/
OpenSync 7.0 Release Notes

OpenSync 7.0 Release Notes

Release 7.0.1

Notable Enhancements

  • PKIM

    • The certificate renewal date is now set to a fixed 80% of the certificate validity period (previously it was 60 days before expiration).

    • Now uses subject line of the certificate that is about to be renewed for the RE-ENROLL operation.

  • Commit a script filtering the transactions of a specified OVSDB table in a logpull.

  • OWM: Added WPA3 RSNO support for QCA platforms.

  • FSM

    • Fence DPI asserts with kconfig knobs.

    • Selectively disable memory pool usage for QoE services based on the platform.

    • Implement the removal of Application QoE configuration entries.

  • OWM

    • Added implicit RSNO support to OWM to help with Wi-Fi 7 AP vs old WPA2/WPA3 client interoperability.

    • Improve channel formatter in logs (channel, bandwidth, central channel).

    • The hostapd config parameter "rsn_override_omit_rsnxe" should be set to false by default for better compatibility.

    • Use no_disassoc kickmac to improve roaming scenarios on QCA platforms.

    • Align sae_pwe option in wpa and hostap config.

Notable Fixes

  • Fixed stopping of DHCPv6 client logic in CM.

  • Fix SM memory leak with LAN latency enabled.

  • Address PM crash when installing new signature file in case version file is missing.

  • Fixed an issue where configured static routes were disappearing after DHCP service start or stop.

  • Fixed an issue where CM was forcefully restoring previously remembered bridge mode state although the new expected realised network mode state was to be router.

  • DNS probe failed in certain cases where IPv6 addresses were still in tentative mode. When an IPv6 address is in tentative mode it means that Duplicate Address Detection (DAD) is still being performed and the address is not usable yet. WANO now waits until the IPv6 address exits tentative mode before starting the DNS probe.

  • PKIM

    • Now prevents spamming renewal log messages in case the date was changed due to a user intervention.

    • Improve errors reported by libcurl.

  • OWM

    • Fixed roaming regression for SPF11 + 11ax QCA APs

    • Fixed bogus log message on non-MLO QCA platforms

    • Fixed possible NULL deref crash

    • Expand TX/RX stats to 64bit.

  • DNS blocking or whitelist can cause FSM/FCM crashes.

  • FCM:

    • Collect all stats independent of whether the stats are for traffic between LAN devices or LAN-WAN.

    • Fixed missing stats for traffic between ethernet to ethernet devices.

  • FSM

    • Fix gatekeeper cache counters since entries were decremented twice when an entry was timed out.

    • Always performs DPI on DHCP packets.

    • Fix various crash by adding NULL check pointer (attr_entry->fqdn_redirect, ct_stats plugin was removed, validity of an array).

    • Fix source mac settings for DHCP packets re-injected to the datapath.

    • Improved attribute cleanup logic to make sure all the entries are cleared from the gatekeeper LRU cache.

Release 7.0.0

New Features

  • Report OpenSync restarts to cloud

  • BLEM Connectivity Status Observation (CM Detached)

  • PKI Integration with EST Client

  • Obfuscated Certificate Storage in PKI

  • Configurable Maximum Memory Limit for OpenSync Managers

  • OpenSync in LXC Container

  • QoE Optimised Handoff (admission policies)

  • Static MLMR backhaul configuration (MLO Backhaul)

  • Fast Roaming using 802.11r support

  • NAT66 Support for IPv6 Without PD

  • Latency Optimisation under Variable Load with active measurements

  • OpenSync Node Reboot Deferral

Notable Enhancements

  • The maximum allowed size for pre-signed URLs in the OVS schema was increased to support longer URLs from Google Cloud, improving compatibility.

  • Added an arena allocator to the core OpenSync libraries for better memory management and error handling.

  • Remove PWM (Public WiFi manager) as is incompatible with OWM and Linux SDN architecture.

  • Removed legacy pre-netlink code. Deleted OPENSYNC_NL_SUPPORT as it is no longer needed.

  • Adjustment to Broadcom performance script.

  • Moved iptables_cmd.sh from multiple vendors to a single place in OpenSync generic code.

  • Added tinyproxy config files to logpull.

  • Enable QOSM by default.

Notable Fixes

  • Fixed possible invalid union dereference in OWM for station channels.

Known Issues

  • Fixed processing of application information from DPI engine.

  • Sometimes the LAN stats topic is missing from UBus.

  • DNS blocking or whitelist can cause FSM/FCM crashes.