Jump to content
ndm

Changelog 3.00 and 3.1

Recommended Posts

3.00 is a new experimental branch based on Linux 4.9, see also changelog 2.15.

Supported models:

  • Giga (KN-1010)
  • Start (KN-1110)
  • 4G (KN-1210)
  • Lite (KN-1310)
  • Omni (KN-1410)
  • City (KN-1510)
  • Air (KN-1610)
  • Extra (KN-1710)
  • Ultra (KN-1810)
  • Viva (KN-1910)
  • Omni DSL (KN-2110)
  • Extra DSL (KN-2111)

Share this post


Link to post
Share on other sites

Release 3.00.A.1.0-1:

  • Wi-Fi: implemented WPA3-PSK and OWE support for mt7615 based devices
  • HTTP: implemented "HTTPS-only" access mode
  • SSTP: implemented "VPN-only" HTTP access mode
  • IPv6: implemented IPv6 address assignment to VPN clients (@Marwin requested)
  • DNS: implemented DNS over TLS blocking to force name filtering
  • Web: updated main menu visual appearance
  • Web: added image.png widget to display passwords

Release 3.00.A.1.0-2:
Release 3.00.A.1.0-3:

Bugfixes

Share this post


Link to post
Share on other sites

Release 3.00.A.2.0-1:

  • fixed TLS forwarding vs. DNS filters enabled
  • Wi-Fi: fixed IAPP I/O loop runaway
  • Wi-Fi: fixed SSID, PSK, AuthMode, EncrypType, and PMF adjustment
  • Wi-Fi: fixed compatibility with Null data frame stuffing clients
  • SSTP: fixed compatibility with VPN Client Pro (@sersh, @Кинетиковод reported)
  • PPTP: fixed compatibility with Mikrotik clients
  • HTTP: fixed access to my.keenetic.net and *.keenetic.io (@lazyt reported)
  • TSMB: fixed __ntfs_error crash
  • DLNA: fixed "no space left on the device" errors (сообщил @sersh)
  • Web: fixed component descriptions (@KorDen reported)
  • Web: fixed connection table (@cool reported)
  • Web: fixed page scrolling on mobile devices (@Sergey Zozulya reported)
  • Web: optimized Wi-Fi system log performance

Release 3.00.A.2.0-2:

  • Wi-Fi: fixed re-association after fast transition (@pigovina reported)
  • HTTP: fixed SSL connectivity between Wi-Fi system devices (@AndreBA reported)
  • SSTP: fixed service restart on IPv6 events (@r13 reported)
  • Chilli: fixed operation under Linux 4.9

Release 3.00.A.2.0-4:

  • Wi-Fi: improved PMK-R0 keyholder algorithm
  • Wi-Fi: fixed PMK-R1 key distribution in the mobile domain
  • Wi-Fi: fixed speed regression to OFDM 6 Mbps or CCK 1 Mbps on mt7628 and mt7592
  • Wi-Fi: fixed PPPoE and IPv6 pass-through for hardware accelerated wireless clients
  • Web: fixed markup of zoomed pages (@enterfaza reported)
  • Web: fixed PPP connection labeling (@AndreBA reported)
  • Web: fixed guest segment settings (@Sergey Zozulya reported)
  • Thanks 1

Share this post


Link to post
Share on other sites

Release 3.00.A.2.0-5:

Share this post


Link to post
Share on other sites

Release 3.00.B.1.0-0 (official beta):

Bugfixes

  • fixed switching back to the main L2TP connection
  • AdguardDNS: fixed "unable to extract domain" error
  • Mws: fixed Wi-Fi access point acquisition
  • L2TP/IPsec server: fixed MTU/MRU configuration saving
  • Cloud: fixed source IP address filtering
  • Cloud: fixed IPv6 checkbox saving
  • fixed connection to the PPTP/L2TP over IPSec with ipv6cp option
  • fixed crashes and restarts caused by out-of-memory issues
  • DSL: implemented padding of small packets to the minimum size of 64 bytes
  • Web: fixed IntelliQoS speed test

Share this post


Link to post
Share on other sites

Attention! The official 3.0 release is canceled due to the failure to meet the target delivery date. All 3.0 bugfixes are ported to 3.1, and we are pleased to add some new major features with no substantial change on the system level. The Linux kernel is still 4.9 LTS. In addition to the canonical version format, we implemented easy-to-remember titles of the form "3.X [Alpha|Beta] Y[.Z]" that will be used in the following changelog.

Release 3.1 Alpha 1.2:

  • Wi-Fi: WPA Enterprise support (@VovanVE requested), as a separate component. Configuration:
    • interface {AccessPoint} no authentication wpa-psk
    • interface {Bridge} wpa-eap radius server
    • interface {Bridge} wpa-eap radius secret
  • Implemented DNS-over-TLS and DNS-over-HTTPS (@IgaX requested), as separate components. Configuration:
    • dns-proxy tls upstream {address} [port] [sni {sni}] [spki {spki}] [on {interface}]
    • dns-proxy https upstream {url} {json | dnsm} [spki {spki}] [on {interface}]
  • AdguardDns: added DNS-over-TLS and DNS-over-HTTPS rules
  • DHCP: implemented bootfile (file) and the next-server (siaddr) settings according to RFC 2131:
    • ip dhcp pool {pool} bootfile
    • ip dhcp pool {pool} next-server
  • DHCP: implemented DHCP Relay functionality over PPP and tunnel interfaces
  • DHCP: combined static and dynamic address allocation depending on the DHCP pool configuration
  • Implemented auto-update channel setting:
    • components auto-update channel {channel}
  • ACME: removed ACMEv1 protocol support
  • Torrent: implemented IP policy assignment to the embedded transmission process:
    • torrent ip policy {policy}
  • PPTP server: added password lockout-policy protection
  • DSL: fixed spontaneous DMT driver crashes
  • Opkg: added Wireguard kernel module
  • OpenSSL updated to 1.1.1c
  • Web: updated login form look and feel
  • Web: added NTP configuration to the System settings
  • Web: added License information: controlPanel/credits
  • Web: added "Download as CSV" button to the Wi-Fi System's Transition log
  • Upvote 1

Share this post


Link to post
Share on other sites

Release 3.1 Alpha 2:

  • fixed spontaneous kernel crashes on mt7621
  • added PPTP lockout-policy setting:
    • vpn-server lockout-policy {threshold} [{duration} [{observation-window}]]
  • VPN: fixed negotiating pcomp/accomp parameters 
  • strongswan updated to 5.8.0
  • dropbear updated to 2019.78
  • Web: fixed the "Other connections" tab (@AndreBA reported)
  • Web: fixed "No IP address" setting (@AndreBA reported)

Release 3.01 Alpha 3:

  • Wi-Fi: fixed Band Steering transition from 2,4 to 5 ГГц
  • Wi-Fi: fixed IGMP snooping of SSDP/mDNS/CoAP/LLMNR multiacst groups on KN-1010, KN-1810 и KN-1910
  • Web: fixed login form rendering (@KorDen reported)

Share this post


Link to post
Share on other sites

Release 3.1 Alpha 4:

  • added ICMP protocol to the network filtering and NAT rules
  • Web: implemented auto-update channel selection:
    • Official (Recommended) — official release, stable
    • Preview — pre-release version, beta
    • Dev — development build, draft
  • Web: fixed 3G/4G modem deletion (@r13 reported)
  • Web: fixed drag and drop issue in Safari

Share this post


Link to post
Share on other sites

Release 3.1 Alpha 5:

Release 3.1 Alpha 6:

  • MWS: added backhaul connection details to "show mws member"
  • MWS: added "show mws associations" command for backhaul AP diagnostics
  • Thanks 1

Share this post


Link to post
Share on other sites

Release 3.1 Beta 1:

  • NAT: added GRE and IPIP protocols to "ip static" rules
  • MWS: fixed STP communication between mt7610 and mt76x2 wireless extenders

Share this post


Link to post
Share on other sites

Release 3.1 Beta 2:

  • MWS: fixed MAC ACL configuration (@VVS reported)
  • DLNA: fixed media directory names
  • Chilli: fixed compatibility with Yota USB modems

Share this post


Link to post
Share on other sites

Release 3.1 Beta 3:

  • MWS: fixed error 'system failed [0xcffd004e]'
  • MWS: fixed association with backhaul access points in manual mode
  • fixed timezone offset representation
  • Thanks 1

Share this post


Link to post
Share on other sites

Release 3.1 Beta 4:

  • Wi-Fi: fixed tremendous slowdown of SMB, DLNA, and other embedded applications via 5GHz Wi-Fi on Extra (KN-1710), and Duo (KN-2110)
  • MWS: fixed configuration of Captive Portal segments on extender devices
  • MWS: fixed misinterpretation of Bridge5 as a segment on Keenetic DSL (KN-2010) and Duo (KN-2110)
  • DDNS: fixed profile assignment to a non-existent network interface
  • Web: added MWS extender connection details
  • Web: fixed Safari 10 support
  • Thanks 1

Share this post


Link to post
Share on other sites

Release 3.1 Beta 5.1:

  • Wi-Fi: implemented WPA3-PSK and OWE support for Start (KN-1110), Lite (KN-1310), Air (KN-1610), Extra (KN-1710), DSL (KN-2010), Duo (KN-2110)
  • Wi-Fi: fixed slowdown of SMB, DLNA, and other embedded applications via 5GHz Wi-Fi on Giga III and Ultra II
  • MWS: fixed extender configuration for the external DHCP server scenario
  • NDNS: fixed IPv6 cloud access (error 0x22)
  • L2TP: fixed compatibility with hidemyna.me

Share this post


Link to post
Share on other sites

Версия 3.1 Beta 6:

  • Wi-Fi: implemented WPA3-PSK and OWE support for 4G (KN-1210) and Omni (KN-1410)

Release 3.1 (stable):

  • DNS: fixed internet filtering after soft-reboot (@r3L4x reported)
  • Web: fixed USB LTE modem priority assignment
  • Thanks 1

Share this post


Link to post
Share on other sites

Release 3.1.2 (beta*):

  • OpenVPN: restored BF-CBC support on KN-1210
  • IPv6: forced TTL=64 in the IPv4 6in4 header
  • EoIP: enabled automatic fragmentation
  • EoIP: fixed packet loss
  • L2TP: fixed "security-level public" on L2TP/IPsec connections
  • PPTP/VPN: fixed false-positive brute-force detection
  • DNS: fixed high CPU load in DNS-over-HTTPS mode

* forked as a new experimental version 3.3

Share this post


Link to post
Share on other sites

Release 3.1.3 (beta):

  • Wi-Fi: fixed WPA2/WPA3 PSK compatibility with iOS13
  • Wi-Fi: fixed fast transition vs. WPA2/WPA3 PSK mode for non-WPA3 devices

Share this post


Link to post
Share on other sites

Release 3.1.4 (beta):

  • HTTP: fixed port redirection to "This Keenetic"
  • HTTP: added "Secure" flag to the Set-Cookie header in SSL sessions
  • HTTP: added X-Frame-Options "DENY" header
  • HTTP: implemented SSL server autostart unless otherwise configured:
    • ip http ssl no enable
  • VPN: fixed Android connection failure with the following symptoms:
    • ppp-pptp: fsm timeout
    • ppp: compressor dropped pkt
  • DNS: fixed DNS-over-HTTPS for "ip policy" members
  • USB: fixed USB-Ethernet adapters support (@Олег Осипов reported)
  • fixed "auto" static routes with the explicit gateway address
  • ACME: fixed compatibility with the new Let's Encrypt CDN
  • OpenSSL updated to 1.1.1d

Release 3.1.5 (beta):

  • IGMP: fixed Group-Specific Query processing (@dexter reported)
  • Wi-Fi: fixed FT master key reset on configuration change
  • Wi-Fi: enabled 802.11k/r FT in factory default settings

Share this post


Link to post
Share on other sites

Release 3.1.6 (beta → stable):

  • Web: fixed component selection mechanism

Share this post


Link to post
Share on other sites

Release 3.1.7 (beta):

  • PPTP: enabled ”fastpath” for PPTP/GRE acceleration
  • IPsec: enabled ”fastpath” for XFRM/ESP acceleration
  • HFS+: fixed kernel crash during Timemachine backup
  • FTP: increased virtual memory limit to 16Mb (@Tomel requested)

Share this post


Link to post
Share on other sites

Release 3.1.8 (beta):

  • Wi-Fi: implemented WPA3-PSK and OWE for City (KN-1510)

Share this post


Link to post
Share on other sites

Release 3.1.10 (stable):

  • IPsec: enabled ”fastpath” for L2TP acceleration
  • Wi-Fi: fixed configuration of the extender's backhaul access point

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...