--- title: 'EdgeHub Release Note v2.5' disqus: hackmd --- :memo:EdgeHub Release Note === ## Version: 2.5.0-rc.4 (2025/09/05) ### Device Management #### [Update] * API * Improve the performance of batch CSV file import #### [Fix] * [#42337] [DPM] There should pop up warning message when import over 3000 devices * [DPM] Fix the issue that batch create time and update time is the same * [DPM] Fix the issue that unknown device can display tabs other than the Info tab * [#42343] [DPM] Data won't be re-arange correct when Edgelink use data resume * [#42348] [DPM] User can't use private FW to do OTA on device group ### Data Management #### [Fix] - #### Core - [Evaluator] if(...) always falls into false condition. - [api-portal] Use `devUpdate` MQTT to Update Unknown Device to Real Device - [api-portal] Tenant Log Not Written on Update - [#42336][DataWorker][DM] The EdgeLink device remains offline (auto provisioning) even though the device has been created in DPM. - [#42276][DataWorker][DPM] There is no #MSYS_EdgeStatus when use MAC to create device - [#42340][api-portal][DPM] It will pop up error msg when edit the unknown device with full quota - #### Command center - [datasource-backend] Connot set value in SaaS Composer ### EdgeHub private network (EPN) #### [Fix] - #### EdgeHub Utility (1.1.0-rc.4) - [UI] Fix tab’s display text (Com → COM) - [UI] Widen IP field and calculate dynamic widths for name and associated device name - [#42322][EPN] There should have a tooltip on Device name when the device name is similar ## Version: 2.5.0-rc.3 (2025/08/29) ### Device Management #### [Update] * None #### [Fix] * [#42219] [DPM] There are pop up error msg "Some device don't suppurt this feature" (WISE-4050, WISE-4051) * [#42231] [DPM] The device will not be on the list after adjust the resolution * [#42245] [DPM] icon should be gray out when upload to the limited count ### Data Management #### [Fix] - #### Core - [#42276][DPM] There is no #MSYS_EdgeStatus when use MAC to create device - [#42234][DM] the #MSYS_EdgeStatus tag is not recorder when create a device via MAC - [Dataworker] Lack of IMEI format support in edgeId validation - [Cleaner] Fix the OOM bug of production K8S environment - [Cleaner] Fix the CVE issues to jar file - [Cleaner] Update gradle version due to update JDK 18 to JDK LTS 21. - ### EdgeHub private network (EPN) #### [Fix] - #### EdgeHub Utility (1.1.0-rc.3) - [#42272][EPN] It will pop up error msg when log out from EdgeHub utility - #### EPN service - [#42239][DM] The will pop up error when move Edgelink for tenant without EPN server - [#42180][EPN] Device can't delete or move to other tenant when EPN server is disable - [#42080][EPN] It can't stop to connect when make device online at first time - [Core] set cpu limit to 1 core, for easyrsa_size=4096 init pki - #### Direct Access - [#42135][EPN] The layout of Notify alarm group will change when the description is too long - [UI]Disable tabs when server is disabled ## Version: 2.5.0-rc.2 (2025/08/22) ### Device Management #### [Update] * DPM API * Use the environment variable to configure the Cert API URL #### [Fix] * [DPM] Fix the issue that WISE devices can not be created using an IMEI code. * [DPM] Fix the language translation in the device status filter * [#42179] [DPM] device shouldn't move to a expired tenant * [#42219] [DPM] There are pop up error msg "Some device don't suppurt this feature" (WISE-4050, WISE-4051) * [#42203] [DPM] There is no MQTT info when using MAC to create a WISE-6610P(LoraWAN) * [#42223] [DPM] The status of Edgelink isn't correct when use MAC to create ### Data Management #### [Fix] - #### Core - [api-portal] Fix EPN Channel Setting Migration - [api-portal] Add DBmaster Notificaton to Delete Unknown Device Cache - [api-portal] Fix setSsoUser atob Error - [Data-connect-portal] Upgrade advifactory/base-image to 1.1.1 for fixing the ubuntu version in Trivy scan report. - #### Data management - [#42134][EPN] The WeCom will be enable automatically when enable the email setting at first time ### EdgeHub private network (EPN) #### [Fix] - #### EPN service - [#42180][Device] Delete device / move device / revoke device cert fail due to EPN server disable - #### Direct Access - [UI] Lack of alarm rule field validation - [#42133][DPM] The Submit will successful without fill in the Alarm message info - [#42132][EPN] The layout will be out of range after select the long length Alarm Level and alarm category - [Portal] Upgrade advifactory/base-image to 1.1.1 for fixing the ubuntu version in Trivy scan report. - #### EdgeHub Utility (1.1.0-rc.2) - [COM port mapping] When switching COM ports in the Monitor drawer, it reverts back to the original COM after a while. ## Version: 2.5.0-rc.1 (2025/08/14) ### Device Management #### [New] * The unknown device type * The unknown device type can be convert to specific device models through: * The user's manual modification * Device auto provisioning * Added the Log tab for Auto provisioning and Batch import * This tab displays the task result for CSV batch import: * Result of the device batch creation * Result of the device auto provisioning * Remove the Device Batch Task tab and Device Provision tab #### [Update] * Center API * Added the EdgeLink firmware version in the Device List API * Fix following Pods' Vulnerabilities * Center API * Cert Management API * Batch Creation API * Management Portal API * Device Config worker #### [Fix] * [#42057] [DPM] WISE-6610P can't create anymore when delete tenant with WISE-6610P * [#42100] [DPM] Edgelink will not be created when using auto provisioning * [#42112] [DPM] There are some devices didn't be created automatically after import csv file * [#42130] [DPM] It will popup error when create Edgelink and delete and create again ### Data Management #### [Update] - #### Core - [Subscription] Add new region “Central America and Caribbean” to registration form - [Tenant] Enable editing of Tenant Owner field - [Tenant] Enable editing of expiration date for subtenants under Trial tenants #### [Fix] - #### Core - [#42104][Evaluator] Cannot use `if(...)` after fixing CVE issues - [Alarm] EPN alarms have been included into data management alarms. - [#42144][Worker] Constant parameters did not perform 5-minute value interpolation. - [Evaluator] Fix CVE - Upgraded [github.com/gin-gonic/gin](http://github.com/gin-gonic/gin) to v1.7.7 for a vulnerability patch - CVE-2020-28483(HIGH) - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2025-22869 (HIGH) - [Notification] Fix CVE - Upgraded [google.golang.org/grpc](http://google.golang.org/grpc) to v1.58.3 for a vulnerability patch - GHSA-m425-mq94-257g(HIGH) - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2024-45337 (CRITICAL) - [porfile-proxy] Fix CVE - Upgraded [github.com/gin-gonic/gin](http://github.com/gin-gonic/gin) to v1.8.1 for a vulnerability patch - CVE-2019-25211(CRITICAL) - [connection-service] Fix CVE - Upgraded [github.com/gin-gonic/gin](http://github.com/gin-gonic/gin) to v1.8.1 for a vulnerability patch - CVE-2020-28483(HIGH) - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2024-45337 (CRITICAL) - [api-hub-deviceon-bi] Fix CVE - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2024-45337 (CRITICAL) - [profile-server] Fix CVE - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2024-45337 (CRITICAL) - [datapacker] Fix CVE - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2024-45337 (CRITICAL) - [dbmaster] Fix CVE - Upgraded [github.com/golang-jwt/jwt/v4](http://github.com/golang-jwt/jwt/v4) to v4.5.2 for a vulnerability patch - CVE-2025-30204(HIGH) - Upgraded [github.com/tidwall/gjson](http://github.com/tidwall/gjson) to v1.9.3 for a vulnerability patch - CVE-2020-35380(HIGH) - CVE-2020-36066(HIGH) - CVE-2020-36067(HIGH) - CVE-2021-42836(HIGH) - Upgraded [golang.org/x/crypto](http://golang.org/x/crypto) to v0.35.0 for a vulnerability patch - CVE-2024-45337 (CRITICAL) ### EdgeHub private network (EPN) #### [Update] - #### EdgeHub utility (1.1.0-rc.1) - [COM port mapping] Display PC Virtual COM status - [COM port mapping] Automatically scroll the real-time log to stay at the bottom in the Monitoring page. - [COM port mapping] Add monitor button icons in each Virtual COM - [UI] Set the default window size to 1020×660 and update content for responsive layout. - #### Direct Access - [Device] Lazy Loading for Device Images in Device List - [Server] Adjust configuration fields for OpenVPN v2.6.12 - Removed `Compression` field - Removed `ENCRYPTION_SIZE_1024` option - Added `ENCRYPTION_SIZE_4096` option in `RSA encryption length (bit)` field - [General] Hide `Usage insight` and `Activity log` - [General] Show / Hide `alarm setting` functions by user's `Alarm and event` scope #### [Fix] - #### EPN service - [#42079][Core] Virtual devices will be created multiple times during sync device. - [#42062][EPN] The Device name will become "-" after Online/Offline - #### EdgeHub utility (1.1.0-rc.1) - [COM Port Mapping] Sort list by `PC Virtual COM` - #### Direct Access - [#42106][EPN] RSA encryption 1024 length should be or emoved if encryption 1024 not support anymore - [#41936][EPN] The cert date of EPN Client or device will be added 0 automatically - ## Version: 2.5.0-beta.2 (2025/07/31) ### Device Management #### [New] * X.509 Certificate * For the ADAM device, users can paste the X.509 CSR(Certificate Signing Requests) on the website to create the device. * Auto Provision Enhancements * Modify the Add Device button to include the following features: * **Quick registration**: Create unknown devices * **Single device**: For creating ADAM, WISE, EdgeLink, SCADA, Computer, LoRaWAN device models * **Batch import**: Import multiple devices of all supported models(including unknown device) by uploading one CSV file * Add the unknown device type (can be convert to specific device models through manual modification or auto provisioning in the next version) #### [Fix] * [#41977] [DPM] Translation improvements for better Mandarin localization * [#41978] [DPM] Configuration text should be translated to Mandarin * [#41960] [DPM] Fixed display issue where long descriptions for device 2210 would overlap with other information ### Data Management #### [Update] - #### Core - [api-portal] Supports auto-adding default EPN channel settings for new and existing tenants. #### [Fix] - #### Core - [Archiver][Archiver-restore] Prevent redundant mongoDB index creation and ensure collection readiness before insertion - [#41894][Dataworker] If the device goes online immediately after going offline, its online time may not be recorded correctly. ### EdgeHub private network (EPN) #### [New] - #### EPN service - [Core] Upgrade openvpn from 2.4.9 to 2.6.12 - #### Data connect portal - [Device] Device list with devices' online/offline status - [Server] Server's alarm rule setting - Monthly traffic (total, upload, download) limit of all devices & EpnClients - Monthly traffic (total, upload, download) limit of all devices - Monthly traffic (total, upload, download) limit of all EpnClients - Please note that monthly traffic is reset at 00:00:00 UTC on the first day of each month. - [Device] Device's alarm rule setting - Monthly traffic (total, upload, download) limit of a device - Please note that monthly traffic is reset at 00:00:00 UTC on the first day of each month. - [EpnClient] EpnClient's alarm rule setting - Monthly traffic (total, upload, download) limit of an EpnClient - Please note that monthly traffic is reset at 00:00:00 UTC on the first day of each month. - [Alarm settings] Alarm settings for EPN - Levels & Categories - Alarm Level - Alarm Categroy - Event & actions - Alarm groups - Allow to add alarm rules from server / device / EpnClient into an alarm group - Alarm user groups - Notification groups - Allow to set notification message with client variables and usage variables - Channel settings - #### EdgeHub utility (1.1.0-beta.2) - [Device] Device list with devices' online/offline status - [COM port mapping] - Show the list of COM port mappings created on this device. - Note: If the EpnClient has not connected to the EPN, this list will appear empty. - Operations for each COM port mapping - Enable / disable mapping - Unbind mapping - Monitor COM log ## Version: 2.5.0-beta.1 (2025/07/24) ### Device Management #### [New] * X.509 Certificate * ADAM Utility can call DPM APIs to create ADAM devices which use device generated CSR certificates * The signature algorithm for ADAM devices is ECDSA-256 #### [Fix] * [#38339] [UM] The repository user number is the same after deleting a tenant user. ### Data Management #### [Fix] - #### Core - [#41679][EPN] Even if the tenant status is disabled, the EPN server can still operate. - dc-evaluator-dispatcher - fix CVE-2024-45337 - dc-evaluator - fix CVE-2024-45337 (Critical) - fix CVE-2025-29786 / CVE-2025-22869 (High) - dc-event-dispatcher - fix CVE-2024-24790 / CVE-2024-45337 (Ctitical) - fix CVE-2025-22869 / GHSA-m425-mq94-257g / CVE-2023-39325 / CVE-2023-45283 / CVE-2023-45287 / CVE-2023-45288 / CVE-2024-34156 (High) - dc-dataworker - feat: add handle tenant device statistics - Upgraded `github.com/jackc/pgx/v5` to v5.5.4 to patch - CVE-2024-27304 (HIGH) - Upgraded `golang.org/x/crypto` to v0.35.0 to patch - CVE-2024-45337 (CRITICAL) - CVE-2025-22869 (HIGH) - uploading the cfg again would not update data type from unknown to a correct type - dc-config-loader - fix CVE-2024-45337 (CRITICAL) - fix CVE-2025-22869 (HIGH) - alarm-service - Upgraded `gin-gonic/gin` to v1.7.7 to patch - CVE-2019-25211 (CRITICAL) - CVE-2020-28483 (HIGH) - CVE-2020-36567 (HIGH) - Upgraded `golang.org/x/crypto` to v0.35.0 to patch - CVE-2024-45337 (CRITICAL) - CVE-2025-22869 (HIGH) - Upgraded `mellium.im/sasl` to v0.3.1 to patch - CVE-2022-48195 (CRITICAL) - dc-import-export-service - Upgraded `github.com/jackc/pgx/v5` to v5.5.4 to patch - CVE-2024-27304 (HIGH) - api-forwarding - Upgraded `go version` to 1.23.0 - CVE-2024-45283 - CVE-2024-45287 - CVE-2024-45288 - CVE-2024-34156 - Upgraded `golang.org/x/net` to v0.17.0 to patch - CVE-2024-24790 (CRITICAL) - CVE-2023-39325 (HIGH) - CVE-2023-45288 (HIGH) - Upgraded `golang.org/x/crypto` to v0.35.0 to patch - CVE-2024-45337 (CRITICAL) - CVE-2025-22869 (HIGH) - Upgraded `google.golang.org/grpc` to v1.58.3 - GHSA-m425-mq94-257g - archiver - Upgrade 'toolchain' to go1.24.4 to fix - CVE-2024-24790 (CRITICAL) - Upgrade package '[golang.org/x/crypto](http://golang.org/x/crypto) ' to 0.39.0 to fix - CVE-2024-45337 (CRITICAL) - api-plugin - Upgrade 'toolchain' to `node:22.17.0-alpine3.21` to fix - CVE-2023-45853 (CRITICAL) - Upgrade packages `hbs` to `4.2.0` fix - CVE-2021-23369 (CRITICAL) - CVE-2021-23383 (CRITICAL) - #### User management - [#38339][UM] The repository user number is the same after deleting a tenant user. ### EdgeHub private network (EPN) #### [New] - #### Direct access portal - [UI] Connection statistic infomation - Total client devices - Online devices - Online EpnClients - Current traffic (Realtime traffic) - Monthly traffic (for the current month, counted from 00:00:00 UTC on the 1st day of the month) - [UI] Device list with traffic information - Current Download / Upload traffic (reset to 0 while device offline) - [UI] EpnClient list with traffic information - Current Download / Upload traffic (reset to 0 while EpnClient offline) - #### EdgeHub utility (1.1.0-beta.1) - install `SetupEdgeLinkVCOM_1.3.2_Release_2506123_v1.3.2.exe` if there is no VCOM installed - [Device] COM list in the device list - [Device] Bind / Unbind device's COM