fixes #1834
fixes #1332

The OCEDO Koala was missing the correct package definition. Because of
this, firmware is potentially built with the wrong ath10k firmware /
driver.

(cherry picked from commit 174dd314)

6305d09b1 Merge pull request #10063 from stangri/18.06-simple-adblock
fb43709a6 simple-adblock: dnsmasq.ipset option support, better handling of IDNs, updated README
29cd578d6 Merge pull request #10041 from neheb/djj
f29206251 django: Update to 1.8.19
f587f31ad lighttpd: mark module configuration files
19879284a dovecot: Update to version 2.2.36.4
8f42d4b71 wget: fix CVE-2018-20483
f6e7b56a5 fastd: fix init script for multiple VPN instances
06cc48c49 haveged: update to 1.9.6
6014389c5 Merge pull request #9894 from BKPepe/keepalived-18.06
7a7820fb1 Merge pull request #9904 from RussellSenior/my-18.06
18f9e437c patch: rename CVE-2019-13638 patch to mollify uscan
abe523c57 patch: apply upstream patch for CVE-2019-13638
a3d8698e3 tools/patch: apply upstream patch for CVE-2019-13636
ebb9b3f17 exfat-nofuse: drop BUILD_PATENTED
2d9a3eff4 keepalived: add patch for CVE-2018-19115
e4508a351 keepalived: Update to version 1.4.5
6d8293801 lighttpd: fix CVE-2018-19052
55dcffd7f Merge pull request #9841 from cshoredaniel/pr-18.06-nut-targetted
bdddb2127 Merge pull request #9703 from BKPepe/squid-18.06
e45c2f206 Merge pull request #9814 from guidosarducci/speedtest-18.06
f01e4171d Merge pull request #9777 from BKPepe/tar_1806
85b1ca7fb Merge pull request #9821 from cotequeiroz/vim_host
c1aa1f784 nut: Bump PKG_RELEASE
361e6aaaa nut: Handle FSD properly
a2ab989c1 nut: Fix init actions (server/driver)
ef0bd0140 nut: Fix extra diver params config
77519cd20 nut: Fix permissions with runas
e97684652 nut: Fix statepath handling
5f69f9a06 nut: Fix unset of runas user (ups server)
ccdec71b5 nut: Fix bad check for conf exists
c963f0c29 nut: Fix upsmon init actions
d06bd2d7e nut: Fix unset of runas user (upsmon)
020dfd454 nut: Remove unecessary libwrap dependency
7fe013ce7 nano: update to 4.4
f50edf52d ttyd: Add dependency for vim
d9b29fe5e vim: Add host build to install xxd
5640d6e68 speedtest-netperf: new package to measure network performance
fded0497e Merge pull request #9789 from ja-pa/libarchive-security-fix-18.06
43f49bdbc apinger: Update to latest git revision
45e38f116 node-serialport: fix i386 build fail
19ee25df6 node-hid: fix i386 build fail
232df2821 libarchive: update to version 3.4.0 (security fix)
3bdadf4d7 Merge branch 'pr/9778' into openwrt-18.06
14219822e fastd: update URL and PKG_SOURCE_URL
41a85be71 libuecc: update URL and PKG_SOURCE_URL
51462b3df Merge pull request #9754 from champtar/openwrt-18.06
23eeeeadc bind: update to 9.11.9
0d7a23418 tar: update to version 1.32
70e3f5d17 tar: Update to 1.31
01466e76e lcdringer: Remove libcheck dependency to fix compilation
502ccc496 Merge pull request #9765 from stangri/18.06-simple-adblock
ddcbf080a dovecot: update to version 2.2.36.3
8e8087706 [18.06] simple-adblock: support for varios DNS resolvers/options
a4314b868 linknx: Fix compilation with libiconv
ca99a333e rp-pppoe: redo glibc patch
5327a95d6 rp-pppoe: Fixed compilation with glibc
19d101bd2 ldbus: Add zip/host build dependency
db85d6ec9 gcc: Do not build on ARC
80742d0da prometheus-node-exporter-lua: add target & system to OpenWrt collector
06e513ba3 prometheus-node-exporter-lua: Add more wifi_station metrics and fix naming according to original wifi_linux.go node exporter
60002eb62 prometheus-node-exporter-lua: Bump PKG_RELEASE
1014b0987 prometheus-node-exporter-lua: Add wifi_station_count
0d224bdfa prometheus-node-exporter-lua: wifi packets should be a counter
a08f5e17f prometheus-node-exporter-lua: Bump PKG_RELEASE
b03545e0b prometheus-node-exporter-lua: fix missing conntrack values
70bd5a36c prometheus-node-exporter-lua: change network metric type to counter
ad34675df prometheus-node-exporter-lua: add lantiq dsl modem collector
d921407d4 openssh: fix pthread functions redefine with pam module
df3d2312c Merge pull request #9403 from BKPepe/yt-18.06
6d55ff558 Merge pull request #9513 from BKPepe/openwrt-18.06_python_shebang
b29ecaa11 libinput: Add missing header to fix compilation
3414ca250 libglog: fix removing libunwind dependency
e41a914bf libseccomp: workaround a recursive dependency
a1eccf223 lxc: Backport uClibc patch
08c0b2949 lxc: hide seccomp support for arc
d3e54adcd lxc: Disable use of unwanted libraries explicity
bb1882d29 boost: Fix compilation with uClibc-ng
ad26261e1 iodine: Fix compilation with uClibc-ng
e42f8da51 mariadb: add dependency on libaio for arc as well
29e7e0619 libudev-fbsd: update to git source as of 2017-12-16
a0e1a7700 Merge pull request #9710 from BKPepe/icu_fix
4bda1ca54 icu: fix patch, which adds big endian ARM support
78bf09b08 golang: update to version 1.10.8
fa384e518 libgee: copy vapi files to versioned vala dir
2d59ec88d libgee: use unversioned vala dir, misc fixes
d7a071f4a icu: Fix patch from faulty backport
1607a5bd8 squid: update to version 3.5.28
983bd0370 protobuf-c: add build time dependency protobuf
87b6ed6b9 jamvm: depends on supported architectures
ca0e429e2 icu: Backport ARMEB support patch
ad43d622e gammu: Really fix compilation under 64-bit
1ad4f3a9b gammu: Fix build under 64-bit targets.
cdbc72464 youtube-dl: update to version 2019.8.2
af975f0f3 python,python3: Fix overridden usr/bin symlinks
421c58a94 python,python3: move shebang handle in install script
243f921ae subversion: update to version 1.10.6
70a1ffdf0 jq: compile with _GNU_SOURCE (fixes #7785)
fb0566686 libsoc: fix compilation error caused by multiple goals on make
1fec7ea23 rtl-ais: Fix compilation on i386
de750bba0 libdouble-conversion: Update to 3.1.4
49a6444ab libdouble-conversion: Update to 3.1.1
056cad1e0 libaio: Update to 0.3.112
b4e4e5a00 libaio: Backport DESTDIR patch to simplify the Makefile
7ccc104c9 libaio: Update to 0.3.111
d6145ce0c quassel-irssi: Fix compilation with GCC8
47e4537fd quasselc: Fix compilation with uClibc-ng
b26ffad37 Merge pull request #9625 from micmac1/18.06-mariadb10141
e5cc721c7 mariadb: security bump to 10.1.41

491e839262 brcm47xx: sysupgrade: fix device model detection
4acc0db480 kernel: bump 4.14 to 4.14.146
3699327da3 kernel: bump 4.9 to 4.9.194
45a2c0f309 hostapd: Fix AP mode PMF disconnection protection bypass
e289a4133c hostapd: SAE/EAP-pwd side-channel attack update
a63edb4691 mbedtls: update to 2.16.3
2698157d54 mbedtls: Update to version 2.16.2
952bafa03c openssl: bump to 1.0.2t, add maintainer
7e1db8f27c kernel: bump 4.14 to 4.14.145
d32cf52674 kernel: bump 4.14 to 4.14.144
745292ba10 kernel: bump 4.9 to 4.9.193
5880dd48d5 mac80211: brcmfmac: backport the last 5.4 changes
90f6af5108 ar71xx: fix potential IRQ misses during dispatch for qca953x
e545808e89 ar71xx: Fix potentially missed IRQ handling during dispatch
59e42f9e3e kernel: bump 4.14 to 4.14.143
418cf097e7 kernel: bump 4.9 to 4.9.192
6f677d6848 tools: mkimage: fix __u64 typedef conflict with new glibc
c5ed9f4344 kernel: bump 4.14 to 4.14.142
556f86bbfd kernel: bump 4.9 to 4.9.191
2d257351f3 ramips: fix duplicate network setup for dlink, dir-615-h1
2a22e41fe4 ramips: fix D-Link DIR-615 H1 switch port mapping
f9dec32be7 ramips: remove duplicate case for MAC setup of freestation5
7393ce8d87 mac80211: brcmfmac: backport more kernel 5.4 changes
f6de1fa6c6 bzip2: Fix CVE-2019-12900
7ac6044632 ar71xx: WNR2200: remove redundant GPIO for WLAN LED
9d1cd9d098 kernel: bump 4.14 to 4.14.141
4b5c77ca2f ath9k: backport dynack improvements
73bba470a4 kernel: bump 4.14 to 4.14.140
8bc800aa56 kernel: bump 4.9 to 4.9.190
c948a74158 kernel: bump 4.14 to 4.14.139
09d63fb0a6 musl: Fix CVE-2019-14697
564d81e944 iptables: patch CVE-2019-11360 (security fix)
5e3b21c916 musl: ldso/dlsym: fix mips returning undef dlsym
2df2b75208 wolfssl: fixes for CVE-2018-16870 & CVE-2019-13628
09bdc14419 kernel: bump 4.14 to 4.14.138
e058fb3658 kernel: bump 4.9 to 4.9.189
28dc34f249 xfsprogs: Replace valloc with posix_memalign
24967a6c42 libbsd: Fix compilation under ARC
30815d65d2 nftables: Fix compilation with uClibc-ng
dc2f2a16d3 tools/patch: apply upstream patch for cve-2019-13638
c99ceb7030 tools/patch: apply upstream patch for CVE-2019-13636

Compile-tested: ar71xx-{generic,tiny}, ramips-rt305x, x86-64

(cherry picked from commit 85532548)

This adds a warning that entprise switches with an IGMP/MLD snooping
feature are not supported yet with IGMP/MLD filtering enabled.

For this to work, firstly the Linux bridge on the Gluon node needs to
support Multicast Router Discovery (RFC4286). But this feature was only
added to the Linux kernel recently, in 5.1.

Secondly, a Gluon node would need to periodically send "Multicast Router
Advertisment" (RFC4286) messages, to "announce" the multicast router
port setting on bridge port bat0.

Thirdly, the IGMP/MLD snooping switches would need to implement
RFC4286.

This reverts commit 9b1eb40f.

With the batman-adv v2019.2 upgrade reverted (c1a77339), the batman-adv
multicast-to-multi-unicast feature is not available yet. Without that it is
going to be very unlikely of the batman-adv multicast optimizations to
take effect. E.g. some outdated nodes would disable it.

To avoid confusion and diversion with a few communities having it enabled
and most implicitly deactivated, just deactivate it for all for now
until batman-adv is updated to v2019.2 or greater again.

The kernel partition on these devices is too small for the
OpenWrt 19.07 kernel. It is also located after the rootfs, so
we cannot grow it further.

Therefore mark these devices as deprecated now.

Fixes #1821

Fixes: 071cf7b2 ("Switch to Lua for target definitions")

reduce size by removing dispensable packages,
to fix builds of this target in most cases.

gluon-mesh-babel conigures babeld and thus the mesh. This mesh is only usable
with routes to the clients which are discovered by l3roamd.

* add check_site.lua to validate required field from site
* make use of node_client_prefix6 if defined in site

This adds documentation for the gluon-mesh-batman-adv package and
elaborates on its build and configuration options, as well as
the implemented multicast architecture.

Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>

Fixes #1809

Fixes: bf552491 ("gluon-core: add outdoor support for 5 ghz radios")

This seems to unbreak bootloader image generation with certain shells /
build setups.

Fixes #1766

e130b6f54d0f simple-tc: increment PKG_VERSION
89260206971f libbabelhelper: bump version to allow specifying the command for readbabeldata()
0447a6960caf bump mmfd: Bugfix Crash  and firends

mac_to_ip() calculates an ipv6 address from a mac address according to
RFC 4291. For wireguard we have to use specially crafted addresses that
must be unique. This allows calculating such unique mac-based addresses
by allowing to optionally specifying the bytes to be inserted into the
address.

The new routing_algo site.conf value BATMAN_IV_LEGACY is introduced. With
these changes, the routing_algo setting becomes mandatory.

Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>

We cannot add the same file (here: /lib/gluon/mesh-batman-adv/compat) to
two, installed packages. Therefore, instead of determining the compat
version number from this file, infer it from the batman-adv release
version number instead.

Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>

Instead of unconditionally loading this module on boot the gluon_bat0
netifd protocol script will later take care of loading either the
batman-adv or batman-adv-legacy module, depending on the configured routing
algorithm in UCI.

19ef88a7191f batman-adv-legacy: update maintainers
c04321b96386 batman-adv-legacy: rename title from "B.A.T.M.A.N. Adv" to "... Legacy"
a382d21c6a21 batman-adv-legacy: move binaries, scripts and config to avoid conflicts
3e3db36a2eff batman-adv-legacy: remove module autoload

This displays the branch, repo and commitID that was attempted to update to but
failed. Users then can compare this output to the configuration they meant to
activate in modules and hopefully better find their typos.

Fixes #1775

This is a fix for the broken ingress traffic-shaping in gluon v2018.2.2
and possibly earlier.

For ingress traffic shaping the kernel option NET_ACT_POLICE is needed.
Before this patch there was no dependency to this. Neither in
gluon_core, gluon-mesh-vpn-core nor in the package.

This patch adds this dependency.

[Matthias Schiffer: move dependency from GLUON_CORE to gluon-mesh-vpn-core]

Fixes #1790

7c31643f5cb0 simple-tc: depend on KERNEL_NET_ACT_POLICE or kmod-sched

This reverts commit fb08e104.

Devices featuring ath10k radios should at least 128 MB of memory
as their driver is quite memory hungry.

Devices with a configuration (1x ath10k, 64M memory) like this have
often been seen as running out of memory.