guerby has quit [Remote host closed the connection]
guerby has joined #openwrt-devel
valku1 has joined #openwrt-devel
lmore377 has quit [Quit: No Ping reply in 180 seconds.]
valku has quit [Remote host closed the connection]
lmore377 has joined #openwrt-devel
victhor has joined #openwrt-devel
<pkgadd>
stintel: https://github.com/openwrt/luci/pull/4307 adds a nice introduction into dsa, the aspects I've played with so far on a gs1900-8/ realtek rtl8382m so far worked pretty nicely (but I sure haven't tested the really complex issues yet)
gnustomp has quit [Ping timeout: 260 seconds]
black_ant has joined #openwrt-devel
black_ant has joined #openwrt-devel
Tost has quit [Ping timeout: 265 seconds]
gnustomp has joined #openwrt-devel
nslu2-log_ has joined #openwrt-devel
nslu2-log has quit [Ping timeout: 256 seconds]
anonzadas has quit [Ping timeout: 256 seconds]
Darkmatter66 has quit [Ping timeout: 256 seconds]
carlomaragno has quit [Ping timeout: 256 seconds]
carlomaragno has joined #openwrt-devel
nslu2-log_ is now known as nslu2-log
anonzadas has joined #openwrt-devel
Darkmatter66 has joined #openwrt-devel
victhor has quit [Remote host closed the connection]
DonkeyHotei has quit [Ping timeout: 260 seconds]
hbug has quit [Ping timeout: 268 seconds]
Grommish_ has joined #openwrt-devel
DragoonAethis has quit [Quit: hej-hej!]
tobleminer-tSYS has quit [Quit: AS4242423214]
tobleminer-tSYS has joined #openwrt-devel
Grommish has quit [Ping timeout: 246 seconds]
DragoonAethis has joined #openwrt-devel
<girth>
grift: must be pee-pee-id shy, the pressure was all mine :P
danitool has quit [Quit: Cubum autem in duos cubos, aut quadratoquadratum in duos quadratoquadratos]
dorf_ has quit [Remote host closed the connection]
girth has left #openwrt-devel [#openwrt-devel]
philipp64 has joined #openwrt-devel
mangix has quit [Remote host closed the connection]
mangix has joined #openwrt-devel
<mangix_>
oh ffs
<mangix_>
i see what happened
<mangix_>
docker changed the IP address for quassel
black_ant has quit [Ping timeout: 260 seconds]
rsalvaterra1 has joined #openwrt-devel
rsalvaterra has quit [Ping timeout: 240 seconds]
mangix_ has quit [Quit: leaving]
<mangix>
cool. back on here. how to see how to set a static IP...
<mangix>
*now
home-alone has joined #openwrt-devel
mangix has quit [Remote host closed the connection]
mangix has joined #openwrt-devel
Darkmatter66 has quit [Ping timeout: 240 seconds]
home-alone has quit [Ping timeout: 272 seconds]
home-alone has joined #openwrt-devel
home-alone has quit [Read error: Connection reset by peer]
home-alone has joined #openwrt-devel
home-alone has quit [Client Quit]
linzst has joined #openwrt-devel
DonkeyHotei has joined #openwrt-devel
Acinonyx_ has joined #openwrt-devel
Acinonyx has quit [Ping timeout: 264 seconds]
KGB-1 has quit [Remote host closed the connection]
linzst has quit [Quit: Leaving]
Darkmatter66 has joined #openwrt-devel
rmilecki has joined #openwrt-devel
nitroshift has joined #openwrt-devel
rsalvaterra has joined #openwrt-devel
anonzadas_ has joined #openwrt-devel
anonzadas has quit [Ping timeout: 256 seconds]
rsalvaterra1 has quit [Ping timeout: 256 seconds]
Acinonyx_ has quit [Ping timeout: 256 seconds]
Acinonyx has joined #openwrt-devel
dedeckeh has joined #openwrt-devel
decke has joined #openwrt-devel
Tapper has joined #openwrt-devel
dedeckeh has quit [Quit: Ping timeout (120 seconds)]
valku1 has quit [Quit: valku1]
<grift>
re-opened my router again for today: http://defensec:skit123@openwrt.defensec.nl:7681 please help find bugs and loose ends in the sandbox. yesterday no-one was able to affect operations in any way but i am pretty that people smart enough can find way's and i would like to learn from that to improve it
whyz has quit [Ping timeout: 272 seconds]
Darkmatter66 has quit [Ping timeout: 240 seconds]
goliath has joined #openwrt-devel
<jacekowski>
grift: so what is that?
<grift>
its intergrity protection for openwrt systems
<grift>
a sandbox that leverages the selinux mandatory access control in openwrt
<jacekowski>
what are you using for web terminal, it doesn't look like shell in a box
<grift>
ttyd/tmux
<grift>
i am connected to internet through this router, the goal is to affect operations. ie either kick me off the internet of shut it down or escape the sandbox etc
<jacekowski>
well, i can come up with one way, download loads of illegal content
<grift>
that wont work, try it
<grift>
try udp flood
<jacekowski>
well, ddosing it from outside might work
<grift>
true obviously
<jacekowski>
but that is not really the goal here
<grift>
but that is not in the scope of this test
<grift>
the test is to verify whether the access control is strong
<grift>
resource control is out of scope
feriman has joined #openwrt-devel
<grift>
sudo is useless by the way, youre already root
whyz has joined #openwrt-devel
<jacekowski>
what does your selinux policy look like?
<grift>
i wanted to create an init script and couldnt figure out how achieve similar results to https://termbin.com/32e1 with PROCD=1
ephemer0l has joined #openwrt-devel
<grift>
why dont we leverage cgroups.procs for example to get some MAINPID like variable in procd so that we dont need pid files?
nejon has joined #openwrt-devel
victhor has quit [Ping timeout: 272 seconds]
<karlp>
most things don't need pid files.
<karlp>
I added it to procd just for use with external monitoring tools.
<grift>
true bit ive seen things like "killall $NAME" in stop() and that just doesnt seem to scale.
<karlp>
if you're using procd, you don't try and collect pids and then kill them all one by one,
<karlp>
you just make an instance for whatever you need and procd will kill it ons top for you
<karlp>
kilalll in stop wouldn't really be a "procd" init script, no
<grift>
ye the issue with PROCD=1 for me was mainly that there was no way to enable pids.max
<karlp>
what is pids.max meant to do?
<grift>
limits the number of tasks in the service
<grift>
ie fork bomb prevention
<karlp>
a very common problem, I'm sure.
<karlp>
if you want to add a whole bunch of cgroup stuff, sure, we just keep moving procd closer and closer to systemd of course...
<grift>
thats not what i am saying
<karlp>
but that's quite different to collecting pid files.
<grift>
but if you get a pid variable then we can use that
adrianschmutzler has quit [Quit: ~ Trillian - www.trillian.im ~]
Dracos-Carazza has joined #openwrt-devel
danitool has joined #openwrt-devel
danitool has quit [Remote host closed the connection]
Ycarus_ has joined #openwrt-devel
Ycarus has quit [Ping timeout: 260 seconds]
luke-jr has quit [Excess Flood]
luke-jr has joined #openwrt-devel
<grift>
karlp but yes i think youre probably right. forget i ever started about it.
<grift>
i was just annoying by seeing killall NAME and kill $(cat /var/run/NAME.pid) all over the place
<karlp>
your cgroup stuff seems only tangentially related.
<grift>
it is only that , yes
<karlp>
but yes, init scripts writing pidfiles and using killall are not realy using procd "as well as they could be"
<grift>
the stop part is related to the pid issue
<grift>
for me its good enough that i have an option to write "old-style" init scripts
<grift>
that will do the job for me
br377 has left #openwrt-devel ["WeeChat 1.9.1"]
nitroshift has quit [Quit: Gone that way --->]
hbug has joined #openwrt-devel
dorf has joined #openwrt-devel
valku has joined #openwrt-devel
Antoine| has quit [Ping timeout: 272 seconds]
Antoine- has joined #openwrt-devel
<grift>
well thats a bit complicated to do as its an nfs share
<grift>
wrong chan
Tapper has quit [Ping timeout: 272 seconds]
feriman has joined #openwrt-devel
dorf has quit [Remote host closed the connection]
decke has quit [Quit: Leaving.]
dorf has joined #openwrt-devel
daregap has quit [Ping timeout: 256 seconds]
danitool_ has joined #openwrt-devel
danitool has quit [Remote host closed the connection]
feriman has quit [Ping timeout: 256 seconds]
Red_M has quit [Ping timeout: 256 seconds]
feriman has joined #openwrt-devel
Red_M has joined #openwrt-devel
Red_M has joined #openwrt-devel
damex has quit [Ping timeout: 256 seconds]
victhor has joined #openwrt-devel
linzst has joined #openwrt-devel
damex has joined #openwrt-devel
Rene__ has joined #openwrt-devel
<Hauke>
jow: you said there is a problem with https and wolfssl in master, where can I find some details about this, I think you told me already some time ago, but I forgot. ;-)
Tapper has joined #openwrt-devel
Darkmatter66 has joined #openwrt-devel
philipp64 has quit [Quit: philipp64]
philipp64 has joined #openwrt-devel
luke-jr has quit [Ping timeout: 256 seconds]
luke-jr has joined #openwrt-devel
Acinonyx_ has joined #openwrt-devel
Acinonyx has quit [Ping timeout: 240 seconds]
repulse has joined #openwrt-devel
<philipp64>
jow: does ipset-dns require anything special to work, or can it easily be made to work with Bind?
<Pepe>
Hauke: Are you going to take a look at wireguard in openwrt-19.07 which is not compiled since the latest bump of kernel 4.14?
Darkmatter66 has quit [Quit: ZNC 1.7.5 - https://znc.in]
Untis20 has joined #openwrt-devel
<Untis20>
Hello. I'm trying to port the old rb711 patch to 19.07. I can get it to boot, detect nand and wifi, but I can't get it to detect eth. It fails with the following error: ar71xx: invalid PHY interface mode for GE0
<Untis20>
Well. I solved my issue.
<Untis20>
But now I have no idea if it was setting AR8327_PORT_SPEED_1000 to AR8327_PORT_SPEED_100 or copying if_mode set from rb711gr100.
black_ant has quit [Quit: simplicity does not kill]
KanjiMonster has quit [Quit: ZNC 1.7.3 - https://znc.in]
KanjiMonster has joined #openwrt-devel
ryd has quit [Ping timeout: 240 seconds]
ryd has joined #openwrt-devel
heffer has quit [Quit: heffer]
<Hauke>
Pepe: thanks for the info
lmore377 has quit [Ping timeout: 264 seconds]
rmilecki has quit [Quit: Konversation terminated!]