7.10.2082

apfree wifidog 7.10.2082 Release Notes

---

中文版本发布说明：

7.10.2082 版本更新内容：

1. 修复通过认证的用户信息不上报的bug

2. 增加本地无认证服务器认证功能：

   • 用户可手动配置本地portal展示页面
   • 添加用户本地放行接口
   • 优化无认证服务器下的ping、auth及websocket接口流程

3. websocket接口增加踢认证用户下线功能：

   • 用户无需等待1分钟即可踢下线

4. 优化logout、login及login2接口

5. 本地HTTP和HTTPS服务的优化：

   • 增加IPv6的支持
   • 修复https拦截认证的bug

6. 修复认证服务器在CDN环境下的bug：

   • CDN环境下IP频繁变动导致白名单失效的问题已解决

7. 修复IPv6环境下认证失效的bug

8. 修改网关无法获取IPv6地址时退出的问题

9. websocket功能优化：

   • 添加websocket单独配置功能，支持与认证服务器分开部署
   • 优化websocket连接服务器端的容错处理
   • 修复websocket连接服务器端退出的问题

10. 重构fw3和fw4的代码处理，停止对fw3的支持

11. 启动时清理现有会话，用户下线时删除用户会话

12. 修复并完善防火墙规则：

    • 防止非80和443端口服务在无认证状态下访问网络
    • 确保网关设备可以无认证访问网络

13. 添加防火墙规则重启功能，并保留已认证用户及其流量统计信息

14. 修复其它已知问题

版本视频说明

---

English Version Release Notes:

What’s New in Version 7.10.2082:

1. Fixed the bug where authenticated user information was not reported

2. Added local authentication feature without a remote authentication server:

   • Users can manually configure a local portal display page
   • Added a local user bypass interface
   • Optimized ping, auth, and websocket flows for environments without an authentication server

3. WebSocket interface now supports kicking authenticated users offline instantly:

   • No need to wait for 1 minute to disconnect users

4. Optimized the logout, login, and login2 interfaces

5. Improvements to local HTTP & HTTPS services:

   • Added support for IPv6
   • Fixed bugs related to HTTPS interception for authentication

6. Fixed bugs with authentication servers in CDN environments:

   • Resolved issues where dynamic IP changes in CDN setups caused whitelist failures

7. Fixed authentication failures in IPv6 environments

8. Resolved issues where gateways would exit when IPv6 addresses could not be obtained

9. WebSocket optimizations:

   • Added a standalone WebSocket configuration, allowing it to be deployed separately from the authentication server
   • Improved fault tolerance when connecting to the WebSocket server
   • Fixed disconnection issues with the WebSocket server

10. Refactored code handling for fw3 and fw4; discontinued support for fw3

11. Cleared all active sessions at startup and removed user sessions upon disconnection

12. Enhanced firewall rules:

    • Prevent unauthorized access to non-80/443 ports
    • Ensure gateway devices can access the network without authentication

13. Added firewall rule restart functionality, while preserving authenticated users and their traffic statistics

14. Fixed other known bugs

version 7.08.2035 release

7.08.2355版本更新内容：

1. 修复内存泄露问题：修复了在HTTPS跳转过程中未释放URL内存的漏洞。

2. 多网关认证支持：

   • 引入device_id作为设备唯一标识。
   • 新增gateway_setting对象，每个对象可指定不同的认证模式，并通过gateway_id标识。
   • 每个gateway_setting对象都有对应的通道（channel），支持不同的认证方式。
   • auth counter_v2接口扩展，支持多网关认证。
   • ping接口扩展，支持多网关认证。

3. 跳转URL生成逻辑修正：根据HTTP或HTTPS协议动态设置gw_port，以确保服务匹配。

4. IPv6支持：增强防火墙规则，并全面支持IPv6地址。

5. WebSocket模块更新及修复：

   • 扩展心跳接口，增加所有网关信息的上报功能。
   • 新增心跳回包处理机制，用于判断和调整网关的认证模式。
   • 扩展connect接口，获取并初始化网关认证模式。
   • 修复了当认证服务器离线时，WebSocket线程可能导致进程崩溃的Bug。

6. 支持WSS协议。

7. 优化QUIC协议处理。

8. 修复TLS连接问题：增强对认证服务器HTTPS连接的支持。

9. Popular Server添加：增加对Google域名的支持。

10. ping接口扩展：更新ping接口以支持多网关认证功能。

---

Version 7.08.2355 Update Content:

1. Memory Leak Fix: Resolved an issue where URL memory was not released during HTTPS redirection.

2. Multi-Gateway Authentication Support:

   • Introduced device_id as a unique identifier for each device.
   • Added gateway_setting objects, where each object can specify a different authentication mode, identified by gateway_id.
   • Each gateway_setting object has a corresponding channel, supporting different authentication methods.
   • Extended the auth counter_v2 interface to support multi-gateway authentication.
   • Extended the ping interface to support multi-gateway authentication.

3. Redirection URL Logic Fix: Dynamically set gw_port based on HTTP or HTTPS protocols to ensure service compatibility.

4. IPv6 Support: Enhanced firewall rules and added full support for IPv6 addresses.

5. WebSocket Module Updates and Fixes:

   • Expanded the heartbeat interface to include reporting of all gateway information.
   • Added a mechanism to handle heartbeat response packets to assess and adjust gateway authentication modes.
   • Extended the connect interface to retrieve and initialize gateway authentication modes.
   • Fixed an issue where the WebSocket thread could cause a process crash when the authentication server was offline.

6. WSS Protocol Support.

7. QUIC Protocol Optimization.

8. TLS Connection Fix: Improved support for HTTPS connections to the authentication server.

9. Popular Server Addition: Added support for Google domains.

10. Ping Interface Extension: Updated the ping interface to support multi-gateway authentication.

7.07.2018 release

Apfree-Wifidog 7.07.2018 Release Notes

English:

1. Optimized the handling of a lock.
2. Modified the DNS server for domain name resolution to the local DNS server.
3. Fixed a bug where HTTP/3 was not intercepted.
4. Fixed a crash issue when the authentication server was offline.
5. Changed the default temporary pass-through time from 5 minutes to 1 minute.

---

Chinese (中文):

1. 优化了一处锁的处理。
2. 修改域名解析DNS服务器为本地DNS服务器。
3. 修复了HTTP/3未被拦截的bug。
4. 修复了认证服务器不在线情况下崩溃的问题。
5. 将默认临时放行时间由5分钟调整为1分钟。

7.06.2008 release

Release Note

English

1. Added support for wildcard domain whitelisting through the DNS proxy forwarding method.
2. Introduced a flag to enable or disable WebSocket support.
3. Introduced a flag to enable or disable DNS proxy support.
4. Refactored the wdctlx command for improved functionality.
5. Fixed various bugs to enhance system stability.

中文

1. 通过DNS转发代理的方式添加了通配符域名白名单功能。
2. 添加了一个标志来打开或关闭WebSocket支持。
3. 添加了一个标志来打开或关闭DNS代理支持。
4. 重构了wdctlx命令以改进功能。
5. 修复了一些漏洞以增强系统稳定性。

v7.02.1977 release

Features:

1. Added a temporary internet access interface for clients.
2. Added the ability to specify trusted domains, IPs, and MAC addresses.
3. Added display of apfree-wifidog and firmware version in ping request.
4. Added websocket client thread for improved communication.
5. Added support for allowing clients access from the authentication server side through websocket.
6. Added support for temporary internet access from the authentication server side through websocket.

Fixed:

1. Resolved the COPS problem.
2. Implemented automatic reconnection when websocket disconnects.
3. Fixed the bug in nft set set_wifidogx_bypass_clients.

---

功能:

1. 为客户端添加临时访问互联网接口。
2. 添加信任的域名、IP和MAC地址。
3. 在ping协议中添加了apfree-wifidog和固件版本。
4. 添加websocket客户端线程以改善通信。
5. 支持通过websocket从认证服务器端允许客户端上网功能。
6. 支持通过websocket从认证服务器端临时访问互联网。

修复:

1. 解决了COPS问题。
2. 当websocket断开连接时，重新连接。
3. 修复了nft set set_wifidogx_bypass_clients中的错误。

6.08.1950

fix some memory leak bug

6.02.1939 release

openwrt fw4 support

apfree-wifidog version 4.08.1771 release

1. add COUNTER_V2 interface document
2. fix compiliation with lower openssl version
3. fix roam feature bug: device roam function invalid
4. fix compilation with GCC10

apfree-wifidog version 3.10.1696 release

replace libhttpd with libevent library

apfree-wifidog version 3.8.1588 release

version 3.8.1588 release, the main featuer is:

fix bug of apfree-wifidog can't run on openwrt 18.06

disable mqtt feature by default

optimize libhttpd library

add timeout to wdctl socket, which will be blocked by amount of request