4 See also this page @ref{Новости, on russian}.
11 Merkle Tree-based Hashing with BLAKE3 (MTH) is used instead of BLAKE2b.
12 Because of that, there are backward @strong{incompatible} changes of
13 encrypted files (everything laying in the spool directory) and
14 @file{.meta} files of chunked transfer.
16 Current implementation is far from being optimal: it lacks
17 parallelizable calculations and has higher memory consumption: nearly
18 512 KiB for each 1 GiB of file's data. Future performance and memory
19 size optimizations should not lead to packet's format change. But it is
20 still several times faster than BLAKE2b.
23 Resumed online downloads, because of MTH, require reading only of the
24 preceding part of file, not the whole one as was before.
27 @command{nncp-hash} utility appeared for calculating file's MTH hash.
30 BLAKE2 KDF and XOF functions are replaced with BLAKE3 in encrypted
31 packets. Lowering number of used primitives. Also, its encrypted
32 packet's header is used as an associated data during encryption.
35 MultiCast Discovery uses
36 @verb{|ff02::4e4e:4350|} address instead of @verb{|ff02::1|}.
44 @section Release 6.6.0
48 @command{nncp-daemon}, @command{nncp-call} and @command{nncp-caller}
49 commands wait for all background checksummers completion after
50 connection is finished.
53 Added possibility of address determining through multicast announcement
54 in local area network, so called MCD (MultiCast Discovery).
59 @section Release 6.5.0
63 Fixed segfault in @command{nncp-daemon} when SP handshake did not succeed.
66 Fixed possible bad return code ignoring in automatic tosser.
69 Fixed race during file descriptors closing when online protocol call is
70 finished, that could lead to write error of received packet fragment.
73 Kill all packet transmission progress bars in @command{nncp-daemon},
74 @command{nncp-call} and @command{nncp-caller} when call is finished.
79 @section Release 6.4.0
83 Fixed possible race in online protocol, that lead to panic.
88 @section Release 6.3.0
92 Fixed possible panic while showing progress during online protocol.
97 @section Release 6.2.1
101 Three places in logs contained excess @code{%s}.
106 @section Release 6.2.0
110 Returned @command{nncp-caller}'s @option{-autotoss*} options workability.
113 Yet another logging refactoring and simplification.
114 Should be no visible differences to the end user.
119 @section Release 6.1.0
123 Optimization: most commands do not keep opened file descriptors now.
124 Previously you can exceed maximal number of opened files if you have got
125 many packets in the spool directory.
128 Optimization: do not close file descriptor of the file we download
129 online. Previously each chunk lead to expensive open/close calls.
132 Online downloaded files are saved with @file{.nock} (non-checksummed)
133 suffix, waiting either for @command{nncp-check}, or online daemons to
134 perform integrity check.
137 Optimization: files, that are not resumed, are checksummed immediately
138 during the online download, skipping @file{.nock}-intermediate step.
141 Ability to store encrypted packet's header in @file{.hdr} file, close to
142 the packet itself. That can greatly increase performance of packets
143 listing on filesystems with big block's size.
148 @section Release 6.0.0
152 Log uses human readable and easy machine parseable
153 @url{https://www.gnu.org/software/recutils/, recfile} format for the
154 records, instead of structured RFC 3339 lines. Old logs are not readable
155 by @command{nncp-log} anymore.
158 @option{-autotoss*} option workability with @command{nncp-daemon}'s
159 @option{-inetd} mode.
162 Call's @option{when-tx-exists} allows to make a call only when outbound
163 packets exists. Combined with seconds-aware cron expression that can be
164 used as some kind of auto dialler.
167 @command{nncp-cronexpr} command allows you to check validity and
168 expectations of specified cron expression.
173 @section Release 5.6.0
177 @option{-autotoss*} option runs tosser not after the call, but every
178 second while it is active.
181 @option{autotoss}, @option{autotoss-doseen},
182 @option{autotoss-nofile}, @option{autotoss-nofreq},
183 @option{autotoss-noexec}, @option{autotoss-notrns} options available in
184 @option{calls} configuration section. You can configure per-call
185 automatic tosser options.
188 Use vendoring, instead of @env{GOPATH} overriding during tarball
189 installation, because current minimal Go's version is 1.12 and it
195 @section Release 5.5.1
199 Respect for @env{BINDIR}, @env{INFODIR} and @env{DOCDIR} environment
200 variables in @file{config} during installation.
205 @section Release 5.5.0
209 Bugfixes in @command{nncp-call(er)}/@command{nncp-daemon},
210 @command{nncp-bundle} and @command{nncp-stat}.
213 @command{nncp-rm} has @option{-dryrun} and @option{-older} options now.
216 @command{nncp-exec} has @option{-use-tmp} and @option{-nocompress}
217 options now. Uncompressed packets are not compatible with previous NNCP
221 @command{nncp-call}, @command{nncp-caller} and @command{nncp-daemon} commands
222 have @option{-autotoss*} options for running tosser after call is ended.
225 Updated dependencies. Minimal required Go version is 1.12.
230 @section Release 5.4.1
234 Fixed @code{SENDMAIL} variable usage during the build.
239 @section Release 5.4.0
243 Updated dependencies.
246 Build system is moved from Makefiles to @url{http://cr.yp.to/redo.html, redo}.
247 This should not influence package maintainers, because minimal @command{redo}
248 implementation is included in tarball.
253 @section Release 5.3.3
257 More various error checks.
260 Updated dependencies.
265 @section Release 5.3.2
269 Fixed incorrect logic of @option{onlinedeadline} timeout, where
270 connection won't take into account incoming packets events and will
271 forcefully disconnect.
276 @section Release 5.3.1
280 Fixed @option{onlinedeadline} workability with call addresses that use
281 external commands (@verb{#"|somecmd"#}).
284 @command{nncp-stat} has @option{-pkt} option displaying information
285 about each packet in the spool.
290 @section Release 5.3.0
294 Progress messages contain prefix, describing the running action.
297 Fixed not occurring handshake messages padding.
300 Finish all SP protocol related goroutines, less memory leak.
303 SP protocol generates less socket write calls, thus generating less TCP
307 Check @option{onlinedeadline} and @option{maxonlinetime} options every
308 second, independently from socket reads (up to 10 seconds).
311 Once per minute, if no other traffic exists, PING packets are sent in
312 SP-connection. That allows faster determining of connection unworkability.
315 @command{nncp-toss} uses lock-file to prevent simultaneous tossing.
320 @section Release 5.2.1
324 Fixed SP protocol error handling, sometimes causing program panic.
329 @section Release 5.2.0
333 Most commands by default show oneline operations progress.
334 @option{-progress}, @option{-noprogress} command line options,
335 @option{noprogress} configuration file option appeared.
338 Fixed incorrect @command{nncp-check} command return code, that returned
339 bad code when everything is good.
342 Free disk space check during @command{nncp-bundle -rx} call.
347 @section Release 5.1.2
351 @strong{Critical} vulnerability: remote peers authentication could lead
352 to incorrect identification of remote side, allowing foreign encrypted
356 Bugfix: private and public Noise keys were swapped in newly created
357 configuration files, that lead to inability to authenticate online peers.
360 Explicit directories fsync-ing for guaranteed files renaming.
365 @section Release 5.1.1
369 Fixed workability of @command{nncp-file} with @option{-chunked 0} option.
374 @section Release 5.1.0
378 @command{nncp-file} can send directories, automatically creating pax
382 Free disk space is checked during outbound packets creation.
385 @option{freq}, @option{freqminsize}, @option{freqchunked} configuration
386 file options replaced with the structure:
387 @option{freq: @{path: ..., minsize: ..., chunked: ...@}}.
390 Added @option{freq.maxsize} configuration file option, forbidding of
391 freq sending larger than specified size.
394 Ability to notify about successfully executed commands (exec) with
395 @option{notify.exec} configuration file option.
400 @section Release 5.0.0
404 @strong{Incompatible} configuration file format change: YAML is
405 replaced with Hjson, due to its simplicity, without noticeable lack
406 of either functionality or convenience.
409 @strong{Incompatible} plain packet format changes. Older versions are
410 not supported. @code{zlib} compression is replaced with
411 @code{Zstandard}, due to its speed and efficiency, despite library
412 version is not mature enough.
415 Ability to call remote nodes via pipe call of external command, not only
419 @command{nncp-cfgnew} generates configuration file with many
420 comments. @option{-nocomments} option can be used for an old
424 Duplicate filenames have @file{.CTR} suffix, instead of @file{CTR}, to
425 avoid possible collisions with @file{.nncp.chunkCTR}.
428 Ability to override process umask through configuration file option.
431 Files and directories are created with 666/777 permissions by default,
432 allowing control with @command{umask}.
435 Updated dependencies.
438 Full usage of go modules for dependencies management
439 (@code{go.cypherpunks.ru/nncp/v5} namespace is used).
442 Forbid any later GNU GPL version autousage
443 (project's licence now is GNU GPLv3-only).
450 @item Workability on GNU/Linux systems and Go 1.10 is fixed.
458 @strong{Incompatible} encrypted and eblob packet format change: AEAD
459 encryption mode with 128 KiB blocks is used now, because previously
460 @command{nncp-toss} did not verify encrypted packet's MAC before feeding
461 decrypted data to external command. Older versions are not supported.
464 Available free space checking before copying in @command{nncp-xfer},
465 @command{nncp-daemon}, @command{nncp-call(er)}.
468 @command{nncp-call} has ability only to list packets on remote node,
469 without their transmission.
472 @command{nncp-call} has ability to transfer only specified packets.
475 Workability of @option{xxrate} preference in @option{calls}
476 configuration file section.
479 Dependant libraries are updated.
485 Begin using of @code{go.mod} subsystem.
492 @item @command{nncp-daemon} can be run as @command{inetd}-service.
500 @command{nncp-daemon}, @command{nncp-call}, @command{nncp-caller} check
501 if @file{.seen} exists and treat it like file was already downloaded.
502 Possibly it was transferred out-of-bound and remote side needs to be
506 If higher priority packet is spooled, then @command{nncp-daemon} will
507 queue its sending first, interrupting lower priority transmissions.
510 Simple packet rate limiter added to online-related tools
511 (@command{nncp-daemon}, @command{nncp-call}, @command{nncp-caller}).
514 Ability to specify niceness with symbolic notation:
515 @verb{|NORMAL|}, @verb{|BULK+10|}, @verb{|PRIORITY-5|}, etc.
518 Changed default niceness levels:
519 for @command{nncp-exec} from 64 to 96,
520 for @command{nncp-freq} from 64 to 160,
521 for @command{nncp-file} from 196 to 224.
529 @strong{Incompatible} @emph{bundle} archive format changes and
530 @command{nncp-bundle} workability with Go 1.10+. Bundles must be
531 valid tar archives, but Go 1.9 made them invalid because of long paths
532 inside. NNCP accidentally was dependant on that bug. Explicit adding of
533 @file{NNCP/} directory in archive restores workability with valid tar
541 Ability to disable relaying at all using @verb{|-via -|} command line option.
549 @strong{Incompatible} plain packet format changes. Older versions are
553 Ability to queue remote command execution, by configuring @option{exec}
554 option in configuration file and using @command{nncp-exec} command:
557 @command{nncp-mail} command is replaced with more flexible
558 @command{nncp-exec}. Instead of @verb{|nncp-mail NODE RECIPIENT|}
559 you must use @verb{|nncp-exec NODE sendmail RECIPIENT|}.
561 @option{sendmail} configuration file option is replaced with
562 @option{exec}. @verb{|sendmail: [...]|} must be replaced with
563 @verb{|exec: sendmail: [...]|}.
567 Ability to override @option{via} configuration option for destination
568 node via @option{-via} command line option for following commands:
569 @command{nncp-file}, @command{nncp-freq}, @command{nncp-exec}.
572 Chunked files, having size less than specified chunk size, will be sent
573 as an ordinary single file.
576 Exec commands are invoked with additional @env{NNCP_NICE} and
577 @env{NNCP_SELF} environment variables.
580 Files, that are sent as a reply to freq, have niceness level taken from
581 the freq packet. You can set desired niceness during @command{nncp-freq}
582 invocation using @option{-replynice} option.
585 @command{nncp-toss} command can ignore specified packet types during
586 processing: @option{-nofile}, @option{-nofreq}, @option{-noexec},
590 @command{nncp-file} command uses
591 @option{FreqMinSize}/@option{FreqChunked} configuration file options
592 for @option{-minsize}/@option{-chunked} by default. You can turn this
593 off by specifying zero value.
602 @strong{Incompatible} encrypted/eblob packet format changes. Older
603 versions are not supported.
606 Twofish encryption algorithm is replaced with ChaCha20. It is much more
607 faster. One cryptographic primitive less.
610 HKDF-BLAKE2b-256 KDF algorithm is replaced with BLAKE2Xb XOF. Yet
611 another cryptographic primitive less (assuming that BLAKE2X is nearly
612 identical to BLAKE2).
621 @strong{Incompatible} encrypted packet format changes. Older versions
625 @command{nncp-bundle} command can either create stream of encrypted
626 packets, or digest it. It is useful when dealing with
627 @code{stdin}/@code{stdout} based transmission methods (like writing to
628 CD-ROM without intermediate prepared ISO image and working with tape
632 @command{nncp-toss} is able to create @file{.seen} files preventing
633 duplicate packets receiving.
636 Single background checksum verifier worker is allowed in
637 @command{nncp-call}. This is helpful when thousands of small inbound
638 packets could create many goroutines.
641 Ability to override path to spool directory and logfile through either
642 command line argument, or environment variable.
645 @command{nncp-rm} is able to delete outbound/inbound, @file{.seen},
646 @file{.part}, @file{.lock} and temporary files.
651 @section Release 0.12
653 @item Sendmail command is called with @env{NNCP_SENDER} environment variable.
657 @section Release 0.11
659 @item @command{nncp-stat}'s command output is sorted by node name.
663 @section Release 0.10
666 @command{nncp-freq}'s @file{DST} argument is optional now. Last
667 @file{SRC} path's element will be used by default.
674 Fix @option{-rx}/@option{-tx} arguments processing in
675 @command{nncp-call} command. They were ignored.
682 Little bugfix in @command{nncp-file} command, where @option{-minsize}
683 option for unchunked transfer was not in KiBs, but in bytes.
691 Ability to feed @command{nncp-file} from @code{stdin}, that uses an
692 encrypted temporary file for that.
695 Chunked files transmission appeared with corresponding
696 @command{nncp-reass} command and @option{freqchunked} configuration file
697 entry. Useful for transferring big files over small storage devices.
700 @option{freqminsize} configuration file option, analogue to
701 @option{-minsize} one.
704 @command{nncp-xfer}'s @option{-force} option is renamed to
705 @option{-mkdir} for clarity.
708 @option{-minsize} option is specified in KiBs, not bytes, for
712 @command{nncp-newcfg} command is renamed to @command{nncp-cfgnew},
713 and @command{nncp-mincfg} to @command{nncp-cfgmin} -- now they have
714 common prefix and are grouped together for convenience.
717 @command{nncp-cfgenc} command appeared, allowing configuration file
718 encryption/decryption, for keeping it safe without any either OpenPGP or
722 Cryptographic libraries (dependencies) are updated.
729 @item Small @command{nncp-rm} command appeared.
730 @item Cryptographic libraries (dependencies) are updated.
737 Trivial small fix in default niceness level of @command{nncp-file}
738 and @command{nncp-freq} commands.
746 Small fix in @command{nncp-call}, @command{nncp-caller},
747 @command{nncp-daemon}: they can segmentation fail sometimes (no data is
751 @command{nncp-newnode} renamed to @command{nncp-newcfg} -- it is shorter
752 and more convenient to use.
755 @command{nncp-mincfg} command appeared: helper allowing to create
756 minimalistic stripped down configuration file without private keys, that
757 is useful during @command{nncp-xfer} usage.
764 @item Fixed compatibility with Go 1.6.
772 @strong{Incompatible} packet's format change (magic number is changed
773 too): size field is encrypted and is not send in plaintext anymore.
776 @option{-minsize} option gives ability to automatically pad outgoing
777 packets to specified minimal size.
780 @command{nncp-daemon} and @command{nncp-call}/@command{nncp-caller}
781 always check new @emph{tx} packets appearance in the background while
782 connected. Remote side is immediately notified.
785 @option{-onlinedeadline} option gives ability to configure timeout of
786 inactivity of online connection, when it could be disconnected. It could
787 be used to keep connection alive for a long time.
790 @option{-maxonlinetime} option gives ability to set maximal allowable
791 online connection aliveness time.
794 @command{nncp-caller} command appeared: cron-ed TCP daemon caller.
797 @command{nncp-pkt} command can decompress the data.