Почетна Преглед Помоћ
Пријавите се
yosoyhendrix
/
dnstt
огледало од https://www.bamsoftware.com/git/dnstt.git
1
0
Креирај огранак 0
Датотеке Дискусије 0 Вики
Дрво: 46acde28bc
Гране Ознаке
dnstt
/
CHANGELOG

CHANGELOG 2.4 KB
Историја Датотека

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. ## v1.20210803.0
    2. 

  2. 

  3. Performance tuning. Enlarge some buffers and network receive windows to
    4. 

  4. permit faster downloads in some configurations. Adjusted the dynamic
    5. 

  5. polling model to work more as intended, and tweaked the server send loop
    6. 

  6. to continue bundling outgoing packets as long as some are immediately
    7. 

  7. available.
    8. 

  8. 

  9. Reduce idle timeout from 10 minutes to 2 minutes. Terminated sessions
    10. 

  10. will be reclaimed more quickly.
    11. 

  11. 

  12. Documentation updates.
    13. 

  13. 

  14. 

  15. ## v0.20210424.0
    16. 

  16. 

  17. dnstt was part of a software security audit done by Cure53. The report
    18. 

  18. found issues of severity levels Low–Medium in dnstt and in one of its
    19. 

  19. dependencies, a package used for Noise cryptography. This release fixes
    20. 

  20. the following issues:
    21. 

  21.  * UCB-02-002: Memory leak in acceptStreams() routine of dnstt server (Low)
    22. 

  22.  * UCB-02-003: Potential nonce overflow in Noise protocol (Medium)
    23. 

  23.  * UCB-02-004: Deprecated DH25519 Golang API used by Noise (Low)
    24. 

  24.  * UCB-02-006: DoS due to unconditional nonce increment (Low)
    25. 

  25.  * UCB-02-007: DoS due to missing socket timeouts (Low)
    26. 

  26. Unaddressed in this release are:
    27. 

  27.  * UCB-02-005: Client ID security considerations & Noise authenticated data (Low)
    28. 

  28.  * UCB-02-008: Lack of rate limiting in Snowflake and dnstt (Info)
    29. 

  29. Two other issues in the report, UCB-02-001 and UCB-02-009, do not have
    30. 

  30. to do with dnstt. For more details and the text of the report, see
    31. 

  31. https://www.bamsoftware.com/software/dnstt/security.html#cure53-turbotunnel-2021
    32. 

  32. 

  33. Added man pages for dnstt-client and dnstt-server.
    34. 

  34. 

  35. 

  36. ## v0.20200506.0
    37. 

  37. 

  38. Documentation updates.
    39. 

  39. 

  40. 

  41. ## v0.20200504.0
    42. 

  42. 

  43. Documentation updates and link to web page.
    44. 

  44. https://www.bamsoftware.com/software/dnstt/
    45. 

  45. 

  46. 

  47. ## v0.20200430.0
    48. 

  48. 

  49. Send leftover packets (those that were too big to fit in the current DNS
    50. 

  50. response) to the correct client in the future. Before, such leftover
    51. 

  51. packets were included in the next response to be sent, regardless of the
    52. 

  52. client it was intended for.
    53. 

  53. 

  54. Fix the loop that packs packets into responses in the server. Before, if
    55. 

  55. there were not a packet immediately available, the response would always
    56. 

  56. be empty. Now, a packet has until the response timeout to be included.
    57. 

  57. 

  58. Buffer the DoT transport in the client so that length prefixes and DNS
    59. 

  59. queries happen in the same send.
    60. 

  60. 

  61. Don't look for encoded packets in a response that was too short to
    62. 

  62. contain a ClientID.
    63. 

  63. 

  64. 

  65. ## v0.20200426.0
    66. 

  66. 

  67. Added the -mtu command-line option to the server.
    68. 

  68. 

  69. Documentation fixes.
    70. 

  70. 

  71. 

  72. ## v0.20200419.0
    73. 

  73. 

  74. Initial public release and announcement.
    75. 

  75. https://github.com/net4people/bbs/issues/30
    76.