The sender domain has a DMARC Reject/Quarantine policy which disallows
sending mailing list messages using the original "From" header.
To mitigate this problem, the original message has been wrapped
automatically by the mailing list software.--- Begin Message ---
Result from using sysupgrade:
---
Hi,
> -Original Message-
> From: Raylynn Knight [mailto:raykni...@me.com]
> Sent: Montag, 24. August 2020 10:00
> To: Adrian Schmutzler
> Cc: OpenWrt Development List ;
> ro...@advem.lv
> Subject: Re: [PATCH 0/6] rb532: update to kernel 5.4
>
> Result from using sysupgrade:
>
>
Hi,
> -Original Message-
> From: Raylynn Knight [mailto:raykni...@me.com]
> Sent: Montag, 24. August 2020 10:00
> To: Adrian Schmutzler
> Cc: OpenWrt Development List ;
> ro...@advem.lv
> Subject: Re: [PATCH 0/6] rb532: update to kernel 5.4
>
> Result from using sysupgrade:
>
>
From: Baptiste Jonglez
The file size check was added in cb6640381808dd ("libopkg: check for file
size mismatches"). Its purpose is to provide an additional line of
defense against hash collisions.
It is more user-friendly to tell the user that the checksum is wrong, so
move the file size check
Hi,
> rules.mk always passes these as -I/-L to the toolchain.
>
> Fixes rare errors like:
> cc1: error: staging_dir/target-aarch64_cortex-a53_musl/usr/include: No such
> file or directory [-Werror=missing-include-dirs]
>
> Signed-off-by: Andre Heider
NAK - I'd prefer if we remove the faulty/r
The sender domain has a DMARC Reject/Quarantine policy which disallows
sending mailing list messages using the original "From" header.
To mitigate this problem, the original message has been wrapped
automatically by the mailing list software.--- Begin Message ---
Hello,
I've tried OpenWrt 19.07.
On 24/08/2020 07:53, Baptiste Jonglez wrote:
The file size check was added in cb6640381808dd ("libopkg: check for file
size mismatches"). Its purpose is to provide an additional line of
defense against hash collisions.
It is more user-friendly to tell the user that the checksum is wrong, so
mov
From: Baptiste Jonglez
This should make it harder to exploit bugs such as CVE-2020-7982.
If we can't compute the checksum of a package, we should abort.
Similarly, if we can't find any checksum in the package index, this should
yield an error.
As an exception, installing a package directly fro
On 24-08-20, Henrique de Moraes Holschuh wrote:
> On 24/08/2020 07:53, Baptiste Jonglez wrote:
> > The file size check was added in cb6640381808dd ("libopkg: check for file
> > size mismatches"). Its purpose is to provide an additional line of
> > defense against hash collisions.
> >
> > It is mo
On 24/08/2020 09:01, Baptiste Jonglez wrote:
On 24-08-20, Henrique de Moraes Holschuh wrote:
On 24/08/2020 07:53, Baptiste Jonglez wrote:
It is more user-friendly to tell the user that the checksum is wrong, so
move the file size check at the end.
It is also far more expensive in the failure
On 24-08-20, Henrique de Moraes Holschuh wrote:
> On 24/08/2020 09:01, Baptiste Jonglez wrote:
> > On 24-08-20, Henrique de Moraes Holschuh wrote:
> > > On 24/08/2020 07:53, Baptiste Jonglez wrote:
> > > > It is more user-friendly to tell the user that the checksum is wrong, so
> > > > move the fil
From: Baptiste Jonglez
This should make it harder to exploit bugs such as CVE-2020-7982.
If we can't compute the checksum of a package, we should abort.
Similarly, if we can't find any checksum in the package index, this should
yield an error.
As an exception, installing a package directly fro
MikroTik recently changed again the way they store wlan calibration data
on devices. Prior to this change, ERD calibration data for all available
radios was stored within a single identifier node ("tag" in RouterBoot
parlance).
Recent devices have been seen with calibration (and BDF) data stored i
From: Baptiste Jonglez
The man pages have not been updated since 2010. Options are documented in
the usage message obtained when running "opkg" without arguments.
In addition, the man page are no longer used anywhere in the build system
since 2017: the autoconf-based build system was removed in
From: Baptiste Jonglez
Currently, package index signatures are only checked when opkg runs on the
OpenWrt device. The verification script is hard-coded to a path in
/usr/sbin/.
Making this path configurable is a first step to implement signature
verification in host builds of opkg (e.g. in the
On 24-08-20, Baptiste Jonglez wrote:
> From: Baptiste Jonglez
>
> This should make it harder to exploit bugs such as CVE-2020-7982.
>
> If we can't compute the checksum of a package, we should abort.
>
> Similarly, if we can't find any checksum in the package index, this should
> yield an error
On 24.08.20 00:55, Jo-Philipp Wich wrote:
Hi,
rules.mk always passes these as -I/-L to the toolchain.
Fixes rare errors like:
cc1: error: staging_dir/target-aarch64_cortex-a53_musl/usr/include: No such
file or directory [-Werror=missing-include-dirs]
Signed-off-by: Andre Heider
NAK - I'd
This fixes the following security problems:
* In earlier versions of wolfSSL there exists a potential man in the
middle attack on TLS 1.3 clients.
* Denial of service attack on TLS 1.3 servers from repetitively sending
ChangeCipherSpecs messages. (CVE-2020-12457)
* Potential cache timing attack
On 8/24/20 7:56 PM, Paul Spooren wrote:
>
> On 24.08.20 00:55, Jo-Philipp Wich wrote:
>> Hi,
>>
>>> rules.mk always passes these as -I/-L to the toolchain.
>>>
>>> Fixes rare errors like:
>>> cc1: error: staging_dir/target-aarch64_cortex-a53_musl/usr/include: No
>>> such file or directory [-Werror
Hi Sandeep,
-Original Message-
From: openwrt-devel [mailto:openwrt-devel-boun...@lists.openwrt.org] On Behalf
Of Adrian Schmutzler
Sent: Sonntag, 23. August 2020 22:38
To: openwrt-devel@lists.openwrt.org
Cc: sandeep.sheri...@microchip.com
Subject: [PATCH v2 1/8] at91: bump linux version t
Hi,
OpenWrt withdraw from this year's Google Season of Docs.
We good multiple good looking applications, but we think we would not be
able to spend the necessary time on mentoring a project this year.
Before committing to any project we withdraw from the Google Season of
Docs and informed Google
hwclock was fixed to work with musl.
Unfortunately, the fix breaks under musl 1.2.x. Backported patch to fix
that.
Add libblkid DEPENDS to blkdiscard. Seems to be needed now.
Signed-off-by: Rosen Penev
---
package/utils/util-linux/Makefile | 9 +++---
.../patches/003-fix_pkgconfig
From: Baptiste Jonglez
If we want to access files in the cache from multiple functions, it is
necessary to have a single source of truth regarding the naming of files
in the cache.
Signed-off-by: Baptiste Jonglez
---
libopkg/opkg_download.c | 17 -
1 file changed, 12 insertions
From: Baptiste Jonglez
This is a sizeable chunk of code that be can pretty well isolated in its
own function.
This refactoring will be necessary for an upcoming feature in which
opkg_download_pkg() will need to verify the checksum of packages in the
cache. This is the reason why the new functio
From: Baptiste Jonglez
The function now always returns an error if size/checksum don't match: we
let the caller decide what to do with the result.
In addition, most of the logging is also moved to the caller. We just
keep logging for unexpected errors and a bit of debug at loglevel INFO.
Signe
From: Baptiste Jonglez
Before using a package from the cache, verify its size and checksum
against a package index, and delete the package from the cache if they
don't match. The install process will then proceed to download the
"fixed" package as usual.
This allows to cope with remote packages
From: Baptiste Jonglez
The motivation of this patch series is to fix FS#2690. Because packages
are continuously rebuilt, the ImageBuilder ends up with old packages in
its cache, and fails because checksums don't match with the new package
index from the download server.
The approach to solve th
From: Baptiste Jonglez
A long time ago, the name of cached files was derived from the source URL.
This was changed in 2011 with d46db43e21 ("Don't include the source URI in
the cached filename.")
Some compatibility code was left behind: even today, we are still trying
to read from the old filena
Add binutils version 2.35
Signed-off-by: DENG Qingfang
---
toolchain/binutils/Config.in | 4 ++
toolchain/binutils/Config.version | 4 ++
toolchain/binutils/Makefile | 4 ++
.../2.35/300-001_ld_makefile_patch.patch | 22 +++
.../400-
Signed-off-by: DENG Qingfang
---
toolchain/gcc/Config.version | 2 +-
toolchain/gcc/common.mk | 4 ++--
.../gcc/patches/{10.1.0 => 10.2.0}/002-case_insensitive.patch | 0
.../gcc/patches/{10.1.0 => 10.2.0}/010-documentation.pa
Hi,
> Isn't that breaking some packages which currently use `/usr/lib`?
>
> packages.git/boost:
> https://github.com/openwrt/packages/blob/e2e152da599ceeacf06b4a045b5b391107d194df/libs/boost/Makefile#L485
I don't see how. The code you quoted creates the destination directory
directly in the line
31 matches
Mail list logo
