OpenWrt v22.03.1 Changelog
This changelog lists all commits done in OpenWrt since the v22.03.0 tag, grouped by subsystem. The changes are chronologically ordered from top to bottom and cover the Git repository history until the tagging of the 22.03.1 release.
See also the release notes that provide a more accessible overview of the main changes in 22.03.1.
Build System / Buildroot (25 changes)
a352e30
scripts: add xxdi.pl (+50)
4c795af
scripts: xxdi.pl: remove File::Slurp dependency (+17,-2)
542447b
scripts: xxdi.pl: add xxd -i compat mode (+19,-18)
b531611
build: provide xxd -i with scripts/xxdi.pl (+4,-1)
340b138
scripts: always check certificates (+11,-2)
b8cbca8
scripts/download.pl: silence can't exec curl warning (+1,-1)
81388f7
scripts/download.pl: fix downloads with wget (+8,-2)
bf65d2d
kernel: bump 5.10 to 5.10.139 (+3,-3)
1b0db30
kernel: bump 5.10 to 5.10.141 (+61,-61)
4e05e7d
kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd
kernel: bump 5.10 to 5.10.143 (+15,-15)
f3ffb04
kernel: add missing symbol (+5)
25d8b9c
build: fix issues with targets installed via feeds (+6,-5)
463fe05
Makefile: fix stray \ warnings with grep-3.8 (+1,-1)
29927e3
rules_mk: use gcc versions for external toolchain (+3,-10)
18a8866
rules_mk: don't include wrapped bin with external toolchains (-1)
24cf766
scripts: ext-toolchain: fix wrong prefix in print_config generation (+4,-1)
d1a6c35
scripts: ext-toolchain: add option to overwrite config (+18,-4)
b0622d1
scripts: ext-toolchain: actually probe libc type on config generation (+1)
65bd632
scripts: ext-toolchain: add support for info.mk in probe_cc (+7)
4ad6925
scripts: ext-toolchain: add support for musl (+12,-2)
8f72f5e
toolchain: Select USE_SSTRIP with external musl toolchain (-2)
a91f391
kernel: bump 5.10 to 5.10.144 (+3,-3)
f04515e
kernel: bump 5.10 to 5.10.145 (+10,-52)
2c49ad3
kernel: bump 5.10 to 5.10.146 (+21,-21)
Build System / Host Utilities (2 changes)
Build System / SDK (2 changes)
0cb3a61
build: fix warnings from grep (+1,-1)
8f72f5e
toolchain: Select USE_SSTRIP with external musl toolchain (-2)
Build System / Toolchain (1 change)
938ae92
toolchain: Include ./include/fortify for external musl toolchain (+1)
Kernel (17 changes)
8835da4
kernel: backport mtd patch adding of_platform_populate() calls (+81,-8)
4efa0b7
kernel: backport U-Boot environment data NVMEM driver (+361,-10)
cae4d08
kernel: backport mtd dynamic partition patch (+112,-6)
94372ab
bcm53xx: update NVMEM driver for NVRAM (+230,-5)
e7ef88f
kernel: build crypto md5/sha1/sha256 modules for powerpc (+19,-1)
1b0db30
kernel: bump 5.10 to 5.10.141 (+61,-61)
4e05e7d
kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd
kernel: bump 5.10 to 5.10.143 (+15,-15)
745d3cd
kernel: modules: package kmod-crypto-essiv (+12)
2419546
generic: move ledbar driver from mediatek target (+4,-3)
a28ccd5
ath79: Make patches apply again (+13,-13)
700f5d2
kernel: update U-Boot NVMEM driver (+59)
74eeee1
build: fix including modules.mk for targets pulled in from feeds (+2,-1)
25d8b9c
build: fix issues with targets installed via feeds (+6,-5)
f04515e
kernel: bump 5.10 to 5.10.145 (+10,-52)
2c49ad3
kernel: bump 5.10 to 5.10.146 (+21,-21)
977f6f3
kernel: fix possible mtd NULL pointer dereference (+33,-3)
Packages / Boot Loaders (3 changes)
7707b47
ramips: fix fw_setsys (+1,-1)
1ff2993
uboot-mvebu: backport patch to fix compilation on non glibc system (+44)
23d2303
uboot-mvebu: backport LibreSSL patches for older version of LibreSSL (+55)
Packages / Common (5 changes)
ab61232
hostapd: rename hostapd multicast_to_unicast option to multicast_to_unicast_all (+5,-5)
0c8425b
wolfssl: bump to 5.5.0 (+5,-28)
3d2be75
wolfssl: refresh patches (+3,-3)
ce59843
wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173) (+2,-2)
562894b
treewide: fix security issues by bumping all packages using libwolfssl (+4,-4)
Packages / Firmware (2 changes)
0c9833d
wireless-regdb: update to 2022-08-12 (+2,-2)
e5ab159
firmware: intel-microcode: update to 20220809 (+2,-2)
Packages / OpenWrt network userland (1 change)
562894b
treewide: fix security issues by bumping all packages using libwolfssl (+4,-4)
Target / Makefile (1 change)
25d8b9c
build: fix issues with targets installed via feeds (+6,-5)
Target / apm821xx (1 change)
4e05e7d
kernel: bump 5.10 to 5.10.142 (+25,-25)
Target / at91 (2 changes)
Target / ath79 (9 changes)
daf1fdc
ath79: add support for ZTE MF281 (+296,-4)
cae4d08
kernel: backport mtd dynamic partition patch (+112,-6)
1b0db30
kernel: bump 5.10 to 5.10.141 (+61,-61)
be4abbd
kernel: bump 5.10 to 5.10.143 (+15,-15)
a28ccd5
ath79: Make patches apply again (+13,-13)
9dc46d6
ath79: fix LibreRouter-v1 watchdog and poe_pass (+4)
4b5bd15
ath79: move ubnt-xm to tiny (+281,-265)
f579b85
ath79: add low_mem to tiny image (+1,-1)
2853b6d
ath79: fix model name of Extreme Networks WS-AP3805i (+1,-1)
Target / bcm27xx (3 changes)
39c1150
bcm27xx: make NVMEM driver patch apply again (+7,-6)
4e05e7d
kernel: bump 5.10 to 5.10.142 (+25,-25)
be4abbd
kernel: bump 5.10 to 5.10.143 (+15,-15)
Target / bcm4908 (3 changes)
03c251a
bcm4908: enable NVMEM U-Boot env data driver (+3)
acc78a9
bcm4908: backport mtd parser for Broadcom's U-Boot partition (+138)
2a63467
bcm4908: fix -EPROBE_DEFER support in bcm4908_enet (+58,-1)
Target / bcm53xx (4 changes)
4efa0b7
kernel: backport U-Boot environment data NVMEM driver (+361,-10)
94372ab
bcm53xx: update NVMEM driver for NVRAM (+230,-5)
4e05e7d
kernel: bump 5.10 to 5.10.142 (+25,-25)
cd117f0
bcm53xx: backport clk driver fix for DT nodes names (+72,-62)
Target / ipq40xx (4 changes)
25a041f
ipq40xx: add LTE packages for GL-AP1300 (+1,-1)
b317d3d
ipq40xx: add WAN LED mapping for GL-AP1300 (+3)
308f083
ipq40xx: add GL-AP1300 label-mac-device (+1)
1b0db30
kernel: bump 5.10 to 5.10.141 (+61,-61)
Target / mediatek (12 changes)
29c5d5d
mediatek: bpi-r64: make initramfs/recovery optional (+7,-2)
a3f9b42
mediatek: fix typo in bpi-r64 image recipe (+1,-1)
ba6c780
mediatek: do not use gpiod_set_raw_value() (+2,-2)
7366ee8
mediatek: remove gpiod_direction_output() (-2)
a2d2515
mediatek: correctly log i2c response (+2,-2)
cd02837
mediatek: cast literal value to char (+1,-1)
b5665a0
mediatek: support reading more than one byte of response (+8,-7)
26cd0c1
mediatek: add support for reset gpio (+26)
40610c5
mediatek: add initialization after reset (+14)
420a864
mediatek: add led count (+7,-1)
7a26f40
mediatek: fix ledbar of UniFi 6 LR when running custom U-Boot (+2,-1)
b472753
mediatek: fix Unifi 6LR network config (+1,-2)
Target / mpc85xx (3 changes)
c0b7b20
mpc85xx: fix unset kernel symbols (+2)
dafac18
mpc85xx: add patch to fix gpio mpc8xxx (+42)
f04515e
kernel: bump 5.10 to 5.10.145 (+10,-52)
Target / pistachio (1 change)
cae4d08
kernel: backport mtd dynamic partition patch (+112,-6)
Target / ramips (5 changes)
d103529
ramips: fix GB-PC1 and GB-PC2 LEDs (+15,-17)
f54d4ea
ramips: add support for Ubiquiti UniFi FlexHD (+194)
7c459ac
mac80211: rt2x00: experimental improvements for MT7620 wifi (+1.5K,-498)
d30ddfb
ramips: enable LZMA loader to fix Linksys RE6500 boot (+1)
25747a4
ramips: fix switch setup for ASUS RT-AX53U (+1,-5)
Target / realtek (5 changes)
47ba7cd
realtek: fix RTL838x receive tag decoding (+6,-3)
8ff1d27
realtek: fix RTL839x receive tag decoding (+2,-2)
bf65d2d
kernel: bump 5.10 to 5.10.139 (+3,-3)
a91f391
kernel: bump 5.10 to 5.10.144 (+3,-3)
2c49ad3
kernel: bump 5.10 to 5.10.146 (+21,-21)
Target / rockchip (2 changes)
18f77ef
rockchip: ensure NanoPi R4S has unique MAC address (+28,-5)
fff797d
rockchip: add system-LED aliases specific to OpenWrt (+16)
Target / {mediatek (1 change)
2419546
generic: move ledbar driver from mediatek target (+4,-3)
Wireless / Common (4 changes)
b3fa024
mac80211: backport tx queueing bugfixes add a bug fix for a rare crash (+171)
0755c18
mac80211: add patch descriptions to rt2x00 patches (+76,-1)
d004110
mac80211: rt2x00: fix typo (+3,-5)
7c459ac
mac80211: rt2x00: experimental improvements for MT7620 wifi (+1.5K,-498)
Wireless / MT76 (1 change)
da7b26d
mt76: update to the latest version (+3,-3)
⇒ d705464
mt76: fix 5 GHz connection regression on mt76x0/mt76x2 (+2,-1)
Addressed bugs
FS#3552 (#8577)
Description: Linksys RE6500 bootloops with latest snapshots
Link: https://github.com/openwrt/openwrt/issues/8577
Commits:
d30ddfb
ramips: enable LZMA loader to fix Linksys RE6500 boot (+1)
#10555
Description: Tools: broken xxd download link
Link: https://github.com/openwrt/openwrt/issues/10555
Commits:
542447b
scripts: xxdi.pl: add xxd -i compat mode (+19,-18)
b531611
build: provide xxd -i with scripts/xxdi.pl (+4,-1)
b5e3935
tools: remove xxd package (+1,-20)
#10692
Description: SSL certificate checking fails for source downloads (at least with wget)
Link: https://github.com/openwrt/openwrt/issues/10692
Commits:
81388f7
scripts/download.pl: fix downloads with wget (+8,-2)
Security fixes
CVE-2022-21233
Description: Improper isolation of shared resources in some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access.
Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21233
Commits:
e5ab159
firmware: intel-microcode: update to 20220809 (+2,-2)
CVE-2022-39173
Description: In wolfSSL before 5.5.1, malicious clients can cause a buffer overflow during a TLS 1.3 handshake. This occurs when an attacker supposedly resumes a previous TLS session. During the resumption Client Hello a Hello Retry Request must be triggered. Both Client Hellos are required to contain a list of duplicate cipher suites to trigger the buffer overflow. In total, two Client Hellos have to be sent: one in the resumed session, and a second one as a response to a Hello Retry Request message.
Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39173
Commits:
ce59843
wolfssl: fix TLSv1.3 RCE in uhttpd by using 5.5.1-stable (CVE-2022-39173) (+2,-2)
562894b
treewide: fix security issues by bumping all packages using libwolfssl (+4,-4)