summaryrefslogtreecommitdiff
path: root/target
Commit message (Collapse)AuthorAgeFilesLines
* kernel: update kernel 4.9 to 4.9.31Jo-Philipp Wich2017-06-0820-787/+698
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes the following security vulnerabilities: CVE-2017-8890 The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call. CVE-2017-9074 The IPv6 fragmentation implementation in the Linux kernel through 4.11.1 does not consider that the nexthdr field may be associated with an invalid option, which allows local users to cause a denial of service (out-of-bounds read and BUG) or possibly have unspecified other impact via crafted socket and send system calls. CVE-2017-9075 The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. CVE-2017-9076 The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. CVE-2017-9077 The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. CVE-2017-9242 The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite of an skb data structure may occur, which allows local users to cause a denial of service (system crash) via crafted system calls. Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8890 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9074 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9075 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9076 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9077 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9242 Ref: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.31 Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* kernel: update kernel 4.4 to 4.4.71Jo-Philipp Wich2017-06-075-9/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes the following security vulnerabilities: CVE-2017-8890 The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the accept system call. CVE-2017-9074 The IPv6 fragmentation implementation in the Linux kernel through 4.11.1 does not consider that the nexthdr field may be associated with an invalid option, which allows local users to cause a denial of service (out-of-bounds read and BUG) or possibly have unspecified other impact via crafted socket and send system calls. CVE-2017-9075 The sctp_v6_create_accept_sk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. CVE-2017-9076 The dccp_v6_request_recv_sock function in net/dccp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. CVE-2017-9077 The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. CVE-2017-9242 The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite of an skb data structure may occur, which allows local users to cause a denial of service (system crash) via crafted system calls. Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8890 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9074 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9075 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9076 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9077 Ref: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9242 Ref: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.71 Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* kernel: remove CONFIG_ZONE_DMA_FLAG from 4.9Sergey Ryazanov2017-06-071-1/+0
| | | | | | There are no CONFIG_ZONE_DMA_FLAG config symbol since 4.7. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* kernel: disable CONFIG_SG_POOL by defaultSergey Ryazanov2017-06-0725-16/+10
| | | | | | | | CONFIG_SG_POOL symbol is selected only by CONFIG_SCSI, since the last one is disabled by default then disable CONFIG_SG_POOL by default too. And explicitly enable it only for platforms that use CONFIG_SCSI. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ath25: add missed HAVE_IRQ_EXIT_ON_IRQ_STACKSergey Ryazanov2017-06-071-0/+1
| | | | | | | Add HAVE_IRQ_EXIT_ON_IRQ_STACK kernel configuration symbol that was missed during backporting separate IRQ stack for MIPS from upstream. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* rb532: enable high-res timers, refresh kernel configFelix Fietkau2017-06-071-2/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* xburst: enable high-res timers, refresh kernel configFelix Fietkau2017-06-071-7/+3
| | | | | | Helps with system performance Signed-off-by: Felix Fietkau <nbd@nbd.name>
* octeon: enable high-res timersFelix Fietkau2017-06-071-2/+0
| | | | | | Helps with network stack performance Signed-off-by: Felix Fietkau <nbd@nbd.name>
* kernel: add CONFIG_SCHED_HRTICK=y to the generic configFelix Fietkau2017-06-072-0/+2
| | | | | | It is used by pretty much every target Signed-off-by: Felix Fietkau <nbd@nbd.name>
* x86: include USB HID by defaultLucian Cristian2017-06-071-0/+3
| | | | Signed-off-by: Lucian Cristian <lucian.cristian@gmail.com>
* kernel: update myloader for linux 4.9Sergey Ryazanov2017-06-073-1/+23
| | | | | | add backport patches for older kernels. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ip17xx: correct aneg_done return valueSergey Ryazanov2017-06-071-1/+1
| | | | | | | | | PHY core treats any positive return value as the auto-negotiation done indication. Since we do not actually check any device register in this callback then update it to return positive value with a neutral meaning instead of the register flag to avoid confusing for future readers. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* mvswitch: fix autonegotiation issueSergey Ryazanov2017-06-071-0/+7
| | | | | | | | | | | | | | | The Marvel 88E6060 switch has an MDIO interface, but does not emulate regular PHY behavior for the host. The network core can not detect using the generic code, whether the connection via the attached PHY can be used or not. The PHY's state machine is stuck in a state of auto-negotiation and does not go any further so the Ethernet interface of the router stay forever in the not-runing state. Fix this issue by implementing the aneg_done callback to be able to inform the network core that the Ethernet interface link to which the switch is connected can be marked as RUNNING. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* linux/ath25: fixing some tabs and whitespaceSven Roederer2017-06-071-3/+3
| | | | Signed-off-by: Sven Roederer <devel-sven@geroedel.de>
* ath25: drop 4.4 kernel supportSergey Ryazanov2017-06-0712-3923/+0
| | | | Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ath25: switch to 4.9 kernelSergey Ryazanov2017-06-071-1/+1
| | | | Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ath25: 4.9: fix Ethernet link autonegotiationSergey Ryazanov2017-06-072-116/+50
| | | | | | | | | | | | | | Drop the own PHY polling function and switch to using the kernel PHY state machine. This change allows driver to work correctly with devices that do not support PHY behaviour but whose driver could emulate autonegotiation completion (e.g. MV88E6060 and IP17xx switches). NB: earlier this driver rely on flaws in PHY core code and could use PHY device without really starting it. But now (at least in kernel 4.9) this trick no more work and network interface could stuck in not-running state. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ath25: 4.9: fix Ethernet tiny issuesSergey Ryazanov2017-06-071-15/+7
| | | | | | | | | | | | Few tiny fixes for issues caused by changes in the upstream: - do not touch PHY IRQ array (core code initializes it itself now) - add missed SET_NETDEV_DEV() invocation (causes segfault during phy connection) - use phy API inside the MDIO probe function instead of direct field access (consider phy structure changes in upstream and prevent similar issues in the future) Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ath25: 4.9: fix GPIO compile issuesSergey Ryazanov2017-06-072-2/+2
| | | | | | Consider renaming the dev field to parent in the upstream. Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ath25: add preliminary kernel 4.9 supportSergey Ryazanov2017-06-0712-0/+3924
| | | | | | Copy and refresh patches and config from 4.4 Signed-off-by: Sergey Ryazanov <ryazanov.s.a@gmail.com>
* ramips: add support for Ubiquiti EdgeRouter X-SFPSven Roederer2017-06-078-105/+179
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch adds support for the Ubiquiti EdgeRouter X-SFP and improves support for the EdgeRouter X (PoE-passthrough). Specification: - SoC: MediaTek MT7621AT - Flash: 256 MiB - RAM: 265 MiB - Ethernet: 5 x LAN (1000 Mbps) - UART: 1 x UART on PCB (3.3V, RX, TX, GND) - 57600 8N1 - EdgeRouter X: - 1 x PoE-Passtrough (Eth4) - powered by Wallwart or passive PoE - EdgeRouter X-SFP: - 5 x PoE-Out (24V, passive) - 1 x SFP (unknown status) - powered by Wallwart (24V) Doesn't work: * SoC has crypto engine but no open driver. * SoC has nat acceleration, but no open driver. * This router has 2MB spi flash soldered in but MT nand/spi drivers do not support pin sharing, so it is not accessable and disabled. Stock firmware could read it and it was empty. Installation via vendor firmware: - build an Initrd-image (> 3MiB) and upload the factory-image - initrd can have luci-mod-failsafe - flash final firmware via LuCI / sysupgrade on rebooted system via TFTP: - stop uboot into tftp-load into option "1" - upload factory.bin image Signed-off-by: Sven Roederer <devel-sven@geroedel.de>
* ipq806x: Enable ubi image for ipq40xx AP-DK04.1-C1 boardRam Chandra Jangir2017-06-072-1/+15
| | | | | | | | | | | | | | This change add IPQ40xx AP-DK04.1-C1 board image support, enables ubi image for IPQ40xx AP-DK04.1-C1 board and also add sysupgrage support for AP-DK04.1-C1 and generates a sysupgrade.tar image. Testing: *Tested on IPQ40xx AP-DK04.1-C1: a. NAND boot b. ubi sysupgrade Signed-off-by: Ram Chandra Jangir <rjangir@codeaurora.org>
* ipq806x: Updated various ipq40xx pin definitionsRam Chandra Jangir2017-06-071-0/+1332
| | | | | | | This change populates default values for various GPIO functions in ipq40xx pinctrl driver. Signed-off-by: Ram Chandra Jangir <rjangir@codeaurora.org>
* Add missing APU1 reference to x86 board.dKristian Evensen2017-06-062-2/+2
| | | | | | | | | | | | x86 board.d only contains a case for the APU2, not the APU1. This causes, for example, network configuration not to be created correctly. Even though the APU1 seems to reaching EOL, there a still a lot of them out there. The APU1 and APU2 is configured in the same way and this patch should also be considered for stable, as the error also exists there. Signed-off-by: Kristian Evensen <kristian.evensen@gmail.com>
* brcm63xx: drop support for specifying SPI flash part parsersJonas Gorski2017-06-045-85/+9
| | | | | | No need to keep this since we set them from device-tree. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: drop support for caldata in brcm63xxpartJonas Gorski2017-06-0410-369/+22
| | | | | | | Now that we always provide these partitions through DT, we don't need to pass their data through parser data from board files anymore. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: probe SPI flash through DTJonas Gorski2017-06-0418-0/+487
| | | | | | | Now that we support problem the SPI controllers through DT, we can also probe flash through DT. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: add pflash for remaining pflash equipped boardsJonas Gorski2017-06-0419-0/+210
| | | | Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: do not require fixed partitions when probing from DTJonas Gorski2017-06-041-1/+1
| | | | | | | | Allow the parser to be invoked from DT without fixed cfe/linux/nvram partitions. This allows flash to be probed from DT also for multi flash-size images. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: register SPI controllers through DTJonas Gorski2017-06-0426-41/+539
| | | | | | | Register SPI controllers through device tree. We will wire up the clocks at a later stage. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: backport upstream solution for SPI message size limitsJonas Gorski2017-06-0418-102/+1135
| | | | | | | Backport upstream solution for working around SPI controller maximum message sizes. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: update flash of_node patches to full patch setJonas Gorski2017-06-0410-2/+920
| | | | | | Fixes missing of_node for SPI flash probed through devicetree. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* brcm63xx: refresh kernel configJonas Gorski2017-06-041-6/+7
| | | | | | Ensure the config is ordered and has all recent symbols. Signed-off-by: Jonas Gorski <jonas.gorski@gmail.com>
* lantiq: fix 0008-MIPS-lantiq-backport-old-timer-code.patch for Amazon-SETino Reichardt2017-06-034-6/+18
| | | | | | | | | | | | | The patch 0008 removes the vanilla kernel gptu.c of lantiq. But the replacement file timer.c does not work Amazon-SE and is also protected therefore with an CONFIG_SOC_AMAZON_SE :-) This commit will re-activate the default vanilla kernel code in gptu.c for Amazon-SE. Signed-off-by: Tino Reichardt <milky-lede@mcmilk.de> [refresh patches and add same change for kernel 4.9] Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* lantiq: add Allnet ALL0333CJ supportTino Reichardt2017-06-034-0/+139
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch adds support for the Allnet ADSL2+ Modem ALL0333CJ. Specifications: - SoC: Amazon-SE - RAM: 16MB - Storage: 4MB NOR FLash - LEDs: Power, Ethernet, DSL (Sync) - Buttons: 1x Reset Button (not currently supported, will be done) - 1x Ethernet-Port: 1x RJ45 10/100BaseTX - 1x WAN-Port: AnnexB & J, G.992.1(ADSL), G.992.3(ADSL2), G.992.5(ADSL2+) Installation: - can be done via telnet+tftp or serial console - default passwords: - via telnet (root:admin) - via webinterface http://172.16.1.254:8235/ (admin:coolwhite) Installation via telnet / tftp: host: # your own host must have an tftpd daemon, then do this: host: ifconfig eth0:172 172.16.1.1 up host: # telnet to allnet modem, root:admin host: telnet 172.16.1.254 modem: # kill this daemon, it spams your console modem: killall dsl_cpe_control modem: # change to some place in ram: modem: cd /ramdisk/tftp_upload modem: # load lede-lantiq-ase-ALL0333CJ-squashfs-sysupgrade.bin alias uImage modem: tftp -g -r uImage 172.16.1.1 modem: # load these extra tools from your tftpd via: modem: # source: https://github.com/mcmilk/uboot-utils/releases/download/0.1/mips32.tar.gz modem: tftp -g -r flashwrite 172.16.1.1 modem: tftp -g -r fw_setenv 172.16.1.1 modem: tftp -g -r fw.conf 172.16.1.1 modem: ln -s fw_setenv fw_printenv modem: chmod +x * modem: ./fw_setenv disable_recovery y modem: ./fw_setenv kernel_addr 0xb0010000 modem: ./flashwrite /dev/mtd/1 uImage 0 Installation via serial line at uboot: uboot: # erase everything exept bootloader uboot: protect on b0000000 +10000; protect on b03f0000 +10000 uboot: erase all uboot: # get new firmware via tftp: uboot: tftpboot 0x80100000 uImage; setenv kernel_addr 0xb0010000 uboot: # copy to flash: uboot: cp.b 0x80100000 $(kernel_addr) $(filesize) uboot: # disable proprietary image checking: uboot: setenv disable_recovery=y; saveenv uboot: # reboot with LEDE ;) uboot: reset Ethernet works as expected, DSL syncronization does not work properly currently, I am working on this issue. Signed-off-by: Tino Reichardt <milky-lede@mcmilk.de>
* lantiq: enable Netgear DGN1000B image buildTino Reichardt2017-06-031-0/+14
| | | | | | | | | | | Enable the building of Netgear DGN1000B images. I have an example device here, but it was not tested currently. Also WLAN and USB is not ready in the moment. This is just the proper way, so that developing on this device is known to be done in the near future. Signed-off-by: Tino Reichardt <milky-lede@mcmilk.de>
* lantiq: add Amazon-SE subtargetTino Reichardt2017-06-034-1/+56
| | | | | | Re-Add support for the Amazon-SE subtarget on Lantiq. Signed-off-by: Tino Reichardt <milky-lede@mcmilk.de>
* lantiq: fix amazonse.dstiTino Reichardt2017-06-031-3/+15
| | | | | | | Add missing memory@0 and localbus@0 sections. Fix MEI and GPTU interrupt definitions. Signed-off-by: Tino Reichardt <milky-lede@mcmilk.de>
* ramips: enable PCIe on MT7688Daniel Golle2017-06-032-1/+35
| | | | | | | Submitted upstream as well, see patchwork https://patchwork.linux-mips.org/patch/16223/ Signed-off-by: Daniel Golle <daniel@makrotopia.org>
* lantiq: modified lantiq_dsl.sh status output of latencyHelge Mader2017-06-021-1/+1
| | | | Signed-off-by: Helge Mader <ma@dev.tdt.de>
* lantiq: fix lantiq_dsl.sh status and lucistat outputHelge Mader2017-06-021-12/+12
| | | | Signed-off-by: Helge Mader <ma@dev.tdt.de>
* mvebu: Add block device sd to default kernel configDaniel Engberg2017-06-021-0/+1
| | | | | Add block device sd to kernel config otherwise AHCI/eSATA devices won't get enumerated in /dev Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* x86: disable X2APIC support for legacy subtargetsJo-Philipp Wich2017-06-022-0/+2
| | | | | | | | | Explicitely disable X2APIC support on legacy targets since the targeted processor types do not support it anyway there. Fixes FS#285. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* mvebu: fix sysupgradeMatthias Schiffer2017-06-012-18/+8
| | | | | | | | | | | | | | | | | mvebu was modifying RAMFS_COPY_BIN and RAMFS_COPY_DATA from a sysupgrade_pre_upgrade hook. As the ramfs is created from stage2, this did not have an effect anymore after the staged sysupgrade changes. As it doesn't really hurt to copy fw_printenv and fw_setenv unconditionally, simply add them in /lib/upgrade/platform.sh, so stage2 will see them. Config copying is moved to a function called by platform_copy_config, where it belongs. Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net> Fixes: FS#821 Fixes: 30f61a34b4cf "base-files: always use staged sysupgrade"
* ramips: add jumbo frame support for v4.9John Crispin2017-06-014-12/+27
| | | | Signed-off-by: John Crispin <john@phrozen.org>
* ramips: fixup nand support on v4.9John Crispin2017-06-013-1/+4576
| | | | Signed-off-by: John Crispin <john@phrozen.org>
* ar71xx: Fix UBIFS work on Mikrotik RB95x devicesSergey Sergeev2017-05-311-0/+2
| | | | | | | | If nand chip has no NAND_NO_SUBPAGE_WRITE flag on its options ubifs can't use it mtd devices and the kernel crashes with error: __nand_correct_data: uncorrectable ECC error Signed-off-by: Sergey Sergeev <adron@yapic.net>
* imx6: disable UART dmaKoen Vandeputte2017-05-311-0/+23
| | | | | | | | | | | | | | | | | | | | Fixes these prints on boot: [ 13.785600] imx-uart 2020000.serial: DMA transaction error. [ 13.793134] imx-uart 2020000.serial: DMA transaction error. [ 13.798721] imx-uart 2020000.serial: DMA transaction error. Based on following upstream patch by Tim Harvey (Gateworks): https://github.com/Gateworks/openwrt/commit/80a01b6582f94c4547f39d3a25e0a1e9b6eb9877 TX complete DMA messages are getting missed. This is also currently an issue in mainline. For now we will disable DMA in serial/imx.c. This resolves an issue encountered with RS485 transmit. Signed-off-by: Koen Vandeputte <koen.vandeputte@ncentric.com>
* ramips: let the "reserved" MTD partition be RO for R6220Enrico Mioso2017-05-311-0/+1
| | | | | | | | | | The "reserved" partition should probably be read-only, just in case. Even not knowing it's content, other devices have marked it as such, so it seems a good idea to do so also for this device. Signed-off-by: Enrico Mioso <mrkiko.rs@gmail.com> CC: Mathias Kresin <dev@kresin.me> CC: Hanqing Wong <hquu@outlook.com>
* ar71xx: disable ENS202EXT in mikrotik and nand subtargetsJo-Philipp Wich2017-05-312-0/+2
| | | | Signed-off-by: Jo-Philipp Wich <jo@mein.io>