Commit graph

532 commits

Author SHA1 Message Date
Daniel Barlow
a9848b9668 firewall: enable incoming ssh and dhcp6 2023-06-28 22:20:45 +01:00
Daniel Barlow
25eecabc6d typo 2023-06-28 22:19:11 +01:00
Daniel Barlow
80b6f62896 comment-out example of allowed incoming 2023-06-27 22:33:24 +01:00
Daniel Barlow
c595ae0ccb firewallgen: make nft shebang work 2023-06-27 21:26:23 +01:00
Daniel Barlow
64e0ef5931 use numeric proto number (tautology...) for HIP 2023-06-27 21:25:30 +01:00
Daniel Barlow
78d223a839 move nftables fib rule to the prerouting hook 2023-06-27 21:23:15 +01:00
Daniel Barlow
6101f3f3d8 load necessary kernel modules for firewall 2023-06-27 21:18:09 +01:00
Daniel Barlow
89693af82b thonk 2023-06-26 20:50:18 +01:00
Daniel Barlow
591bd78509 extract writeKconfig to its own file 2023-06-26 20:49:43 +01:00
Daniel Barlow
15be80e9de remove dead config option 2023-06-22 17:46:57 +01:00
Daniel Barlow
bc62f7df45 remove rsync openssl dependency 2023-06-22 17:34:44 +01:00
Daniel Barlow
26cb331d8b remove dead config optiuon 2023-06-22 16:56:30 +01:00
Daniel Barlow
5e45817f98 example rotuer-secrets 2023-06-22 16:54:24 +01:00
Daniel Barlow
943820d4dd add doc note about finding supported devices 2023-06-22 10:06:40 +01:00
Daniel Barlow
fc620df322 thunk 2023-06-22 09:40:27 +01:00
Daniel Barlow
6bc45c2b55 preinit: null-terminate argv array for execve 2023-06-22 09:29:44 +01:00
Daniel Barlow
b898364719 extend timeout for pppoe test 2023-06-20 23:39:46 +01:00
Daniel Barlow
0896c9c1d3 remove non-building ntp service from test config 2023-06-20 22:15:38 +01:00
Daniel Barlow
b002a94e07 rotuer: use firewallgen to make packet filter rules 2023-06-20 20:20:32 +01:00
Daniel Barlow
d79a1e15bb get fennel from source instead of luarocks 2023-06-20 20:19:11 +01:00
Daniel Barlow
340f7211ef remove unused packages 2023-06-20 20:13:59 +01:00
Daniel Barlow
3dd247a719 update arch for gl-ar750
not sure this is needed, tbh
2023-06-20 20:11:25 +01:00
Daniel Barlow
c1ba067fad remove deps from chrony
it's trying to build Perl and all manner of stuff that for
our purposes I don't think we need
2023-06-20 20:09:17 +01:00
Daniel Barlow
435a36f267 delete unused derivations in overlay 2023-06-20 20:06:36 +01:00
Daniel Barlow
ce207e4763 chronyd: disable editline
it drags in ncurses, which is Too Much
2023-06-19 21:37:06 +01:00
Daniel Barlow
a7e7146887 preinit: disable nolibc
- it stopped working with 22.11->23.05
- linking statically against musl is about 17k, so
  this is costing us 11k or so
2023-06-18 23:04:26 +01:00
Daniel Barlow
d66f5901a2 fix nftables syntax 2023-06-18 22:18:44 +01:00
Daniel Barlow
a65bb9d585 improve file-exists? function 2023-06-18 17:41:09 +01:00
Daniel Barlow
80639a7256 add firewallgen package, which creates an nft script 2023-06-18 17:40:16 +01:00
Daniel Barlow
994cca671b þe saga continueth 2023-05-31 23:30:41 +01:00
Daniel Barlow
3f4dbfcfd3 ipv6 prefix delegation for rotuer
much tidying needed, but it works
2023-05-31 23:29:05 +01:00
Daniel Barlow
d82173133c odhcpc script: mkdir 2023-05-30 21:00:20 +01:00
Daniel Barlow
19212b1eeb add funky dd features reqd by ath10k_cal_data 2023-05-30 18:20:42 +01:00
Daniel Barlow
cb30ce52eb rotuer: use writeFennelScript for odhcpc update script 2023-05-30 18:20:14 +01:00
Daniel Barlow
fdffdbb22a add writeFennelScript function, make ifwait use it 2023-05-29 20:20:12 +01:00
Daniel Barlow
fa7e682e87 dhcp6c readiness notification 2023-05-26 18:36:44 +01:00
Daniel Barlow
447f068569 partly support getting IPv6 addresses
- gets interface id from ppp
- runs odhcpc to get RA and prefix delegation
- doesn't do anything useful with the data yet
2023-05-24 23:01:50 +01:00
Daniel Barlow
339c2d9873 upgrade to ppp 2.5.0 2023-05-22 23:31:57 +01:00
Daniel Barlow
3f6585f6be mention min-copy-closure 2023-05-22 00:27:41 +01:00
Daniel Barlow
e83b33686f typo 2023-05-22 00:20:52 +01:00
Daniel Barlow
35a5605266 improve(?) markup 2023-05-22 00:14:32 +01:00
Daniel Barlow
4429f2b177 grammar 2023-05-21 23:48:10 +01:00
Daniel Barlow
43fa9f0679 link to OpenWrt serial console docs 2023-05-21 23:41:42 +01:00
Daniel Barlow
805c2f7984 update CoC 2023-05-21 23:31:28 +01:00
Daniel Barlow
7bcf6b15c3 declare build product 2023-05-21 21:27:52 +01:00
Daniel Barlow
7020fa99ee build manual in CI 2023-05-21 20:53:05 +01:00
Daniel Barlow
bc27f121d9 /etc/ashrc for interactive non-login shells 2023-05-21 17:08:32 +01:00
Daniel Barlow
0173a9ced9 set PATH correctly in ssh sessions
for a non=interactive shell ("ssh linminix foo") ash does not source
*any* startup files, so we need to set this to something more useful
than /bin:usr/bin
2023-05-21 17:07:19 +01:00
Daniel Barlow
a48d51ffdc keep dropbear host keys in /persist if it exists 2023-05-21 12:01:42 +01:00
Daniel Barlow
f249c12bec cruft 2023-05-20 22:48:30 +01:00