[WLANware] Features added to the Freifunk Kit

Sven-Ola Tuecke mail2news at commando.de
Tue Aug 22 11:28:33 CEST 2006 

Dan,

ah - tcp_westwood is enabled as of FFF-1.3.0++ You didn't noticed the 
development versions? http://styx.commando.de/sven-ola/testing/ Current 
1.3.4 is usable - besides of the service-extension to olsr-namesrv (has 
bugs) and olsr-bmf (no test run, I expect some iptables fiddeling). Main 
changes: no busybox-awk, mini-wl, compat with wrt54g-v5/6 & wrt54gl-v1.1, 
same uclibc as whiterussian/rc5, iptables updated for freifunk-gateway*.ipk, 
dnsmasq substituted by udhcpd (dnsmasq has own ipk for olsr-dhcp).

Your changes to the kit may not be affected by new version - but that needs 
verifying. Can you compile two busbox binaries (one httpd-only, one 
ipcalc-only)? Symlinks do not work on FAT and I have a FAT-only usecase (not 
for root.tgz of course).

//Sven-Ola

""Dan Flett"" <conhoolio at hotmail.com> schrieb im Newsbeitrag 
news:BAY121-DAV8244DAF94F21C14B9162BAF460 at phx.gbl...
Hi Sven-Ola,

tcp_westwood is compiled into the kernel, but it doesn't seem to be
activated anywhere.  Here is my default /etc/sysctl.conf from the freifunk
kit v1.2.5.

root at kittest02:/proc/sys/net/ipv4# cat /etc/sysctl.conf
kernel.panic = 3
net.ipv4.ip_forward = 1
net.ipv4.ip_conntrack_max = 16348
net.ipv4.icmp_echo_ignore_broadcasts = 1
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 120
net.ipv4.tcp_timestamps = 0
net.ipv4.netfilter.ip_conntrack_tcp_timeout_established = 7200

root at kittest02:/proc/sys/net/ipv4# cat tcp_westwood
0

I've been browsing the CVS at:
http://ff-firmware.cvs.sourceforge.net/ff-firmware/
and I can't find sysctl.conf at all there.  Where are the base files for the
filesystem kept?

I added the routine in gen-openwrt to simply add net.ipv4.tcp_westwood = 1
to sysctl.conf if that's what the user wants.

As for the password - I see now that the nvram var ff_pw is not set at
firstboot time.  I had a typo in the password-setting routine anyway.  I
fixed that and I see that by editing "ff_pw=admin" to something else only
sets the encrypted password in /etc/passwd, leaving ff_pw untouched.

After the typo fix I could log in via ssh with the custom password, but
httpd seems to accept "admin" by default if ff_pw is unset.

So it might be a better approach to leave /bin/firstboot alone and set ff_pw
as the md5crypt-ed password hash in S14ffnvram - and probably use S14ffnram
to re-create /etc/passwd at the same time.

I can find no simple, small program that does an md5crypt hash.  So I guess
the best way is to do it the way it is done inside the firmware - httpd from
busybox.  So can we include an x86 binary blob of busybox/httpd in the kit?

Cheers,

Dan

> -----Original Message-----
> From: wlanware-bounces at freifunk.net
> [mailto:wlanware-bounces at freifunk.net] On Behalf Of Sven-Ola Tücke
> Sent: Monday, 21 August 2006 6:53 PM
> To: wlanware at freifunk.net
> Subject: Re: [WLANware] Features added to the Freifunk Kit
>
> Dan,
>
> nice work - thanx. Will consider adding that stuff. The
> password ist stored encrypted in NVRAM. You need to build a
> password/dropbear compatible hash for ff_pw. What is wrong
> with tcp_westwood (that's enabled by default?)
>
> PS: Current prime focus is the Multicast-via-UDP stuff aka
> olsr-bmf and (as
> always) JFF2-space. Have found another 128k of flash mem
> without big feature-cuts, so here's the outcome which enable
> one to install a complete tcpdump/libpcap on a WRT54Gv5 with
> only 2Mb Flash:
>
> testing/_trx/openwrt-freifunk-1.3.4-de.trx (usable JFFS2 on
> 2Mb: 320k):
>   Kernel: 463k, RootFS: 814k, Jffs2: 2496k/0x270000, TRX: 0x13f000
> openwrt-brcm-2.4-squashfs-rc5.trx: (usable JFFS2 on 2Mb:
> virtally none)
>   Kernel: 497k, RootFS: 999k, Jffs2: 2240k/0x230000, TRX:
> 0x176000 openwrt-brcm-2.4-squashfs-micro.trx (usable JFFS2 on
> 2Mb: 256k)
>   Kernel: 497k, RootFS: 771k, Jffs2: 2496k/0x270000, TRX: 0x13d000
>
> //Sven-Ola
>
> Dan Flett wrote:
>
> > Hi all,
> >
> > I've been doing some work on the English version of the
> Freifunk Kit -
> > hopefully it will work for other languages too.  I've
> modified it so
> > gen-openwrt can set any nvram variable you want as default
> in S14ffnvram.
> > I've also added some routines to gen-openwrt make some other
> > hard-coded settings changeable as well - such as the nameservice
> > suffix, tcp_westwood and the default password.
> >
> > At the moment, the ability to change the default password is broken.
> > Currently my modded gen-openwrt simply uses sed to change
> the "export
> > ff_pw=admin" statement in /bin/firstboot to the user-specified
> > cleartext password.  Obviously it's slightly more complex
> than that.
> > :)  When you set a custom default password the web interface still
> > accepts "admin" as the password, but ssh doesn't let you in
> at all - no password works.
> >
> > Anyway, even though it's not ready for prime-time, I
> thought I'd share
> > a patch of where I'm at at the moment and get people's feedback
> > (especially Sven-Ola :).
> >
> > Here's the patch against en-kit v1.2.5:
> > http://users.bigpond.net.au/flett/freifunk-kit/freifunk-kit_dan.diff
> >
> > And here are the files I've modified or added.  Notice that I have
> > left root.tgz alone. :)
> >
> > http://users.bigpond.net.au/flett/freifunk-kit/gen-openwrt
> > http://users.bigpond.net.au/flett/freifunk-kit/config.sed
> > http://users.bigpond.net.au/flett/freifunk-kit/defaults.network.conf
> > http://users.bigpond.net.au/flett/freifunk-kit/defaults.node.conf
> > http://users.bigpond.net.au/flett/freifunk-kit/functions.sh
> >
> > Cheers,
> >
> > Dan Flett
> >
> > _______________________________________________
> > WLANware mailing list
> > WLANware at freifunk.net
> > Abonnement abbestellen? ->
> > https://freifunk.net/mailman/listinfo/wlanware
> >
> > Weitere Infos zu den freifunk.net Mailinglisten und zur An- und
> > Abmeldung unter http://freifunk.net/mailinglisten
>
> _______________________________________________
> WLANware mailing list
> WLANware at freifunk.net
> Abonnement abbestellen? ->
> https://freifunk.net/mailman/listinfo/wlanware
>
> Weitere Infos zu den freifunk.net Mailinglisten und zur An-
> und Abmeldung unter http://freifunk.net/mailinglisten
>

_______________________________________________
WLANware mailing list
WLANware at freifunk.net
Abonnement abbestellen? -> https://freifunk.net/mailman/listinfo/wlanware

Weitere Infos zu den freifunk.net Mailinglisten und zur An- und Abmeldung 
unter http://freifunk.net/mailinglisten

More information about the WLANware mailing list