Asuswrt-Merlin 374.42_2 is out

[RMerlin]

There are a lot of places where the use of a single quote will break the Javascript code used by the webui. Over time I've secured things in a few places, and Asus also secured things in other places, but it's possible there are still a few spots that are vulnerable. Odd that it would only affect one of the two bands however.

If you can re-trigger the error, open your web browser error console, and look at the line generating the error. Post the page/script name, and the content of the line with the error - that will make it easier to track it down.

One of the problems with SSIDs is that the official specifications are very vague as to what is allowed and what isn't. So, everyone is interpreting these specs differently.

 

[RMerlin]

Interesting observation strange I use a @ symbol in my ssid's and don't have any issues. Good work tracking that down.

Having an "@" in a string won't cause a problem with Javascript, but a quote will. For instance, if SSID is "bob's router", the Javascript will end up like this:

ssidname = 'bob's router';

which is a Javascript syntax error.

 

[BillytheSkids]

Bug report?

Not sure if this is has been discussed as I did not find it in the search and did not want to issue a bug report unless I'm 100% sure I haven't missed something.

hardware: RT-N66U Revision: B1
2GB microsd installed 1750 MB ext3 and 250 MB swap
External 750 GB ntfs harddrive
mounted using fstab UUID's defaults 0 0
last known good config was version 40

issue: After installing a clean version of 42 (flushed nvram, etc), the minidlna server begins scanning the hard drive with default /tmp/mnt/... directory and appears to operate as expected (did not let run to completion). Once the directories are changed to the appropriate folder locations using the web interface the router shows scanning status and no progression of db file size is seen. I attempted using a separate config file on /jffs/configs and saw no change after letting run for 2 days. Also when opening the minidlna tab with the config file in place, the web interface crashes. The router still operates and can ssh via putty after the interface crashes but still no interface.

 

[darkknight74]

I have better wifi signal with .41 vs .42

 

[tijaune]

Having an "@" in a string won't cause a problem with Javascript, but a quote will. For instance, if SSID is "bob's router", the Javascript will end up like this:

ssidname = 'bob's router';

which is a Javascript syntax error.

It is indeed a good one. Modern software developers has additional challenge with more layers to check such as webui. Merlin, we see that not only you are proficient at low level binary, you have also good skill at higher level web

 

[pwlios]

Hi all,

I'm having a issue with my computer in combination with my N66U.
My computer has a PCE-ac66. My N66u router has a Merlin FW "RT-N66U_3.0.0.4_374.42_0"(The latest).
But every time I start my computer, it can't connect to my 5Ghz network. I have to change something in the 5Ghz settings in my router( Example: wireless mode or channel bandwidth) and click apply. The moment when it's done, I can connect with the router again, and enjoy 5 ghz.
I have tried to downgrade to "RT-N66U_3.0.0.4_374.41_0" but it didn't help. I've also tried to delete the PCE AC66 driver, and reinstall it. Didn't help either. Does someone has another idea what I can do?
I don't think it's a bug in the router, because my other devices ( Smartphones, tablets, laptops) can connect straight away to the 5 Ghz network.

Does someone has an idea what I can do trying to fix it?

Thanks in advance!!

 

[stevocz]

Can you provide more details? What isn't working specifically?

i can't watch multicast stream on VLC. VLC can't connect to stream.
it was tested over wifi.

 

[TeeDee]

Paragon's NTFS driver has never been a staple of reliability. I recommend using ext3 instead, especially if the disk gets a lot of writing done to it while hooked to the router.

I am using Time Machine backup. If I were to use ext3 for Time Machine backup, will my Mac be able to restore from the backup locally (since Mac doesn't really read ext3)?

Is it true that if I were to reformat my hard disk to ext3, when the hard disk didn't get to eject out properly, the hard disk won't have broken file system / corrupt?

 

[RMerlin]

I am using Time Machine backup. If I were to use ext3 for Time Machine backup, will my Mac be able to restore from the backup locally (since Mac doesn't really read ext3)?

Is it true that if I were to reformat my hard disk to ext3, when the hard disk didn't get to eject out properly, the hard disk won't have broken file system / corrupt?

I don't know if Time Machine works with anything but HFS+. Was your disk in HFS+ or NTFS? You should probably be using HFS+ with Time Machine.

Failure to properly eject a disk before unplugging it can be harmful regardless of the filesystem. Ejecting ensures that any data still in cache or buffer and pending write gets gets flushed to disk.

 

[TeeDee]

I don't know if Time Machine works with anything but HFS+. Was your disk in HFS+ or NTFS? You should probably be using HFS+ with Time Machine.

Failure to properly eject a disk before unplugging it can be harmful regardless of the filesystem. Ejecting ensures that any data still in cache or buffer and pending write gets gets flushed to disk.

I have 2 disk, 1 in NTFS for my dlna and another in HFS+ for Time Machine. Apparently the router can perform Time Machine using NTFS (as stated on Asus website), and I used to do TM backup using NTFS until that hard disk got corrupted. Using ext3 will most likely prevent data corruption / corrupted file system right?

Oh and I realized that the router can perform some sort of disk check in disk utility. What does the disk check do?

 

[RMerlin]

I have 2 disk, 1 in NTFS for my dlna and another in HFS+ for Time Machine. Apparently the router can perform Time Machine using NTFS (as stated on Asus website), and I used to do TM backup using NTFS until that hard disk got corrupted. Using ext3 will most likely prevent data corruption / corrupted file system right?

If it can work with TM then yes, that would be less likely to suffer from data corruption than NTFS.

Oh and I realized that the router can perform some sort of disk check in disk utility. What does the disk check do?

It's your typical filesystem check: chkdsk for NTFS, fsck for ext2/ext3/ext4, and the HFS+ equivalent. However it does not always work with larger disks due to lack of memory on the router.

 

[joegreat]

I have better wifi signal with .41 vs .42

Hi,

Based on the changelog (see first posting of the thread) there is no difference in the wifi driver/settings and therefore in the range between .41 and .42.

Go for .42 - many fixes (incl. security) will be your benefit!

With kind regards
Joe

PS.: Anyhow you have the best router for range - especially since Merlin provided the em-build as default setting!

 

[Marsi4eg]

There are a lot of places where the use of a single quote will break the Javascript code used by the webui. Over time I've secured things in a few places, and Asus also secured things in other places, but it's possible there are still a few spots that are vulnerable. Odd that it would only affect one of the two bands however.

If you can re-trigger the error, open your web browser error console, and look at the line generating the error. Post the page/script name, and the content of the line with the error - that will make it easier to track it down.

One of the problems with SSIDs is that the official specifications are very vague as to what is allowed and what isn't. So, everyone is interpreting these specs differently.

Here are the console logs. Looks like I've found it.

Normal log (when client list is working) from the moment of pressing 'Clients' button:

GET http://www.asusnetwork.net/device-map/clients.asp [HTTP/1.0 200 Ok 9мс]
Применение getUserData() или setUserData() является устаревшим.  Для их замены используйте WeakMap или element.dataset. requestNotifier.js:64
GET http://www.asusnetwork.net/state.js [HTTP/1.0 200 Ok 45мс]
GET http://www.asusnetwork.net/jquery.js [HTTP/1.0 200 Ok 53мс]
GET http://www.asusnetwork.net/jquery.xdomainajax.js [HTTP/1.0 200 Ok 55мс]
GET http://www.asusnetwork.net/help.js [HTTP/1.0 200 Ok 69мс]
GET http://www.asusnetwork.net/tmmenu.js [HTTP/1.0 200 Ok 74мс]
GET http://www.asusnetwork.net/nameresolv.js [HTTP/1.0 200 Ok 77мс]
SyntaxError: Using //@ to indicate sourceMappingURL pragmas is deprecated. Use //# instead jquery.js:1
Error: http://www.asusnetwork.net/jquery.js is being assigned a //# sourceMappingURL, but already has one
GET http://www.asusnetwork.net/getdhcpLeaseInfo.asp [HTTP/1.0 200 Ok 3мс]
GET http://www.asusnetwork.net/images/InternetScan.gif [HTTP/1.0 200 Ok 4мс]
GET http://www.asusnetwork.net/images/arrow-right.png [HTTP/1.0 200 Ok 6мс]

And here is the part of log with error:

GET http://www.asusnetwork.net/device-map/clients.asp [HTTP/1.0 200 Ok 9мс]
Применение getUserData() или setUserData() является устаревшим.  Для их замены используйте WeakMap или element.dataset. requestNotifier.js:64
GET http://www.asusnetwork.net/state.js [HTTP/1.0 200 Ok 45мс]
GET http://www.asusnetwork.net/jquery.js [HTTP/1.0 200 Ok 55мс]
GET http://www.asusnetwork.net/jquery.xdomainajax.js [HTTP/1.0 200 Ok 57мс]
GET http://www.asusnetwork.net/help.js [HTTP/1.0 200 Ok 72мс]
GET http://www.asusnetwork.net/tmmenu.js [HTTP/1.0 200 Ok 78мс]
GET http://www.asusnetwork.net/nameresolv.js [HTTP/1.0 200 Ok 81мс]
SyntaxError: Using //@ to indicate sourceMappingURL pragmas is deprecated. Use //# instead jquery.js:1
Error: http://www.asusnetwork.net/jquery.js is being assigned a //# sourceMappingURL, but already has one
[B]SyntaxError: missing ; before statement clients.asp:86[/B]
GET http://www.asusnetwork.net/getdhcpLeaseInfo.asp [HTTP/1.0 200 Ok 5мс]
ReferenceError: initial is not defined clients.asp:1

And here is the string 86 of clients.asp:

var asus_device_list_buf = 'ɛ>RT-AC66Uᡂ.7.7.33>D8:50:E6:A9:9D:D8ɬ>>>Marsi4eg's WLAN.255.255.224';

There are 3 apostrophies and the line ends after second and misses ; and nothing work.

What does 2.4 Ghz network name do in that line?

Please please fix this.

There is nothing like that in clients.asp in 374.41

var client_list_array = '<1>Marsi4eg-PC>10.7.7.34>08:60:6E:E7:99:9F>0>0>0';
var client_list_row;
var networkmap_scanning;
var macfilter_rulelist_array = '';
var macfilter_rulelist_row = macfilter_rulelist_array.split('<');
var macfilter_enable = '0';
var mapscanning = 0;

 

[htismaqe]

Sorry, I personally didn't do any comparisons of that nature but based on what I have read the ac68u should be comparable or even better than the r7000 in terms of wireless throughput.

Should be interesting to get your findings.

Hey man, so far the AC68W is outperforming the R7000 for me.

2.4Ghz range and throughput is superior to the R7000.

The 5Ghz range is about the same but the throughput at range is better on the AC68W.

 

[obylix]

Hi,

Based on the changelog (see first posting of the thread) there is no difference in the wifi driver/settings and therefore in the range between .41 and .42.

Go for .42 - many fixes (incl. security) will be your benefit!

With kind regards
Joe

PS.: Anyhow you have the best router for range - especially since Merlin provided the em-build as default setting!

That is why I'm kind of dumbfounded, no WiFi driver change yet I can consistently upgrade to .42 and see a 2MB/s decrease in pure file to file transfer from and to the router ( stays at about 2.5MB/s ). I downgrade to .41 and the file copy speed increases back to around 4.5MB/s which is as fast as I think it is going to get.

Ah well, maybe the next version will have sorted this out or who knows it could be something I'm doing ( or not doing ) that I'm not even aware of. Regardless, thanks Merlin!

 

[fr33z0n3r]

Having an "@" in a string won't cause a problem with Javascript, but a quote will. For instance, if SSID is "bob's router", the Javascript will end up like this:

ssidname = 'bob's router';

which is a Javascript syntax error.

That is a seemingly concerning issue. While not very dangerous with your own SSID, does the survey feature fall prey to this type of issue? As that could allow a javascript borne attack I think. If someone set up an SSID of "openwifi'<script>alert(""XSS"");</script>", that might perform an attack. Not sure if the hostname field could trigger the same type of issue?

Is the code safe from this?

 

[RMerlin]

That is a seemingly concerning issue. While not very dangerous with your own SSID, does the survey feature fall prey to this type of issue? As that could allow a javascript borne attack I think. If someone set up an SSID of "openwifi'<script>alert(""XSS"");</script>", that might perform an attack. Not sure if the hostname field could trigger the same type of issue?

Is the code safe from this?

If you have access to the router to change its SSID, then it doesn't matter at all whether you could inject code into a web field or not - you already have root access to the whole router anyway. You could redirect any DNS query wherever you wanted.

 

[SeCrEt_BoY]

I saw my AC68R's temperatures is too hot.
2.4 GHz: 56°C - 5 GHz: 57°C - CPU: 90°C
Somethings wrong with my AC68R?

 

[Muyfa666]

Hey man, so far the AC68W is outperforming the R7000 for me.

2.4Ghz range and throughput is superior to the R7000.

The 5Ghz range is about the same but the throughput at range is better on the AC68W.

That's great man. I may have the same performance too, never really compared it for real.

What I can say is that it's STABLE as a rock. No reboots, no wifi degrading, no printer problems - it just works! Especially with Merlins stuff (don't forget to donate some $$ ;-).

I have, on chance, ordered 3 bigger antennas (9dbi) to see if it makes any difference at all. If not, they were cheap and I can use them elsewhere on backup routers.

 

[kenrok1]

I saw my AC68R's temperatures is too hot.
2.4 GHz: 56°C - 5 GHz: 57°C - CPU: 90°C
Somethings wrong with my AC68R?

I know that sounds too hot but apparently nothing wrong - they all seem to run in that range. CPU on mine hovers between 87-91°C

I know that it doesn't look good which is why it comes up a lot, but Merlin has mentioned Broadcom says it's within spec. Search and you'll find quite a few references.