20220512-00 - update to d1b824650f1ee694ec2dbdd2f4f9ec64e650cf86 - [cherrypick] #9859: update to kernel 5.10.114 (security and bug fixes) 20220430-01 - update to ab4eafbed974c6ead13b11a50b3032670c26540a - [upstream] update to kernel 5.10.113 (security and bug fixes) - additional kernel hardening 20220421-00 - update to 0d2d52df69e91fe2f6e3e65750c0728fc45f5ab2 - [upstream] glibc update (security fixes) - [cherrypick] #9745: update to kernel 5.10.112 (security and bug fixes) 20220415-00 - update to 08ebc3881d3f351d2d4ca9202ca446c96b38a1e1 - [cherrypick] #9712: update to kernel 5.10.111 (security and bug fixes) 20220403-00 - update to d7eba8059b3bfe89f90f1d18f1f0d23cbbb42423 - [upstream] update to kernel 5.10.109 (security and bug fixes) 20220320-00 - update to 9f9477b2751231d57cdd8c227149b88c93491d93 - [upstream] update to kernel 5.10.107 (security and bug fixes) - [upstream] update to OpenSSL 1.1.1n (security fixes) 20220309-00 - update to a5eeac8033786a7a04b7569175e41e415b6579c0 - [cherrypick] #9425: update to kernel 5.10.104 (security and bug fixes) 20220226-00 - update to 1753f8c14bc09183492d62bccb8d8e42b5f24e19 - [cherrypick] #9252: update to kernel 5.10.102 (security and bug fixes) 20220215-00 - update to 7fae1e5677e9bb4979c8d4ac99be4de6955b13d0 20220212-00 - update to c391dcdf86b3001b98725225b54ae60f4b6d493c - [upstream] update to kernel 5.10.100 (security and bug fixes) 20220207-00 - update to 04ed224543ad10030c4394c86e533f02bf596a1b - fixes feeds 20220206-00 - update to 3343ca7e6837b2ac5f237ea78bf73d50831dea20 - reinitialized workspace and config (sanity) - this release switches to fw4 some packages depend on fw3 (banip) and others fw4 (sqm) causing conflict see https://github.com/openwrt/packages/issues/16818 - drops: banip, usb networking, storage support, tree, ncdu, bridge - note: breaks extra feeds, will be fixed in next build 20220203-00 - note: this appears to break banip - update to fb6cf22866b3bb6dfcbee0659f785982d071c863 - [upstream] glibc update (security fixes) - [upstream] update to kernel 5.10.96 (security and bug fixes) - reinitialized workspace (sanity) 20220129-00 - update to 5bd926efa99a0638e03e26ed50f1c44b196888da - [cherrypick] #4975: update to kernel 5.10.94 (security and bug fixes) 20220121-00 - update to af8a059bb41dd7afee49ce9a5d52e9a8e010bbd8 - upstream has switched to firewall4, however fw3 will be kept until banip has nft support - [cherrypick] #4975: update to kernel 5.10.93 (security and bug fixes) 20220118-00 - update to 266b5c83c32c13dbd05f0d6f251815cbe6f55621 - [upstream] update to kernel 5.10.92 (security and bug fixes) 20220108-00 - update to a372946e6080b253f42ab1d3af97f4929c269ed9 - [upstream] update to kernel 5.10.90 (security and bug fixes) 20211231-00 - update to 4b587f25614f3f7215360f96807ce760fa4ef3aa - [cherrypick] #4895: update to kernel 5.10.89 (security and bug fixes) 20211219-00 - update to 54cfe0774ce4203d23ffcb397ba15bd36968d098 - [upstream] update to kernel 5.10.87 (security and bug fixes) 20211215-00 - update to 01bebc070c35d87c24a594fff7ee1911965759aa - [cherrypick] #4811: update to kernel 5.10.85 (security and bug fixes) - divblock: exception support via the /etc/config/divblock-exclusions file for example if www.example.com is blocked, add a line: /www\.example\.com/ 20211208-00 - update to 7e89421a7c3855d66a20350a5bf9ca4cc7a2caf9 - [cherrypick] #4811: update to kernel 5.10.84 (security and bug fixes) 20211204-00 - update to dd681838d370f1f6f6fa1bf1f22b0414322292f3 - divblock: add sanitization (security fix) 20211203-04 - update to e22c91e144d63ccbd7b76b370a53652c48db1d6f - drop adblock Startup takes too long No option to just drop a file in place Can't edit source(s) easily due to compressed lists - add divblock I already maintain for many years now my own HOSTS lists. These are already reasonably well tested through use in DivestOS. These lists are *highly* optimized thanks to my wildcard optimzer. Can be easily pointed to another source in dnsmasq format. Startup is under 10 seconds! https://divested.dev/index.php?page=dnsbl https://gitlab.com/divested/simple_hosts_merger Please report any issues you find! 20211203-01 - [cherrypick] #4813: mvebu: *next driver backport of mvneta MQPrio TC offload changes 20211203-00 - update to fc4398fe71810f3bb5637bdfd0b3975a8ec858f0 - [cherrypick] #4811: update to kernel 5.10.83 (security and bug fixes) 20211130-00 - update to 6832271ee74d408c49977995c44f102f33e731a1 - [upstream] update to kernel 5.10.82 (security and bug fixes) 20211124-00 - update to f8b2bc550bd57e59e5def03e397ccfc6fcc0a81c - [cherrypick] #4783: update to kernel 5.10.81 (security and bug fixes) - includes the recent notable fix for mwlwifi from @nbd found by @cotequeiroz! 20211119-00 - update to 7ae04d3799d44b4a9fd3a2c82763d202be97fb77 - [upstream] update to kernel 5.10.80 (security and bug fixes) 20211114-00 - update to 9bd9e04b6fe7e427a5d90ccbb186c2727767a756 - [upstream] update to kernel 5.10.79 (security and bug fixes) - reinitialized workspace (sanity) - upgraded build vm from f33 to f35 note: build vm is always `dnf update`ed before compile 20211109-00 - update to a667f6b8dd4b0f47d9c0aacb900f1fd3045ec945 - [upstream] update to kernel 5.10.78 (security and bug fixes) 20211102-00 - update to b7bb176d1c1865b5cf443f72aae9b9c8999d0cd2 - [cherrypick] #4741: update to kernel 5.10.77 (security and bug fixes) 20211101-00 - update to 9ae5f09dc8718d51f8dad1f0e59032ee48d2e2e4 20211027-00 - update to 70c12d26ca6eb01a938feb38f89720d78df0ca6d - [cherrypick] #4724: update to kernel 5.10.76 (security and bug fixes) 20211024-01 - add multi-cpu dsa patches for testing only: https://github.com/openwrt/openwrt/pull/4717/commits/60c56e787ee7d67ab4e5da379d754958cf089a24 https://github.com/openwrt/openwrt/pull/4717/commits/93de6ec422c0206faf2c7cfd261e3437885cc6ee 320, 321, 322: https://drive.google.com/drive/folders/1yAxaYSZgPVz7UmmFAUDzIvDXjZAlxXew 20211024-00 - update to 0a274d67b8bd422b32cc5fd81451babbc7da2aab 20211020-00 - update to e9672b1a8fa4714cbc35d5964caf704b2e571f35 - [upstream] update to kernel 5.10.75 (security and bug fixes) 20211018-00 - update to 287257d676b1120f388120f1dc259e4eefd3b163 - [cherrypick] #4678: update to kernel 5.10.74 (security and bug fixes) 20211013-00 - update to 48e209e5c5a76dd0ce4a2a8b014416dc988269a3 - [cherrypick] #4678: update to kernel 5.10.73 (security and bug fixes) 20211009-00 - update to cda0460ad333f15e15ec9bd2516b2ae45f8a4644 - [cherrypick] #4645: update to kernel 5.10.71 (security and bug fixes) 20211002-00 - update to 0d1ebf0d6d20f0439ab45b293f9daa7662c44ba6 - [upstream] update to kernel 5.10.70 (security and bug fixes) 20210929-00 - update to e1c03ca18519f9683f6bfce1795e58d99575d895 - [cherrypick] #4553: update to kernel 5.10.69 (security and bug fixes) 20210923-00 - update to 67cd648fa233c1063b55c216e2b26386bfada8ab - [cherrypick] #4553: update to kernel 5.10.68 (security and bug fixes) - [upstream] many updates: gcc 10 -> 11 binutils 2.36.1 -> 2.37 musl 1.1.24 -> 1.22 mac80211 5.10.42 -> 5.10.68 20210920-00 - update to 309c8b490241fa4fcef61d2380225be6fde00766 - [cherrypick] #4553: update to kernel 5.10.67 (security and bug fixes) 20210915-00 - update to 5ef4608c02ef6db9698c8d10011b9c14a8ca073b - [cherrypick] #4553: update to kernel 5.10.65 (security and bug fixes) 20210909-00 - update to 64be0eadc17988f29d0a4b89569840d917746498 - [cherrypick] #4516: update to kernel 5.10.63 (security and bug fixes) 20210906-00 - update to 6f2044c2d74dd0ae2cee3b25b2ac084513c0536a 20210903-00 - update to 43f0e386d4e79e9014e926d1d9b5e2ff8f1379cb - [cherrypick] #4516: update to kernel 5.10.62 (security and bug fixes) 20210830-00 - update to a7aa237c288c5d429a8915f0e5a7be40b047e519 - [upstream] update to kernel 5.10.61 (security and bug fixes) 20210827-00 - update to 97e32e9702be7c7fab97d024ee336886e9faa0c7 - [upstream] update to OpenSSL 1.1.1l (security fixes) 20210825-00 - update to 4ab0b5fabd2e98264fbefb48da19fcc7b56a854a - various small security fixes 20210819-00 - update to c5616a8ae1649ef55d362462a39aa133b65dc1e3 - [cherrypick] #4461: update to kernel 5.10.60 (security and bug fixes) 20210815-00 - update to 45d2d4e65ae52d0957df1e408925762e0a867d20 - [upstream] update to kernel 5.10.58 (security and bug fixes) 20210810-00 - update to 1c9a9f7c7a242766ea07c2a7927a6b99b7344354 - [cherrypick] #4436: update to kernel 5.10.57 (security and bug fixes) 20210805-00 - update to 986685f4f09936bad22e6406d217c927d584bc13 - [cherrypick] #4425: update to kernel 5.10.56 (security and bug fixes) 20210801-00 - update to ddc8d085f39dea998f59680fb556ca72d779a3b1 - [upstream] update to kernel 5.10.54 (security and bug fixes) 20210726-00 - update to 39f81b0bf687017b4d086255c94166e662ac177e - [cherrypick] #4398: update to kernel 5.10.53 (security and bug fixes) 20210721-00 - update to 089c2bb2178daa144baa2e3ed20a55fb9a5c11ab - [cherrypick] #4387: update to kernel 5.10.52 (security and bug fixes) 20210715-00 - update to 9ec5f5f230851ef9c980e99a43c3ddffca50a7fc - [cherrypick] #4328: update to kernel 5.10.50 (security and bug fixes) - [upstream] glibc update (security fixes) - [upstream] various security fixes (hostapd, rpcd) 20210712-00 - update to 349e2b7e658290f967a4aab4fd9d754572f9b0b2 - [cherrypick] #4328: update to kernel 5.10.49 (security and bug fixes) 20210707-00 - update to 0fac6f5562acca15f62f6484317ba4aca2de34be - [cherrypick] #4328: update to kernel 5.10.48 (security and bug fixes) 20210702-01 - update to 5a1065758b88b568a04a50189400321601904bdf - enable some additional compile time hardening 20210702-00 - update to 8307da3dbdaff13d5ce99f8aefa32f5b7a2e18e6 - [cherrypick] #4328: update to kernel 5.10.47 (security and bug fixes) 20210627-00 - update to f033d5ad1c28e07eb6de2ce3ea8650dc7080d6d0 - [upstream] glibc update (security fixes) 20210626-01 - update to 8569bc5e0d1bdc4b252bf3f4e7c893ea2e17c98f - [cherrypick] #4281: update to kernel 5.10.46 (security and bug fixes) - add luci-app-upnp 20210623-00 - update to e6b3e77e6ef635688b810a9bba528d477998270e - 5.10.45 has reported issues and is delayed - re-enable DEBUG_VIRTUAL and INIT_ON_FREE_DEFAULT_ON (security) 20210618-00 - update to 165a0263643af6831edcef28d2863babb660d24b - [cherrypick] #4281: update to kernel 5.10.44 (security and bug fixes) 20210610-00 - update to b72157984268b6542dd667859e4aed9cc2bbb7f5 - drop #3004, needs rebase 20210604-00 - update to 4fd4e9997a116d7bfc6a21bb5b8eadaa30a3a9e7 - [cherrypick] #4225: update to kernel 5.10.42 (security and bug fixes) 20210528-00 - update to e002179a6d2eea8640e262160030336bea54ec26 - [upstream] update to kernel 5.10.40 (security and bug fixes) 20210524-00 - update to efee640716ed4f3273ea3e24e0b0b0d9b792433a - [upstream] update to kernel 5.10.39 (security and bug fixes) 20210514-00 - update to 7fea9d9f5dd282a7049d77cc6b75e0a703ead26c - [upstream] update to kernel 5.10.37 (security and bug fixes) 20210512-00 - update to 6713fe030fca32fc3d5ad9761f3b2f96501aedd6 - [upstream] mitigations for https://www.fragattacks.com 20210511-02 - initial mitigations for https://www.fragattacks.com 20210511-01 - [no-op] 20210511-00 - update to e7249669d2af8f588a4e3beec589c4cbe5bd2fec - [upstream] update to kernel 5.10.35 (security and bug fixes) 20210505-01 - update to b607e7df34031738b18582aaa1f4f93505d06734 - [upstream] various security fixes (dnsmasq, busybox) - switch to binutils 2.36.1 20210429-00 - update to 62a0a8607f2f94f937c17bb7d7f4bff5fbaf15a2 - [upstream] update to kernel 5.10.33 (security and bug fixes) 20210420-00 - update to b832ebb886e71982675b8b889b81a91a18d57bf7 - [upstream] update to kernel 5.10.31 (security and bug fixes) 20210414-00 - update to 05a4273058303c8cfb5ff9c087739b924df056b3 - switch to GCC 10 and binutils 2.35 - [cherrypick] #3004: toolchain/musl: update to 1.2.2 (security and bug fixes) - [upstream] update to kernel 5.10.28 (security and bug fixes) 20210403-00 - update to 438e88e672559e349d05540db8763a890a931ad7 - [upstream] update to kernel 5.10.27 (security and bug fixes) 20210328-02 - update to 571aedbc6cbb7a9bfc96bcad543a39d158925cbc - Enables (functionality): - kmods: ata-marvell-sata, fs-btrfs, fs-ext4, fuse, tun - kmods: usb-net-cdc-ether, usb-net-ipheth, usb-net-rndis - kmods: usb-storage, usb-storage-uas - btrfs-progs, e2fsprogs, fstrim, ncdu, tune2fs - bmon 20210326-00 - update to d71424a085e1d5dcc57c5d64dd2a651433944432 - [upstream] glibc update (security fixes) - [upstream] update to OpenSSL 1.1.1k (security fixes) - [upstream] update to kernel 5.10.26 (security and bug fixes) 20210319-00 - update to 047b7621bb3ac266d193cf110a468e42f844be4f - mamba and venom resize patches have been upstreamed! - If you are currently running a resized build please change 'compat_version' in /etc/config/system to '2.0' before flashing. - Builds from here on for mamba and venom will be resized, unless otherwise noted! 20210313-00-RESIZED - update to 1cd098784eeb0e3ba0d05cd3e71ebf1a106138e9 - Resized! Use with caution on mamba and venom! 20210311-01-RESIZED - reinitialized workspace (sanity) - Resized! Use with caution on mamba and venom! 20210311-00-RESIZED - update to dfc2b3ca4dff28259576e21bc3ade910ff52a05 - [cherrypick] #3985: kernel: bump 5.10 to 5.10.23 (security and bug fixes) - Resized! Use with caution on mamba and venom! 20210305-00-RESIZED - update to dc416983bb45f040700612891a9c46ca92e027ff - [upstream] WireGuard tweaks (performance) - [upstream] update hostapd (security fix) (CVE-2021-27803) - [cherrypick] #3966: kernel: bump 5.10 to 5.10.20 (security and bug fixes) - Resized! Use with caution on mamba and venom! 20210227-00-RESIZED - update to a1735fe73ce72e15fc26ca3cbd4a4fb3caba933a - [upstream] WireGuard has been fixed - Resized! Use with caution on mamba and venom! 20210224-00-RESIZED - update to 512229ce4967814a09ce202855e6b632d2e97a3c - Does not include WireGuard - [upstream] update to kernel 5.10.18 (security and bug fixes) - Resized! Use with caution on mamba and venom! 20210223-01-RESIZED - update to ce8b535ed3aea743f58d8445dfaa1c2ced375f94 - Does not include WireGuard - [upstream] DSA/FDB patches have been merged! - Resized! Use with caution on mamba and venom! 20210223-00-RESIZED - update to 55ed4bf6d7bf80b705d015c3b73f772db485ba9c - Does not include WireGuard - [upstream] mvebu 5.10 patches have been merged! - Builds from here on are 5.10, unless otherwise noted. - Resized! Use with caution on mamba and venom! 20210222-00-RESIZED-5.10 - update to 36e35b8d813c259e08974e758fe3509921f1d767 - Using revised mvebu 5.10 patches from Rui Salvaterra https://patchwork.ozlabs.org/project/openwrt/list/?series=230421 - Using revised DSA/FDB fixes from DENG Qingfang https://patchwork.ozlabs.org/project/openwrt/list/?series=230403 - Does not include WireGuard - Resized! Use with caution on mamba and venom! 20210221-00-RESIZED - update to 4b37e3bc2b2a079c996b6d97b8d3dbbd4ba6eb62 - [upstream] update to kernel 5.4.99 (security and bug fixes) - Resized! Use with caution on mamba and venom! 20210218-00-RESIZED-5.10 - update to d2d32dcd5f4bb2d028452419fb2e014b7b31a37a - Using revised mvebu 5.10 patches from https://github.com/openwrt/openwrt/pull/3886 - Does not include the DSA/FDB fixes! - Does not include WireGuard - Resized! Use with caution on mamba and venom! 20210217-01-RESIZED-5.10 - update to f323dec4f866d9ea75eae11c6762d0144d100628 - Linux 5.10 for testing thanks to Sebastian Careba (nitroshift) - Does not include the DSA/FDB fixes! - Does not include WireGuard - Resized! Use with caution on mamba and venom! - [upstream] update to kernel 5.10.16 (security and bug fixes) 20210217-00-RESIZED - update to 5bb9954826229782d4d285d65dfcca8a1c9e20d9 - temporarily drop bmon due to not compiling - Resized! Use with caution on mamba and venom! - [upstream] update to kernel 5.4.98 (security and bug fixes) - [upstream] update to openssl 1.1.1j (security fix) - [upstream] many other updates with fixes and improvements 20210212-00-RESIZED - update to d8afae0be8f0a2a4a26e303dd5212e2a2f8d69a3 - Resized! Use with caution on mamba and venom! - [upstream] update to kernel 5.4.97 (security and bug fixes) 20210208-00-RESIZED - update to 98d61b516fa2087dab8d3e3eb845c47b55e2b704 - Resized! Use with caution on mamba and venom! - [upstream] update to kernel 5.4.96 (security and bug fixes) 20210206-01-RESIZED - update to 17fa01bb79be12a08f8f7a0beb7f0d73618a6193 - enable WireGuard support (functionality) - disable KERNEL_IO_URING - enable KERNEL_KEYS - restore wrt32* third radio support (functionality) enables usb, sdio, bluetooth, firmware, etc. - kernel size still only 2.92MB - Resized! Use with caution on mamba and venom! 20210206-00-RESIZED - resize mamba from 3MB to 4MB - resize venom from 3MB to 6MB - Resized! Use with caution on mamba and venom! 20210205-01 - reinitialized workspace (sanity) 20210205-00 - update to 8286f3a3d3a7d65d36ee312c6fd3828d4e4fd048 - [upstream] update to kernel 5.4.95 (security and bug fixes) 20210204-03 - include irqbalance (performance) - [upstream] updated to banIP 0.7.0 20210204-02 - unset DEBUG_VIRTUAL and INIT_ON_FREE_DEFAULT_ON (performance) - refresh patches (sanity) 20210204-01 - update to 43ff6e641e7c321ab3b67c43ba73a6877d8f0439 - enable all available LuCI translations (usability) - [upstream] hostapd update (security fix) - [upstream] procd update (security fix) 20210202-00 - update to d33cd383ed64f3b387c8e3111c3c0c663763c0ea - add a set of proper backported DSA fixes from DENG Qingfang Thanks! - reinitialized workspace (sanity) - [upstream] update to kernel 5.4.94 (security and bug fixes) 20210131-00 - update to cbedb5de75440b336072ee32bf97a81fac529a6a - enable openssl devcrypto support (performance improvement) must be manually enabled in /etc/ssl/openssl.cnf mamba: 2907378 -> 2908818 <= 3MB limit - include bmon and iperf3 (functionality) - [upstream] update to kernel 5.4.93 (security and bug fixes) 20210126-00 - update to 7ca75a2d01a10711e58a92ae4ed747e23c030814 - [upstream] update to kernel 5.4.92 (security and bug fixes) - [upstream] glibc update (security fix) - [upstream] update to dnsmasq 2.84test3 (bug fix) 20210120-00 - update to 20a0d435d80a98ecf5405c0c0bc9a56bcd04add1 - [upstream] update to kernel 5.4.91 (security and bug fixes) - [upstream] update to dnsmasq 2.83 (security fix) (CVE-2020-25681-7) 20210118-00 - update to f13b623f5e53a72b65f45cbaf56c73df35e70ed2 - [upstream] update to kernel 5.4.89 (security and bug fixes) - [upstream] glibc update (security fix) 20210114-00 - update to f841855f10535529e9cba99469fbbe7f4d73cbda - branding - [upstream] hostapd and wpa_supplicant drop privs (security hardening) 20210110-00 - update to cbd67dbdcd6f45ed54a4ec382c5a8ea4d082fa84 - enable -O2 -mthumb for userspace (performance improvement) - [upstream] glibc update (security fix) 20210109-01 - add the SQM packages (functionality) mamba: 2887378 -> 2903986 <= 3MB limit 20210109-00 - update to 2e590a63645a5c89ad752abfe36458dc0f49c739 - [upstream] update to kernel 5.4.87 (security and bug fixes) 20210102-00 - update to 55e23f2c02ae95e84613ed7d1cbf8aba557b8682 - [upstream] update to kernel 5.4.86 (security and bug fixes) 20201225-00 - update to 57e6f3ae65e1e77db6291f29b40002646b76db3b - revert 0cf3c5dd7257dff1c87b61c5e53e5b1787ab7015 (security regression) - [upstream] update to kernel 5.4.85 (security and bug fixes) 20201216-00 - update to bfc433efd4a0c6875a92981d1bd2a5e3e60c61c6 - reinitialized workspace (sanity) - [upstream] update to kernel 5.4.83 (security and bug fixes) 20201209-00 - update to dd3464023f1836ef4fa417509830aaf5618b9ae9 - [upstream] update to kernel 5.4.82 (security and bug fixes) 20201204-01 - update to 33c27ccf4aef677d28246d30e815050ead68b434 - [upstream] update to kernel 5.4.81 (security and bug fixes) 20201204-00 - update to 9c13513ce1fdfbd4adc8bc7bce54f34b3689e940 - enable CONFIG_KERNEL_CC_OPTIMIZE_FOR_PERFORMANCE (performance improvement) mamba: 2496250 -> 2858426 <= 3MB limit 20201203-00 - update to d346beb08c3a7867497000dc382635ee8ea0eedb - basic kernel hardening via config (security hardening) 20201201-00 - add a patch to disable tx amsdu on mwlwifi (bug workaround) fixes high latencies 20201130-01 - cleanup config 20201130-00 - update to c71500fd4555307f1d1810cdcfe5e9a0a4b6c469 - drop 0001-2522-80211n_256QAM-Rebased.patch - enable CONFIG_PACKAGE_mwlwifi-firmware-88w8964 20201127-00 - update to b0cb305236524095bfd899449b0ad8eb821cb3bb - initial public release - cleanup patches - [upstream] update to kernel 5.4.80 (security and bug fixes)