Gluon 2017.1.6

Bugfixes

  • Remove broken DNS cache feature (#1362)

    It was found that dnsmasq does not handle all answer records equally. In particular, its cached answers are missing DNSKEY and DS records, breaking DNSSEC validation on clients.

    Nodes can still resolve the next-node hostname locally and will continue to work as DNS forwarders. The DNS cache feature may return if dnsmasq is fixed or if we switch to a different resolver.

  • Ensure that corefiles are stored in /tmp rather than cluttering the root filesystem (00df8b76e54c)

    Nodes upgrades from Gluon v2016.2.x or earlier did not set kernel.core_pattern correctly, leading to corefiles being stored in the current directory (usually / for system services) in the case of crashes.

    This is a regression introduced in Gluon v2017.1.

  • Only request a single IPv6 address instead of a prefix on the WAN interface (5db54ba78c3)

  • Fix signal graph on status page when there are many neighbours (packages/d1e0b6e0bdae)

  • Fix config files managed by opkg not being saved on sysupgrades on ar71xx-tiny (LEDE/17c0362178ca, LEDE/75be005e8bdc)

  • Fix kernel crash in batman-adv-14 (#1358)

    Starting with Gluon v2017.1, respondd could trigger a kernel crash caused by a use-after-free in batman-adv-14, in particular after a gateway disappeared.

    batman-adv-15 is not affected.

  • Increase bridge multicast querier timeout (“robustness”) to avoid “querier appeared/disappeared” log spam by batman-adv in the presence of an external querier (e305a8c01917)

  • Fix “broken pipe” log spam caused by the status page (883c32f2f1dc)

  • Reduce memory limit of WLAN packet queues to 256KB on devices with small RAM (e63c6ca01f50)

    Will hopefully make out-of-memory crashes in busy meshes less likely.

  • Improve image validation for TP-Link CPE/WBS 210/510 and make it ready for future images (LEDE/6577fe2198f5)

    Future OpenWrt/Gluon images will move the image metadata (“support-list”) of the CPE/WBS 210/510 images to a different offset. Make sysupgrade ready to allow installing such images.

    This change was also backported to Gluon v2016.2.x to allow direct updates to future Gluon master versions without installing v2017.1.x first.

  • Sporadic segfaults of busybox (ash) when running shell scripts on ar71xx have disappeared with the latest updates (#1157)

Known issues

  • Default TX power on many Ubiquiti devices is too high, correct offsets are unknown (#94)

    Reducing the TX power in the Advanced Settings is recommended.

  • The MAC address of the WAN interface is modified even when Mesh-on-WAN is disabled (#496)

    This may lead to issues in environments where a fixed MAC address is expected (like VMware when promiscuous mode is disallowed).

  • Inconsistent respondd API (#522)

    The current API is inconsistent and will be replaced eventually. The old API will still be supported for a while.

  • Frequent reboots due to out-of-memory on weak hardware in larger meshes (#1243)