oweals/openwrt.git
6 years agokernel: Add missing config options for samsung target
Hauke Mehrtens [Thu, 27 Sep 2018 20:42:16 +0000 (22:42 +0200)]
kernel: Add missing config options for samsung target

This adds some configuration options which are selectable when the
samsung target is compiled.
This was found by build bot.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agowireguard: bump to 0.0.20180925
Kevin Darbyshire-Bryant [Thu, 27 Sep 2018 20:14:10 +0000 (21:14 +0100)]
wireguard: bump to 0.0.20180925

33523a5 version: bump snapshot
0759480 curve25519-hacl64: reduce stack usage under KASAN
b9ab0fc chacha20: add bounds checking to selftests
2e99d19 chacha20-mips32r2: reduce stack and branches in loop, refactor jumptable handling
d6ac367 qemu: bump musl
28d8b7e crypto: make constant naming scheme consistent
56c4ea9 hchacha20: keep in native endian in words
0c3c0bc chacha20-arm: remove unused preambles
3dcd246 chacha20-arm: updated scalar code from Andy
6b9d5ca poly1305-mips64: remove useless preprocessor error
3ff3990 crypto-arm: rework KERNEL_MODE_NEON handling again
dd2f91e crypto: flatten out makefile
67a3cfb curve25519-fiat32: work around m68k compiler stack frame bug
9aa2943 allowedips: work around kasan stack frame bug in selftest
317b318 chacha20-arm: use new scalar implementation
b715e3b crypto-arm: rework KERNEL_MODE_NEON handling
77b07d9 global: reduce stack frame size
ddc2bd6 chacha20: add chunked selftest and test sliding alignments and hchacha20
2eead02 chacha20-mips32r2: reduce jumptable entry size and stack usage
a0ac620 chacha20-mips32r2: use simpler calling convention
09247c0 chacha20-arm: go with Ard's version to optimize for Cortex-A7
a329e0a chacha20-mips32r2: remove reorder directives
3b22533 chacha20-mips32r2: fix typo to allow reorder again
d4ac6bb poly1305-mips32r2: remove all reorder directives
197a30c global: put SPDX identifier on its own line
305806d ratelimiter: disable selftest with KASAN
4e06236 crypto: do not waste space on selftest items
5e0fd08 netlink: reverse my christmas trees
a61ea8b crypto: explicitly dual license
b161aff poly1305: account for simd being toggled off midway
470a0c5 allowedips: change from BUG_ON to WARN_ON
aa9e090 chacha20: prefer crypto_xor_cpy to avoid memmove
1b0adf5 poly1305: no need to trick gcc 8.1
a849803 blake2s: simplify final function
073f3d1 poly1305: better module description

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
6 years agodnsmasq: bump to v2.80test7
Kevin Darbyshire-Bryant [Thu, 27 Sep 2018 14:21:27 +0000 (15:21 +0100)]
dnsmasq: bump to v2.80test7

Bump to latest test release:

3a610a0 Finesse allocation of memory for "struct crec" cache entries.
48b090c Fix b6f926fbefcd2471699599e44f32b8d25b87b471 to not SEGV on startup (rarely).
4139298 Change behavior when RD bit unset in queries.
51cc10f Add warning about 0.0.0.0 and :: addresses to man page.
ea6cc33 Handle memory allocation failure in make_non_terminals()
ad03967 Add debian/tmpfiles.conf
f4fd07d Debian bugfix.
e3c08a3 Debian packaging fix. (restorecon)
118011f Debian packaging fix. (tmpfiles.d)

Delete our own backports of ea6cc33 & 4139298, so the only real changes
here, since we don't care about the Debian stuff are 48b090c & 3a610a0

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
6 years agomac80211: fix selecting of ath10k -ct firmware
Hauke Mehrtens [Wed, 26 Sep 2018 19:30:59 +0000 (21:30 +0200)]
mac80211: fix selecting of ath10k -ct firmware

There is not firmware file with -ct-ct postfix, remove one -ct.

Fixes: 61b5b4971e7d ("mac80211: make ath10k-ct the default ath10k")
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agomac80211: Use backports-4.19-rc5-1.tar.xz
Hauke Mehrtens [Tue, 25 Sep 2018 20:35:17 +0000 (22:35 +0200)]
mac80211: Use backports-4.19-rc5-1.tar.xz

This is an official release with some minor changes compared to the
unofficial 4.19-rc4-1 we used before.
* added bcma and ssb again, which is removed in OpenWrt
* fix to build with kernel 4.19
* other minor fixes not relevant for Openwrt.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agoiptables: fix dependency for libip6tc on IPV6
Rosy Song [Thu, 9 Aug 2018 06:47:31 +0000 (14:47 +0800)]
iptables: fix dependency for libip6tc on IPV6

Signed-off-by: Rosy Song <rosysong@rosinson.com>
6 years agouboot-lantiq: fix compatibility with gcc7
Martin Schiller [Mon, 24 Sep 2018 12:09:05 +0000 (14:09 +0200)]
uboot-lantiq: fix compatibility with gcc7

Backport u-boot commit 704f3acfcf55343043bbed01c5fb0a0094a68e8a to fix
compatibility with gcc7.

Signed-off-by: Martin Schiller <ms@dev.tdt.de>
6 years agoath79: add support for Buffalo BHR-4GRV
INAGAKI Hiroshi [Tue, 11 Sep 2018 11:50:35 +0000 (20:50 +0900)]
ath79: add support for Buffalo BHR-4GRV

Buffalo BHR-4GRV is a wired router, based on Atheros AR7242.

Specification:

- Atheros AR7242
- 64 MB of RAM
- 32 MB of Flash
  - 2x 16 MB SPI-NOR flash
- 5x 10/100/1000 Mbps Ethernet
- 3x LEDs, 2x keys
- 1x USB 2.0 Type-A
- UART header on PCB
  - JP1: Vcc, GND, TX, RX from reset button side

Flash instruction using factory image:

1. Boot the BHR-4GRV normaly and connect the computer to its LAN port
2. Access to
"http://192.168.11.1/cgi-bin/cgi?req=frm&frm=py-db/firmup.html"
with user "bufpy" and password "otdpopy"
3. Select the OpenWrt factory image and click "OK" button to perform
firmware upgrade
4. Wait ~200 seconds to complete flashing

Signed-off-by: INAGAKI Hiroshi <musashino.open@gmail.com>
6 years agoath79: fix support for Buffalo WZR-HP-G450H and split to dts/dtsi
INAGAKI Hiroshi [Tue, 11 Sep 2018 11:13:17 +0000 (20:13 +0900)]
ath79: fix support for Buffalo WZR-HP-G450H and split to dts/dtsi

There are many parts that are incorrect or missing in the current
code for Buffalo WZR-HP-G450H in ath79, so its support is broken.

I fixed that issues and split to dts/dtsi files to add support for
Buffalo BHR-4GRV.

And WZR-450HP has the same hardware as WZR-HP-G450H, so I change the
device name to "WZR-HP-G450H/WZR-450HP".

Specification:

- Atheros AR7242
- 64 MB of RAM
- 32 MB of Flash
  - 2x 16 MB SPI-NOR flash
- 3T3R 2.4 GHz wifi
  - SoC internal
- 5x 10/100/1000 Mbps Ethernet
- 6x LEDs, 5x keys
- 1x USB 2.0 Type-A
- UART header on PCB
  - JP1: Vcc, GND, TX, RX from reset button side

Flash instruction using factory image:

1. Boot the WZR-HP-G450H (or WZR-450HP) normaly and connect the computer
to its LAN port
2. Access to
"http://192.168.11.1/cgi-bin/cgi?req=frm&frm=py-db/firmup.html"
with user "bufpy" and password "otdpopy"
3. Select the OpenWrt factory image and click "OK" button to perform
firmware update
4. Wait ~200 seconds to complete flashing

Signed-off-by: INAGAKI Hiroshi <musashino.open@gmail.com>
6 years agoath79: fix wrong pll-data value for I-O DATA WN-AC-DGR devices
INAGAKI Hiroshi [Mon, 10 Sep 2018 19:57:09 +0000 (04:57 +0900)]
ath79: fix wrong pll-data value for I-O DATA WN-AC-DGR devices

The pll-data value "0x56000000" is wrong for I-O DATA WN-AC1600DGR2
and WN-AC1167DGR, so there was a problem of slowing down the speed of
ethernet.

Signed-off-by: INAGAKI Hiroshi <musashino.open@gmail.com>
6 years agoramips: fix Archer C20 sysupgrade
Steffen Förster [Mon, 24 Sep 2018 20:37:22 +0000 (22:37 +0200)]
ramips: fix Archer C20 sysupgrade

The sysupgrade image failed the check due to the wrong string in the
supported devices. This patch provides the correct name by dropping the
SUPPORTED_DEVICES to use the default generated name.

Signed-off-by: Steffen Förster <steffen@chemnitz.freifunk.net>
[drop the SUPPORTED_DEVICES, the old name was never used in a release]
Signed-off-by: Mathias Kresin <dev@kresin.me>
6 years agoramips: fix power LED DTB for wt3020
Emil Muratov [Fri, 14 Sep 2018 09:12:32 +0000 (12:12 +0300)]
ramips: fix power LED DTB for wt3020

Since c134210 power LED is no longer lights after boot-up.
Reversing gpio polarity makes it work as it should be.

Signed-off-by: Emil Muratov <gpm@hotplug.ru>
6 years agoramips: ex2700: actually remove kmod-mt76*
Joseph C. Lehner [Fri, 7 Sep 2018 14:22:09 +0000 (16:22 +0200)]
ramips: ex2700: actually remove kmod-mt76*

When building using the multiple devices option with per-device root
filesystem, only the meta package mt76 is omitted but not the
dependencies selected by the package.

Explicitly exclude all 3 mt76 packages, plus the metapackage.
Otherwise, these modules will be included in the build, wasting
a few hundred kilobytes.

Signed-off-by: Joseph C. Lehner <joseph.c.lehner@gmail.com>
[mention the root cause of the issue in the commit message]
Signed-off-by: Mathias Kresin <dev@kresin.me>
6 years agoath10k-ct: update to version ath10k-4.16
Hauke Mehrtens [Sun, 23 Sep 2018 18:15:52 +0000 (20:15 +0200)]
ath10k-ct: update to version ath10k-4.16

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agoiw: update nl80211.h
Hauke Mehrtens [Sun, 23 Sep 2018 17:28:48 +0000 (19:28 +0200)]
iw: update nl80211.h

Now this file matches the version in backports.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agomac80211: fix compile warning in 986-rt2x00-add-TX-LOFT-calibration.patch
Hauke Mehrtens [Sun, 23 Sep 2018 17:10:22 +0000 (19:10 +0200)]
mac80211: fix compile warning in 986-rt2x00-add-TX-LOFT-calibration.patch

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agomac80211: Add patches which were added later
Hauke Mehrtens [Sun, 23 Sep 2018 16:48:09 +0000 (18:48 +0200)]
mac80211: Add patches which were added later

These patches were added after the new matches structure for the
mac80211 package was created. All the deleted patches are already
integrated in kernel 4.19-rc4.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agomac80211: update to version based on 4.19-rc4
Hauke Mehrtens [Sun, 23 Sep 2018 16:02:35 +0000 (18:02 +0200)]
mac80211: update to version based on 4.19-rc4

This updates mac80211 to backports based on kernel 4.19-rc4.

I plan to integrate all the patches which are in this tar into upstream
backports soon.

I used the backports generated from this code:
https://github.com/hauke/backports/commits/wip2

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agomac80211: make ath10k-ct the default ath10k
John Crispin [Wed, 5 Sep 2018 12:51:44 +0000 (14:51 +0200)]
mac80211: make ath10k-ct the default ath10k

We select ath10k-ct by default, but it is still possible to build
the upstream version.

Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Signed-off-by: John Crispin <john@phrozen.org>
6 years agomac80211: rt2x00: add experimental patches from Stanislaw Gruszka
Daniel Golle [Wed, 15 Aug 2018 14:02:18 +0000 (16:02 +0200)]
mac80211: rt2x00: add experimental patches from Stanislaw Gruszka

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
6 years agomac80211: rt2x00: remove obsolete patch
Daniel Golle [Wed, 15 Aug 2018 13:22:43 +0000 (15:22 +0200)]
mac80211: rt2x00: remove obsolete patch

According to Stanislaw Gruszka the patch
    600-23-rt2x00-rt2800mmio-add-a-workaround-for-spurious-TX_F.patch
should be dropped.

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
6 years agomac80211: rt2x00: add TX LOFT calibration
Tomislav Požega [Thu, 11 Jan 2018 18:53:49 +0000 (19:53 +0100)]
mac80211: rt2x00: add TX LOFT calibration

Add TX LOFT calibration from mtk driver.

Signed-off-by: Tomislav Požega <pozega.tomislav@gmail.com>
6 years agomac80211: rt2x00: add RXIQ calibration
Tomislav Požega [Mon, 8 Jan 2018 12:43:56 +0000 (13:43 +0100)]
mac80211: rt2x00: add RXIQ calibration

Add RXIQ calibration found in mtk driver. With old openwrt builds this gets us ~8Mbps more of RX bandwidth (test with iPA/eLNA layout).
Please try if this makes any difference among various board/RF layouts.

Signed-off-by: Tomislav Požega <pozega.tomislav@gmail.com>
6 years agomac80211: rt2x00: add RXDCOC calibration
Tomislav Požega [Mon, 8 Jan 2018 12:43:37 +0000 (13:43 +0100)]
mac80211: rt2x00: add RXDCOC calibration

Add RXDCOC calibration code from mtk driver. Please try if this makes any difference among various board/RF layouts.

Signed-off-by: Tomislav Požega <pozega.tomislav@gmail.com>
6 years agomac80211: rt2x00: add r calibration
Tomislav Požega [Mon, 8 Jan 2018 12:42:58 +0000 (13:42 +0100)]
mac80211: rt2x00: add r calibration

Add r calibration code as found in mtk driver.

Signed-off-by: Tomislav Požega <pozega.tomislav@gmail.com>
6 years agomac80211: rt2x00: add RF self TXDC calibration
Tomislav Požega [Mon, 8 Jan 2018 12:42:27 +0000 (13:42 +0100)]
mac80211: rt2x00: add RF self TXDC calibration

Add TX self calibration based on mtk driver.

Signed-off-by: Tomislav Požega <pozega.tomislav@gmail.com>
6 years agomac80211: rt2x00: write registers required for reducing power consumption
Tomislav Požega [Wed, 23 Aug 2017 17:10:21 +0000 (19:10 +0200)]
mac80211: rt2x00: write registers required for reducing power consumption

Write registers required for reducing power consumption like the vendor
driver does when ADJUST_POWER_CONSUMPTION_SUPPORT is set.
This helps devices to sync at better TX/RX rates and improves overall
performance.

Signed-off-by: Tomislav Požega <pozega.tomislav@gmail.com>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>
[daniel@makrotopia.org: edited commit message]

6 years agolinux-firmware: set PKG_MIRROR_HASH
Daniel Golle [Thu, 16 Aug 2018 15:03:36 +0000 (17:03 +0200)]
linux-firmware: set PKG_MIRROR_HASH

Signed-off-by: Daniel Golle <daniel@makrotopia.org>
6 years agolinux-firmware: add ath10k support
John Crispin [Fri, 3 Aug 2018 12:16:47 +0000 (14:16 +0200)]
linux-firmware: add ath10k support

Signed-off-by: John Crispin <john@phrozen.org>
6 years agoath10k-firmware: disable the package and use default linux-firmware package
John Crispin [Fri, 3 Aug 2018 11:59:40 +0000 (13:59 +0200)]
ath10k-firmware: disable the package and use default linux-firmware package

Signed-off-by: John Crispin <john@phrozen.org>
6 years agomac80211: rebase ontop of v4.18.5
John Crispin [Thu, 2 Aug 2018 06:44:29 +0000 (08:44 +0200)]
mac80211: rebase ontop of v4.18.5

Signed-off-by: John Crispin <john@phrozen.org>
6 years agokernel: bump 4.14 to 4.14.72
Koen Vandeputte [Wed, 26 Sep 2018 10:53:35 +0000 (12:53 +0200)]
kernel: bump 4.14 to 4.14.72

Refreshed all patches.

Removed upstreamed:
- 203-MIPS-ath79-fix-restart.patch
- 0013-MIPS-ath79-fix-system-restart.patch
- 180-earlycon-initialize-port-uartclk-based-on-clock-frequency-property.patch
- 181-earlycon-remove-hardcoded-port-uartclk-initialization-in-of_setup_earlycon. patch
- 700-1-6-e1000e-Remove-Other-from-EIAC.patch
- 700-2-6-Partial-revert-e1000e-Avoid-receiver-overrun-interrupt-bursts.patch
- 700-3-6-e1000e-Fix-queue-interrupt-re-raising-in-Other-interrupt.patch
- 700-4-6-e1000e-Avoid-missed-interrupts-following-ICR-read.patch

Compile-tested on: cns3xxx, imx6
Runtime-tested on: cns3xxx, imx6

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
6 years agokernel: bump 4.9 to 4.9.129
Koen Vandeputte [Wed, 26 Sep 2018 10:51:29 +0000 (12:51 +0200)]
kernel: bump 4.9 to 4.9.129

Refreshed all patches.

Removed upstreamed:
- 203-MIPS-ath79-fix-restart.patch

Compile-tested on: ar71xx
Runtime-tested on: ar71xx

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
6 years agokernel: bump 3.18 to 3.18.123
Koen Vandeputte [Wed, 26 Sep 2018 10:49:56 +0000 (12:49 +0200)]
kernel: bump 3.18 to 3.18.123

Refreshed all patches.

Compile-tested on: adm5120
Runtime-tested on: none

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
6 years agonetifd: do not validate relevant section when ipv6 is not supported
Rosy Song [Sun, 23 Sep 2018 02:05:04 +0000 (10:05 +0800)]
netifd: do not validate relevant section when ipv6 is not supported

Signed-off-by: Rosy Song <rosysong@rosinson.com>
6 years agobase-files: add network_get_metric() to /lib/functions/network.sh
Florian Eckert [Mon, 24 Sep 2018 12:20:29 +0000 (14:20 +0200)]
base-files: add network_get_metric() to /lib/functions/network.sh

Signed-off-by: Florian Eckert <fe@dev.tdt.de>
Signed-off-by: Hans Dedecker <dedeckeh@gmail.com> [PKG_RELEASE increase]
6 years agokernel: netfilter: add IPVS kernel module support
Mauro Mozzarelli [Mon, 2 Oct 2017 18:09:09 +0000 (19:09 +0100)]
kernel: netfilter: add IPVS kernel module support

IPVS (IP Virtual Server) implements transport-layer load balancing inside
the Linux kernel, so called Layer-4 switching. IPVS running on a host acts
as a load balancer at the front of a cluster of real servers, it can direct
requests for TCP/UDP based services to the real servers, and makes services
of the real servers to appear as a virtual service on a single IP address.

This change adds the following kmod packages
- kmod-nf-ipvs
- kmod-nf-ipvs-ftp
- kmod-nf-ipvs-sip

Signed-off-by: Mauro Mozzarelli <mauro@ezplanet.org>
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
6 years agoncurses: use default host install
Andy Walsh [Wed, 1 Aug 2018 10:48:08 +0000 (12:48 +0200)]
ncurses: use default host install

* just use default host/install, so libs/headers get properly generated/installed

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
6 years agogettext-full: host compile with -fpic
Andy Walsh [Tue, 7 Aug 2018 15:46:42 +0000 (17:46 +0200)]
gettext-full: host compile with -fpic

Signed-off-by: Andy Walsh <andy.walsh44+github@gmail.com>
6 years agozram-swap: Shell cosmetic
Samuel Casa [Tue, 7 Aug 2018 09:16:34 +0000 (11:16 +0200)]
zram-swap: Shell cosmetic

Signed-off-by: Samuel Casa <samuel.casa@neratec.com>
6 years agozram-swap: remove trailing whitespaces in init script
Samuel Casa [Tue, 7 Aug 2018 08:49:22 +0000 (10:49 +0200)]
zram-swap: remove trailing whitespaces in init script

Signed-off-by: Samuel Casa <samuel.casa@neratec.com>
[slightly reword subject]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
6 years agodante: disable sched_getscheduler() - not implemented in musl
David Yang [Sat, 11 Aug 2018 07:51:02 +0000 (15:51 +0800)]
dante: disable sched_getscheduler() - not implemented in musl

musl doesn't come with an valid implementation of `sched_getscheduler()`;
it simply returns -ENOSYS for it. Without this option (and compile dante
with `sched_getscheduler()` enabled), you will get

    error: serverinit(): sched_getscheduler(2): failed to retrieve current
    cpuscheduling policy: Function not implemented

and dante won't start at all.

Ref: http://lists.alpinelinux.org/alpine-devel/3932.html
Ref: http://lists.alpinelinux.org/alpine-devel/3936.html
Signed-off-by: David Yang <mmyangfl@gmail.com>
[slightly reword commit message]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
6 years agobase-files: fix postinstall uci-defaults removal
Tony Ambardar [Sat, 3 Mar 2018 03:32:24 +0000 (19:32 -0800)]
base-files: fix postinstall uci-defaults removal

Commit 7f694582 introduced a bug where default_postinst() often fails to
remove a uci-defaults script after application, leaving it to run again
after a reboot.
(Note: commit 7f694582 also introduced FS#1021, now fixed by 73c745f6)

The subtle problem arises from the shell logical chain:
[ -f "$i" ] && . "$i" && rm -f "$i"

Most uci-defaults scripts contain a terminal 'exit 0' statement which,
when sourced, results in the logic chain exiting before executing 'rm -f'.
This was observed while testing upgrades of 'luci-app-sqm'.

The solution is to wrap the shell sourcing in a subshell relative to the
command 'rm -f':
( [ -f "$i" ] && . "$i" ) && rm -f "$i"

Revert to using 'grep' to prefilter the list of entries from the control
file, which yields the full path of uci-defaults scripts. This allows
keeping the existence check, directory change and script sourcing inside
the subshell, with the script removal correctly outside.

This approach avoids adding a second subshell only around the "." (source)
command. The change also preserves the fix FS#1021, since the full path is
used to source the script, which is POSIX-portable irrespective of PATH
variable or reference to the CWD.

Run Tested on: LEDE 17.01.4 running ar71xx, while tracing installation of
package luci-app-sqm with its associated /etc/uci-defaults/luci-sqm file.

Signed-off-by: Tony Ambardar <itugrok@yahoo.com>
6 years agorules.mk: add ESED command
Konstantin Demin [Mon, 5 Mar 2018 09:46:44 +0000 (12:46 +0300)]
rules.mk: add ESED command

ESED is SED with extended regular expressions turned on.
Command line and usage are the same as for SED.

Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
6 years agokernel: pick earlycon regression fixes from the stable-queue.git
Rafał Miłecki [Mon, 24 Sep 2018 11:46:08 +0000 (13:46 +0200)]
kernel: pick earlycon regression fixes from the stable-queue.git

This fixes regression introduced in kernel 4.14 and makes bcm53xx revert
obsolete.

Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
6 years agobuild: drop buildbot toolchain rebuild check when not using git
Felix Fietkau [Mon, 24 Sep 2018 09:02:30 +0000 (11:02 +0200)]
build: drop buildbot toolchain rebuild check when not using git

The check cleans and rebuilds the toolchain if it changed on update.
When building from a source tarball, it is reasonable to expect that
there will be no updates, so no rebuild check is necessary

Signed-off-by: Felix Fietkau <nbd@nbd.name>
6 years agolldpd: inhibit linking of libbsd on !GLIBC
Jo-Philipp Wich [Mon, 24 Sep 2018 06:36:10 +0000 (08:36 +0200)]
lldpd: inhibit linking of libbsd on !GLIBC

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
6 years agobusybox: fix dependency for IPV6
Rosy Song [Sat, 22 Sep 2018 13:15:40 +0000 (21:15 +0800)]
busybox: fix dependency for IPV6

Signed-off-by: Rosy Song <rosysong@rosinson.com>
6 years agokernel: fix build of nftables
Hauke Mehrtens [Sat, 22 Sep 2018 21:59:10 +0000 (23:59 +0200)]
kernel: fix build of nftables

Backport an additional patch from 4.16 for nftables.
This fixes a build problem recently introduced.

Fixes: f57806b56e5 ("kernel: generic: Fix nftables inet table breakage")
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agolayerscape: build ls-dpl package with linux dtc tool
Yangbo Lu [Thu, 6 Sep 2018 05:30:32 +0000 (13:30 +0800)]
layerscape: build ls-dpl package with linux dtc tool

Building ls-dpl package requires the dtc tool. This patch
is to support using linux dtc tool for ls-dpl package.
This avoids compile issue when host system doesn't have
the dtc tool.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: fix get_device_file() function of restool
Yangbo Lu [Wed, 1 Aug 2018 02:41:11 +0000 (10:41 +0800)]
layerscape: fix get_device_file() function of restool

The restool failed to work with current gcc-7.3.0-musl.
This patch is to add a restool fix-up patch to fix
multiple problems encountered in the get_device_file()
function:
 - The deprecated atoi() function is replaced by strtoul
 - An invalid memory access was being performed by using
 memory from dir->d_name even after closedir(). This is
 fixed by a strdup() on the device filename.
 - Also, error prints now print any relevant error code.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update README for SD card boot and new devices
Yangbo Lu [Mon, 23 Jul 2018 08:48:48 +0000 (16:48 +0800)]
layerscape: update README for SD card boot and new devices

This patch is to update the README since SD card boot support
and LS1012AFRWY/LS1021ATWR were introduced.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: add ls1012afrwy support and drop ls1012afrdm
Yangbo Lu [Wed, 18 Jul 2018 08:56:07 +0000 (16:56 +0800)]
layerscape: add ls1012afrwy support and drop ls1012afrdm

ls1012afrdm was no longer supported in NXP Layerscape SDK.
Instead a new board ls1012afrwy was introduced in LSDK.
This patch is to drop ls1012afrdm and add ls1012afrwy support.
Since only 2MB NOR flash could be used, we just put u-boot
and firmware on NOR flash, and put kernel/dtb/rootfs on SD
card.

The Layerscape FRWY-LS1012A board is an ultra-low-cost
development platform for LS1012A Series Communication
Processors built on Arm Cortex-A53. This tool refines the
FRDM-LS1012A with more features for a better hands-on experience
for IoT, edge computing, and various advanced embedded
applications. Features include easy access to processor I/O,
low-power operation, micro SD card storage, an M2 connector, a
small form factor, and expansion board options via mikroBUS Click
Module. The MicroBUS Module provides easy expansion via hundreds
of powerful modules supporting sensors, actuators, memories,
and displays.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: add SD card boot support
Yangbo Lu [Wed, 18 Jul 2018 06:14:40 +0000 (14:14 +0800)]
layerscape: add SD card boot support

NOR/QSPI Flash on Layerscape board only has limited 64MB memory size.
Since some boards (ls1043ardb/ls1046ardb/ls1088ardb/ls1021atwr)
could support SD card boot, we added SD boot support for them to put
all things on SD card to meet large memory requirement.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: add armv7 subtarget and ls1021atwr board support
Yangbo Lu [Tue, 10 Jul 2018 03:58:59 +0000 (11:58 +0800)]
layerscape: add armv7 subtarget and ls1021atwr board support

The NXP TWR-LS1021A module is a development system based
on the QorIQ LS1021A processor.
- This feature-rich, high-performance processor module can
  be used standalone or as part of an assembled Tower System
  development platform.
- Incorporating dual Arm Cortex-A7 cores running up to 1 GHz,
  the TWR-LS1021A delivers an outstanding level of performance.
- The TWR-LS1021A offers HDMI, SATA3 and USB3 connectors as
  well as a complete Linux software developer's package.
- The module provides a comprehensive level of security that
  includes support for secure boot, Trust Architecture and
  tamper detection in both standby and active power modes,
  safeguarding the device from manufacture to deployment.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: split image makefile per subtarget
Yangbo Lu [Wed, 15 Aug 2018 08:41:41 +0000 (16:41 +0800)]
layerscape: split image makefile per subtarget

This patch is to split image makefile per subtarget.
The ARMv7 subtarget will be added in the future.
It will be not convinient if only one makefile is used
for several subtargets management and future development.
This patch also dropped 32-bit Traverse LS1043-S since
Traverse only intended to support 64-bit and the 32-bit
compile now had an issue.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: define ls-append function
Yangbo Lu [Mon, 9 Jul 2018 10:38:10 +0000 (18:38 +0800)]
layerscape: define ls-append function

This patch is to define a ls-append function for
each device to reuse it for image appending.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update linux 4.9 patches to LSDK-18.06
Yangbo Lu [Wed, 15 Aug 2018 08:08:53 +0000 (16:08 +0800)]
layerscape: update linux 4.9 patches to LSDK-18.06

This patch is to update linux 4.9 patches to LSDK-18.06
release and to adjust config-4.9 accordingly.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: add u-boot environment support for OpenWrt boot
Yangbo Lu [Tue, 17 Jul 2018 09:42:47 +0000 (17:42 +0800)]
layerscape: add u-boot environment support for OpenWrt boot

This patch is to implement u-boot environment txt files
to support OpenWrt boot for all layerscape devices.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update u-boot to LSDK-18.06
Yangbo Lu [Wed, 4 Jul 2018 04:20:41 +0000 (12:20 +0800)]
layerscape: update u-boot to LSDK-18.06

The u-boot source code had been migrated to codeaurora
for LSDK-18.06 release and the future release. This
patch is to update u-boot to LSDK-18.06 for both
uboot-layerscape and uboot-layerscape-armv8_32b packages.
Besides, this patch also introduced some other changes.
- Reworked uboot-layerscape makefile to make it more
  readable.
- Define package in uboot-layerscape-armv8_32b for each board.
- Fixed u-boot package selection in target image makefile.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: drop uboot-layerscape patches
Yangbo Lu [Mon, 16 Jul 2018 08:59:48 +0000 (16:59 +0800)]
layerscape: drop uboot-layerscape patches

Dropped uboot-layerscape patches which were environemnt patches.
We will make u-boot environment binaries with a txt file for all
devices.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update restool to LSDK-18.06
Yangbo Lu [Tue, 3 Jul 2018 06:17:08 +0000 (14:17 +0800)]
layerscape: update restool to LSDK-18.06

The restool source code had been migrated to codeaurora
for LSDK-18.06 release and the future release. This patch
is to update restool to LSDK-18.06 release.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update ls-ppa to LSDK-18.06
Yangbo Lu [Tue, 3 Jul 2018 06:58:01 +0000 (14:58 +0800)]
layerscape: update ls-ppa to LSDK-18.06

This patch is to update ls-ppa to LSDK-18.06 release
and to rework ls-ppa makefile to make it more readable.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update ls-rcw to LSDK-18.06
Yangbo Lu [Tue, 3 Jul 2018 03:07:06 +0000 (11:07 +0800)]
layerscape: update ls-rcw to LSDK-18.06

The rcw source code had been migrated to codeaurora
for LSDK-18.06 release and the future release. The
source code had also involved ls1012ardb/ls1012afrdm/
ls1088ardb/ls2088ardb rcw, so we updated ls-rcw to
LSDK-18.06, reworked the makefile and dropped ls-rcw-bin
package in this patch. Also reworked ls-rcw patch to
adapt to the latest source code.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update ppfe-firmware to LSDK-18.06
Yangbo Lu [Mon, 2 Jul 2018 08:33:35 +0000 (16:33 +0800)]
layerscape: update ppfe-firmware to LSDK-18.06

This patch is to update ppfe-firmware to LSDK-18.06 release.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update ls-mc to LSDK-18.06
Yangbo Lu [Mon, 2 Jul 2018 06:58:30 +0000 (14:58 +0800)]
layerscape: update ls-mc to LSDK-18.06

This patch is to update ls-mc to LSDK-18.06 release.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update ls-dpl to LSDK-18.06
Yangbo Lu [Mon, 2 Jul 2018 03:12:17 +0000 (11:12 +0800)]
layerscape: update ls-dpl to LSDK-18.06

The dpl-examples source code had been migrated to
codeaurora for LSDK-18.06 release and the future
release. This patch is to update this package to
LSDK-18.06.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agolayerscape: update fman-ucode to LSDK-18.06
Yangbo Lu [Fri, 29 Jun 2018 08:20:32 +0000 (16:20 +0800)]
layerscape: update fman-ucode to LSDK-18.06

Actually there was no change for fman-ucode in LSDK-18.06
just tagged with LSDK-18.06. This patch is to rework the
fman-ucode makefile to make it more readable, and to use
lsdk-1806 as the PKG_VERSION.

Signed-off-by: Yangbo Lu <yangbo.lu@nxp.com>
6 years agozynq: kernel: select FPGA-related configs
Luis Araneda [Wed, 12 Sep 2018 05:48:10 +0000 (02:48 -0300)]
zynq: kernel: select FPGA-related configs

These configs are necessary to program the FPGA fabric

Signed-off-by: Luis Araneda <luaraneda@gmail.com>
6 years agosunxi: build image/uboot for the NanoPi NEO2
Jasper Scholte [Wed, 19 Sep 2018 20:31:26 +0000 (22:31 +0200)]
sunxi: build image/uboot for the NanoPi NEO2

The NanoPi NEO2 is a small Allwinner H5 based board available with
different DRAM configurations.
This board is very similar to the NanoPi NEO PLUS2

Signed-off-by: Jasper Scholte <NightNL@outlook.com>
6 years agokernel: generic: Fix nftables inet table breakage
Brett Mastbergen [Wed, 12 Sep 2018 19:04:55 +0000 (15:04 -0400)]
kernel: generic: Fix nftables inet table breakage

Commit b7265c59ab7d ("kernel: backport a series of netfilter cleanup
patches to 4.14") added patch 302-netfilter-nf_tables_inet-don-t-use-
multihook-infrast.patch.  That patch switches the netfilter core in the
kernel to use the new native NFPROTO_INET support.  Unfortunately, the
new native NFPROTO_INET support does not exist in 4.14 and was not
backported along with this patchset.  As such, nftables inet tables never
see any traffic.

As an example the following nft counter rule should increment for every
packet coming into the box, but never will:

nft add table inet foo
nft add chain inet foo bar { type filter hook input priority 0\; }
nft add rule inet foo bar counter

This commit pulls in the required backport patches to add the new
native NFPROTO_INET support, and thus restore nftables inet table
functionality.

Tested on Turris Omnia (mvebu)

Fixes: b7265c59ab7d ("kernel: backport a series of netfilter cleanup ...")
Signed-off-by: Brett Mastbergen <bmastbergen@untangle.com>
6 years agokernel: add Si7020 relative humidity/temperature sensor driver
Hartmut Knaack [Mon, 10 Sep 2018 23:33:37 +0000 (01:33 +0200)]
kernel: add Si7020 relative humidity/temperature sensor driver

Add support for the Silicon Labs Si7020 family of relative humidity and
temperature sensors using the I2C bus.

Signed-off-by: Hartmut Knaack <knaack.h@gmx.de>
6 years agokernel: add TSL4531 ambient light sensor driver
Hartmut Knaack [Mon, 10 Sep 2018 23:33:36 +0000 (01:33 +0200)]
kernel: add TSL4531 ambient light sensor driver

Add support for the TAOS TSL4531x family of ambient light sensors using
the I2C bus.

Signed-off-by: Hartmut Knaack <knaack.h@gmx.de>
6 years agoath79: Fix GL-AR300M USB trigger
Robert Marko [Wed, 19 Sep 2018 09:18:00 +0000 (11:18 +0200)]
ath79: Fix GL-AR300M USB trigger

Correct a typo preventing USB trigger to work on AR300M.

Signed-off-by: Robert Marko <robimarko@gmail.com>
6 years agoar71xx: flag FritzBox 4020 buttons as active low
David Bauer [Tue, 11 Sep 2018 15:04:16 +0000 (17:04 +0200)]
ar71xx: flag FritzBox 4020 buttons as active low

Buttons of AVM FritzBox 4020 are incorrectly flagged as active high.

This was an oversight as RFKill button was working as expected even
with incorrectly flagged GPIO.

Signed-off-by: David Bauer <mail@david-bauer.net>
6 years agoath79: flag FritzBox 4020 buttons as active low
David Bauer [Tue, 11 Sep 2018 15:04:17 +0000 (17:04 +0200)]
ath79: flag FritzBox 4020 buttons as active low

Buttons of AVM FritzBox 4020 are incorrectly flagged as active high.

This was an oversight as RFKill button was working as expected even
with incorrectly flagged GPIO.

Signed-off-by: David Bauer <mail@david-bauer.net>
6 years agombedtls: update to 2.13.0
Magnus Kroken [Sat, 15 Sep 2018 22:44:43 +0000 (00:44 +0200)]
mbedtls: update to 2.13.0

* Fixed a security issue in the X.509 module which could lead to a buffer overread during certificate extensions parsing.
* Several bugfixes.
* Improvements for better support for DTLS on low-bandwidth, high latency networks with high packet loss.

Signed-off-by: Magnus Kroken <mkroken@gmail.com>
6 years agoath9k: add back support for using tx99 with active monitor interfaces
Felix Fietkau [Sat, 22 Sep 2018 13:34:40 +0000 (15:34 +0200)]
ath9k: add back support for using tx99 with active monitor interfaces

Fixes controlling bitrate

Signed-off-by: Felix Fietkau <nbd@nbd.name>
6 years agomac80211: fix tx queue allocation for active monitor interfaces
Felix Fietkau [Sat, 22 Sep 2018 13:18:46 +0000 (15:18 +0200)]
mac80211: fix tx queue allocation for active monitor interfaces

Fixes a crash with drivers like ath9k

Signed-off-by: Felix Fietkau <nbd@nbd.name>
6 years agomt76: fix tx power issue for mt76x2
Felix Fietkau [Sat, 22 Sep 2018 10:56:10 +0000 (12:56 +0200)]
mt76: fix tx power issue for mt76x2

6e1898d mt76x2: fix tx power configuration for VHT mcs 9

Signed-off-by: Felix Fietkau <nbd@nbd.name>
6 years agokernel: re-enable MIPS VDSO
Kevin Darbyshire-Bryant [Fri, 21 Sep 2018 18:41:27 +0000 (19:41 +0100)]
kernel: re-enable MIPS VDSO

kernel upstream commit 9efcaa7c4afba5628f2650a76f69c798f47eeb18 to 4.14
itself a backport of 0f02cfbc3d9e413d450d8d0fd660077c23f67eff has
resolved the cache line issues that led to us disabling VDSO by default
on MIPS.

Remove our force disable patch:

pending-4.14/206-mips-disable-vdso.patch

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
Acked-by: Hauke Mehrtens <hauke@hauke-m.de>
6 years agoelfutils: bump to 0.174
Luiz Angelo Daros de Luca [Tue, 18 Sep 2018 04:07:57 +0000 (01:07 -0300)]
elfutils: bump to 0.174

- Simplified musl patch with error.h concentrated into system.h

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
6 years agotoolchain/musl: update to version 1.1.20
Christian Lamparter [Tue, 4 Sep 2018 21:27:00 +0000 (23:27 +0200)]
toolchain/musl: update to version 1.1.20

This release introduces the ability to replace/interpose the allocator
(malloc) subject to certain restrictions, adds an experimental m68k
port, and makes notable improvements to stdio (application-provided
buffers), getaddrinfo (AI_ADDRCONFIG, support for IPv4-only kernel
configurations), the dynamic linker (safety against dlopen of
libraries using initial-exec TLS model, reclaiming unused memory on
FDPIC archs, better dladdr results), and handling of default thread
stack size (pthread_setattr_default_np now works more reliably).

Many bugs have been fixed, including potentially dangerous regressions
in iconv (only for new conversions to legacy encodings) and visibly
incorrect behavior in printf on non-x86 archs (%a format with
precision specifier), in getopt_long_only when short options are a
prefix for a long option, in complex arc-trig/hyperbolic functions, in
strftime and mktime (timezone-specific issues), and numerous
less-obvious places.

Signed-off-by: Christian Lamparter <chunkeey@gmail.com>
[altered commit msg a bit keeping it tight]
Tested-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
6 years agokernel: bump 4.14 to 4.14.71
Koen Vandeputte [Thu, 20 Sep 2018 12:37:43 +0000 (14:37 +0200)]
kernel: bump 4.14 to 4.14.71

Refreshed all patches.

Compile-tested on: cns3xxx, imx6
Runtime-tested on: cns3xxx, imx6

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
6 years agokernel: bump 4.9 to 4.9.128
Koen Vandeputte [Thu, 20 Sep 2018 12:36:42 +0000 (14:36 +0200)]
kernel: bump 4.9 to 4.9.128

Refreshed all patches.

Compile-tested on: ar71xx
Runtime-tested on: ar71xx

Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
6 years agodnsmasq: Change behavior when RD bit unset in queries.
Kevin Darbyshire-Bryant [Thu, 20 Sep 2018 17:26:33 +0000 (18:26 +0100)]
dnsmasq: Change behavior when RD bit unset in queries.

Backport upstream commit

Change anti cache-snooping behaviour with queries with the
recursion-desired bit unset. Instead to returning SERVFAIL, we
now always forward, and never answer from the cache. This
allows "dig +trace" command to work.

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
6 years agomwlwifi: driver version to 10.3.8.0-20180920
Jonathan Lancett [Thu, 20 Sep 2018 18:16:01 +0000 (19:16 +0100)]
mwlwifi: driver version to 10.3.8.0-20180920

Signed-off-by: Jonathan Lancett <j.lancett@ntlworld.com>
[minor tweak to commit title]
Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
6 years agoath9k: fix unloading the module
Felix Fietkau [Thu, 20 Sep 2018 08:06:49 +0000 (10:06 +0200)]
ath9k: fix unloading the module

Registering a GPIO chip with the ath9k device as parent prevents unload,
because the gpiochip core increases the module use count.
Unfortunately, the only way to avoid this at the moment seems to be to
register the GPIO chip without a parent device

Signed-off-by: Felix Fietkau <nbd@nbd.name>
6 years agomdadm: Install /etc/config file as 600
Rosen Penev [Wed, 19 Sep 2018 01:32:15 +0000 (18:32 -0700)]
mdadm: Install /etc/config file as 600

/etc/config/mdadm is only used by the init script which is ran as root.
There is no need for it to be readable by anything else.

Added PKG_CPE_ID for proper CVE tracking.

Small reorganization for consistency between Makefiles.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years agofstools: Install mount.hotplug and 10-fstab.defaults as 600
Rosen Penev [Wed, 19 Sep 2018 01:32:20 +0000 (18:32 -0700)]
fstools: Install mount.hotplug and 10-fstab.defaults as 600

Both of these are used by programs that run as root and nothing else.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years agousbmode: Update modeswitch data to 20170806
Rosen Penev [Wed, 19 Sep 2018 01:32:19 +0000 (18:32 -0700)]
usbmode: Update modeswitch data to 20170806

Changed hotplug file to 600 as it is only read by procd, which runs as
root.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years agotrelay: Install hotplug and config files as 600
Rosen Penev [Wed, 19 Sep 2018 01:32:18 +0000 (18:32 -0700)]
trelay: Install hotplug and config files as 600

The hotplug file is ran by procd, which runs as root. The config file is
used by the init script, which also runs as root.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years agodropbear: Install /etc/config as 600
Rosen Penev [Wed, 19 Sep 2018 01:32:17 +0000 (18:32 -0700)]
dropbear: Install /etc/config as 600

/etc/config/dropbear is used by the init script which only runs as root.

Small whitespace change.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years agolldpd: Install /etc/config file as 600
Rosen Penev [Wed, 19 Sep 2018 01:32:16 +0000 (18:32 -0700)]
lldpd: Install /etc/config file as 600

/etc/config/lldpd is only used by the init script, which only runs as root

Adjusted homepage and download URLs to use HTTPS.

-std=c99 is useful for GCC versions less than 6. Current OpenWrt uses 7.

Signed-off-by: Rosen Penev <rosenp@gmail.com>
6 years agonetifd: update to latest git HEAD
Hans Dedecker [Wed, 19 Sep 2018 08:03:57 +0000 (10:03 +0200)]
netifd: update to latest git HEAD

23941d7 system-linux: enable by default ignore encaplimit for ip6 tunnels

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
6 years agomap: drop default encaplimit value
Hans Dedecker [Mon, 17 Sep 2018 15:53:34 +0000 (17:53 +0200)]
map: drop default encaplimit value

Setting encaplimit to a numerical value results into the value being
included as tunnel encapsulation limit in the destination option header
for tunneled packets.
Several users have reported interop issues as not all ISPs support the
destination option header containing the tunnel encapsulation limit
resulting into broken map connectivity.
Therefore drop the default encaplimit value for map tunnels so
no destination option header is included by default.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
6 years agods-lite: drop default encaplimit value
Hans Dedecker [Mon, 17 Sep 2018 09:24:39 +0000 (11:24 +0200)]
ds-lite: drop default encaplimit value

Setting encaplimit to a numerical value results into the value being
included as tunnel encapsulation limit in the destination option header
for tunneled packets.
Several users have reported interop issues as not all ISPs support the
destination option header containing the tunnel encapsulation limit
resulting into broken ds-lite connectivity.
Therefore drop the default encaplimit value for ds-lite tunnels so
no destination option header is included by default.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
6 years agowireguard: bump to 0.0.20180918
Jason A. Donenfeld [Tue, 18 Sep 2018 14:57:05 +0000 (16:57 +0200)]
wireguard: bump to 0.0.20180918

* blake2s-x86_64: fix whitespace errors
* crypto: do not use compound literals in selftests
* crypto: make sure UML is properly disabled
* kconfig: make NEON depend on CPU_V7
* poly1305: rename finish to final
* chacha20: add constant for words in block
* curve25519-x86_64: remove useless define
* poly1305: precompute 5*r in init instead of blocks
* chacha20-arm: swap scalar and neon functions
* simd: add __must_check annotation
* poly1305: do not require simd context for arch
* chacha20-x86_64: cascade down implementations
* crypto: pass simd by reference
* chacha20-x86_64: don't activate simd for small blocks
* poly1305-x86_64: don't activate simd for small blocks
* crypto: do not use -include trick
* crypto: turn Zinc into individual modules
* chacha20poly1305: relax simd between sg chunks
* chacha20-x86_64: more limited cascade
* crypto: allow for disabling simd in zinc modules
* poly1305-x86_64: show full struct for state
* chacha20-x86_64: use correct cut off for avx512-vl
* curve25519-arm: only compile if symbols will be used
* chacha20poly1305: add __init to selftest helper functions
* chacha20: add independent self test

Tons of improvements all around the board to our cryptography library,
including some performance boosts with how we handle SIMD for small packets.

* send/receive: reduce number of sg entries

This quells a powerpc stack usage warning.

* global: remove non-essential inline annotations

We now allow the compiler to determine whether or not to inline certain
functions, while still manually choosing so for a few performance-critical
sections.

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
6 years agodnsmasq: Handle memory allocation failure in make_non_terminals()
Kevin Darbyshire-Bryant [Wed, 19 Sep 2018 06:37:53 +0000 (07:37 +0100)]
dnsmasq: Handle memory allocation failure in make_non_terminals()

Backport upstream commit:

ea6cc33 Handle memory allocation failure in make_non_terminals()

Signed-off-by: Kevin Darbyshire-Bryant <ldir@darbyshire-bryant.me.uk>
6 years agoucert: work around short read
Mike McCormack [Sat, 18 Aug 2018 06:04:57 +0000 (16:04 +1000)]
ucert: work around short read

usign occasionally writes 16 characters then exits without writing a LF,
leaving ucert hanging waiting for more input.  Accept 16 characters
or more rather than 17 to work around the short read.

Signed-off-by: Mike McCormack <mike@atratus.org>
Signed-off-by: Daniel Golle <daniel@makrotopia.org>