summaryrefslogtreecommitdiffhomepage
path: root/protocols
AgeCommit message (Collapse)Author
2021-10-08luci-proto-wireguard: fix potential shell injection vulnerabilitiesJo-Philipp Wich
The `luci.wireguard.generateQrCode` UBUS method allows injecting arbitrary shell code by not sanitizing the `privkey` and `allowed_ips` arguments before concatenating them into shell command expressions. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-10-07luci-proto-wireguard: fix markup not valid for XHTMLJo-Philipp Wich
Fixes: #5407 Fixes: 03d615f62c ("luci-proto-wireguard: add more options to qr code") Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-10-01Merge pull request #5403 from lvoegl/luci-app-wireguard-fix-parsingFlorian Eckert
luci-app-wireguard: fix allowed_ip parsing
2021-10-01luci-app-wireguard: fix allowed_ip parsinglvoegl
Signed-off-by: lvoegl <lvoegl@tdt.de>
2021-09-30luci-proto-wireguard: fix luci.wireguard rpcd dependencyFlorian Eckert
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
2021-09-26luci-app-wireguard: fix dependencyFlorian Eckert
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
2021-09-17luci-proto-wireguard: add more options to qr codelvoegl
Signed-off-by: lvoegl <lvoegl@tdt.de>
2021-09-17luci-proto-wireguard: client qr code generationlvoegl
Signed-off-by: lvoegl <lvoegl@tdt.de>
2021-09-17luci-app-wireguard: merge app and proto rpcdlvoegl
Signed-off-by: lvoegl <lvoegl@tdt.de>
2021-08-28#5307 Made AllowedIPs optionalKeith Irwin
Signed-off-by: Keith Irwin <git@ki9.us>
2021-08-19protocols: make APN option optional againJo-Philipp Wich
Fixes: #5284 Fixes: 1661ac6bf8 ("luci-proto-ncm: add APN and PIN validation") Fixes: 114dc38dc2 ("luci-proto-qmi: add APN and PIN validation") Fixes: 6a8ad40b05 ("luci-proto-3g: add APN and PIN validation") Fixes: ebb676ef7b ("luci-proto-modemmanager: add APN and PIN validation") Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-08-09Merge pull request #5190 from TDT-AG/pr/20210715-proto-bondingJo-Philipp Wich
luci-proto-bonding: fix member because of API change
2021-07-19luci-proto-bonding: bugfix xmit_hash_policy dependenciesHelge Mader
Signed-off-by: Helge Mader <ma@dev.tdt.de>
2021-07-15luci-proto-bonding: fix member because of API changeHelge Mader
Signed-off-by: Helge Mader <ma@dev.tdt.de>
2021-07-13luci-proto-ncm: add APN and PIN validationNicholas Smith
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com> [squash commits, fix whitespace] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-07-13luci-proto-qmi: add APN and PIN validationNicholas Smith
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com> [squash commits, fix whitespace] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-07-13luci-proto-3g: add APN and PIN validationNicholas Smith
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com> [squash commits, fix whitespace] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-07-13luci-proto-modemmanager: add APN and PIN validationNicholas Smith
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com> [squash commits, fix white space] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-06-07protocols: unify TOS and TTL description stringsJo-Philipp Wich
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-06-07treewide: consolidate {IPv4,IPv6,MAC} {address,gateway} spellingsJo-Philipp Wich
- Turn IPv4-Address into IPv4 address - Turn IPv4-Gateway into IPv4 gateway - Turn IPv6-Address into IPv6 address - Turn IPv6-Gateway into IPv6 gateway - Turn MAC-Address into MAC address Also remove related duplicate translation entries. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-06-03luci-proto-wireguard: fix fwmark validation to allow 32 bit valuesJo-Philipp Wich
The iptables mark field is 32 bits wide, which is 4 bytes and so 8 hex characters. Fix the fwmark validation to allow 8 characters in the hex string. Fixes: #5098 Suggested-by: Robert <32970961+differentblue@users.noreply.github.com> Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-06-01protocols: rename "device" option to "_modem_device"Jo-Philipp Wich
This is required to resolve clashes with the generic "option device" referring to netdev names in current netifd versions. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-05-28treewide: drop MAC and MTU from interfaces (protocols)Rafał Miłecki
Those are L2 options that are not part of interfaces (L3), should not be set there and don't work. Setting MAC and MTU should be done at device layer (config device) and is supported for basic types already. Signed-off-by: Rafał Miłecki <rafal@milecki.pl>
2021-03-29protocols: fix interface.ipv6 vs. device.ipv6 option conflictJo-Philipp Wich
Ref: https://forum.openwrt.org/t/pppoe-disable-ipv6/92548 Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-03-15treewide: remove rendundant proto handler optionsJo-Philipp Wich
The introduction of network device configuration support also implemented all common, protocol-independent interface options directly in the interface config view, so drop the redundant option definitions. Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-02-27luci-{app,proto}-wireguard: remove kmod-wireguardIlya Lipnitskiy
Prepares for 5.10 migration. wireguard-tools will bring in the correct wireguard kernel module dependency - either kmod-wireguard or kmod-wireguard-oot. Depends on https://github.com/openwrt/openwrt/pull/3885 Signed-off-by: Ilya Lipnitskiy <ilya.lipnitskiy@gmail.com>
2021-01-07luci-proto-modemmanager: add support for specifying signal refresh rateNicholas Smith
Signed-off-by: Nicholas Smith <nicholas@nbembedded.com>
2020-11-25Merge pull request #4542 from mayli/oc-protocolFlorian Eckert
luci-proto-openconnect: add vpn_procotol support
2020-11-22optinal -> optional typo fixSergio E. Nemirowski
Signed-off-by: Sergio E. Nemirowski <sergio@outerface.net>
2020-11-06luci-proto-qmi: add missing proto default optionsFlorian Eckert
This change add the following missing default options. - defaulroute - peerdns - metric Signed-off-by: Florian Eckert <fe@dev.tdt.de>
2020-11-05luci-proto-gre: remove extra parenthesisChuanhong Guo
fix the following error: SyntaxError Unexpected token ')' in http://192.168.122.131/luci-static/resources/protocol/grev6.js:? at http://192.168.122.131/luci-static/resources/luci.js:22 at async Promise.all (index 4) at async Promise.all (index 5) Fixes: 2b7fd1292 ("luci-proto-gre: improvement of LuCI interface") Signed-off-by: Chuanhong Guo <gch981213@gmail.com>
2020-10-30luci-proto-openconnect: add vpn_procotol supportMengyang Li
see https://github.com/openwrt/packages/pull/13763 Signed-off-by: Mengyang Li <mayli.he@gmail.com>
2020-10-19luci-proto-gre: improvement of LuCI interfaceJan Bětík
Better handling of Type of Service (IPv4), Traffic Class (IPv6) values Optional value Local endpoint address is detected and pre-filled in the interface Signed-off-by: Jan Bětík <jan.betik@svine.su>
2020-09-03Merge pull request #4374 from RemiNV/map_type_renameFlorian Eckert
protocols: rename type to maptype for map
2020-09-02Merge pull request #4355 from RemiNV/legacymapFlorian Eckert
protocols: add legacymap option for map
2020-08-31Merge pull request #4175 from aaronjg/openfortivpnFlorian Eckert
luci-proto-openfortivpn: add luci interface for openfortivpn
2020-08-26luci-proto-openfortivpn: update config option namesAaron Goodman
update config option names for openfortivpn version 1.14-1-8 Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
2020-08-21luci-proto-wireguard: Add generate key buttonWojciech Jowsa
Signed-off-by: Wojciech Jowsa <wojciech.jowsa@gmail.com> [minor indentation fix, use bound section_id value, remove empty translation] Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2020-08-16protocols: add legacymap option for mapRemi NGUYEN VAN
legacymap causes map to use the legacy IPv6 Interface Identifier format that was described in draft-ietf-softwire-map-00, but was eventually changed in RFC7597. It is however still used by some major ISPs, including in Japan. Signed-off-by: Remi NGUYEN VAN <remi.nguyenvan+openwrt@gmail.com>
2020-08-15protocols: rename type to maptype for mapRemi NGUYEN VAN
"type" is already used as a common option for all protocols. This makes the configuration ambiguous, and Luci sees JS errors when trying to save a MAP configuration. Switch to "maptype" instead to avoid the conflict. MAP currently uses "maptype" and falls back to "type" when not specified. Signed-off-by: Remi NGUYEN VAN <remi.nguyenvan+openwrt@gmail.com>
2020-08-06luci-proto-openfortivpn: add default route, remove disabled, update textAaron Goodman
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
2020-07-16luci-proto-openfortivpn: add luci interface for openfortivpnAaron Goodman
Signed-off-by: Aaron Goodman <aaronjg@stanford.edu>
2020-07-10luci-proto-modemmanager: add modem specific error messages.Nicholas Smith
Signed-off-by: Nicholas Smith <nicholas.smith@telcoantennas.com.au>
2020-07-01luci-proto-sstp: proto addRobert Koszewski
Signed-off-by: Robert Koszewski <rkkoszewski@gmail.com>
2020-06-16luci-proto-gre: Protocol extension for GRE tunnelsJan Bětík
I'm running several GRE tunnels to different locations and the option to see and to configure GRE tunnels in LuCI was not crucial but nice to have. Signed-off-by: Jan Bětík <jan.betik@svine.su>
2020-06-01luci-proto-vxlan: add destination port optionWojciech Jowsa
Signed-off-by: Wojciech Jowsa <wojciech.jowsa@gmail.com>
2020-05-27luci-proto-vxlan: fix uci option namesJo-Philipp Wich
Fixes: d79bbdd5b ("luci-proto-vxlan: add vxlan protol handler") Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2020-05-27luci-proto-vxlan: add vxlan protol handlerWojciech Jowsa
Allow users to add vxlan inteface in luci. Signed-off-by: Wojciech Jowsa <wojciech.jowsa@gmail.com>
2020-05-14luci-proto-wireguard: verify last base64 string symbol is an = signFlorian Eckert
Signed-off-by: Florian Eckert <fe@dev.tdt.de>
2020-05-13luci-proto-wireguard: add warning that allowed_ips must not be emptyFlorian Eckert
Signed-off-by: Florian Eckert <fe@dev.tdt.de>