============================= Lantronix IntelliBox I/O Software Release Notes Copyright 2012 Lantronix Inc. ============================= =============== RELEASE SUMMARY =============== Version: 1.4.0.0R2 Release Date: February 21, 2012 o Adds suport for Numonyx M28W320FCT and M23W640HCT FLASH chips. ============== RELEASE STATUS ============== Alpha ( ) Beta ( ) Supplemental ( ) Production (X) Test ( ) ============== RELEASED FILES ============== intellibox_io_1_4_0_0_R2.romz (firmware) intellibox_io_cli_1_4_0_0_R2.html (CLI documentation) ========== PROCEDURES ========== DOWNGRADE: To move BACKWARDS to an older firmware version, use Device Installer's "Recover Firmware" feature, with the "Erase All Flash" option selected, to load via a serial port. The configuration database is not automatically converted when moving backwards. UPGRADE: Web pages are now integrated into the single firmware file. When upgrading, files on the file system are erased. Save any of your own files off-device before upgrading. Configuration settings are retained; where necessary, some configuration items are converted to the newer version automatically. If you experience any difficulty upgrading the firmware, use Device Installer's "Recover Firmware" feature, with the "Erase All Flash" option selected, to recover via a serial port. ============ NEW FEATURES ============ 1.4.0.0R2 --------- o Adds suport for Numonyx M28W320FCT and M23W640HCT FLASH chips. 1.3.0.0R14 ---------- o Changes CLI commands: ssh (was broken because of ambiguity) ssh to ssh ssh 1.3.0.0R13 ---------- o Added serial break detection. o Improved/optimized the serial driver. o Adds CLI commands: secret xcr export secret xcr export secret xcr dump secret xcr dump corresponding to pre-existing ones, but these will challenge the user for the enable level password, if any, and then export or dump secrets. o Now TLOG provides request size and caller information when MALLOC fails. 1.3.0.0R9 --------- o Improved feedback to the user when a serial line's configuration does not match its status (as in CLI backdoor access). o Added warnings about tunnel connect remote addresses that are reserved. Also added warnings about tunnel connect remote addresses that are broadcast or multicast if the protocol is not UDP based. o Added error messages to web manager and CLI to clarify when an integer input fails because the integer value does not fit into the allotted number of bytes. 1.1.0.1R2 --------- o Added Line Protocol "LPD or Tunnel". Allows both Tunnel (in accept mode) and LPD directed to a single serial port. They use the Serial Tx mutex to avoid clobbering each other. 1.1.0.1R1 --------- o EventTrak now supports both a “Trigger A” and a “Trigger B” when sending and receiving local triggers. This adds flexibility and simplifies usage. o Non-standard serial settings are now allowed for Modbus. Former errors are now warnings. They display on the web configuration page. They also display on CLI when changing a relevant parameter. o Web pages are now integrated into the single firmware file. o The CLI has been reorganized to better match the Web Manager organization. See the enclosed IntelliBox.html for documentation. o XML has been reorganized so that XML export shows all of the XML import options. XML import and export now allow selection by line number as well as group. o The email Send function has been updated for improved interoperability. o Implemented criteria for sending TCP data in accordance with RFC 1122 paragraph 4.2.3.4. o Increased the rate that TCP timeouts are checked, to reduce the timeout granularity from 200 msec down to 10 msec. o Implemented TCP configuration options. With the Web Manager, go to the Protocol Stack page and select TCP. For “high performance” behavior, set Ack Limit to 1 packet and set Send Data to Expedited. This is “non-standard” TCP behavior, but expected by customers with performance sensitive applications and matches behavior of legacy products. o Tunnel Packing Mode now works with all of the protocol selections. o Tunnel Disconnect Mode now allows multiple simultaneous options. o Tunnel Serial Settings now contains a DTR configurable. Removed Tunnel Serial Settings “Read Timeout” and “Wait Read Timeout”. o Introduced “Terminal” and “Host” configurables and telnet IAC support. o When uploading a firmware image, accepts both .rom.gz and .romz extensions. o Added IP Multicast Time to Live configurable. o Added access to serial lines via the file system via reserved names Serial_1, Serial_2, and so on. o Added support for IP reassembly. o Modified CLI command “reload factory defaults” so it also reboots the device; this keeps the configuration data in synch. o Upgrades hostname definition from RFC 608 to RFC 1123, which allows the first character to be numeric and expands the maximum length to 63. o LPD daemon now defers port 515 listening and spawning of worker tasks till at least one line selects LPD as protocol. If LPD was being used and subsequently unselected on all lines, these all stay active till reboot. o Alphabetized the web manager index for ease of use. o User is now allowed to export all configuration data by checking "Export secrets" on the web manager. Also adds cautionary notes. o Web manager now works with Google Chrome. o Added customer configurable response timeout to Modbus. o Modem emulation now has access to the CLI (via “ATD 0”) even while it has an active network connection. o Applied "Reassert" concept to Tunnel Modem web layout, organized CLI and XML to match. Implemented "Display Remote IP" configurable on Tunnel Modem to match recent implementation on XPort-AR per customer request. Made Modem Emulation register S0 visible to web, CLI, and XML as "Incoming Connection" configurable. o Provides web and CLI preview of Login Connect Menu layout. Adds web links to cross-reference the constituent parts of the Login Connect Menu. Fixes all of the cross-links, now the appropriate index tab gets highlighted. o Added support for hostname in modem emulation ATD command. =============================================================================== ================ REMOVED FEATURES ================ 1.4.0.0R2 --------- o EventTrak no longer processes serial input data before it is read by the Tunnel. This means that EventTrak will not see data unless a tunnel is up. 1.3.0.0R14 ---------- o Changes CLI commands: ssh (was broken because of ambiguity) ssh to ssh ssh =============================================================================== ========= BUG FIXES ========= 1.4.0.0R2 --------- o Bug 15167: RFC2217 CTS from device is now correct. o Bug 15476: Fixes implementation of RFC2217 capability to set the line baud rate. 1.3.0.0R16 ---------- o Fixed EventTrak "upon matched string " CLI command, and all others of similar form. o Bug 8947: Fixes TCP/AES network disconnect. o Bug 8949: Fixes Web Manager HTTP Authentication page when adding a user and changing AuthType when originally no user was configured. o Fixed a semaphore problem that could block tunnel data flow. o Fixed problems in serial purge. 1.3.0.0R15 ---------- o Bug 8865: Fixes XML import to selected instances of groups. o Improved timing and nesting of interupts. o Fixed HttpLog() failing calls to getpeername() and getsockname(). o Fixed improper closing of socket id -1 in tunnelControlTCPAccept(). o Fixes a semaphore problem in MailboxProcessEvent so it no longer attepmts to work on corrupted information. o Bug 8911: Fixes problem using Tunnel Accept Mode Passwords when the selected Protocol is Telnet. 1.3.0.0R14 ---------- o Bug 7991: SSH server now works with OpenSSH 5.1 client. o Bug 8786: Fixed an ambiguity problem with the CLI ssh commands. o Bug 8787: Clearing SSH server host keys via XML no longer requires reboot to take effect. o Bug 8806: Fixed problem accessing web manager via https with Internet Explorer. 1.3.0.0R13 ---------- o Bug 8461: Now can connect to cli or web servers over PPP serial port. o Bug 8477: XML import no longer fails importing an RSA certificate. o Bug 8557: Fixed Clear of HTTP log. o Bug 8616: FTP no longer hangs after sending a firmware upgrade. o Bug 8691: Prevents corrupted filesystem reads during compaction. o Bug 8764: SSH host RSA keys and SSH host DSA keys now are deleted when a blank value is imported. This can be prevented by using the private key value "". The "delete host keys" item is eliminated. As a result of these changes, these fields now work in the normal expected way. 1.3.0.0R9 --------- o Bug 8170, 2706: Fixed systemic problems in string output to the web manager and XML config/status, where text could be improperly interpreted as tags or other non-content data. o Bug 8171: Fixed telnet inactivity timeout when in the login connect menu. o Bug 8176: Fixed tlog "Not in heap" error due to extra Free call in HttpGetRequest(). o Bug 8189: Web manager Tunnel connect/accept pages now accept AES keys in text form. o Bug 8190: Improved format of Trigger Email Send on web manager. o Bug 8191: Fixed CLI display of uint16 types with value between 1 and 255 if the value zero was to be displayed as either or . o Bug 8195: Fixed TFTP client put. o Bug 8196: Web now displays AES encrypt and decrypt key fields when tunnel connect protocol UDP AES is selected. o Fixed problems with identifier strings on RSS messages. o Fixed problems in handling ARP timeouts, where a socket may be closed unexpectedly or not at all. o Fixed some warnings about Tunnel Disconnect Mode Stop Characters. o Bug 8258: Fixed SSL Tunneling for larger packet sizes. Fixed problem loading intermediate SSL authorities from Flash upon initialization. Fixed problem updating web display of intermediate SSL authorities. o Bug 8228: Clarifies error messages about hex input; now mentions byte(s) required. No longer accepts punctuation before first byte. o Bug 8293: Fixed XML import of HTTP Authentication. o Fixed a problem observed as incorrect "Changed value to..." in the web display for Tunnel Packing Mode Send Character. It also was a problem exporting these values greater than 0x7F. o Bug 8335: Fixes the default LPD queue name. o Bug 8376: fixes FTP "pwd" command. o Bug 8377: File system "compact" no longer slows concurrent operations. o Bug 8413: Fixes terminal menu connection to a host. o Bug 8435: SSH tunnel now shuts down when the remote connection ends. o Bug 8436: SSH CLI connection no longer gets trash data. o Bug 8439: SSL tunnel now shuts down when the remote connection ends. o Bug 8441: TeraTerm SSH to CLI no longer hangs at the enable level "?". o Bug 8447: Web manager no longer limits EventTrak match string length. Also upgrades EventTrak web interface to provide clickable text for radio buttons and checkboxes. o Bug 8461: Now can connect to cli or web servers over PPP serial port. o Bug 8477: XML import no longer fails importing an RSA certificate. 1.1.0.1R3 --------- o Bug 8111: Suppresses warnings and informational messages (code 100) when using FTP. Almost all FTP clients failed to handle code 100 as informational, instead relaying the message when some subsequent FTP operation was attempted. o Bug 8124: Fixed Flash version update problem; if we first upgrade firmware that involves updating the Flash format, and then attempt a subsequent firmware upgrade that again updates the Flash format WITHOUT RELOADING FACTORY DEFAULTS SINCE THE FIRST FIRMWARE UPGRADE, now the second Flash format change will be performed. o Bug 8141: Fixes IntelliBox lockup with Modbus TCP activity. 1.1.0.1R2 --------- o Bug 8036: Fixed tunnel disconnect with Telnet protocol when the connection is closed by the network. o Fixed state of mutex when the mutex holder is being swapped to a waiting task. o Bug 8078: Fixes problem with pin name in XML export. 1.1.0.1R1 --------- o Fixed problems in elapsed time computation. o Bug 4064: There is no longer any limit to the size of a file that may be uploaded via the web browser. o Bug 6302: Long tags no longer throw XML parser into infinite loop. o Bug 6576 and 6637: All printable characters are now allowed in passwords. However for XML, the characters <>’&” must be encoded as < > ' & " respectively. o Escalation C-070920-99571, bug 6704: Added configurable “Send Data” on protocol TCP. In combination with “Ack Limit”, this covers real time performance for both directions of flow. o Bug 6754: After changing line protocol from tunnel, tunnel now stops listening. o Bug 6802: After disabling line, tunnel now stops listening. o Bug 7128: XML now imports the /> closing tag correctly. o Bug 7149: Tunnel serial input data will flow off after filling some buffers when there is not yet a network connection. o Escalation C-080229-105445, bug 7216: Fixes resource problem after four successful SSH host connections. o Bug 7259: Ethernet now performs link negotiation only when the speed is “auto”. Here is the table of allowed combinations of PHY settings: Duplex\Speed auto 10 100 auto auto(10/100)(H/F) Not allowed Not allowed half auto(10/100)(H) 10 H 100 H full Not allowed 10 F 100 F o Bug 7276: Fixes serial and tunnel control of built-in CP groups for status signals and hardware device control. o Bug 7282: Fixes SNMP Get of an item in a table. o Bug 7325: Web manager now works with the Safari browser. o Bug 7326: Web manager now works with an iPhone. o Escalation C-080319-106174, bug 7346: SSH access is now faster. o Bug 7379: Fixes XML import line enable defaults. o Bug 7384: Fixes problem with an enabled CP group getting disabled after XML import even though the XML says to enable it. o Bug 7428: Adds 5 second penalty if a CLI password does not match. o Bug 7432: SSH now produces the full size public key in all cases. o Bugs 7515, 7534: Fixed problem where XML import occasionally failed. o Bug 7567: Fixes [no] echo when connected from serial to the CLI. o Bug 7594: Deleting “admin” from HTTP made the web inaccessible. Now when the last user under a URI is deleted, the authorization type is set to “none”. o Bug 7596: Web pages no longer fail loading with Firefox 3.0. o Bug 7603: Changed the SNMP sysObjectID from 991 to 244. o Escalation C-080627-109986, bug 7616: Now attempts DHCP for 126 seconds before failover to AutoIP. o Escalation C-080702-110080, bug 7619: We now allow UDP receive from any address, any port regardless of the transmit address and port settings. o Bug 7630: CLI prompt to telnet no longer gets delayed. o Bug 7642: Hostname no longer requires reboot to update with XML. o Escalation C-080715-110471, bug 7648: Fixes problem upgrading firmware via an https web connection. o Bug 7656: SSL tunnel no longer sometimes holds data till data flows in opposite direction. o Bug 7687: User interface now enforces the correct maximum length for SSH usernames and passwords. o Bug 7705: ARP cache entries are now aged correctly. In rare cases depending on network traffic, it had been possible to lose an ARP entry. o Bug 7721: Firmware downgrade results in image partition size error. Changed the error message in this case to say, "Use Device Installer serial recovery to downgrade firmware". o Bug 7727: Fixed XML import failure with valid SSH Client User. o Bug 7730: RS485 termination flash setting is now honored; was always using "none". o Bugs 7752 and 7758: Resolved resource problems in SSL. o Bug 7754: After creating an SSL self-signed DSA certificate, it now correctly exports as DSA. o Bug 7768: Fixes CLI kill with looped back port. o Bug 7772: Fixed a memory corruption problem. o Bug 7790: setting tunnel disconnect timeout in IE no longer results in a problem. o Bug 7793: XML now emits the configured (rather than current) HTTP server state in the XCR. o Bug 7796: Since there is no Real Time Clock, skip the date validation of certificates. o Bug 7800: Fixes some broken web links in the web help. o Bug 7876: Improves format for web manager via Firefox on Linux. o Bug 7929: No longer echoes !!!!!!!!!!!!!!!!! before opening backdoor. o Bug 7939: Urgent data no longer gets tossed by tunnel. o Bug 7943: Moves the check for reboot complete into HttpGetRequest, so it blocks premature web access regardless of the authentication settings. o Bug 7944: Displays double-character prompt on all CLIs while device initialization is not completed. This provides an ever-present reminder when the device remains in an incomplete initialization state. o Bug 7953: TCP and UDP should work concurrently on the same local port. Found and fixed a case where Tunnel Connect mode used the incorrect "random" port selection when the protocol is UDP. Unable to reproduce original reported problem. o Bug 7956: CLI menu item array has now been sized for the addition of Host selections. o Bug 7977: Avoids truncating longer CLI prompts. o Fixed web browser problem with special characters in Line names. o Bug 8004: Require username and password to enable HTTP authentication. o Bug 8007: The Web manager now retains settings on XML pages for user onvenience. =============================================================================== ========== KNOWN BUGS ========== o Overrun errors or reboots are sometimes reported when running at a line speed of 115kbps or higher. o Bug 11948: SSH client connection to Linux failed via server keys 768. o Bug 15548: Device Installer failed to assign IP via DHCP/Bootp/Static IP. o Bug 15555: Tlog error message “Probable heap trailer overrun; MALLOC” was seen after an XML import from the filesystem. o Bug 15559: Numerously compacting the file-system can result in loss of System Files and device reboots with factory default settings. o Bug 15564: FTP/TFTP upgrade failed from old flash 1001R14 to 1400R2. o Bug 15565: DI failed to upgrade from old flash 1001R14 to 1400R2. =============================================================================== ================= Known Limitations ================= o SSH and SSL performance is slow due to the heavy processing needed. o Firmware upgrades are slow due to the device running from Flash while needing to erase and write to the Flash. =============================================================================== =============== RELEASE HISTORY =============== 1.3.0.0R16 ---------- o Beta with bug fixes. 1.3.0.0R15 ---------- o Beta with bug fixes. 1.3.0.0R14 ---------- o Beta with product improvements and bug fixes. 1.3.0.0R13 ---------- o Beta with product improvements and bug fixes. 1.3.0.0R9 --------- o Beta with product improvements and bug fixes. 1.1.0.1R3 --------- o Beta with bug fixes. 1.1.0.1R2 --------- o Beta with product improvements and bug fixes. 1.1.0.1R1 --------- o Beta with product improvements and bug fixes. 1.0.0.1R14 ---------- o Official released code. ===============================================================================