What's new

[Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Re ssh logon fail....
I've recreated the fail and it seems the MIPS kernel isn't playing nice with the new chacha20 cipher support.
I'm doing a new set of builds now with that removed and will have it up later today.

Thanks for quickly reporting the problem!
You only remove from SSH? working fine with VPN
Code:
Control Channel: TLSv1.3, cipher TLSv1.3 TLS_CHACHA20_POLY1305_SHA256, 1024 bit RSA
 
An update has been posted to V44E5 which addresses the SSH logon failure on MIPS routers.
I have removed the new dropbear ChaCha20-Poly1305 support from all models until I can better understand the MIPS failure.

Sorry for the having to make the quick update.....

SHA256
Code:
e09d65d477a2f00725c0a7512ec02656f5d972bf07a4b690d579a558ee5dc385  RT-N16_374.43_44E5j9527.trx
af97c9b65dc3a0223561595cc000835121d2d4a48fb4ea20fa6b8c752c9ff2a7  RT-AC66U_374.43_44E5j9527.trx
c70b63b2ee4ed808d909c1c805b1160ae13fd96a0a396ffb2e83eb736876f57f  RT-N66U_374.43_44E5j9527.trx
7d28422b8c250db9b1533d873d94f879a0dccd03a08594ee5f205abff3396966  RT-AC68U_374.43_44E5j9527.trx
5b169bcd1e7826b0a1b62d7c17cf13cda9472514bb8e4101af5ed6ae94580758  RT-AC56U_374.43_44E5j9527.trx
 
Re ssh logon fail....
I've recreated the fail and it seems the MIPS kernel isn't playing nice with the new chacha20 cipher support.
I'm doing a new set of builds now with that removed and will have it up later today.

Thanks for quickly reporting the problem!

Quick support, quick reporting ;) Thanks John.
 
Re ssh logon fail....
I've recreated the fail and it seems the MIPS kernel isn't playing nice with the new chacha20 cipher support.
I'm doing a new set of builds now with that removed and will have it up later today.

Thanks for quickly reporting the problem!
Is this actually a problem with ARM routers as well?
 
Is this actually a problem with ARM routers as well?
I couldn't get the same failure on ARM, but the MIPS failure was so extreme, I decided to play it safe and back it out for everyone until I have the time to really look into it.
 
I couldn't get the same failure on ARM, but the MIPS failure was so extreme, I decided to play it safe and back it out for everyone until I have the time to really look into it.
Good deal. Thank you!
 
Timezone difference bug is fixed, but isn't there an option to take the DST on account for? Is this a feature of the AC66U and the older firmware codebase?
 
Re ssh logon fail....
I've recreated the fail and it seems the MIPS kernel isn't playing nice with the new chacha20 cipher support.
I'm doing a new set of builds now with that removed and will have it up later today.

Thanks for quickly reporting the problem!

ouch, commits b21b8692eedcc3c217f894450de373623533565b and b21b8692eedcc3c217f894450de373623533565b were merged, right?
new code affects not only the chacha-poly, but key exchange curve25519 and key algo ed25519 as well, can you confirm that disabling only the chacha-poly solves the issue?
 
Last edited:
ouch, commits b21b8692eedcc3c217f894450de373623533565b and b21b8692eedcc3c217f894450de373623533565b were merged, right?
new code affects not only the chacha-poly, but key exchange curve25519 and key algo ed25519 as well, can you disabling only the chacha-poly solves the issue?
Thanks for jumping in.
I picked up (and reverted, in the reverse order they were added) 3 commits related to chacha-poly that fixed the problem. Logon without key, username/password only.
You can see them here....
https://github.com/john9527/asuswrt-merlin/commits/374.43_2-update

I was unable to see the failure on the ARM builds, only the MIPS.
 
how can I reproduce it? mips cpu/router model, steps...?

The problem was first reported on an original AC66. I recreated the problem with an N66.

I pulled the failing code from download, but will send you a PM with a link to get it. Because of the ASUS backlevel code check, you need to install with the Restoration Tool or mini-server.

Factory reset, then under Administration>System, configure username/password, then Enable SSH and Allow SSH password logon.
Then try to SSH to the router. I don't believe the host for the logon matters....I used a Linux/bionic system over ethernet.

Thanks again for your help.
 
Last edited:
Hi All

I installed the merlin-fork firmware via the recovery tool and factory reset after flashing the firmware. However, my wifi download speed dropped to ~70 MB with the new firmware. I have tried to speed test it over several days at different timing but the fastest speed is still ~70 MB. On the stock firmware, I was getting ~225 MB. I tried to reflash back to the stock firmware via recovery tool but it failed.

Any ideas on how I could revert to stock or to troubleshoot the slowdown in speed?

Router model: AC56S
Fibre plan speed: 500 MB
 
Sorry, what does this mean? :confused: Can you provide an example.
Sorry. I mean that is there a way to make timezone check in the router to take acouunt Daylight saivings time (DST). Because at the moment the router UI is complaining the timezone difference between the router and the computer which I'm using navigate router settings. And i'm quite sure the detected difference is due to DST. AC87 and AC88 routers have option to setup automatic DST season, but AC66 doesn't. Or at least I haven't found it.
 
@john9527
Hi John!
Tell me, please, could you add WireGuard support to the core of your fork.
This is very true in countries where authorities restrict Internet freedom and freedom of speech.
Thanks in advance!
 
Sorry. I mean that is there a way to make timezone check in the router to take acouunt Daylight saivings time (DST). Because at the moment the router UI is complaining the timezone difference between the router and the computer which I'm using navigate router settings. And i'm quite sure the detected difference is due to DST. AC87 and AC88 routers have option to setup automatic DST season, but AC66 doesn't. Or at least I haven't found it.
Which timezone? Some of them have the option, some of them don't.
 
The problem was first reported on an original AC66. I recreated the problem with an N66.

I pulled the failing code from download, but will send you a PM with a link to get it. Because of the ASUS backlevel code check, you need to install with the Restoration Tool or mini-server.

Factory reset, then under Administration>System, configure username/password, then Enable SSH and Allow SSH password logon.
Then try to SSH to the router. I don't believe the host for the logon matters....I used a Linux/bionic system over ethernet.

Thanks again for your help.

No problem, hope Fix ChaCha20 on 32-bit platforms patch will help.
 
Last edited:
Hi All

I installed the merlin-fork firmware via the recovery tool and factory reset after flashing the firmware. However, my wifi download speed dropped to ~70 MB with the new firmware. I have tried to speed test it over several days at different timing but the fastest speed is still ~70 MB. On the stock firmware, I was getting ~225 MB. I tried to reflash back to the stock firmware via recovery tool but it failed.

Any ideas on how I could revert to stock or to troubleshoot the slowdown in speed?

Router model: AC56S
Fibre plan speed: 500 MB
I had a similar issue way back when on an AC66 and nothing seemed to change it. I ended up using the command line nvram clear method to factory reset and that solved it for me. No idea why because the GUI reset should do the same thing but it did not help in my case. May want to try that and see if it helps.
 

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Staff online

Top