New Build - 07/12/2021 - r47040

Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware
Goto page 1, 2  Next
Author Message
blkt
DD-WRT Guru


Joined: 20 Jan 2019
Posts: 3161

PostPosted: Mon Jul 12, 2021 7:51    Post subject: New Build - 07/12/2021 - r47040 Reply with quote
[WARNING]: This thread is only for feedback on this beta release for developers and the community's benefit.
DO NOT flash this beta release unless you understand the risks involved and device specific recovery methods.
Avoid discussions! Create threads for questions, general problems or use search; this thread is not for support.
Please list router model & revision, operating & wireless mode(s) and exact filename/firmware image flashed.


Downloads: (DD-WRT website) HTTPS & FTP (try another if a link does not work)

CLI Flash: 'cd /tmp' then 'wget {file URL}' (or 'curl -k {file URL} -o {file}') with http (not https) or ftp. Then 'write {file} linux'.

Repository: Trac SVN changelog since last build r47033 (GitHub mirror)

Notes:
OpenVPN 2.5.3: Guides, Server, PBR, Reverse PBR, Client (see second post), Kill Switch, update tips, scripts and more.
WireGuard 1.0.20210606/Tools: Guides, Client, Server, Advanced, PBR, KS, update tips, scripts & more. Thanks BS & egc!
• CVE-2019-14899 VPN fix (applicability depends on VPN setup) and GUI toggle since r41813.
Experimental build option for Broadcom 8MB+ K2.x devices (limited currently): broadcom_K3X_mipsel32r1
• Broadcom MIPS devices are now on kernel 4.4. • Support added for TP-Link Archer C8 v2 and v3.
SmartDNSMiniDLNA • Unbound 1.13.1 • CoovaChilli 1.6 • Tor 0.4.5.8 • OpenSSL 1.1.1k • Dnsmasq 2.85 • Privoxy 3.0.32
In-kernel Samba (ksmbd 3.3.9+): default min/max versions changed. • WSD updateANTFS/NTFS3 kernel mode driver++.
• Added swconfig support for Broadcom devices.
CVE-2020-26147, CVE-2020-24586, CVE-2020-24587 & CVE-2020-24588 (Fragattack) fixed.
• "Assign WAN port to Switch" feature removed to be reworked in a future release.

Issues, observations, and/or workarounds reported:
DNScrypt 1.95 can still be used in the GUI, but v2 (not compatible) requires Golang and thus Entware. #6246
WDS does not work on Broadcom ARM devices (only MIPS<->MIPS) & bridge modes on k4.4 devices may sometimes work
in some configurations for certain builds but are not supported by the bcmdhd driver. Use client or repeater instead.
VAPs not working at boot fixed for unbridged VAPs in 40562 - 40566. Effective startup commands discussion thread is here.
If start-up scripts do not work from USB add a delay, e.g. wait script or 'sleep 25'.
Broadcom ARM devices if 5 GHz channels are missing, via Telnet/SSH: 'nvram set brcm_unlock=1' 'nvram commit' 'reboot'
Show us your findings with steps to reproduce, configuration, output, logs and important information below!

Important:
• For issues provide applicable info: 'dmesg', 'cat /tmp/var/log/messages', syslog, klog, serial, strace, tcpdump, wireshark etc.
• Any firewall NAT or WAN issues, show output: 'iptables -vnL', 'iptables -t nat -vnL', 'iptables -t mangle -vnL' and /tmp/.ipt file.
• Search SVN tickets & discuss in forum before opening. Before reporting: reset & manually set up, not restore from a backup.
• Please include operating & wireless modes (e.g. Gateway, Router, AP, CB, WDS, Mesh) & relevant configuration information.

Example Template:
Code:
[b]Router/Version: [/b]
[b]File/Kernel: [/b]
[b]Previous/Reset: [/b]
[b]Mode/Status: [/b]
[b]Issues/Errors: [/b]
Sponsor
amadeus
DD-WRT Novice


Joined: 06 Nov 2019
Posts: 38

PostPosted: Mon Jul 12, 2021 10:22    Post subject: Reply with quote
Router/Version: Netgear r6700v3
Kernel: Linux 4.4.274 #3636 SMP Sat Jul 10 12:14:12 +07 2021 armv7l
Previous: r47000
Mode Gateway, Wireless AP, CTF & FA Enabled. NAT and QOS Off.
Issues: none.
Status Working well so far.
Temperatures CPU 76.4 °C / WL0 48.2 °C / WL1 56.9 °C

Gigabit connection (1000/500) speedtests:
LAN - 950 Down / 480 Up
Wi-Fi 5.7GHz - 400 Down / 450 Up
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 8184
Location: Netherlands

PostPosted: Mon Jul 12, 2021 10:46    Post subject: Reply with quote
Router Model: Linksys E2000 (converted N320)

Firmware Version: DD-WRT v3.0-r47040 mega (07/12/21)
Kernel Version: Linux 4.4.274 #10587 Mon Jul 12 05:15:27 +07 2021 mips

Upgraded: from K3 mega 46979 which had no internet
Reset: Yes

Status: This build is working in contrast to 46979 which had no communication between LAN and WAN.
Will test further but problems seem resolved.

Thanks BS!

_________________
Routers:Netgear R7800, R6400v1, R6400v2, Linksys EA8500, EA6900 (XvortexCFE), E2000 (converted WRT320N), WRT54GS v1.
WireGuard Documents & Guides:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=327397
OpenVPN Documents & Guides: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=327398
IPSET: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=327261
Install guide R6400v2:http://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
IONK
DD-WRT User


Joined: 19 Aug 2011
Posts: 321

PostPosted: Mon Jul 12, 2021 12:48    Post subject: Reply with quote
Router/Version: D-Link DIR-868L Rev.A1
File/Kernel: dir868a-webflash.bin / Linux 4.4.274 #3636 SMP Sat Jul 10 12:14:12 +07 2021 armv7l
Previous/Reset: DD-WRT v3.0-r47033 std (07/08/21) / no
Mode/Status: Repeater Bridge on 5GHz AC/N-Mixed (wl0 is purposely turned off) + USB Storage + lighttpd + ProFTPD + Cron / working
Issues/Errors: none

_________________
▫ RSS feed for DD-WRT releases: https://politepol.com/fd/NfCoAP5bUJXU
easyddup - A simple upgrade/downgrade utility by yoyoma2
saphirely
DD-WRT User


Joined: 13 Dec 2020
Posts: 75

PostPosted: Mon Jul 12, 2021 14:47    Post subject: Reply with quote
Router/Version: Netgear R6250
Firmware: DD-WRT v3.0-r47040 std (07/12/21)
Kernel: Linux 4.4.274 #3636 SMP Sat Jul 10 12:14:12 +07 2021 armv7l
Mode: Gateway, Wireless AP, unbound
Reset: No, not this time
Previous : r47033
Upgrade: Web and 1st succeed without reset.
Temperatures CPU 77.5 °C / WL1 56.3 °C
Load: 0.09, 0.16, 0.08
Uptime 2.5h
Errors: No, not at this moment.

WAN: DHCP
MTU:1500 Auto
Shortcut Forwarding Engine: CTF
Flow Acceleration: CTF & FA
STP: Disable

DHCP Server Enabled - Running
Samba Disabled
WRT-radauth Disabled
WRT-rflow Disabled
MAC-upd Disabled
CIFS Automount Disabled
Sputnik Agent Disabled
USB Support Disabled

Works very well.
mwchang
DD-WRT Guru


Joined: 26 Mar 2013
Posts: 856
Location: Hung Hom, Hong Kong

PostPosted: Mon Jul 12, 2021 15:43    Post subject: Reply with quote
Quick report from Asus RT-N18U:

ksmbd was still not responding to Win 10 build 21H1, error 0x80070035! SMBv1 support already enabled via Programs and Features.

No problem connecting from Linux via smbclient!

Last known working Samba was build 46979.

Other functions and services are working fine.


_________________
Router: Asus RT-N18U (rev. A1)

May the Force and farces be with you! Live long and proper!

Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832
kushwavez
DD-WRT Novice


Joined: 15 Jun 2020
Posts: 32

PostPosted: Mon Jul 12, 2021 17:14    Post subject: Reply with quote
Router/Version: ASUS RT-AC56U
File/Kernel: DD-WRT v3.0-r47040 std (07/12/21) / Linux 4.4.274 #3636 SMP Sat Jul 10 12:14:12 +07 2021 armv7l
Previous/Reset: DD-WRT v3.0-r47033 std (07/08/21) / no
Mode/Status: Gateway, WireGuard, QoS Off
Issues/Errors:
Router's ports became inaccessible after selecting CTF or CTF & FA for Flow Acceleration, WAN port also not working, PC report Host Unreachable and timeouts when pinging, and that the cable isn't plugged in. Only can access the router from WAP. I have another AC56U with r47033, same thing. Tried NVRAM reset too, same. After disabling Flow Acceleration the router starts working again. Tried several times.

attaching logs (dmesg, syslog)



rtac56u_r47040_syslog.txt
 Description:
syslog from the RT-AC56U

Download
 Filename:  rtac56u_r47040_syslog.txt
 Filesize:  38.58 KB
 Downloaded:  41 Time(s)


rtac56u_r47040_dmesg.txt
 Description:
dmesg from the RT-AC56U

Download
 Filename:  rtac56u_r47040_dmesg.txt
 Filesize:  15.24 KB
 Downloaded:  36 Time(s)

flyzipper
DD-WRT Guru


Joined: 21 Feb 2016
Posts: 504

PostPosted: Mon Jul 12, 2021 21:37    Post subject: Reply with quote
Router/Version: Netgear R7000
Firmware: DD-WRT v3.0-r47040 std (07/12/21)
Kernel: Linux 4.4.274 #3636 SMP Sat Jul 10 12:14:12 +07 2021 armv7l
Previous: r47033
Mode/Status: Gateway / working
Issues/Errors: Working well so far.

Uptime: 42mins
Upgrade: via web UI, no issues
Reset: no
Temperatures: CPU 69.1 °C / WL0 47.0 °C / WL1 53.0 °C
mwchang
DD-WRT Guru


Joined: 26 Mar 2013
Posts: 856
Location: Hung Hom, Hong Kong

PostPosted: Tue Jul 13, 2021 5:32    Post subject: Samba problem in builds after 46979 *SOLVED* Reply with quote
OH well, I guess I figured it out!

ksmbd or ksmbd.mountd did NOT bind directly to network interfaces, but to wsdd2!!!!

I compared /usr/sbin/wsdd2 and /usr/sbin/ksmbd.mountd in both build 46979 and build 47040. Turned out that wsdd2 are the same, but NOT ksmbd.mountd.

So I copied ksmbd.mountd from 46979 to 47040. Then I manually killed ksmbd by process ids without using servicestop, thus keeping wsdd2 running. Then I manually started the copied ksmbd.mountd, Samba problem was *SOLVED*, no connection error from Win 10, no netlink errors in DD-WRT's syslog.

Question:

Why can't ksmbd.mountd bind BOTH directly to network interfaces as well as WSDD2? It's more flexible from users' point of view. Any bugs in WSDD2 would not affect the whole Samba service.



BTW, please also read reply if you knew the answer to this question:

DD-WRT Forum :: View topic - Starting wsdd2 and ksmbd using custom configs
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=329658


_________________
Router: Asus RT-N18U (rev. A1)

May the Force and farces be with you! Live long and proper!

Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832


Last edited by mwchang on Fri Jul 16, 2021 12:54; edited 2 times in total
Zyxx
DD-WRT User


Joined: 28 Dec 2018
Posts: 425

PostPosted: Tue Jul 13, 2021 9:39    Post subject: Reply with quote
Router/Version: Netgear R7000
File: netgear-r7000-webflash.bin
Firmware: DD-WRT v3.0-r47040 std (07/12/21) (prev. DD-WRT v3.0-r47033 std (07/08/21))
Kernel: Linux 4.4.274 #3636 SMP Sat Jul 10 12:14:12 +07 2021 armv7l
Mode: Gateway, Wifi disabled, Wireguard for external access, WAN to DSL, Keep Alive reboot 5:00 in the morning
Reset: No
Status: Ok, up 0:32h.

Router/Version: Asus RT-N66U
File: dd-wrt.v24-47040_NEWD-2_K3.x-big-RT-N66U.trx
Firmware: DD-WRT v3.0-r47040 big (07/12/21) (prev. DD-WRT v3.0-r47033 big (07/08/21))
Kernel: Linux 4.4.274 #10583 Mon Jul 12 05:03:50 +07 2021 mips
Mode: Gateway, Wifi disabled, WAN disabled, Wireguard Endpoint for external VPS, connected via LAN to R7800, Keep Alive reboot 6:05 in the morning
Reset: No
Status: Ok, up 0:47h.
thommy181
DD-WRT User


Joined: 16 Mar 2019
Posts: 223
Location: Szczecin, Poland EU

PostPosted: Tue Jul 13, 2021 15:19    Post subject: New Build - 07/12/2021 - r47040 Reply with quote
Router: Netgear WNR3500L v2
Kernel: Linux 4.4.274 #10571 Mon Jul 12 04:29:02 +07 2021 mips
Previous: r47033
Mode: Internet gateway, WIFI AP, Dns server (dnsmasq)
Issues: Poor WAN port performance. On sfe ~260 mbit/s. After OC main CPU to 533 internet speed is good.
Reset: No
Status: Working
Uptime: 24h

I'm update firmware via ssh. Router work in good performance after OC main CPU. In sfe mode on stock clock WAN performance is ~260 mbit/s download. CTF is usable and speed of connection is a bit better. I'm not enthusiast of CTF, that is unsecure option in my opinion. Generally device work good.
mwchang
DD-WRT Guru


Joined: 26 Mar 2013
Posts: 856
Location: Hung Hom, Hong Kong

PostPosted: Tue Jul 13, 2021 15:22    Post subject: Re: New Build - 07/12/2021 - r47040 Reply with quote
thommy181 wrote:
I'm update firmware via ssh. Router work in good performance after OC main CPU. In sfe mode on stock clock WAN performance is ~260 mbit/s download. CTF is usable and speed of connection is a bit better. I'm not enthusiast of CTF, that is unsecure option in my opinion. Generally device work good.

I think it would bypass a lot of tools, including iptables and possibly virus scanners.

BTW, it would be interesting if DD-WRT features ClamAV in the future for routers with lots of RAM. Smile


_________________
Router: Asus RT-N18U (rev. A1)

May the Force and farces be with you! Live long and proper!

Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 10200
Location: Texas, USA

PostPosted: Tue Jul 13, 2021 16:17    Post subject: Reply with quote
I didn't think CTF was available on MIPS, only on ARM. Either way, CTF is native Broadcom just like SFE is native Atheros. Both only bypass the firewall for certain packets only. A router was not meant to have an anti-virus since the filesystem is read-only and it's main function is to route packets. The only thing I could see a need for having anti-virus, etc. for is usb storage, but since that is usually populated by a client machine if your storage is read/write, that would be strictly dependent on said client and how secure it is. If you're downloading known nefarious code... well...
_________________
Official Forum Rules, Guidelines & Helpful InformationFirmware FAQInstallation WikiWhere Do I Download Firmware‽
DON'T use Chromium-based browsersRTFM/STFW TL;DR is NOT an excuse. • Why Should I Care What Color the Bikeshed Is‽
Please DO NOT PM me with questions; Ask in the forum. ---------------------- Linux User #377467 counter.li.org / linuxcounter.net
turmoil77
DD-WRT Novice


Joined: 06 Jan 2013
Posts: 10

PostPosted: Tue Jul 13, 2021 18:16    Post subject: Reply with quote
Router/Version: TP-Link Archer C9 v2
File/Kernel: Linux 4.4.274 #3638 SMP Mon Jul 12 03:45:38 +07 2021 armv7l
Previous/Reset: r46177 std (03/26/21)/No Reset
Mode/Status: Gateway, SFE on CTF, SPI Firewall
Uptime: 11 hours
Temperatures: CPU 75.8 °C / WL0 50.5 °C / WL1 52.0 °C
Issues/Errors: No errors

CURIOSITY AFTER BRAINSLAYER CTF RELEASE: When CFT is ON, ram memory is 40% reserved to use this function

Example: Tp-Link Archer C9 v2
CTF Disabled: Memory Ram Used is 40%
CTF Enabled: Memory Ram Used is 82%


If anyone on this Forum can explain me that, will be very appreciate.
thommy181
DD-WRT User


Joined: 16 Mar 2019
Posts: 223
Location: Szczecin, Poland EU

PostPosted: Tue Jul 13, 2021 20:24    Post subject: Reply with quote
In this case CTF feature need more sources when this function is enabled. I have the WNR3500L v2 and especially in last builds system need more power to good work. Generally capacities are utilisation without user actions. You have many users connected to router or other services utilisation sources. On CTF function packets that operate on device works on the fly. I wonder SPI + CTF it's not non-sense configuration ? Turn on firewall options via GUI and test how it works. Firewall rather is no functional when you turn on CTF. In my opinion CTF is unsecure function and I'm stay on SFE mode. Test your configuration I wonder, that's physically work ?
Goto page 1, 2  Next Display posts from previous:    Page 1 of 2
Post new topic   Reply to topic    DD-WRT Forum Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum