secnet 0.3.0~beta3

Ian Jackson ijackson at
Mon Aug 5 12:08:33 BST 2013

Hash: SHA256

I am pleased to announce secnet 0.3.0~beta3.  This is the third beta
of secnet 0.3.0.  It contains many important changes from beta1 (and
earlier versions of secnet).  beta3 contains one important bugfix
since beta2.

0.3.0 is a new upstream version with substantial changes from 0.2.0,
including important security fixes.  0.3.0~beta3 can be found here:

If you are able to do so conveniently, please test it.  It should be
backwards-compatibile with previous versions.  For those on the SGO
VPN: chiark is already running this version.

When you have upgraded, you should make a change to your secnet.conf
file, as follows:
  -transform serpent256-cbc {
  -	max-sequence-skew 10;
  +transform eax-serpent { }, serpent256-cbc { };
(diff corrected since the beta2 announcement).
The previously-specified transform "serpent256-cbc" has serious
security weaknesses.  If you make this change, your new secnet
will automatically negotiate the new "eax-serpent" transform with
suitably capable peers.

For a summary of the changes see the changelog extracts below.  For
full details see the git history.

secnet (0.3.0~beta3) unstable; urgency=low

  * New upstream version.
   - Stability bugfix: properly initialise site's scratch buffer.

 -- Ian Jackson <ijackson at>  Mon, 05 Aug 2013 11:54:09 +0100

secnet (0.3.0~beta2) unstable; urgency=low

  * New upstream version.
   - SECURITY FIX: RSA public modulus and exponent buffer overflow.
   - SECURITY FIX: Use constant-time memcmp for message authentication.
   - SECURITY FIX: Provide a new transform, eax-serpent, to replace cbcmac.
   - SECURITY FIX: No longer send NAKs for NAKs, avoiding NAK storm.
   - SECURITY FIX: Fix site name checking when site name A is prefix of B.
   - SECURITY FIX: Safely reject too-short IP packets.
   - Better robustness for mobile sites (proper user of NAKs, new PROD msg).
   - Better robustness against SLIP decoding errors.
   - Fix bugs which caused routes to sometimes not be advertised.
   - Protocol capability negotiation mechanism.
   - Improvements and fixes to protocol and usage documentation.
   - Other bugfixes and code tidying up.

Here are the distribution files' SHA-256 checksums:

dcfd6ca710717ead334e5553adc3f5e9f9562d87f588fa4bb560230fdfd61d2c  secnet_0.3.0~beta3.dsc
791a87440875be9f8bfee97bf5ef34c329838d2316d5ecf072f2173bb9800a41  secnet_0.3.0~beta3.tar.gz
f282504bb6437ef9e7031b3ae6a5d2ae2acd51f6d4abda4948b0265c04ac7ccf  secnet_0.3.0~beta3_i386.changes
63e55bae87747836e1eaae92478f7a36aaa2521edfec41e308f1ed82408d84e9  secnet_0.3.0~beta3_i386.deb

Version: GnuPG v1.4.10 (GNU/Linux)


More information about the sgo-software-announce mailing list