OpenWrt v22.03.1 Changelog

This changelog lists all commits done in OpenWrt since the v22.03.0 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 22.03.1 release.

See also the release notes that provide a more accessible overview of the main changes in 22.03.1.

a352e30 scripts: add xxdi.pl (+50)
4c795af scripts: xxdi.pl: remove File::Slurp dependency (+17,-2)
542447b scripts: xxdi.pl: add xxd -i compat mode (+19,-18)
b531611 build: provide xxd -i with scripts/xxdi.pl (+4,-1)
340b138 scripts: always check certificates (+11,-2)
b8cbca8 scripts/download.pl: silence can't exec curl warning (+1,-1)
81388f7 scripts/download.pl: fix downloads with wget (+8,-2)
bf65d2d kernel: bump 5.10 to 5.10.139 (+3,-3)
1b0db30 kernel: bump 5.10 to 5.10.141 (+61,-61)
4e05e7d kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd kernel: bump 5.10 to 5.10.143 (+15,-15)
f3ffb04 kernel: add missing symbol (+5)
25d8b9c build: fix issues with targets installed via feeds (+6,-5)
463fe05 Makefile: fix stray \ warnings with grep-3.8 (+1,-1)
29927e3 rules_mk: use gcc versions for external toolchain (+3,-10)
18a8866 rules_mk: don't include wrapped bin with external toolchains (-1)
24cf766 scripts: ext-toolchain: fix wrong prefix in print_config generation (+4,-1)
d1a6c35 scripts: ext-toolchain: add option to overwrite config (+18,-4)
b0622d1 scripts: ext-toolchain: actually probe libc type on config generation (+1)
65bd632 scripts: ext-toolchain: add support for info.mk in probe_cc (+7)
4ad6925 scripts: ext-toolchain: add support for musl (+12,-2)
8f72f5e toolchain: Select USE_SSTRIP with external musl toolchain (-2)
a91f391 kernel: bump 5.10 to 5.10.144 (+3,-3)
f04515e kernel: bump 5.10 to 5.10.145 (+10,-52)
2c49ad3 kernel: bump 5.10 to 5.10.146 (+21,-21)

b5e3935 tools: remove xxd package (+1,-20)
ed905fc tools/meson: backport WSL2 fix (+21)

0cb3a61 build: fix warnings from grep (+1,-1)
8f72f5e toolchain: Select USE_SSTRIP with external musl toolchain (-2)

938ae92 toolchain: Include ./include/fortify for external musl toolchain (+1)

8835da4 kernel: backport mtd patch adding of_platform_populate() calls (+81,-8)
4efa0b7 kernel: backport U-Boot environment data NVMEM driver (+361,-10)
cae4d08 kernel: backport mtd dynamic partition patch (+112,-6)
94372ab bcm53xx: update NVMEM driver for NVRAM (+230,-5)
e7ef88f kernel: build crypto md5/sha1/sha256 modules for powerpc (+19,-1)
1b0db30 kernel: bump 5.10 to 5.10.141 (+61,-61)
4e05e7d kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd kernel: bump 5.10 to 5.10.143 (+15,-15)
745d3cd kernel: modules: package kmod-crypto-essiv (+12)
2419546 generic: move ledbar driver from mediatek target (+4,-3)
a28ccd5 ath79: Make patches apply again (+13,-13)
700f5d2 kernel: update U-Boot NVMEM driver (+59)
74eeee1 build: fix including modules.mk for targets pulled in from feeds (+2,-1)
25d8b9c build: fix issues with targets installed via feeds (+6,-5)
f04515e kernel: bump 5.10 to 5.10.145 (+10,-52)
2c49ad3 kernel: bump 5.10 to 5.10.146 (+21,-21)
977f6f3 kernel: fix possible mtd NULL pointer dereference (+33,-3)

7707b47 ramips: fix fw_setsys (+1,-1)
1ff2993 uboot-mvebu: backport patch to fix compilation on non glibc system (+44)
23d2303 uboot-mvebu: backport LibreSSL patches for older version of LibreSSL (+55)

ab61232 hostapd: rename hostapd multicast_to_unicast option to multicast_to_unicast_all (+5,-5)
0c8425b wolfssl: bump to 5.5.0 (+5,-28)
3d2be75 wolfssl: refresh patches (+3,-3)
ce59843 wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173) (+2,-2)
562894b treewide: fix security issues by bumping all packages using libwolfssl (+4,-4)

0c9833d wireless-regdb: update to 2022-08-12 (+2,-2)
e5ab159 firmware: intel-microcode: update to 20220809 (+2,-2)

562894b treewide: fix security issues by bumping all packages using libwolfssl (+4,-4)

25d8b9c build: fix issues with targets installed via feeds (+6,-5)

4e05e7d kernel: bump 5.10 to 5.10.142 (+25,-25)

4e05e7d kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd kernel: bump 5.10 to 5.10.143 (+15,-15)

daf1fdc ath79: add support for ZTE MF281 (+296,-4)
cae4d08 kernel: backport mtd dynamic partition patch (+112,-6)
1b0db30 kernel: bump 5.10 to 5.10.141 (+61,-61)
be4abbd kernel: bump 5.10 to 5.10.143 (+15,-15)
a28ccd5 ath79: Make patches apply again (+13,-13)
9dc46d6 ath79: fix LibreRouter-v1 watchdog and poe_pass (+4)
4b5bd15 ath79: move ubnt-xm to tiny (+281,-265)
f579b85 ath79: add low_mem to tiny image (+1,-1)
2853b6d ath79: fix model name of Extreme Networks WS-AP3805i (+1,-1)

39c1150 bcm27xx: make NVMEM driver patch apply again (+7,-6)
4e05e7d kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd kernel: bump 5.10 to 5.10.143 (+15,-15)

03c251a bcm4908: enable NVMEM U-Boot env data driver (+3)
acc78a9 bcm4908: backport mtd parser for Broadcom's U-Boot partition (+138)
2a63467 bcm4908: fix -EPROBE_DEFER support in bcm4908_enet (+58,-1)

4efa0b7 kernel: backport U-Boot environment data NVMEM driver (+361,-10)
94372ab bcm53xx: update NVMEM driver for NVRAM (+230,-5)
4e05e7d kernel: bump 5.10 to 5.10.142 (+25,-25)
cd117f0 bcm53xx: backport clk driver fix for DT nodes names (+72,-62)

25a041f ipq40xx: add LTE packages for GL-AP1300 (+1,-1)
b317d3d ipq40xx: add WAN LED mapping for GL-AP1300 (+3)
308f083 ipq40xx: add GL-AP1300 label-mac-device (+1)
1b0db30 kernel: bump 5.10 to 5.10.141 (+61,-61)

29c5d5d mediatek: bpi-r64: make initramfs/recovery optional (+7,-2)
a3f9b42 mediatek: fix typo in bpi-r64 image recipe (+1,-1)
ba6c780 mediatek: do not use gpiod_set_raw_value() (+2,-2)
7366ee8 mediatek: remove gpiod_direction_output() (-2)
a2d2515 mediatek: correctly log i2c response (+2,-2)
cd02837 mediatek: cast literal value to char (+1,-1)
b5665a0 mediatek: support reading more than one byte of response (+8,-7)
26cd0c1 mediatek: add support for reset gpio (+26)
40610c5 mediatek: add initialization after reset (+14)
420a864 mediatek: add led count (+7,-1)
7a26f40 mediatek: fix ledbar of UniFi 6 LR when running custom U-Boot (+2,-1)
b472753 mediatek: fix Unifi 6LR network config (+1,-2)

c0b7b20 mpc85xx: fix unset kernel symbols (+2)
dafac18 mpc85xx: add patch to fix gpio mpc8xxx (+42)
f04515e kernel: bump 5.10 to 5.10.145 (+10,-52)

cae4d08 kernel: backport mtd dynamic partition patch (+112,-6)

d103529 ramips: fix GB-PC1 and GB-PC2 LEDs (+15,-17)
f54d4ea ramips: add support for Ubiquiti UniFi FlexHD (+194)
7c459ac mac80211: rt2x00: experimental improvements for MT7620 wifi (+1.5K,-498)
d30ddfb ramips: enable LZMA loader to fix Linksys RE6500 boot (+1)
25747a4 ramips: fix switch setup for ASUS RT-AX53U (+1,-5)

47ba7cd realtek: fix RTL838x receive tag decoding (+6,-3)
8ff1d27 realtek: fix RTL839x receive tag decoding (+2,-2)
bf65d2d kernel: bump 5.10 to 5.10.139 (+3,-3)
a91f391 kernel: bump 5.10 to 5.10.144 (+3,-3)
2c49ad3 kernel: bump 5.10 to 5.10.146 (+21,-21)

18f77ef rockchip: ensure NanoPi R4S has unique MAC address (+28,-5)
fff797d rockchip: add system-LED aliases specific to OpenWrt (+16)

2419546 generic: move ledbar driver from mediatek target (+4,-3)

b3fa024 mac80211: backport tx queueing bugfixes add a bug fix for a rare crash (+171)
0755c18 mac80211: add patch descriptions to rt2x00 patches (+76,-1)
d004110 mac80211: rt2x00: fix typo (+3,-5)
7c459ac mac80211: rt2x00: experimental improvements for MT7620 wifi (+1.5K,-498)

da7b26d mt76: update to the latest version (+3,-3)
d705464 mt76: fix 5 GHz connection regression on mt76x0/mt76x2 (+2,-1)

FS#3552 (#8577)

Description: Linksys RE6500 bootloops with latest snapshots
Link: https://github.com/openwrt/openwrt/issues/8577
Commits:
d30ddfb ramips: enable LZMA loader to fix Linksys RE6500 boot (+1)

#10555

Description: Tools: broken xxd download link
Link: https://github.com/openwrt/openwrt/issues/10555
Commits:
542447b scripts: xxdi.pl: add xxd -i compat mode (+19,-18)
b531611 build: provide xxd -i with scripts/xxdi.pl (+4,-1)
b5e3935 tools: remove xxd package (+1,-20)

#10692

Description: SSL certificate checking fails for source downloads (at least with wget)
Link: https://github.com/openwrt/openwrt/issues/10692
Commits:
81388f7 scripts/download.pl: fix downloads with wget (+8,-2)

CVE-2022-21233

Description: Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21233
Commits:
e5ab159 firmware: intel-microcode: update to 20220809 (+2,-2)

CVE-2022-39173

Description: In wolfSSL before 5.5.1, malicious clients can cause a buffer overflow during a TLS 1.3 handshake. This occurs when an attacker supposedly resumes a previous TLS session. During the resumption Client Hello a Hello Retry Request must be triggered. Both Client Hellos are required to contain a list of duplicate cipher suites to trigger the buffer overflow. In total, two Client Hellos have to be sent: one in the resumed session, and a second one as a response to a Hello Retry Request message.

Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39173
Commits:
ce59843 wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173) (+2,-2)
562894b treewide: fix security issues by bumping all packages using libwolfssl (+4,-4)

This website uses cookies. By using the website, you agree with storing cookies on your computer. Also you acknowledge that you have read and understand our Privacy Policy. If you do not agree leave the website.More information about cookies
  • Last modified: 2022/10/09 17:47
  • by hauke