OpenWrt v19.07.0 Changelog

This change log lists all commits done in preparation of OpenWrt 19.07.0 since OpenWrt 19.07.0-rc2.

Commits are roughly grouped by subsystem and chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 19.07.0 release.

df45ef5 cmake: Install host packages to lib instead of lib64 (+1)
0c07224 scripts/dowload.pl: add archive.apache.org to apache mirror list (+1)
aca39ac OpenWrt v19.07.0: adjust config defaults (+11,-9)

aca39ac OpenWrt v19.07.0: adjust config defaults (+11,-9)

e8e09c5 glibc: update to latest 2.27 commit (BZ #24228, BZ #24744, BZ #24699) (+2,-2)
⇒ 5f90e00 NEWS: add entries for bugs 22964, 24180, and 24531 (+4)
⇒ f056ac8 libio: do not attempt to free wide buffers of legacy streams [BZ #24228] (+77,-5)
⇒ 949da7f io: Remove copy_file_range emulation [BZ #24744] (+77,-777)
⇒ 0b48caa aarch64: add STO_AARCH64_VARIANT_PCS and DT_AARCH64_VARIANT_PCS (+12)
⇒ bdd1689 aarch64: handle STO_AARCH64_VARIANT_PCS (+36,-4)
⇒ 22bd3ab posix: Fix large mmap64 offset for mips64n32 (BZ#24699) (+53,-5)
⇒ f3e2add aarch64: Use the L() macro for labels in memcmp (+20,-16)
⇒ 062139f aarch64: Optimized memcmp for medium to large sizes (+60,-21)
⇒ 40df047 aarch64: Fix branch target to loop16 (+7,-3)
⇒ 7f690fa aarch64: Improve strcmp unaligned performance (+5)
⇒ d5f45a2 aarch64/strcmp: fix misaligned loop jump target (+6,-1)
⇒ 638caf3 aarch64: Improve strncmp for mutually misaligned inputs (+87,-15)
⇒ e0a0bd3 aarch64/strncmp: Unbreak builds with old binutils (+9,-2)
⇒ 0fc5934 aarch64/strncmp: Use lsr instead of mov+lsr (+7,-4)
⇒ c74b884 aarch64,falkor: Ignore prefetcher tagging for smaller copies (+46,-27)
⇒ e6b7252 aarch64,falkor: Use vector registers for memcpy (+70,-72)
⇒ + 1 more...
929c6d7 glibc: update to latest 2.27 commit (BZ#23637) (+2,-2)
⇒ 7a4da6e Improve strstr performance (+51,-33)
⇒ bba6b92 Simplify and speedup strstr/strcasestr first match (+40,-45)
⇒ ecd6271 Speedup first memmem match (+8)
⇒ 4ec1b9e Fix strstr bug with huge needles (bug 23637) (+44,-4)
⇒ 373f8b0 Improve performance of strstr (+132,-51)
⇒ 9456483 Improve performance of memmem (+89,-42)
⇒ 5b4f738 Add undef to fix test failure. (+1)
a50c219 glibc: backport fix for regexec buffer read overrun (+26)
3959f11 glibc: update to latest 2.27 commit (BZ #2503, BZ #2504) (+2,-2)
⇒ 92f04ee mips: Force RWX stack for hard-float builds that can run on pre-4.8 kernels (+89,-5)
⇒ 4d5cfeb rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CV... (+9,-1)
⇒ bef0b1c libio: Disable vtable validation for pre-2.1 interposed handles [BZ #25203] (+6)
a7d880e toolchain/gcc: correct the check expr for newer clang (+1,-1)
d2e87c7 toolchain/gcc: Backport patch to fix unconditional MULTIARCH_DIRNAME (+30)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
7203a58 kernel: remove LINUX_4_9 dependency of kmod-dax (+1,-2)
f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)
d13c6d0 kernel: bump 4.14 to 4.14.160 (+18,-18)
084dfb8 kernel: bump 4.14 to 4.14.161 (+134,-134)
3300469 kernel: bump 4.14 to 4.14.162 (+25,-25)

06bf1a9 ucert: update to latest git HEAD (+3,-3)
⇒ e4bd927 cast ucert_argv to proper type when passing to execv (+6,-6)
6351205 adb: fix for SuperSpeed devices (+41,-2)
4fba5dc kernel: fix *-gpio-custom module unloading (+6,-6)
3fc47dd wolfssl: bump to 4.3.0-stable (+3,-3)
abb0665 ca-certificates: provide ca-certs by both ca-certificates and ca-bundle (+4,-2)
f58705b dnsmasq: Fix potential dnsmasq crash with TCP (+36,-1)

0bb4733 ath10k-firmware: update Candela Tech firmware images (+24,-24)
3605776 ath10k-firmware: Add kmod-ath10k-ct-smallbuffers to depends (+6,-6)

3140d38 base-files: upgrade: add case to export_bootdevice (+13,-1)
bf99f79 base-files: sysupgrade: exit if the firmware download failed (+2,-2)
aca39ac OpenWrt v19.07.0: adjust config defaults (+11,-9)

1f1867d odhcpd: optimize syslog priority values (+3,-3)

414ea30 uhttpd: update to latest Git HEAD (+3,-3)
⇒ 5f9ae57 client: fix invalid data access through invalid content-length values (+2,-2)
18107f4 uhttpd: reset PKG_RELEASE (+1,-1)
c34499a libubox: update to latest git HEAD (+3,-3)
⇒ eb30a03 libubox, jshn: add option to write output to a file (+14,-4)
ab7386b libubox: bump to version 2019-10-29 (+3,-3)
⇒ 3013039 vlist: add more macros for loop iteration (+15)
f7779d6 fstools: update to latest Git HEAD (+3,-3)
⇒ c9d0462 libblkid-tiny: adds blkid_probe_set_utf8label support (+93)
⇒ 9b3eb63 libblkid-tiny: use blkid_probe_set_utf8label for label set (+1,-9)
⇒ 4327ed4 mkdev: Avoid out of bounds read (+2,-2)
43c5927 fstools: bump to version 2019-11-03 (+3,-3)
⇒ d05276d libblkid-tiny: ntfs: fix use-after-free (+7,-5)
⇒ eda8b3f block: use fsck.fat instead of dosfsck (+2,-2)
⇒ 1212b5b block: umount: skip / unless -a is given (+10,-4)
⇒ fb0700f block: support hierarchical mount/umount (+101,-51)
⇒ 32c3126 block: mount_action: handle mount/umount deps (+30,-13)
⇒ da4edc1 block: mount_device: skip extroot earlier (+4,-4)
⇒ 2f2a09a block: mount_device: err log only when mp deviates from spec (+7,-3)
⇒ f438552 block: detect: use current mp as value of target option (+24,-17)
6a151d6 fstools: update to latest git HEAD (+3,-3)
⇒ 5ea47fe blockd: fix vlist memory corruption (+1,-1)
⇒ 12851d6 blockd: don't flush devices list on "hotplug" call (-2)
⇒ b82c5c1 libblkid-tiny: add functions for allocating & freeing probe struct (+57,-16)
⇒ 0c5761f libblkid-tiny: use separated buffer for each block device read (+39,-22)
⇒ 157924d libblkid-tiny: add blkid_probe_set_id_label() stub (+7,-1)
⇒ f43a1aa libblkid-tiny: vfat: Fix reading labels which starts with byte 0x05 (+2)
⇒ 111a43f libblkid-tiny: vfat: Change parsing label in special cases (+6,-11)
e50d44d fstools: update to latest git HEAD (+3,-3)
⇒ b4e25d5 libblkid-tiny: fix symbol collision with full libblkid (+8,-8)
04fd5e2 libubox: update to version 2019-12-28 (+4,-4)
⇒ 6228df9 iron out all extra compiler warnings (+24,-20)
⇒ c955464 enable extra compiler checks (+1,-1)
⇒ 1fefb7c add initial GitLab CI support (+7)
⇒ b0a5cd8 add cram based unit tests (+594,-7)
⇒ 8baeeea add assert.h component (+9)
⇒ 0003ea9 base64: fix possible null pointer dereference (+32)
⇒ c008294 blobmsg_json: fix possible uninitialized struct member (+2,-2)
⇒ 9b6ede0 avl: guard against theoretical null pointer dereference (+2)
⇒ 93848ec jshn: refactor main into smaller pieces (+68,-39)
⇒ c42f11c jshn: main: fix leak of memory pointed to by 'vars' (+3)
⇒ cb698e3 jshn: jshn_parse: fix leaks of memory pointed to by 'obj' (+3)
⇒ 8e832a7 jshn: fix off by one in jshn_parse_file (+1,-1)
⇒ 26586da jshn: fix missing usage for -p and -o arguments (+2,-2)
⇒ 07413cc tests: jshn: add more test cases (+164)
⇒ eb216a9 cmake: use extra compiler warnings only on gcc6+ (+6,-1)
⇒ 46f8268 blobmsg/ulog: fix format string compiler warnings (+7,-4)
⇒ + 20 more...
64c45d9 ubus: update to version 2019-12-27 (+4,-4)
⇒ 4daab27 libubus: do not abort recv_retry before completing a message (-2)
⇒ 76ea27a libubus: attempt to receive data before calling poll (+3,-3)
⇒ 588baa3 ubusd: retry sending messages on EINTR (+12,-6)
⇒ 2e051f6 ubus: Support static builds (+10,-3)
⇒ 90fb162 cmake: enable extra compiler checks (+7,-1)
⇒ d61282d ubusd: fix comparison of integers of different signs (+5,-3)
⇒ 5d7ca83 ubusd/libubus-io: fix variable sized struct position warning (+4,-4)
⇒ d2e026a iron out all extra compiler warnings (+32,-29)
⇒ 058f4e9 libubus: fix incompatible pointer types assigment (+1,-1)
⇒ b2e5442 add initial GitLab CI support (+7)
⇒ afd4718 examples: remove dead increments (-6)
⇒ c413be9 refactor ubusd.c into reusable ubusd_library (+278,-271)
⇒ 08f17c8 add fuzzer and cram based unit tests (+198)
⇒ a995b1e lua: workaround false positive dereference of null pointer (+10,-9)
⇒ 72be8e9 lua: ubus_lua_do_subscribe: fix copy&paste error (+2,-2)
⇒ c5f2053 workaround possibly false positive uses of memory after it is freed (+14,-16)
⇒ + 6 more...
f3439c4 procd: update to version 2020-01-04 (+4,-3)
⇒ c844ace system: Fix possible integer overflows (+12,-6)
⇒ 8e9fb51 procd: Switch to nanosleep (+2,-1)
⇒ 258aa04 procd: Add cached and available to memory table (+29)
⇒ d27949f procd: guard fork_worker calls (+12,-6)
⇒ 5d62829 procd: skip respawn in case device disappeared (+5)
⇒ 3e39fe5 procd: shift arguments for askfirst only once (+12,-6)
⇒ ba4c4db procd: add start-console support (+19)
⇒ bc0a73e procd: add upgraded binary to .gitignore (+1)
⇒ 4a127c3 procd: replace exit(-1) with exit(EXIT_FAILURE) (+16,-15)
⇒ 7fb2e1d procd: simplify code in procd_inittab_run (+2,-5)
⇒ 564ecdf instance: ujail: Fix allocated size for no_new_privs parameter (+3)
⇒ f47622e instance: Warn about unexpected number of parameters (+5,-1)
⇒ 3aa051b system: sysupgrade: close input side of pipe before reading (+3,-2)
⇒ 52c5c19 jail: set user and group inside jail (+77,-4)
⇒ 5ed190a jail: remove accidentally added lines (-3)
⇒ 4fde955 cmake: fix lookup of external libraries (+11,-5)
⇒ + 5 more...
6395ac4 fstools: update to latest Git HEAD (+3,-3)
⇒ 823faa0 block: re-discover mtd devices on extroot mount retry (+1,-1)

f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
27eea24 ar71xx: fix MAC address setup for TL-WDR4300 board (+5,-1)
f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)
3300469 kernel: bump 4.14 to 4.14.162 (+25,-25)

a467f39 at91: disable legacy PTYs and virtual terminals (-6)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
6e24df2 ath79: add support for TP-Link TL-WDR4300 v1 (IL) (+21)
3243523 ath79: migrate LED paths of TL-WDR4300 board (+4,-1)
9bdd3d3 ath79: fix MAC address setup for TP-Link TL-WDR3600/TL-WDR4300 (+6,-1)
3030abf ath79: use ath10k-ct-smallbuffers for 64 MiB devices (+14,-14)
3300469 kernel: bump 4.14 to 4.14.162 (+25,-25)

f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)
084dfb8 kernel: bump 4.14 to 4.14.161 (+134,-134)

e33a123 brcm47xx: add switch configuration for WNR3500L (+2,-1)

9415397 ipq40xx: use ath10k-ct-smallbuffers for 128 MiB devices (+3,-1)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)

a2ac5b3 kirkwood: remove CONFIG_LEGACY_PTY from kernel config (-2)

03c9367 lantiq: remove redundant WiFi LED on FRITZ!Box 7320 (-3)
3a863da lantiq: fix phys led (+2,-2)
f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
4aebbae layerscape: remove CONFIG_LEGACY_PTY from kernel config (-4)
f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)
d13c6d0 kernel: bump 4.14 to 4.14.160 (+18,-18)
084dfb8 kernel: bump 4.14 to 4.14.161 (+134,-134)
3300469 kernel: bump 4.14 to 4.14.162 (+25,-25)

d0a71a8 malta: remove CONFIG_LEGACY_PTY from kernel config (-2)

084dfb8 kernel: bump 4.14 to 4.14.161 (+134,-134)

795df80 mpc85xx: add support for Enterasys WS-AP3710i (+310)
a77d4bc mpc85xx: remove CONFIG_LEGACY_PTY from kernel config (-2)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
d13c6d0 kernel: bump 4.14 to 4.14.160 (+18,-18)

d13c6d0 kernel: bump 4.14 to 4.14.160 (+18,-18)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
852ec97 oxnas: disable legacy PTYs and virtual terminals (-6)

c3cc419 kernel: bump 4.14 to 4.14.158 (+42,-42)
fa700ed ramips: fix switch port order for TP-Link Archer C20i (+1,-1)
d1d84da ramips: fix number of LAN Ports for Mikrotik RBM33G (+4,-1)
52c9f95 ramips: allow JCG_MAXSIZE in kiB in Build/jcg-header (+4,-2)
08c850f ramips: fix USB LED for Belkin F9K1109v1 (+1,-1)
62d5ece ramips: remove bogus ralink,mtd-eeprom with offset 0x4 (-6)
7ab5dc7 ramips: add LED trigger for TL-WR902AC v3 WAN LED (+1)
1f927bd ramips: fix inverted reset button for Ravpower WD03 (+1,-1)
80e0b97 ramips: convert TP-Link MT7620 boards to tpt trigger (+7,-5)
3e8b66e ramips: add system LED indicators for TP-Link C20i (+8,-1)
037a151 ramips: fix Archer C2 v1 5GHz MAC address (+2)
594f731 ramips: fix Archer C20i wireless MAC address (+3)
dc399c4 ramips: remove duplicate dts nodes of MediaTek LinkIt Smart 7688 (-4)
e9929eb ramips: Fix sysupgrade for Xiaomi mir3g (+3,-3)
a3ffeb4 ramips: Fix sysupgrade for Xiaomi mir3g (+4,-3)

9e6fb44 sunxi: remove CONFIG_LEGACY_PTY from kernel config (-2)
3c11032 sunxi: Turn on CONFIG_PINCTRL_SUN4I_A10 for A20 (+1,-1)

40a7e76 uml: remove CONFIG_LEGACY_PTY from kernel config (-4)

54711e5 x86: fix missing led variable warning during boot (+2)

450b306 kernel: ath10k-ct: provide a build variant for small RAM devices (+141,-1)

d2d1234 mac80211: unify setup of iw htmode for mesh and adhoc (+16,-49)
c0f2905 mac80211: brcm: backport 5.5 and 5.6 kernel patches (+325,-1)
2c16044 mac80211: brcm: add support for BCM4359 SDIO chipset (+519)
da7dde8 mac80211: add pcie apsm backport changes (+67)
30301df mac80211: add patch to include local BSS rx time in survey information (+79,-2)
91dde42 mac80211: fix build without CONFIG_PCI (+1,-1)
ad4b939 rt2x00: add throughput LED trigger (+44)

a2e2c40 mt76: update to the latest openwrt-19.07 version (+3,-3)
⇒ 0167bfa mt76: make mt76_rx_convert static (+1,-4)
⇒ 1d2acd5 mt76: mt76x0: remove redundant chandef copy (-1)
⇒ 496c78e mt76: mt76x0: remove unneeded return value on set channel (+9,-16)
⇒ 6797378 mt76: mt7615: introduce mt7615_txwi_to_txp utility routine (+15,-6)
⇒ c7f8214 mt76: mt7615: add support to read temperature from mcu (+59,-11)
⇒ e07407a mt7603: fix build with CONFIG_KERNEL_DYNAMIC_DEBUG=y (+1)
⇒ 8739f87 mt76: mt7615: fix control frame rx in monitor mode (+38,-1)
⇒ 9c5df3c mt76: remove aggr_work field from struct mt76_wcid (-2)
⇒ 0efbc5d mt76: use cancel_delayed_work_sync in mt76_rx_aggr_shutdown (+1,-1)
⇒ 0308d75 mt76: remove empty flag in mt76_txq_schedule_list (+7,-16)
⇒ a20c20b mt76: usb: add lockdep_assert_held in __mt76u_vendor_request (+2,-3)
⇒ b140512 mt76: mt76x0e: make array mt76x0_chan_map static const, makes object smaller (+1,-1)
⇒ 63e8152 mt76: mt7615: enable SCS by default (+1,-1)
⇒ f3792b5 mt76: mt76x02: move mac_reset_counter in mt76x02_lib module (+25,-31)
⇒ 0355b7a mt76: mt76x2: move mt76x02_mac_reset_counters in mt76x02_mac_start (+5,-16)
⇒ c394887 mt76: mt76x0u: reset counter starting the device (+1,-2)
⇒ + 64 more...
bce5342 mt76: fix incorrect firmware path (+2,-2)
f8543ad mt76: update to the latest openwrt-19.07 version (+3,-3)
⇒ 8a78567 mt76: fix compilation warning in mt76_eeprom_override() (+3,-6)

a5653ec package: remove accidentally added symlink (-1)

Description: libblkid causes SIGSEGV when interacting with sda device
Link: https://bugs.openwrt.org/index.php?do=details&task_id=2691
Commits:
e50d44d fstools: update to latest git HEAD (+3,-3)
⇒ b4e25d5 libblkid-tiny: fix symbol collision with full libblkid (+8,-8)

Description: [block-mount -v2019-12-20] Segmentation fault
Link: https://bugs.openwrt.org/index.php?do=details&task_id=2692
Commits:
e50d44d fstools: update to latest git HEAD (+3,-3)
⇒ b4e25d5 libblkid-tiny: fix symbol collision with full libblkid (+8,-8)

Description: In wolfSSL 4.1.0 through 4.2.0c, there are missing sanity checks of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a one-byte heap-based buffer overflow inside the DecodedCert structure in GetName in wolfcrypt/src/asn.c because the domain name location index is mishandled. Because a pointer is overwritten, there is an invalid free.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18840
Commits:
3fc47dd wolfssl: bump to 4.3.0-stable (+3,-3)

Description: On the x86-64 architecture, the GNU C Library (aka glibc) before 2.31 fails to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition, allowing local attackers to restrict the possible mapping addresses for loaded libraries and thus bypass ASLR for a setuid program.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19126
Commits:
3959f11 glibc: update to latest 2.27 commit (BZ #2503, BZ #2504) (+2,-2)
⇒ 92f04ee mips: Force RWX stack for hard-float builds that can run on pre-4.8 kernels (+89,-5)
⇒ 4d5cfeb rtld: Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC (CV... (+9,-1)
⇒ bef0b1c libio: Disable vtable validation for pre-2.1 interposed handles [BZ #25203] (+6)

Description: ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19332
Commits:
f80272d kernel: bump 4.14 to 4.14.159 (+153,-281)