X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=debian%2Fchangelog;h=dcb55af2a6d8da40ec9a36f4f5d72e680c33919c;hb=11b2ccd56cb7313f4994b03a4d16b0513bdcc23d;hp=59694aa8936d9cee848fe0608fdb2987515be5e2;hpb=3c35339bc4d3db033cc44558baf66c80e87fbd85;p=secnet.git

diff --git a/debian/changelog b/debian/changelog
index 59694aa..dcb55af 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,58 @@
+secnet (0.4.0~beta2~) unstable; urgency=low
+
+  * polypath: Ignore IPv6 Unique Local unicast addresses.
+  * polypath: Skip "tentative" IPv6 local addresses.
+  * polypath: Improve logging and debug output.
+  * Portability fix: Build where size_t is not compatible with int.
+
+ -- Ian Jackson <ijackson@chiark.greenend.org.uk>  Sat, 27 Dec 2014 21:28:25 +0000
+
+secnet (0.4.0~beta1) unstable; urgency=low
+
+  New features:
+  * Support transport over IPv6.  (We do not yet carry IPv6 in the private
+    network.)  IPv6 support depends on IPv6-capable adns (adns 1.5.x).
+  * New polypath comm, which can duplicate packets so as to send them via
+    multiple routes over the public network, for increased
+    reliability/performance (but increased cost).  Currently Linux-only
+    but should be fairly easy to port.
+  * Support multiple public addresses for peers.
+  * Discard previously-received packets (by default).
+
+  Logging improvements:
+  * Report (each first) transmission and reception success and failure.
+  * Log reason for DNS reolution failure.
+  * Log unexpected kinds of death from userv.
+  * Log authbind exit status as errno value (if appropriate).
+
+  Configuration adjustments:
+  * Adjust default number of mobile peer addresses to store when a peer
+    public address is also configured.
+  * Make specifying peer public port optional.  This avoids making special
+    arrangements to bind to a port for in mobile sites with no public
+    stable address.
+
+  Bugfixes:
+  * Hackypar children will die if they get a terminating signal.
+  * Fix signal dispositions inherited by secnet's child processes.
+  * Fix off-by-one error which prevented setting transport-peers-max to 5.
+
+  Test, build and internal improvements:
+  * Use conventional IP address handling library ipaddr.py.
+  * Provide a fuzzer for the slip decoder.
+  * Build system improvements.
+  * Many source code cleanups.
+
+ -- Ian Jackson <ijackson@chiark.greenend.org.uk>  Sun, 26 Oct 2014 15:28:31 +0000
+
+secnet (0.3.4) unstable; urgency=low
+
+  SECURITY FIX:
+  * The previous security fix to buffer handling was entirely wrong.  This
+    one is better.  Thanks to Simon Tatham for the report and the patch.
+
+ -- Ian Jackson <ijackson@chiark.greenend.org.uk>  Mon, 22 Sep 2014 16:16:11 +0100
+
 secnet (0.3.3) unstable; urgency=high
 
   SECURITY FIXES: