4 See also this page @ref{Новости, on russian}.
11 Merkle Tree-based Hashing with BLAKE3 (MTH) is used instead of BLAKE2b.
12 Because of that, there are backward @strong{incompatible} changes of
13 encrypted files (everything laying in the spool directory) and
14 @file{.meta} files of chunked transfer.
16 Current implementation is far from being optimal: it lacks
17 parallelizable calculations and has higher memory consumption: nearly
18 512 KiB for each 1 GiB of file's data. Future performance and memory
19 size optimizations should not lead to packet's format change. But it is
20 still several times faster than BLAKE2b.
23 Resumed online downloads, because of MTH, require reading only of the
24 preceding part of file, not the whole one as was before.
27 @command{nncp-hash} utility appeared for calculating file's MTH hash.
30 BLAKE2 KDF and XOF functions are replaced with BLAKE3 in encrypted
31 packets. Lowering number of used primitives. Also, its encrypted
32 packet's header is used as an associated data during encryption.
35 MultiCast Discovery uses
36 @verb{|ff02::4e4e:4350|} address instead of @verb{|ff02::1|}.
39 @command{nncp-cfgenc} mistakenly asked passphrase three times during encryption.
47 @section Release 6.6.0
51 @command{nncp-daemon}, @command{nncp-call} and @command{nncp-caller}
52 commands wait for all background checksummers completion after
53 connection is finished.
56 Added possibility of address determining through multicast announcement
57 in local area network, so called MCD (MultiCast Discovery).
62 @section Release 6.5.0
66 Fixed segfault in @command{nncp-daemon} when SP handshake did not succeed.
69 Fixed possible bad return code ignoring in automatic tosser.
72 Fixed race during file descriptors closing when online protocol call is
73 finished, that could lead to write error of received packet fragment.
76 Kill all packet transmission progress bars in @command{nncp-daemon},
77 @command{nncp-call} and @command{nncp-caller} when call is finished.
82 @section Release 6.4.0
86 Fixed possible race in online protocol, that lead to panic.
91 @section Release 6.3.0
95 Fixed possible panic while showing progress during online protocol.
100 @section Release 6.2.1
104 Three places in logs contained excess @code{%s}.
109 @section Release 6.2.0
113 Returned @command{nncp-caller}'s @option{-autotoss*} options workability.
116 Yet another logging refactoring and simplification.
117 Should be no visible differences to the end user.
122 @section Release 6.1.0
126 Optimization: most commands do not keep opened file descriptors now.
127 Previously you can exceed maximal number of opened files if you have got
128 many packets in the spool directory.
131 Optimization: do not close file descriptor of the file we download
132 online. Previously each chunk lead to expensive open/close calls.
135 Online downloaded files are saved with @file{.nock} (non-checksummed)
136 suffix, waiting either for @command{nncp-check}, or online daemons to
137 perform integrity check.
140 Optimization: files, that are not resumed, are checksummed immediately
141 during the online download, skipping @file{.nock}-intermediate step.
144 Ability to store encrypted packet's header in @file{.hdr} file, close to
145 the packet itself. That can greatly increase performance of packets
146 listing on filesystems with big block's size.
151 @section Release 6.0.0
155 Log uses human readable and easy machine parseable
156 @url{https://www.gnu.org/software/recutils/, recfile} format for the
157 records, instead of structured RFC 3339 lines. Old logs are not readable
158 by @command{nncp-log} anymore.
161 @option{-autotoss*} option workability with @command{nncp-daemon}'s
162 @option{-inetd} mode.
165 Call's @option{when-tx-exists} allows to make a call only when outbound
166 packets exists. Combined with seconds-aware cron expression that can be
167 used as some kind of auto dialler.
170 @command{nncp-cronexpr} command allows you to check validity and
171 expectations of specified cron expression.
176 @section Release 5.6.0
180 @option{-autotoss*} option runs tosser not after the call, but every
181 second while it is active.
184 @option{autotoss}, @option{autotoss-doseen},
185 @option{autotoss-nofile}, @option{autotoss-nofreq},
186 @option{autotoss-noexec}, @option{autotoss-notrns} options available in
187 @option{calls} configuration section. You can configure per-call
188 automatic tosser options.
191 Use vendoring, instead of @env{GOPATH} overriding during tarball
192 installation, because current minimal Go's version is 1.12 and it
198 @section Release 5.5.1
202 Respect for @env{BINDIR}, @env{INFODIR} and @env{DOCDIR} environment
203 variables in @file{config} during installation.
208 @section Release 5.5.0
212 Bugfixes in @command{nncp-call(er)}/@command{nncp-daemon},
213 @command{nncp-bundle} and @command{nncp-stat}.
216 @command{nncp-rm} has @option{-dryrun} and @option{-older} options now.
219 @command{nncp-exec} has @option{-use-tmp} and @option{-nocompress}
220 options now. Uncompressed packets are not compatible with previous NNCP
224 @command{nncp-call}, @command{nncp-caller} and @command{nncp-daemon} commands
225 have @option{-autotoss*} options for running tosser after call is ended.
228 Updated dependencies. Minimal required Go version is 1.12.
233 @section Release 5.4.1
237 Fixed @code{SENDMAIL} variable usage during the build.
242 @section Release 5.4.0
246 Updated dependencies.
249 Build system is moved from Makefiles to @url{http://cr.yp.to/redo.html, redo}.
250 This should not influence package maintainers, because minimal @command{redo}
251 implementation is included in tarball.
256 @section Release 5.3.3
260 More various error checks.
263 Updated dependencies.
268 @section Release 5.3.2
272 Fixed incorrect logic of @option{onlinedeadline} timeout, where
273 connection won't take into account incoming packets events and will
274 forcefully disconnect.
279 @section Release 5.3.1
283 Fixed @option{onlinedeadline} workability with call addresses that use
284 external commands (@verb{#"|somecmd"#}).
287 @command{nncp-stat} has @option{-pkt} option displaying information
288 about each packet in the spool.
293 @section Release 5.3.0
297 Progress messages contain prefix, describing the running action.
300 Fixed not occurring handshake messages padding.
303 Finish all SP protocol related goroutines, less memory leak.
306 SP protocol generates less socket write calls, thus generating less TCP
310 Check @option{onlinedeadline} and @option{maxonlinetime} options every
311 second, independently from socket reads (up to 10 seconds).
314 Once per minute, if no other traffic exists, PING packets are sent in
315 SP-connection. That allows faster determining of connection unworkability.
318 @command{nncp-toss} uses lock-file to prevent simultaneous tossing.
323 @section Release 5.2.1
327 Fixed SP protocol error handling, sometimes causing program panic.
332 @section Release 5.2.0
336 Most commands by default show oneline operations progress.
337 @option{-progress}, @option{-noprogress} command line options,
338 @option{noprogress} configuration file option appeared.
341 Fixed incorrect @command{nncp-check} command return code, that returned
342 bad code when everything is good.
345 Free disk space check during @command{nncp-bundle -rx} call.
350 @section Release 5.1.2
354 @strong{Critical} vulnerability: remote peers authentication could lead
355 to incorrect identification of remote side, allowing foreign encrypted
359 Bugfix: private and public Noise keys were swapped in newly created
360 configuration files, that lead to inability to authenticate online peers.
363 Explicit directories fsync-ing for guaranteed files renaming.
368 @section Release 5.1.1
372 Fixed workability of @command{nncp-file} with @option{-chunked 0} option.
377 @section Release 5.1.0
381 @command{nncp-file} can send directories, automatically creating pax
385 Free disk space is checked during outbound packets creation.
388 @option{freq}, @option{freqminsize}, @option{freqchunked} configuration
389 file options replaced with the structure:
390 @option{freq: @{path: ..., minsize: ..., chunked: ...@}}.
393 Added @option{freq.maxsize} configuration file option, forbidding of
394 freq sending larger than specified size.
397 Ability to notify about successfully executed commands (exec) with
398 @option{notify.exec} configuration file option.
403 @section Release 5.0.0
407 @strong{Incompatible} configuration file format change: YAML is
408 replaced with Hjson, due to its simplicity, without noticeable lack
409 of either functionality or convenience.
412 @strong{Incompatible} plain packet format changes. Older versions are
413 not supported. @code{zlib} compression is replaced with
414 @code{Zstandard}, due to its speed and efficiency, despite library
415 version is not mature enough.
418 Ability to call remote nodes via pipe call of external command, not only
422 @command{nncp-cfgnew} generates configuration file with many
423 comments. @option{-nocomments} option can be used for an old
427 Duplicate filenames have @file{.CTR} suffix, instead of @file{CTR}, to
428 avoid possible collisions with @file{.nncp.chunkCTR}.
431 Ability to override process umask through configuration file option.
434 Files and directories are created with 666/777 permissions by default,
435 allowing control with @command{umask}.
438 Updated dependencies.
441 Full usage of go modules for dependencies management
442 (@code{go.cypherpunks.ru/nncp/v5} namespace is used).
445 Forbid any later GNU GPL version autousage
446 (project's licence now is GNU GPLv3-only).
453 @item Workability on GNU/Linux systems and Go 1.10 is fixed.
461 @strong{Incompatible} encrypted and eblob packet format change: AEAD
462 encryption mode with 128 KiB blocks is used now, because previously
463 @command{nncp-toss} did not verify encrypted packet's MAC before feeding
464 decrypted data to external command. Older versions are not supported.
467 Available free space checking before copying in @command{nncp-xfer},
468 @command{nncp-daemon}, @command{nncp-call(er)}.
471 @command{nncp-call} has ability only to list packets on remote node,
472 without their transmission.
475 @command{nncp-call} has ability to transfer only specified packets.
478 Workability of @option{xxrate} preference in @option{calls}
479 configuration file section.
482 Dependant libraries are updated.
488 Begin using of @code{go.mod} subsystem.
495 @item @command{nncp-daemon} can be run as @command{inetd}-service.
503 @command{nncp-daemon}, @command{nncp-call}, @command{nncp-caller} check
504 if @file{.seen} exists and treat it like file was already downloaded.
505 Possibly it was transferred out-of-bound and remote side needs to be
509 If higher priority packet is spooled, then @command{nncp-daemon} will
510 queue its sending first, interrupting lower priority transmissions.
513 Simple packet rate limiter added to online-related tools
514 (@command{nncp-daemon}, @command{nncp-call}, @command{nncp-caller}).
517 Ability to specify niceness with symbolic notation:
518 @verb{|NORMAL|}, @verb{|BULK+10|}, @verb{|PRIORITY-5|}, etc.
521 Changed default niceness levels:
522 for @command{nncp-exec} from 64 to 96,
523 for @command{nncp-freq} from 64 to 160,
524 for @command{nncp-file} from 196 to 224.
532 @strong{Incompatible} @emph{bundle} archive format changes and
533 @command{nncp-bundle} workability with Go 1.10+. Bundles must be
534 valid tar archives, but Go 1.9 made them invalid because of long paths
535 inside. NNCP accidentally was dependant on that bug. Explicit adding of
536 @file{NNCP/} directory in archive restores workability with valid tar
544 Ability to disable relaying at all using @verb{|-via -|} command line option.
552 @strong{Incompatible} plain packet format changes. Older versions are
556 Ability to queue remote command execution, by configuring @option{exec}
557 option in configuration file and using @command{nncp-exec} command:
560 @command{nncp-mail} command is replaced with more flexible
561 @command{nncp-exec}. Instead of @verb{|nncp-mail NODE RECIPIENT|}
562 you must use @verb{|nncp-exec NODE sendmail RECIPIENT|}.
564 @option{sendmail} configuration file option is replaced with
565 @option{exec}. @verb{|sendmail: [...]|} must be replaced with
566 @verb{|exec: sendmail: [...]|}.
570 Ability to override @option{via} configuration option for destination
571 node via @option{-via} command line option for following commands:
572 @command{nncp-file}, @command{nncp-freq}, @command{nncp-exec}.
575 Chunked files, having size less than specified chunk size, will be sent
576 as an ordinary single file.
579 Exec commands are invoked with additional @env{NNCP_NICE} and
580 @env{NNCP_SELF} environment variables.
583 Files, that are sent as a reply to freq, have niceness level taken from
584 the freq packet. You can set desired niceness during @command{nncp-freq}
585 invocation using @option{-replynice} option.
588 @command{nncp-toss} command can ignore specified packet types during
589 processing: @option{-nofile}, @option{-nofreq}, @option{-noexec},
593 @command{nncp-file} command uses
594 @option{FreqMinSize}/@option{FreqChunked} configuration file options
595 for @option{-minsize}/@option{-chunked} by default. You can turn this
596 off by specifying zero value.
605 @strong{Incompatible} encrypted/eblob packet format changes. Older
606 versions are not supported.
609 Twofish encryption algorithm is replaced with ChaCha20. It is much more
610 faster. One cryptographic primitive less.
613 HKDF-BLAKE2b-256 KDF algorithm is replaced with BLAKE2Xb XOF. Yet
614 another cryptographic primitive less (assuming that BLAKE2X is nearly
615 identical to BLAKE2).
624 @strong{Incompatible} encrypted packet format changes. Older versions
628 @command{nncp-bundle} command can either create stream of encrypted
629 packets, or digest it. It is useful when dealing with
630 @code{stdin}/@code{stdout} based transmission methods (like writing to
631 CD-ROM without intermediate prepared ISO image and working with tape
635 @command{nncp-toss} is able to create @file{.seen} files preventing
636 duplicate packets receiving.
639 Single background checksum verifier worker is allowed in
640 @command{nncp-call}. This is helpful when thousands of small inbound
641 packets could create many goroutines.
644 Ability to override path to spool directory and logfile through either
645 command line argument, or environment variable.
648 @command{nncp-rm} is able to delete outbound/inbound, @file{.seen},
649 @file{.part}, @file{.lock} and temporary files.
654 @section Release 0.12
656 @item Sendmail command is called with @env{NNCP_SENDER} environment variable.
660 @section Release 0.11
662 @item @command{nncp-stat}'s command output is sorted by node name.
666 @section Release 0.10
669 @command{nncp-freq}'s @file{DST} argument is optional now. Last
670 @file{SRC} path's element will be used by default.
677 Fix @option{-rx}/@option{-tx} arguments processing in
678 @command{nncp-call} command. They were ignored.
685 Little bugfix in @command{nncp-file} command, where @option{-minsize}
686 option for unchunked transfer was not in KiBs, but in bytes.
694 Ability to feed @command{nncp-file} from @code{stdin}, that uses an
695 encrypted temporary file for that.
698 Chunked files transmission appeared with corresponding
699 @command{nncp-reass} command and @option{freqchunked} configuration file
700 entry. Useful for transferring big files over small storage devices.
703 @option{freqminsize} configuration file option, analogue to
704 @option{-minsize} one.
707 @command{nncp-xfer}'s @option{-force} option is renamed to
708 @option{-mkdir} for clarity.
711 @option{-minsize} option is specified in KiBs, not bytes, for
715 @command{nncp-newcfg} command is renamed to @command{nncp-cfgnew},
716 and @command{nncp-mincfg} to @command{nncp-cfgmin} -- now they have
717 common prefix and are grouped together for convenience.
720 @command{nncp-cfgenc} command appeared, allowing configuration file
721 encryption/decryption, for keeping it safe without any either OpenPGP or
725 Cryptographic libraries (dependencies) are updated.
732 @item Small @command{nncp-rm} command appeared.
733 @item Cryptographic libraries (dependencies) are updated.
740 Trivial small fix in default niceness level of @command{nncp-file}
741 and @command{nncp-freq} commands.
749 Small fix in @command{nncp-call}, @command{nncp-caller},
750 @command{nncp-daemon}: they can segmentation fail sometimes (no data is
754 @command{nncp-newnode} renamed to @command{nncp-newcfg} -- it is shorter
755 and more convenient to use.
758 @command{nncp-mincfg} command appeared: helper allowing to create
759 minimalistic stripped down configuration file without private keys, that
760 is useful during @command{nncp-xfer} usage.
767 @item Fixed compatibility with Go 1.6.
775 @strong{Incompatible} packet's format change (magic number is changed
776 too): size field is encrypted and is not send in plaintext anymore.
779 @option{-minsize} option gives ability to automatically pad outgoing
780 packets to specified minimal size.
783 @command{nncp-daemon} and @command{nncp-call}/@command{nncp-caller}
784 always check new @emph{tx} packets appearance in the background while
785 connected. Remote side is immediately notified.
788 @option{-onlinedeadline} option gives ability to configure timeout of
789 inactivity of online connection, when it could be disconnected. It could
790 be used to keep connection alive for a long time.
793 @option{-maxonlinetime} option gives ability to set maximal allowable
794 online connection aliveness time.
797 @command{nncp-caller} command appeared: cron-ed TCP daemon caller.
800 @command{nncp-pkt} command can decompress the data.