- when changing Wireless Client Mode to one of WLs, Security stays on (for ex.) 'WPA2 Personal' and if it was not corrected to the appropriate value (in this case 'WPA / WPA2 Personal'), but saved, the connection has not been established for obvious reasons
- when changed back, restore original Wireless Mode value also on correspondent Wireless
Note: no DNS after (full) reset in some cases (tested with RT-AC56U). Make sure that we have valid nvram values by default. If we disable wanX set nvram wanX_dns_auto to 0 (use static dns)
For Info:
6.37 RC14.126
wl0: Feb 4 2021 16:49:59 version 6.37.14.126 (r561982)
previous wireless driver:
6.37 RC14.126
wl0: Jan 15 2021 14:50:50 version 6.37.14.126 (r561982)
tested with R7000, working
- do not wipe out default route every time we start/reload the firewall (move out ipv6 forward & ndp proxy)
- remove service ipv6 start/stop (not working and not used)
- call ipv6 forward and ndp proxy only if start or stop ipv6
tested with DHCPv6 PD, working
- revert back to 10 years duration, as the Safari limitation only targets certificates signed by one of the built-in CAs
- remove CommonName entries as modern browsers no longer use that field - only hardcode router's IP address as the sole CN.
- add router_name and make sure that the hostname is not the same to avoid duplicate SANs
- use file_lock in httpd to avoid collisions if another httpd instance is initializing SSL cert; clean-up
Thanks to @RMerlin
For Info:
6.37 RC14.126
wl0: Jan 15 2021 14:50:50 version 6.37.14.126 (r561982)
previous wireless driver:
6.37 RC14.126
wl0: Oct 20 2020 11:55:53 version 6.37.14.126 (r561982)
tested with R7000, working
- modification of default chart colors
- now the colors are stored in the css file so they can be easily changed in any theme
- some fixes for svg, html, js
- clean-up
thx to user Joe A from www.linksysinfo.org for helping & provding the needed infos
Detection Infos:
boardflags2=0x00000000
boardflags=0x00000110
boardnum=AC1200v2
boardrev=0x1100
boardtype=0x0646
Note: dnsmasq advertises the IPv6 prefix frequently (every ~10 seconds) for the first minute, and then drops back to sending maintenance advertisements every 10 minutes.
This option forces dnsmasq to send RAs every 15 seconds ==> can help some devices to not lose conectivity
net/ipv6/addrconf.c: Checkpatch cleanups
net/ipv6/addrconf.c:340: WARNING: EXPORT_SYMBOL(foo); should immediately follow its function/variable
net/ipv6/addrconf.c:342: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:444: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:1337: WARNING: EXPORT_SYMBOL(foo); should immediately follow its function/variable
net/ipv6/addrconf.c:1526: ERROR: "(foo*)" should be "(foo *)"
net/ipv6/addrconf.c:1671: ERROR: open brace '{' following function declarations go on the next line
net/ipv6/addrconf.c:1914: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2368: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2370: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2416: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2437: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2573: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:3797: ERROR: "foo* bar" should be "foo *bar"
Signed-off-by: Eldad Zack <eldad@fogrefinery.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
see https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v3.19&id=8e5e8f30d0dea1db2c8e2a78802e7e57f796f339
net/ipv6/addrconf.c: Checkpatch cleanups
net/ipv6/addrconf.c:340: WARNING: EXPORT_SYMBOL(foo); should immediately follow its function/variable
net/ipv6/addrconf.c:342: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:444: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:1337: WARNING: EXPORT_SYMBOL(foo); should immediately follow its function/variable
net/ipv6/addrconf.c:1526: ERROR: "(foo*)" should be "(foo *)"
net/ipv6/addrconf.c:1671: ERROR: open brace '{' following function declarations go on the next line
net/ipv6/addrconf.c:1914: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2368: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2370: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2416: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2437: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:2573: ERROR: "foo * bar" should be "foo *bar"
net/ipv6/addrconf.c:3797: ERROR: "foo* bar" should be "foo *bar"
Signed-off-by: Eldad Zack <eldad@fogrefinery.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
see https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v3.19&id=8e5e8f30d0dea1db2c8e2a78802e7e57f796f339
In order to automatically mount swap on boot from /etc/fstab, usb.c calls `swapon -a`, which requires CONFIG_FEATURE_SWAPONOFF_LABEL to be enabled in busybox to function. Was disabled in commit 93c885c50e.
For Info:
6.37 RC14.126
wl0: Oct 20 2020 11:55:53 version 6.37.14.126 (r561982)
previous wireless driver:
6.37 RC14.126
wl0: Aug 10 2020 17:00:56 version 6.37.14.126 (r561982)
tested with R7000, working
Note: preprocessor conditions may need to be adjusted if we get updates for SDK6 single-core and/or SDK7 / DHD --> we will see :)
- display more info in real-time
- in case of Wireless Client mode, stick to Signal Quality (like on Device List page), not SNR (signal value to the noise value)
- clean-up javascript code, remove duplicate functions, unused variables
- cosmetic
- when checked, also change 'Default class' to align the default value with the other pages
- when unchecked, restore the default values for 'Default class' and 'Qdisc Scheduler'
QoS:
- use correct WAN MTU when starting QoS
- fix completely broken behavior with multiple wans
- fix 'rate' and 'limit' table headings
- separate ATM overhead fields for each wan
- add PPPoE LLC + VLAN to overhead options
- support enabling queuing without classification (SQM)
- rearrange QoS Basic Settings page to make it clear
- when stopping qos, don't forget to delete the ingress qdisc
- don't use broken iptables set-return
- L7 fix and comment improvement
- use proper fwmask when matching fwmark
- check wan up once and use the same result for all rules
PBR:
- don't use broken iptables set-return
- fix connmark restore mark mask
- copy connection mark to packet mark to pbr
Eric Dumazet pointed out that act_mirred needs to find the current net_ns,
and struct net pointer is not provided in the call chain. His original
patch made use of current->nsproxy->net_ns to find the network namespace,
but this fails to work correctly for userspace code that makes use of
netlink sockets in different network namespaces. Instead, pass the
"struct net *" down along the call chain to where it is needed.
This version removes the ifb changes as Eric has submitted that patch
separately, but is otherwise identical to the previous version.
Signed-off-by: Benjamin LaHaise <bcrl@kvack.org>
Tested-by: Eric Dumazet <eric.dumazet@gmail.com>
Acked-by: Jamal Hadi Salim <jhs@mojatatu.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Fix from upstream: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c1b52739e45f5969b208ebc377f52468280af11e
cls_flow.c plays with uids and gids. Unless I misread that
code it is possible for classifiers to depend on the specific uid and
gid values. Therefore I need to know the user namespace of the
netlink socket that is installing the packet classifiers. Pass
in the rtnetlink skb so I can access the NETLINK_CB of the passed
packet. In particular I want access to sk_user_ns(NETLINK_CB(in_skb).ssk).
Pass in not the user namespace but the incomming rtnetlink skb into
the the classifier change routines as that is generally the more useful
parameter.
Cc: Jamal Hadi Salim <jhs@mojatatu.com>
Acked-by: David S. Miller <davem@davemloft.net>
Acked-by: Serge Hallyn <serge.hallyn@canonical.com>
Signed-off-by: Eric W. Biederman <ebiederm@xmission.com>
Prerequisite patch for mirred namespace compatibility: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=af4c6641f5ad445fe6d0832da42406dbd9a37ce4
Eric Dumazet pointed out that act_mirred needs to find the current net_ns,
and struct net pointer is not provided in the call chain. His original
patch made use of current->nsproxy->net_ns to find the network namespace,
but this fails to work correctly for userspace code that makes use of
netlink sockets in different network namespaces. Instead, pass the
"struct net *" down along the call chain to where it is needed.
This version removes the ifb changes as Eric has submitted that patch
separately, but is otherwise identical to the previous version.
Signed-off-by: Benjamin LaHaise <bcrl@kvack.org>
Tested-by: Eric Dumazet <eric.dumazet@gmail.com>
Acked-by: Jamal Hadi Salim <jhs@mojatatu.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Fix from upstream: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c1b52739e45f5969b208ebc377f52468280af11e
cls_flow.c plays with uids and gids. Unless I misread that
code it is possible for classifiers to depend on the specific uid and
gid values. Therefore I need to know the user namespace of the
netlink socket that is installing the packet classifiers. Pass
in the rtnetlink skb so I can access the NETLINK_CB of the passed
packet. In particular I want access to sk_user_ns(NETLINK_CB(in_skb).ssk).
Pass in not the user namespace but the incomming rtnetlink skb into
the the classifier change routines as that is generally the more useful
parameter.
Cc: Jamal Hadi Salim <jhs@mojatatu.com>
Acked-by: David S. Miller <davem@davemloft.net>
Acked-by: Serge Hallyn <serge.hallyn@canonical.com>
Signed-off-by: Eric W. Biederman <ebiederm@xmission.com>
Prerequisite patch for mirred namespace compatibility: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=af4c6641f5ad445fe6d0832da42406dbd9a37ce4
The Tomato default route cache can create route affinity in a multi-wan environment.
Disparate devices to the same destination may follow the kernel route cache creating a lack of load-balancing
across the multi-wan environment. The proposed resolution is to adjust the route cache garbage collector to prune
the route cache and allow for proper load balancing across multiple WAN circuits.
Based on: https://bitbucket.org/pl_shibby/tomato-arm/issues/193/multiwan-route-cache-creates-route
pedro
M_ars
Further Lin
lancethepants
notsure2
xuzhun
Johan Källström