New Build 42278: 02-05-2020-r42278

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware
Goto page 1, 2  Next
Author Message
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 7260
Location: Texas, USA

PostPosted: Wed Feb 05, 2020 19:15    Post subject: New Build 42278: 02-05-2020-r42278 Reply with quote
WARNING: DO NOT flash this experimental test build unless you know the risks and recovery methods. Report here to provide important info for developers and users. Always state your hardware model & version, mode (e.g. Repeater) and SPECIFIC build (e.g. netgear-r7000-webflash). Avoid discussions and create a new thread for specific problems or questions as this thread is not for support, and posts may be deleted or moved.

Downloads: if a link does not work, try another (alternative @DD-WRT website)
https://download1.dd-wrt.com/dd-wrtv2/downloads/betas/2020/02-05-2020-r42278/
ftp://ftp.dd-wrt.com/betas/2020/02-05-2020-r42278/
Note: for wget (or curl) with CLI flash (`write {f/w} linux`), change the https to http, use `curl -k {link} -o {file}`, or ftp

Changelogs:
SVN* changelog since last build: 42174
Summary: (deprecated after 29739)
*Github mirror: https://github.com/mirror/dd-wrt/

Important: if reporting any issues, provide applicable info (GUI syslog, `dmesg`, `cat /var/log/messages`, etc.)
Or put into SVN ticket. For firewall issues, also provide "iptables" info (`iptables -L`, `iptables -t nat -L`, & the /tmp/.ipt file).

Issues, observations, and/or workarounds reported:
1. DNScrypt is mostly only using v2 protocols now, but requires Golang that DD can't use: 6246
2. WDS does not work on Broadcom ARM devices (only MIPS<->MIPS)
3. VAPs not working at boot fixed for unbridged VAPs with r40564:40566. Workaround startup command:
sleep 10;stopservice nas;stopservice wlconf;startservice wlconf;startservice nas (there are a few alternatives to search)

Notes:
1. SFE accelerated NAT is in 33006+ builds but only in kernel 3.2 and newer
2. 'KRACK' vulnerability fixes were completed in r33678 for Broadcom, including k26 (33655) & k24 (33656); use 33772 or later.
3. Bridge modes on k4.4 devices may sometimes work in some configurations in certain builds but are not supported by the bcmdhd driver. Use client or repeater instead as WDS doesn't work with Broadcom ARM either (see Issues below).
4. PBR/UDP with SFE working again since r40513 (see 6729)
5. CAKE scheduler changes "completed" with r41057 (see 5796) & FQ_CODEL_FAST with r41027 (reset first!)
6. Reset button was broken in 40571; fixed in build 40750.
7. Radio Timer / GTK Renewal issues, syslog spam and wireless issues (BCM MIPS) fixed with r41662
8. New Broadcom build option for 8MB+ K2.x devices (limited currently):
broadcom_K3X_mipsel32r1 [BS has tested on a WRT600N v1.1]
9. CVE-2019-14899 VPN fix (r41784: applicability depends on VPN setup) and GUI toggle (r41812): ticket 6920, 6928, 6931, 6932
10. In-kernel samba now used and default min/max versions have changed, so change them if needed: 6954, 6957

Template example to copy (after "Code:") for posting issues, be sure to include the mode in use (gateway, AP, CB, etc.):
Code:
[b][u]Router/Version: [/u][/b]
[b]Mode: [/b]
[b]File: [/b]
[b]Kernel: [/b]
[b]Status: [/b]

_________________
Official Forum Rules, Guidelines, and Helpful InformationFirmware FAQInstallation WikiWhere Do I Download Firmware?
DON'T use Chromium-based browsersRTFM/STFW - TL;DR is NOT an excuse. • Why Should I Care What Color the Bikeshed Is?
Please DO NOT PM me with questions; Ask in the forum.

---------------------------------------------------------

Linux User #377467 counter.li.org / linuxcounter.net
Sponsor
tinkeruntilitworks
Guest





PostPosted: Wed Feb 05, 2020 20:21    Post subject: Reply with quote
Router: Netgear R7000P
Kernel: Linux 4.4.212 #850 SMP Wed Feb 5 08:39:22 +04 2020 armv7l
Mode: Gateway/AP 2.4GHz 5GHz Unbound JFFS2 static leases
Status: up a few hours all seems well
twindragon6
DD-WRT User


Joined: 29 Jun 2008
Posts: 132

PostPosted: Wed Feb 05, 2020 20:43    Post subject: Netgear Nighthawk R7000 Reply with quote
Router/Version: Netgear R7000
Firmware: DD-WRT v3.0-r42278 std (02/05/20)
Kernel: Linux 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l
Mode: Gateway
Reset: No
Previous: 01-30-2020-r42174
Status: Working



Logs.txt
 Description:
Logs

Download
 Filename:  Logs.txt
 Filesize:  265.4 KB
 Downloaded:  42 Time(s)

flyzipper
DD-WRT User


Joined: 21 Feb 2016
Posts: 412

PostPosted: Wed Feb 05, 2020 22:11    Post subject: Reply with quote
Router/Version: Netgear R7000
Firmware: DD-WRT v3.0-r42278 std (02/05/20)
Kernel: Linux 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l
Previous: r42174
Mode/Status: Gateway / working
Reset: no
Issues/Errors: Working well so far.

Uptime: 3hrs 47min
Temperatures: CPU 64.7 °C / WL0 46.5 °C / WL1 52.5 °C
CEGN
DD-WRT User


Joined: 05 Nov 2010
Posts: 57
Location: Mx

PostPosted: Wed Feb 05, 2020 23:31    Post subject: Reply with quote
Router/Version: Linksys EA6900 v1.1
Mode: Gateway
Kernel: Linux Brainiac 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l DD-WRT
Status: Working (but ftp issue)

Proftpd dont show any files from the folder, same behavior as in previous build.

_________________

  • Linksys EA6900 + Vortex CFE
  • Linksys E900
Valeriy_tc
DD-WRT User


Joined: 03 Sep 2016
Posts: 57
Location: Ukraine

PostPosted: Thu Feb 06, 2020 0:17    Post subject: Linksys EA6400 Reply with quote
Router/Version: Linksys EA6400
File: DD-WRT v3.0-r42278 std (02/05/20)
Kernel: Linux 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l
Mode: Gateway/AP
Status: No issues so far.
Reset: No.

Samba works well! Thanks!
mj666
DD-WRT Novice


Joined: 26 Nov 2010
Posts: 22

PostPosted: Thu Feb 06, 2020 10:21    Post subject: Reply with quote
SMB shares for all of my routers (see signature) are working again as expected. Many Thanks.
_________________
Asus AC-RT88U (asus_rt-ac88u-firmware_44213.trx)
Asus AC-RT68U (asus_rt-ac68u-firmware_44213.trx)
Asus AC-RT66U (dd-wrt-44213-Asus_RT-AC66U.trx)
Linksys E3000 (dd-wrt.v24-44213_NEWD-2_K3.x_mega-e3000.bin)
Linksys E4200 V2 (openwrt-18.06.5-kirkwood-linksys_viper-squashfs-sysupgrade.bin)
amadeus
DD-WRT Novice


Joined: 06 Nov 2019
Posts: 26

PostPosted: Thu Feb 06, 2020 12:39    Post subject: Reply with quote
Router/Version: Netgear R6700v3
Firmware: DD-WRT v3.0-r42278 std (02/05/20)
Kernel: Linux 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l
Previous: r42174
Reset: No
Mode: AP/USB
Status: Working well so far.

Temperatures: CPU 65.2 °C / WL0 44.9 °C
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 6394
Location: Netherlands

PostPosted: Thu Feb 06, 2020 13:15    Post subject: Reply with quote
Router Model: Netgear R6400v2, board_id: U12H332T30_NETGEAR

Firmware Version: DD-WRT v3.0-r42278 std (02/05/20)
Kernel Version: Linux 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l

Upgraded from: ] DD-WRT v3.0-r42132 std (01/28/20)
Reset: No, not this time

Status: Up and running for 24 hours, basic setup as Gateway, static leases, OpenVPN client (on PIA) with Policy Based Routing up and running, 2,4GHz, 5Ghz USB storage NAS working, OpenVPN server and WireGuard working.

WSDD2 and Samba(ksmbd/cifsd) are working very well my router and shares are advertised without SMB1 on my Windows client, but there are some errors in the log maybe related to startup sequence:

Code:
root@R6400v2:~# grep wsdd /var/log/messages
Jan  1 01:00:13 R6400v2 user.info wsdd2[987]: starting.
Jan  1 01:00:13 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v4: wsd_send_soap_msg: send
Jan  1 01:00:13 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v6: wsd_send_soap_msg: send
Jan  1 01:00:13 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v6: wsd_send_soap_msg: send
Jan  1 01:00:13 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v4: wsd_send_soap_msg: send
Jan  1 01:00:13 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v6: wsd_send_soap_msg: send
Jan  1 01:00:13 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v6: wsd_send_soap_msg: send
Jan  1 01:00:14 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v4: wsd_send_soap_msg: send
Feb  6 13:22:19 R6400v2 user.err wsdd2[987]: error: wsdd-mcast-v4: wsd_send_soap_msg: send
Feb  6 13:22:33 R6400v2 user.info : wsdd2 : windows service discovery daemon successfully stopped
Feb  6 13:22:33 R6400v2 user.err wsdd2[987]: Terminated received.
Feb  6 13:22:33 R6400v2 user.info wsdd2[987]: terminating.
Feb  6 13:22:37 R6400v2 user.info wsdd2[2146]: starting.
root@R6400v2:~#


Errors:
1. DNS leak see: http://svn.dd-wrt.com/ticket/6020, https://svn.dd-wrt.com/ticket/6908

Otherwise build is fine

Resolved:
1. Pushed DNS servers from VPN provider are used starting with build 41120, if you do not want that, add the following to the Additional Config of the VPN client:
pull-filter ignore "dhcp-option DNS"
2. Build 41174 has an improved VPN Policy Based Routing, it is now possible to use the VPN route command i.e. to route a DNS server via the VPN (in this way you will get rid of the DNS leak), see: https://svn.dd-wrt.com/ticket/6815#comment:1 , and for DNS leaks the second posting of this thread: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318662
3. Another improvement on PBR is that local routes are now copied over to the alternate routing table so there is communication if you have unbridged VAP's and you can set the router's IP on PBR.
See: https://svn.dd-wrt.com/ticket/6821#comment:3
4. Starting with build 41174, the PBR has become more versatile, you can now use " from [IP address] to [IP address] ", so if you enter the following in the PBR field:
192.168.1.124 to 95.85.16.212 #ipleak.net, it will only route IP address 95.85.16.212 (which is ip leak.net) from my IP address 192.168.1.124 via the VPN everything else from this IP address will route via the WAN (this is just an example).
See: https://svn.dd-wrt.com/ticket/6822
Although this command itself supports routing per port this is however only available starting from K 4.17 so we have to rely on scripting for per port routing until then.
5. New OpenVPN TLS ciphers are added in 41308 see: https://svn.dd-wrt.com/changeset/41308
6. Starting with build 41304 you can now choose which TLS Key you want to use: TLS Auth or the newer/better TLS Crypt. See https://svn.dd-wrt.com/ticket/6845#comment:17
7. Starting with build 41664 no problems with GTK renewal and authenticating problems, unbridged VAP works, for bridged VAP's this is still needed:
sleep 20; stopservice nas; wlconf eth1 down; wlconf eth2 down; wlconf eth1 up; wlconf eth2 up; startservice nas
8. Builds from 41786 onwards, when using an OVPN server to connect to your local LAN clients, access might be prevented because of a patch which should solve a recent vulnerability ( see: https://svn.dd-wrt.com/ticket/6928)
This can be mitigated with the following firewall rule:
Code:
iptables -t nat -I POSTROUTING -o br0 -s $(nvram get openvpn_net)/$(nvram get openvpn_tunmask) -j MASQUERADE

When using WireGuard you can run into the same trouble,i.e. not being able to access your local LAN clients. For WireGuard this is the workaround:
Code:
iptables -t nat -I POSTROUTING -o br0 -s $(nvram get oet1_ipaddr)/$(nvram get oet1_netmask) -j MASQUERADE

This method described above also has security and logging concerns as all traffic has the same source address (your router)
An alternate method is using the following rule but it only works if the VPN or Wireguard interface is up and if your VPN or Wireguard interface goes down you have to reapply or run a continuous script checking/applying:
OpenVPN server:
Code:
iptables -t raw -I PREROUTING -i br0 -d $(nvram get openvpn_net)/$(nvram get openvpn_tunmask) -j ACCEPT

WireGuard:
Code:
iptables -t raw -I PREROUTING -i br0 -d $(nvram get oet1_ipaddr)/$(nvram get oet1_netmask) -j ACCEPT

This rule can expose your LAN side to the CVE attack, but if you have your IOT things separated and tight control over your LAN you should be good, if your LAN is hacked you have got bigger problems.

Builds starting with 41813 have an option button in OpenVPN and Wireguard for disabling the CVE-patch 14899

Big Thanks to BS!!

_________________
Routers:Netgear R7800, R6400v1, R6400v2, Linksys EA8500, EA6900 (XvortexCFE), E2000 (converted WRT320N), WRT54GS v1.
OpenVPN Policy Based Routing: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=321686
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN Server Setup:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Wireguard Server setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1183135
Wireguard Client setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324624
Wireguard Advanced setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324787
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
mwchang
DD-WRT Guru


Joined: 26 Mar 2013
Posts: 694
Location: Hung Hom, Hong Kong

PostPosted: Thu Feb 06, 2020 13:21    Post subject: wsdd2 and ksmbd.mountd Reply with quote
I noticed there is a wsdd2 running with the new Samba server.

Does it mean Window$ no longer need to enable/use SMBv1 to see DD-WRT's Samba shares?

Code:
# ps ax
 2298 root     wsdd2 -d -N RT-N18U -G WORKGROUP -b vendor:dd-wrt,model:Asus RT-N18U,sku:42278
 2302 root     ksmbd.mountd -c /tmp/smb.conf -u /tmp/smb.db
 2304 root     ksmbd.mountd -c /tmp/smb.conf -u /tmp/smb.db
 2306 root     [ksmbd-br0]
 2309 root     [ksmbd-vlan2]
 2313 root     [ksmbd-eth0]



_________________
Router: Asus RT-N18U (rev. A1)

May the Force and farces be with you! Live long and proper!

Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832
blkt
DD-WRT Guru


Joined: 20 Jan 2019
Posts: 1619

PostPosted: Thu Feb 06, 2020 13:24    Post subject: Reply with quote
Yes, wsdd2 handles WSD/LLMNR Discovery/Name Service.

There is no need for NetBIOS and SMBv1 now.

Edit: https://svn.dd-wrt.com/ticket/6963


Last edited by blkt on Thu Feb 06, 2020 16:36; edited 1 time in total
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 6394
Location: Netherlands

PostPosted: Thu Feb 06, 2020 16:17    Post subject: Re: wsdd2 and ksmbd.mountd Reply with quote
mwchang wrote:
I noticed there is a wsdd2 running with the new Samba server.

Does it mean Window$ no longer need to enable/use SMBv1 to see DD-WRT's Samba shares?

Code:
# ps ax
 2298 root     wsdd2 -d -N RT-N18U -G WORKGROUP -b vendor:dd-wrt,model:Asus RT-N18U,sku:42278
 2302 root     ksmbd.mountd -c /tmp/smb.conf -u /tmp/smb.db
 2304 root     ksmbd.mountd -c /tmp/smb.conf -u /tmp/smb.db
 2306 root     [ksmbd-br0]
 2309 root     [ksmbd-vlan2]
 2313 root     [ksmbd-eth0]




Yes, see: https://svn.dd-wrt.com/ticket/6967 for more information

_________________
Routers:Netgear R7800, R6400v1, R6400v2, Linksys EA8500, EA6900 (XvortexCFE), E2000 (converted WRT320N), WRT54GS v1.
OpenVPN Policy Based Routing: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=321686
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
OpenVPN Server Setup:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=318795
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Wireguard Server setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1183135
Wireguard Client setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324624
Wireguard Advanced setup guide:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324787
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
ronajon
DD-WRT Novice


Joined: 20 Mar 2019
Posts: 6

PostPosted: Thu Feb 06, 2020 18:55    Post subject: Reply with quote
Router/Version: Netgear R7000
Firmware: DD-WRT v3.0-r42278 std (02/05/20)
Kernel: Linux 4.4.212 #845 SMP Tue Feb 4 21:51:46 +04 2020 armv7l
Previous: r37015M kongac (09/23/1Cool
Mode/Status: Gateway / working
Reset: no
Issues/Errors: Working well so far.

Uptime: 0hrs 45min
Temperatures: CPU 50.2 °C / WL0 45.5 °C / WL1 46.2 °C

upgrade from (very) old version worked without issues.
Only thing todo was restart some of my connected devices
Mile-Lile
DD-WRT Guru


Joined: 24 Feb 2013
Posts: 1516
Location: Belgrade

PostPosted: Thu Feb 06, 2020 19:44    Post subject: Reply with quote
FOR PEOPLE WITH NORTHSTAR UNITS!!!

BS:

Quote:
ixed. was a accidental commit and only affects northstar. will rebuild now all northstar targets and overwrite it on the ftp


Quote:
alle files on the official server for this target type are now replaced
jwh7
DD-WRT Guru


Joined: 25 Oct 2013
Posts: 2594
Location: Indy

PostPosted: Thu Feb 06, 2020 20:06    Post subject: Reply with quote
Mile-Lile wrote:
FOR PEOPLE WITH NORTHSTAR UNITS!!!
BS:
Quote:
fixed. was a accidental commit and only affects northstar. will rebuild now all northstar targets and overwrite it on the ftp

Quote:
all files on the official server for this target type are now replaced
Wrong build thread; you meant for 42287. Wink
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=323025

_________________
# NAT/SFE/CTF: limited speed w/ DD # Repeater issues # DD-WRT info: FAQ, Builds, Types, Modes, Changes, Demo #
x64 OPNsense 20.7.3|FT2020.6: EA6900v1.1@1GHz, F7D8302@532|DD 44528: DIR-810L, WNDR4500v2 & 4000@533,
R6300v1, RT-N66U@663, E1500@353, WRT54G{Lv1.1,Sv6}@250
|OpenWRT 19.7.3: RT-ACRH13, R6220, WNDR3700v4
Goto page 1, 2  Next Display posts from previous:    Page 1 of 2
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum