Releases: Victek/Tomato-RAF
Version 1.3e
Release 9014-v1.3e (wip May 5,2014) internal test finished May,16,2014. Forecast Release May,17,2014.
#~ OpenVPN 2.3.4 -- released on 2014.05.02 (Change Log)
The most important change in this release is that TLS version negotiation is no longer used unless it's explicitly turned on in the configuration files, thus reverting back to the 2.3.2 behaviour as interoperability issues were encountered in 2.3.3. Other notable changes include addition of SSL library version reporting, fixing of SOCKSv5 authentication logic and making serial env exporting consistent between OpenSSL and PolarSSL. This release also contains a number of other bug fixes and small enhancements.
The Windows installer I001 has additional code to prevent problems during install and uninstall if installer bitness is wrong or if the OpenVPN-GUI or an OpenVPN process is running. The Windows installers also bundle OpenSSL 1.0.1g, which means that they are immune to the heartbleed vulnerability (OpenVPN-specifics here). All Windows users of OpenVPN 2.3-rc2-I001 through OpenVPN 2.3.2-I003 should upgrade their installations immediately.
#~ MiniDLNA update to version 1.1.2 from original idea by Bao William-bwq518 implemented by shibby.
Changelog.
1.1.2 - Released 06-Mar-2014.
- Show client status on our basic presentation page.
- Add a new force_sort_criteria option, to globally override the SortCriteria value sent by the client.
- Fix a couple resource leaks.
- Add configuration include file support.
- Support DLNA/UPnP-AV searches issued by clients using the Grilo framework.
- Fix some clients playing artwork instead of movie.
- Fix bookmarks on Samsung Series E clients.
- Add an extra folder level if there are multiple media locations.
- Fix some multicast membership issues with changing network settings.
- Make max number of children (connections) configurable.
- Fix choppy playback with some file types on Panasonic clients by increasing the max connection limit..
#~ Comcast DSCP and buffer overflow fix. Thanks to @TVlz for pointing it and Lance Fredrickson (lancethepants) for switch GUI.
ipv6: don't install anycast address for /128 addresses on routers. http://goo.gl/WI0Nk8
Incoming DSCP to 0x00. http://goo.gl/FHUkrq
#~ DNSSEC. credits to Lance Fredrickson (lancethepants).
#~ Linksys E2500 v3, EA6500 v1, Tenda N60 support added. Thanks to @TVlz and bwq for the patch.
#~ dnsmasq -no-resolv -strict-order switch placed in Basic-network GUI like DNSSEC switch too. Explanation:
- The --no-resolv flag simply means; Don't read /etc/resolv.conf. Get upstream servers only from the command line or /etc/dnsmasq.conf
- The --strict-order flag means; By default, dnsmasq will send queries to any of the upstream servers it knows about and tries to favour servers that are known to be up. Setting this flag forces dnsmasq to try each query with each server strictly in the order they appear in /etc/resolv.conf
- The none Flag don't write anything in /etc/dnsmasq.conf file. Leaving control to the user.
#~ router/services.c warnings during (don't tread a pointer as one integer, *ipv6 not used....) compilaton fixed.
#~ libsodium-0.5.0. 13-May-2014 23:11 . Updated, it saves ~30KB in the firmware file size. Changelog.
- sodium_mlock()/sodium_munlock() have been introduced to lock pages
in memory before storing sensitive data, and to zero them before
unlocking them. - High-level wrappers for crypto_box and crypto_secretbox
(crypto_box_easy and crypto_secretbox_easy) can be used to avoid
dealing with the specific memory layout regular functions depend on. - crypto_pwhash_scryptxsalsa208sha256* functions have been added
to derive a key from a password, and for password storage. - Salsa20 and ed25519 implementations now support overlapping
inputs/keys/outputs (changes imported from supercop-20140505). - New build scripts for Visual Studio, Emscripten, different Android
architectures and msys2 are available. - The poly1305-53 implementation has been replaced with Floodyberry's
poly1305-donna32 and poly1305-donna64 implementations. - sodium_hex2bin() has been added to complement sodium_bin2hex().
- On OpenBSD and Bitrig, arc4random() is used instead of reading
/dev/urandom. - crypto_auth_hmac_sha512() has been implemented.
- sha256 and sha512 now have a streaming interface.
- hmacsha256, hmacsha512 and hmacsha512256 now support keys of
arbitrary length, and have a streaming interface. - crypto_verify_64() has been implemented.
- first-class Visual Studio build system, thanks to @evoskuil
- CPU features are now detected at runtime.
And that's all for version 1.3e, Enjoy!
Y2014 1st. Release
v1.3c zlib: Update to version 1.2.8
Official Release
Official Release
Updated.
Release V1.2x-rc0
Changelog:
dnsmasq release 2.68rc2.
siproxd feature added
added login name change option.
Update
Update.
Update version
Changelog.
- dnsmasq updates (2.69rc1),
- nginx updated to 1.4.4
- Login name customized window.
- IPv6. Some sites (facebook) not accesible. Code again TCP MSS clamp for IPV6 with ppp connection, Thanks to Vladislav Grishenko.
- QoS broken with IPv6 solved. Need to test statistics.
- DHCPv6-PD random connection problem solved.
- IPv6 ICMP firewall added.
- IPv6 SSH pass added.
- kernel patches for carrier-on bug, 14 service patchs more applied.
- dnscrypt-proxy: upstream to 1.3.3 version
- libsodium: upstream to 0.45 version
- dropbear: upstream to 2013.62 version. Includes ecdsa key.
- openssl: generates ecdsa host key.
- tools-ping: allows now ping to hyphen url's (no-ip.org).
Upstream V1.2xa
Upstream patches.
- dnsmasq updates (2.68rc5),
- nginx updated to 1.4.4
- Login name customized window.
- IPv6. Some sites (facebook) not accesible. Code again TCP MSS clamp for IPV6 with ppp connection, Thanks to Vladislav Grishenko.
- QoS broken with IPv6 solved. Need to test statistics.
- DHCPv6-PD random connection problem solved.
- kernel patches for carrier-on bug, 14 service patchs more applied.
- dnscrypt-proxy: upgrade to 1.3.3
- libsodium: upgrade to 0.45