gnuton/asuswrt-merlin.ng 384.11-gnuton1 on GitHub

Changes from the latest stable gnuton build (384.10_2-gnuton4):

Bumped revision to 384.11 alpha 1
webui: removed support for beta firmware notification; moved check enable/disable to FirmwareUpgrade page; resynced that page with upstream
webui: report version of new firmware in the notification popup
webui: move LED disable option to Administration -> System page
webui: replace annoying alert() calls with in-page status report
rc: webui: implement NTP daemon on the router
webui: expose secondary NTP server parameter; limit ntp server fields to 31 chars, in-line with buffer sizes in rc
curl: updated to 7.64.1
nano: update to 4.0 (closes #288)
dropbear: update to 2019.78.
rc: use OpenSSL 1.1.x when available for generating OpenVPN's certs
httpd: use openssl11 when available for certificate generation; replace deprecated genrsa command with genpkey
webui: move buttons on Firmware Upgrade page to the right
Updated documentation
rc: ntpd: use the pidfile generated by the daemon itself to stop it
rc: provide filesystem type as second argument to pre-mount script (closes #290)
rc: finetune ntp server support
iptables: fix handling IPCMv6 reject --with-tcp-reset
webui: do not restart entire network on a simple DHCP static lease change on networkmap
webui: show/hide DDNS status field when enabling/disabling it
Updated documentation
rc: _eval() will wait until process quits if pid is set to NULL, so provide one when launching ntpd
rc: do not try to start ntpd if it's already running
rc: start ntpd later in the boot process
rc: ntp: replace ntp/ntpclient with ntpd
webui: fix duplicate code on System page preventing USB sleep settings from applying
rc: webui: allow URLs up to 64 chars long on URL filter
httpd: make backup_nvram() enclose strings in double quotes to better handle malformed DHCP leases (among others)
rc: let rc do a proper reboot rather than a system-one when reboot scheduler is triggered
Updated documentation
rc: restore original launch restrictions in start_ntpc()
busybox: add ntp alias support for ntpd daemon, disabled
make ntpd & ntpclient replacement configurable
rc: replace ntpd with ntp alias, and rely on process name instead of pidfile; implement options to enable ntp alias and ntpd build switch
webui: remove duplicate ntp_server1 field caused by bad git merge
Set secondary default ntp server to none (instead of a US-controlled one)
rc: renamed ntp_synced applet to ntpd_synced for consistency; added missing applet's return value
openssl11:: prevent over long nonces in ChaCha20-Poly1305
rc: properly re-enable original ntpc code when ntpd is disabled at build time
build: enable the ntpd daemon for all models
Updated documentation
rc: also update start_ntpc() to handle non-ntpd mode (missed in a90650b)
rc: continue ntpd intergration
stubby: import getdns 1.5.2 & libyaml 0.2.1
stubby: add build rules for getdns/stubby/libyaml
stubby: add syslog support, fix warn
rc/www: add dns-over-tls support
getdns: fix build error
getdns: revert "getdns: fix build error"
getdns: fix typedef redefine errors
Updated documentation
webui: reword DNSFilter introduction
webui: provide help content for the QoS packet overhead parameters
getdns: use upstream accepted typedef fix
rc: add dns-over-tls with dnssec support
rc: fix comment placement, cosmetics
httpd: webui: implement dropdown presets for DoT
webui: document max number of DoT servers allowed
webui: apply ellipsis to long field values on dnspriv serverlist to prevent layout issues
webui: implement help popups for DNS Privacy settings
webui: move DNSSEC and DNS rebind settings to the WAN page
Updated documentation
Bumped revision to alpha 2
build:Enable DNSPrivacy support
dnsmasq: update to 2.80-53-g343b7b4
httpd/webui: dot presets cosmetics
webui: fix optgroup rendering in Firefox
webui: do not attempt to apply values if selecting the "Please select" entry in the DoT presets dropdown
rc: fix dot+dnssec startup & proxying
rc: fix ipv6 dot servers validation
webui: enhancements to DNSPrivacy content
webui: fix layout issue caused by long SANs on DDNS page
webui: do not restart router's time service when issuing a WoL request
libvpn: remove unused code in reset_ovpn_setting()
webui: restart dnsmasq if user changes any related settings on the WAN page
httpd: fix potential buffer overrun in alloc_string() (backport from 384_45708)
Bump revision to alpha 3
rc: fix dot with dns_local coexistance
www: don't allow empty dot server list
webui: provide descriptive error message if no DOT server is provided
Merging new changes imported from RT-AC88U branch
build: circleci: moved out circleci from sdk platfomrm
build: circleci: try to build fw for rt-ac88u in the cloud
shared: merged run_custom_script() and run_custom_script_blocking(); other minor cleanups to script functions
rc: add service-event-end custom script
rc: add postconf/custom config support for stubby
httpd: replace homemade alloc_string() with strdup() that does the exact same thing
build: circleci: parametrized release dir
build: circleci: fix releasedir path for src-rt-7.14.114.x
build: circleci: do not let ci fail if md5 file is missing
build: circleci: set release dir and model to dsl-ac68u
libvpn: implement get_ovpn_remote_address() and use it for filling ovpn client config; re-implement update_ovpn_profie(remote() and move it to libvpn
Renamed lan_dns_fwd_local nvram to dns_fwd_local to avoid clashing with the lan_ instances; removed duplicate setting from DHCP page
rc: fix typo in bae179b
rc: eliminate build warning in start_stubby() when calling for custom script functions
Merge with GPL 384_45713
rc: fix typo in bae179b
Merge binary blobs from 45713 for RT-AC88U and RT-AC3100
Merge SDK + binary blobs from 45713 for RT-AC68U
Merge SDK + binary blobs from 45713 for RT-AC86U
httpd: fix ej_get_wl_channel_list() building on non-AiMesh models
rc: implement new firmware check code that does not require RTCONFIG_FORCE_AUTO_UPGRADE
rom: webui: remove getdnsapi test DoT server from presets
Updated documentation
Bumped revision to alpha 4
Remove use of top_srcdir with newer automakes
webui: fix SSH password login string in EN dict
Fix compilation with glibc 2.25+
rc: resync with upstream, and fix some bad code block merges
rc: resync with upstream 45713, and fix some bad code block merges
rc: remove unused variable in start_dhcp6c()
Merge pull request #300 from KiloFoxtrotPapa/fix-compilation-modern-host
openssl: openssl11: point OpenSSL's default location to /etc/ssl/ and provide a link to the CA bundle
wget: remove wgetrc, no longer needed with OpenSSL properly configured
rom: simplify ca-bundle update
curl: rely on openssl to locate the CA bundle
inadyn: Revert "inadyn: hardcode SSL CA certs location"
wget: no longer ignore invalid certificates in the rom/* scripts that use wget
httpd: update location of openssl.cnf in gencert.sh script
cfg_mnt: update location of openssl.cnf, and make use of OpenSSL 1.1.x userspace tool if available
shared: replace upper_strcmp() calls with strcasecmp() in QTN-specific parts
net-snmp: fix clean target
rc: use dnsmasq for dnssec validation
miniupnpd: fix ssdp notify on wrong interfaces
webui: add 'inner' flag to check_hwaddr_flag() calls missing it; also add it to the WAN page
httpd: also count guest clients on the Sysinfo page
Updated documentation
httpd: don't try to use robocfg on HND when calling sysinfo("ethernet")
webui: reflect the state of DNS Privacy on the Network Map / Internet pane
Bumped revision to beta 1
httpd: fix missing parenthesis
rc: remove support for replacing stubby.yml
rc: stubby: rely on openssl to locate the CA bundle
rc: rename stubby.add custom config to stubby.yml.add for consistency
kernel: fix squashfs false-positive decode error
Bump revision to beta 2
rc: wanduck: fix possible name buffer overflow
rom: Updated DoT presets
rc: add ntpd flag to rc_support
ntpd: implement option to redirect LAN requests to the router
webui: hide ntpd settings if not supported
webui: hide option to disable scheduled new FW checks; fix contextual help
rc: use REDIRECT target instead of DNAT to intercept ntp traffic, as it's more efficient; fix incorrect nvram check
webui: note that IPv6 is not supported by ntp redirection
rc: do not restart firewall when restarting time services
webui: only restart upnp if firewall isn't getting restarted
httpd: fix incorrect mimetype for wcdma_list.js and help_content.js (fixes #305)
build: re-enable NETOOL for RT-AC86U
webui: remove dead symlink in RT-AC86U sysdeps
webui: add Netool-aware pages to the RT-AC86U
rc: fix traceroute path
webui: implement netstat-nat support to the new netool-based Netstat page
webui: fix undefined element JS error on Netstat page
webui: format DFS elapsed time string
rom: removed seldom-used unfiltered Quad9 DNS, added secondary filtered servers for consistency
httpd: fix out-of-bounds read in handle_request()
httpd: report BCM490x CPU as Cortex A53 instead of B53 to reduce confusion
rc: let router implicitly use dot w/o caching resolver
netool: enable Netool support for all models
webui: remove other dead symlinks for IPTV page
Updated documentation
Bumped revision to beta 3
netool: traceroute seems to randomly fail on 2.6.xx. Revert "netool: enable Netool support for all models"
rom: fixed incorrect addresses for Cleanbrowsing servers
rc: allow udpxy to start when using movistar IPTV profile
webui: hide ntpd settings when not in router mode
rc: run service-event-end earlier so it gets run on multiple rc events
webui: alwasy restart the firewall if making changes to the System page
sqlite3: add sqlite3 CLI command to firmware
openvpn: properly extract instance number in updown script
Updated documentation
Bumped revision to 384.11 final
build: disable Netool on SDK 7.14 devices (wasn't properly merged into mainline branch)
Merge remote-tracking branch 'upstream/mainline' into dsl-ac68u

gnuton/asuswrt-merlin.ng 384.11-gnuton1 Release: 384.11-gnuton1 on GitHub

gnuton/asuswrt-merlin.ng 384.11-gnuton1
Release: 384.11-gnuton1

on GitHub