Naywatch now prints
naywatch: Naywatch Activated!
when becoming active.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 09d5ceb923)
Maintainer: Rob White rob@blue-wave.net
Compile tested: All
Run tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc, x86-64, on 21.02.2 and snapshot.
Description:
* This version adds new functionality, and fixed some issues
* Fix - repeated syslog messages - output only on mode change [bluewavenet]
* Add - service status to json output [bluewavenet]
* Add - support for multiple mesh interfaces [bluewavenet]
* Fix - duplicate ifname if more than one mesh interface [bluewavenet]
* Add - compatibility with iw < v5.16-1 [bluewavenet]
* Add - search and delete phantom meshnodes [bluewavenet]
Signed-off-by: Rob White <rob@blue-wave.net>
(cherry picked from commit 1cd90655da)
Babel is now a IETF standard. Update the package description.
Fixes: #867
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 983096d308)
Changelog:
916d3d9 Update CHANGES for babeld-1.12.1
3d8aec4 Schedule an interface check after adding an interface.
f13602b Split last PC into unicast and multicast values
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 9028f67afd)
Changelog:
5 May 2022: babeld-1.12
* Implement v4-via-v6 routing (RFC 9229), which allows a router with
IPv4 addresses only to route IPv4. Thanks to Théophile Bastian.
* Enable extended Netlink acks when available.
Thanks to Toke Høyland-Jørgensen.
* Fix restoring of interface configuration to avoid unbounded memory
consumption. Thanks to andrew-hoff.
* Fix handling of deny filters in the install chain.
Refreshed patches:
- 600-add-ubus.patch
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit b35766330b)
* Request iflink once in batadv-on-batadv check
* Request iflink once in batadv_get_real_netdevice
* Don't expect inter-netns unique iflink indices
* Don't skb_split skbuffs with frag_list
Signed-off-by: Sven Eckelmann <sven@narfation.org>
Eric Dumazet changed the mc_forwarding in commit 145c7a793838 ("ipv6: make
mc_forwarding atomic") the type of mc_forwarding from __s32 to an atomic_t.
This patch was then ported to various stable kernels.
This code change caused a FTBFS when in batman-adv when
CONFIG_BATMAN_ADV_MCAST was activated. To work around this problem, provide
a version for kernels with __s32 mc_forwarding and a version for kernel
with atomic_t mc_forwarding.
Fixes: #850
Reported-by: Huangbin Zhan <zhanhb88@gmail.com>
Signed-off-by: Sven Eckelmann <sven@narfation.org>
Maintainer: Rob White rob@blue-wave.net
Compile tested: All
Run tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc, x86-64, on 21.02.2
Description:
Mesh11sd is a dynamic parameter configuration daemon for 802.11s mesh networks.
It was originally designed to leverage 802.11s mesh networking at Captive Portal venues.
This is the open source version and it enables easy and automated mesh network operation with multiple mesh nodes.
It allows all mesh parameters supported by the wireless driver to be set in the uci config file.
Settings take effect immediately without having to restart the wireless network.
Default settings give rapid and reliable layer 2 mesh convergence.
Without mesh11sd, many mesh parameters cannot be set in the uci wireless config file as the mesh interface must be up before the parameters can be set.
Some of those that are supported, would fail to be implemented when the network is (re)started resulting in errors or dropped nodes.
The mesh11sd daemon dynamically checks configured parameters and sets them as required.
This version does not require a Captive Portal to be running.
Signed-off-by: Rob White <rob@blue-wave.net>
(cherry picked from commit b4ab896894)
Naywatch should first try to reboot normally, and if that does not work
do a hard reboot. However, the hard reboot was never called.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 65f747a8bc)
30 March 2022: babeld-1.11
* Implemented MAC authentication (RFC 8967). Thanks to Clara Dô,
Weronika Kołodziejak and Antonin Décimo.
* Changed the interface of the add_filter function in order to simplify
integration in OpenWRT. Thanks to Nick Hainke.
Detailed List:
7c053fe Export add_filters and simplify interface.
91c44f8 Rename blake2s to blake2s128.
dda8d63 Update CHANGES.
43a0066 Allow Blake2s keys up to 32 bytes.
375ea5f Rename interface option hmac to key.
1b9abc4 Replace hmac-verify with accept-bad-signatures.
3777eb4 Ignore .gitmodules when releasing an archive.
3551b45 Simplify and fix preparse phase.
ba8f116 Add rate limitations for challenges.
6d44238 Show PC number.
ceda3a0 Expire Index and challenge timer.
d66a4d2 Ignore a Challenge Request received on multicast.
024c17a Fix confusion between INDEX_LEN and NONCE_LEN when sending PC TLV.
ceb021f Fix double-free in error path.
1e08aed Change no_hmac_verify to hmac-verify.
c7ad387 Use 'hmac-sha256' and not 'sha256'.
5a15957 Fix nodes incorrectly rejecting packets.
af02039 Append a PC message if Babel-MAC is enabled.
46fc7da Follow the spec closely for the preparse phase.
87f39d0 Rename MAC functions and constants to match the spec.
02b14e3 Helpful error messages in key configuration.
d763f3e Error if configured key can't be found.
3cb0ab7 Use RFC3542 for IPv6 on macOS.
69df1cb Use _GNU_SOURCE instead of __USE_GNU.
ef3a113 Don't copy nonce, suppress VLA.
c243769 Move key validation in parse_key.
b06b2fc Constify source argument of fromhex.
9529941 Use AUTH_TYPE_NONE consistently.
d922b64 Document the HMAC options in manual page.
0c4afc2 Only allow keys configured on a given interface.
7de6715 Create neighbour after checking HMAC.
ecd1f42 Fix typo in compare_hmac.
9a5de34 Fix HMAC-SHA-256 computation.
f1051fd Fix constants to be consistent with SHA-256.
9688b68 Fix memory leaks in error-handling paths in configuration parser.
4d8a831 Fix some more (read-only) buffer overflows.
ebda926 Fix potential memory leaks.
d53fec0 Use AUTH_TYPE_* consistently.
a1afd51 Add no_hmac_verify flag.
b4e28f2 Fix ordering of fields in pseudo-header.
c8ace8b Use IANA-assigned TLV numbers.
739f76a Implement HMAC authentication.
e3adf47 Compile with SHA-256 and Blake2s.
ca0a512 Add SHA-2 and Blake2 submodules.
756783e Untabify
Remove upstreamed patches:
- 000-export-add-filters-and-simplify-interface.patch
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit dbff012a2f)
In order to use feeds from GH mirror for GH actions, thus saving a lot
of resources being wasted. While at it fix whitespace issue.
Signed-off-by: Petr Štetiar <ynezz@true.cz>
[applied to routing feed]
[whitespace issue not existing in routing feed]
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 5702d2e40b)
No also check mirror hashes and badly formated init files
Signed-off-by: Paul Spooren <mail@aparcar.org>
[applied to routing feed]
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 2134c56d12)
You can define filter functions in babeld by:
in if eth0 metric 128
This commit adds the ubus equivalent to dynamically add filter on
runtime:
ubus call babeld add_filter '{"ifname":"eth0", "type":"input",
"metric":128}'
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit a618159d33)
You can now give a lqm when adding an interface:
ubus call olsrd add_interface '{"ifname":"wg_51821", "lqm":"0.5"}'
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit e3c6842923)
Maintainer: Rob White rob@blue-wave.net
Compile tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc
Run tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc, x86-64, on 21.02.2
* This version adds new functionality, and fixes some issues
* Fix - syntax error (missing comma) in awk command in bash on generic Linux [bluewavenet]
* Add - option to append serial number suffix to gatewayname [bluewavenet]
* Add - block use of ip aliases on gateway interface [doctor-ox] [bluewavenet]
* Fix - ndsctl json syntax error [bluewavenet]
* Add - check for null variables in key value pairs in MHD callbacks [bluewavenet]
* Fix - changed some notice messages into debug messages [bluewavenet]
* Fix - possible return of incorrect pid [doctor-ox] [bluewavenet]
* Fix - possible abiguities resulting in failure to parse parameters correctly [bluewavenet]
* Fix - Remove deprecated get_client_token.sh [bluewavenet]
* Fix - Prevent possible malformed mac address returned from dhcpcheck() [doctor-ox] [bluewavenet]
Signed-off-by: Rob White <rob@blue-wave.net>
Compile time changes reviewed by cjd.
Due to stricter compiler(s) we do not
want to error for these warnings.
Caused by: ...reading "past the end"
of a struct, because the struct is
actually a header and the body is of
unknown size. Compilers got stricter
and this became a warning.
Signed-off-by: William Fleurant <meshnet@protonmail.com>
(cherry picked from commit 71c11ab1b7)
[Fix compiling]
Signed-off-by: Nick Hainke <vincent@systemli.org>
Since https://git.openwrt.org/?p=openwrt/openwrt.git;a=commitdiff;h=4b9a67362d70c544b85078b8d5c661f43f7472d9,
uci network config interface sections use 'device' instead of 'ifname'
Even if 'device' seems to always be set by
package/base-files/files/bin/config_generate, we keep the fallbacks
in case someone install the package via opkg and has a non migrated
network config
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
(cherry picked from commit 383c52ff8d)
This avoids unnecessary downloads and rebuilds.
Patches were refreshed to please github PR checks.
Signed-off-by: Eneas U de Queiroz <cotequeiroz@gmail.com>
(cherry picked from commit 564ca99e2c)
- Why there was oonf-git? WTF?
- Use two spaces instead of tabs
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 282af3f8bc)
- By this change, we are using downloading .tar.xz (which is default in OpenWrt)
Reference: OpenWrt base repository include/download.mk
Downloaded tarball size is ~60 kB smaller.
- Removed "v" in package naming.
Before: oonf-dlep-radio_v0.15.1_arm_cortex-a9_vfpv3-d16.ipk
After: oonf-dlep-radio_0.15.1_arm_cortex-a9_vfpv3-d16.ipk
Removed stuff, which is no longer needed like PKG_REV.
- Switch to AUTORELEASE in PKG_RELEASE
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry picked from commit 56fc0d7226)
Maintainer: Rob White rob@blue-wave.net
Compile tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc
Run tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc, gl-inet b1300, gl-inet mt300n-v2, Snapshot, 21.02.1, 19.07.8
Description:
This version adds new functionality, and fixes some issues
It requires iptables(legacy)
* Fix - correctly display return buffer in syslog [bluewavenet]
* Add - use heap allocation for library call return buffer [bluewavenet]
* Fix - OpenWrt, fhook request for fw3 [bluewavenet]
* Add - spider remote urls before downloading [bluewavenet]
* Add - OpenWrt, revert uncommitted uci updates at startup and shutdown [bluewavenet]
* Fix - remove unneccesary flash writes and fix hosts updates [doctor-ox] [bluewavenet]
* Add - Updated splash images [bluewavenet]
* Add - OpenWrt makefile for nft or ipt dependencies [bluewavenet]
* Fix - grep by word to prevent any ambiguity [doctor-ox] [bluewavenet]
* Fix - ensure rate limiting is disabled if rate thresholds are set to zero [bluewavenet]
* Add - querystring support for client status page [bluewavenet]
* Add - Advanced/standard status page checkbox [bluewavenet]
* Add - set default session timeout to 24 hours [bluewavenet]
* Fix - potential buffer overflow [bluewavenet]
* Fix - Restrict max packet limit to iptables maximum [bluewavenet]
* Fix - descriptive labels on ndsctl status output [bluewavenet]
* Add - update of README.md [bluewavenet]
* Fix - Added required variable to FAS return string example documentation [dorkone]
* Add - Default checkinterval set to 15 seconds [bluewavenet]
* Fix - incoming and outgoing counters when unlimited bursting is enabled [bluewavenet]
* Add - maximum bucket size configuration [bluewavenet]
* Add - calculate moving average packet size for rate limiting [bluewavenet]
* Add - some operational default values [bluewavenet]
* Add - initial rate limits when unrestricted bursting is disabled [bluewavenet]
* Add - Require clients to be in the dhcp database [bluewavenet]
* Add - dhcpcheck library call [bluewavenet]
* Fix - Remove trailing whitespace when getting clientaddress if client not active [bluewavenet]
* Fix - Segfault when FAS fails to Return customstring [dorkone] [bluewavenet]
* Add - Enable/Disable unrestricted bursting [bluewavenet]
* Add - gatewayurl to querystring and use in place of originurl in FAS [bluewavenet]
* Fix - more accurate debug message [bluewavenet]
* Fix - Show packet rate correctly as packets per minute [bluewavenet]
* Add - Report Packet Rate and Bucket Size in ndsctl status and json and status client page [bluewavenet]
* Add - rate limit refresh to client limit rules [bluewavenet]
* Fix - code readability [bluewavenet]
* Fix - Documentation for data sent to Authmon Daemon [bluewavenet]
* Add - Show unrestricted burst intervals in ndsctl status [bluewavenet]
* Add - Set default bucket ratios to 10 [bluewavenet]
Signed-off-by: Rob White <rob@blue-wave.net>
There is an unused variable in the function. Remove it.
Fixes: 3852004435 ("babeld: add add_interface function").
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 879725ce3e)
An interface can be added dynmiacally to babeld by starting babeld with
the local management interface (-G) and saying:
interface eth0
Add the ubus equivalent of this function:
ubus call babeld add_interface '{"ifname":"eth0"}'
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 3852004435)
IPC integration of olsrd with OpenWrt. Allow dynamic adding and removing
of interfaces at run-time. We need to rename the avl-tree files, since
libubox also defines avl tree. Also add patch to allow meshing via
wireguard point-to-point links.
The ubus interface offers following functions:
- add_inteface '{"ifname":"wg_51820"}'
- del_inteface '{"ifname":"wg_51820"}'
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 0bffe620b4)
The runtime testing always ran on master branch aka snapshots since the
branch wasn't passed over to the container execution!
Signed-off-by: Paul Spooren <mail@aparcar.org>
(cherry picked from commit 817240b07c)
Check multiple rounds if neighbors are available before kicking. This
should reduce unneeded reboots.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 24285ce4fc)
The procd script was not adding the wireguard interfaces. Add corner case
in the init script to allow meshing via wireguard.
Signed-off-by: Nick Hainke <vincent@systemli.org>
(cherry picked from commit 576967a2a3)
Maintainer: Rob White rob@blue-wave.net
Compile tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc
Run tested: arm_cortex-a7_neon-vfpv4, mipsel_24kc, gl-inet b1300, gl-inet mt300n-v2, Snapshot, 21.02.1, 19.07.8
Description:
This version adds new functionality, and fixes some issues
* Fix - ThemeSpec file downloads when mwan3 is running [bluewavenet]
* Fix - Preemptive auth failure after previous deauth [minhng99] [bluewavenet]
From v9.5.0
* Add - use average packet size instead of MTU when implementing rate limiting [bluewavenet]
* Fix - typo in iptables command and remove a redundant command [bluewavenet]
* Add - startdaemon() and stopdaemon() utility functions [bluewavenet]
* Add - combined interface/ipaddress external gateway status monitoring [bluewavenet]
* Fix - potential online/offline detection problem when mwan3 is running [bluewavenet]
* Add - get_debug_level and syslog library calls [bluewavenet]
* Fix - correctly reset upload and download rate rules [bluewavenet]
* Add - extend upstream gateway checking for use with mwan3 loadbalance/failover [bluewavenet]
* Fix - Potential NULL pointer segfault in http_microhttpd on calling authenticated() [bluewavenet]
* Fix - Potential NULL pointer segfault in http_microhttpd on calling preauthenticated() [dddaniel]
* Add - Calculate Bucket size based on achieved burst rate [bluewavenet]
* Fix - prevent parameter parsing if clientip not known [bluewavenet]
* Add - disable rate quotas by setting bucket ratio to zero [bluewavenet]
* Fix - suppress some debug messages [bluewavenet]
* Add - more libraries documentation [bluewavenet]
* Add - library calls startdaemon and stopdaemon [bluewavenet]
* Fix - Increase buffer length for longer interface names [koivunen]
* Add - Update README.md [bluewavenet]
* Add - bucket ratio option to config file [bluewavenet]
* Add - upload and download bucket ratio config values [bluewavenet]
* Fix - flag initial debuglevel to externals [bluewavenet]
* Add - limit-burst tuning to rate quotas [bluewavenet]
* Fix - add trailing space to defaultip [bluewavenet]
* Add - record pre-emptive authentication in local log [bluewavenet]
* Add - Write to local log function to libopennds [bluewavenet]
* Add - set client_type and custom string for Pre-emptive authentication [bluewavenet]
* Fix - Remove trailing newline from library call response [bluewavenet]
* Fix - attempt to remove cid file only if client->cid is set [bluewavenet]
* Add - a skip option for custom downloads to speed up serving page from themespec [bluewavenet]
* Add - put client_type into query string when type is cpd canary [bluewavenet]
* Add - set refresh=0 before loading images [bluewavenet]
* Fix - Truncated return status [bluewavenet]
* Add - Acknowlegement from call to dnsconfig [bluewavenet]
* Fix - potential buffer overflow in debug output [bluewavenet]
* Add - processing of custom data and client type [bluewavenet]
* Add - Client Type for RFC8908 and RFC8910 clients [bluewavenet]
* Add - rfc8908 replies for external FAS and refactor memory management for MHD calls [bluewavenet]
* Add - send error 403 if client is not on openNDS subnet [bluewavenet]
* Fix - remove uneccessary safe_asprint in auth.c [bluewavenet]
* Fix - Initialise buffer to prevent receiving spurious characters [bluewavenet]
* Add - encoded custom data support to ndsctl json, themespec and binauth [bluewavenet]
* Add - advert_1.htm to thankyou page of theme_click-to-continue-custom-placeholders.sh [bluewavenet]
* Add - library call get_interface_by_ip [bluewavenet]
* Add - function encode_custom() for encoding custom data to be sent to openNDS [bluewavenet]
* Fix - error 511, make all html refrences absolute to enforce link to MHD [bluewavenet]
* Add - check status_path exists and is executeable [bluewavenet]
* Fix - regression causing error 511 to be served from default script [bluewavenet]
* Add - venue-info-url and can-extend-session json keys [bluewavenet]
* Add - RFC 8908 initial experimental support [bluewavenet]
* Add - debug message when resetting client [bluewavenet]
* Fix - Ensure the ndscids directory exists before trying to write to it. [bluewavenet]
* Fix - use eval in do_ndsctl to allow quoting of arguments [bluewavenet]
* Fix - ensure client hid and client cid file is reset correctly [bluewavenet]
* Fix - Titles of example ThemeSpec Files [bluewavenet]
* Fix - Ensure ThemeSpec Files are executable [bluewavenet]
* Remove - deprecated Allowed and Blocked entries in ndsctl status output [bluewavenet]
* Add - Deprecate option macmechanism, allowedmaclist and blockedmaclist [bluewavenet]
Signed-off-by: Rob White <rob@blue-wave.net>
Change log level from debug to info to avoid filling up syslog with query-level logging.
Signed-off-by: Maarten Aertsen <spam-github@rtsn.nl>
(cherry picked from commit 4f235865e7)
Commit 97d35a552ec5b6ddf7923dd2f9a8eb973526acea of musl introduced the
macros __LITTLE_ENDIAN and __BIG_ENDIAN in alltypes.h. These are pulled
into the compilation of batman-adv. This has the side effect that the
function is_multicast_ether_addr of etherdevice.h in Linux kernel is
compiled as the big endian version and so fails to work properly on
little endian devices.
This commits prevents pulling in header files of musl libc similar to
OpenWRT commit 9ac47ee46918c45b91f4e4d1fa76b1e26b9d57fe
Signed-off-by: Hendrik Borghorst <hendrikborghorst@gmail.com>
(cherry picked from commit 523821c195)
Signed-off-by: Sven Eckelmann <sven@narfation.org>
Nick Hainke