source: CHANGELOG @ b4c365

Revision b4c365, 7.5 KB checked in by Erik Ekman <erik@…>, 3 years ago (diff)

Update changelog after release

  • Property mode set to 100644
Line 
1
2iodine - http://code.kryo.se/iodine
3
4***********************************
5
6CHANGES:
7
8master:
9        - Nothing yet
10
112014-06-16: 0.7.0 "Kryoptonite"
12        - Partial IPv6 support (#107)
13           Client can connect to iodined through an relaying IPv6
14           nameserver. Server only supports IPv4 for now.
15           Traffic inside tunnel is IPv4.
16        - Add socket activation for systemd, by Michael Scherer.
17        - Add automated lookup of external ip (via -n auto).
18        - Bugfix for OS X (Can't assign requested address)
19        - Fix DNS tunneling bug caused by uninitialized variable, #94
20        - Handle spaces when entering password interactively, fixes #93.
21                Patch by Hagar.
22        - Add -R option to set OpenBSD routing domain for the DNS socket.
23                Patch by laurent at gouloum fr, fixes #95.
24        - Add android patches and makefile, from Marcel Bokhorst, fixes #105.
25        - Added missing break in iodine.c, by Pavel Pergamenshchik, #108.
26        - A number of minor patches from Frank Denis, Gregor Herrmann and
27                Barak A. Pearlmutter.
28        - Testcase compilation fixes for OS X and FreeBSD
29        - Do not let sockets be inherited by sub-processes, fixes #99.
30        - Add unspecified RR type (called PRIVATE; id 65399, in private use
31                range). For servers with RFC3597 support. Fixes #97.
32        - Fix authentication bypass vulnerability; found by Oscar Reparaz.
33
342010-02-06: 0.6.0-rc1 "Hotspotify"
35        - Fixed tunnel not working on Windows.
36        - Any device name is now supported on Windows, fixes #47.
37        - Multiple installed TAP32 interfaces are now supported, fixes #46.
38        - Return nonzero if tunnel fails to open, fixes #62.
39        - Support for setting a SELinux context, based on patch by
40                Sebastien Raveau. Sample context file in doc/iodine.te
41        - Allow listen port and DNS forward port to be the same if listen IP
42                does not include localhost.
43        - The client will now exit if configuring IP or MTU fails.
44        - The starting cache miss value is randomized at startup, fixes #65.
45        - Raw UDP mode added. If the iodined server is reachable directly,
46                packets can be sent to it without DNS encoding. Fixes #36.
47        - Do not overwrite users CC/CFLAGS/LDFLAGS, only add to them.
48        - Added -F option to write pidfile, based on patch from
49                misc at mandriva.org. Fixes #70.
50        - Allow password to be set via environment variable, fixes #77.
51                Based on patch by logix.
52        - Client now prints server tunnel IP, fixes #78. Patch by logix.
53        - Fix build error on Mac OS X 10.6, patch by G. Rischard. #79.
54        - Added support for CNAME/TXT/A/MX query types, fixes #75.
55                Patch by Anne Bezemer, merge help by logix.
56        - Merged low-latency patch from Anne Bezemer, fixes #76.
57        - Resolve client nameserver argument if given as hostname, fixes #82.
58        - Open log before chroot, fixes #86: logging on FreeBSD.
59        - Merged big bugfix patch from Anne Bezemer, #88.
60
612009-06-01: 0.5.2 "WifiFree"
62        - Fixed client segfault on OS X, #57
63        - Added check that nameserver lookup was successful
64        - Fixed ENOTSOCK error on OS X and FreeBSD, #58.
65
662009-03-21: 0.5.1 "Boringo"
67        - Added initial Windows support, fixes #43.
68        - Added length check of autoprobe responses
69        - Refactored and added unit tests
70        - Added syslog logging for iodined on version and login packets
71        - Fixed segfault when encoding just one block, fixes #51.
72                The normal code was never affected by this.
73        - Added win32 code to read DNS server from system, fixes #45.
74        - Disabled password echo on win32, fixes #44.
75        - Fix encoding error making all autoprobing > 1024 bytes fail, #52.
76        - Increase default interface MTU to 1200.
77        - Fix autoprobing error making every third probe fail, set IP flag
78                Dont-Fragment where supported. Fixes #54.
79        - Added TAP32 version 0901 as accepted (#53).
80
812009-01-23: 0.5.0 "iPassed"
82        - Fixed segfault in server when sending version reject.
83        - Applied patch to make iodine build on BeOS R5-BONE and Haiku,
84                from Francois Revol. Still work to do to get tun device working.
85        - Added capability to forward DNS queries outside tunnel domain to
86                a nameserver on localhost. Use -b port to enable, fixes #31.
87        - iodined now replies to NS request on its own domain, fixes issue #33.
88                The destination IP address is sent as reply. Use -n to specify
89                a specific IP address to return (if behind NAT etc).
90        - Upstream data is now Base64 encoded if relay server preserves case and
91                supports the plus (+) character in domain names, fixes #16.
92        - Fixed problem in client when DNS trans. ID has highest bit set (#37)
93        - IP addresses are now assigned within the netmask, so iodined can
94                use any address for itself, fixes #28.
95        - Netmask size is now adjustable. Setting a small net will reduce the
96                number of users. Use x.x.x.x/n notation on iodined tunnel ip.
97                This fixes #27.
98        - Downstream data is now fragmented, and the fragment size is auto-
99                probed after login. Fixes #7. It only took a few years :)
100        - Enhanced the checks that validates incoming packets
101        - Fixed endless loop in fragment size autodetection, #39.
102        - Fixed broken hostname dot placing with specific lengths, #40.
103
1042008-08-06: 0.4.2 "Opened Zone"
105        - Applied a few small patches from Maxim Bourmistrov and Gregor Herrmann
106        - Applied a patch for not creating and configuring the tun interface,
107                Debian bug #477692 by Vincent Bernat, controlled by -s switch
108        - Applied a security patch from Andrew Griffiths, use setgroups() to
109                limit the groups of the user
110        - Applied a patch to make iodine build on (Open)Solaris, from Albert Lee
111                Needs TUN/TAP driver http://www.whiteboard.ne.jp/~admin2/tuntap/
112                Still needs more code in tun.c for opening/closing the device
113        - Added option in server (-c) to disable IP/port checking on packets,
114                will hopefully help when server is behind NAT
115        - Fixed bug #21, now only IP address part of each packet is checked.
116                Should remove the need for the -c option and also work with
117                bugfixed DNS servers worldwide.
118        - Added -D option on server to enable debugging. Debug level 1 now
119                prints info about each RX/TX datagram.
120
1212007-11-30: 0.4.1 "Tea Online"
122        - Introduced encoding API
123        - Switched to new Base32 implementation
124        - Added Base64 implementation that only uses 63 chars (not used yet)
125        - Refined 'install' make target and use $(MAKE) for recursive calls
126        - All received error messages (RCODE field) are echoed
127        - Top domain limited to 128 chars
128        - Case preservation check sent after login to decide codec
129        - Fixed crash on incoming NULL query in server with bad top domain
130        - /etc/resolv.conf is consulted if no nameserver is given on commandline
131        - Applied patch from Matthew W. S. Bell (Detach before chroot/dropping priv)
132
1332007-03-25: 0.4.0 "Run Home"
134        - Added multiuser support (up to 8 users simultaneously)
135        - Added authentication (password entered as argument or on stdin)
136        - Added manpage
137        - Added install/uninstall make target
138        - Cleanup of dns code, more test cases, use check library
139        - Changed directory structure
140
1412006-11-08: 0.3.4
142        - Fixed handshake() buffer overflow
143          (Found by poplix, Secunia: SA22674 / FrSIRT/ADV-2006-4333)
144        - Added more tests
145        - More name parsing enhancements
146        - Now runs on Linux/AMD64
147        - Added setting to change server port
148
1492006-11-05: 0.3.3
150        - Fixed possible buffer overflow
151          (Found by poplix, Bugtraq ID: 20883)
152        - Reworked dns hostname encoding
153
1542006-09-11: 0.3.2
155        - Support for NetBSD
156        - Fixed potential security problems
157        - Name parsing routines rewritten, added regression tests
158        - New encoding, 25% more peak upstream throughput
159        - New -l option to set local ip to listen to on server
160
1612006-07-11: 0.3.1
162        - Add Mac OSX support
163        - Add setting device name
164        - Use compression of domain name in reply (should allow setting MTU
165                approx 200 bytes higher)
166
1672006-06-24: 0.3.0
168        - First public release
169        - Support for Linux, FreeBSD, OpenBSD
Note: See TracBrowser for help on using the repository browser.