4606 commits

Author	SHA1	Message	Date
Felix Fietkau	5bdb7a5990	wifi-scripts: fix reload handling with random macaddr ... Allow initially generated MAC address to be preserved across reload Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-26 11:53:50 +02:00
Felix Fietkau	5781922f33	wifi-scripts: ucode: fix random mac address ... Fix exception by using fs.open instead of open Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-26 11:53:50 +02:00
Felix Fietkau	d5fa130113	hostapd: fix link address of secondary MLO interfaces ... Ensure that hapd->own_addr is set based on the configured bssid Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-26 11:53:50 +02:00
Konstantin Demin	e021b8a746	dropbear: disable login recording with musl libc ... disallow lastlog/login()/utmp/wtmp with musl libc in order to avoid runtime errors due to musl implementation details. ref: https://github.com/openwrt/openwrt/issues/19566#issuecomment-3167897095 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19715 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-23 18:25:11 +02:00
Konstantin Demin	fb6c22caec	dropbear: don't limit channel window to 500MB ... cherry-pick commit from https://github.com/mkj/dropbear/pull/377 Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19715 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-23 18:25:11 +02:00
Konstantin Demin	3e5f8a0364	dropbear: fix missing depends for sntrup761x25519-sha512 ... resolves FTBFS where internal option DROPBEAR_SHA512 wasn't enabled by any of options Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19715 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-23 18:25:11 +02:00
gongzi miao	ca6d648382	ipset: update to 7.24 ... release notes: 7.24: https://www.spinics.net/lists/netfilter-devel/msg91440.html 7.23: https://www.spinics.net/lists/netfilter-devel/msg89840.html 7.22: https://www.spinics.net/lists/netfilter-devel/msg86745.html Signed-off-by: gongzi miao <miaogongzi0227@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19719 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-17 17:36:54 +02:00
Felix Fietkau	9736d42141	wifi-scripts: ucode: add support for scan_list ... Speed up connecting in client mode by allowing to limit the channels that need to be scanned. Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-15 19:41:48 +02:00
Felix Fietkau	4b6d81d7c1	wifi-scripts: ucode: remove reference to legacy drivers ... Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-15 19:31:28 +02:00
Felix Fietkau	45360a5aea	wifi-scripts: ucode: add extra RSN override for MLO ... Use SAE-EXT-KEY instead of SAE for MLO clients Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-15 11:12:38 +02:00
Tobias Waldvogel	2282377841	wifi-scripts: Avoid syslog message variable data does not exist ... Initialize data to {} if null before calling mac80211.sh to avoid a confusing error message in the syslog. Fixes: https://github.com/openwrt/openwrt/issues/14010 Signed-off-by: Tobias Waldvogel <tobias.waldvogel@gmail.com> Signed-off-by: Felix Fietkau <nbd@nbd.name> [cosmetic change]	2025-08-14 20:40:31 +02:00
Felix Fietkau	3ce8442576	netifd: update to Git HEAD (2025-08-14) ... 8c139e183e52 bridge: fix changing the vlan local flag at runtime Fixes: https://github.com/openwrt/openwrt/issues/19672 Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-14 19:12:37 +02:00
Felix Fietkau	6ae4115746	wifi-scripts: ucode: fix setting supported/basic rates in config ... Only set the default based on cell density, do not override. Fixes: https://github.com/openwrt/openwrt/issues/19673 Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-14 18:24:32 +02:00
Tobias Waldvogel	98435a37a7	wifi-scripts: iface should be optional in wifi-vlan definition ... The option iface should be optional according to the description of /etc/config/wireless in order to avoid repeating the definition for each virtual interface. Signed-off-by: Tobias Waldvogel <tobias.waldvogel@gmail.com>	2025-08-14 17:28:33 +02:00
Felix Fietkau	d223d29feb	wifi-scripts: ucode: get the phy capabilities for the correct band ... On multi-band phys, capabilities can differ between bands. Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-13 10:54:32 +02:00
Felix Fietkau	be1c301cdc	netifd: update to Git HEAD (2025-08-12) ... 843a736a4e26 ubus: fix type check in procd ubus data callback 94c3869941b0 interface: avoid memleaks on invalid interfaces 6ead304877ad global: use blobmsg_parse_attr 813b9882dbab config: add support for defining devices via procd data 575b04326e32 config: add support for defining interfaces via procd data a0be934399cf examples: sync wireless.uc Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-12 20:19:14 +02:00
Felix Fietkau	813002176f	procd: update to Git HEAD (2025-08-12) ... dafdf98b03bf service: fix object nesting in the ubus get_data call Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-12 18:14:44 +02:00
Felix Fietkau	08cc7e881e	bridger: update to Git HEAD (2025-08-10) ... ccdc0394c833 optimize bridge local-rx handling 544551f1beae add udebug support Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-10 18:49:17 +02:00
Felix Fietkau	aa0b5eb429	wifi-scripts: ucode: fix unencrypted sta connection ... add missing key_mgmt option Fixes: https://github.com/openwrt/openwrt/issues/17578 Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-10 10:17:41 +02:00
Felix Fietkau	f650f2975c	netifd: add missing dependencies ... Fixes: https://github.com/openwrt/openwrt/issues/19704 Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-09 09:25:47 +02:00
Felix Fietkau	3aee42001f	wifi-scripts: add modular wps button handler scripts ... Execute scripts in /etc/rc.wps until one of them returns a exit code of 0. Split up sta and ap handling of wps into separate scripts. Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-08 18:53:30 +02:00
Konstantin Demin	68e5f46899	dropbear: relax path permission checks for authorized keys ... Check permissions of correct folder for certificates too. Fixes: bbe4d6ddb2 ("dropbear: bump to 2025.88") Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19611 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-07 16:46:30 +02:00
Konstantin Demin	27baa3c731	dropbear: fix FTBFS when CONFIG_DROPBEAR_SVR_PUBKEY_OPTIONS is not enabled ... While this is discouraged to disable this option, both upstream and OpenWrt allows one to do it. Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19611 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-07 16:44:11 +02:00
Konstantin Demin	07b20b6d35	dropbear: fix typos in path configuration ... Replace _FILE with _PATH Fixes: d8ff2d8cba ("dropbear: refactor configuration") Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19611 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-08-07 16:43:59 +02:00
Felix Fietkau	6014be3f0f	netifd: update to Git HEAD (2025-08-06) ... 964c9aa3ec2b ucode: fix passing network vlan on handle_link 3d140ec0b834 examples: sync scripts with openwrt Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-06 12:29:03 +02:00
Nick Hainke	6719bf5672	ead: replace legacy RETSIGTYPE with void in signal handler ... The RETSIGTYPE macro was historically used for signal handler return types, defaulting to int on some legacy systems. This is no longer needed, so we now use void as the return type. Fixes a compiler error: error: assignment to 'void (*)(int)' from incompatible pointer type 'int (*)()' [-Wincompatible-pointer-types] Link: https://github.com/openwrt/openwrt/pull/19681 Signed-off-by: Nick Hainke <vincent@systemli.org>	2025-08-06 06:39:47 +02:00
Felix Fietkau	adb1fce19b	wifi-scripts: set rsn_overriding for client mode interfaces ... Unless HE/EHT is enabled, the client should not process the RSN override IE. This prevents picking up unsupported ciphers Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-04 12:40:08 +02:00
Felix Fietkau	640c3984e3	wifi-scripts: add support for passing wifi-device settings via procd ... Allows either overriding individual device settings, or passing complete devices Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-04 12:08:29 +02:00
Felix Fietkau	de447b93e0	wifi-scripts: fix handling changes to the wifi device disabled flag ... Allow toggling autostart even for disabled devices When switching from enabled to disabled, call teardown instead of setup Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-04 11:46:42 +02:00
Felix Fietkau	f3dd291b62	wifi-scripts: make wifi/utils.uc available in the legacy scripts variant ... It can be used to look up the phy name from uci data in ucode scripts Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-04 11:46:42 +02:00
Felix Fietkau	7d570a489b	wifi-scripts: fix handling hotplug-added wireless vifs ... Pass the correct ifname and state Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-03 21:55:12 +02:00
Felix Fietkau	8444891064	wifi-scripts: fix setup of vifs on multi-radio devices ... Ensure that the vlan name check is bypassed Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-03 21:55:12 +02:00
Felix Fietkau	cbc23f1eb0	wifi-scripts: ucode: remove leftover debug comment ... Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-03 21:55:12 +02:00
Felix Fietkau	f26d134436	wifi-scripts: ucode: enforce MFP for SAE connections ... Avoids connection failures Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-03 21:55:12 +02:00
Felix Fietkau	a2c361c520	hostapd: add missing MLO check on ucode bss stop ... Fixes a crash on some config reload types Fixes: 816c2d86e7 ("hostapd: add support for MLO interfaces in ucode") Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-03 06:50:42 +02:00
Felix Fietkau	da370c7b96	netifd: update to Git HEAD (2025-08-03) ... b563d7b2e65a ucode: add missing return code checks for fchdir/chdir c3cfd8df02af system-linux: add variable initialization to avoid compiler warnings on older gcc Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-03 06:22:59 +02:00
Felix Fietkau	287f1ea3dd	wifi-scripts: ucode: fix ssid handling ... Add proper escaping for ssid values. Use it to fix multi-ap backhaul ssid. Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 17:43:28 +02:00
Felix Fietkau	3786d15561	hostapd: fix bss config reload while in DFS state ... Only start a BSS after a config change if it was started before. Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 16:46:59 +02:00
Felix Fietkau	217c315423	wifi-scripts: ucode: add MLO interface support ... MLO can be enabled by configuring a wifi-iface section with multiple radios, like this: config wifi-iface list radio 'radio0' list radio 'radio1' option mlo '1' option ssid 'OpenWrt' option mode 'ap' option network 'lan' ... Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 16:46:59 +02:00
Felix Fietkau	816c2d86e7	hostapd: add support for MLO interfaces in ucode ... MLO interface config is provided in a separate ubus call before adding regular per-phy interfaces. Preparation for full MLO support. Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 16:46:59 +02:00
Felix Fietkau	be2916b1d4	hostapd: remove unnecessary ucv_gc calls ... They should not be needed, since the code doesn't use circular references Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 16:46:59 +02:00
Felix Fietkau	bcd3d62834	hostapd: maintain ucode hostapd.bss list per interface ... Preparation for MLO support Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 16:46:59 +02:00
Felix Fietkau	96fa769937	netifd: update to Git HEAD (2025-08-02) ... 3a7878065829 system-dummy: add missing vrf functions 471d9d6abb6d CMakeLists.txt: bump minimum required version c3a0255e2150 scripts: fix dummy mode on systems where libubox is in /usr/local 7a3b281230e4 update example mac80211 script and wireless config d9f2dd2614f2 wireless: replace with ucode scripts 74c22601baad wireless: add MLO support to example scripts Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-08-02 16:46:31 +02:00
Christian Korber	682de550a0	hostapd: fix logging of configuration content ... As discussed in openwrt#17517, there are contents of hostapd's configuration file logged in syslog. This includes critical information like `passphrase`. To circumvent this condition, this commit logs only "inline" if config_fname is inline data. Otherwise the upstream logic of hostapd applies. Fixes: openwrt#14049 Signed-off-by: Christian Korber <ck@dev.tdt.de> Link: https://github.com/openwrt/openwrt/pull/17718 Signed-off-by: Robert Marko <robimarko@gmail.com>	2025-08-01 22:14:08 +02:00
Michael Pratt	92d10e2cdf	nftables: remove usage of autoreconf ... The usage of automake is left over after the patch which required it was removed since the new configure option "--without-cli" was added to upstream. Remove the usage of autotools to save build time. Ref: 72e6e0b85 ("nftables: introduce experimental nftables") Signed-off-by: Michael Pratt <mcpratt@pm.me> Link: https://github.com/openwrt/openwrt/pull/16522 Signed-off-by: Robert Marko <robimarko@gmail.com>	2025-07-26 14:38:09 +02:00
Konstantin Demin	467b7c0dc6	uhttpd: bump PKG_RELEASE ... improves ec62e87c0c "uhttpd: adjust with glibc and libcrypt-compat" Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19404 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-07-19 18:54:05 +02:00
Konstantin Demin	d03f65a8f2	ppp: bump PKG_RELEASE ... improves ea6bcebc41 "ppp: adjust with glibc and libcrypt-compat" Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19404 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-07-19 18:54:05 +02:00
Konstantin Demin	c4064c55bd	dropbear: bump PKG_RELEASE ... improves eecc53cbe5 "dropbear: adjust with glibc and libcrypt-compat" Signed-off-by: Konstantin Demin <rockdrilla@gmail.com> Link: https://github.com/openwrt/openwrt/pull/19404 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-07-19 18:54:05 +02:00
Felix Fietkau	119aa00a78	wifi-scripts: ucode: add support for iwinfo nl80211 phyname ... It is needed for compatibility with scripts that rely on this existing iwinfo behavior Signed-off-by: Felix Fietkau <nbd@nbd.name>	2025-07-18 12:33:14 +02:00
Hauke Mehrtens	efb4200ba5	uhttpd: update to Git HEAD (2025-07-06) ... b3e3c05 client: don't send stray EOF chunk on connection timeout fad0d05 proc: inhibit chunked transfer encoding on existing TEs or known length 3d6f01b file: prevent writes beyond end of uh_buf on enumerating directories c7294e7 client: reject requests with multiple content-lengths and/or TEs 7e64e8b client: Allow sending content in DONE state uhttpd commit 3d6f01b fixes: CVE-2025-32108 Link: https://github.com/openwrt/openwrt/pull/19290 Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>	2025-07-15 22:06:10 +02:00