022.1.x-updates
[v2022.1.x] modules: update to latest HEAD
2022-09-18 03:08:44 +02:00
Tom Herbers
013d049acf
modules: update packages
219b0a1e5 python-flask-socketio: update to 5.3.1
20da9e28b  adblock: update 4.1.4-2
aaf90f333  adblock: update 4.1.4
6b13e6e67 yt-dlp: update to 2022.9.1
78d60b3c0 knot: update to version 3.2.1
b3373efe5 python3: backport and fix target musl libc detection
cd3d6156f aria2: Fix aria2.init start issue Re-mount '$config_file' inside the '$config_dir' will cause aria2 process unable to start.
f8fec60bd ksmbd-tools: add package with hotplug.d script for auto sharing
1a0524616 ksmbd-tools: append config from /var/run/config/ for runtime shares
764ba9c09 cloudflared: Update to 2022.9.0
29fdb5086 lxc: update to 5.0.1
701278306 syslog-ng: update to version 3.38.1
1342b58f2 miniupnpd: rework firewall4 integration
7cc0a0eab miniupnpd: update and fix nftables variant
85e6f9348 dnslookup: Update to 1.7.3
529842c78 dnsproxy: Update to 0.44.0
9951bdcb9 cloudflared: Update to 2022.8.4
c3a153bdb pillow: bump to version 9.2.0
7977389b2 pillow: bump to version 9.1.1
b15b99eed pillow: bump to version 9.1.0
b0fe84ca4 gg: Update to 0.2.9
5819aa071 xray-core: Update to 1.5.10
c5619b78d yq: Update to 4.27.3
426ccd2e0 uvol: fix autopart handling double/float number
32e4d8fa5 python-pycares: add new package
5dc5c7966 node: bump to v16.17.0
4c311180d strongswan: add kernel module dependency on chapoly
8b04b607a i2pd: update to version 2.43.0
240a8db7e i2pd: Update package
b519548e4 zoneinfo: updated to the latest release
fc47ed5f1 zoneinfo: updated to the latest release
2022-09-16 19:08:30 +02:00
Tom Herbers
899e187f34
modules: update openwrt
81388f74b5 scripts/download.pl: fix downloads with wget
b8cbca8ac8 scripts/download.pl: silence can't exec curl warning
340b138932 scripts: always check certificates
b5e39355e4 tools: remove xxd package
b531611f57 build: provide xxd -i with scripts/xxdi.pl
542447b93e scripts: xxdi.pl: add xxd -i compat mode
4c795af58b scripts: xxdi.pl: remove File::Slurp dependency
a352e30b8f scripts: add xxdi.pl
b3fa0241e2 mac80211: backport tx queueing bugfixes add a bug fix for a rare crash
94372ab6e4 bcm53xx: update NVMEM driver for NVRAM
cae4d089bc kernel: backport mtd dynamic partition patch
308f0831f7 ipq40xx: add GL-AP1300 label-mac-device
b317d3dbfb ipq40xx: add WAN LED mapping for GL-AP1300
fff797d26e rockchip: add system-LED aliases specific to OpenWrt
18f77ef2d6 rockchip: ensure NanoPi R4S has unique MAC address
8ff1d27e48 realtek: fix RTL839x receive tag decoding
25a041f50b ipq40xx: add LTE packages for GL-AP1300
daf1fdc6ad ath79: add support for ZTE MF281
47ba7cdfc3 realtek: fix RTL838x receive tag decoding
da7b26dfb8 mt76: update to the latest version
ab61232b0a hostapd: rename hostapd multicast_to_unicast option to multicast_to_unicast_all
39c115028a bcm27xx: make NVMEM driver patch apply again
03c251ac14 bcm4908: enable NVMEM U-Boot env data driver
4efa0b70d5 kernel: backport U-Boot environment data NVMEM driver
8835da4d90 kernel: backport mtd patch adding of_platform_populate() calls
510f0628c7 OpenWrt v22.03.0: revert to branch defaults
17bd6b0477 OpenWrt v22.03.0: adjust config defaults
512e76967f uboot-mediatek: mt7622: suppress unwanted pinctrl warning
d691625ec4 mediatek: mt7622: fix DTS compatible of UniFi 6 LR variants
93e6581b90 uboot-mediatek: backport fix for unstable UART on MT7622
3889f90ee2 uboot-mediatek: no compression means IH_COMP_NONE
8ff8a4dc9e uboot-mediatek: fix factory reset on UBI
aebb19d34b uboot-envtools: mt7622: use 4k sectors for UniFi 6 LR (ubootmod)
557e4cb169 mediatek: mt7622: use variable sector size for spi-nor
f7c358c2ad uboot-mediatek: fix Ubiquiti UniFi 6 LR U-Boot mod
ae1786e543 mpc85xx: Drop pci aliases to avoid domain changes
ea4ec11f4e at91bootstrap: use sdmmc0 as booting media for sama5d27_som1_ek
c53fea7a8a uboot-at91: use sdmmc0 as booting media for sama5d27_som1_ek
2ae0ad375b kernel: rename 5.20 patches to 6.0
d3ccf0976a bcm4908: enable & setup packet steering
30bce90d84 bcm4908: prepare for Asus GT-AX6000 support
b8b5ee12cd bcm4908: backport bcmbca DT patches queued for 5.20
a79a21b509 bcm53xx: backport DT changes from 5.17 & 5.18
3abed8406b bcm53xx: drop dead upgrade code
caa43f4428 firewall4: update to latest Git HEAD
26b436e2a2 ucode: update to latest Git HEAD
0588b124e4 mac80211: disable ft-over-ds by default
dced5f2c95 ramips: define Yuncore AX820 switch LEDs
e497818e18 ath79: add support for Extreme Networks WS-AP3805i
9703a2adcc kernel: Refresh on 5.10.138
251336639c mbedtls: update to version 2.28.1
dddf01c508 Revert "mediatek: mt7622: fix banana pi r64 wps button"
89956c6532 kernel: bump 5.10 to 5.10.138
4209c33ae2 kernel: bump 5.10 to 5.10.137
a901a13505 iptables: default to ip(6)tables-nft when using buildroot
2022-09-16 19:08:29 +02:00
github-actions[bot]
a6022475ff
ath79-nand: fix upgrade from 19.07 for GL-AR300M (#2641)
Support for the device was (re)added in #2455
(merged as 94e04393b1)

(cherry picked from commit cd37fe5d60)

Co-authored-by: Tom Herbers <mail@tomherbers.de>
2022-09-15 21:33:26 +02:00
220 changed files with 2887 additions and 4746 deletions

3
.ecrc
View File

@ -1,3 +0,0 @@
{
"Exclude": ["docs/_build"]
}

View File

@ -7,43 +7,18 @@ insert_final_newline = true
indent_style = tab
charset = utf-8
[Dockerfile]
indent_style = space
indent_size = 4
[/patches/**]
indent_style = unset
indent_size = unset
[*.c]
[*.css]
[*.dia]
indent_style = space
indent_size = 2
[*.h]
[*.html]
[*.js]
[*{.json,.ecrc}]
indent_style = space
indent_size = 2
[*.lua]
[{Makefile,*.mk}]
indent_style = unset
[*.md]
indent_style = space
indent_size = 4
[*.pl]
[*.py]
indent_style = space
indent_size = 4
@ -52,8 +27,6 @@ indent_size = 4
indent_style = space
indent_size = 2
[*.sh]
[*.yml]
indent_style = space
indent_size = 2
@ -61,7 +34,3 @@ indent_size = 2
[CMakeLists.txt]
indent_style = space
indent_size = 2
[{docs,contrib/ci}/*site*/**/*.conf]
indent_style = space
indent_size = 2

View File

@ -6,7 +6,7 @@ label: bug
<!--
Please carefully fill out the questionnaire below to help improve the
Please carefully fill out the questionaire below to help improve the
timely triaging of issues. Walk through the questions below and use
them as an inspiration for what information you can provide.

View File

@ -1,4 +1,4 @@
# Docs: <https://docs.github.com/en/code-security/dependabot/dependabot-version-updates/customizing-dependency-updates>
# Docs: <https://docs.github.com/en/free-pro-team@latest/github/administering-a-repository/customizing-dependency-updates>
version: 2

19
.github/filters.yml vendored
View File

@ -56,16 +56,6 @@
"targets/generic",
"targets/targets.mk"
],
"ipq40xx-mikrotik": [
"targets/ipq40xx-mikrotik",
"modules",
"Makefile",
"patches/**",
"scripts/**",
"targets/generic",
"targets/targets.mk",
"targets/mikrotik.inc"
],
"ipq806x-generic": [
"targets/ipq806x-generic",
"modules",
@ -147,15 +137,6 @@
"targets/generic",
"targets/targets.mk"
],
"realtek-rtl838x": [
"targets/realtek-rtl838x",
"modules",
"Makefile",
"patches/**",
"scripts/**",
"targets/generic",
"targets/targets.mk"
],
"rockchip-armv8": [
"targets/rockchip-armv8",
"modules",

View File

@ -2,9 +2,6 @@ name: Backport
on:
pull_request_target:
types: [closed, labeled]
permissions:
contents: write # so it can comment
pull-requests: write # so it can create pull requests
jobs:
backport:
name: Backport Pull Request
@ -13,8 +10,10 @@ jobs:
steps:
- uses: actions/checkout@v3
- name: Create backport PRs
uses: korthout/backport-action@v1.2.0
uses: zeebe-io/backport-action@v0.0.8
with:
# Config README: https://github.com/korthout/backport-action#backport-action
# Config README: https://github.com/zeebe-io/backport-action#backport-action
github_token: ${{ secrets.GITHUB_TOKEN }}
github_workspace: ${{ github.workspace }}
pull_description: |-
Automatic backport to `${target_branch}`, triggered by a label in #${pull_number}.

View File

@ -9,9 +9,6 @@ on:
paths:
- 'docs**/'
- '.github/workflows/build-docs.yml'
permissions:
contents: read
jobs:
build-documentation:
name: docs

View File

@ -8,14 +8,8 @@ on:
pull_request:
types: [opened, synchronize, reopened]
permissions:
contents: read
jobs:
changed:
permissions:
contents: read # for dorny/paths-filter to fetch a list of changed files
pull-requests: read # for dorny/paths-filter to read pull requests
runs-on: ubuntu-latest
outputs:
targets: ${{ steps.filter.outputs.changes }}
@ -34,7 +28,7 @@ jobs:
strategy:
fail-fast: false
matrix:
# Read back changed targets to create build matrix
# Read back changd targets to create build matrix
target: ${{ fromJSON(needs.changed.outputs.targets) }}
runs-on: ubuntu-latest
steps:

View File

@ -12,9 +12,6 @@ on:
- 'modules'
- 'patches/**'
- '.github/workflows/check-patches.yml'
permissions:
contents: read
jobs:
check-patches:
name: Check patches

View File

@ -4,14 +4,8 @@ on:
# only execute base branch actions
pull_request_target:
permissions:
contents: read
jobs:
labels:
permissions:
contents: read # for actions/labeler to determine modified files
pull-requests: write # for actions/labeler to add labels to PRs
runs-on: ubuntu-latest
if: github.repository_owner == 'freifunk-gluon'
steps:

View File

@ -3,9 +3,6 @@ on:
push:
pull_request:
types: [opened, synchronize, reopened]
permissions:
contents: read
jobs:
lua:
name: Lua
@ -30,25 +27,3 @@ jobs:
run: ln -s ./docs/site-example ./site
- name: Lint shell code
run: make lint-sh
editorconfig:
name: Editorconfig
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Install Dependencies
run: sudo apt install curl tar
- name: Install editorconfig-checker
env:
VERSION: 2.7.0
OS: linux
ARCH: amd64
run: |
curl -O -L -C - https://github.com/editorconfig-checker/editorconfig-checker/releases/download/$VERSION/ec-$OS-$ARCH.tar.gz
tar xzf ec-$OS-$ARCH.tar.gz
sudo mv ./bin/ec-$OS-$ARCH /usr/bin/editorconfig-checker
sudo chmod +x /usr/bin/editorconfig-checker
- name: Install example site
run: ln -s ./docs/site-example ./site
- name: Lint editorconfig
run: make lint-editorconfig

View File

@ -29,7 +29,6 @@ files["package/**/check_site.lua"] = {
"need",
"need_alphanumeric_key",
"need_array",
"need_array_elements_exclusive",
"need_array_of",
"need_boolean",
"need_chanlist",
@ -51,7 +50,6 @@ files["package/**/check_site.lua"] = {
files["package/**/luasrc/lib/gluon/config-mode/*"] = {
globals = {
"MultiListValue",
"DynamicList",
"Flag",
"Form",
@ -65,7 +63,6 @@ files["package/**/luasrc/lib/gluon/config-mode/*"] = {
"translate",
"translatef",
"Value",
"Element",
},
}

View File

@ -11,10 +11,6 @@ sphinx:
# Optionally set the version of Python and requirements required to build your docs
python:
version: 3.8
install:
- requirements: docs/requirements.txt
build:
os: ubuntu-22.04
tools:
python: "3.8"

View File

@ -1,30 +0,0 @@
workspace:
base: /build
#clone:
# git:
# image: woodpeckerci/plugin-git
# settings:
# recursive: true
pipeline:
build-${TARGET}:
image: "ubuntu:latest"
pull: true
environment:
- input_version=v2022.1.4
- GLUON_SITEDIR=../site
- FORCE_UNSAFE_CONFIGURE=1
- GLUON_TARGET=${TARGET}
- GLUON_DEPRECATED=1
commands:
- echo ${TARGET}
# - git config --global init.defaultBranch main
# - sed -i 's/install/install file/' contrib/actions/install-dependencies.sh
# - sh contrib/actions/install-dependencies.sh
# - sh contrib/actions/run-build.sh ${TARGET}
matrix:
TARGET:
- ath79-generic
- x86-64

View File

@ -23,8 +23,8 @@ using other parts or why the proposed change breaks other parts of the system.
They might even refuse the idea altogether - after all, they have to sleep well
after merging the changes, too.
The preferred way to discuss is in the IRC channel ([#gluon] on irc.hackint.org)
or on the [mailing list], however, you can also open a new issue on GitHub to
The preferred way to discuss in the IRC channel ([#gluon] on irc.hackint.org)
or on the [mailing list], however, you can also open a new issue on Github to
discuss there. We maintain a [list of rejected features] and we'd like to
kindly ask you to review it first. In general, looking for duplicates may save
you some time.

View File

@ -1,7 +1,7 @@
The code of Project Gluon may be distributed under the following terms, unless
noted otherwise in individual files or subtrees.
Copyright (c) Project Gluon
Copyright (c) 2013-2022, Project Gluon
All rights reserved.
Redistribution and use in source and binary forms, with or without

View File

@ -151,10 +151,7 @@ list-targets: FORCE
echo "$$target"
done
lint: lint-editorconfig lint-lua lint-sh
lint-editorconfig: FORCE
@scripts/lint-editorconfig.sh
lint: lint-lua lint-sh
lint-lua: FORCE
@scripts/lint-lua.sh

View File

@ -1,5 +1,5 @@
[![Build Gluon](https://github.com/freifunk-gluon/gluon/actions/workflows/build-gluon.yml/badge.svg?branch=master)](https://github.com/freifunk-gluon/gluon/actions/workflows/build-gluon.yml)
[![License](https://img.shields.io/badge/License-BSD%202--Clause-orange.svg)](https://opensource.org/license/bsd-2-clause/)
[![License](https://img.shields.io/badge/License-BSD%202--Clause-orange.svg)](https://opensource.org/licenses/BSD-2-Clause)
[![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/freifunk-gluon/gluon?sort=semver)](https://github.com/freifunk-gluon/gluon/releases/latest)
# Gluon
@ -30,7 +30,7 @@ the future development of Gluon.
Please refrain from using the `master` branch for anything else but development purposes!
Use the most recent release instead. You can list all releases by running `git tag`
and switch to one by running `git checkout v2022.1 && make update`.
and switch to one by running `git checkout v2022.1.1 && make update`.
If you're using the autoupdater, do not autoupdate nodes with anything but releases.
If you upgrade using random master commits the nodes *might break* eventually.

View File

@ -3,6 +3,6 @@
set -e
apt-get -y update
apt-get -y install git build-essential python3 gawk unzip libncurses5-dev zlib1g-dev libssl-dev libelf-dev wget rsync time qemu-utils
apt-get -y install git subversion build-essential python3 gawk unzip libncurses5-dev zlib1g-dev libssl-dev wget time qemu-utils
apt-get -y clean
rm -rf /var/lib/apt/lists/*

View File

@ -1,4 +1,4 @@
-- This is an example site configuration for Gluon v2022.1
-- This is an example site configuration for Gluon v2018.2+
--
-- Take a look at the documentation located at
-- https://gluon.readthedocs.io/ for details.
@ -10,7 +10,7 @@
-- hostname_prefix = 'freifunk-',
-- Name of the community.
site_name = 'Continuous Integration',
site_name = 'Continious Integration',
-- Shorthand of the community.
site_code = 'ci',
@ -42,14 +42,10 @@
-- Wireless channel.
channel = 1,
-- ESSIDs used for client network.
-- ESSID used for client network.
ap = {
ssid = 'gluon-ci-ssid',
-- disabled = true, -- (optional)
-- Configuration for a backward compatible OWE network below.
owe_ssid = 'owe.gluon-ci-ssid', -- (optional - SSID for OWE client network)
owe_transition_mode = true, -- (optional - enables transition-mode - requires ssid as well as owe_ssid)
},
mesh = {
@ -68,6 +64,8 @@
outdoor_chanlist = '100-140',
ap = {
ssid = 'gluon-ci-ssid',
owe_ssid = "owe.gluon-ci-ssid",
owe_transition_mode = false,
},
mesh = {
-- Adjust these values!
@ -76,12 +74,6 @@
},
},
mesh = {
vxlan = true,
batman_adv = {
routing_algo = 'BATMAN_IV',
},
},
-- The next node feature allows clients to always reach the node it is
-- connected to using a known IP address.
@ -92,16 +84,12 @@
ip6 = 'fd::1',
},
-- Options specific to routing protocols (optional)
-- mesh = {
-- Options specific to the batman-adv routing protocol (optional)
-- batman_adv = {
-- Gateway selection class (optional)
-- The default class 20 is based on the link quality (TQ) only,
-- class 1 is calculated from both the TQ and the announced bandwidth
-- gw_sel_class = 1,
-- },
-- },
mesh = {
vxlan = true,
batman_adv = {
routing_algo = 'BATMAN_IV'
}
},
mesh_vpn = {
-- enabled = true,
@ -125,18 +113,7 @@
peers = {
},
-- Optional: nested peer groups
-- groups = {
-- backbone_sub = {
-- ...
-- },
-- ...
-- },
},
-- Optional: additional peer groups, possibly with other limits
-- backbone2 = {
-- ...
-- },
},
},
@ -153,8 +130,7 @@
},
autoupdater = {
-- Default branch (optional), can be overridden by setting GLUON_AUTOUPDATER_BRANCH when building.
-- Set GLUON_AUTOUPDATER_ENABLED to enable the autoupdater by default for newly installed nodes.
-- Default branch. Don't forget to set GLUON_BRANCH when building!
branch = 'stable',
-- List of branches. You may define multiple branches.

View File

@ -1 +0,0 @@
../minimal-site/i18n

View File

@ -1 +0,0 @@
../minimal-site/modules

View File

@ -1,176 +0,0 @@
-- This is an example site configuration for Gluon v2022.1
--
-- Take a look at the documentation located at
-- https://gluon.readthedocs.io/ for details.
--
-- This configuration will not work as is. You're required to make
-- community specific changes to it!
{
-- Used for generated hostnames, e.g. freifunk-abcdef123456. (optional)
-- hostname_prefix = 'freifunk-',
-- Name of the community.
site_name = 'Continuous Integration',
-- Shorthand of the community.
site_code = 'ci',
-- 32 bytes of random data, encoded in hexadecimal
-- This data must be unique among all sites and domains!
-- Can be generated using: echo $(hexdump -v -n 32 -e '1/1 "%02x"' </dev/urandom)
domain_seed = 'e9608c4ff338b920992d629190e9ff11049de1dfc3f299eac07792dfbcda341c',
-- Prefixes used by clients within the mesh.
-- prefix6 is required, prefix4 can be omitted if next_node.ip4
-- is not set.
prefix6 = 'fdff:cafe:cafe:cafe::/64',
-- Prefixes used by nodes within the mesh
node_prefix6 = 'fdff:cafe:cafe:cafe::/64',
-- Timezone of your community.
-- See https://openwrt.org/docs/guide-user/base-system/system_configuration#time_zones
timezone = 'CET-1CEST,M3.5.0,M10.5.0/3',
-- List of NTP servers in your community.
-- Must be reachable using IPv6!
-- ntp_servers = {'1.ntp.services.ffxx'},
-- Wireless regulatory domain of your community.
regdom = 'DE',
-- Wireless configuration for 2.4 GHz interfaces.
wifi24 = {
-- Wireless channel.
channel = 1,
-- ESSIDs used for client network.
ap = {
ssid = 'gluon-ci-ssid',
-- disabled = true, -- (optional)
-- Configuration for a backward compatible OWE network below.
owe_ssid = 'owe.gluon-ci-ssid', -- (optional - SSID for OWE client network)
owe_transition_mode = true, -- (optional - enables transition-mode - requires ssid as well as owe_ssid)
},
mesh = {
-- Adjust these values!
id = 'ueH3uXjdp', -- usually you don't want users to connect to this mesh-SSID, so use a cryptic id that no one will accidentally mistake for the client WiFi
mcast_rate = 12000,
-- disabled = true, -- (optional)
},
},
-- Wireless configuration for 5 GHz interfaces.
-- This should be equal to the 2.4 GHz variant, except
-- for channel.
wifi5 = {
channel = 44,
outdoor_chanlist = '100-140',
ap = {
ssid = 'gluon-ci-ssid',
-- disabled = true, -- (optional)
-- Configuration for a backward compatible OWE network below.
owe_ssid = 'owe.gluon-ci-ssid', -- (optional - SSID for OWE client network)
owe_transition_mode = true, -- (optional - enables transition-mode - requires ssid as well as owe_ssid)
},
mesh = {
-- Adjust these values!
id = 'ueH3uXjdp',
mcast_rate = 12000,
},
},
-- The next node feature allows clients to always reach the node it is
-- connected to using a known IP address.
next_node = {
-- anycast IPs of all nodes
name = { 'nextnode.location.community.example.org', 'nextnode', 'nn' },
ip4 = '10.0.0.1',
ip6 = 'fd::1',
},
-- Options specific to routing protocols (optional)
mesh = {
vxlan = true,
olsrd = {},
},
mesh_vpn = {
-- enabled = true,
fastd = {
-- Refer to https://fastd.readthedocs.io/en/latest/ to better understand
-- what these options do.
-- List of crypto-methods to use.
methods = {'salsa2012+umac'},
mtu = 1312,
-- configurable = true,
-- syslog_level = 'warn',
groups = {
backbone = {
-- Limit number of connected peers to reduce bandwidth.
limit = 1,
-- List of peers.
peers = {
},
-- Optional: nested peer groups
-- groups = {
-- backbone_sub = {
-- ...
-- },
-- ...
-- },
},
-- Optional: additional peer groups, possibly with other limits
-- backbone2 = {
-- ...
-- },
},
},
bandwidth_limit = {
-- The bandwidth limit can be enabled by default here.
enabled = false,
-- Default upload limit (kbit/s).
egress = 200,
-- Default download limit (kbit/s).
ingress = 3000,
},
},
autoupdater = {
-- Default branch (optional), can be overridden by setting GLUON_AUTOUPDATER_BRANCH when building.
-- Set GLUON_AUTOUPDATER_ENABLED to enable the autoupdater by default for newly installed nodes.
branch = 'stable',
-- List of branches. You may define multiple branches.
branches = {
stable = {
name = 'stable',
-- List of mirrors to fetch images from. IPv6 required!
mirrors = {'http://1.updates.services.ffhl/stable/sysupgrade'},
-- Number of good signatures required.
-- Have multiple maintainers sign your build and only
-- accept it when a sufficient number of them have
-- signed it.
good_signatures = 0,
-- List of public keys of maintainers.
pubkeys = {
},
},
},
},
}

View File

@ -1,57 +0,0 @@
## gluon site.mk makefile example
## GLUON_FEATURES
# Specify Gluon features/packages to enable;
# Gluon will automatically enable a set of packages
# depending on the combination of features listed
GLUON_FEATURES := \
autoupdater \
ebtables-filter-multicast \
ebtables-filter-ra-dhcp \
ebtables-limit-arp \
mesh-olsrd \
mesh-vpn-fastd \
respondd \
status-page \
web-advanced \
web-wizard
GLUON_FEATURES_standard := \
wireless-encryption-wpa3
## GLUON_SITE_PACKAGES
# Specify additional Gluon/OpenWrt packages to include here;
# A minus sign may be prepended to remove a packages from the
# selection that would be enabled by default or due to the
# chosen feature flags
GLUON_SITE_PACKAGES := iwinfo
## DEFAULT_GLUON_RELEASE
# version string to use for images
# gluon relies on
# opkg compare-versions "$1" '>>' "$2"
# to decide if a version is newer or not.
DEFAULT_GLUON_RELEASE := 0.6+exp$(shell date '+%Y%m%d')
# Variables set with ?= can be overwritten from the command line
## GLUON_RELEASE
# call make with custom GLUON_RELEASE flag, to use your own release version scheme.
# e.g.:
# $ make images GLUON_RELEASE=23.42+5
# would generate images named like this:
# gluon-ff%site_code%-23.42+5-%router_model%.bin
GLUON_RELEASE ?= $(DEFAULT_GLUON_RELEASE)
# Default priority for updates.
GLUON_PRIORITY ?= 0
# Region code required for some images; supported values: us eu
GLUON_REGION ?= eu
# Languages to include
GLUON_LANGS ?= en de

View File

@ -5,6 +5,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
ca-certificates \
file \
git \
subversion \
python3 \
build-essential \
gawk \
@ -20,14 +21,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
ecdsautils \
lua-check \
shellcheck \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/*
RUN mkdir /tmp/ec &&\
wget -O /tmp/ec/ec-linux-amd64.tar.gz https://github.com/editorconfig-checker/editorconfig-checker/releases/download/2.7.0/ec-linux-amd64.tar.gz &&\
tar -xvzf /tmp/ec/ec-linux-amd64.tar.gz &&\
mv bin/ec-linux-amd64 /usr/local/bin/editorconfig-checker &&\
rm -rf /tmp/ec
&& rm -rf /var/lib/apt/lists/*
RUN useradd -d /gluon gluon
USER gluon

View File

@ -4,7 +4,7 @@ use strict;
use warnings;
use Text::Balanced qw(extract_bracketed extract_delimited extract_tagged);
@ARGV >= 1 || die "Usage: $0 <source directory>\n";
@ARGV >= 1 || die "Usage: $0 <source direcory>\n";
my %stringtable;
@ -79,7 +79,7 @@ if( open F, "find @ARGV -type f '(' -name '*.html' -o -name '*.lua' ')' |" )
{
my $stag = quotemeta $1;
my $etag = $stag;
$etag =~ s/\[/]/g;
$etag =~ s/\[/]/g;
( $res ) = extract_tagged($code, $stag, $etag);

View File

@ -4,12 +4,12 @@
# Then you enter the command mode of qemu and can exit by typing "quit".
qemu-system-x86_64 \
-d 'cpu_reset' \
-enable-kvm \
-gdb tcp::1234 \
-nographic \
-netdev user,id=wan,hostfwd=tcp::2223-10.0.2.15:22 \
-device virtio-net-pci,netdev=wan,addr=0x06,id=nic1 \
-netdev user,id=lan,hostfwd=tcp::6080-192.168.1.1:80,hostfwd=tcp::2222-192.168.1.1:22,net=192.168.1.100/24 \
-device virtio-net-pci,netdev=lan,addr=0x05,id=nic2 \
"$@"
-d 'cpu_reset' \
-enable-kvm \
-gdb tcp::1234 \
-nographic \
-netdev user,id=wan,hostfwd=tcp::2223-10.0.2.15:22 \
-device virtio-net-pci,netdev=wan,addr=0x06,id=nic1 \
-netdev user,id=lan,hostfwd=tcp::6080-192.168.1.1:80,hostfwd=tcp::2222-192.168.1.1:22,net=192.168.1.100/24 \
-device virtio-net-pci,netdev=lan,addr=0x05,id=nic2 \
"$@"

View File

@ -29,22 +29,11 @@ lower="$(mktemp)"
trap 'rm -f "$upper" "$lower"' EXIT
awk 'BEGIN {
sep = 0
}
/^---$/ {
sep = 1;
next
}
{
if(sep == 0) {
print > "'"$upper"'"
} else {
print > "'"$lower"'"
}
}' "$manifest"
awk 'BEGIN { sep=0 }
/^---$/ { sep=1; next }
{ if(sep==0) print > "'"$upper"'";
else print > "'"$lower"'"}' \
"$manifest"
ecdsasign "$upper" < "$SECRET" >> "$lower"

View File

@ -1,7 +1,7 @@
#!/bin/sh
if [ $# -eq 0 ] || [ "-h" = "$1" ] || [ "-help" = "$1" ] || [ "--help" = "$1" ]; then
cat <<EOHELP
cat <<EOHELP
Usage: $0 <public> <signed manifest>
sigtest.sh checks if a manifest is signed by the public key <public>. There is
@ -12,7 +12,7 @@ See also:
* https://gluon.readthedocs.io/en/latest/features/autoupdater.html
EOHELP
exit 1
exit 1
fi
public="$1"
@ -21,29 +21,18 @@ upper="$(mktemp)"
lower="$(mktemp)"
ret=1
awk 'BEGIN {
sep = 0
}
/^---$/ {
sep = 1;
next
}
{
if(sep == 0) {
print > "'"$upper"'"
} else {
print > "'"$lower"'"
}
}' "$manifest"
awk "BEGIN { sep=0 }
/^---\$/ { sep=1; next }
{ if(sep==0) print > \"$upper\";
else print > \"$lower\"}" \
"$manifest"
while read -r line
do
if ecdsaverify -s "$line" -p "$public" "$upper"; then
ret=0
break
fi
if ecdsaverify -s "$line" -p "$public" "$upper"; then
ret=0
break
fi
done < "$lower"
rm -f "$upper" "$lower"

View File

@ -1,8 +1,8 @@
/*
This fixes the vertical position of list markers when the first
element in the <li> is a <pre> block
This fixes the vertical position of list markers when the first
element in the <li> is a <pre> block
Scrolling inside the <pre> block is still working as expected
Scrolling inside the <pre> block is still working as expected
*/
.rst-content pre.literal-block,
.rst-content div[class^='highlight'] pre {

View File

@ -20,11 +20,11 @@
# -- Project information -----------------------------------------------------
project = 'Gluon'
copyright = 'Project Gluon'
copyright = '2015-2022, Project Gluon'
author = 'Project Gluon'
# The short X.Y version
version = '2022.1'
version = '2022.1.1'
# The full version, including alpha/beta/rc tags
release = version
@ -71,13 +71,6 @@ pygments_style = None
# Don't highlight code blocks unless requested explicitly
highlight_language = 'none'
# Ignore links to the config mode, as well as anchors on on hackint, which are
# used to mark channel names and do not exist. Regular links are not effected.
linkcheck_ignore = [
'http://192.168.1.1',
'https://webirc.hackint.org/#'
]
# -- Options for HTML output -------------------------------------------------
@ -144,7 +137,7 @@ latex_elements = {
# author, documentclass [howto, manual, or own class]).
latex_documents = [
(master_doc, 'Gluon.tex', 'Gluon Documentation',
'Project Gluon', 'manual'),
'Project Gluon', 'manual'),
]
@ -154,7 +147,7 @@ latex_documents = [
# (source start file, name, description, authors, manual section).
man_pages = [
(master_doc, 'gluon', 'Gluon Documentation',
[author], 1)
[author], 1)
]
@ -165,8 +158,8 @@ man_pages = [
# dir menu entry, description, category)
texinfo_documents = [
(master_doc, 'Gluon', 'Gluon Documentation',
author, 'Gluon', 'One line description of project.',
'Miscellaneous'),
author, 'Gluon', 'One line description of project.',
'Miscellaneous'),
]

View File

@ -57,7 +57,7 @@ commits, making `git reflog` the only way to recover them!
make refresh-patches
In order to refresh patches when updating feeds or the OpenWrt base, `make refresh-patches` applies and updates all of their patches without installing feed packages to the OpenWrt build system.
In order to refresh patches when updating feeds or the OpenWrt base, `make refresh-patches` applies and updates all of their patches without installing feed packages to the OpenWrt buildsystem.
This command speeds up the maintenance of updating OpenWrt and feeds.
@ -77,7 +77,7 @@ apply:
- use tabs instead of spaces
- trailing whitespaces must be eliminated
- files need to end with a final newline
- newlines need to have Unix line endings (lf)
- newlines need to have unix line endings (lf)
To that end we provide a ``.editorconfig`` configuration, which is supported by most
of the editors out there.

View File

@ -91,7 +91,7 @@ update.sh
getversion.sh
Used to determine the version numbers of the repositories of Gluon and the
site configuration, to be included in the built firmware images as
site configuraiton, to be included in the built firmware images as
*/lib/gluon/gluon-version* and */lib/gluon/site-version*.
By default, this uses ``git describe`` to generate a version number based

View File

@ -45,7 +45,7 @@ Some more information on how to use this tool can be found at
Obtaining Stacktraces
.....................
On many targets stack traces can be read from the following
On many targets stacktraces can be read from the following
location after reboot: ::
/sys/kernel/debug/crashlog

View File

@ -1,51 +0,0 @@
DNS caching
===========
User experience may be greatly improved when dns is accelerated. Also, it
seems like a good idea to keep the number of packages being exchanged
between node and gateway as small as possible. In order to do this, a
DNS cache may be used on a node. The dnsmasq instance listening on port
53 on the node will be reconfigured to answer requests, use a list of
upstream servers and a specific cache size if the options listed below are
added to site.conf. Upstream servers are the DNS servers which are normally
used by the nodes to resolve hostnames (e.g. gateways/supernodes).
There are the following settings:
servers
cacheentries
To use the node's DNS server, both options should be set. The node will cache at
most 'cacheentries' many DNS records in RAM. The 'servers' list will be used to
resolve the received DNS queries if the request cannot be answered from
cache. Gateways should announce the "next node" address via DHCP and RDNSS (if
any). Note that not setting 'servers' here will lead to DNS not working: Once
the gateways all announce the "next node" address for DNS, there is no way for
nodes to automatically determine DNS servers. They have to be baked into the
firmware.
If these settings do not exist, the cache is not initialized and RAM usage will
not increase.
When next_node.name is set, an A record and an AAAA record for the
next-node IP address are placed in the dnsmasq configuration. This means that
the content of next_node.name may be resolved even without upstream connectivity.
It is suggested to use the same name as the DNS server provides:
e.g. nextnode.location.community.example.org (This way the name also works if a
client uses static DNS Servers). Hint: If next_node.name does not contain a dot
some browsers would open the searchpage instead.
::
dns = {
cacheentries = 5000,
servers = { '2001:db8::1', },
},
next_node = {
name = { 'nextnode.location.community.example.org', 'nextnode', 'nn' },
ip6 = '2001:db8:8::1',
ip4 = '198.51.100.1',
}
Each cache entry will occupy about 90 bytes of RAM.

View File

@ -0,0 +1,26 @@
DNS forwarder
=============
A Gluon node can be configured to act as a DNS forwarder. Requests for the
next-node hostname(s) can be answered locally, without querying the upstream
resolver.
**Note:** While this reduces answer time and allows to use the next-node
hostname without upstream connectivity, this feature should not be used for
next-node hostnames that are FQDN when the zone uses DNSSEC.
One or more upstream resolvers can be configured in the *dns.servers* setting.
When *next_node.name* is set, A and/or AAAA records for the next-node IP
addresses are placed in the dnsmasq configuration.
::
dns = {
servers = { '2001:db8::1', },
},
next_node = {
name = { 'nextnode.location.community.example.org', 'nextnode', 'nn' },
ip6 = '2001:db8:8::1',
ip4 = '198.51.100.1',
}

View File

@ -47,7 +47,7 @@ installed. Please note that at least one alfred daemon is required to run as
.. _alfred-json: https://github.com/ffnord/alfred-json
The following data types are used:
The following datatypes are used:
* `nodeinfo`: 158
* `statistics`: 159

View File

@ -77,7 +77,7 @@ should always appear before ``null`` in the configuration when both are enabled.
fastd v22 or newer is needed for the ``null@l2tp`` method.
It is often not necessary to enable L2TP offloading on supernodes for
performance reasons. Nodes using offloading can communicate with supernodes that
performance reasons. Nodes using offloading can communicate with supornodes that
don't use offloading as long as both use the ``null@l2tp`` method.
@ -102,19 +102,19 @@ However, the important changes to the fastd config on your Supernode are:
| This tells fastd to use the l2tp kernel module.
- | Set ``persist interface no;``
| This tells fastd to only keep interfaces around while the connection is active.
| This tells fastd to only keep interfaces arround while the connection is active.
Note that in ``multitap`` mode, which is required when using L2TP offloading,
fastd will create one interface per peer on the supernode's. This allows
offloading the L2TP forwarding into the kernel space. But this also means added
complexity with regards to handling those interfaces.
copmlexity with regards to handling those interfaces.
There are two main options on how you can handle this:
- create ``on up`` and ``on down`` hooks
- to handle interface setup and destruction
- preferably using the async keyword, so hooks are not blocking fastd
- preferrably using the async keyword, so hooks are not blocking fastd
- use a daemon like systemd-networkd
@ -179,7 +179,7 @@ More information about the wgpeerselector and its algorithm can be found
`here <https://github.com/freifunk-gluon/packages/blob/master/net/wgpeerselector/README.md>`__.
On the gluon node both VXLAN and the wgpeerselector are well integrated and no
explicit configuration of those tools is necessary, once the general WireGuard
explicit configuation of those tools is necessary, once the general WireGuard
support has been configured.
Attention must by paid to time synchronization. As WireGuard
@ -191,16 +191,6 @@ negative effects. Only when a previously connected node reboots the effect
comes into play, as the gateway still knows about the old timestamp of the gluon
node.
gluon-mesh-vpn-key-translate
""""""""""""""""""""""""""""
Many communities already possess a collection of active fastd-keys when they
plan migrating their community to WireGuard.
These public keys known on the server-side can be derived into their WireGuard
equivalent using `gluon-mesh-vpn-key-translate <https://github.com/AiyionPrime/gluon-mesh-vpn-key-translate>`__.
The routers do the necessary reencoding of the private key seamlessly
when updating firmware from fastd to the WireGuard variant.
Gateway / Supernode Configuration
"""""""""""""""""""""""""""""""""

View File

@ -16,8 +16,8 @@ by the user). This means that it is not possible to enable or disable an existin
configurations during upgrades.
During upgrades the wifi channel of the 2.4GHz and 5GHz radio will be restored to the channel
configured in the site.conf. The channel width will be reset to Gluon's default. If you need to preserve
these settings during upgrades you can configure this via the uci section ``gluon-core.wireless``::
configured in the site.conf. If you need to preserve a user defined wifi channel during upgrades
you can configure this via the uci section ``gluon-core.wireless``::
uci set gluon.wireless.preserve_channels='1'

View File

@ -6,80 +6,80 @@ Several Freifunk communities in Germany use Gluon as the foundation of their Fre
.. toctree::
:caption: User Documentation
:maxdepth: 2
:caption: User Documentation
:maxdepth: 2
user/getting_started
user/site
user/supported_devices
user/x86
user/faq
user/mtu
user/getting_started
user/site
user/supported_devices
user/x86
user/faq
user/mtu
.. toctree::
:caption: Features
:maxdepth: 2
:caption: Features
:maxdepth: 2
features/configmode
features/autoupdater
features/wlan-configuration
features/private-wlan
features/wired-mesh
features/dns-cache
features/monitoring
features/multidomain
features/authorized-keys
features/roles
features/vpn
features/configmode
features/autoupdater
features/wlan-configuration
features/private-wlan
features/wired-mesh
features/dns-forwarder
features/monitoring
features/multidomain
features/authorized-keys
features/roles
features/vpn
.. toctree::
:caption: Developer Documentation
:maxdepth: 2
:caption: Developer Documentation
:maxdepth: 2
dev/basics
dev/hardware
dev/packages
dev/upgrade
dev/uplink
dev/mac_addresses
dev/site_library
dev/build
dev/debugging
dev/basics
dev/hardware
dev/packages
dev/upgrade
dev/uplink
dev/mac_addresses
dev/site_library
dev/build
dev/debugging
.. toctree::
:caption: gluon-web Reference
:maxdepth: 1
:caption: gluon-web Reference
:maxdepth: 1
dev/web/controller
dev/web/model
dev/web/view
dev/web/i18n
dev/web/config-mode
dev/web/controller
dev/web/model
dev/web/view
dev/web/i18n
dev/web/config-mode
.. toctree::
:caption: Packages
:maxdepth: 1
:caption: Packages
:maxdepth: 1
package/gluon-client-bridge
package/gluon-config-mode-domain-select
package/gluon-ebtables-filter-multicast
package/gluon-ebtables-filter-ra-dhcp
package/gluon-ebtables-limit-arp
package/gluon-ebtables-source-filter
package/gluon-hoodselector
package/gluon-logging
package/gluon-mesh-batman-adv
package/gluon-mesh-wireless-sae
package/gluon-radv-filterd
package/gluon-scheduled-domain-switch
package/gluon-web-admin
package/gluon-web-logging
package/gluon-client-bridge
package/gluon-config-mode-domain-select
package/gluon-ebtables-filter-multicast
package/gluon-ebtables-filter-ra-dhcp
package/gluon-ebtables-limit-arp
package/gluon-ebtables-source-filter
package/gluon-hoodselector
package/gluon-logging
package/gluon-mesh-batman-adv
package/gluon-mesh-wireless-sae
package/gluon-radv-filterd
package/gluon-scheduled-domain-switch
package/gluon-web-admin
package/gluon-web-logging
.. toctree::
:caption: Releases
:maxdepth: 1
:caption: Releases
:maxdepth: 1
releases/index
releases/index
License
-------

View File

@ -2,128 +2,125 @@ Release Notes
=============
.. toctree::
:caption: Gluon 2022.1
:maxdepth: 2
:caption: Gluon 2022.1
:maxdepth: 2
v2022.1.4
v2022.1.3
v2022.1.2
v2022.1.1
v2022.1
v2022.1.1
v2022.1
.. toctree::
:caption: Gluon 2021.1
:maxdepth: 2
:caption: Gluon 2021.1
:maxdepth: 2
v2021.1.2
v2021.1.1
v2021.1
v2021.1.2
v2021.1.1
v2021.1
.. toctree::
:caption: Gluon 2020.2
:maxdepth: 2
:caption: Gluon 2020.2
:maxdepth: 2
v2020.2.3
v2020.2.2
v2020.2.1
v2020.2
v2020.2.3
v2020.2.2
v2020.2.1
v2020.2
.. toctree::
:caption: Gluon 2020.1
:maxdepth: 2
:caption: Gluon 2020.1
:maxdepth: 2
v2020.1.4
v2020.1.3
v2020.1.2
v2020.1.1
v2020.1
v2020.1.4
v2020.1.3
v2020.1.2
v2020.1.1
v2020.1
.. toctree::
:caption: Gluon 2019.1
:maxdepth: 2
:caption: Gluon 2019.1
:maxdepth: 2
v2019.1.3
v2019.1.2
v2019.1.1
v2019.1
v2019.1.3
v2019.1.2
v2019.1.1
v2019.1
.. toctree::
:caption: Gluon 2018.2
:maxdepth: 2
:caption: Gluon 2018.2
:maxdepth: 2
v2018.2.4
v2018.2.3
v2018.2.2
v2018.2.1
v2018.2
v2018.2.4
v2018.2.3
v2018.2.2
v2018.2.1
v2018.2
.. toctree::
:caption: Gluon 2018.1
:maxdepth: 2
:caption: Gluon 2018.1
:maxdepth: 2
v2018.1.4
v2018.1.3
v2018.1.2
v2018.1.1
v2018.1
v2018.1.4
v2018.1.3
v2018.1.2
v2018.1.1
v2018.1
.. toctree::
:caption: Gluon 2017.1
:maxdepth: 2
:caption: Gluon 2017.1
:maxdepth: 2
v2017.1.8
v2017.1.7
v2017.1.6
v2017.1.5
v2017.1.4
v2017.1.3
v2017.1.2
v2017.1.1
v2017.1
v2017.1.8
v2017.1.7
v2017.1.6
v2017.1.5
v2017.1.4
v2017.1.3
v2017.1.2
v2017.1.1
v2017.1
.. toctree::
:caption: Gluon 2016.2
:maxdepth: 2
:caption: Gluon 2016.2
:maxdepth: 2
v2016.2.7
v2016.2.6
v2016.2.5
v2016.2.4
v2016.2.3
v2016.2.2
v2016.2.1
v2016.2
v2016.2.7
v2016.2.6
v2016.2.5
v2016.2.4
v2016.2.3
v2016.2.2
v2016.2.1
v2016.2
.. toctree::
:caption: Gluon 2016.1
:maxdepth: 2
:caption: Gluon 2016.1
:maxdepth: 2
v2016.1.6
v2016.1.5
v2016.1.4
v2016.1.3
v2016.1.2
v2016.1.1
v2016.1
v2016.1.6
v2016.1.5
v2016.1.4
v2016.1.3
v2016.1.2
v2016.1.1
v2016.1
.. toctree::
:caption: Gluon 2015.1
:maxdepth: 2
:caption: Gluon 2015.1
:maxdepth: 2
v2015.1.2
v2015.1.1
v2015.1
v2015.1.2
v2015.1.1
v2015.1
.. toctree::
:caption: Gluon 2014.4
:maxdepth: 2
:caption: Gluon 2014.4
:maxdepth: 2
v2014.4
v2014.4
.. toctree::
:caption: Gluon 2014.3
:maxdepth: 2
:caption: Gluon 2014.3
:maxdepth: 2
v2014.3.1
v2014.3
v2014.3.1
v2014.3

View File

@ -88,8 +88,6 @@ New features
* Add support for making nodes a DNS cache for clients
(`#1000 <https://github.com/freifunk-gluon/gluon/pull/1000>`_)
See also: :doc:`../features/dns-cache`
* Add L2TP via tunneldigger as an alternative VPN system
(`#978 <https://github.com/freifunk-gluon/gluon/pull/978>`_)

View File

@ -28,7 +28,7 @@ Bugfixes
As the path to both config mode and status page were changed between versions
users could be affected by a redirect to a no more valid URL.
* batman-adv has received two bugfixes, which were `backported <https://github.com/openwrt/routing/commit/7bf62cc8b556b5046f9bbd37687376fe9ea175bb>`_ from v2018.4
* batman-adv has received two bugfixes, which were `backported <https://github.com/openwrt-routing/packages/commit/7bf62cc8b556b5046f9bbd37687376fe9ea175bb>`_ from v2018.4
Other changes
~~~~~~~~~~~~~

View File

@ -127,10 +127,10 @@ Renamed targets
Status Page
~~~~~~~~~~~
- Gateway nexthop information has been added to the status page when batman-adv
- Gateway nexthop information has been added to the statuspage when batman-adv
is used. This includes its MAC address and prettyname as well as the interface
name towards the selected gateway.
- The site name has been added to the status page. If the node is in a multidomain
- The site name has been added to the statuspage. If the node is in a multidomain
setup it will also show the domain name.
DECT button to enter config mode

View File

@ -7,7 +7,7 @@ Bugfixes
- LEDs on the ASUS RT-AC51 are now fully functional.
- Netgear EX6150v1 randomly booting into failsafe mode has been fixed.
This happened dependent on the state of the mode setting switch.
This happened dependant on the state of the mode setting switch.
- Dnsmasq has been patched against multiple security issues in its DNS response validation.
See the OpenWrt advisory at https://openwrt.org/advisory/2021-01-19-1

View File

@ -30,11 +30,11 @@ ramips-mt76x8
Bugfixes
--------
- Missing bandwidth limit settings resulted in a respondd crash for v2021.1.
- Missing bandwith limit settings resulted in a respondd crash for v2021.1.
- The Tunneldigger VPN provider was not registered with the Gluon VPN backend, resulting in broken Tunneldigger configurations.
- Disabling Radio interfaces in v2021.1 could lead to null pointer dereferences in the respondd airtime module, as the survey returns no data in this case.
- Disabling Radio interfaces in v2021.1 could lead to nullpointer dereferences in the respondd airtime module, as the survey returns no data in this case.
Known issues

View File

@ -34,9 +34,9 @@ ramips-mt7621
rockchip-armv8
~~~~~~~~~~~~~~
- FriendlyElec
- FriendlyElec
- NanoPi R4S (4GB LPDDR4)
- NanoPi R4S (4GB LPDDR4)
Bugfixes
--------

View File

@ -1,37 +0,0 @@
Gluon 2022.1.2
==============
Bugfixes
--------
* Various build-errors which sporadically occur when building with a large thread-count have been fixed
* Android devices do not lose their IPv6 connectivity after extended idle-time
* The 802.11s mesh network is now using 802.11ax HE-modes when supported by hardware
Known issues
------------
* Upgrading EdgeRouter-X from versions before v2020.1.x may lead to a soft-bricked state due to bad blocks on the NAND flash which the NAND driver before this release does not handle well.
(`#1937 <https://github.com/freifunk-gluon/gluon/issues/1937>`_)
* The integration of the BATMAN_V routing algorithm is incomplete.
- Mesh neighbors don't appear on the status page. (`#1726 <https://github.com/freifunk-gluon/gluon/issues/1726>`_)
Many tools have the BATMAN_IV metric hardcoded, these need to be updated to account for the new throughput
metric.
- Throughput values are not correctly acquired for different interface types.
(`#1728 <https://github.com/freifunk-gluon/gluon/issues/1728>`_)
This affects virtual interface types like bridges and VXLAN.
* Default TX power on many Ubiquiti devices is too high, correct offsets are unknown
(`#94 <https://github.com/freifunk-gluon/gluon/issues/94>`_)
Reducing the TX power in the Advanced Settings is recommended.
* In configurations without VXLAN, the MAC address of the WAN interface is modified even when Mesh-on-WAN is disabled
(`#496 <https://github.com/freifunk-gluon/gluon/issues/496>`_)
This may lead to issues in environments where a fixed MAC address is expected (like VMware when promiscuous mode is disallowed).

View File

@ -1,40 +0,0 @@
Gluon 2022.1.3
==============
Bugfixes
--------
* Ipq40xx Wave2 devices temporarily use non-ct firmware again to work around 802.11s unicast package loss in ath10k-ct
(`#2692 <https://github.com/freifunk-gluon/gluon/issues/2692>`_)
* Modify kernel builds slightly to work around a boot hang on various devices based on the QCA9563 SoC - especially the Unifi AC-* devices
(`#2784 <https://github.com/freifunk-gluon/gluon/issues/2784>`_)
* Work around an issue with wifi setup timing by waiting a bit while device initialisation is ongoing
(`#2779 <https://github.com/freifunk-gluon/gluon/issues/2779>`_)
Known issues
------------
* Upgrading EdgeRouter-X from versions before v2020.1.x may lead to a soft-bricked state due to bad blocks on the NAND flash which the NAND driver before this release does not handle well.
(`#1937 <https://github.com/freifunk-gluon/gluon/issues/1937>`_)
* The integration of the BATMAN_V routing algorithm is incomplete.
- Mesh neighbors don't appear on the status page. (`#1726 <https://github.com/freifunk-gluon/gluon/issues/1726>`_)
Many tools have the BATMAN_IV metric hardcoded, these need to be updated to account for the new throughput
metric.
- Throughput values are not correctly acquired for different interface types.
(`#1728 <https://github.com/freifunk-gluon/gluon/issues/1728>`_)
This affects virtual interface types like bridges and VXLAN.
* Default TX power on many Ubiquiti devices is too high, correct offsets are unknown
(`#94 <https://github.com/freifunk-gluon/gluon/issues/94>`_)
Reducing the TX power in the Advanced Settings is recommended.
* In configurations without VXLAN, the MAC address of the WAN interface is modified even when Mesh-on-WAN is disabled
(`#496 <https://github.com/freifunk-gluon/gluon/issues/496>`_)
This may lead to issues in environments where a fixed MAC address is expected (like VMware when promiscuous mode is disallowed).

View File

@ -1,136 +0,0 @@
Gluon 2022.1.4
==============
Added hardware support
----------------------
ath79-generic
~~~~~~~~~~~~~
- LibreRouter
- LibreRouter (v1)
- Teltonika
- RUT230 (v1)
ath79-nand
~~~~~~~~~~
- Aerohive
- HiveAP 121
- NETGEAR
- WNDR4300 (v1)
lantiq-xrx200
~~~~~~~~~~~~~
- Arcadyan
- o2 Box 6431
ramips-mt7621
~~~~~~~~~~~~~
- Cudy
- X6 (v1, v2)
- D-Link
- DAP-X1860 (A1)
- GL.iNet
- GL-MT1300
- Mercusys
- MR70X (v1)
- Xiaomi
- Mi Router 3G
ramips-mt76x8
~~~~~~~~~~~~~
- TP-Link
- RE200 (v3)
realtek-rtl838x
~~~~~~~~~~~~~~~
- D-Link
- DGS-1210-10P
ipq40xx-generic
~~~~~~~~~~~~~~~
- AVM
- FRITZBox 7520
ipq40xx-mikrotik
~~~~~~~~~~~~~~~~
- Mikrotik
- hAP ac2
Bugfixes
--------
* Enterasys WS-AP3705i now uses the correct image-name for use with the autoupdater
(`#2819 <https://github.com/freifunk-gluon/gluon/issues/2819>`_)
* Reduce memory Usage for ath10k on ZyXEL WRE6606 devices
(`#2842 <https://github.com/freifunk-gluon/gluon/issues/2842>`_)
* Replace the Workaround for failed boots on ath79 with a proper fix.
(`#2784 <https://github.com/freifunk-gluon/gluon/issues/2784#issuecomment-1452126501>`_)
* AVM FRITZ!Box 7360 v2 flashed with the incorrect image for v1 will automatically update to the correct image.
* Revert OOM inducing switch of ath79 Wave2 firmware back to -ct
(`#2879 <https://github.com/freifunk-gluon/gluon/pull/2879>`_)
Known issues
------------
* Upgrading EdgeRouter-X from versions before v2020.1.x may lead to a soft-bricked state due to bad blocks on the NAND flash which the NAND driver before this release does not handle well.
(`#1937 <https://github.com/freifunk-gluon/gluon/issues/1937>`_)
* The integration of the BATMAN_V routing algorithm is incomplete.
- Mesh neighbors don't appear on the status page. (`#1726 <https://github.com/freifunk-gluon/gluon/issues/1726>`_)
Many tools have the BATMAN_IV metric hardcoded, these need to be updated to account for the new throughput
metric.
- Throughput values are not correctly acquired for different interface types.
(`#1728 <https://github.com/freifunk-gluon/gluon/issues/1728>`_)
This affects virtual interface types like bridges and VXLAN.
* Default TX power on many Ubiquiti devices is too high, correct offsets are unknown
(`#94 <https://github.com/freifunk-gluon/gluon/issues/94>`_)
Reducing the TX power in the Advanced Settings is recommended.
* In configurations without VXLAN, the MAC address of the WAN interface is modified even when Mesh-on-WAN is disabled
(`#496 <https://github.com/freifunk-gluon/gluon/issues/496>`_)
This may lead to issues in environments where a fixed MAC address is expected (like VMware when promiscuous mode is disallowed).

View File

@ -13,146 +13,146 @@ Added hardware support
ath79-generic
~~~~~~~~~~~~~
- D-Link
- D-Link
- DAP-2660 A1
- DAP-2660 A1
- Enterasys
- Enterasys
- WS-AP3705i
- WS-AP3705i
- Siemens
- Siemens
- WS-AP3610
- WS-AP3610
- TP-Link
- TP-Link
- Archer A7 v5
- CPE510 v2
- CPE510 v3
- CPE710 v1
- EAP225-Outdoor v1
- WBS210 v2
- Archer A7 v5
- CPE510 v2
- CPE510 v3
- CPE710 v1
- EAP225-Outdoor v1
- WBS210 v2
ath79-mikrotik
~~~~~~~~~~~~~~
- Mikrotik
- Mikrotik
- RB951Ui-2nD
- RB951Ui-2nD
ipq40xx-generic
~~~~~~~~~~~~~~~
- Aruba Networks
- Aruba Networks
- AP-303H
- AP-365
- InstantOn AP11D
- InstantOn AP17
- AP-303H
- AP-365
- InstantOn AP11D
- InstantOn AP17
ipq40xx-mikrotik
~~~~~~~~~~~~~~~~
- Mikrotik
- Mikrotik
- SXTsq-5-AC
- SXTsq-5-AC
ramips-mt7620
~~~~~~~~~~~~~
- Xiaomi
- Xiaomi
- Mi Router 3G (v2)
- Mi Router 3G (v2)
ramips-mt7621
~~~~~~~~~~~~~
- Cudy
- Cudy
- WR2100
- WR2100
- Netgear
- Netgear
- R6260
- WAC104
- WAX202
- R6260
- WAC104
- WAX202
- TP-Link
- TP-Link
- RE500
- RE650 v1
- RE500
- RE650 v1
- Ubiquiti
- Ubiquiti
- UniFi 6 Lite
- UniFi 6 Lite
- Xiaomi
- Xiaomi
- Mi Router 4A (Gigabit Edition)
- Mi Router 4A (Gigabit Edition)
ramips-mt7622
~~~~~~~~~~~~~
- Linksys
- Linksys
- E8450
- E8450
- Xiaomi
- Xiaomi
- AX3200
- AX3200
- Ubiquiti
- Ubiquiti
- UniFi 6 LR
- UniFi 6 LR
ramips-mt76x8
~~~~~~~~~~~~~
- GL.iNet
- GL.iNet
- microuter-N300
- microuter-N300
- Netgear
- Netgear
- R6020
- R6020
- RAVPower
- RAVPower
- RP-WD009
- RP-WD009
- TP-Link
- TP-Link
- Archer C20 v4
- Archer C20 v5
- RE200 v2
- RE305 v1
- Archer C20 v4
- Archer C20 v5
- RE200 v2
- RE305 v1
- Xiaomi
- Xiaomi
- Mi Router 4C
- Mi Router 4A (100M Edition)
- Mi Router 4C
- Mi Router 4A (100M Edition)
rockchip-armv8
~~~~~~~~~~~~~~
- FriendlyElec
- FriendlyElec
- NanoPi R2S
- NanoPi R2S
mpc85xx-p1010
~~~~~~~~~~~~~
- Sophos
- Sophos
- RED 15w rev. 1
- RED 15w rev. 1
mpc85xx-p1020
~~~~~~~~~~~~~
- Extreme Networks
- Extreme Networks
- WS-AP3825i
- WS-AP3825i
Removed Devices
---------------
@ -160,63 +160,63 @@ Removed Devices
This list contains devices which do not have enough memory or flash to
be operated with this Gluon release.
- D-Link
- D-Link
- DIR-615 (C1, D1, D2, D3, D4, H1)
- DIR-615 (C1, D1, D2, D3, D4, H1)
- Linksys
- Linksys
- WRT160NL
- WRT160NL
- TP-Link
- TP-Link
- TL-MR13U (v1)
- TL-MR3020 (v1)
- TL-MR3040 (v1, v2)
- TL-MR3220 (v1, v2)
- TL-MR3420 (v1, v2)
- TL-WA701N/ND (v1, v2)
- TL-WA730RE (v1)
- TL-WA750RE (v1)
- TL-WA801N/ND (v1, v2, v3)
- TL-WA830RE (v1, v2)
- TL-WA850RE (v1)
- TL-WA860RE (v1)
- TL-WA901N/ND (v1, v2, v3, v4, v5)
- TL-WA7210N (v2)
- TL-WA7510N (v1)
- TL-WR703N (v1)
- TL-WR710N (v1, v2)
- TL-WR740N (v1, v3, v4, v5)
- TL-WR741N/ND (v1, v2, v4, v5)
- TL-WR743N/ND (v1, v2)
- TL-WR840N (v2)
- TL-WR841N/ND (v3, v5, v7, v8, v9, v10, v11, v12)
- TL-WR841N/ND (v1, v2)
- TL-WR843N/ND (v1)
- TL-WR940N (v1, v2, v3, v4, v5, v6)
- TL-WR941ND (v2, v3, v4, v5, v6)
- TL-WR1043N/ND (v1)
- WDR4900
- TL-MR13U (v1)
- TL-MR3020 (v1)
- TL-MR3040 (v1, v2)
- TL-MR3220 (v1, v2)
- TL-MR3420 (v1, v2)
- TL-WA701N/ND (v1, v2)
- TL-WA730RE (v1)
- TL-WA750RE (v1)
- TL-WA801N/ND (v1, v2, v3)
- TL-WA830RE (v1, v2)
- TL-WA850RE (v1)
- TL-WA860RE (v1)
- TL-WA901N/ND (v1, v2, v3, v4, v5)
- TL-WA7210N (v2)
- TL-WA7510N (v1)
- TL-WR703N (v1)
- TL-WR710N (v1, v2)
- TL-WR740N (v1, v3, v4, v5)
- TL-WR741N/ND (v1, v2, v4, v5)
- TL-WR743N/ND (v1, v2)
- TL-WR840N (v2)
- TL-WR841N/ND (v3, v5, v7, v8, v9, v10, v11, v12)
- TL-WR841N/ND (v1, v2)
- TL-WR843N/ND (v1)
- TL-WR940N (v1, v2, v3, v4, v5, v6)
- TL-WR941ND (v2, v3, v4, v5, v6)
- TL-WR1043N/ND (v1)
- WDR4900
- Ubiquiti
- Ubiquiti
- AirGateway
- AirGateway Pro
- AirRouter
- Bullet
- LS-SR71
- Nanostation XM
- Nanostation Loco XM
- Picostation
- AirGateway
- AirGateway Pro
- AirRouter
- Bullet
- LS-SR71
- Nanostation XM
- Nanostation Loco XM
- Picostation
- Unknown
- Unknown
- A5-V11
- A5-V11
- VoCore
- VoCore
- VoCore (8M, 16M)
- VoCore (8M, 16M)
Atheros target migration
------------------------
@ -235,50 +235,50 @@ Missing devices
The following devices have not yet been integrated into Gluons ath79
targets.
- 8Devices
- 8Devices
- Carambola 2
- Carambola 2
- Aerohive
- Aerohive
- HiveAP 121
- HiveAP 121
- Allnet
- Allnet
- ALL0315
- ALL0315
- Buffalo
- Buffalo
- WZR-HP-G300NH2
- WZR-HP-G450H
- WZR-HP-G300NH2
- WZR-HP-G450H
- GL.iNet
- GL.iNet
- 6408A v1
- 6408A v1
- NETGEAR
- NETGEAR
- WNDR4300
- WNDRMAC
- WNDRMAC v2
- WNDR4300
- WNDRMAC
- WNDRMAC v2
- TP-Link
- TP-Link
- WR2543
- WR2543
- Ubiquiti
- Ubiquiti
- Rocket
- Rocket
- WD
- WD
- MyNet N600
- MyNet N750
- MyNet N600
- MyNet N750
- ZyXEL
- ZyXEL
- NB6616
- NB6716
- NB6616
- NB6716
Features
--------
@ -364,28 +364,28 @@ interfaces. Details can be found in the
Minor changes
-------------
- The ``brcm2708-bcm2708`` ``brcm2708-bcm2709`` ``brcm2708-bcm2710``
targets were renamed to ``bcm27xx-bcm2708`` ``bcm27xx-bcm2709`` and
``bcm27xx-bcm2710``
- The GL.iNet GL-AR750S was moved to the ``ath79-nand`` subtarget
- Gluon now ships the ath10k-ct firmware derivation for
QCA9886 / QCA9888 / QCA9896 / QCA9898 / QCA9984 /
QCA9994 / IPQ4018 / IPQ4028 / IPQ4019 / IPQ4029
radios (`#2541 <https://github.com/freifunk-gluon/gluon/pull/2541>`__)
- WolfSSL instead of OpenSSL is now used when built with WPA3 support
- The option to configure the wireless-channel independent from the
site-selected channel was moved from
``gluon-core.wireless.preserve_channels`` to
``gluon.wireless.preserve_channels``
- ``gluon-info`` is a new command that provides information about the
current node
- ``GLUON_DEPRECATED`` is now set to 0 by default
- To reboot a running gluon-node into setup-mode, Gluon now offers the
``gluon-enter-setup-mode`` command
- Devices without WLAN do not show the private-wifi configuration
anymore
- The Autoupdater now uses the site default branch in case it is
configured to use a non-existent / invalid branch
- The ``brcm2708-bcm2708`` ``brcm2708-bcm2709`` ``brcm2708-bcm2710``
targets were renamed to ``bcm27xx-bcm2708`` ``bcm27xx-bcm2709`` and
``bcm27xx-bcm2710``
- The GL.iNet GL-AR750S was moved to the ``ath79-nand`` subtarget
- Gluon now ships the ath10k-ct firmware derivation for
QCA9886 / QCA9888 / QCA9896 / QCA9898 / QCA9984 /
QCA9994 / IPQ4018 / IPQ4028 / IPQ4019 / IPQ4029
radios (`#2541 <https://github.com/freifunk-gluon/gluon/pull/2541>`__)
- WolfSSL instead of OpenSSL is now used when built with WPA3 support
- The option to configure the wireless-channel independent from the
site-selected channel was moved from
``gluon-core.wireless.preserve_channels`` to
``gluon.wireless.preserve_channels``
- ``gluon-info`` is a new command that provides information about the
current node
- ``GLUON_DEPRECATED`` is now set to 0 by default
- To reboot a running gluon-node into setup-mode, Gluon now offers the
``gluon-enter-setup-mode`` command
- Devices without WLAN do not show the private-wifi configuration
anymore
- The Autoupdater now uses the site default branch in case it is
configured to use a non-existent / invalid branch
Known issues
------------

View File

@ -1 +1 @@
sphinx-rtd-theme==1.2.0
sphinx-rtd-theme==1.0.0

View File

@ -58,7 +58,7 @@ msgid "gluon-config-mode:novpn"
msgstr ""
"<p><strong>Du hast ausgewählt die Internetverbindung (Mesh-VPN) nicht zu "
"nutzen</strong>. Dein Knoten kann also nur dann eine Verbindung zum "
"Freifunk-Netz aufbauen, wenn andere Freifunk-Knoten in WLAN-Reichweite sind.</p>"
"Freifunk-Netz aufbauen, wenn andere Freifunk-Knoten in WLAN-Reichweite sind."
"<p>Bitte schicke uns eine E-Mail mit dem Namen deines Knotens "
"(<em><%= pcdata(hostname) %></em>) und ein paar Informationen an <a href="
"\"mailto:freifunk-keys@lists.in-kiel.de?"

View File

@ -9,13 +9,14 @@
#GLUON_SITE_FEEDS='my_own_packages'
## PACKAGES_$feedname_REPO
# the git repository from where to clone the package feed
# the git repository from where to clone the package feed
#PACKAGES_MY_OWN_PACKAGES_REPO=https://github.com/.../my-own-packages.git
## PACKAGES_$feedname_COMMIT
# the version/commit of the git repository to clone
#PACKAGES_MY_OWN_PACKAGES_COMMIT=123456789aabcda1a69b04278e4d38f2a3f57e49
## PACKAGES_$feedname_BRANCH
# the branch to check out
## PACKAGES_$feedname_BRANCH
# the branch to check out
#PACKAGES_MY_OWN_PACKAGES_BRANCH=my_branch

View File

@ -1,4 +1,4 @@
-- This is an example site configuration for Gluon v2022.1
-- This is an example site configuration for Gluon v2022.1.1
--
-- Take a look at the documentation located at
-- https://gluon.readthedocs.io/ for details.

View File

@ -8,7 +8,7 @@ Gluon's releases are managed using `Git tags`_. If you are just getting
started with Gluon we recommend to use the latest stable release of Gluon.
Take a look at the `list of gluon releases`_ and notice the latest release,
e.g. *v2022.1*. Always get Gluon using git and don't try to download it
e.g. *v2022.1.1*. Always get Gluon using git and don't try to download it
as a Zip archive as the archive will be missing version information.
Please keep in mind that there is no "default Gluon" build; a site configuration
@ -25,20 +25,18 @@ An example configuration can be found in the Gluon repository at *docs/site-exam
Dependencies
------------
To build Gluon, several packages need to be installed on the system. On a
freshly installed Debian Bullseye system the following packages are required:
freshly installed Debian Stretch system the following packages are required:
* `git` (to get Gluon and other dependencies)
* `subversion`
* `python3`
* `build-essential`
* `ecdsautils` (to sign firmware, see `contrib/sign.sh`)
* `gawk`
* `unzip`
* `libncurses-dev` (actually `libncurses5-dev`)
* `libz-dev` (actually `zlib1g-dev`)
* `libssl-dev`
* `libelf-dev` (to build x86-64)
* `wget`
* `rsync`
* `time` (built-in `time` doesn't work)
* `qemu-utils`
@ -52,7 +50,7 @@ Building the images
-------------------
To build Gluon, first check out the repository. Replace *RELEASE* with the
version you'd like to checkout, e.g. *v2022.1*.
version you'd like to checkout, e.g. *v2022.1.1*.
::

View File

@ -15,7 +15,7 @@ Consider these key values:
- and configure `MSS clamping`_ accordingly,
- and announce your link MTU via Router Advertisements and DHCP
.. _MSS clamping: https://tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.cookbook.mtu-mss.html
.. _MSS clamping: https://www.tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.cookbook.mtu-mss.html
- Encapsulation: Account for the overhead created by the configured mesh protocol
encapsulating the payload, which is up to 32 Byte (14 Byte Ethernet + 18 Byte
@ -35,8 +35,6 @@ minimum payload MTU required. This is the lowest recommended value, since going
lower would cause unnecessary fragmentation for clients which respect the announced
link MTU.
.. editorconfig-checker-disable
Example: Our network currently uses batman-adv v15, it therefore requires up
to 32 Bytes of encapsulation overhead on top of the minimal link MTU required for
transporting IPv6.::
@ -74,7 +72,6 @@ Tunneling.::
MTU_HIGH = 1436 Byte - 20 Byte - 8 Byte - 24 Byte - 14 Byte = 1370 Byte
.. editorconfig-checker-enable
Tables for Different VPN Providers
----------------------------------
@ -162,7 +159,7 @@ Maximum MTU
Calculation of different derived MTUs based on a maximum WAN MTU of 1436.
Suggestions:
Sugestions:
- This configuration can be used for fastd and Tunneldigger.

View File

@ -49,13 +49,10 @@ node_prefix6
node_prefix6 = 'fdca::ffee:babe:2::/64'
node_client_prefix6 \: optional, deprecated
DEPRECATED: Don't specify it anymore, this prefix will then
automatically be generated from the domain_seed.
An IPv6 prefix internally used by the l3roamd protocol, used to allow
an efficient handover via unicast when a client roamed.
This is exclusively useful when running a routing mesh protocol
node_client_prefix6
The ipv6 prefix from which the client-specific IP-address is calculated that
is assigned to each node by l3roamd to allow efficient communication when
roaming. This is exclusively useful when running a routing mesh protocol
like babel. e.g. ::
node_client_prefix6 = 'fdca::ffee:babe:3::/64'
@ -448,8 +445,13 @@ interfaces \: optional
The ``client`` role requires exclusive control over an interface. When
the ``client`` role is assigned to an interface at the same time as other
roles (like ``'client', 'mesh'`` in the above example), the other roles take
precedence (enabling ``mesh``, but not ``client`` in the example). In that
case, the ``client`` role is removed from the config of the interface.
precedence (enabling ``mesh``, but not ``client`` in the example).
Such a default configuration still fulfills a purpose (and is in fact the
recommended way to enable "Mesh-on-LAN" by default): The "LAN interface
meshing" checkbox in the advanced network settings will only add or remove
the ``mesh`` role, so the ``client`` role must already be in the configuration
to make the LAN port a regular client interface when the checkbox is disabled.
All interface settings are optional. If unset, the following defaults are
used:

View File

@ -41,10 +41,6 @@ ath79-generic
- WS-AP3705i
* Extreme Networks
- WS-AP3805i
* GL.iNet
- 6416A
@ -57,10 +53,6 @@ ath79-generic
- JT-OR750i
* LibreRouter
- LibreRouter v1 [#missing_radios]_
* Netgear
- WNDR3700 (v1, v2)
@ -99,10 +91,6 @@ ath79-generic
- WS-AP3610
* Teltonika
- RUT230 (v1)
* TP-Link
- Archer A7 (v5)
@ -112,7 +100,9 @@ ath79-generic
- Archer C59 (v1)
- CPE210 (v1.0, v1.1, v2.0, v3.0, v3.1, v3.20)
- CPE220 (v3.0)
- CPE510 (v1.0, v1.1, v2.0, v3.0)
- CPE510 (v1.0, v1.1)
- CPE510 (v2.0)
- CPE510 (v3.0)
- CPE710 (v1.0)
- EAP225-Outdoor (v1)
- RE450 (v1)
@ -122,7 +112,8 @@ ath79-generic
- TL-WR810N (v1)
- TL-WR842N/ND (v3)
- TL-WR1043N/ND (v2, v3, v4, v5)
- WBS210 (v1.20, v2.0)
- WBS210 (v1.20)
- WBS210 (v2.0)
- WBS510 (v1.20)
* Ubiquiti
@ -143,20 +134,14 @@ ath79-generic
ath79-nand
----------
* Aerohive
- HiveAP 121
* GL.iNet
- GL-AR300M
- GL-AR750S
- GL-XE300
* Netgear
- WNDR3700 (v4)
- WNDR4300 (v1)
ath79-mikrotik
--------------
@ -191,8 +176,7 @@ ipq40xx-generic
* AVM
- FRITZ!Box 4040 [#avmflash]_
- FRITZ!Box 7520 (v1) [#eva_ramboot]_ [#lan_as_wan]_
- FRITZ!Box 7530 [#eva_ramboot]_ [#lan_as_wan]_
- FRITZ!Box 7530 [#eva_ramboot]_
- FRITZ!Repeater 1200 [#eva_ramboot]_
* EnGenius
@ -234,7 +218,6 @@ ipq40xx-mikrotik
* Mikrotik
- DISC Lite5 ac (RBDiscG-5acD)
- hAP ac2
- SXTsq 5 ac (RBSXTsqG-5acD)
ipq806x-generic
@ -247,10 +230,6 @@ ipq806x-generic
lantiq-xrx200
-------------
* Arcadyan
- VGV7510KW22 (o2 Box 6431)
* AVM
- FRITZ!Box 7360 (v1, v2) [#avmflash]_ [#lan_as_wan]_
@ -258,10 +237,6 @@ lantiq-xrx200
- FRITZ!Box 7362 SL [#eva_ramboot]_ [#lan_as_wan]_
- FRITZ!Box 7412 [#eva_ramboot]_
* TP-Link
- TD-W8970 (v1) [#lan_as_wan]_
lantiq-xway
-----------
@ -360,23 +335,12 @@ ramips-mt7621
* Cudy
- WR1300 (v1)
- WR2100
- X6 (v1, v2)
* D-Link
- DAP-X1860 (A1)
- DIR-860L (B1)
* GL.iNet
- GL-MT1300
* Mercusys
- MR70X (v1)
* NETGEAR
- EX6150 (v1)
@ -396,10 +360,6 @@ ramips-mt7621
- EdgeRouter X-SFP
- UniFi 6 Lite
* Wavlink
- WS-WN572HP3 (4G)
* ZBT
- WG3526-16M
@ -412,7 +372,7 @@ ramips-mt7621
* Xiaomi
- Xiaomi Mi Router 4A (Gigabit Edition)
- Xiaomi Mi Router 3G (v1, v2)
- Xiaomi Mi Router 3G v2
ramips-mt76x8
-------------
@ -439,8 +399,9 @@ ramips-mt76x8
* TP-Link
- Archer C20 (v4, v5)
- Archer C50 (v3, v4)
- RE200 (v2, v3)
- Archer C50 (v3)
- Archer C50 (v4)
- RE200 (v2)
- RE305 (v1) [#device-class-tiny]
- TL-MR3020 (v3)
- TL-MR3420 (v5)
@ -458,13 +419,6 @@ ramips-mt76x8
- Xiaomi Mi Router 4A (100M International Edition)
- Xiaomi Mi Router 4C
realtek-rtl838x
---------------
* D-Link
- DGS-1210-10P (F1)
rockchip-armv8
--------------
@ -524,10 +478,6 @@ Footnotes
.. [#lan_as_wan]
All LAN ports on this device are used as WAN.
.. [#missing_radios]
This device contains more than two WLAN radios, which is currently
unsupported by Gluon. Only the first two radios will work.
.. [#modular_ethernet]
These devices follow a modular principle,
which means even basic functionality like ethernet is provided by an expansion-board,

View File

@ -15,7 +15,7 @@ The following targets for x86 images exist:
There are three images:
* `generic` (compressed "raw" image, can be written to a disk directly or booted with qemu)
* `generic` (compressed "raw" image, can written to a disk directly or booted with qemu)
* `virtualbox` (VDI image)
* `vmware` (VMDK image)

View File

@ -2,15 +2,15 @@ GLUON_FEEDS='packages routing gluon'
OPENWRT_REPO=https://github.com/openwrt/openwrt.git
OPENWRT_BRANCH=openwrt-22.03
OPENWRT_COMMIT=e500494771537b9f42f78e4d907bed18b6383606
OPENWRT_COMMIT=807483d3365f3dd011e3790695512d443cf2f267
PACKAGES_PACKAGES_REPO=https://github.com/openwrt/packages.git
PACKAGES_PACKAGES_BRANCH=openwrt-22.03
PACKAGES_PACKAGES_COMMIT=55eed1761207f4dfdb8e7d79138f6f65c8849b50
PACKAGES_PACKAGES_COMMIT=f48493b940e04911d50bb76d7418d20754712d5e
PACKAGES_ROUTING_REPO=https://github.com/openwrt/routing.git
PACKAGES_ROUTING_BRANCH=openwrt-22.03
PACKAGES_ROUTING_COMMIT=1cc7676b9f32acc30ec47f15fcb70380d5d6ef01
PACKAGES_ROUTING_COMMIT=1a87333f268bcf0a11e3a665a357cb0d4ec2d680
PACKAGES_GLUON_REPO=https://github.com/freifunk-gluon/packages.git
PACKAGES_GLUON_COMMIT=29912ec6308fd10b47763b4cf28a638d07f59973
PACKAGES_GLUON_COMMIT=04d2b6ffbb6ee02012f2733b7752d8db0d12eaff

View File

@ -6,17 +6,17 @@ local file = '/etc/dropbear/authorized_keys'
local keys = {}
local function load_keys()
for line in io.lines(file) do
keys[line] = true
end
for line in io.lines(file) do
keys[line] = true
end
end
pcall(load_keys)
local f = io.open(file, 'a')
for _, key in ipairs(site.authorized_keys()) do
if not keys[key] then
f:write(key .. '\n')
end
if not keys[key] then
f:write(key .. '\n')
end
end
f:close()

View File

@ -2,15 +2,15 @@
stop() {
if [ -x /etc/init.d/"$1" ]; then
echo "Stopping $1..."
/etc/init.d/"$1" stop
fi
if [ -x /etc/init.d/"$1" ]; then
echo "Stopping $1..."
/etc/init.d/"$1" stop
fi
}
start_enabled() {
if [ -x /etc/init.d/"$1" ] && /etc/init.d/"$1" enabled; then
echo "Starting $1..."
/etc/init.d/"$1" start
fi
if [ -x /etc/init.d/"$1" ] && /etc/init.d/"$1" enabled; then
echo "Starting $1..."
/etc/init.d/"$1" start
fi
}

View File

@ -1,5 +1,27 @@
/* SPDX-FileCopyrightText: 2016, Matthias Schiffer <mschiffer@universe-factory.net> */
/* SPDX-License-Identifier: BSD-2-Clause */
/*
Copyright (c) 2016, Matthias Schiffer <mschiffer@universe-factory.net>
All rights reserved.
Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are met:
1. Redistributions of source code must retain the above copyright notice,
this list of conditions and the following disclaimer.
2. Redistributions in binary form must reproduce the above copyright notice,
this list of conditions and the following disclaimer in the documentation
and/or other materials provided with the distribution.
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include <respondd.h>
@ -37,7 +59,7 @@ static struct json_object * get_autoupdater(void) {
return ret;
error:
error:
uci_free_context(ctx);
return NULL;
}

View File

@ -10,11 +10,11 @@ return function(form, uci)
local msg = pkg_i18n.translate(
'Your internet connection can be used to establish a ' ..
'VPN connection with other nodes. ' ..
'Enable this option if there are no other nodes reachable ' ..
'over WLAN in your vicinity or you want to make a part of ' ..
'your connection\'s bandwidth available for the network. You can limit how ' ..
'much bandwidth the node will use at most.'
'VPN connection with other nodes. ' ..
'Enable this option if there are no other nodes reachable ' ..
'over WLAN in your vicinity or you want to make a part of ' ..
'your connection\'s bandwidth available for the network. You can limit how ' ..
'much bandwidth the node will use at most.'
)
local s = form:section(Section, nil, msg)

View File

@ -1,7 +1,12 @@
<%#
SPDX-License-Identifier: Apache-2.0
SPDX-FileCopyrightText: 2008 Steven Barth <steven@midlink.org>
SPDX-FileCopyrightText: 2008-2010 Jo-Philipp Wich <xm@subsignal.org>
Copyright 2008 Steven Barth <steven@midlink.org>
Copyright 2008-2010 Jo-Philipp Wich <xm@subsignal.org>
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
-%>
<%
local pretty_hostname = require "pretty_hostname"
@ -38,7 +43,7 @@ SPDX-FileCopyrightText: 2008-2010 Jo-Philipp Wich <xm@subsignal.org>
table.sort(ret,
function(a, b)
return (node.nodes[a].order or 100)
< (node.nodes[b].order or 100)
< (node.nodes[b].order or 100)
end
)
return ret
@ -120,7 +125,7 @@ SPDX-FileCopyrightText: 2008-2010 Jo-Philipp Wich <xm@subsignal.org>
</div>
<div id="maincontainer">
<%
<%
if not hidenav then
menutree(unpack(request))
end

File diff suppressed because one or more lines are too long

View File

@ -6,7 +6,7 @@
sass --sourcemap=none -C -t compressed sass/gluon.scss files/lib/gluon/config-mode/www/static/gluon.css
When committing changes to this file make sure to commit the respective
When commiting changes to this file make sure to commit the respective
changes to the compilid version within the same commit!
*/
@ -273,10 +273,6 @@ input[type=checkbox] {
text-align: center;
font-size: 1.7em;
}
&[disabled] + label {
background-color: #dcdcdc !important;
}
}
input[type=radio] {
@ -370,13 +366,6 @@ input[type=password] {
min-width: 20em;
}
.gluon-multi-list-option-descr {
display: inline-block;
vertical-align: top;
margin-top: 0.35em;
margin-left: 0.4em;
}
.gluon-button {
@include button;
@ -529,11 +518,6 @@ textarea {
}
}
.gluon-warning {
@extend .gluon-section-descr;
background: lighten($ffyellow, 35);
}
.error500 {
border: 1px dotted #ff0000;
background-color: #ffffff;

View File

@ -66,7 +66,6 @@ need_boolean(in_site({'poe_passthrough'}), false)
if need_table({'dns'}, nil, false) then
need_string_array_match({'dns', 'servers'}, '^[%x:]+$')
need_number({'dns', 'cacheentries'}, false)
end
need_string_array(in_domain({'next_node', 'name'}), false)
@ -77,11 +76,7 @@ need_boolean(in_domain({'mesh', 'vxlan'}), false)
local interfaces_roles = {'client', 'uplink', 'mesh'}
for _, config in ipairs({'wan', 'lan', 'single'}) do
local default_roles = in_site({'interfaces', config, 'default_roles'})
need_array_of(default_roles, interfaces_roles, false)
need_array_elements_exclusive(default_roles, 'client', 'mesh', false)
need_array_elements_exclusive(default_roles, 'client', 'uplink', false)
need_array_of(in_site({'interfaces', config, 'default_roles'}), interfaces_roles, false)
end
obsolete({'mesh_on_wan'}, 'Use interfaces.wan.default_roles.')

View File

@ -1,10 +1,5 @@
#!/bin/sh
# Work around an issue with wifi setup timing by waiting a bit
# while device initialisation is ongoing.
# https://github.com/freifunk-gluon/gluon/issues/2779
sleep 3
gluon-reconfigure
exit 0

View File

@ -5,90 +5,90 @@
init_proto "$@"
proto_gluon_wired_init_config() {
proto_config_add_boolean transitive
proto_config_add_int index
proto_config_add_boolean vxlan
proto_config_add_string vxpeer6addr
proto_config_add_boolean transitive
proto_config_add_int index
proto_config_add_boolean vxlan
proto_config_add_string vxpeer6addr
}
xor2() {
echo -n "${1:0:1}"
echo -n "${1:1:1}" | tr '0123456789abcdef' '23016745ab89efcd'
echo -n "${1:0:1}"
echo -n "${1:1:1}" | tr '0123456789abcdef' '23016745ab89efcd'
}
is_layer3_device () {
local addrlen="$(cat "/sys/class/net/$1/addr_len")"
test "$addrlen" -eq 0
local addrlen="$(cat "/sys/class/net/$1/addr_len")"
test "$addrlen" -eq 0
}
# shellcheck disable=SC2086
interface_linklocal() {
if is_layer3_device "$1"; then
if ! ubus call network.interface dump | \
jsonfilter -e "@.interface[@.l3_device='$1']['ipv6-address'][*].address" | \
grep -e '^fe[89ab][0-9a-f]' -m 1; then
proto_notify_error "$config" "MISSING_LL_ADDR_ON_LOWER_IFACE"
proto_block_restart "$config"
exit 1
fi
return
fi
if is_layer3_device "$1"; then
if ! ubus call network.interface dump | \
jsonfilter -e "@.interface[@.l3_device='$1']['ipv6-address'][*].address" | \
grep -e '^fe[89ab][0-9a-f]' -m 1; then
proto_notify_error "$config" "MISSING_LL_ADDR_ON_LOWER_IFACE"
proto_block_restart "$config"
exit 1
fi
return
fi
local macaddr="$(ubus call network.device status '{"name": "'"$1"'"}' | jsonfilter -e '@.macaddr')"
local oldIFS="$IFS"; IFS=':'; set -- $macaddr; IFS="$oldIFS"
local macaddr="$(ubus call network.device status '{"name": "'"$1"'"}' | jsonfilter -e '@.macaddr')"
local oldIFS="$IFS"; IFS=':'; set -- $macaddr; IFS="$oldIFS"
echo "fe80::$(xor2 "$1")$2:$3ff:fe$4:$5$6"
echo "fe80::$(xor2 "$1")$2:$3ff:fe$4:$5$6"
}
proto_gluon_wired_setup() {
local config="$1"
local ifname="$2"
local config="$1"
local ifname="$2"
local meshif="$config"
local meshif="$config"
local transitive index vxlan vxpeer6addr
json_get_vars transitive index vxlan vxpeer6addr
local transitive index vxlan vxpeer6addr
json_get_vars transitive index vxlan vxpeer6addr
# default args
[ -z "$vxlan" ] && vxlan=1
[ -z "$vxpeer6addr" ] && vxpeer6addr='ff02::15c'
# default args
[ -z "$vxlan" ] && vxlan=1
[ -z "$vxpeer6addr" ] && vxpeer6addr='ff02::15c'
proto_init_update "$ifname" 1
proto_send_update "$config"
proto_init_update "$ifname" 1
proto_send_update "$config"
if [ "$vxlan" -eq 1 ]; then
meshif="vx_$config"
if [ "$vxlan" -eq 1 ]; then
meshif="vx_$config"
json_init
json_add_string name "$meshif"
[ -n "$index" ] && json_add_string macaddr "$(lua -e "print(require('gluon.util').generate_mac($index))")"
json_add_string proto 'vxlan6'
json_add_string tunlink "$config"
# ip6addr (the lower interface ip6) is used by the vxlan.sh proto
json_add_string ip6addr "$(interface_linklocal "$ifname")"
json_add_string peer6addr "$vxpeer6addr"
json_add_int vid "$(lua -e 'print(tonumber(require("gluon.util").domain_seed_bytes("gluon-mesh-vxlan", 3), 16))')"
json_add_boolean rxcsum '0'
json_add_boolean txcsum '0'
json_close_object
ubus call network add_dynamic "$(json_dump)"
fi
json_init
json_add_string name "$meshif"
[ -n "$index" ] && json_add_string macaddr "$(lua -e "print(require('gluon.util').generate_mac($index))")"
json_add_string proto 'vxlan6'
json_add_string tunlink "$config"
# ip6addr (the lower interface ip6) is used by the vxlan.sh proto
json_add_string ip6addr "$(interface_linklocal "$ifname")"
json_add_string peer6addr "$vxpeer6addr"
json_add_int vid "$(lua -e 'print(tonumber(require("gluon.util").domain_seed_bytes("gluon-mesh-vxlan", 3), 16))')"
json_add_boolean rxcsum '0'
json_add_boolean txcsum '0'
json_close_object
ubus call network add_dynamic "$(json_dump)"
fi
json_init
json_add_string name "${config}_mesh"
json_add_string ifname "@${meshif}"
json_add_string proto 'gluon_mesh'
json_add_boolean fixed_mtu 1
[ -n "$transitive" ] && json_add_boolean transitive "$transitive"
json_close_object
ubus call network add_dynamic "$(json_dump)"
json_init
json_add_string name "${config}_mesh"
json_add_string ifname "@${meshif}"
json_add_string proto 'gluon_mesh'
json_add_boolean fixed_mtu 1
[ -n "$transitive" ] && json_add_boolean transitive "$transitive"
json_close_object
ubus call network add_dynamic "$(json_dump)"
}
proto_gluon_wired_teardown() {
local config="$1"
local config="$1"
proto_init_update "*" 0
proto_send_update "$config"
proto_init_update "*" 0
proto_send_update "$config"
}
add_protocol gluon_wired

View File

@ -55,14 +55,6 @@ local function merge(a, b)
return m
end
local function contains(table, val)
for i=1,#table do
if table[i] == val then
return true
end
end
return false
end
local function path_to_string(path)
if path.is_value then
@ -378,21 +370,6 @@ function M.need_array_of(path, array, required)
return M.need_array(path, function(e) M.need_one_of(e, array) end, required)
end
function M.need_array_elements_exclusive(path, a, b, required)
local val = need_type(path, 'table', required, 'be an array')
if not val then
return nil
end
if contains(val, a) and contains(val, b) then
config_error(conf_src(path),
'expected %s to contain only one of the elements %s and %s, but not both.',
path_to_string(path), format(a), format(b))
end
return val
end
function M.need_chanlist(path, channels, required)
local valid_chanlist = check_chanlist(channels)
return M.need(path, valid_chanlist, required,

View File

@ -87,9 +87,6 @@ local primary_addrs = {
{'ipq806x', 'generic', {
'netgear,r7800',
}},
{'lantiq', 'xrx200', {
'arcadyan,vgv7510kw22-nor',
}},
{'lantiq', 'xway', {
'netgear,dgn3500b',
}},

View File

@ -67,14 +67,6 @@ elseif platform.match('ramips', 'mt7621', {
'netgear,wac104',
}) then
lan_ifname, wan_ifname = 'lan2 lan3 lan4', 'lan1'
elseif platform.match('lantiq', 'xrx200', {
'arcadyan,vgv7510kw22-nor',
}) then
lan_ifname, wan_ifname = 'lan1 lan2 lan3 lan4', 'wan'
elseif platform.match('realtek', 'rtl838x', {
'd-link,dgs-1210-10p',
}) then
lan_ifname, wan_ifname = 'lan2 lan3 lan4 lan5 lan6 lan7 lan8 lan9 lan10', 'lan1'
end
if wan_ifname and lan_ifname then

View File

@ -63,19 +63,4 @@ for iface in pairs(interfaces) do
end
end
-- Fix invalid role configurations
uci:foreach('gluon', 'interface', function(interface)
local function has_role(role)
return util.contains(interface.role, role)
end
if has_role('client') and (has_role('mesh') or has_role('uplink')) then
-- remove 'client' role
util.remove_from_set(interface.role, 'client')
uci:set('gluon', interface['.name'], 'role', interface.role)
end
end)
uci:save('gluon')

View File

@ -4,19 +4,6 @@ local uci = require('simple-uci').cursor()
local sysconfig = require 'gluon.sysconfig'
local util = require 'gluon.util'
local json = require 'jsonc'
local function get_network_mac(name)
local board_data = json.load('/etc/board.json')
local network_data = (board_data or {}).network
if network_data == nil then
return nil
end
local ifdata = network_data[name] or {}
return ifdata.macaddr
end
local wan = uci:get_all('network_gluon-old', 'wan') or {}
local wan6 = uci:get_all('network_gluon-old', 'wan6') or {}
@ -40,7 +27,6 @@ uci:section('network', 'interface', 'wan', {
ipaddr = wan.ipaddr,
netmask = wan.netmask,
gateway = wan.gateway,
macaddr = get_network_mac('wan'),
ifname = util.get_role_interfaces(uci, 'uplink'),
type = 'bridge',
igmp_snooping = true,

View File

@ -53,19 +53,19 @@ local function is_outdoor()
end
local function get_channel(radio, config)
if radio.band == '5g' and is_outdoor() then
local channel
if wireless.preserve_channels(uci) then
-- preserved channel always wins
channel = radio.channel
elseif radio.band == '5g' and is_outdoor() then
-- actual channel will be picked and probed from chanlist
return 'auto'
channel = 'auto'
end
return config.channel()
return channel or config.channel()
end
local function get_htmode(radio)
if wireless.preserve_channels(uci) then
return radio.htmode
end
if radio.band == '5g' and is_outdoor() then
local outdoor_htmode = uci:get('gluon', 'wireless', 'outdoor_' .. radio['.name'] .. '_htmode')
if outdoor_htmode ~= nil then
@ -175,20 +175,6 @@ local function configure_mesh_wireless(radio, index, config, disabled)
)
end
local function set_channels(radio, radio_name, config)
if wireless.preserve_channels(uci) then
return
end
local channel = get_channel(radio, config)
uci:set('wireless', radio_name, 'channel', channel)
local chanlist
if radio.band == '5g' and is_outdoor() then
chanlist = config.outdoor_chanlist()
end
uci:set('wireless', radio_name, 'channels', chanlist)
end
wireless.foreach_radio(uci, function(radio, index, config)
local radio_name = radio['.name']
@ -204,13 +190,13 @@ wireless.foreach_radio(uci, function(radio, index, config)
return
end
local channel = get_channel(radio, config)
local htmode = get_htmode(radio)
local beacon_interval = config.beacon_interval()
uci:delete('wireless', radio_name, 'disabled')
set_channels(radio, radio_name, config)
uci:set('wireless', radio_name, 'channel', channel)
uci:set('wireless', radio_name, 'htmode', htmode)
uci:set('wireless', radio_name, 'country', site.regdom())
@ -222,17 +208,22 @@ wireless.foreach_radio(uci, function(radio, index, config)
uci:set('wireless', radio_name, 'legacy_rates', false)
configure_mesh_wireless(radio, index, config)
elseif (band == '5g') then
-- ToDo: Remove in v2024.x
local hostapd_options = uci:get_list('wireless', radio_name, 'hostapd_options')
util.remove_from_set(hostapd_options, 'country3=0x4f')
uci:set_list('wireless', radio_name, 'hostapd_options', hostapd_options)
if is_outdoor() then
uci:set('wireless', radio_name, 'channels', config.outdoor_chanlist())
-- enforce outdoor channels by filtering the regdom for outdoor channels
uci:set('wireless', radio_name, 'country3', '0x4f')
local hostapd_options = uci:get_list('wireless', radio_name, 'hostapd_options')
util.add_to_set(hostapd_options, 'country3=0x4f')
uci:set_list('wireless', radio_name, 'hostapd_options', hostapd_options)
configure_mesh_wireless(radio, index, config, true)
else
uci:delete('wireless', radio_name, 'country3')
uci:delete('wireless', radio_name, 'channels')
local hostapd_options = uci:get_list('wireless', radio_name, 'hostapd_options')
util.remove_from_set(hostapd_options, 'country3=0x4f')
uci:set_list('wireless', radio_name, 'hostapd_options', hostapd_options)
configure_mesh_wireless(radio, index, config)
end
end

View File

@ -1,63 +0,0 @@
#!/usr/bin/lua
local uci = require('simple-uci').cursor()
local platform = require 'gluon.platform'
if not platform.is_cellular_device() then
return
end
local function set_or_delete(package, section, option, val)
if val ~= nil and string.len(val) ~= 0 then
uci:set(package, section, option, val)
else
uci:delete(package, section, option)
end
end
local function setup_ncm_qmi(devpath, control_type, delay)
local pdptype = uci:get('gluon', 'cellular', 'pdptype')
local pincode = uci:get('gluon', 'cellular', 'pin')
local username = uci:get('gluon', 'cellular', 'username')
local password = uci:get('gluon', 'cellular', 'password')
uci:section('network', 'interface', 'cellular', {
proto = control_type,
device = devpath,
disabled = not uci:get_bool('gluon', 'cellular', 'enabled'),
pdptype = pdptype,
apn = uci:get('gluon', 'cellular', 'apn'),
})
if pdptype ~= 'IP' then
uci:set('network', 'cellular', 'ipv6', 'auto')
else
uci:delete('network', 'cellular', 'ipv6')
end
set_or_delete('network', 'cellular', 'pincode', pincode)
set_or_delete('network', 'cellular', 'username', username)
set_or_delete('network', 'cellular', 'password', password)
set_or_delete('network', 'cellular', 'delay', delay)
end
if platform.match('ath79', 'nand', {
'glinet,gl-xe300',
}) then
setup_ncm_qmi('/dev/cdc-wdm0', 'qmi', 15)
elseif platform.match('ath79', 'nand', {
'zte,mf281',
}) then
setup_ncm_qmi('/dev/ttyACM0', 'ncm', 15)
elseif platform.match('ipq40xx', 'generic', {
'glinet,gl-ap1300',
}) then
setup_ncm_qmi('/dev/cdc-wdm0', 'qmi', 15)
elseif platform.match('ramips', 'mt7621', {
'wavlink,ws-wn572hp3-4g',
}) then
setup_ncm_qmi('/dev/ttyUSB2', 'ncm', 15)
end
uci:save('network')

View File

@ -1,7 +1,6 @@
#!/usr/bin/lua
local uci = require('simple-uci').cursor()
local platform = require 'gluon.platform'
local defaults = uci:get_first('firewall', 'defaults')
@ -17,18 +16,8 @@ local function reject_input_on_wan(zone)
return true
end
local function add_cellular_wan(zone)
if zone.name == 'wan' then
uci:set('firewall', zone['.name'], 'network', {'wan', 'wan6', 'cellular_4', 'cellular_6'})
end
end
uci:foreach('firewall', 'zone', reject_input_on_wan)
if platform.is_cellular_device() then
uci:foreach('firewall', 'zone', add_cellular_wan)
end
for _, zone in ipairs({'mesh', 'loc_client', 'wired_mesh'}) do
-- Other packages assign interfaces to these zones
uci:section('firewall', 'zone', zone, {

View File

@ -12,7 +12,7 @@ uci:set('dhcp', dnsmasq, 'localise_queries', true)
uci:set('dhcp', dnsmasq, 'localservice', false)
uci:set('dhcp', dnsmasq, 'server', dns.servers)
uci:set('dhcp', dnsmasq, 'cachesize', dns.cacheentries)
uci:delete('dhcp', dnsmasq, 'cachesize')
uci:delete('firewall', 'client_dns')
if dns.servers then

View File

@ -26,7 +26,6 @@ local values = {
.. ' / ' .. util.trim(util.readfile('/lib/gluon/site-version')) },
{ 'Firmware release', util.trim(util.readfile('/lib/gluon/release')) },
{ 'Site', site.site_name() },
{ 'Domain', uci:get('gluon', 'core', 'domain') or 'n/a' },
{ 'Public VPN key', pubkey or 'n/a' },
}

View File

@ -25,7 +25,6 @@ end
function M.is_outdoor_device()
if M.match('ath79', 'generic', {
'devolo,dvl1750x',
'librerouter,librerouter-v1',
'plasmacloud,pa300',
'plasmacloud,pa300e',
'tplink,cpe210-v1',
@ -60,31 +59,6 @@ function M.is_outdoor_device()
'mikrotik,sxtsq-5-ac',
}) then
return true
elseif M.match('ramips', 'mt7621', {
'wavlink,ws-wn572hp3-4g',
'zyxel,nwa55axe',
}) then
return true
end
return false
end
function M.is_cellular_device()
if M.match('ath79', 'nand', {
'zte,mf281',
'glinet,gl-xe300',
}) then
return true
elseif M.match('ipq40xx', 'generic', {
'glinet,gl-ap1300',
}) then
return true
elseif M.match('ramips', 'mt7621', {
'wavlink,ws-wn572hp3-4g',
}) then
return true
end
return false

View File

@ -131,9 +131,9 @@ function M.get_mesh_devices(uconn)
local dump = uconn:call("network.interface", "dump", {})
local devices = {}
for _, interface in ipairs(dump.interface) do
if ( (interface.proto == "gluon_mesh") and interface.up ) then
if ( (interface.proto == "gluon_mesh") and interface.up ) then
table.insert(devices, interface.device)
end
end
end
return devices
end

View File

@ -23,7 +23,7 @@ local function find_phy_by_path(path)
path_prefix = 'platform/'
end
-- Get all available PHYs of the device and determine the one with the lowest index
-- Get all available PHYs of the device and dertermine the one with the lowest index
local phy_names = dirent.dir('/sys/devices/' .. path_prefix .. device_path .. '/ieee80211')
local device_phy_idxs = {}
for _, v in ipairs(phy_names) do

View File

@ -10,104 +10,104 @@
static struct json_object * gluon_site_udata(lua_State *L, int narg) {
return *(struct json_object **)luaL_checkudata(L, narg, UDATA);
return *(struct json_object **)luaL_checkudata(L, narg, UDATA);
}
static void gluon_site_push_none(lua_State *L) {
lua_pushlightuserdata(L, gluon_site_push_none);
lua_rawget(L, LUA_REGISTRYINDEX);
lua_pushlightuserdata(L, gluon_site_push_none);
lua_rawget(L, LUA_REGISTRYINDEX);
}
static void gluon_site_do_wrap(lua_State *L, struct json_object *obj) {
struct json_object **objp = lua_newuserdata(L, sizeof(struct json_object *));
*objp = json_object_get(obj);
luaL_getmetatable(L, UDATA);
lua_setmetatable(L, -2);
struct json_object **objp = lua_newuserdata(L, sizeof(struct json_object *));
*objp = json_object_get(obj);
luaL_getmetatable(L, UDATA);
lua_setmetatable(L, -2);
}
static void gluon_site_wrap(lua_State *L, struct json_object *obj) {
if (obj)
gluon_site_do_wrap(L, obj);
else
gluon_site_push_none(L);
if (obj)
gluon_site_do_wrap(L, obj);
else
gluon_site_push_none(L);
}
static int gluon_site_index(lua_State *L) {
struct json_object *obj = gluon_site_udata(L, 1);
const char *key;
lua_Number lua_index;
size_t index;
struct json_object *v = NULL;
struct json_object *obj = gluon_site_udata(L, 1);
const char *key;
lua_Number lua_index;
size_t index;
struct json_object *v = NULL;
switch (json_object_get_type(obj)) {
switch (json_object_get_type(obj)) {
case json_type_object:
key = lua_tostring(L, 2);
if (key)
json_object_object_get_ex(obj, key, &v);
break;
key = lua_tostring(L, 2);
if (key)
json_object_object_get_ex(obj, key, &v);
break;
case json_type_array:
index = lua_index = lua_tonumber(L, 2);
if (lua_index == (lua_Number)index && index >= 1)
v = json_object_array_get_idx(obj, index-1);
break;
index = lua_index = lua_tonumber(L, 2);
if (lua_index == (lua_Number)index && index >= 1)
v = json_object_array_get_idx(obj, index-1);
break;
case json_type_string:
case json_type_null:
break;
case json_type_null:
break;
case json_type_boolean:
case json_type_int:
case json_type_double:
luaL_error(L, "attempt to index a number or boolean value");
__builtin_unreachable();
}
luaL_error(L, "attempt to index a number or boolean value");
__builtin_unreachable();
}
gluon_site_wrap(L, v);
return 1;
gluon_site_wrap(L, v);
return 1;
}
static int gluon_site_call(lua_State *L) {
struct json_object *obj = gluon_site_udata(L, 1);
struct json_object *obj = gluon_site_udata(L, 1);
if (obj) {
lua_jsonc_push_json(L, obj);
} else {
if (lua_isnone(L, 2))
lua_pushnil(L);
else
lua_pushvalue(L, 2);
}
if (obj) {
lua_jsonc_push_json(L, obj);
} else {
if (lua_isnone(L, 2))
lua_pushnil(L);
else
lua_pushvalue(L, 2);
}
return 1;
return 1;
}
static int gluon_site_gc(lua_State *L) {
json_object_put(gluon_site_udata(L, 1));
return 0;
json_object_put(gluon_site_udata(L, 1));
return 0;
}
static const luaL_reg R[] = {
{ "__index", gluon_site_index },
{ "__call", gluon_site_call },
{ "__gc", gluon_site_gc },
{}
{ "__index", gluon_site_index },
{ "__call", gluon_site_call },
{ "__gc", gluon_site_gc },
{}
};
int luaopen_gluon_site(lua_State *L) {
luaL_newmetatable(L, UDATA);
luaL_register(L, NULL, R);
lua_pop(L, 1);
luaL_newmetatable(L, UDATA);
luaL_register(L, NULL, R);
lua_pop(L, 1);
/* Create "none" object */
lua_pushlightuserdata(L, gluon_site_push_none);
gluon_site_do_wrap(L, NULL);
lua_rawset(L, LUA_REGISTRYINDEX);
/* Create "none" object */
lua_pushlightuserdata(L, gluon_site_push_none);
gluon_site_do_wrap(L, NULL);
lua_rawset(L, LUA_REGISTRYINDEX);
struct json_object *site = gluonutil_load_site_config();
gluon_site_wrap(L, site);
json_object_put(site);
struct json_object *site = gluonutil_load_site_config();
gluon_site_wrap(L, site);
json_object_put(site);
return 1;
}

View File

@ -0,0 +1,339 @@
GNU GENERAL PUBLIC LICENSE
Version 2, June 1991
Copyright (C) 1989, 1991 Free Software Foundation, Inc.,
51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
Everyone is permitted to copy and distribute verbatim copies
of this license document, but changing it is not allowed.
Preamble
The licenses for most software are designed to take away your
freedom to share and change it. By contrast, the GNU General Public
License is intended to guarantee your freedom to share and change free
software--to make sure the software is free for all its users. This
General Public License applies to most of the Free Software
Foundation's software and to any other program whose authors commit to
using it. (Some other Free Software Foundation software is covered by
the GNU Lesser General Public License instead.) You can apply it to
your programs, too.
When we speak of free software, we are referring to freedom, not
price. Our General Public Licenses are designed to make sure that you
have the freedom to distribute copies of free software (and charge for
this service if you wish), that you receive source code or can get it
if you want it, that you can change the software or use pieces of it
in new free programs; and that you know you can do these things.
To protect your rights, we need to make restrictions that forbid
anyone to deny you these rights or to ask you to surrender the rights.
These restrictions translate to certain responsibilities for you if you
distribute copies of the software, or if you modify it.
For example, if you distribute copies of such a program, whether
gratis or for a fee, you must give the recipients all the rights that
you have. You must make sure that they, too, receive or can get the
source code. And you must show them these terms so they know their
rights.
We protect your rights with two steps: (1) copyright the software, and
(2) offer you this license which gives you legal permission to copy,
distribute and/or modify the software.
Also, for each author's protection and ours, we want to make certain
that everyone understands that there is no warranty for this free
software. If the software is modified by someone else and passed on, we
want its recipients to know that what they have is not the original, so
that any problems introduced by others will not reflect on the original
authors' reputations.
Finally, any free program is threatened constantly by software
patents. We wish to avoid the danger that redistributors of a free
program will individually obtain patent licenses, in effect making the
program proprietary. To prevent this, we have made it clear that any
patent must be licensed for everyone's free use or not licensed at all.
The precise terms and conditions for copying, distribution and
modification follow.
GNU GENERAL PUBLIC LICENSE
TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
0. This License applies to any program or other work which contains
a notice placed by the copyright holder saying it may be distributed
under the terms of this General Public License. The "Program", below,
refers to any such program or work, and a "work based on the Program"
means either the Program or any derivative work under copyright law:
that is to say, a work containing the Program or a portion of it,
either verbatim or with modifications and/or translated into another
language. (Hereinafter, translation is included without limitation in
the term "modification".) Each licensee is addressed as "you".
Activities other than copying, distribution and modification are not
covered by this License; they are outside its scope. The act of
running the Program is not restricted, and the output from the Program
is covered only if its contents constitute a work based on the
Program (independent of having been made by running the Program).
Whether that is true depends on what the Program does.
1. You may copy and distribute verbatim copies of the Program's
source code as you receive it, in any medium, provided that you
conspicuously and appropriately publish on each copy an appropriate
copyright notice and disclaimer of warranty; keep intact all the
notices that refer to this License and to the absence of any warranty;
and give any other recipients of the Program a copy of this License
along with the Program.
You may charge a fee for the physical act of transferring a copy, and
you may at your option offer warranty protection in exchange for a fee.
2. You may modify your copy or copies of the Program or any portion
of it, thus forming a work based on the Program, and copy and
distribute such modifications or work under the terms of Section 1
above, provided that you also meet all of these conditions:
a) You must cause the modified files to carry prominent notices
stating that you changed the files and the date of any change.
b) You must cause any work that you distribute or publish, that in
whole or in part contains or is derived from the Program or any
part thereof, to be licensed as a whole at no charge to all third
parties under the terms of this License.
c) If the modified program normally reads commands interactively
when run, you must cause it, when started running for such
interactive use in the most ordinary way, to print or display an
announcement including an appropriate copyright notice and a
notice that there is no warranty (or else, saying that you provide
a warranty) and that users may redistribute the program under
these conditions, and telling the user how to view a copy of this
License. (Exception: if the Program itself is interactive but
does not normally print such an announcement, your work based on
the Program is not required to print an announcement.)
These requirements apply to the modified work as a whole. If
identifiable sections of that work are not derived from the Program,
and can be reasonably considered independent and separate works in
themselves, then this License, and its terms, do not apply to those
sections when you distribute them as separate works. But when you
distribute the same sections as part of a whole which is a work based
on the Program, the distribution of the whole must be on the terms of
this License, whose permissions for other licensees extend to the
entire whole, and thus to each and every part regardless of who wrote it.
Thus, it is not the intent of this section to claim rights or contest
your rights to work written entirely by you; rather, the intent is to
exercise the right to control the distribution of derivative or
collective works based on the Program.
In addition, mere aggregation of another work not based on the Program
with the Program (or with a work based on the Program) on a volume of
a storage or distribution medium does not bring the other work under
the scope of this License.
3. You may copy and distribute the Program (or a work based on it,
under Section 2) in object code or executable form under the terms of
Sections 1 and 2 above provided that you also do one of the following:
a) Accompany it with the complete corresponding machine-readable
source code, which must be distributed under the terms of Sections
1 and 2 above on a medium customarily used for software interchange; or,
b) Accompany it with a written offer, valid for at least three
years, to give any third party, for a charge no more than your
cost of physically performing source distribution, a complete
machine-readable copy of the corresponding source code, to be
distributed under the terms of Sections 1 and 2 above on a medium
customarily used for software interchange; or,
c) Accompany it with the information you received as to the offer
to distribute corresponding source code. (This alternative is
allowed only for noncommercial distribution and only if you
received the program in object code or executable form with such
an offer, in accord with Subsection b above.)
The source code for a work means the preferred form of the work for
making modifications to it. For an executable work, complete source
code means all the source code for all modules it contains, plus any
associated interface definition files, plus the scripts used to
control compilation and installation of the executable. However, as a
special exception, the source code distributed need not include
anything that is normally distributed (in either source or binary
form) with the major components (compiler, kernel, and so on) of the
operating system on which the executable runs, unless that component
itself accompanies the executable.
If distribution of executable or object code is made by offering
access to copy from a designated place, then offering equivalent
access to copy the source code from the same place counts as
distribution of the source code, even though third parties are not
compelled to copy the source along with the object code.
4. You may not copy, modify, sublicense, or distribute the Program
except as expressly provided under this License. Any attempt
otherwise to copy, modify, sublicense or distribute the Program is
void, and will automatically terminate your rights under this License.
However, parties who have received copies, or rights, from you under
this License will not have their licenses terminated so long as such
parties remain in full compliance.
5. You are not required to accept this License, since you have not
signed it. However, nothing else grants you permission to modify or
distribute the Program or its derivative works. These actions are
prohibited by law if you do not accept this License. Therefore, by
modifying or distributing the Program (or any work based on the
Program), you indicate your acceptance of this License to do so, and
all its terms and conditions for copying, distributing or modifying
the Program or works based on it.
6. Each time you redistribute the Program (or any work based on the
Program), the recipient automatically receives a license from the
original licensor to copy, distribute or modify the Program subject to
these terms and conditions. You may not impose any further
restrictions on the recipients' exercise of the rights granted herein.
You are not responsible for enforcing compliance by third parties to
this License.
7. If, as a consequence of a court judgment or allegation of patent
infringement or for any other reason (not limited to patent issues),
conditions are imposed on you (whether by court order, agreement or
otherwise) that contradict the conditions of this License, they do not
excuse you from the conditions of this License. If you cannot
distribute so as to satisfy simultaneously your obligations under this
License and any other pertinent obligations, then as a consequence you
may not distribute the Program at all. For example, if a patent
license would not permit royalty-free redistribution of the Program by
all those who receive copies directly or indirectly through you, then
the only way you could satisfy both it and this License would be to
refrain entirely from distribution of the Program.
If any portion of this section is held invalid or unenforceable under
any particular circumstance, the balance of the section is intended to
apply and the section as a whole is intended to apply in other
circumstances.
It is not the purpose of this section to induce you to infringe any
patents or other property right claims or to contest validity of any
such claims; this section has the sole purpose of protecting the
integrity of the free software distribution system, which is
implemented by public license practices. Many people have made
generous contributions to the wide range of software distributed
through that system in reliance on consistent application of that
system; it is up to the author/donor to decide if he or she is willing
to distribute software through any other system and a licensee cannot
impose that choice.
This section is intended to make thoroughly clear what is believed to
be a consequence of the rest of this License.
8. If the distribution and/or use of the Program is restricted in
certain countries either by patents or by copyrighted interfaces, the
original copyright holder who places the Program under this License
may add an explicit geographical distribution limitation excluding
those countries, so that distribution is permitted only in or among
countries not thus excluded. In such case, this License incorporates
the limitation as if written in the body of this License.
9. The Free Software Foundation may publish revised and/or new versions
of the General Public License from time to time. Such new versions will
be similar in spirit to the present version, but may differ in detail to
address new problems or concerns.
Each version is given a distinguishing version number. If the Program
specifies a version number of this License which applies to it and "any
later version", you have the option of following the terms and conditions
either of that version or of any later version published by the Free
Software Foundation. If the Program does not specify a version number of
this License, you may choose any version ever published by the Free Software
Foundation.
10. If you wish to incorporate parts of the Program into other free
programs whose distribution conditions are different, write to the author
to ask for permission. For software which is copyrighted by the Free
Software Foundation, write to the Free Software Foundation; we sometimes
make exceptions for this. Our decision will be guided by the two goals
of preserving the free status of all derivatives of our free software and
of promoting the sharing and reuse of software generally.
NO WARRANTY
11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN
OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED
OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS
TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE
PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING,
REPAIR OR CORRECTION.
12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES,
INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING
OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED
TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY
YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER
PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE
POSSIBILITY OF SUCH DAMAGES.
END OF TERMS AND CONDITIONS
How to Apply These Terms to Your New Programs
If you develop a new program, and you want it to be of the greatest
possible use to the public, the best way to achieve this is to make it
free software which everyone can redistribute and change under these terms.
To do so, attach the following notices to the program. It is safest
to attach them to the start of each source file to most effectively
convey the exclusion of warranty; and each file should have at least
the "copyright" line and a pointer to where the full notice is found.
<one line to give the program's name and a brief idea of what it does.>
Copyright (C) <year> <name of author>
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License along
with this program; if not, write to the Free Software Foundation, Inc.,
51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
Also add information on how to contact you by electronic and paper mail.
If the program is interactive, make it output a short notice like this
when it starts in an interactive mode:
Gnomovision version 69, Copyright (C) year name of author
Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
This is free software, and you are welcome to redistribute it
under certain conditions; type `show c' for details.
The hypothetical commands `show w' and `show c' should show the appropriate
parts of the General Public License. Of course, the commands you use may
be called something other than `show w' and `show c'; they could even be
mouse-clicks or menu items--whatever suits your program.
You should also get your employer (if you work as a programmer) or your
school, if any, to sign a "copyright disclaimer" for the program, if
necessary. Here is a sample; alter the names:
Yoyodyne, Inc., hereby disclaims all copyright interest in the program
`Gnomovision' (which makes passes at compilers) written by James Hacker.
<signature of Ty Coon>, 1 April 1989
Ty Coon, President of Vice
This General Public License does not permit incorporating your program into
proprietary programs. If your program is a subroutine library, you may
consider it more useful to permit linking proprietary applications with the
library. If this is what you want to do, use the GNU Lesser General
Public License instead of this License.

View File

@ -1,5 +1,7 @@
# SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
# SPDX-License-Identifier: GPL-2.0-or-later
# Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
#
# SPDX-License-Identifier: GPL-2.0+
# License-Filename: LICENSE
all: gluon-arp-limiter

View File

@ -1,5 +1,9 @@
// SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
// SPDX-License-Identifier: GPL-2.0-or-later
/*
* Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
*
* SPDX-License-Identifier: GPL-2.0+
* License-Filename: LICENSE
*/
#include <errno.h>
#include <stdio.h>
@ -10,7 +14,7 @@
#include "lookup3.h"
static struct addr_list *addr_node_alloc(void *addr,
struct addr_store *store)
struct addr_store *store)
{
struct addr_list *node;
size_t addr_len = store->addr_len;
@ -27,8 +31,8 @@ static struct addr_list *addr_node_alloc(void *addr,
}
static struct addr_list *addr_list_search(void *addr,
size_t addr_len,
struct addr_list *list)
size_t addr_len,
struct addr_list *list)
{
struct addr_list *node = list;
struct addr_list *ret = NULL;
@ -73,7 +77,7 @@ int addr_store_add(void *addr, struct addr_store *store)
{
struct addr_list **bucket = addr_store_get_bucket(addr, store);
struct addr_list *node = addr_list_search(addr, store->addr_len,
*bucket);
*bucket);
if (node) {
node->tic = clock;
@ -91,9 +95,9 @@ int addr_store_add(void *addr, struct addr_store *store)
}
int addr_store_init(size_t addr_len,
void (*destructor)(struct addr_list *),
char *(*ntoa)(void *),
struct addr_store *store)
void (*destructor)(struct addr_list *),
char *(*ntoa)(void *),
struct addr_store *store)
{
int i;

View File

@ -1,5 +1,9 @@
// SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
// SPDX-License-Identifier: GPL-2.0-or-later
/*
* Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
*
* SPDX-License-Identifier: GPL-2.0+
* License-Filename: LICENSE
*/
#ifndef _ADDR_STORE_H_
#define _ADDR_STORE_H_
@ -20,9 +24,9 @@ struct addr_store {
};
int addr_store_init(size_t addr_len,
void (*destructor)(struct addr_list *),
char *(*ntoa)(void *),
struct addr_store *store);
void (*destructor)(struct addr_list *),
char *(*ntoa)(void *),
struct addr_store *store);
int addr_store_add(void *addr, struct addr_store *store);
void addr_store_cleanup(struct addr_store *store);

View File

@ -1,5 +1,9 @@
// SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
// SPDX-License-Identifier: GPL-2.0-or-later
/*
* Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
*
* SPDX-License-Identifier: GPL-2.0+
* License-Filename: LICENSE
*/
#include <arpa/inet.h>
#include <errno.h>
@ -39,8 +43,8 @@ static void ebt_ip_call(char *mod, struct in_addr ip)
int ret;
snprintf(str, sizeof(str),
EBTABLES " %s ARP_LIMIT_DATCHECK -p ARP --arp-ip-dst %s -j mark --mark-or 0x2 --mark-target RETURN",
mod, inet_ntoa(ip));
EBTABLES " %s ARP_LIMIT_DATCHECK -p ARP --arp-ip-dst %s -j mark --mark-or 0x2 --mark-target RETURN",
mod, inet_ntoa(ip));
ret = system(str);
if (ret)
@ -62,8 +66,8 @@ static void ebt_mac_limit_call(char *mod, struct mac_addr *mac)
int ret;
snprintf(str, sizeof(str),
EBTABLES " %s ARP_LIMIT_TLCHECK --source %s --limit 6/min --limit-burst 50 -j RETURN",
mod, mac_ntoa(mac));
EBTABLES " %s ARP_LIMIT_TLCHECK --source %s --limit 6/min --limit-burst 50 -j RETURN",
mod, mac_ntoa(mac));
ret = system(str);
if (ret)
@ -78,8 +82,8 @@ static void ebt_mac_ret_call(char *mod, struct mac_addr *mac, int add)
int ret;
snprintf(str, sizeof(str),
EBTABLES " %s ARP_LIMIT_TLCHECK %s --source %s -j DROP",
mod, add ? "2" : "", mac_ntoa(mac));
EBTABLES " %s ARP_LIMIT_TLCHECK %s --source %s -j DROP",
mod, add ? "2" : "", mac_ntoa(mac));
ret = system(str);
if (ret)

View File

@ -1,5 +1,9 @@
// SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
// SPDX-License-Identifier: GPL-2.0-or-later
/*
* Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
*
* SPDX-License-Identifier: GPL-2.0+
* License-Filename: LICENSE
*/
#ifndef _GLUON_ARP_LIMITER_H_
#define _GLUON_ARP_LIMITER_H_

File diff suppressed because it is too large Load Diff

View File

@ -1,5 +1,9 @@
// SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
// SPDX-License-Identifier: GPL-2.0-or-later
/*
* Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
*
* SPDX-License-Identifier: GPL-2.0+
* License-Filename: LICENSE
*/
#include <linux/if_ether.h>
#include <stdio.h>
@ -21,8 +25,8 @@ int mac_aton(const char *cp, struct mac_addr *mac)
memset(&m, 0, sizeof(m));
ret = sscanf(cp, "%hhx:%hhx:%hhx:%hhx:%hhx:%hhx",
&m.storage[0], &m.storage[1], &m.storage[2],
&m.storage[3], &m.storage[4], &m.storage[5]);
&m.storage[0], &m.storage[1], &m.storage[2],
&m.storage[3], &m.storage[4], &m.storage[5]);
if (ret != ETH_ALEN)
return 0;
@ -36,8 +40,8 @@ char *mac_ntoa(struct mac_addr *mac)
unsigned char *m = mac->storage;
snprintf(mntoa_buf, sizeof(mntoa_buf),
"%02x:%02x:%02x:%02x:%02x:%02x",
m[0], m[1], m[2], m[3], m[4], m[5]);
"%02x:%02x:%02x:%02x:%02x:%02x",
m[0], m[1], m[2], m[3], m[4], m[5]);
return mntoa_buf;
}

View File

@ -1,5 +1,9 @@
// SPDX-FileCopyrightText: 2017 Linus Lüssing <linus.luessing@c0d3.blue>
// SPDX-License-Identifier: GPL-2.0-or-later
/*
* Copyright (c) 2017 Linus Lüssing <linus.luessing@c0d3.blue>
*
* SPDX-License-Identifier: GPL-2.0+
* License-Filename: LICENSE
*/
#ifndef _MAC_H_
#define _MAC_H_

View File

@ -6,7 +6,7 @@ include ../gluon.mk
define Package/gluon-l3roamd
TITLE:=Configure l3roamd for babel
DEPENDS:=+gluon-core +gluon-mesh-layer3-common +l3roamd +uc
DEPENDS:=+gluon-core +l3roamd +uc
endef
$(eval $(call BuildPackageGluon,gluon-l3roamd))

View File

@ -0,0 +1 @@
need_string_match(in_domain({'node_client_prefix6'}), '^[%x:]+/64$', false)

View File

@ -43,7 +43,7 @@ start_service () {
local prefix4="$(lua -e 'prefix4 = require("gluon.site").prefix4() if prefix4 then print(" -p " .. prefix4) end')"
local prefix6="$(lua -e 'print(" -p " .. require("gluon.site").prefix6())')"
local localip="$(uci get network.loopback.ip6addr | cut -d/ -f1)"
local roamingprefix="$(lua -e 'print(" -P " .. require("gluon.l3").node_client_prefix6())')"
local roamingprefix="$(lua -e 'roamingprefix = require("gluon.site").node_client_prefix6() if roamingprefix then print(" -P " .. roamingprefix) end')"
/sbin/sysctl -w net.ipv6.neigh.default.gc_thresh1=2
/sbin/sysctl -w net.ipv4.neigh.default.gc_thresh1=2

View File

@ -1,4 +1,5 @@
need_string_match(in_domain({'node_prefix6'}), '^[%x:]+/64$')
need_string_match(in_domain({'node_client_prefix6'}), '^[%x:]+/64$')
need_string_match(in_domain({'next_node', 'ip6'}), '^[%x:]+$', false)
need_string_match(in_domain({'next_node', 'ip4'}), '^%d+.%d+.%d+.%d+$', false)

View File

@ -1,2 +0,0 @@
#!/bin/sh
echo dump | nc ::1 33123 | grep -qF "add neighbour"

View File

@ -1,7 +1,6 @@
#!/usr/bin/lua
local site = require 'gluon.site'
local l3 = require 'gluon.l3'
local uci = require('simple-uci').cursor()
local nodeip = uci:get('network', 'loopback', 'ip6addr'):match('^[^/]+')
local babelconf='/etc/gluon-babeld.conf'
@ -15,7 +14,7 @@ file:write("import-table 254\n")
file:write("out ip " .. site.next_node.ip6() .. "/128 deny\n")
file:write("redistribute ip " .. site.next_node.ip6() .. "/128 deny\n")
file:write("redistribute ip " .. site.prefix6() .. " eq 128 allow\n")
file:write("redistribute ip " .. l3.node_client_prefix6() .. " eq 128 allow\n")
file:write("redistribute ip " .. site.node_client_prefix6() .. " eq 128 allow\n")
file:write("redistribute ip " .. site.node_prefix6() .. " eq 128 allow\n")
file:write("redistribute ip 2000::/3 allow\n")
file:write("redistribute local if br-wan deny\n")

Some files were not shown because too many files have changed in this diff Show More