My wireguard stopped working after installing today's (r18785-8072bf3322 snapshot. Thing is, I also installed yesterday's and wireguard was working fine.
SOE:
- Installed snapshot about 10 days ago (to test ntfs3)
- Got Wireguard running and (with help) got a working config for a relayd client bridge scenario
- Sysupgraded to yesterday's snapshot. Wireguard works properly.
- Sysupgraded to today's snapshot (r18785-8072bf3322). Wireguard breaks.
From step 2 on the configuration has been identical.
Symptoms: After today's sysupgrade, remote clients can communicate ONLY to masqueraded LAN resources. Remote clients can no longer communicate with the actual router itself on any of the router's internal IP address, including the router's LAN IP address or even the wireguard interface's IP address.
Between yesterday and today's snapshots, I see only these commits (these are from https://git.openwrt.org/?p=openwrt/openwrt.git;a=summary)
- kernel: backport MT7530 IRQ support
- mt7622: bpi-r64: enable using mt7531 switch irq
- mt7622: linksys-e8450: enable using mt7531 switch irq
- qosify: update to the latest version
None of those look to be likely candidates for the breaking change.
I don't know the build system well enough. Is it possible there are changes to wireguard, or the firewall subsystem outside this tree? It's purely chance that I happened to want to test something and ended up using both yesterday's and today's snapshots with an identical configuration. I'd love to get this tracked down before the change that caused it gets buried.