This fixes: CVE-2014-3158 and some other bugs.
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
Backport of r42525
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42613 3c298f89-4303-0410-b956-a3cf2f4a3e73
Main changes:
- URL parser: IPv6 zone identifiers are now supported
- cyassl: Use error-ssl.h when available (drop local patch)
- polarssl: support CURLOPT_CAPATH / --capath
- mkhelp: generate code for --disable-manual as well (drop local patch)
Full release notes: http://curl.haxx.se/changes.html
MIPS 34kc binary size:
- 7.36.0 before: 82,539 bytes
- 7.38.0 after: 83,321 bytes
Signed-off-by: Catalin Patulea <cat@vv.carleton.ca>
Backport of r42517
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42612 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42594
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42595 3c298f89-4303-0410-b956-a3cf2f4a3e73
this causes problems on 47xx/74k
Signed-off-by: John Crispin <blogic@openwrt.org>
Backport of r42570
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42579 3c298f89-4303-0410-b956-a3cf2f4a3e73
add a proto handler for sierra wireless directip modems
Signed-off-by: John Crispin <blogic@openwrt.org>
Backport of r42465
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42577 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42553
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42554 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42456
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42458 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42453
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42454 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42443
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42444 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42419
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42420 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42405
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42406 3c298f89-4303-0410-b956-a3cf2f4a3e73
On brcm47xx (Huawei E970), I noticed that sysupgrade now tries to flash trx images which don't fit into the flash, resulting in non-booting system.
I found that mtd does trx size checking only when flashing to a partition called "linux". This patch changes this to be "firmware".
This matches the following patch which changed partition name in bcm47xxpart.c driver to "firmware":
commit 86b4d5ef68ca77ff6724ebb9bddd6b93239c87fc
Author: hauke <hauke@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Date: Sun Dec 1 16:32:32 2013 +0000
brcm47xx: use "firmware" partition name
...
Signed-off-by: Rafał Miłecki <zajec5@gmail.com>
Backport of r38973
Signed-off-by: Mathias Adam <m.adam--openwrt@adamis.de>
Backport of r42403
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42404 3c298f89-4303-0410-b956-a3cf2f4a3e73
Use an if/else statement to cover the two different syntaxes. Add
comments explaining what the end results should look like.
This patch should not change the script's output.
Signed-off-by: Kevin Cernekee <cernekee@gmail.com>
Backport of r42320
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42390 3c298f89-4303-0410-b956-a3cf2f4a3e73
An entry like this in /etc/config/dhcp:
config 'host'
option 'name' 'pc2'
option 'ip' '192.168.100.56'
option 'dns' '1'
results in a /tmp/hosts/dhcp entry that looks like this:
192.168.100.56 .lan
Obviously it should say "pc2.lan".
This happens because $name is set to "" in order to support the MAC-less
syntax: "--dhcp-host=lap,192.168.0.199". Fix this by reordering the
operations. Also, refuse to add a DNS entry if the hostname or IP is
missing.
Fixes#17683
Reported-by: Kostas Papadopoulos <kpapad75@travelguide.gr>
Signed-off-by: Kevin Cernekee <cernekee@gmail.com>
Backport of r42319
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42389 3c298f89-4303-0410-b956-a3cf2f4a3e73
LuCI creates "domain" UCI config sections, which the dnsmasq init file
then, currently, translates into "address" config lines. This is not
the correct usage of "address" (see r36943), and also causes rDNS
records to not be created. This patches dnsmasq.init to utilize the
additional hosts file introduced in r40799 for such domain names,
resolving both issues.
Signed-off-by: Tyler Fenby <tylerf@securecominc.com>
Backport of r42318
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42388 3c298f89-4303-0410-b956-a3cf2f4a3e73
somebody started to set a function returncode in the validation
stuff and everybody copies it, e.g.
myfunction()
{
fire_command
return $?
}
a function automatically returns with the last returncode,
so we can safely remove the command 'return $?'. reference:
http://tldp.org/LDP/abs/html/exit-status.html
"The last command executed in the function or script determines the exit status."
Signed-off-by: Bastian Bittorf <bittorf@bluebottle.com>
Backport of r42278
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42379 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: John Crispin <blogic@openwrt.org>
Backport of r42230
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42373 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Nicolas Thill <nico@openwrt.org>
Backport of r42229
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42372 3c298f89-4303-0410-b956-a3cf2f4a3e73
Currently, any package that uses host compile and depends on
libgmp.so will fail. This is because gmp is not compile for
host machine. So, staging_dir/host has only static lib for gmp
$ ls staging_dir/host/lib/libgmp* -1
staging_dir/host/lib/libgmp.a
staging_dir/host/lib/libgmp.la
staging_dir/host/lib/libgmpxx.a
staging_dir/host/lib/libgmpxx.la
Addind host compile in gmp, the dependent package can use:
PKG_BUILD_DEPENDS:=gmp/host
That will compile gmp to staging_dir/host with *.so files
Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
Backport of r42196
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42369 3c298f89-4303-0410-b956-a3cf2f4a3e73
Patch to BusyBox Makefile to fix linker errors when PAM support is enabled by
CONFIG_BUSYBOX_CONFIG_PAM=y. Typical errors include:
login.c:(.text.login_main+0x122): undefined reference to `pam_start'
Signed-off-by: Stephen Parry <sgparry@mainscreen.com>
Backport of r42195
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42368 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Steven Barth <steven@midlink.org>
Backport of r42158
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42355 3c298f89-4303-0410-b956-a3cf2f4a3e73
Utilize the new selective conntrack flushing facility to clear
out active conntrack entries referring to old IP addresses after
a firewall reload.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42114
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42353 3c298f89-4303-0410-b956-a3cf2f4a3e73
Enable the separate feed repositories by default to align custom builds with the repositories
available on the snapshot download server.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42112
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42352 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Luka Perkov <luka@openwrt.org>
Backport of r42111
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42351 3c298f89-4303-0410-b956-a3cf2f4a3e73
This adds default tx and rx antennas, so that LuCI shows automatic as the default radio option for the antennas.
Signed-off-by: Álvaro Fernández Rojas <noltari@gmail.com>
Backport of r42085
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42350 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42345
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42347 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42344
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42346 3c298f89-4303-0410-b956-a3cf2f4a3e73
Backport of r42337.
Signed-off-by: Jonas Gorski <jogo@openwrt.org>
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42338 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42329
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42330 3c298f89-4303-0410-b956-a3cf2f4a3e73
A quite frequent problem after sysupgrading from an older, SSL enabled build
is that ustream-ssl is not installed so uhttpd fails to come up again due to
https listening directives in the preserved configuration.
Skip key/cert and ssl listen options when libustream-ssl.so is not present.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42284
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42286 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42257
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42258 3c298f89-4303-0410-b956-a3cf2f4a3e73
Disable MIPS16 to prevent it negatively affecting performance.
Observed was a increase of connection delay from ~6 to ~11 seconds
and a reduction of scp speed from 1.1MB/s to 710kB/s on brcm63xx.
Fixes#15209.
Backport of r42250.
Signed-off-by: Jonas Gorski <jogo@openwrt.org>
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42255 3c298f89-4303-0410-b956-a3cf2f4a3e73
This is a bug revealed in r41830.
First, the static variable `char nif[IFNAMSIZ]` of nl80211_phy2ifname()
would be zeroed out if the argument is "wlan0" or the like. This will
happen in the following call stack.
nl80211_get_scanlist("radio0", buf, len);
nl80211_phy2ifname("radio0") // return static var nif with content "wlan0"
nl80211_get_scanlist(nif, buf, len); // tail call
nl80211_get_mode(nif);
nl80211_phy2ifname(nif); // zero out nif
Later we try nl80211_ifadd("") which was supposed to create interface
"tmp.", but that won't happen because nl80211_msg() will put an invalid
ifidx 0 to the nlmsg.
Then iwinfo_ifup() and iwinfo_ifdown() would fail and happily
nl80211_get_scanlist() returned 0 and left *len undefined.
Signed-off-by: Yousong Zhou <yszhou4tech@gmail.com>
Backport of r42151
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42152 3c298f89-4303-0410-b956-a3cf2f4a3e73
When looking for the first ipaddr also consider the current prefix just
like network_get_ipaddrs6 does. If ipv6-address was empty the function
did not return the first ipaddr even if the list was non-empty.
fixes commit 83e9122f88a002871d5cdf421cf6aa6052b7e006
Signed-off-by: Henning Schild <henning@hennsch.de>
Backport of r42139
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42140 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: John Crispin <blogic@openwrt.org>
Backport of r42055
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42056 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42048
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42051 3c298f89-4303-0410-b956-a3cf2f4a3e73
NFLOG and NFQUEUE targets' full support for iptables.
Includes all needed kernel modules (Xtables's and Netlink's)
and userspace libraries.
All added kernel modules can be individually disabled,
all other new libraries get their own individual packages.
Reported-by: Fabian Hugelshofer <hugelshofer2006@gmx.ch>
Reported-by: Rainer Poisel <rainer.poisel@fhstp.ac.at>
Reported-by: Derek LaHousse <dlahouss@mtu.edu>
Signed-off-by: Guillaume Déflache <guillaume.deflache@ibwag.com>
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42030 3c298f89-4303-0410-b956-a3cf2f4a3e73
This add 5GHz support for N-PHY to b43, thanks Rafał Miłecki.
b43_wflush16 was put into an extra function because it is pretty big in asm.
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
backport: r41900
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42021 3c298f89-4303-0410-b956-a3cf2f4a3e73
This changeset implements a new menuconfig option to generate separate
repositories for each enabled package feed instead of one monolithic one.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r42002
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42016 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r42014
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42015 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41953
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42011 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41952
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42010 3c298f89-4303-0410-b956-a3cf2f4a3e73
This commit implements a new netfilter match "xt_id" which can be used to
attach unsigned 32bit IDs to iptables rules.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r41945
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@42007 3c298f89-4303-0410-b956-a3cf2f4a3e73
Depend on the GRE tunnel peeraddr to trigger setup of the tunnel interface.
Addresses the issue reported in https://lists.openwrt.org/pipermail/openwrt-devel/2014-August/027201.html
Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41999 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41960
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41982 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41959
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41981 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41958
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41980 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41957
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41979 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41956
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41978 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41955
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41977 3c298f89-4303-0410-b956-a3cf2f4a3e73
configure enables libzfs support on default.
This will break the build, on systems without libzfs.
Signed-off-by: Hans Ulli Kroll <ulli.kroll@googlemail.com>
Backport of r41935
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41975 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Alexandru Ardelean <aa@ocedo.com>
Backport of r41934
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41974 3c298f89-4303-0410-b956-a3cf2f4a3e73
* set the system time/data
* "ubus call gps info" will tell you lattitude, longitude, elevation, speed and bearing
Signed-off-by: John Crispin <blogic@openwrt.org>
Backport of r41929
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41970 3c298f89-4303-0410-b956-a3cf2f4a3e73
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41891
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41968 3c298f89-4303-0410-b956-a3cf2f4a3e73
Creates /etc/device_info which will be used to fill in information for
WPS and other protocols that need manufacturer/device information
This helps with creating OpenWrt firmware for OEM or rebranded devices.
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
Backport of r41884
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41967 3c298f89-4303-0410-b956-a3cf2f4a3e73
This change introduces support for wildcard patterns in "option path"
of section "wifi-device".
Objective is to allow paths like "*/usb[0-9]/*/*" in order to claim
any usb device using the same backend type, regardless of its bus
address or phy name.
Signed-off-by: Jo-Philipp Wich <jow@openwrt.org>
Backport of r41873
git-svn-id: svn://svn.openwrt.org/openwrt/branches/barrier_breaker@41965 3c298f89-4303-0410-b956-a3cf2f4a3e73