Posted: Mon Apr 10, 2023 7:41 Post subject: Linux Kernel 4.9 EOL since 7th January
Will DD-WRT be moving to the 4.14 Kernel soon?
4.9 has not received any updates - security or otherwise - for 3 months now. _________________ ------------------------------------
Netgear XR500 OpenWrt-23.05.3 (Gateway)
Linksys EA8500 OpenWrt-23.05.3 (Wired AP)
Linksys WRT3200ACM DD-WRT r55460 (spare Wired AP)
Netgear WNDR3700v4 DD-WRT r55460 (spare Gateway)
Photos: https://www.flickr.com/photos/nickant44/albums
Joined: 16 Nov 2015 Posts: 6407 Location: UK, London, just across the river..
Posted: Mon Apr 10, 2023 15:13 Post subject:
Linux kernel for embedded devices is totally different from the mainstream PC/Servers Linux kernel...
Some devices are still on K 2.xx or happily using 3.10, 3.18 or even 4.4, 4.9, 4.14 and ect. those
kernels are very castrated and lot of those have tons of backports and so on...
Well...for some devices OpenWRT is on k 5.. but who cares...as those old K are still ok...and K5 to be castrated so much, not much point of it, unless your device is craving and hardware ready for it... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
However 4.9 is not and yes it is EOL, but serious security vulnerabilities are still backported although not officially.
If there was an easy route to upgrade to 4.19 then that would be an option but there is not
I also run an R7800 on K5.10 (OpenWRT) it works but is slower than DDWRT, the nss build (which is not a hallmark of stability ) is equal fast as DDWRT without (if the router is lightly taxed).
Most embedded development by vendors is still using Linux 2.6.x / 3.10.x / 3.18.x / 4.1.x / 4.10.x / 4.20.x ... the "upstream" for MIPS and ARM outside of smartphones AFAIK are using the 4.x.x paths, and what can and cannot be backported to 4.4, 4.9, 4.14, etc. depends on specific code changes. What is really fun is patching Linux 2.6.x, specifically 2.6.2x.x and 2.6.3x.x against CVEs that apparently apply, even though the code referenced is not the code from the Linux 2.6 tree (function convention changes FTW!)
RHEL 7 / CentOS 7 is still supporting Linux 3.10.x, if memory serves.
For what a router is meant to be and do, implementing a big, fat, slow ass kernel is probably overkill, unless you have full access to certain source code (i.e. Broadcom). Anyhow, happy Chicken Little-ing. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Thank you for your answers!
I guess 4.9 is small and fast and can be used on routers with few resources.
But it's 2023 and I don't know of anyome wanting to use >10 year old weak routers now, especially as internet speeds have risen so much over time.
In all the years I have used DD-WRT, it has always had 4.9.
Now that backporting updates to it are going to involve more work, maybe it should be updated.
Even so, 4.14 will be EOL in another year too.
OpenWrt is moving to 5.15 in its next main release - it will be LTS for a few years more.
If backporting security to 4.9 is ok going forward, I shall refrain from looking up at the sky and just assume it's still there. _________________ ------------------------------------
Netgear XR500 OpenWrt-23.05.3 (Gateway)
Linksys EA8500 OpenWrt-23.05.3 (Wired AP)
Linksys WRT3200ACM DD-WRT r55460 (spare Wired AP)
Netgear WNDR3700v4 DD-WRT r55460 (spare Gateway)
Photos: https://www.flickr.com/photos/nickant44/albums
Well - what an obvious place to look!
/s
So much friendly advice here on this forum. _________________ ------------------------------------
Netgear XR500 OpenWrt-23.05.3 (Gateway)
Linksys EA8500 OpenWrt-23.05.3 (Wired AP)
Linksys WRT3200ACM DD-WRT r55460 (spare Wired AP)
Netgear WNDR3700v4 DD-WRT r55460 (spare Gateway)
Photos: https://www.flickr.com/photos/nickant44/albums
A tired subject, which has been resurrected so many times, usually in spring time a clockwork of rabbit droppings.
Same argument different day...reference a current year, or look at bigger kernel numbers, in name of security etc.
So unless someone has a valid and direct set of concerns which need to be addressed it's same old broken record.
DD-WRT has always taken different approach which involves lots of backporting but also retains hardware support.
Something OpenWrt does not do 19.07 drew a line in the sand for hardware requirements it's supported no longer.
OpenWrt resizes partitions to fit relatively enormous kernel 5.x, packages get larger too & yes on dated hardware.
So with unique limitations, the main question is why does DD-WRT need to be OpenWrt? Why can't we have both?
2016 hardware is no longer your style? x86 requirements met, size, efficiency, performance and better every year.
The only limitation here at this point is an ability to correctly choose and configure hardware tailored to the needs.