mva_ has quit [Read error: Connection reset by peer]
mva_ has joined #openwrt-devel
mva has quit [Read error: Connection reset by peer]
mva_ has quit []
mva has joined #openwrt-devel
mva_ has joined #openwrt-devel
mva has quit [Read error: Connection reset by peer]
<Grommish>
I want to setup a Reverse Proxy to sit in front of a isolated network segment under Ubuntu 20.04.. HAProxy, NGinx, or other? It's a burner box.. E6550 CPU, 8GB Ram, 750gb HHD
<Grommish>
I figure someone has an oponion they can share. My experience is non-existant when it comes to Proxies like that>_<
<Slimey>
:)
mva_ has quit []
mva has joined #openwrt-devel
mitome has quit [Remote host closed the connection]
aiyion has quit [Remote host closed the connection]
aiyion has joined #openwrt-devel
zatwai has quit [Server closed connection]
zatwai has joined #openwrt-devel
<B1773rm4n>
karlp rsalvaterra: I'm currently extending the wiki and right now I am at the ramips article. So I would need some input
<PaulFertser>
B1773rm4n: do you have any specific question about ramips?
<PaulFertser>
B1773rm4n: "The kernel is patched with the command line that has the board name in it. This mechanism is similar to what is done for ar71xx platforms. " this sounds wrong. ar71xx was using machine C code files, and the kernel command line was patched for the boards with silly bootloaders, that's true. But ramips is all DeviceTree based and the command line is embedded in the board DT, not
<Grommish>
Now, if only I had something to test with it.. meh
<blogic>
blocktrron: ping
<blogic>
blocktrron: been trying your latest usteer commits
<blogic>
I was seeing a segfault yesterday
<blogic>
reverting the last 6 commits it went away
<stintel>
Grommish: \o/
<Grommish>
stintel: I created a tuple define for a language I don't know or understand, in order to put it into a project that really doesn't want it, in order to make a package 95% of the targets couldn't hope to run... Welcome to FOSS!
<stintel>
haha
<stintel>
I wonder what the impact of rust in the kernel will have on embedded
<Grommish>
I have no idea of the size difference between rust code and non-rust C
<Grommish>
Are they seriously wanting to do that?
<stintel>
well in case of userspace all the stuff is statically linked which is the reason for the binaries to be huge, iiuc
Rondom has quit [Server closed connection]
Rondom has joined #openwrt-devel
<Grommish>
stintel: *-openwrt-linux-musl is set to dynamically link because I was told it should be
<blocktrron>
reports are currently triggered when scans are triggered
<blocktrron>
roam-state-machine in scan state
<blogic>
scan as in iw dev wlan0 scan ?
<blocktrron>
No, report refers to a beacon-report received by the AP from the client
<blogic>
ok can you explain it for stupid peopel ?
<blogic>
what do I need to do to see if it works and/or trigegr it ?
<blocktrron>
the scan_snr needs to be higher than a clients SNR
rua has joined #openwrt-devel
<blocktrron>
and the client needs to indicate support for beacon-reports
mva has quit []
<blocktrron>
setting the sca_SNR to an absurdly high value (-30) while keeping the trigger_snr reasonable (-80) and then connecting a iPhone should suffice
<blocktrron>
You can check client capability using "get_clients" of your hostapd-vap
<blocktrron>
it is the first entry in the rrm array
<blocktrron>
BIT(5) of the first entry has to be set
<blocktrron>
currently it only does active probing, so depending on your client this might not work when you request a 5GHz op-class
<blocktrron>
also it might currently not work at all (depending on your client), as the op-class usteer currently uses for active probing is not a global-opclass but region-specific
<blogic>
Sun Feb 6 13:59:08 2022 daemon.notice hostapd: wlan0-1: BEACON-REQ-TX-STATUS 1e:6b:f1:2d:07:90 1 ack=1
<blogic>
Sun Feb 6 13:59:08 2022 daemon.notice hostapd: wlan0-1: BEACON-RESP-RX 1e:6b:f1:2d:07:90 1 04
<blogic>
this ?
<blocktrron>
Yes
<blocktrron>
04 means your client rejected the report
<blogic>
what does 5 mean ?
<blocktrron>
5?
<blogic>
ok the android is reporting stuff
<blocktrron>
it's <mac> <seq-no> <response-code> for the response log message
<blocktrron>
There' still some much more stuff to do to properly make a cerdict on 5GHz
<stintel>
would be nice if all this stuff made it into a README in the project git repo
<blogic>
rcpi of 190 looks werid
<blocktrron>
blogic: how prevalent is 21.02 for usteer?
<blogic>
well 21.02 is stable
<blogic>
I run 21.02 for my private and work stuff
<blocktrron>
For more stuff, hostapd needs 2-3 backports on 21.02
<blogic>
ok
<blogic>
will check, thanks !
<blocktrron>
I can also have a look in the coming weeks
<blocktrron>
stintel: yes, readme is also on my agenda
<stintel>
the example config only tells so much :)
<stintel>
and for things that require knowledge of some standards would be cool if that standard is referenced so people know where to look if they want a deeper understanding
<blocktrron>
good point
<blocktrron>
What my conclusion from workign with that is: Standards mean only so much as STAs adhere to it
<stintel>
:P
<blocktrron>
For example, if you send a transition-request with imminent disassoc set to a iPhone, it might reject your request and just breaks it's connection
<blocktrron>
Like - the system indicates it is still connected in the OS, you ahve signal bars, diagnostics cries missing gateway and only way to recover is flight-mode
minimal has joined #openwrt-devel
krishwanth has joined #openwrt-devel
<krishwanth>
I got a working development board with openwrt 15.05 firmware modified by vendor. Vendor doesnt provide buildroot or bsp. Is there a way to dump the bsp files from board. I have acess to uart.
pranav has joined #openwrt-devel
<PaulFertser>
krishwanth: you can probably dump the DT from the board , /sys/firmware/fdt
<pranav>
is nor flash encrypted by openwrt, if not is there a way to encrypt it?
<PaulFertser>
pranav: not encrypted. Why do you ask?
xes_ has quit [Quit: bye..]
<pranav>
working on a project based on openwrt. I need to secure it from being dumped using uart. Even though the source is going to be released under gpl. I didnt ask questions as long as i get paid.
<pranav>
Can it be encrypted?
krishwanth has quit [Quit: Page closed]
xes has joined #openwrt-devel
<PaulFertser>
pranav: where are you going to store decryption keys then?
pranav has quit [Quit: Page closed]
<Slimey>
guessing no where ;P
srslypascal has quit [Quit: Leaving]
Borromini has quit [Ping timeout: 480 seconds]
sankan has joined #openwrt-devel
sankan has quit [Remote host closed the connection]
danitool has quit [Quit: Cubum autem in duos cubos, aut quadratoquadratum in duos quadratoquadratos]
rejoicetreat has joined #openwrt-devel
Tapper has quit [Ping timeout: 480 seconds]
srslypascal has joined #openwrt-devel
rejoicetreat has quit []
srslypascal has quit [Quit: Leaving]
srslypascal has joined #openwrt-devel
srslypascal has quit [Remote host closed the connection]
srslypascal has joined #openwrt-devel
<Slimey>
hwo do i know if a kernel patch is still needed in new releases?
ecloud has quit [Remote host closed the connection]
Borromini has joined #openwrt-devel
danitool has joined #openwrt-devel
Tapper has joined #openwrt-devel
shibboleth has quit [Quit: shibboleth]
reiffert is now known as Guest2022
reiffert has joined #openwrt-devel
Guest2022 has quit [Ping timeout: 480 seconds]
<philipp64>
Anyone else seeing console tracing truncation with Asterisk?
<hanetzer>
could use something like a tpm or somethin. what's the soc on the device?
<dansan>
Can somebody help me understand the purpose of running opkg with IPKG_NO_SCRIPT=1 and --force-postinstall during the offline install of rootfs in the build?
<dansan>
This bypasses any customized behavior that was intended in the postinst script.
<dansan>
hanetzer: oh! hey you! :)
<hanetzer>
oh hey, you!
<dansan>
:D
rua has quit [Ping timeout: 480 seconds]
rua has joined #openwrt-devel
rua has quit [Ping timeout: 480 seconds]
<dansan>
I need a mechanism to install packages with services (init.d scripts) that are NOT enabled by default. I added one, but IPKG_NO_SCRIPT=1 opkg --force-postinstall bypasses it because I control it in the postinst script.
rua has joined #openwrt-devel
pmelange1 has joined #openwrt-devel
pmelange has joined #openwrt-devel
pmelange1 has quit [Ping timeout: 480 seconds]
<aparcar>
blocktrron: can you send the the last working version you know of?
<philipp64>
hanetzer: use TPM for what?
<hanetzer>
storing encryption keys? I'll be honest I don't grok most of tpm except that its a security device of sorts.
<philipp64>
what's the platform?
* Slimey
hugs hanetzer with a rather large squid
<philipp64>
and yes, you could have TPM store the master symmetric key for managing a keystore.
<hanetzer>
philipp64: idk, ask pranav
<hanetzer>
Slimey: eyo friendo o/
<philipp64>
If it's ARM hardware, then the TEE might be an option for a trusted keystore.
<Slimey>
whats shaken
<Slimey>
i got some bsap-203x and bsap-304x into devs hands :P
<Slimey>
those are ppc targets coming up on eol if not already
<aparcar>
PaulFertser: I tried 2.4Ghz (MT7622) now too and it's not funcitonal neither...
<hanetzer>
nothin much. designing rp2040 based keyboards :)
goliath has quit [Quit: SIGSEGV]
Rayyan has joined #openwrt-devel
<dansan>
sweet, I figured it out! So after postinst scripts are run and properly *do not* enable service that I want to remain disabled, prepare_rootfs (include/root.mk) manually scrapes /etc/init.d files and enables them, like I *don't* want.
<dansan>
There's apparently a DISABLED_SERVICE make variable you can pass to target/imagebuilder/files/Makefile's image target, but I have no idea how to feed that.
<dansan>
So at least I can just append my list of CONFIG_NO_SERVICE_ENABLE init scripts and I finally get what I need
pmelange has left #openwrt-devel [#openwrt-devel]
Borromini has quit [Quit: Lost terminal]
Tapper has quit [Ping timeout: 480 seconds]
vchrizz has joined #openwrt-devel
vchrizz1 has quit [Read error: Connection reset by peer]
goliath has joined #openwrt-devel
<rmilecki>
blocktrron: blogic: could you document (or just drop an e-mail) usteer? share what is it, when to use it, how to use it?
<rmilecki>
sounds like some cool software people have no idea about