Turris OS 6.2.4 is now in the Testing branch

Dear Turris users,

There were discovered some security vulnerabilities, which we decided to fix in Turris OS 6.2.4. This release is now in the testing branch.

Release notes:

  • BIND updated to 9.18.11 (security update)
  • OpenSSL updated to 1.1.1t (security update)

We appreciate any feedback regarding this release.

4 Likes

Bring the update for HBL users as well.

I also see kernel update to 5.15.93

Yes, you see it correctly, and that’s correct. We have not mentioned Linux kernel update in the release notes as we are trying to update it as much as we can and just keep the changelog short and simple with highlights.

1 Like

MOX classic, HBK branch, .5 GB, 2x WiFi, simple config, all seems OK. (*)(%)(+)

(*) for my simple case is rainbow working
(%) except SDIO WiFi
(+) USB3 is working

SDIO wifi still has problems?

It seems so. System log is full of messages like:

Feb 13 18:52:35 MOXjp kernel: [ 7339.234771] mwifiex_sdio mmc1:0001:1: CMD_RESP: cmd 0xb1 error, result=0x1
Feb 13 18:52:35 MOXjp kernel: [ 7339.241985] mwifiex_sdio mmc1:0001:1: Failed to start the BSS
Feb 13 18:52:35 MOXjp kernel: [ 7339.247990] mwifiex_sdio mmc1:0001:1: Failed to start AP

Similarly, kernel log:

[ 7501.882662] mwifiex_sdio mmc1:0001:1: CMD_RESP: cmd 0xb1 error, result=0x1
[ 7501.889795] mwifiex_sdio mmc1:0001:1: Failed to start the BSS
[ 7501.895760] mwifiex_sdio mmc1:0001:1: Failed to start AP

I started getting messages every 5-7 seconds in the log. Turris 1.x

[ 1430.019299] BUG: scheduling while atomic: swapper/0/0/0x00000100
[ 1430.025323] Modules linked in: ath9k ath9k_common xt_connlimit pppoe ppp_async nf_conncount iptable_nat ath9k_hw ath10k_pci ath10k_core ath xt_state xt_nat xt_helper xt_conntrack xt_connmark xt_connbytes xt_REDIRECT xt_MASQUERADE xt_FLOWOFFLOAD xt_CT wireguard pppox ppp_generic nf_nat_ftp nf_nat nf_flow_table nf_conntrack_netlink nf_conntrack_ftp nf_conntrack mt7915e mt76_connac_lib mt76 mac80211 libchacha20poly1305 ipt_REJECT ebtable_nat ebtable_filter ebtable_broute cfg80211 xt_time xt_tcpudp xt_tcpmss xt_statistic xt_recent xt_multiport xt_mark xt_mac xt_limit xt_length xt_hl xt_ecn xt_dscp xt_comment xt_TCPMSS xt_NFLOG xt_LOG xt_HL xt_DSCP xt_CLASSIFY ums_usbat ums_sddr55 ums_sddr09 ums_karma ums_jumpshot ums_isd200 ums_freecom ums_datafab ums_cypress ums_alauda slhc sch_cake rtc_ds1307 ptp_qoriq nfnetlink_log nf_reject_ipv4 nf_log_ipv6 nf_log_ipv4 nf_log_common nf_defrag_ipv6 nf_defrag_ipv4 lm90 libpoly1305 libcurve25519_generic libchacha iptable_raw iptable_mangle iptable_filter
[ 1430.025584]  ipt_ECN ip_tables hwmon exfat ebtables ebt_vlan ebt_stp ebt_redirect ebt_pkttype ebt_mark_m ebt_mark ebt_limit ebt_among ebt_802_3 crc_ccitt compat br_netfilter fuse sch_tbf sch_ingress sch_htb sch_hfsc em_u32 cls_u32 cls_tcindex cls_route cls_matchall cls_fw cls_flow cls_basic act_skbedit act_mirred act_gact configs gpio_pca953x regmap_i2c xt_set ip_set_list_set ip_set_hash_netportnet ip_set_hash_netport ip_set_hash_netnet ip_set_hash_netiface ip_set_hash_net ip_set_hash_mac ip_set_hash_ipportnet ip_set_hash_ipportip ip_set_hash_ipport ip_set_hash_ipmark ip_set_hash_ipmac ip_set_hash_ip ip_set_bitmap_port ip_set_bitmap_ipmac ip_set_bitmap_ip ip_set nfnetlink ip6table_mangle ip6table_filter ip6_tables ip6t_REJECT x_tables nf_reject_ipv6 nfsv4 nfsd nfs nfs_ssc msdos ifb ip6_udp_tunnel udp_tunnel sit ip6_tunnel netlink_diag tunnel6 tunnel4 ip_tunnel rpcsec_gss_krb5 auth_rpcgss oid_registry tun snd_rawmidi snd_seq_device snd_pcm_oss snd_mixer_oss snd_hwdep snd_compress snd_pcm
[ 1430.114954]  snd_timer snd soundcore ntfs lockd sunrpc grace hfsplus hfs cdrom cifs autofs4 dns_resolver nls_utf8 nls_koi8_r nls_cp1255 nls_iso8859_6 nls_iso8859_2 nls_iso8859_15 nls_iso8859_13 nls_euc_jp nls_cp932 nls_cp866 nls_cp864 nls_cp862 nls_cp852 nls_cp850 nls_cp775 nls_cp1251 nls_cp1250 sha512_generic sha256_ppc_spe sha1_generic sha1_ppc_spe seqiv jitterentropy_rng drbg md5_ppc md4 kpp hmac ecb des_generic libdes cts cmac arc4 gpio_keys leds_turris_1x leds_gpio xhci_plat_hcd xhci_pci xhci_hcd ahci libahci libata ehci_platform xfs ext4 mbcache jbd2 dm_mirror dm_region_hash dm_log dm_crypt dm_mod dax button_hotplug ptp pps_core cbc encrypted_keys trusted tpm
[ 1430.262689] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G        W         5.10.167 #0
[ 1430.270179] Call Trace:
[ 1430.272629] [c0b83bd8] [c04d899c] dump_stack+0x98/0xcc (unreliable)
[ 1430.278905] [c0b83bf8] [c005e7d8] __schedule_bug+0x54/0x6c
[ 1430.284397] [c0b83c08] [c08cf2e4] __schedule+0x39c/0x4dc
[ 1430.289711] [c0b83c58] [c08cf474] schedule+0x50/0xf0
[ 1430.294678] [c0b83c78] [c08cf870] schedule_preempt_disabled+0x10/0x20
[ 1430.301124] [c0b83c88] [c08d19e4] __mutex_lock.isra.10+0x444/0x4ac
[ 1430.307310] [c0b83cd8] [f1140664] 0xf1140664
[ 1430.311590] [c0b83d08] [c06bbd3c] led_timer_function+0x98/0x1cc
[ 1430.317513] [c0b83d28] [c00a9ae4] call_timer_fn.isra.32+0x24/0x88
[ 1430.323609] [c0b83d48] [c00a9e30] run_timer_softirq+0x2e8/0x374
[ 1430.329535] [c0b83dd8] [c08d4630] __do_softirq+0x150/0x298
[ 1430.335031] [c0b83e38] [c003b250] irq_exit+0x80/0x8c
[ 1430.340004] [c0b83e48] [c00095e8] timer_interrupt+0x1c0/0x230
[ 1430.345756] [c0b83e88] [c00104d8] ret_from_except+0x0/0x18
[ 1430.351247] --- interrupt: 901 at arch_cpu_idle+0x24/0x68
[ 1430.351247]     LR = arch_cpu_idle+0x24/0x68
[ 1430.360915] [c0b83f50] [c00c5dec] flush_smp_call_function_from_idle+0x4c/0x90 (unreliable)
[ 1430.369188] [c0b83f60] [c08d3db0] default_idle_call+0x50/0x6c
[ 1430.374945] [c0b83f70] [c00664ac] do_idle+0x118/0x144
[ 1430.379999] [c0b83f90] [c0066648] cpu_startup_entry+0x24/0x2c
[ 1430.385750] [c0b83fb0] [c0aaad14] start_kernel+0x4c0/0x508
[ 1430.391238] [c0b83ff0] [c00003e0] set_ivor+0x13c/0x178
[ 1430.397390] ath10k_pci 0000:05:00.0: SWBA overrun on vdev 0, skipped old beacon

HBL is unfortunately currently not getting Turris specific updates because some merge conflicts have to be resolved. People using HBL are currently getting only upstream OpenWrt updates which means the BIND update should be included and OpenSSL should be included once they merge it to OpenWrt 22.02. From what I know, a colleague is working on resolving the merge conflicts right now, so this should be fixed relatively soon. Issues like this are to be expected in HBL.

1 Like

Its not an issue for me its development. Sometimes things dont work. Thanks for the info.

6.2.3->6.2.4 RC1 update ok (no new problems introduced), no unintended cable/wifi or internet downtime. Restart needed.


Turris Omnia 2017, 1 GB RAM, dead eMMC, system running from mSATA SSD, original wifi cards. Storage plugin enabled, LXC containers, tor relay, USB HDD shared over samba4 and minidlna, SQM, Hardwario gateway + MQTT IoT bridge, OpenVPN, PPtP VPN, morce.

Will this patch also include a fix for Turris OS 6.2.3 is out! - #18 by ChrisDeath ?

New RC is out

  • Small tweaks related to Syncthing and Transmission webapps
1 Like

Could you please send us diagnostics or provide the steps how we can reproduce it?

That’s weird, I would suggest reaching our technical department and they should be able to help you, but it won’t be done resolved soon as they are dealing with a lot of tickets right now.

Yes, indeed,

To be sure, I partially disassembled MOX and checked connections of WiFi in module A - all was firmly connected.

I’ll prepare diagnostics and send it to support. Thanks.

Diagnostics sent.
It started to form on its own.
turris-L1 #1513753

Tested 6.2.4 from HBT branch.
MOX (A+C) - USB3 HDD still NOT working. Works fine on 5.4.4, see my comment Turris OS 6.2.3 is out! - #5 by padam

# lsusb -vt
/:  Bus 03.Port 1: Dev 1, Class=root_hub, Driver=xhci-hcd/1p, 5000M
    ID 1d6b:0003  
/:  Bus 02.Port 1: Dev 1, Class=root_hub, Driver=xhci-hcd/1p, 480M
    ID 1d6b:0002  
/:  Bus 01.Port 1: Dev 1, Class=root_hub, Driver=orion-ehci/1p, 480M
    ID 1d6b:0002  
1 Like

Another RC version is released.

  • Kernel update for all routers
    • powerpc: 5.10.168
    • mvebu: 5.15.94
1 Like

6.2.4 RC1->6.2.4 RC2 update ok (no new problems introduced), no unintended cable/wifi or internet downtime. Restart needed.


Turris Omnia 2017, 1 GB RAM, dead eMMC, system running from mSATA SSD, original wifi cards. Storage plugin enabled, LXC containers, tor relay, USB HDD shared over samba4 and minidlna, SQM, Hardwario gateway + MQTT IoT bridge, OpenVPN, PPtP VPN, morce.