AnyRover V1 Changelog
Stable 1.6
| Changes from v1.6.23 to 1.6.24 (21 june 2021) |
| Bugfixes: |
| Fix mem leak when handling incoming SMS |
| gpio -h did not work |
| Fix crash on second SMS with command |
| Update dnsmasq: Fixes CVE-2017-14491 - 14496 and CVE-2017-13704 |
| WLAN: update software, fixes KRACK |
| Fix modem answer parsing |
| IPsec: fix parameter modecfg |
| DHCP server: correctly handle options that appear multiple times |
| Fix seg fault on "CBCTL:cmd args" |
| SMS sending: improve recovery after sending error |
| New features: |
| IPsec: add new parameter cfgoption |
| IPsec: add new parameter tnloption |
| Add script to get system time from modem |
| NTP: add new parameters localaccess and ntp_option |
| New command "show ntp" |
| Mobile dial in: check creg status before dialing |
| Changes from v1.6.22 to 1.6.23 (15 july 2016) |
| Bug fixes |
| Fix potential memory leak if AnyControl sent empty command (it did not). |
| SCEP: When updating Certficates, check CA certificate for expiry. |
| Start IPsec tunnel even if no modem present. |
| Fix segfault when "ignition" contains internal commands. |
| Fix memory leak when setting time after GPRMC string. |
| DHCP startup: create config dir if it doesn't exist yet. |
| Do not try to kill non-existing user processes on shutdown. |
| Fix in multi-switch.sh script. |
| New features |
| Firewall: new keyword ipsec to filter packets in tunnel. |
| Firewall: allow to filter based on MAC address. |
| New command show version. |
| show tech: add output of netstat -nap. |
| Tool for datcom commonications. |
| Changes from v1.6.21 to 1.6.22 (4 january 2016) |
| Bug fixes |
| Add missing bugfix that was forgotten when backporting from 1.8 to 1.6.21. Result of the bug were too many open files after a while. |
| Changes from v1.6.20 to 1.6.21 (10 september 2015) |
| Bug fixes |
| Do not print error messages when stopping syslog if no syslogd running. |
| SD-Card: do not try to mount non-existing partitions. |
| Config file: only do dos2unix conversion if carriage return present. |
| Fix typo to make "S22gpiodefault.sh restart" work. |
| gptxt messages: add IPsec status info. |
| IPsec: flush route cache on tunnel up and down. |
| SMS commands: check phone_number for all commands, not just eco. |
| gpio_daemon: |
| Close several file descriptors before forking child process. |
| Fix logging during shutdown. |
| Close tcp server socket on "too many open files". |
| Close and reopen admin sock on "too many open files". |
| Reopen admin sock on config reload. |
| New command to reload config. |
| Fix several memory leaks on config reload. |
| Fix memory leak in adminsock (cablynxctrl). |
| Changes: |
| Multi-switch script: test multiple hop counts to find if link available. |
| Shorten retry interval for IPsec connections (10s,20s,40s -> 10s,10s,10s). |
| Send information about IPsec to AnyControl. |
| Add possibility to reboot AnyRover from AnyControl (needs changes in AnyControl as well). |
| show tech: |
| Add hostname. |
| Add *_target connections. |
| Add device files. |
| Add MTD-information. |
| Add more info about running processes (top -bn1). |
| Add info about routing cache. |
| Use "ls -la" instead of "dir". |
| Changes from v1.6.19 to 1.6.20 (3 december 2014) |
| Certificate script: add possibility to set nsCertType field and bugfix in CA subject. |
| New parameter in phonehome.sh to remotely sleep. |
| New command "show md5" to generate md5sum of all files. |
| Bugfix: fix IP address handling in OpenVPN startup script. |
| Bugfix: make roaming disable function work properly |
| Bugfix: do not open file_target in gpio_daemon until system is up and fix potential segmentation fault. |
| Firewall: add operator ! to allow exclusion rules. |
| Changes from v1.6.18 to 1.6.19 (23 june 2014) |
| Prevent error message on shutdown if no DHCP server is running. |
| Bugfix: make command "sort -o file file" work correctly instead of creating empty file. |
| IPsec: add new parameter to limit tunnel to single protocol or port. |
| Bugfix: correctly implement 802.11n 40MHz channels |
| Bugfix: fix memory leak in gpio_daemon. |
| Security fix: new dropbear SSH daemon version (fix CVE-2012-0920) |
| LEDs: add new patterns. |
| Bugfix: enable modem even if [ppp]start=no (e.g. for SMS handling). |
| Show tech: add "show tech secure" for encrypted dump file. |
| Show tech: add some more information to dump (APN). |
| Kernel: fix potential security problem (local exploit). |
| Bugfix: IPsec sometimes set wrong routes. |
| Firewall: new attributes SNAT and DNAT for NAT rule definition. |
| Bugfix: SNMP information does not need quotes. |
| DHCP: possibility to add hook scripts for DHCP server lease handling. |
| Bugfix: DHCP server did not put complete hostname to leases file; last byte was missing. |
| Shutdown: Reset switch on shutdown, so it will work correctly in boot loader after reboot, even when VLANs were configured. |
| Bugfix: Restart SNMP upon config change |
| Startup: Remove some error messages |
| Changes from v1.6.17 to 1.6.18 (10 march 2014) |
| Bugfix: allow empty fields in certificates for SCEP. |
| Bugfix: execute all shutdown scripts when terminating ppp connection. |
| WLAN: allow certificate based authentication. |
| Adjust command "show ip" to show VLAN switch ports. |
| Bugfix: Some buffer in IPsec code was too small. |
| Bugfixes in MobileIP: avoid long (2.5min) delay when last interface goes down; do not deadlock when no default route is present and IP address changes. |
| Add possibility to disable roaming on 2G/3G/4G interface. |
| Speed up boot process |
| Add backoff mechanism such that the modem waits longer and longer after failed login attempts. |
| Bugfix: IPsec certificate handling could fail when using SCEP. |
| Add support for new modems (Sierra Wireless MC7710 LTE, MC8705 3G). |
| Bugfix: get rid of log messages "Failed to recv on AT socket". |
| New functions gpsrestart and gpsbaud in cablynxctrl. |
| Bugfix: reading SMS failed when too many were present. |
| New parameter to disable switch ports. |
| Make webserver fit to be run as root. |
| Firewall: allow filtering on physical interfaces of a bridge. |
| New script hook for USB mount events. |
| Changes from v1.6.16 to 1.6.17 (29 august 2013) |
| Support for SCEP (Simple Certificate Enrollment Protocol) |
| New command add_connection in cablynxctrl for temporary GPS connections |
| Bugfix: WAN setup ignores failed selrat settings; allow higher selrat values |
| MobileIP: log SSID if connected on wlan |
| SD-Card: new parameter ignore_errors to prevent system from re-mounting SD-card readonly on VFAT system error |
| Bugfix: allow WLAN disconnect through AnyControl |
| Hook-Script: call all scripts in /etc/boot.d/ upon boot completion |
| Allow other scripts to start cron daemon |
| Changes from v1.6.15.4 to 1.6.16 (10 june 2013) |
| Bugfix for Dead Reckoning. Don't use 1.6.15.X images with DR devices. |
| Add possibility to select Radio Access Technology for modem (SELRAT). |
| Increase WLAN TX-Power |
| Allow to use username and password for 3G/4G login. |
| New helper tool alarm, as wrapper for scripts to make sure they don't hang forever. Used in gptxt_handler. |
| Upgrade hostapd and wpa_supplicant to version 1.1. This greatly improves interoperability with iPhone WLAN clients. |
| Certificate handling: allow for certificates in external files. |
| New parameter broadcast_ssid for WLAN AP, to disable SSID broadcasting. |
| Changes from v1.6.15.2 to 1.6.15.4 (19 april 2013) v1.6.15.3 was never released |
| Bugfix in IPsec startup script, a dead lock was still possible: temporary files were deleted too early. |
| Changes from v1.6.15 to v1.6.15.2 (5 april 2013) v1.6.15.1 was never released |
| Bugfix: Routes set by IPsec were wrong for interface ppp0: it used the wrong prefix length. Only concerns configurations where IP addresses from the class based network of ppp0 were used otherwise (e.g. 10.0.0.0/8 addresses with standard Swisscom SIM cards that obtain a 10.X.Y.Z IP address) |
| Bugfix: an obscure timing bug was fixed, where IPsec would not start if MobileIP connected at the wrong moment during startup. |
| MobileIP bugfix for segfault when only one default route with metric 0 is present during startup |
| MobileIP update: new parameter UDPSrcPort to fix the source port of MobileIP tunnel traffic. Needed because Cisco routers sometimes send MobileIP traffic to wrong port. |
| MobileIP: remove lots of unneeded log messages |
| Changes from v1.6.14 to v1.6.15 (18 march 2013) |
| Bugfix: RX level is now shown correctly with dual-carrier modems |
| Bugfix: wpa_cli (WLAN client) did not start anymore |
| Bugfix: WLAN mesh did not set channel correctly |
| Bugfix: Template scripts adsl-3g and multiswitch had some bugs |
| Update WLAN drivers to newest version |
| Add MobileIP (only support for mobile node) |
| Bugfix: A GPIO changed its function in the AnyRover Plus. Adjust in software |
| Add GPS messages for operation of AnyControl as comments to cablynx.conf |
| Bugfix: correctly handle GSM info for MC7710 modems |
| Changes from v1.6.13 to v1.6.14 (12 february 2013) |
| Bugfix in GPS: UBX messages from uCenter did not work. |
| Allow to insert arbitrary GPTXT messages using cablynxctrl. |
| Bugfix: don't start dhcp client if already running. |
| Add carrier check to WAN connections (i.e. will restart if carrier lost). |
| Bugfix: 3G RX level is shown on external LEDs again (broken in 1.6.13). |
| Add support for VLAN trunks on external switch ports. |
| Bugfix: USB-serial dongles with multiple serial ports were not correctly set up (/dev/usbserX device links) |
| New function mipstatus for GPTXT messages. |
| Bugfix: get rid of "RTNETLINK answers: File exists" messages. |
| Bugfix: do not duplicate NAT-rules with IPsec |
| Regularly check modem connection status. |
| Changes from v1.6.12 to v1.6.13 (18 january 2013) |
| Add support for TCP-MSS modification. |
| Bugfix: resolv.conf file was not generated. |
| Bugfix: arguments in SMS commands were not correctly parsed. |
| cablynxctrl can be terminated with exit and quit. |
| Show tech: add uptime data and firewall mangle table, use configured logfile, add some more info for modem status. |
| Add support for SHELL: style commands over _target links. |
| Reorder some startup scripts. |
| Add support for WAN style 3G/4G links (DirectIP), needed for LTE. |
| IPsec hook scripts: multiple hook scripts for single event possible in /etc/scripts.d/ipsec-hooks/*/ (single script instead of directory still possible). |
| Changes from v1.6.11 to v1.6.12 (29 october 2012) |
| Bugfix: Remove error messages during boot caused by new hardware |
| Bugfix: WLAN check for already running processes |
| Bugfix: [firewall] portfw did not work with IP addresses, only with interface names |
| 2 Bugfixes: IPsec configuration was sometimes incorrectly created |
| Bugfix: upd_target source port was not set to default if no source specified |
| Bugfix: system update script did not accept email addresses as attribute values in config file |
| Bugfix: remove log message that appears too often and has no real value |
| Bugfix: get rid of pppd startup timeout that occurred in certain situations |
| Bugfix: make GPS led blink again when reception is OK |
| Bugfix: make SMS system update script work again |
| OpenVPN: add support for lzo compression and user password in file. Fix clientconfig section. |
| Add support for Sierra Wireless MC8704 modem |
| New commands for cablynxctrl: ledcheck, ekfenable, ekfdisable, gpsversion, direction, gps stop/start, esfsettings |
| Firewall: accept-rules now allow for port ranges |
| Add AnyControl installer, and Signal Tool web application |
| Accept cablynxctrl commands 'CBCTL:command' on tcp_target and udp_target connections |
| New command "show debug" or "show tech, and phonehome script" |
| Add support for Cisco AnyConnect (with username/password only) |
| Add some useful scripts: anygator, gptxt_handler, led control |
| Add resolvconf for improved DNS handling |
| Add script templates for dynamic link switching |
| Allow individual WLAN tools to be started and stopped |
| Allow automatic detection of forward/backwars settings for dead reckoning |
| Add support for GPS firmware update (contains no firmware, only helper program) |
| Add DR installation instructions and serial port description to manual |
| Update wireless LAN drivers to newest version. |
| Make max deviation angle for DR installation configurable |
| Change default nameserver entries to new Swisscom nameservers |
| Changes from v1.6.10 to v1.6.11 (3 may 2012) |
| Support for automatic detection of orientation and configuration of dead reckoning. |
| New command in cablynxctrl to list all configured udp/tcp/serial_ connections |
| Small changes to default config: enable SD-card, send GPS data to all dhcp clients. This makes initial testing easier. |
| Changes from v1.6.9 to v1.6.10 (13 april 2012) |
| Bugfix: Allow white space in tcp_server statements |
| Bugfixes for GPTXT messages: - remove trailing NULL byte - correctly cut long lines into chunks - mark continuing chunks with CONT |
| Bugfix: some directories in /var were created with wrong permissions |
| New parameter tcp_timeout: defines time to wait until a new tcp syn is sent after failure. |
| Adjustments for AnyRover Plus: - ADC 4 and 5 for Dead Reckoning signals - external serial ports, GPS bypass - new LEDs - gethwinfo - enable USB ports individually - Mode button |
| Add i2ctools |
| New program accel to read acceleration sensor |
| Add function ekfreset to cablynxctrl |
| NFLOG: Add variable NFLOG_PAYLOAD, which contains part of the payload of UDP packets |
| Modems: Add support for Sierra AC885 USB dongle |
| Bugfix: allow multiple parallel gptxt messages. |
| gpio: allow to read current value of output pins |
| Changes from v1.6.8 to v1.6.9 (2 mar 2012) |
| cablynxctrl: make it work non-interactively for use in scripts |
| Support for graceful shutdown upon ignition signal. This only works with a new kernel which identifies itself with Revision 1 in /proc/cpuinfo. |
| Initial support for Sierra MC7710 modem. |
| WLAN: Fix to correctly handle AP with multiple SSID |
| IMSI checker: change implementation, multiple rules are possible; depending on the IMSI of the SIM card, pppd is started on different ppp interfaces (or not at all). |
| Changes from v1.6.7 to v1.6.8 (6 feb 2012) |
| Bugfix: Get rid of message on shutdown about telnet and PID 0 |
| Set hwclock on shutdown and on boot if system time is newer than build time |
| Fix WLAN mesh code for more than 1 WLAN card and WLAN shutdown. |
| IMSI checker: only start PPP if IMSI fits given value. |
| New tcp_init_str to send some kind of login on tcp_target connections. |
| Changes from v1.6.6 to v1.6.7 (17 jan 2012) |
| Bugfix: Set default source port for UDP connections, not TCP. |
| Bugfix: gpio_daemon segfaulted when restarting TCP/UDP connections and source address had disappeared. |
| Bugfix: OpenVPN was always started, even when set to "start=no". |
| SMS: new parameter catch_all, to process unknown SMS messages. |
| Bugfix: SMS_STATUS returned incorrect values. |
| Give SIM card some time after entering PIN until connection is started. |
| Add DNS proxy (dnsmasq). |
| Bugfix: Correctly parse all SMS if they arrive in short succession. |
| Bugfix: Set system time from HW clock only after setting time zone. |
| Add connect and disconnect hooks for WLAN (client and AP). |
| Add proper system shutdown with stopping of all services. |
| Bugfix: IPsec: add policies for local networks so as not to send local traffic into the tunnel. |
| Bugfix: Suicide did not work anymore. |
| New parameter jump_clock, to allow setting the clock upon boot if it is more than 1000s off. |
| Changes from v1.6.5 to v1.6.6 (8 nov 2011) |
| Add new parameter to IPsec: local_within allows to specifiy IPsec tunnel based on route to target |
| Add support for other USB-serial adapters |
| Add new file target for GPS messages (including file rotation) |
| New parameter extend for SNMP. |
| Changes from v1.6.4 to v1.6.5 (24 aug 2011) |
| Bugfix: correctly copy /etc/scripts.d/ from templates |
| Add timeout to wget in update.sh script |
| Stabilize system: Sane start if no config file found |
| Bugfix: update script can automatically update system, not only firmware |
| Allow GPI status to be queried using cablynxctrl |
| Add AnyLynx compatibility by accepting messages like "OUTPUT X:Y" |
| Add access to EKF status messages in cablynxctrl |
| Add new serial target for GPS messages |
| Improve certificate script to allow handling of CSRs |
| Fix IPsec routing and firewall rules |
| Fix kernel to make 4th serial port work |
| Update kernel to 2.6.32.43 |
| Patch kernel to allow GRE keepalives |
| Add driver for Ericsson modems |
| Update wireless code to add support for new 802.11n WLAN card |
| Update driver for Sierra Wireless modems |
| Add support for multiple SSID on single WLAN AP |
| Add support for firmware update for Sierra Wireless MC7710 |
| Changes from v1.6.3 to v1.6.4 (17 jan 2011) |
| Fix Bug that prevented [script] sections from correctly working (introduced in 1.6.2) |
| Add support for Swap files and partitions |
| Changes from v1.6.2 to v1.6.3 (11 jan 2011) |
| Add Support for NFLOG (perform actions upon firewall events) |
| Allow scripts sections to create symlinks |
| Add support to switch GPO on and off through cablynxctrl |
| Make GPS buffer size configurable to make GPS debug mode work |
| Add XAUTH support and DNS servers to IPsec configuration. This allows connections from Cisco VPN clients (including iPhone) |
| Add lots of options to DHCP configuration |
| Add configuration examples to documentation: sending log files via email, IPsec server for Cisco VPN client, switching GPO |
| Some bug fixes |
| Changes from v1.6.1 to v1.6.2 (24 october 2010) |
| Update Wireless tools (hostapd and wpa_supplicant) to version 0.7.3 |
| Changes from v1.6.0 to v1.6.1 (8 october 2010) |
| Add support for Blowfish algorithm in IPsec |
| Start gpio_daemon with higher priority |
| Improve update script to allow remote updates of modem firmware |
| Fix time calculation in gpio_daemon (it sometimes failed) |
| Add new config parameters start_firewall and start_mangle |
| update show script (user config) to always show ppp interface, even if down |
| Allow SMS commands to send answer to predefined number instead to sender |
| Add x-/y-/z-modem tools |
| Create devices /dev/usbserX for USB-Serial converters |
| Allow configuration of mount point for SD-card |
| Patch kernel to allow oversized VLAN packets. The MTU must no longer be reduced if using VLANs. |
| Changes from v1.4.X to v1.6.0 (24 august 2010) |
| All changes of the stable 1.4 series |
| Rules for Dial on Demand in PPP daemon |
| Support to configure IPsec to accept road warrior clients |
| Upgrade to Linux kernel 2.6.32 |
| Fix support for ADC |
| Fix reboot problem |
| Improve name server support: configure global name servers in [system] |
| Allow to get global name servers and hostname via DHCP |
| Add support for WLAN AP using WPA-PSK and WEP |
| Make WEP encryption work with kernel 2.6.32 |
| Update Open Source applications and libraries to newest stable versions. |
| Allow specifiaction of log level for the syslog daemon. |
| Fix WLAN Regulatory Domains and add IEEE 802.11d |
| Implement STP (Spanning Tree Protocol) |
| Initial support for OSPF |
| Support for IPsec using certificates |
| Support for a local Radius server |
| Support for multiple modems (needed for CabLynx V2 PC104) |
| Fix MAC address problem |
| Fix for IPsec: properly set source address for packets to remote net |
| Support for Sierra Wireless MC8700 modems |
| Initial support for SNMP |
| Support for multiple WLAN cards, and multiple EAP/RADIUS server |
| Support for multiple IP addresses on all types of interfaces (VLAN, WLAN, bridge) |
| Add support to load AssistNow File into GPS receiver upon boot. |
| Allow for custom chains in firewall rule set. |
| Add support for WLAN mesh mode (Draft IEEE 802.11s) |