Yota
Very Senior Member
If you update yourself via the router itself, then why do you need TLS? The traffic doesn't go anywhere, in fact it goes from io (0.0.0.0) to br0 (192.168.50.1), it just flows within the Broadcom CPU and doesn't even go through the switch chip. If you are developing a desktop app, then yes, TLS is something to consider. But why not make it easier? The router's script downloads and verifies the firmware, then refreshes it, and the desktop app simply sends an update request through the router-side script's API, so no malicious firmware will be sent from the desktop app to the router.REST/JSON over TLS
Yes, I believe RMerlin is talking about the firmware of RT-AC68U, they merged RT-AC68Uv4 (which uses ARMv8a like RT-AC86U) and other ARMv7 based RT-AC68U firmware into the same firmware.If this is really true then that's one less thing on the list!
I took the RMerlins message is it meaning the .zip had 2 firmware images, and the user had to select which one for their revision.
if it's really one file and the GUI picks the correct version, then we are already ahead of the game!
The list of things I'd like to consider left is:
Love your list!