Turris Build issueshttps://gitlab.nic.cz/turris/os/build/-/issues2023-10-03T12:37:46+02:00https://gitlab.nic.cz/turris/os/build/-/issues/406Add package luci-lighttpd2023-10-03T12:37:46+02:00Josef SchlehoferAdd package luci-lighttpdHey, while rebasing patches for OpenWrt master (current HBD branch), I have noticed that in OpenWrt LuCI repository there are several packages under [collections folders](https://github.com/openwrt/luci/tree/master/collections), where yo...Hey, while rebasing patches for OpenWrt master (current HBD branch), I have noticed that in OpenWrt LuCI repository there are several packages under [collections folders](https://github.com/openwrt/luci/tree/master/collections), where you can see LuCI support for uhttpd and nginx. It makes sense to have there luci-lighttpd package as well. Because we are using Lighttpd as the default web server for Turris OS.
1. [ ] Investigate if luci-lighttpd is necessary
- [ ] Create package: luci-lighttpd
- [ ] Create SSL package: luci-ssl-lighttpd
2. [ ] Drop patches when we are removing uhttpd from LuCI (https://gitlab.nic.cz/turris/os/build/-/blob/f28b2b9d76a80a7ba185707faa2908af6ffc285b/patches/luci/branding/0001-Drop-uhttpd-dependency.patch)
3. [ ] Switch to luci-lighttpd package(s)
Would be nice to have it for Turris OS 7.0 or even upstream it ASAP to have it included in upstream and then backport it. This also allows users in OpenWrt to use Lighttpd and LuCI without hassle and it will not require additional tweaks.Turris OS 8.0https://gitlab.nic.cz/turris/os/build/-/issues/312PRPL Mesh packages feed2021-12-14T12:19:29+01:00Karel KociPRPL Mesh packages feedThink about inclusion of prplMesh packages (https://gitlab.com/prpl-foundation/prplos/feed-prpl).
* [ ] add feed
* [ ] test itThink about inclusion of prplMesh packages (https://gitlab.com/prpl-foundation/prplos/feed-prpl).
* [ ] add feed
* [ ] test ithttps://gitlab.nic.cz/turris/os/build/-/issues/204More languages in Shield guide and reForis2022-06-06T14:15:56+02:00Lukas JelinekMore languages in Shield guide and reForisTurris Shield currently contains only English when it is delivered to a customer (and its first-start guide is started). I think it should contain Czech too and possibly also German, French and Spanish.
Additional languages currently ca...Turris Shield currently contains only English when it is delivered to a customer (and its first-start guide is started). I think it should contain Czech too and possibly also German, French and Spanish.
Additional languages currently cannot be added later too (there is no way how to do it; compare with MOX and Omnia).https://gitlab.nic.cz/turris/os/build/-/issues/170Upstream Mox support2023-03-03T01:54:07+01:00Karel KociUpstream Mox supportTurris Mox router has no target in Upstream. We should contribute our version to upstream.Turris Mox router has no target in Upstream. We should contribute our version to upstream.https://gitlab.nic.cz/turris/os/build/-/issues/169Upstream Turris 1.x support ot OpenWrt2022-06-06T14:19:46+02:00Karel KociUpstream Turris 1.x support ot OpenWrtWe should upstream Turris 1.x support. With latest changes bringing this board closer to upstream target configuration should allow us to push at least target definition to upstream.We should upstream Turris 1.x support. With latest changes bringing this board closer to upstream target configuration should allow us to push at least target definition to upstream.https://gitlab.nic.cz/turris/os/build/-/issues/410Document dynamically created files2023-03-22T12:25:44+01:00Filip HronDocument dynamically created filesCreate documentation that describes
- list and path to files on the router got created dynamically (no copy of existing file)
- example how to make dynamic file, what are the criteria to do so (optional)Create documentation that describes
- list and path to files on the router got created dynamically (no copy of existing file)
- example how to make dynamic file, what are the criteria to do so (optional)https://gitlab.nic.cz/turris/os/build/-/issues/409Provide SDK2024-03-12T13:56:35+01:00Patrick GrimmProvide SDKWhy don't provide the SDK? It is easier to develop and distribute third party opkg feeds.
```
diff --git a/configs/common/basic_settings b/configs/common/basic_settings
index 08c99f23..3be3d260 100644
--- a/configs/common/basic_settings...Why don't provide the SDK? It is easier to develop and distribute third party opkg feeds.
```
diff --git a/configs/common/basic_settings b/configs/common/basic_settings
index 08c99f23..3be3d260 100644
--- a/configs/common/basic_settings
+++ b/configs/common/basic_settings
@@ -7,6 +7,9 @@ CONFIG_BUILD_NLS=y
CONFIG_ALL_KMODS=y
CONFIG_ALL=y
+# Build openwrt SDK pre-compiled toolchain designed to cross compile packages
+CONFIG_SDK=y
+
# Package output options
CONFIG_SIGNED_PACKAGES=y
CONFIG_IPK_FILES_CHECKSUMS=y
```https://gitlab.nic.cz/turris/os/build/-/issues/408Respects Your Freedom Certification for Turris 1.x routers2024-03-12T13:57:46+01:00Josef SchlehoferRespects Your Freedom Certification for Turris 1.x routersThere were several attempts to reach people behind [FSF](https://ryf.fsf.org/), but it seems that it was not finished or we was not able to reach them. I tried to ask several times in our company if there is something new, but I have not...There were several attempts to reach people behind [FSF](https://ryf.fsf.org/), but it seems that it was not finished or we was not able to reach them. I tried to ask several times in our company if there is something new, but I have not received any response.
Consider to get Respects Your Freedom Certification for Turris 1.x routers.https://gitlab.nic.cz/turris/os/build/-/issues/386kernel panic with Evolveo Sigma T2 tuner - boot loop2022-11-20T20:52:05+01:00petrsmetanakernel panic with Evolveo Sigma T2 tuner - boot loopI've connected the router over serial port during the boot and get this data when the dongle is connected. The boot loop starts immediately after inserting the dongle. First I've tried the kmod-dvb-usb-cxusb - then I've tried to install ...I've connected the router over serial port during the boot and get this data when the dongle is connected. The boot loop starts immediately after inserting the dongle. First I've tried the kmod-dvb-usb-cxusb - then I've tried to install kmod-dvb-usb-dvbsky at the same time, then removed cxusb module with rmmod and opkg. In the end I ended in the bootloop below with the tuner connected.
```
[ 16.076605] usb 2-1: dvb_usb_v2: found a 'MyGica Mini DVB-(T/T2/C) USB Stick T230C v2' in warm state
[ 16.085919] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 16.095279] dvbdev: DVB: registering new adapter (MyGica Mini DVB-(T/T2/C) USB Stick T230C v2)
[ 16.121967] i2c i2c-9: Added multiplexed i2c bus 10
[ 16.126888] si2168 9-0064: Silicon Labs Si2168-D60 successfully identified
[ 16.133782] si2168 9-0064: firmware version: D 6.0.1
[ 16.151220] 8<--- cut here ---
[ 16.154294] Unable to handle kernel NULL pointer dereference at virtual address 00000008
[ 16.162429] pgd = 0b5b9fca
[ 16.165145] [00000008] *pgd=00000000
[ 16.168748] Internal error: Oops: 5 [#1] SMP ARM
[ 16.173377] Modules linked in: dvb_usb_dvbsky(+) ath9k_hw ath10k_pci ath10k_core ath xt_state xt_nat xt_helper xt_conntrack xt_connmark xt_connbytes xt_REDIRECT xt_MASQUERADE xt_FLOWOFFLOAD xt_CT usb_wwan rnm
[ 16.173536] ums_datafab ums_cypress ums_alauda ts_kmp ts_fsm ts_bm slhc si2168 sch_cake rtl2832 rtl2830 rc_core r820t nfnetlink_log nf_reject_ipv4 nf_log_syslog nf_defrag_ipv6 nf_defrag_ipv4 mn88473 m88ds31r
[ 16.260739] ip6_tables ip6t_REJECT x_tables nf_reject_ipv6 nfsv4 nfsd nfs msdos ip_gre gre ifb mv88e6xxx sit ip6_tunnel netlink_diag tunnel6 tunnel4 ip_tunnel rpcsec_gss_krb5 auth_rpcgss veth tun ntfs lockdr
[ 16.432422] CPU: 0 PID: 1276 Comm: kmodloader Not tainted 5.15.78 #0
[ 16.438793] Hardware name: Marvell Armada 380/385 (Device Tree)
[ 16.444725] PC is at dvb_module_release+0x10/0x24 [dvb_core]
[ 16.450414] LR is at dvbsky_frontend_detach+0x24/0x34 [dvb_usb_dvbsky]
[ 16.456964] pc : [<bf7488f0>] lr : [<bfa405e4>] psr: a0000013
[ 16.463245] sp : c34bfc60 ip : 00000000 fp : c3457214
[ 16.468480] r10: 000005a8 r9 : fffffdc0 r8 : c3457240
[ 16.473716] r7 : fffffdc0 r6 : c34577bc r5 : c3457000 r4 : c3180000
[ 16.480258] r3 : 00000000 r2 : 000005a8 r1 : 80080001 r0 : c3180000
[ 16.486800] Flags: NzCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none
[ 16.493953] Control: 10c5387d Table: 013f404a DAC: 00000051
[ 16.499710] Register r0 information: slab kmalloc-512 start c3180000 pointer offset 0 size 512
[ 16.508351] Register r1 information: non-paged memory
[ 16.513415] Register r2 information: non-paged memory
[ 16.518477] Register r3 information: NULL pointer
[ 16.523191] Register r4 information: slab kmalloc-512 start c3180000 pointer offset 0 size 512
[ 16.531829] Register r5 information: slab kmalloc-4k start c3457000 pointer offset 0 size 4096
[ 16.540466] Register r6 information: slab kmalloc-4k start c3457000 pointer offset 1980 size 4096
[ 16.549365] Register r7 information: non-paged memory
[ 16.554428] Register r8 information: slab kmalloc-4k start c3457000 pointer offset 576 size 4096
[ 16.563239] Register r9 information: non-paged memory
[ 16.568302] Register r10 information: non-paged memory
[ 16.573451] Register r11 information: slab kmalloc-4k start c3457000 pointer offset 532 size 4096
[ 16.582350] Register r12 information: NULL pointer
[ 16.587151] Process kmodloader (pid: 1276, stack limit = 0x55b1d610)
[ 16.593520] Stack: (0xc34bfc60 to 0xc34c0000)
[ 16.597889] fc60: c37096c0 bfa405e4 c34577bc bf9312ac 00000000 c3457000 c0e04f08 c34577bc
[ 16.606088] fc80: ffffffed 00000000 00000000 00000000 fffffdc0 bf931864 bfa433e8 c03371f8
[ 16.614285] fca0: c130d268 c0e04f08 bf9341a8 c3457000 00000001 c1b27200 c3457340 bf9343fc
[ 16.622483] fcc0: bf93143c bf932300 00000000 00000000 c130d1b8 2de4a4e4 c130d268 c1b27220
[ 16.630679] fce0: bfa43038 c1b27200 c1ac9880 c1ac9800 bfa42178 ffffffed c0e04f08 c0772494
[ 16.638877] fd00: c1b27220 00000000 bfa43038 c1b27220 0000000f c37642e8 bfa43400 c06903bc
[ 16.647074] fd20: c0ee05b4 c0ee05a4 bfa43038 c0690650 00000000 c1b27220 bfa43038 c0690964
[ 16.655272] fd40: c37f3ab8 c06909c8 c19fd7b4 c0e04f08 bfa43038 c0690964 c37f3ab8 c068e77c
[ 16.663468] fd60: c37642e8 c11f1758 c19fd7b4 2de4a4e4 c0e9901c bfa43038 c37f3a80 c0e9901c
[ 16.671666] fd80: 00000000 c068f798 bfa42380 c03371f8 bfa43038 bfa43038 bfa42380 bfa43400
[ 16.679863] fda0: 00000000 c0690fe0 bfa43000 bfa43038 bfa42380 c0771c1c c0e04f08 c0ea8010
[ 16.688061] fdc0: ffffe000 bf03b000 00000000 c0101810 c1961090 c3020fc0 c0bd9000 c3020ec0
[ 16.696258] fde0: 80400040 eee65480 c0ed44cc 0006c480 8040003d c0ed5248 c1001180 00000000
[ 16.704456] fe00: 00000000 00000cc0 c0e0514c bfa43400 c0e04f08 c028fe84 bfa43400 2de4a4e4
[ 16.712653] fe20: bfa43400 00000001 c37660c0 00000001 00000000 c01b5ea0 00000001 c37642c0
[ 16.720849] fe40: c34bff28 00000001 c37642c0 c01b82fc bfa4340c 00007fff bfa43400 c01b522c
[ 16.729046] fe60: bfa43448 c36bc418 bfa435d0 c34bff28 bfa44305 c0aebb40 c0aeb9e8 00000000
[ 16.737243] fe80: c3020fc0 c0aeb928 c0aeb998 c0e04f08 00000000 c0279a08 0000000c c3020ed0
[ 16.745440] fea0: 00000004 c027ac74 00000000 00000000 00000000 00000000 6e72656b 00006c65
[ 16.753636] fec0: 00000000 00000000 00000000 00000000 00000000 00000000 00000000 00000000
[ 16.761832] fee0: 00000000 00000000 00000000 00000000 00000000 2de4a4e4 c01b86f0 000039cc
[ 16.770030] ff00: f0a229cc 00000000 01b6f9cc c0e04f08 00000051 ffffe000 bf000000 c01b87d8
[ 16.778226] ff20: c34e5240 00492db9 f0a2052b f0a20cc0 f0a1f000 000039cc f0a224cc f0a22398
[ 16.786424] ff40: f0a215c4 00004000 00004180 00002a04 00004305 00000000 00000000 00000000
[ 16.794621] ff60: 000029f4 0000001d 0000001e 00000017 00000000 00000010 00000000 2de4a4e4
[ 16.802818] ff80: 00000000 00000000 00000000 b6f9b190 00000080 c01002a4 c34be000 00000080
[ 16.811016] ffa0: 00000000 c0100060 00000000 00000000 01b6c000 000039cc 00492db9 00000010
[ 16.819212] ffc0: 00000000 00000000 b6f9b190 00000080 00492db9 000039cc 000039cc 00000000
[ 16.827409] ffe0: beb4bcb4 beb4bc90 004920dc b6f49f98 60000010 01b6c000 00000000 00000000
[ 16.835635] [<bf7488f0>] (dvb_module_release [dvb_core]) from [<bfa405e4>] (dvbsky_frontend_detach+0x24/0x34 [dvb_usb_dvbsky])
[ 16.847100] [<bfa405e4>] (dvbsky_frontend_detach [dvb_usb_dvbsky]) from [<bf9312ac>] (dvb_usb_data_complete_204+0x110/0x13c [dvb_usb_v2])
[ 16.859494] [<bf9312ac>] (dvb_usb_data_complete_204 [dvb_usb_v2]) from [<bf931864>] (dvb_usbv2_probe+0x13c/0xbd8 [dvb_usb_v2])
[ 16.870919] [<bf931864>] (dvb_usbv2_probe [dvb_usb_v2]) from [<c0772494>] (usb_probe_interface+0x98/0x1bc)
[ 16.880606] [<c0772494>] (usb_probe_interface) from [<c06903bc>] (really_probe+0x148/0x310)
[ 16.888987] [<c06903bc>] (really_probe) from [<c0690650>] (driver_probe_device+0x38/0xd8)
[ 16.897189] [<c0690650>] (driver_probe_device) from [<c06909c8>] (__driver_attach+0x64/0xf0)
[ 16.905652] [<c06909c8>] (__driver_attach) from [<c068e77c>] (bus_for_each_dev+0x74/0xb4)
[ 16.913853] [<c068e77c>] (bus_for_each_dev) from [<c068f798>] (bus_add_driver+0x1a4/0x1e8)
[ 16.922141] [<c068f798>] (bus_add_driver) from [<c0690fe0>] (driver_register+0x74/0x108)
[ 16.930256] [<c0690fe0>] (driver_register) from [<c0771c1c>] (usb_register_driver+0x78/0x140)
[ 16.938805] [<c0771c1c>] (usb_register_driver) from [<c0101810>] (do_one_initcall+0x84/0x1d8)
[ 16.947356] [<c0101810>] (do_one_initcall) from [<c01b5ea0>] (do_init_module+0x40/0x210)
[ 16.955473] [<c01b5ea0>] (do_init_module) from [<c01b82fc>] (load_module+0x2188/0x250c)
[ 16.963499] [<c01b82fc>] (load_module) from [<c01b87d8>] (sys_init_module+0x158/0x18c)
[ 16.971438] [<c01b87d8>] (sys_init_module) from [<c0100060>] (ret_fast_syscall+0x0/0x48)
[ 16.979550] Exception stack(0xc34bffa8 to 0xc34bfff0)
[ 16.984614] ffa0: 00000000 00000000 01b6c000 000039cc 00492db9 00000010
[ 16.992812] ffc0: 00000000 00000000 b6f9b190 00000080 00492db9 000039cc 000039cc 00000000
[ 17.001008] ffe0: beb4bcb4 beb4bc90 004920dc b6f49f98
[ 17.006072] Code: e92d4010 e2504000 08bd8010 e5943058 (e5930008)
[ 17.012202] ---[ end trace f874bf6aa3bd54c3 ]---
[ 17.016839] Kernel panic - not syncing: Fatal exception
[ 17.022076] CPU1: stopping
[ 17.024791] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G D 5.15.78 #0
[ 17.032207] Hardware name: Marvell Armada 380/385 (Device Tree)
[ 17.038140] [<c010eab8>] (unwind_backtrace) from [<c010a814>] (show_stack+0x10/0x14)
[ 17.045910] [<c010a814>] (show_stack) from [<c05e47e8>] (dump_stack_lvl+0x40/0x4c)
[ 17.053501] [<c05e47e8>] (dump_stack_lvl) from [<c010cce8>] (do_handle_IPI+0xf8/0x12c)
[ 17.061440] [<c010cce8>] (do_handle_IPI) from [<c010cd34>] (ipi_handler+0x18/0x20)
[ 17.069030] [<c010cd34>] (ipi_handler) from [<c0184774>] (handle_percpu_devid_irq+0x78/0x12c)
[ 17.077580] [<c0184774>] (handle_percpu_devid_irq) from [<c017ec70>] (handle_domain_irq+0x5c/0x78)
[ 17.086568] [<c017ec70>] (handle_domain_irq) from [<c05fcba0>] (gic_handle_irq+0x7c/0x90)
[ 17.094773] [<c05fcba0>] (gic_handle_irq) from [<c0100b7c>] (__irq_svc+0x5c/0x78)
[ 17.102276] Exception stack(0xc1083f58 to 0xc1083fa0)
[ 17.107339] 3f40: 0007d6f6 00000000
[ 17.115537] 3f60: 00000001 c0117aa0 ffffe000 c0e04f50 c0e04f94 00000002 00000000 c0e04f08
[ 17.123735] 3f80: c0d580a8 00000000 c107c03c c1083fa8 c010783c c0107840 60000013 ffffffff
[ 17.131930] [<c0100b7c>] (__irq_svc) from [<c0107840>] (arch_cpu_idle+0x38/0x3c)
[ 17.139349] [<c0107840>] (arch_cpu_idle) from [<c09e5948>] (default_idle_call+0x2c/0x3c)
[ 17.147466] [<c09e5948>] (default_idle_call) from [<c015c3bc>] (do_idle+0x1d8/0x1e0)
[ 17.155235] [<c015c3bc>] (do_idle) from [<c015c6ec>] (cpu_startup_entry+0x18/0x1c)
[ 17.162826] [<c015c6ec>] (cpu_startup_entry) from [<00101550>] (0x101550)
[ 17.169636] Rebooting in 1 seconds..
```
Cross-reference: https://forum.turris.cz/t/kernel-panic-s-tunerem-evolveo-sigma-t2/18247petrsmetanapetrsmetanahttps://gitlab.nic.cz/turris/os/build/-/issues/382RPCD crash2022-11-03T17:37:21+01:00Stepan RechnerRPCD crashIn ticket #1498457, the user reported, that LuCI fails to load with a `Session expired` error note. He managed to figure out that it crashes on a RPC call:
>>>
I have managed to discover that the following ubus call causes rpcd to crash...In ticket #1498457, the user reported, that LuCI fails to load with a `Session expired` error note. He managed to figure out that it crashes on a RPC call:
>>>
I have managed to discover that the following ubus call causes rpcd to crash (and subsequent timeout):
```
# ubus call luci-rpc getWirelessDevices
Command failed: Request timed out
The tail of strace from rpcd:
open("/var/run/hostapd-phy0.conf", O_RDONLY|O_LARGEFILE) = 9
read(9, "driver=nl80211\nlogger_syslog=127"..., 1024) = 1024
read(9, "key_retries=0\nwpa_key_mgmt=WPA-P"..., 1024) = 1024
read(9, "lan0-2\nctrl_interface=/var/run/h"..., 1024) = 726
read(9, "", 1024) = 0
close(9) = 0
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 9
ioctl(9, SIOCGIFINDEX, {ifr_name="wlan0", ifr_ifindex=27}) = 0
close(9) = 0
sendmsg(7, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=28, nlmsg_type=nl80211, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=1666818885, nlmsg_pid=27139}, "\x01\x00\x00\x00\x08\x00\x03\x00\x1b\x00\x00\x00"], iov_len=28}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 28
recvmsg(7, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=2248, nlmsg_type=nl80211, nlmsg_flags=0, nlmsg_seq=1666818885, nlmsg_pid=27139}, "\x03\x01\x00\x00\x08\x00\x01\x00\x00\x00\x00\x00\x09\x00\x02\x00\x70\x68\x79\x30\x00\x00\x00\x00\x08\x00\x2e\x00\x02\x00\x00\x00"...], iov_len=16384}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 2248
recvmsg(7, {msg_name={sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, msg_namelen=12, msg_iov=[{iov_base=[{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=1666818885, nlmsg_pid=27139}, {error=0, msg={nlmsg_len=28, nlmsg_type=nl80211, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=1666818885, nlmsg_pid=27139}}], iov_len=16384}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 36
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=NULL} ---
+++ killed by SIGSEGV +++
```
Not sure how to interpret this.
>>>https://gitlab.nic.cz/turris/os/build/-/issues/363Omnia, kernel 5.15: All switch ports use the same CPU port2023-01-14T14:26:58+01:00Hristo VenevOmnia, kernel 5.15: All switch ports use the same CPU portTurris OS 6.0, HBL:
```
# ip link
...
7: lan0@eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000
link/ether d8:58:d7:01:19:69 brd ff:ff:ff:ff:ff:ff
8: lan1@eth1: <NO-CARRIER,...Turris OS 6.0, HBL:
```
# ip link
...
7: lan0@eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP mode DEFAULT group default qlen 1000
link/ether d8:58:d7:01:19:69 brd ff:ff:ff:ff:ff:ff
8: lan1@eth1: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue master switch state LOWERLAYERDOWN mode DEFAULT group default qlen 1000
link/ether d8:58:d7:01:19:69 brd ff:ff:ff:ff:ff:ff
9: lan2@eth1: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue master switch state LOWERLAYERDOWN mode DEFAULT group default qlen 1000
link/ether d8:58:d7:01:19:69 brd ff:ff:ff:ff:ff:ff
10: lan3@eth1: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue master switch state LOWERLAYERDOWN mode DEFAULT group default qlen 1000
link/ether d8:58:d7:01:19:69 brd ff:ff:ff:ff:ff:ff
11: lan4@eth1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master switch state UP mode DEFAULT group default qlen 1000
link/ether d8:58:d7:01:19:69 brd ff:ff:ff:ff:ff:ff
...
```
```
# uname -a
Linux omnia 5.15.59 #0 SMP Thu Aug 11 11:58:26 2022 armv7l GNU/Linux
```Marek BehunMarek Behunhttps://gitlab.nic.cz/turris/os/build/-/issues/342new_release.sh helper considers -v option as illegal2024-02-21T15:43:54+01:00Simon Boreknew_release.sh helper considers -v option as illegal## From new_release.sh help:
```
Usage: ./helpers/new_release.sh [OPTION].. [MODE [BRANCH]]
Turris OS new releases managing tool.
Options:
-v Run script with verbose output
-h Print this help text
Modes:
verify
Run script in...## From new_release.sh help:
```
Usage: ./helpers/new_release.sh [OPTION].. [MODE [BRANCH]]
Turris OS new releases managing tool.
Options:
-v Run script with verbose output
-h Print this help text
Modes:
verify
Run script in verify mode where BRANCH (in default hbk) is checked
for possible release problems. This is default.
...
```
## Expected behaviour:
`./helpers/new_release.sh -v verify` or `./helpers/new_release.sh -v` runs the script in "verify" mode with verbose output.
## Actual behaviour:
The script writes `Illegal option '-v'` to stdout and exits with code 1.
Happens in all branches.https://gitlab.nic.cz/turris/os/build/-/issues/334DHCP doesn't assign IPv4 addressed to LAN clients after reboot on Turris 1.x,...2023-01-11T17:11:34+01:00Simon BorekDHCP doesn't assign IPv4 addressed to LAN clients after reboot on Turris 1.x, TOS 5.3.6 ... sometimesinstance of https://gitlab.nic.cz/turris/os/build/-/issues/252
I found no reliable way how to reproduce and no reliable way how to persistently fix the issue when it occurs.
The next reasonable step seems to be finding out, if the issu...instance of https://gitlab.nic.cz/turris/os/build/-/issues/252
I found no reliable way how to reproduce and no reliable way how to persistently fix the issue when it occurs.
The next reasonable step seems to be finding out, if the issue still occurs on TOS 6.0 and look for possible fixes in the context of 6.0 version.
Summary of the information I found follows.
# How to reproduce
Turris 1.x, TOS 5.3.6, default configuration, WiFi set up through Reforis at 2.4 GHz with WPA2, DHCP client on WAN, static IP with DHCP server on LAN
1) switch WiFi to 5 GHz in LuCi, save and apply; or do whatever, then rollback to the snapshot of the initial configuration
2) reboot by disconnecting and reconnecting the power supply or by issuing `reboot` command
* alternatively do whatever, then 2.
I spent a huge amount of time trying to figure out a reliable reproduction method without real success, I originally encountered the problem by just plugging in the router in the morning and connecting a wireless client.
# Expected behavior
* clients connected to LAN (by wire or wirelessly) get proper IPv4 network configuration through DHCP
# Actual behavior
* clients connected to LAN (by wire or wirelessly) obtain no IPv4 configuration, only IPv6 connectivity works
* router itself has IPv4 address assigned and is capable of IPv4 internet communication
* `dnsmasq` on the router is running, but there are no mentions of it in the log obtained by `logread`
* problems usually persist even after router reboot
# How to fix the ocurring problem
* until router reboot:
* SSH using router's IPv6 address, `service restart dnsmasq`
* log output after:
```
...
Mar 9 10:56:15 turris dnsmasq[2095]: started, version 2.80 DNS disabled
Mar 9 10:59:36 turris dnsmasq[2095]: overflow: 2 log entries lost
Mar 9 10:00:01 turris crond[5238]: (root) CMD (/usr/bin/notifier)
Mar 9 10:00:01 turris crond[5239]: (root) CMD (/usr/bin/rainbow_button_sync.sh)
Mar 9 10:00:01 turris crond[5237]: (root) CMDEND (/usr/bin/rainbow_button_sync.sh)
Mar 9 10:00:01 turris crond[5236]: (root) CMDOUT (There is no message to send.)
Mar 9 10:00:01 turris crond[5236]: (root) CMDEND (/usr/bin/notifier)
Mar 9 10:00:39 turris dnsmasq: DNS rebinding protection is active, will discard upstream RFC1918 responses!
Mar 9 10:00:39 turris dnsmasq: Allowing 127.0.0.0/8 responses
Mar 9 11:00:42 turris dnsmasq[5386]: started, version 2.80 DNS disabled
Mar 9 11:00:42 turris dnsmasq[5386]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth nettlehash DNSSEC no-ID loop-detect inotify dumpfile
Mar 9 11:00:42 turris dnsmasq-dhcp[5386]: DHCP, IP range 192.168.1.100 -- 192.168.1.249, lease time 12h
Mar 9 11:00:42 turris dnsmasq-dhcp[5386]: read /etc/ethers - 0 addresses
Mar 9 10:01:01 turris crond[5428]: (root) CMD (/usr/bin/rainbow_button_sync.sh)
Mar 9 10:01:01 turris crond[5427]: (root) CMDEND (/usr/bin/rainbow_button_sync.sh)
Mar 9 11:01:08 turris dnsmasq-dhcp[5386]: DHCPDISCOVER(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 11:01:08 turris dnsmasq-dhcp[5386]: DHCPOFFER(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 11:01:08 turris dnsmasq-dhcp[5386]: DHCPREQUEST(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 11:01:08 turris dnsmasq-dhcp[5386]: DHCPACK(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 10:01:09 turris /dhcp_host_domain_ng.py: Refresh unbound leases
...
```
* persistently:
* fix sometimes persisted over reboot, if the reboot is accompanied by restart of the whole local network providing Turris 1.x with internet connectivity (Turris Omnia, TOS 5.3.5 stable), but sometimes, after another Turris 1.x reboot the DHCP server is broken again ... no reliable method to fix persistently known to me at this time
* log output after successful reboot to working state (including the dnsmasq output that is not present on erroneous autostart):
```
...
Mar 9 11:41:11 turris kernel: [ 23.402529] br-lan: port 6(wlan0) entered blocking state
Mar 9 11:41:11 turris kernel: [ 23.407857] br-lan: port 6(wlan0) entered forwarding state
Mar 9 11:41:11 turris kernel: [ 23.420864] IPv6: ADDRCONF(NETDEV_CHANGE): br-lan: link becomes ready
Mar 9 10:41:11 turris firewall: Reloading firewall due to ifup of wan (eth2)
Mar 9 11:40:57 turris dnsmasq[2095]: started, version 2.80 DNS disabled
Mar 9 11:41:12 turris dnsmasq[2095]: overflow: 2 log entries lost
Mar 9 11:41:12 turris dnsmasq[4728]: started, version 2.80 DNS disabled
Mar 9 11:41:12 turris dnsmasq[4728]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth nettlehash DNSSEC no-ID loop-detect inotify dumpfile
Mar 9 11:41:12 turris dnsmasq-dhcp[4728]: DHCP, IP range 192.168.1.100 -- 192.168.1.249, lease time 12h
Mar 9 11:41:12 turris dnsmasq-dhcp[4728]: read /etc/ethers - 0 addresses
Mar 9 11:41:12 turris dnsmasq-dhcp[4728]: read /etc/ethers - 0 addresses
Mar 9 10:41:16 turris firewall: Reloading firewall due to ifup of wan6 (eth2)
Mar 9 11:41:18 turris dnsmasq-dhcp[4728]: DHCPDISCOVER(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 11:41:18 turris dnsmasq-dhcp[4728]: DHCPOFFER(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 11:41:18 turris dnsmasq-dhcp[4728]: DHCPREQUEST(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 11:41:18 turris dnsmasq-dhcp[4728]: DHCPACK(br-lan) 192.168.1.203 70:cd:0d:97:7f:6b
Mar 9 10:41:18 turris /dhcp_host_domain_ng.py: Refresh unbound leases
Mar 9 10:42:01 turris crond[5029]: (root) CMD (/usr/bin/rainbow_button_sync.sh)
Mar 9 10:42:01 turris crond[5028]: (root) CMDEND (/usr/bin/rainbow_button_sync.sh)
Mar 9 10:42:37 turris firewall: Reloading firewall due to ifupdate of wan6 (eth2)
...
```
## Contents of router's /etc/config/dhcp at the time of occuring problem:
```
config dnsmasq
option domainneeded '1'
option boguspriv '1'
option filterwin2k '0'
option localise_queries '1'
option rebind_protection '1'
option rebind_localhost '1'
option local '/lan/'
option domain 'lan'
option expandhosts '1'
option nonegcache '0'
option authoritative '1'
option readethers '1'
option leasefile '/tmp/dhcp.leases'
option resolvfile '/tmp/resolv.conf.auto'
option nonwildcard '1'
option localservice '1'
option port '0'
config dhcp 'lan'
option interface 'lan'
option start '100'
option limit '150'
option leasetime '12h'
option dhcpv6 'server'
option ra 'server'
list dhcp_option '6,192.168.1.1'
config dhcp 'wan'
option interface 'wan'
option ignore '1'
config odhcpd 'odhcpd'
option maindhcp '0'
option leasefile '/tmp/hosts/odhcpd'
option leasetrigger '/usr/sbin/odhcpd-update'
option loglevel '4'
```https://gitlab.nic.cz/turris/os/build/-/issues/327Rescue mode can't read the medkit with a space in the name2024-03-12T14:01:26+01:00Aleksandr GumroianRescue mode can't read the medkit with a space in the nameI'm not sure where this issue should be placed, but I've encountered an issue during the "Re-flash router from flash drive".
As soon as you have a medkit, which name includes a space in the name, the rescue mode on my Omnia can't recogn...I'm not sure where this issue should be placed, but I've encountered an issue during the "Re-flash router from flash drive".
As soon as you have a medkit, which name includes a space in the name, the rescue mode on my Omnia can't recognize it.
For example, when I download medkits from different branches (HBL/HBS, etc.) from the [repo](https://repo.turris.cz), they have the very same name `omnia-medkit-latest.tar.gz` but my OS will add a suffix to the name `omnia-medkit-latest (1).tar.gz` in case the file was already downloaded earlier.
![image](/uploads/981b29c51a9d7908e8c9ece3872d8fa7/image.png)
From my terminal with a connected device, I see that the rescue mode is waiting for `omnia-medkit-*` on USB, but can't see the medkit with ` (1)` and it's not obvious.
I hope it does make sense, thanks!Michal HruseckyMichal Hruseckyhttps://gitlab.nic.cz/turris/os/build/-/issues/315OpenVPN 2.4 and OpenVPN 2.5 incompatibility2024-03-11T10:15:41+01:00Josef SchlehoferOpenVPN 2.4 and OpenVPN 2.5 incompatibilityI generated user client configuration on OpenVPN 2.4 (HBK) in reForis and now, I tried to use it on OpenVPN 2.5 server using OpenWrt daily snapshots and it seems that it does not work.
Output:
```
Dec 27 11:26:49 turris openvpn(xxx)[135...I generated user client configuration on OpenVPN 2.4 (HBK) in reForis and now, I tried to use it on OpenVPN 2.5 server using OpenWrt daily snapshots and it seems that it does not work.
Output:
```
Dec 27 11:26:49 turris openvpn(xxx)[13564]: --cipher is not set. Previous OpenVPN version defaulted to BF-CBC as fallback when cipher negotiation failed in this case. If you need this fallback please add '--da.
Dec 27 11:26:49 turris openvpn(xxx)[13564]: OpenVPN 2.5.5 aarch64-openwrt-linux-gnu [SSL (OpenSSL)] [LZO] [LZ4] [EPOLL] [MH/PKTINFO] [AEAD]
Dec 27 11:26:49 turris openvpn(xxx)[13564]: library versions: OpenSSL 1.1.1l 24 Aug 2021, LZO 2.10
Dec 27 11:26:49 turris openvpn(xxx)[13564]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Dec 27 11:26:49 turris openvpn(xxx)[13564]: OpenSSL: error:0909006C:PEM routines:get_name:no start line
Dec 27 11:26:49 turris openvpn(xxx)[13564]: OpenSSL: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:PEM lib
Dec 27 11:26:49 turris openvpn(xxx)[13564]: Cannot load inline certificate file
Dec 27 11:26:49 turris openvpn(xxx)[13564]: Exiting due to fatal error
```Turris OS 7.0https://gitlab.nic.cz/turris/os/build/-/issues/272Mising standardization of behavior of the magjack LEDs2021-07-21T10:19:31+02:00Jan BetikMising standardization of behavior of the magjack LEDsThere is no standardized behavior of the magjack LEDs. The behavior is different across TOS releases.There is no standardized behavior of the magjack LEDs. The behavior is different across TOS releases.Marek BehunMarek Behunhttps://gitlab.nic.cz/turris/os/build/-/issues/259dnsmasq can not open /lib/functions.sh with procd-ujail2021-07-29T12:59:15+02:00Jan Pavlinecdnsmasq can not open /lib/functions.sh with procd-ujailWith activated procd-ujail dnsmasq cannot open /lib/functions.sh this is caused by too strict jail mount
https://github.com/openwrt/openwrt/blob/openwrt-21.02/package/network/services/dnsmasq/files/dnsmasq.init#L1109With activated procd-ujail dnsmasq cannot open /lib/functions.sh this is caused by too strict jail mount
https://github.com/openwrt/openwrt/blob/openwrt-21.02/package/network/services/dnsmasq/files/dnsmasq.init#L1109https://gitlab.nic.cz/turris/os/build/-/issues/249Consider switching default WAN policy from REJECT to DROP2021-03-01T19:14:45+01:00Karel KociConsider switching default WAN policy from REJECT to DROPIt might be better to drop all connections on WAN side rather then rejecting them.
The default is right now set unconditionally from OpenWrt. This needs either dirty patch or some upstream effort to export this settings to KConfig.It might be better to drop all connections on WAN side rather then rejecting them.
The default is right now set unconditionally from OpenWrt. This needs either dirty patch or some upstream effort to export this settings to KConfig.https://gitlab.nic.cz/turris/os/build/-/issues/245suggestion: replace dnsmasq with odhcpd2022-03-24T07:53:35+01:00Rosen Penevsuggestion: replace dnsmasq with odhcpdIn TurrisOS, dnsmasq is used as a DHCP server and unbound as a DNS one.
odhcpd is used as a DHCPv6 server. It has the ability to run as a DHCPv4 server as well.
The whole point of using dnsmasq in OpenWrt is that it combines DHCP and D...In TurrisOS, dnsmasq is used as a DHCP server and unbound as a DNS one.
odhcpd is used as a DHCPv6 server. It has the ability to run as a DHCPv4 server as well.
The whole point of using dnsmasq in OpenWrt is that it combines DHCP and DNS. But since this is not the case in TurrisOS, it can be removed.https://gitlab.nic.cz/turris/os/build/-/issues/244Wifi cards are set to 5 GHz band by default2022-06-06T14:13:06+02:00Martin MatějekWifi cards are set to 5 GHz band by default## Expected result
Wifi cards default configuration is split between 2.4 and 5 GHz bands.
## Actual result
Both cards are on 5 GHz band on the same default frequency.
```
root@turris:/# cat /etc/config/wireless
config wifi-device 'r...## Expected result
Wifi cards default configuration is split between 2.4 and 5 GHz bands.
## Actual result
Both cards are on 5 GHz band on the same default frequency.
```
root@turris:/# cat /etc/config/wireless
config wifi-device 'radio0'
option type 'mac80211'
option channel '36'
option hwmode '11a'
option macaddr '11:22:33:44:55:66'
option htmode 'VHT80'
option disabled '1'
config wifi-iface 'default_radio0'
option device 'radio0'
option network 'lan'
option mode 'ap'
option ssid 'Turris'
option encryption 'none'
config wifi-device 'radio1'
option type 'mac80211'
option channel '36'
option hwmode '11a'
option macaddr '77:88:99:00:aa:bb'
option htmode 'VHT80'
option disabled '1'
config wifi-iface 'default_radio1'
option device 'radio1'
option network 'lan'
option mode 'ap'
option ssid 'Turris'
option encryption 'none'
```
## How to reproduce
I observed this on Mox Classic (pci-e + sdio wifi) with medkits from 5.1.8 to 5.2.0, right after reinstall.Michal HruseckyMichal Hrusecky