========================================== Lantronix Evolution Device Server Software Software Release Notes Apr 20, 2017 Copyright 2017 (c) Lantronix Inc. ========================================== =============== RELEASE SUMMARY =============== RELEASED FILES: xport_pro_5_4_0_2_R1.romz (firmware) xport_pro_cli_5_4_0_2R1.html (CLI documentation) RELEASE DATE: 04/20/2017 ============== RELEASE STATUS ============== Alpha ( ) Beta ( ) Supplemental ( ) Production (X) Test ( ) DOWNGRADE: To move BACKWARDS to an older firmware version, use Device Installer's "Recover Firmware" feature, with the "Erase All Flash" option selected, to load via a serial port. The configuration database is not automatically converted when moving backwards. UPGRADE: If you experience any difficulty upgrading the firmware, use Device Installer's "Recover Firmware" feature, with the "Erase All Flash" option selected, to recover via a serial port. ============ NEW FEATURES ============ o None. v5.4.0.0.R7 ----------- o Added SHA2 Algorithm support in SSL o SSL certificate upload support added for SHA2 algorithms SHA256, SHA384 & SHA512. o Supports key length 1024 while creation of SSL certificate. o Supports key length 1024 & 2048 while uploading external SSL certificate. o Server Name Identification(SNI) support in SSL Client. - SNI feature can be tested only with SDK application, while our device acts as SSL client. o Display device string once telnet/ssh connection established to device. - This feature shows 'login string' after establishing SSH or Telnet session to the CLI. - By default login string is set to the device name. User can configure this string through CLI or Web UI. - The "Login Sting" should not exceed 32 characters. - It can be enabled or disabled by choosing "Login String State", by default it is disabled. - In Web UI, this feature is available under cli->Configuration. - In Command prompt it is available under "en->config->cli". o Support SSL Cert With * in Name o Support Padding For AES Keys in SDK o Build the SDK with the API's Implementations Requested by the "Accesslink". =============================================================================== REMOVED FEATURES ================ v5.4.0.0.R7 ----------- o Removed DSA key type support in SSL certificate creation and also while uploading external certificates. o Removed 512 & 768 key length support in SSL certificate creation and also while uploading external certificates. o Removed VIP feature / support =============================================================================== BUG FIXES: ========== o BZ# 27452 - Adjustment to software reboot for Flash change. v5.4.0.0.R7 ----------- o BZ# 24786 - device reboot during network scan while running traffic. o BZ# 24792 - Warning texts break in the middle of the word. o BZ# 24795 - FF does not show lantronix logo(orange color L in browser tab) o BZ# 24797 - serial protocol not tunnel warning displayed twice. o BZ# 24799 - XML Importing files with spaces in the name does not inform the user that no changes were made due to the file name. v5.4.0.0.R6 ----------- o BZ# 24760 - please update ssl help text. o BZ# 24761 - suggest to remove radio button for RSA. o BZ# 24762 - suggest to change the default SSL certificate expiry date. o BZ# 24763 - please fix invalid baud rate error message. o BZ# 24764 - unable to upgrade firmware/upload files through https. o BZ# 24765 - dns cache has an unforseen entry. o BZ# 24775 - modbus terminated initially but continued polling after sometime. o BZ# 24789 - web page does not load properly in IE11. v5.4.0.0.R5 ----------- o BZ# 24607: 160118-000000 - SNMP bulk request message causes "empty Response" 5.4.0.0B1. o BZ# 24642: 160216-000021 - Open SSH 6.6.1p1 or 6.9p1> Not Connecting To EDS - Connection Is Reset By Peer. v5.4.0.0.R4 ----------- o BZ# 24193: SHA2 (RSA): Unable to access device via HTTPS port on some hash algorithms/key lengths. o BZ# 24194: SHA2 (DSA): Unable to access device via HTTPS port on some hash algorithms/key lengths. o BZ# 23896: 150824-000038 - Issue with MatchPort AR Modbus Tunnel locking up in 5.2.0.4R1. o BZ# 23611: 150722-000001 - XPort Pro SDK Not Responding Properly to SYN Packets w/Congestion Management Built In SDK 5.4.0.0Bx & V5.2.1.0B8. v5.4.0.0.R1 ----------- o BZ# 23912: 150311-000001 - xPort Pro Evo - Wants Support for SHA256 Certificate For HTTPS. o BZ# 23166: 150514-000044 - XPort Pro - Host Names Containing a Dash Do Not Work With ATDT Modem Commands. o Escalation 140131-000028 - MP AR - RFC2217 and setting RTS or DTR Not Working With CPR. o BZ# 22400: CLI: Request to display message to indicate xml import status. o BZ# 22398: Repeated messages show in the tlog when doing XML import. o BZ# 23167: 150513-000038 - XPort Pro - ATS0=2 Not Working - Won't Manually Accept Incoming Connection. o BZ# 22786: 150408-000003 - XPort AR SSH Not Working In 5.2.0.0R21 With Latest SSH version 6.x o BZ# 21545: 140911-000007 - MP b/g Pro - OEM Configuration feature does not work. o BZ# 22494: 150127-000026 - EVO devices receives multiple values from a GET command causing strange behaviour when using an SNMP agent. o Escalation 140919-000003 - UDP Not Working Correctly When Using Disconnect Time. o BZ# 22328: XPort AR SDK: failed to build. o BZ# 21295: Adds read timeout in transport layer. o Escalated Issue: 130903-000008 - MPR3002000-01 - ATD Connection timeout. o Escalated Issue: 140219-000024 - MP b/g Pro - EVOS Across The Board - DHCP IP fails after A Failed First Attempt o Escalated Issue: 140106-000017: SSL encrypted master secret is sent padded to full size. o Exception handler TLOG messages now output. o Escalated Issue: 140103-000030 - EDS1100 - EVOS - SSH Versions Not Working With Version 6.2.P2. o Escalated Issue: 130924-000082 - EVOS Across The Board - DHCP scenarios no longer exhaust heap. o Escalated Issue: 131007-000020 - EDS1100 - Modem Mode Connections Fails To Enter Command Mode. o Escalated Issue: 131203-000035 - EVOS Across The Board - Evolution devices "eating" a character after RFC2217 break? v5.2.0.4R1 ---------- o Escalated Issue: 130612-000004 - EDS00812N-01 - F11-Boot Loop Appears To Be An Issue With SNMP. o Escalated Issue: Matchport AR I2C Reading Issues o BZ# 18227: Set MSCR register in bootloader for low drive strength. o Escalated Issue: 130219-000057 - XPort Pro - Needs The System To Support Padding For AES Keys in SDK. o Escalated Issue: 130212-000011 - MP b/g Pro - Does Not Support SSL Cert With * in Name (*.appspot.com). o Escalated Issue: 120515-000003 - XPort AR - Packing Mode Not Working Correctly in 5.2.0.0R20 Worked In 5.1.0.0R13. o Escalated Issue: 121203-000016 - Xport Pro - 5.2.0.0R25 SDK - Heap Corruption Using Large SNMP MIBs" with the tag xport_pro_5_2_0_4_B5. o Escalated Issue: 120801-000004 - XPort Pro (EVOS) - When Entering 255 Chars In XML File Name The File System Web Page Is Unresponsive o Escalated Issue: 120103-000013 - XPort Pro RTS line toggle Fails With RFC2217 & CPR. o Escalated Issue: 111227-000007 - EDS1100 - Self-Signed SSL Cert. - Generates Same Serial Number - FireFox Fails. o BZ# 16005: Removes 0xF0 command from flashCfiQuery only for mfg=0x89, dev=0x17. o BZ# 11948: Shortens text message so we can read the actual error code. o BZ# 14547: Removes "failed window adjust" debug tlog. o BZ# 15169: Web Manager - update copyright to 2012. o BZ# 15227: Web Manager page is now okay after file system is formatted. o BZ# 15228: Now able to configure hostname in ssh known host. o BZ# 15250: CLI user may now select AES protocol first, and then set the AES keys. o BZ# 15382: Now passes optional message buffer into email send. o BZ# 15383: Two changes to digest authentication: * Authentication records now hold the two prior used nonces instead of just the single previous nonce * A stale nonce value (old or next older) is accepted for the new-nonce exchange if the record has already been marked stale and the request is received within the stale nonce timeout period (3 minutes). o BZ# 15449: CLI Tunnel Accept Mode now can configure protocol TCP/AES. o BZ# 16005: Removes 0xF0 command from flashCfiQuery. o BZ# 16273: SSL server name verification is now case-insensitive. v5.2.0.2 R1 ------------ o BZ# 15638: RTS output is showing asserted when hardware flow control is off. o BZ# 15745: unsaved changes warning is not seen when encryption is enabled or disabled. o BZ# 15684: WebM: Warning message of WLAN not written to flash is displayed twice. o BZ# 15676: PAE state is different in webm and CLI. o BZ# 15752: kill session command missing in line1. o BZ# 15545: webm shows garbage after formatting file system. o BZ# 15227: webm page shows garbage after file system is formatted. o BZ# 15228: Unable to configure hostname in ssh known host. o BZ# 16273: SSL certificate not verified. =============================================================================== Known Bugs: ----------- Known Limitations: ------------------ o SSH and SSL performance is slow due to the heavy processing needed.