Interesting, I have uploaded the ebtables from Kong, I do not use ebtables, but @JohnS@ could you also test this one, it is supposed to work
Yes, egc, the kong binary also works (ebtables is not looping).
(btw: I also do not use ebtables 'actively' it is just initiated by the OpenVPN scripts, this is what gave me somthing to think about when I first encountered the problem ).
I have been dealing with this bug for over a year on my r7000 waiting for someone to fix it. THANK YOU. This needs to be mainlined IMMEDIATELY! Although finding out that Kong has had this bug fixed for quite some time pisses me off. Why wouldn't BS have added it already?
I've been monitoring Trac timeline and ticket 5807 for changes regarding the issue and solution discussed in this thread. So far I have not seen the issue being picked up.
Guys, do you have any suggestions what (besides documenting in Trac) we can do to to have this likely simple fix included in upcoming BrainSlayer builds?
I have been dealing with this bug for over a year on my r7000 waiting for someone to fix it. THANK YOU. This needs to be mainlined IMMEDIATELY! Although finding out that Kong has had this bug fixed for quite some time pisses me off. Why wouldn't BS have added it already?
Are you able to read? If yes, then scroll up, go to the first page of this thread and read quarkysg's comment, there is no fix no bug in the code nothing, he compiled the source and it works, who knows what's broken on BrainSlayers compile.
Since I'm not sure if you are able to jump to the previous page. Quoting quarkysg's comment:
Quote:
I've also encountered the situation where ebtables will hang when it is executed on my DLink DIR-880L running r30342, so this issue has been there for quite a while. To investigate the issue, I downloaded the DD-WRT firmware and compiled a copy of the ebtables executables and to my surprise, my compiled copy of ebtables runs without any problem. So I suspect it could be the developers build bot may have messed up the compilation when compiling for multiple targets.
Joined: 04 Oct 2010 Posts: 28 Location: Fairbanks, AK
Posted: Sun Nov 19, 2017 1:38 Post subject:
What's the newest build that doesn't have this bug? I *think* I may be running into it on my Asus RT68U. I noticed after updating (from a mid-2016 build) that the OpenVPN client (which apparently makes use of eatables?) was no longer starting, looking at top I see the ebtables process as number 1 consuming 50% CPU, load averages over 1, and running ebtables -L manually just hangs.
I tried uploading the binary from this thread, but just got "permission denied" when trying to execute it - and YES, I did the chmod a+x first
I'm thinking at this point, the easiest option is to just go back to an earlier, functioning, build until such a time as this is resolved.
What's the newest build that doesn't have this bug? [...] I'm thinking at this point, the easiest option is to just go back to an earlier, functioning, build until such a time as this is resolved.
Apparently it came up with r30016 . I have not speficially gone back to a version directly before that, but previous builds in the 29xxx range had worked for me.
For me going back is not an option, but that probably depends on your needs and your usage scenarios (e.g. KRACK vulnerability, etc.). Alternatively you could try Kong's builds where the ebtables binary seems fine.
ibrewster wrote:
I tried uploading the binary from this thread, but just got "permission denied" when trying to execute it - and YES, I did the chmod a+x first
Likely some step was missed, please go through quarkysg's post again and - if you want to have the replacement binary survive reboot - move it to jffs and look at my script a couple of post down from quarkysg's post.
Joined: 18 Mar 2014 Posts: 12837 Location: Netherlands
Posted: Sun Nov 19, 2017 11:37 Post subject:
I can confirm that @Quarkysg's isntructions do work.
Mind you he assumes you have made a directory under tmp named root.
I just copied the file with winSCP to /tmp
Joined: 04 Oct 2010 Posts: 28 Location: Fairbanks, AK
Posted: Sun Nov 19, 2017 17:01 Post subject:
JohnS@ wrote:
For me going back is not an option, but that probably depends on your needs and your usage scenarios (e.g. KRACK vulnerability, etc.).
Yeah, the KRACK vulnerability is the reason I updated in the first place. I don't like the idea of going back, but I do need OpenVPN working, so...
JohnS@ wrote:
Alternatively you could try Kong's builds where the ebtables binary seems fine.
I've heard of those, but never tried them. What's the difference?
JohnS@ wrote:
Likely some step was missed, please go through quarkysg's post again
Yeah, not so likely . The steps aren't exactly complicated, nor are they materially different than anything I do a dozen times a week in my day job (not that you'd know that ) That said, see below.
egc wrote:
I can confirm that @Quarkysg's isntructions do work.
Well, you can confirm that they do work *for you*. And, I rather suspect they do work for the majority of people here. I, however, can confirm that they do *not* work *for me*. I get a "Permission Denied" error when trying to test the binary as instructed.
egc wrote:
Mind you he assumes you have made a directory under tmp named root.
Actually, not much of an assumption - that's root's home folder. It's automatically created by the system.
egc wrote:
I just copied the file with winSCP to /tmp
So then just use /tmp/ebtables etc.
And I just copied the file with the built-in scp client on my mac to /tmp/root. See here:
Joined: 04 Oct 2010 Posts: 28 Location: Fairbanks, AK
Posted: Sun Nov 19, 2017 18:43 Post subject:
egc wrote:
try chmod a+x /tmp/root/ebtables
/tmp/root is difficult to work with because you can not cd /tmp/root
Ummm....yes, yes you can. In fact, not only can you cd to /tmp/root, when you first ssh in as root you are already *in* /tmp/root, because that is root's home directory. See here:
Code:
root@israel:~# pwd
/tmp/root
root@israel:~#
You'll notice that the prompt indicates we are in root's home directory, while pwd indicates the current directory is /tmp/root. That's because /tmp/root is the home directory for the root user - there is nothing difficult or special about it. You will also note that I showed the binary with execute permissions:
Joined: 04 Oct 2010 Posts: 28 Location: Fairbanks, AK
Posted: Sun Nov 19, 2017 19:38 Post subject:
egc wrote:
Hmm very strange it is not working for you, your router must be enchanted
That must be it! My router is cursed!
...or maybe I have a different router than you (your signature indicates Netgears and Linksys, I have an Asus), or perhaps a different configuration (jffs enabled vs disabled? Maybe it's trying to write a log file or something and that's what's giving me the permission denied?), or a different build of dd-wrt (mine came from the Asus RT-AC68U folder, your's was almost certainly not from there, unless you also have a 68U), or any number of obscure differences that would be hard to spot.
If I've learned one thing from my years of experience as a sys admin and software developer, it's that just because something works for me doesn't mean that it will work for anyone else