OpenWrt 22.03.0-rc6 Changelog

This changelog lists all commits done in OpenWrt since the v21.03.0-rc5 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 22.03.0-rc6 release.

See also the release notes that provide a more accessible overview of the main changes in 22.03.0-rc6.

Build System / Buildroot (14 changes)

614a420 kernel: use KCFLAGS for passing EXTRA_OPTIMIZATION flags (+4,-11)
da7c57b kernel: support setting extra CFLAGS for kernel compilation (+5,-1)
8b4169f bcm53xx: use -falign-functions=32 for kernel compilation (+1)
b2876e6 scripts: add cameo image header generator (+86)
b151362 scripts: add CAMEO tag generator (+117)
9081098 scripts: fix CAMEO tag generator (+1,-1)
73ef008 kernel: bump 5.10 to 5.10.128 (+2,-2)
f14122f kernel: bump 5.10 to 5.10.129 (+22,-22)
a51f54b kernel: bump 5.10 to 5.10.130 (+8,-8)
aa23775 kernel: bump 5.10 to 5.10.131 (+2,-2)
d5858c6 image: add support for Netgear encrypted image (+90)
aedcbaa kernel: bump 5.10 to 5.10.132 (+20,-81)
762703d kernel: bump 5.10 to 5.10.133 (+6,-6)
7ca89e1 kernel: bump 5.10 to 5.10.134 (+16,-16)

Build System / SDK (1 change)

bddfd3f sdk: add spidev-test to the bundle of userspace sources (+16,-4)

Kernel (9 changes)

614a420 kernel: use KCFLAGS for passing EXTRA_OPTIMIZATION flags (+4,-11)
bd826dc kernel: drop patch adding hardcoded kernel compilation flags (-25)
f1fc90e kernel: backport LEDs driver for BCMBCA devices (+499)
187f514 kernel: update leds-bcm63138 driver (+85)
f14122f kernel: bump 5.10 to 5.10.129 (+22,-22)
a51f54b kernel: bump 5.10 to 5.10.130 (+8,-8)
aedcbaa kernel: bump 5.10 to 5.10.132 (+20,-81)
762703d kernel: bump 5.10 to 5.10.133 (+6,-6)
7ca89e1 kernel: bump 5.10 to 5.10.134 (+16,-16)

Packages / Boot Loaders (5 changes)

f2c12b8 layerscape: update PKG_HASH / PKG_MIRROR_HASH (+9,-9)
e0d3dc5 uboot-bcm4908: include SoC in output files (+8,-6)
3981099 at91bootstrap: update at91bootstrap v4 targets to v4.0.3 (+3,-3)
972b833 uboot-at91: update to linux4sam-2022.04 (+6,-16)
f031bb3 dt-bindings: pinctrl: at91-pio4: add slew-rate (+4,-3)
8bad34a pinctrl: at91-pio4: add support for slew-rate (+24,-3)
5075bf2 nds32: Remove dead reset_cpu() implementation (-22)
10b86ef board: ns3: Remove superfluous reset logic (+2,-20)
3394f39 Revert "lpc32xx: cpu: add support for soft reset" (+5,-16)
35b65dd reset: Remove addr parameter from reset_cpu() (+142,-142)
1419e5b stm32mp: update MMU config before the relocation (+9,-4)
aad8414 stm32mp: update the mmu configuration for SPL and prereloc (+30,-10)
342e1ab arm: remove TTB_SECT_XN_MASK in DCACHE_WRITETHROUGH (+1,-1)
9b39d24 arm: cosmetic: align TTB_SECT define value (+1,-1)
503eea4 arm: cp15: update DACR value to activate access control (+5,-2)
cd3eadc arm: omap2: remove arm_init_domains (-17)
8ca0f51 arm: cp15: remove weak function arm_init_domains (-10)
2740eda arm: remove set_dacr/get_dacr functions (-14)
1a9e75b spl: Drop duplicate 'Jumping to U-Boot' message (+1,-2)
ef10804 binman: Indicate how to make binman verbose (+4,-1)
⇒ + 4711 more...
c5f0eab uboot-at91: fix build on buildbots (+2,-1)

Packages / Common (11 changes)

4fb05e4 wolfssl: re-enable AES-NI by default for x86_64 (+45,-6)
ade7c6d wolfssl: bump to 5.4.0 (+4,-48)
c5ee4b7 openssl: bump to 1.1.1q (+2,-2)
a800181 opkg: update to 2022-02-24 (+3,-3)
9c44557 opkg_remove: avoid remove pkg repeatly with option --force-removal-of-depende... (+8)
d038e5b libopkg: support https_proxy (+9,-1)
a12eb71 wolfssl: WOLFSSL_HAS_WPAS requires WOLFSSL_HAS_DH (+1)
dbe19b1 libpcap: fix PKG_CONFIG_DEPENDS for rpcapd (+2)
a1068f7 wolfssl: Do not activate HW acceleration on armvirt by default (+1,-1)
bddfd3f sdk: add spidev-test to the bundle of userspace sources (+16,-4)
f2c12b8 layerscape: update PKG_HASH / PKG_MIRROR_HASH (+9,-9)
8b6b73d wolfssl: make shared again (-2)
c9cc318 wolfssl: fix math library build (+23)

Packages / Firmware (2 changes)

4798900 firmware: intel-microcode: update to 20220510 (+2,-2)
f2c12b8 layerscape: update PKG_HASH / PKG_MIRROR_HASH (+9,-9)

Packages / OpenWrt network userland (3 changes)

cb9a698 firewall3: bump to latest git HEAD (+3,-3)
50979cc firewall3: remove unnecessary fw3_has_table (-26)
4cd7d4f Revert "firewall3: support table load on access on Linux 5.15+" (-11)
5a7bcd6 firewall3: update file hash (+1,-1)
535f4a5 odhcp6c: update to latest git HEAD (+3,-3)
9212bfc odhcp6c: fix IA discard when T1 > 0 and T2 = 0 (+1,-1)

Target / at91 (1 change)

a51f54b kernel: bump 5.10 to 5.10.130 (+8,-8)

Target / ath79 (6 changes)

8e09f9f ath79: switch some RedBoot based devices to OKLI loader (+119,-37)
9453006 ath79: move image check for devices with RedBoot (+46,-31)
1be4cad ath79: ja76pf2: use nvmem cells to specify MAC addresses (+15,-4)
4095348 ath79: bsap18x0: pad rootfs image (+1,-1)
41fa086 kernel: Refresh kernel patches (+11,-11)
7ca89e1 kernel: bump 5.10 to 5.10.134 (+16,-16)

Target / bcm27xx (4 changes)

41fa086 kernel: Refresh kernel patches (+11,-11)
aedcbaa kernel: bump 5.10 to 5.10.132 (+20,-81)
762703d kernel: bump 5.10 to 5.10.133 (+6,-6)
7ca89e1 kernel: bump 5.10 to 5.10.134 (+16,-16)

Target / bcm4908 (6 changes)

f1fc90e kernel: backport LEDs driver for BCMBCA devices (+499)
7eda42a bcm4908: backport latest DT patches (+363,-1)
606fc4c bcm4908: use upstream-accepted watchdog patches (+11,-1)
f14122f kernel: bump 5.10 to 5.10.129 (+22,-22)
066547b bcm4908: build bootfs image per-SoC (+92,-59)
e0d3dc5 uboot-bcm4908: include SoC in output files (+8,-6)

Target / bcm53xx (5 changes)

027f7b1 bcm53xx: revert bgmac back to the old limited max frame size (+33)
5359a8c bcm53xx: disable GRO by default at kernel level (+36)
e291e49 bcm53xx: enable & setup packet steering (+47)
f1fc90e kernel: backport LEDs driver for BCMBCA devices (+499)
41fa086 kernel: Refresh kernel patches (+11,-11)

Target / bcm63xx (1 change)

f1fc90e kernel: backport LEDs driver for BCMBCA devices (+499)

Target / ipq806x (2 changes)

ee27a2b ipq806x: Archer VR2600: fix switch ports numbering (+3,-3)
7ca89e1 kernel: bump 5.10 to 5.10.134 (+16,-16)

Target / lantiq (1 change)

506432a lantiq: fix network port GPIO settings for Fritzbox 3390 (+2,-2)

Target / mediatek (2 changes)

8ccd657 mt7622: remove 300 MHz from dts (+25)
41fa086 kernel: Refresh kernel patches (+11,-11)

Target / octeon (1 change)

a409bd7 octeon: add SUPPORTED_DEVICES to er/erlite (+2)

Target / ramips (2 changes)

c240fed ramips: add support for Netgear WAX202 (+318)
7ca89e1 kernel: bump 5.10 to 5.10.134 (+16,-16)

Target / realtek (9 changes)

72466aa realtek: add DGS-1210-28 factory image (+25,-1)
87e58a4 realtek: build DGS-1210 images with CAMEO tag (+5)
128575d realtek: rename u-boot-env2 to board-name (+1,-1)
3fbf45b realtek: build factory images for all DGS-1210 models (+7,-7)
945b13e realtek: build sane factory images for DGS-1210 models (+7,-1)
8614b8e realtek: fix egress port mask on rtl839x (+1,-1)
4da0b5a realtek: fix egress L2 learning on rtl839x (+1,-1)
f8a44c2 realtek: correct egress frame priority assignment (+14,-12)
396dc89 realtek: correct egress frame port verification (+36,-39)

Target / rockchip (1 change)

01b8cd3 rockchip: reliably distribute net interrupts (+9,-2)

Target / tegra (1 change)

aedcbaa kernel: bump 5.10 to 5.10.132 (+20,-81)

Target / x86 (1 change)

1db4f5c x86: update defconfig for 5.10.133 (+7,-1)

Wireless / Common (2 changes)

ec9f82f mac80211: fix AQL issue with multicast traffic (+30)
042d558 mac80211: Update to version 5.15.58-1 (+70,-206)

Addressed bugs

#10275

Description: TP-Link Archer VR2600 v1 - Labelled LAN ports on router do not match Switch port numbering
Link: https://github.com/openwrt/openwrt/issues/10275
Commits:
ee27a2b ipq806x: Archer VR2600: fix switch ports numbering (+3,-3)

Security fixes

CVE-2022-2097

Description: AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special case of "in place" encryption, sixteen bytes of the plaintext would be revealed. Since OpenSSL does not support OCB based cipher suites for TLS and DTLS, they are both unaffected. Fixed in OpenSSL 3.0.5 (Affected 3.0.0-3.0.4). Fixed in OpenSSL 1.1.1q (Affected 1.1.1-1.1.1p).

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2097
Commits:
c5ee4b7 openssl: bump to 1.1.1q (+2,-2)

CVE-2022-21151

Description: Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21151
Commits:
4798900 firmware: intel-microcode: update to 20220510 (+2,-2)

CVE-2022-34293

Description: ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34293
Commits:
ade7c6d wolfssl: bump to 5.4.0 (+4,-48)

This website uses cookies. By using the website, you agree with storing cookies on your computer. Also you acknowledge that you have read and understand our Privacy Policy. If you do not agree leave the website.More information about cookies
  • Last modified: 2022/07/31 22:30
  • by hauke