This just reorders options in file to more appropriate place.

n8v8R authored 5 years ago and Karel Koci committed 5 years ago

This option adds the "rt" expression that you can use to match packet routing information such as the packet nexthop.

This option adds the "bitmap" set type that is used to build sets whose keys are smaller or equal to 16 bits.

This option adds the "objref" expression that allows you to refer to stateful objects, such as counters and quotas.

This is required if you intend to use the userspace queueing infrastructure (also known as NFQUEUE) from nftables.

This is required if you intend to use any of existing x_tables match/target extensions over the nf_tables framework.

This option allows using the FIB expression from the netdev table. The lookup will be delegated to the IPv4 or IPv6 FIB depending on the protocol of the packet.

This module enables IPv4 packet duplication support for nf_tables.

This module enables IPv6 packet duplication support for nf_tables.

Signed-off-by: Karel Kočí <karel.koci@nic.cz>

closes https://gitlab.labs.nic.cz/turris/turris-build/issues/64

# CONFIG_NETFILTER_XT_TARGET_HMARK
This option adds the "HMARK" target.
The target allows you to create rules in the "raw" and "mangle" tables which set the skbuff mark by means of hash calculation within a given range. The nfmark can influence the routing method and can also be used by other subsystems to change their behaviour.

# CONFIG_NETFILTER_XT_TARGET_TCPOPTSTRIP 
This option adds a "TCPOPTSTRIP" target, which allows you to strip TCP options from TCP packets.

# CONFIG_NETFILTER_XT_MATCH_CGROUP
Socket/process control group matching allows you to match locally generated packets based on which net_cls control group processes belong to.

# CONFIG_NETFILTER_XT_MATCH_IPCOMP
This match extension allows you to match a range of CPIs(16 bits) inside IPComp header of IPSec packets.

# CONFIG_NETFILTER_XT_MATCH_L2TP 
This option adds an "L2TP" match, which allows you to match against L2TP protocol header fields.

# CONFIG_NETFILTER_XT_MATCH_OSF
This option selects the Passive OS Fingerprinting match module that allows to passively match the remote operating system by analyzing incoming TCP SYN packets.
Rules and loading software can be downloaded from http://www.ioremap.net/projects/osf

# CONFIG_NETFILTER_XT_MATCH_SCTP
With this option enabled, you will be able to use the `sctp' match in order to match on SCTP source/destination ports and SCTP chunk types.

It requires more backports and for now just leave it

There was an invalid dependency. Correct one is without CONFIG_ prefix.

Signed-off-by: Marek Behún <marek.behun@nic.cz>

There seems to be a dependency on kernel package with magic in it so we
do not have to append magic to kmods as well.

Marek Behun authored 5 years ago and Karel Koci committed 5 years ago

This should fix the Omnia bug when system restarts if no PCIe cards are
connected.

Signed-off-by: Marek Behún <marek.behun@nic.cz>

There were two patches in patches/openwrt/to-upstream directory that
were fixes of hack patch. Those of course should not be send to upstream
and should be part of that specific patch. This commit merges those
patches to that patch.

This reverts commit 0d08bada.

This patch wasn't sent to upstream yet. That is an error.

Storage plugin would be now part of three lists. I don't see a reason
why we should not move it to base install instead of installing it on
top of base system. It would be better to have it optional and to have
some dependencies but I think that as it is now it is confusing to user
that storage plugin disappears or appears out of kind of nowhere.

This introduces one additional update step to update ubus right after
updater. This separates ubus update to separate run and should ensure
that broken ubus state is limited to only few packages.

This was suggested by user and it makes sense to allow users to
optionally use these Luci apps.

Although on Gitlab primary branch is set to be master on build servers
it seems to be still test. This is probably because of our local git
cache. This forces build of master.

These patches seems to be already present in tree so we can drop them
from this patch.

This is release based on OpenWRT 19.07.

This reorders some options and marks various sections by name.

This also force enables BTRFS.

HaaS requires fair group scheduler so we should enable it. This ensures
that it is enabled so HaaS can build.