Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-04-08 | Bumped revision to 380.70 final | Eric Sauvageau | |
2018-04-01 | httpd: security backport in ej_dump() from 380_8228 | Eric Sauvageau | |
2018-03-26 | Bumped revision to 380.70 beta 1 | Eric Sauvageau | |
2018-03-24 | httpd: rewrite check_xss_blacklist() to resolve buffer overrun ↵ | Vladislav Grishenko | |
vulnerability, and make it generally cleaner | |||
2018-03-20 | webui: fixed FAQ links (backport from 380_8120) | Eric Sauvageau | |
2018-03-17 | webui: fixed QoS overhead preset list | Eric Sauvageau | |
2018-03-14 | entware: fix output redirection when backing up the JFFS partition | Eric Sauvageau | |
2018-03-12 | bb125: enable ls color by default (to match Asus) | Eric Sauvageau | |
2018-03-12 | webui: remove link to non-existing script from temperature monitor page | Eric Sauvageau | |
2018-03-12 | rc: libdisk: tighten security around some of the system config files found ↵ | Eric Sauvageau | |
in /etc ; fix potential resource leak if an error occured when creating ovpn passwd/group/shadow files | |||
2018-03-12 | samba: make SMBv2 + SMBv1 the default, and add a SMBv2-only option | Eric Sauvageau | |
2018-03-12 | rc: miniupnpd: wait 10 secs before restarting miniupnpd on ntp's first sync | Eric Sauvageau | |
2018-03-12 | rc: move services-start custom script to the very end of start_services() | Eric Sauvageau | |
2018-03-12 | entware: pointed setup script to new installer urls; synced entware-setup.sh ↵ | Eric Sauvageau | |
with NG branch | |||
2018-03-12 | httpd: check that opendir() succeeded, otherwise httpd would crash | Eric Sauvageau | |
2018-02-15 | webui: backport ipv4_addr validator method from 384.xx | Eric Sauvageau | |
2018-02-13 | webui: use double quotes around VPN client list to reduce chances of broken ↵ | Eric Sauvageau | |
JS code | |||
2018-02-13 | Bump revision to 380.70 alpha 1 | Eric Sauvageau | |
2018-01-28 | Bumped revision to 380.69_2 | Eric Sauvageau | |
2018-01-25 | httpd: fix buffer overrun in ej_update_variables() (fixes CVE-2018-5721) | Eric Sauvageau | |
2018-01-22 | httpd: backport handle_request() security fixes from 384_10007 | Eric Sauvageau | |
2017-12-29 | webui: improve field validation on the OpenVPN client page | Eric Sauvageau | |
2017-12-28 | shared: fix buffer overrun in get_parsed_crt() if provided with a key/cert ↵ | Eric Sauvageau | |
longer than the supported limit (closes #1569) | |||
2017-12-28 | httpd: truncate imported OpenVPN key/certs to 3499 chars max (the supported ↵ | Eric Sauvageau | |
limit) | |||
2017-12-26 | rc: make the Quantenna watchdog only reboot on three consecutive ping ↵ | Eric Sauvageau | |
failures rather than three isolated incidents | |||
2017-12-19 | Fix indexOf error | ZHAO Yijun | |
The private key name is `example.com.key` when use Let's Encrypt. | |||
2017-12-18 | shared: define the aae_disable_force nvram for all models, since webui has ↵ | Eric Sauvageau | |
no rc_support flag to rely upon | |||
2017-12-16 | Merge pull request #1501 from comandrei/iphone-8-x-support | Eric Sauvageau | |
networkmap: Add support for iPhone 8, iPhone 8 Plus and iPhone X detection | |||
2017-12-15 | webui: fix validator regexp for IE11 | Eric Sauvageau | |
2017-12-15 | webui: add missing semicolon (closes #1559) | Eric Sauvageau | |
2017-12-14 | Bumped revision to 380.69_1 | Eric Sauvageau | |
2017-12-12 | Bumped revision to 380.69 | Eric Sauvageau | |
2017-12-12 | webui: add option to disable Asusnat tunnel/AAE/Mastiff service (backport ↵ | Eric Sauvageau | |
from 382) Not quite sure what this tunnelling service is for. It's partly closed source, and eats a fair amount of CPU/RAM. Best guess is, it's a NAT traversal tunnel used for Asus' AiHome, and maybe AiCloud and their mobile application? | |||
2017-12-11 | webui: validator: provide regexp to RegExp() as constructors instead of ↵ | Eric Sauvageau | |
strings, otherwise the "-" character isn't properly escaped. A string requires double escaping, i.e. "\\-" to work. Using a constructor is more readable and clearly shows the intent it to escape the dash, not the backslash itself. | |||
2017-12-09 | webui: fix Ethernet port status report on main page (broken by the new ↵ | Eric Sauvageau | |
function from commit 2ec9268fc54a229d7c30b412636f7e033af0537d) | |||
2017-12-09 | Bumped revision to beta 2 | Eric Sauvageau | |
2017-12-09 | openvpn: disable rp_filter in the firewall script instead of the vpnrouting ↵ | Eric Sauvageau | |
script Restarting the firewall would re-enable rp_filter settings, breaking router local traffic routing (gettunnelip.sh would fail for instance). Moving it to the client's firewall script ensures it gets re-applied on a firewall restart. | |||
2017-12-08 | tor: updated to 0.2.9.14 (closes #1549) | Eric Sauvageau | |
2017-12-08 | Bumped revision to 380.69 beta 1 | Eric Sauvageau | |
2017-12-08 | openssl: update to 1.0.2n | Eric Sauvageau | |
2017-12-07 | httpd: rewrite ej_get_wan_lan_status() | Vladislav Grishenko | |
Rewritten function is simpler, cleaner, and also better addresses the previous fix, which could still generate invalid json output. | |||
2017-12-07 | httpd: prevent httpd crash in ej_get_wan_lan_status() when ATE returns an error | Eric Sauvageau | |
If there is no connected Ethernet client, ATE Get_WanLanStatus returns ATE_ERROR in addition to the port status, causing the json parsing to crash httpd. rc/sysdeps/broadcom/broadcom.c:GetPhyStatus() is now closed source, so as a workaround we take care of handling that error message in ej_get_wan_lan_status() instead. | |||
2017-11-25 | samba35: fix incomplete 300792d3ab171669978b8f44f8df8c57f698e269 merge | Eric Sauvageau | |
2017-11-25 | webui: replace remaining is_string() calls (which no longer exists) with ↵ | Eric Sauvageau | |
validator.isString() method | |||
2017-11-25 | webui: accept ":" as valid character for validator.safeName() | Eric Sauvageau | |
2017-11-25 | webui: make 'sign in' a button instead of <div> (fixes #1488) | Alin Trăistaru | |
2017-11-24 | samba35: Chain code can return uninitialized memory when talloc buffer is ↵ | Eric Sauvageau | |
grown. (fixes CVE-2017-15275) Backported from upstream. | |||
2017-11-24 | samba35: Prevent client short SMB1 write from writing server memory to file. ↵ | Eric Sauvageau | |
(CVE-2017-12163) Backported from upstream. | |||
2017-11-24 | samba35: only fallback to anonymous if authentication was not requested ↵ | Eric Sauvageau | |
(CVE-2017-12150) Backported from upstream. | |||
2017-11-24 | samba36: only fallback to anonymous if authentication was not requested ↵ | Eric Sauvageau | |
(CVE-2017-12150) Backported from upstream. |